Skip to content

Commit

Permalink
Updates documentation.
Browse files Browse the repository at this point in the history
  • Loading branch information
@dtiesling
dtiesling committed Dec 1, 2023
1 parent 4c6e6cf commit 38795de
Show file tree
Hide file tree
Showing 2 changed files with 180 additions and 0 deletions.
179 changes: 179 additions & 0 deletions docs/docs/callbacks.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,179 @@
# Pre/Post Callbacks

At some point in the evolution of most projects simple CRUD actions will not be enough. APIs will likely need to do
complex validation possibly requiring checks against external services. Or additional actions will need to occur after
the CRUD operations such as sending emails, starting asynchronous background tasks, adding audit information, etc.

Flask-Muck includes an easy-to-use callback system that allows you to define functions and execute them before or after
any CRUD operation.

The functions are defined by creating `FlaskMuckCallBack` subclasses. a `FlaskMuckCallback` has a single method that
must be overriden, `execute`, that takes no arguments and returns `None`. Simply override this functions with
any logic that needs to occur before or after a CRUD operation.

The `execute` method has access to two attributes, `self.resource` and `self.kwargs`.

| Attribute | Description |
|:----------|:-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| resource | SqlAlchemy model instance affected by the operation. |
| kwargs | Dictionary of keyword arguments used to execute the CRUD operation. Union of kwargs sent in the json payload and any returned by the `get_base_query_kwargs` method. You can read more about `get_base_query_kwargs` in the [Supporting Logical Data Separation (Multi-tenancy)](logical_separation.md) section. |

The `FlaskMuckCallBack` class is then added to a pre or post callbacks lists on a `FlaskMuckApiView`.
There is a class variable for the pre and post callback list for each CRUD operation. The name of the class variables
follow this naming convention, `<pre_or_post\>_<operation\>_callbacks`.

```python
import logging

from flask import request
from flask_muck import FlaskMuckCallback, FlaskMuckApiView


class LogCallback(FlaskMuckCallback):
def execute(self) -> None:
logging.info(f"{request.method=} {self.resource=} {self.kwargs=}")

class MyApiView(FlaskMuckApiView):
...
post_create_callbacks = [LogCallback]
post_patch_callbacks = [LogCallback]
post_update_callbacks = [LogCallback]
post_delete_callbacks = [LogCallback]
```

!!! tip
Any number of callbacks can be added to a callbacks list. The callbacks are executed serially and in the order.
