From 59a05ca503788444bfeea4c133f6c4913ee9a158 Mon Sep 17 00:00:00 2001 From: Drew Bednar Date: Sat, 15 Feb 2020 12:49:38 -0500 Subject: [PATCH] Initial commit --- .coveragerc | 6 ++ .gitignore | 64 +++++++++++++++ LICENSE | 10 +++ README.md | 64 +++++++++++++++ alembic.ini | 2 + casbin_api/__init__.py | 0 casbin_api/api/__init__.py | 0 casbin_api/api/todo/__init__.py | 2 + casbin_api/api/todo/manager.py | 80 ++++++++++++++++++ casbin_api/api/todo/model.py | 21 +++++ casbin_api/api/todo/view.py | 49 +++++++++++ casbin_api/api/welcome/__init__.py | 1 + casbin_api/api/welcome/views.py | 5 ++ casbin_api/common.py | 31 +++++++ casbin_api/db.py | 32 ++++++++ casbin_api/error.py | 5 ++ casbin_api/index.py | 82 +++++++++++++++++++ casbin_api/logger.py | 29 +++++++ casbin_api/manager.py | 32 ++++++++ casbin_api/schema.py | 14 ++++ casbin_api/settings.py | 12 +++ dev_requirements.in | 7 ++ dev_requirements.txt | 34 ++++++++ manage.py | 82 +++++++++++++++++++ migrations/README | 1 + migrations/env.py | 21 +++++ migrations/script.py.mako | 24 ++++++ .../697808db5f01_initial_migration.py | 35 ++++++++ requirements.in | 8 ++ requirements.txt | 26 ++++++ scripts/bootstrap | 15 ++++ setup.py | 15 ++++ tests/__init__.py | 0 tests/conftest.py | 51 ++++++++++++ tests/test_app_routes.py | 55 +++++++++++++ tests/test_renders.py | 15 ++++ 36 files changed, 930 insertions(+) create mode 100644 .coveragerc create mode 100644 .gitignore create mode 100644 LICENSE create mode 100644 README.md create mode 100644 alembic.ini create mode 100644 casbin_api/__init__.py create mode 100644 casbin_api/api/__init__.py create mode 100644 casbin_api/api/todo/__init__.py create mode 100644 casbin_api/api/todo/manager.py create mode 100644 casbin_api/api/todo/model.py create mode 100644 casbin_api/api/todo/view.py create mode 100644 casbin_api/api/welcome/__init__.py create mode 100644 casbin_api/api/welcome/views.py create mode 100644 casbin_api/common.py create mode 100644 casbin_api/db.py create mode 100644 casbin_api/error.py create mode 100644 casbin_api/index.py create mode 100644 casbin_api/logger.py create mode 100644 casbin_api/manager.py create mode 100644 casbin_api/schema.py create mode 100644 casbin_api/settings.py create mode 100644 dev_requirements.in create mode 100644 dev_requirements.txt create mode 100644 manage.py create mode 100644 migrations/README create mode 100644 migrations/env.py create mode 100644 migrations/script.py.mako create mode 100644 migrations/versions/697808db5f01_initial_migration.py create mode 100644 requirements.in create mode 100644 requirements.txt create mode 100755 scripts/bootstrap create mode 100644 setup.py create mode 100644 tests/__init__.py create mode 100644 tests/conftest.py create mode 100644 tests/test_app_routes.py create mode 100644 tests/test_renders.py diff --git a/.coveragerc b/.coveragerc new file mode 100644 index 0000000..2d82e89 --- /dev/null +++ b/.coveragerc @@ -0,0 +1,6 @@ +[run] +source = casbin_api +omit = test* + +[report] +show_missing = True \ No newline at end of file diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..e4dc227 --- /dev/null +++ b/.gitignore @@ -0,0 +1,64 @@ +# ---> Python +# Byte-compiled / optimized / DLL files +__pycache__/ +*.py[cod] +*$py.class + +# C extensions +*.so + +# Distribution / packaging +.Python +env/ +build/ +develop-eggs/ +dist/ +downloads/ +eggs/ +.eggs/ +lib/ +lib64/ +parts/ +sdist/ +var/ +*.egg-info/ +.installed.cfg +*.egg + +# PyInstaller +# Usually these files are written by a python script from a template +# before PyInstaller builds the exe, so as to inject date/other infos into it. +*.manifest +*.spec + +# Installer logs +pip-log.txt +pip-delete-this-directory.txt + +# Unit test / coverage reports +htmlcov/ +.tox/ +.coverage +.coverage.* +.cache +nosetests.xml +coverage.xml +*,cover + +# Translations +*.mo +*.pot + +# Django stuff: +*.log + +# Sphinx documentation +docs/_build/ + +# PyBuilder +target/ + +# Pycharm +.idea + +casbin_api/settings.toml \ No newline at end of file diff --git a/LICENSE b/LICENSE new file mode 100644 index 0000000..395aa62 --- /dev/null +++ b/LICENSE @@ -0,0 +1,10 @@ + +MIT License + +Copyright (c) 2020, Drew Bednar + +Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: + +The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. + +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. diff --git a/README.md b/README.md new file mode 100644 index 0000000..a3bb81f --- /dev/null +++ b/README.md @@ -0,0 +1,64 @@ +# casbin_api + +A Molten web api with RBAC provided by pycasbin + +## First time setup + +Create a virtual environment and activate it. Now from the root project directory run `./scripts/bootstrap`. This will install `pip-tools` and sync any dependencies for the first time. + +To run the app you will need a [postgres] database. Create a development and a test database. Update the connection strings within the `casbin_api.settings.toml`. At this time, if you choose to, you can remove the demo `Todo` code and replace it with your own Model. Otherwise create your first [alembic] migration using the `alembic revision --autogenerate -m "your revision message"` command. Finally, apply your first migration with `alembic upgrade head`. + + +## Running the developement server +A `manage.py` script has been included with a collection of [click] cli functions to assist in development. + +__Note__: the developement server command is not a production webserver. You will need to c + +``` +python manage.py runserver +``` + +## Using the interactive interpreter +The `manage.py` script can be used to open an interactive interpreter with a configured molten application from your project. +``` +python manage.py shell +``` + +## Dependency management + +Dependencies are managed via [pip-tools]. + +### Adding a dependency + +To add a dependency, edit `requirements.in` (or `dev_requirements.in` +for dev dependencies) and add your dependency then run `pip-compile +requirements.in`. + +### Syncing dependencies + +Run `pip-sync requirements.txt dev_requirements.txt`. + + +## Migrations + +Migrations are managed using [alembic]. + +### Generating new migrations + + alembic revision --autogenerate -m 'message' + +### Running the migrations + + alembic upgrade head # to upgrade the local db + env ENVIRONMENT=test alembic upgrade head # to upgrade the test db + env ENVIRONMENT=prod alembic upgrade head # to upgrade prod + +## Testing + +Run the tests by invoking `py.test` in the project root. Make sure you +run any pending migrations beforehand. + +[alembic]: http://alembic.zzzcomputing.com/en/latest/ +[click]: https://click.palletsprojects.com +[pip-tools]: https://github.com/jazzband/pip-tools +[postgres]: https://www.postgresql.org/ \ No newline at end of file diff --git a/alembic.ini b/alembic.ini new file mode 100644 index 0000000..2c614a3 --- /dev/null +++ b/alembic.ini @@ -0,0 +1,2 @@ +[alembic] +script_location = migrations \ No newline at end of file diff --git a/casbin_api/__init__.py b/casbin_api/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/casbin_api/api/__init__.py b/casbin_api/api/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/casbin_api/api/todo/__init__.py b/casbin_api/api/todo/__init__.py new file mode 100644 index 0000000..caaebba --- /dev/null +++ b/casbin_api/api/todo/__init__.py @@ -0,0 +1,2 @@ +from .manager import TodoManager, TodoManagerComponent +from .view import todo_routes \ No newline at end of file diff --git a/casbin_api/api/todo/manager.py b/casbin_api/api/todo/manager.py new file mode 100644 index 0000000..d90cce1 --- /dev/null +++ b/casbin_api/api/todo/manager.py @@ -0,0 +1,80 @@ +from inspect import Parameter +from typing import List +from molten import BaseApp, HTTPError, HTTP_409, HTTP_404 +from sqlalchemy.orm import Session + +from casbin_api.manager import BaseManager +from casbin_api.error import EntityNotFound +from .model import Todo, TodoModel + + +class TodoManager(BaseManager): + """A `TodoManager` is accountable for the CRUD operations associated with a `Todo` instance""" + + def schema_from_model(self, result: TodoModel) -> Todo: + _todo = Todo( + id=result.id, + href=self.app.reverse_uri("get_todo_by_id", todo_id=result.id), + createdDate=result.created_date, + modifiedDate=result.modified_date, + todo=result.todo, + complete=result.complete + ) + return _todo + + def model_from_schema(self, todo: Todo) -> TodoModel: + _todo_model = TodoModel( + todo=todo.todo, + complete=todo.complete + ) + return _todo_model + + def get_todos(self) -> List[Todo]: + """Retrieves a list of `Todo` representations""" + results = self.session.query(TodoModel).order_by(TodoModel.id).all() + todos = [self.schema_from_model(result) for result in results] + return todos + + def get_todo_by_id(self, id) -> Todo: + """Retrieves a `Todo` representation by id""" + result = self.session.query(TodoModel).filter_by(id=id).one_or_none() + if result is None: + raise EntityNotFound(f"Todo: {id} does not exist") + return self.schema_from_model(result) + + def create_todo(self, todo: Todo) -> Todo: + """Creates a new `Todo` resource and returns its representation""" + todo_model = self.model_from_schema(todo) + self.session.add(todo_model) + self.session.flush() + return self.schema_from_model(todo_model) + + def update_todo(self, todo_id: int, todo: Todo) -> Todo: + """Updates an existing `Todo` resource and returns its new representation""" + result = self.session.query(TodoModel).filter_by(id=todo_id).one_or_none() + if result is None: + raise EntityNotFound(f"Todo: {todo_id} does not exist") + updates = self.model_from_schema(todo) + updates.id = todo_id + self.session.merge(updates) + self.session.flush() + todo = self.schema_from_model(result) + return todo + + def delete_todo(self, id): + """Deletes a `Todo` """ + result = self.session.query(TodoModel).filter_by(id=id).one_or_none() + if result is not None: + self.session.delete(result) + return + + +class TodoManagerComponent: + is_cacheable = True + is_singleton = False + + def can_handle_parameter(self, parameter: Parameter) -> bool: + return parameter.annotation is TodoManager + + def resolve(self, session: Session, app: BaseApp) -> TodoManager: # type: ignore + return TodoManager(session, app) diff --git a/casbin_api/api/todo/model.py b/casbin_api/api/todo/model.py new file mode 100644 index 0000000..e7b39dc --- /dev/null +++ b/casbin_api/api/todo/model.py @@ -0,0 +1,21 @@ +from typing import Optional +from molten import schema, field +from sqlalchemy import Column, Text, Boolean +from casbin_api.db import Base, DBMixin +from casbin_api.schema import Link + + +@schema +class Todo: + id: int = field(response_only=True) + createdDate: str = field(response_only=True) + modifiedDate: str = field(response_only=True) + todo: str + complete: Optional[bool] + href: Link = field(response_only=True) + + +class TodoModel(Base, DBMixin): + __tablename__ = "todo" + todo = Column(Text) + complete = Column(Boolean, default=False) diff --git a/casbin_api/api/todo/view.py b/casbin_api/api/todo/view.py new file mode 100644 index 0000000..5704ae9 --- /dev/null +++ b/casbin_api/api/todo/view.py @@ -0,0 +1,49 @@ +from typing import List +from molten import Route, Include, HTTP_201, HTTP_202, HTTPError, HTTP_404 + +from casbin_api.schema import APIResponse +from casbin_api.error import EntityNotFound +from .model import Todo +from .manager import TodoManager + + +def list_todos(todo_manager: TodoManager) -> List[Todo]: + return todo_manager.get_todos() + + +def create_todo(todo: Todo, todo_manager: TodoManager) -> Todo: + _todo = todo_manager.create_todo(todo) + headers = {"Location": _todo.href} + return HTTP_201, _todo, headers + + +def delete_todo(todo_id: int, todo_manager: TodoManager): + todo_manager.delete_todo(todo_id) + return ( + HTTP_202, + APIResponse(status=202, message=f"Delete request for todo: {todo_id} accepted"), + ) + + +def get_todo_by_id(todo_id: int, todo_manager: TodoManager) -> Todo: + try: + _todo = todo_manager.get_todo_by_id(todo_id) + except EntityNotFound as err: + raise HTTPError(HTTP_404, + APIResponse(status=404, + message=err.message) + ) + return _todo + + +def update_todo(todo_id: int, todo: Todo, todo_manager: TodoManager) -> Todo: + return todo_manager.update_todo(todo_id, todo) + + +todo_routes = Include("/todos", [ + Route("", list_todos, method="GET"), + Route("", create_todo, method="POST"), + Route("/{todo_id}", delete_todo, method="DELETE"), + Route("/{todo_id}", get_todo_by_id, method="GET"), + Route("/{todo_id}", update_todo, method="PATCH") +]) diff --git a/casbin_api/api/welcome/__init__.py b/casbin_api/api/welcome/__init__.py new file mode 100644 index 0000000..813c05e --- /dev/null +++ b/casbin_api/api/welcome/__init__.py @@ -0,0 +1 @@ +from .views import welcome \ No newline at end of file diff --git a/casbin_api/api/welcome/views.py b/casbin_api/api/welcome/views.py new file mode 100644 index 0000000..8bd583c --- /dev/null +++ b/casbin_api/api/welcome/views.py @@ -0,0 +1,5 @@ +from typing import Dict + + +def welcome() -> Dict: + return {"message": "welcome to casbin_api"} diff --git a/casbin_api/common.py b/casbin_api/common.py new file mode 100644 index 0000000..a8f9c7d --- /dev/null +++ b/casbin_api/common.py @@ -0,0 +1,31 @@ +import datetime as dt +from os import path +from decimal import Decimal +from typing import Any +from molten import JSONRenderer, is_schema, dump_schema + +BASE_PATH = path.normpath(path.join(path.abspath(path.dirname(__file__)), ".")) + + +def path_to(*xs): + """ + Construct a path from the root project directory + """ + return path.join(BASE_PATH, *xs) + + +class ExtJSONRenderer(JSONRenderer): + """JSON Render with support for ISO 8601 datetime format strings and Decimal""" + + def default(self, ob: Any) -> Any: + """You may override this when subclassing the JSON renderer in + order to encode non-standard object types. + """ + if is_schema(type(ob)): + return dump_schema(ob) + if isinstance(ob, dt.datetime): + return ob.isoformat() + if isinstance(ob, Decimal): + return float(ob) + + raise TypeError(f"cannot encode values of type {type(ob)}") # pragma: no cover diff --git a/casbin_api/db.py b/casbin_api/db.py new file mode 100644 index 0000000..7cff90f --- /dev/null +++ b/casbin_api/db.py @@ -0,0 +1,32 @@ +from sqlalchemy import Column, BigInteger, DateTime +from sqlalchemy.ext.compiler import compiles +from sqlalchemy.ext.declarative import declarative_base +from sqlalchemy.schema import CreateColumn +from sqlalchemy.sql import expression +from sqlalchemy.types import DateTime as DatetimeType + +Base = declarative_base() + + +class utcnow(expression.FunctionElement): + type = DatetimeType() + + +@compiles(utcnow, "postgresql") +def pg_utcnow(element, compiler, **kw): + return "TIMEZONE('utc', CURRENT_TIMESTAMP)" + + +@compiles(CreateColumn, 'postgresql') +def use_identity(element, compiler, **kw): + text = compiler.visit_create_column(element, **kw) + text = text.replace("SERIAL", "INT GENERATED BY DEFAULT AS IDENTITY") + return text + + +class DBMixin: + id = Column(BigInteger, primary_key=True) + created_date = Column(DateTime(timezone=True), server_default=utcnow()) + modified_date = Column( + DateTime(timezone=True), server_default=utcnow(), onupdate=utcnow() + ) diff --git a/casbin_api/error.py b/casbin_api/error.py new file mode 100644 index 0000000..2c29f4a --- /dev/null +++ b/casbin_api/error.py @@ -0,0 +1,5 @@ +from molten.errors import MoltenError + + +class EntityNotFound(MoltenError): + """Raised when an entity is not found using an `exists` check in sqlalchemy.""" diff --git a/casbin_api/index.py b/casbin_api/index.py new file mode 100644 index 0000000..8e016a8 --- /dev/null +++ b/casbin_api/index.py @@ -0,0 +1,82 @@ +from typing import Tuple +from molten import App, Route, ResponseRendererMiddleware, Settings +from molten.http import HTTP_404, Request +from molten.openapi import Metadata, OpenAPIHandler, OpenAPIUIHandler +from molten.settings import SettingsComponent +from molten.contrib.sqlalchemy import SQLAlchemyMiddleware, SQLAlchemyEngineComponent, SQLAlchemySessionComponent +from wsgicors import CORS +from whitenoise import WhiteNoise + +from .api.welcome import welcome +from .api.todo import TodoManagerComponent, todo_routes +from .common import ExtJSONRenderer +from .logger import setup_logging +from .schema import APIResponse +from . import settings + +get_schema = OpenAPIHandler( + metadata=Metadata( + title="casbin_api", + description="A Molten web api with RBAC provided by pycasbin", + version="0.0.0" + ) +) + +get_docs = OpenAPIUIHandler() + +components = [ + SettingsComponent(settings), + SQLAlchemyEngineComponent(), + SQLAlchemySessionComponent(), + TodoManagerComponent(), +] + +middleware = [ResponseRendererMiddleware(), SQLAlchemyMiddleware()] + +renderers = [ExtJSONRenderer()] + +routes = [ + Route("/", welcome, "GET"), + Route("/_schema", get_schema, "GET"), + Route("/_docs", get_docs, "GET"), + ] + [todo_routes] + + +class ExtApp(App): + def handle_404(self, request: Request) -> Tuple[str, APIResponse]: + """ + Returns as standardized JSONResponse on HTTP 404 Error. + """ + return ( + HTTP_404, + APIResponse( + status=404, + message=f"The resource you are looking for {request.scheme}://{request.host}{request.path} doesn't exist", + ), + ) + + @property + def settings(self): + def _get_settings(_settings: Settings): + return _settings + + settings = self.injector.get_resolver().resolve(_get_settings)() + return settings + + +def create_app(_components=None, _middleware=None, _routes=None, _renderers=None): + """ + Factory function for the creation of a `molten.App`. + """ + setup_logging() + + wrapped_app = app = ExtApp( + components=_components or components, + middleware=_middleware or middleware, + routes=_routes or routes, + renderers=_renderers or renderers + ) + wrapped_app = CORS(wrapped_app, **settings.strict_get("wsgicors")) + wrapped_app = WhiteNoise(wrapped_app, **settings.strict_get("whitenoise")) + + return wrapped_app, app diff --git a/casbin_api/logger.py b/casbin_api/logger.py new file mode 100644 index 0000000..fb36de8 --- /dev/null +++ b/casbin_api/logger.py @@ -0,0 +1,29 @@ +import logging.config +import sys + +FORMAT = "[%(asctime)s] [PID %(process)d] [%(threadName)s] [%(request_id)s] [%(name)s] [%(levelname)s] %(message)s" # noqa + + +def setup_logging(): + logging.config.dictConfig( + { + "disable_existing_loggers": False, + "version": 1, + "filters": { + "request_id": {"()": "molten.contrib.request_id.RequestIdFilter"} + }, + "formatters": {"console": {"format": FORMAT}}, + "handlers": { + "default": { + "level": "DEBUG", + "class": "logging.StreamHandler", + "stream": sys.stderr, + "formatter": "console", + "filters": ["request_id"], + } + }, + "loggers": { + "": {"handlers": ["default"], "level": "DEBUG", "propagate": False} + }, + } + ) diff --git a/casbin_api/manager.py b/casbin_api/manager.py new file mode 100644 index 0000000..96ac713 --- /dev/null +++ b/casbin_api/manager.py @@ -0,0 +1,32 @@ +from abc import ABCMeta, abstractmethod +from molten import BaseApp, HTTPError, HTTP_409, HTTP_404 +from sqlalchemy.orm import Session + + +class BaseManager(metaclass=ABCMeta): + """Base instance for Model managers""" + + def __init__(self, session: Session, app: BaseApp): + self.session = session + self.app = app + + @abstractmethod + def model_from_schema(self, schema): + """Converts a Schema instance into a SQLAlchemy ORM model instance""" + pass + + @abstractmethod + def schema_from_model(self, result): + """Converts a SQLAlchemy results proxy into a Schema instance""" + pass + + def raise_409(self, id:int): + """Raises a 409 HTTP error response in the event of Conflict""" + raise HTTPError( + HTTP_409, + { + "status": 409, + "message": f"Entity {self.__class__.__name__} with id: {id} already exists" + } + + ) diff --git a/casbin_api/schema.py b/casbin_api/schema.py new file mode 100644 index 0000000..cd351da --- /dev/null +++ b/casbin_api/schema.py @@ -0,0 +1,14 @@ +from molten import schema, field + + +@schema +class Link: + href: str + + +@schema +class APIResponse: + status: int = field(description="An HTTP status code") + message: str = field( + description="A user presentable message in response to the request provided to the API" + ) diff --git a/casbin_api/settings.py b/casbin_api/settings.py new file mode 100644 index 0000000..aa0e356 --- /dev/null +++ b/casbin_api/settings.py @@ -0,0 +1,12 @@ +import os + +from molten.contrib.toml_settings import TOMLSettings + +from .common import path_to + +ENVIRONMENT = os.getenv("ENVIRONMENT", "dev") +SETTINGS = TOMLSettings.from_path(path_to("settings.toml"), ENVIRONMENT) + + +def __getattr__(name): + return getattr(SETTINGS, name) diff --git a/dev_requirements.in b/dev_requirements.in new file mode 100644 index 0000000..5a45a96 --- /dev/null +++ b/dev_requirements.in @@ -0,0 +1,7 @@ +black +bumpversion +flake8 +pip-tools +pytest +pytest-cov +werkzeug \ No newline at end of file diff --git a/dev_requirements.txt b/dev_requirements.txt new file mode 100644 index 0000000..f3bcd06 --- /dev/null +++ b/dev_requirements.txt @@ -0,0 +1,34 @@ +# +# This file is autogenerated by pip-compile +# To update, run: +# +# pip-compile dev_requirements.in +# +appdirs==1.4.3 # via black +attrs==19.3.0 # via black, pytest +black==19.10b0 +bumpversion==0.5.3 +click==7.0 # via black, pip-tools +coverage==5.0.3 # via pytest-cov +entrypoints==0.3 # via flake8 +flake8==3.7.9 +importlib-metadata==1.5.0 # via pluggy, pytest +mccabe==0.6.1 # via flake8 +more-itertools==8.2.0 # via pytest +packaging==20.1 # via pytest +pathspec==0.7.0 # via black +pip-tools==4.4.1 +pluggy==0.13.1 # via pytest +py==1.8.1 # via pytest +pycodestyle==2.5.0 # via flake8 +pyflakes==2.1.1 # via flake8 +pyparsing==2.4.6 # via packaging +pytest-cov==2.8.1 +pytest==5.3.5 +regex==2020.1.8 # via black +six==1.14.0 # via packaging, pip-tools +toml==0.10.0 # via black +typed-ast==1.4.1 # via black +wcwidth==0.1.8 # via pytest +werkzeug==1.0.0 +zipp==2.2.0 # via importlib-metadata diff --git a/manage.py b/manage.py new file mode 100644 index 0000000..04fa950 --- /dev/null +++ b/manage.py @@ -0,0 +1,82 @@ +import click +from molten.contrib.sqlalchemy import EngineData +from casbin_api.index import create_app + +_, app = create_app() + + +@click.group() +def cli(): + pass + + +@cli.command() +@click.option("--host", "-h", default="0.0.0.0", help="A hostname or IP address") +@click.option( + "--port", "-p", default=8000, help="Port number to bind to development server" +) +def runserver(host, port): + """ + Runs a Werkzueg development server. Do no use for production. + """ + from werkzeug.serving import run_simple + + run_simple( + hostname=host, port=port, application=app, use_debugger=True, use_reloader=True + ) + + +@cli.command() +def shell(): + """ + Enters an interactive shell with an app instance and dependency resolver. + """ + import rlcompleter + import readline + from code import InteractiveConsole + + helpers = {"app": app, "resolver": app.injector.get_resolver()} + + readline.parse_and_bind("tab: complete") + interpreter = InteractiveConsole(helpers) + interpreter.interact(f"Instances in scope: {', '.join(helpers)}.", "") + + +@cli.command() +def initdb(): + """ + Initialize database + """ + click.echo("This feature has been commented out. Please use alembic to manage your database initialization and changes.") + # from casbin_api.db import Base + # + # def _init(engine_data: EngineData): + # Base.metadata.create_all(bind=engine_data.engine) + # + # click.echo("Creating database") + # app.injector.get_resolver().resolve(_init)() + # click.echo("Database created") + + +@cli.command() +def dropdb(): + """ + Drop all tables in database + """ + + from casbin_api.db import Base + + def _drop(engine_data: EngineData): + Base.metadata.drop_all(bind=engine_data.engine) + + click.echo("Are you sure you would like to drop the database?: [Y/N]") + response = input() + if response.lower() == "y": + app.injector.get_resolver().resolve(_drop)() + click.echo("Database dropped") + else: + click.echo("Database drop aborted") + + +if __name__ == "__main__": + cli() diff --git a/migrations/README b/migrations/README new file mode 100644 index 0000000..98e4f9c --- /dev/null +++ b/migrations/README @@ -0,0 +1 @@ +Generic single-database configuration. \ No newline at end of file diff --git a/migrations/env.py b/migrations/env.py new file mode 100644 index 0000000..b851aaf --- /dev/null +++ b/migrations/env.py @@ -0,0 +1,21 @@ +"""isort:skip_file +""" +import os +import sys; sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")) # noqa + +from alembic import context +from casbin_api.index import create_app +from casbin_api.db import Base +from molten.contrib.sqlalchemy import EngineData + +_, app = create_app() + + +def run_migrations_online(engine_data: EngineData): + with engine_data.engine.connect() as connection: + context.configure(connection=connection, target_metadata=Base.metadata) + with context.begin_transaction(): + context.run_migrations() + + +app.injector.get_resolver().resolve(run_migrations_online)() \ No newline at end of file diff --git a/migrations/script.py.mako b/migrations/script.py.mako new file mode 100644 index 0000000..2c01563 --- /dev/null +++ b/migrations/script.py.mako @@ -0,0 +1,24 @@ +"""${message} + +Revision ID: ${up_revision} +Revises: ${down_revision | comma,n} +Create Date: ${create_date} + +""" +from alembic import op +import sqlalchemy as sa +${imports if imports else ""} + +# revision identifiers, used by Alembic. +revision = ${repr(up_revision)} +down_revision = ${repr(down_revision)} +branch_labels = ${repr(branch_labels)} +depends_on = ${repr(depends_on)} + + +def upgrade(): + ${upgrades if upgrades else "pass"} + + +def downgrade(): + ${downgrades if downgrades else "pass"} diff --git a/migrations/versions/697808db5f01_initial_migration.py b/migrations/versions/697808db5f01_initial_migration.py new file mode 100644 index 0000000..418e84e --- /dev/null +++ b/migrations/versions/697808db5f01_initial_migration.py @@ -0,0 +1,35 @@ +"""Initial migration + +Revision ID: 697808db5f01 +Revises: +Create Date: 2020-02-15 11:03:23.506445 + +""" +from alembic import op +import sqlalchemy as sa + + +# revision identifiers, used by Alembic. +revision = '697808db5f01' +down_revision = None +branch_labels = None +depends_on = None + + +def upgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.create_table('todo', + sa.Column('id', sa.BigInteger(), nullable=False), + sa.Column('created_date', sa.DateTime(timezone=True), server_default=sa.text("TIMEZONE('utc', CURRENT_TIMESTAMP)"), nullable=True), + sa.Column('modified_date', sa.DateTime(timezone=True), server_default=sa.text("TIMEZONE('utc', CURRENT_TIMESTAMP)"), nullable=True), + sa.Column('todo', sa.Text(), nullable=True), + sa.Column('complete', sa.Boolean(), nullable=True), + sa.PrimaryKeyConstraint('id') + ) + # ### end Alembic commands ### + + +def downgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_table('todo') + # ### end Alembic commands ### diff --git a/requirements.in b/requirements.in new file mode 100644 index 0000000..8a5a4cf --- /dev/null +++ b/requirements.in @@ -0,0 +1,8 @@ +click +molten +sqlalchemy +psycopg2-binary +alembic +wsgicors +whitenoise +molten-jwt \ No newline at end of file diff --git a/requirements.txt b/requirements.txt new file mode 100644 index 0000000..46562bf --- /dev/null +++ b/requirements.txt @@ -0,0 +1,26 @@ +# +# This file is autogenerated by pip-compile +# To update, run: +# +# pip-compile requirements.in +# +alembic==1.4.0 +authlib==0.12.1 # via molten-jwt +cffi==1.14.0 # via cryptography +click==7.0 +cryptography==2.8 # via authlib +mako==1.1.1 # via alembic +markupsafe==1.1.1 # via mako +molten-jwt==0.3.0 +molten==1.0.0 +mypy-extensions==0.4.3 # via typing-inspect +psycopg2-binary==2.8.4 +pycparser==2.19 # via cffi +python-dateutil==2.8.1 # via alembic +python-editor==1.0.4 # via alembic +six==1.14.0 # via cryptography, python-dateutil +sqlalchemy==1.3.13 +typing-extensions==3.7.4.1 # via molten, typing-inspect +typing-inspect==0.5.0 # via molten +whitenoise==5.0.1 +wsgicors==0.7.0 diff --git a/scripts/bootstrap b/scripts/bootstrap new file mode 100755 index 0000000..38e8a67 --- /dev/null +++ b/scripts/bootstrap @@ -0,0 +1,15 @@ +#!/usr/bin/env bash + +# setting -e to exit immediately on a command failure. +# setting -o pipefail sets the exit code of a pipeline to that of the rightmost command to exit with a non-zero status, or to zero if all commands of the pipeline exit successfully. +set -eo pipefail + +if [ -z "$VIRTUAL_ENV" ]; then + echo "warning: you are not in a virtualenv" + exit 1 +fi + +pip install -U pip pip-tools +pip-compile requirements.in +pip-compile dev_requirements.in +pip-sync requirements.txt dev_requirements.txt diff --git a/setup.py b/setup.py new file mode 100644 index 0000000..1f635bf --- /dev/null +++ b/setup.py @@ -0,0 +1,15 @@ +from setuptools import setup, find_packages + +setup( + name="casbin_api", + version="0.1.0", + author="Drew Bednar", + author_email="drew@runcible.io", + description="A Molten web api with RBAC provided by pycasbin", + packages=find_packages(exclude=["tests"]), + classifiers=[ + "Programming Language :: Python :: 3", + "License :: OSI Approved :: MIT license", + "Operating System :: OS Independent", + ], +) diff --git a/tests/__init__.py b/tests/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/tests/conftest.py b/tests/conftest.py new file mode 100644 index 0000000..137443b --- /dev/null +++ b/tests/conftest.py @@ -0,0 +1,51 @@ +import pytest + +from molten import testing +from molten.contrib.sqlalchemy import Session + +from casbin_api.index import create_app + + +def truncate_all_tables(session: Session): + table_names = session.execute(""" + select table_name from information_schema.tables + where table_schema = 'public' + and table_type = 'BASE TABLE' + and table_name != 'alembic_version' + """) + for (table_name,) in table_names: + # "truncate" can deadlock so we use delete which is guaranteed not to. + session.execute(f"delete from {table_name}") + session.commit() + + +@pytest.fixture(scope="session") +def app_global(): + _, app = create_app() + yield app + + +@pytest.fixture +def app(app_global): + # This is a little "clever"/piggy. We only want a single instance + # of the app to ever be created, but we also want to ensure that + # the DB is cleared after every test hence "app_global" being a + # session-scoped fixture and this one being test-scoped. + yield app_global + resolver = app_global.injector.get_resolver() + resolver.resolve(truncate_all_tables)() + + +@pytest.fixture +def client(app): + """Creates a testing client""" + return testing.TestClient(app) + + +@pytest.fixture +def load_component(app): + def load(annotation): + def loader(c: annotation): + return c + return app.injector.get_resolver().resolve(loader)() + return load diff --git a/tests/test_app_routes.py b/tests/test_app_routes.py new file mode 100644 index 0000000..efb67c6 --- /dev/null +++ b/tests/test_app_routes.py @@ -0,0 +1,55 @@ +def test_welcome_route(client): + message = "welcome to casbin_api" + response = client.get("/") + content = response.json() + assert message == content.get("message") + + +def test_empty_get_todos(client): + response = client.get("/todos") + assert response.status_code == 200 + assert response.json() == [] + + +def test_insert_todo(client): + payload = {"todo": "walk the dog"} + response = client.post("/todos", data=payload) + content = response.json() + assert response.status_code == 201 + assert type(content['id']) == int + assert content['todo'] == payload['todo'] + + +def test_get_individual_todo_by_href(client): + payload = {"todo": "my individual todo"} + response = client.post("/todos", data=payload) + content = response.json() + get_response = client.get(f"{content.get('href')}") + get_content = get_response.json() + assert get_response.status_code == 200 + assert content == get_content + + +def test_update_todo(client): + payload = {"todo": "sample app"} + response = client.post("/todos", json=payload) + todo = response.json() + update_response = client.patch("{}".format(todo.get("href")), json={"complete": True, "todo": "sample app"}) + updated_todo = update_response.json() + assert updated_todo["complete"] == True + + +def test_todo_not_found(client): + response = client.get("/todo/1111111") + content = response.json() + assert response.status_code == 404 + assert content["status"] == 404 + assert content["message"] + + +def test_delete_todo(client): + payload = {"todo": "sample app"} + response = client.post("/todos", json=payload) + todo = response.json() + delete_response = client.delete(f"/todos/{todo.get('id')}") + assert delete_response.status_code == 202 diff --git a/tests/test_renders.py b/tests/test_renders.py new file mode 100644 index 0000000..2a5305d --- /dev/null +++ b/tests/test_renders.py @@ -0,0 +1,15 @@ +import datetime as dt +from decimal import Decimal +from casbin_api.common import ExtJSONRenderer + + +def test_extended_encoder_date_parsing(): + json_renderer = ExtJSONRenderer() + test_date = dt.datetime(2017, 5, 10) + assert test_date.isoformat() == json_renderer.default(test_date) + + +def test_extended_encoder_decimal_casting(): + json_renderer = ExtJSONRenderer() + test_decimal = Decimal('1.0') + assert 1.0 == json_renderer.default(test_decimal)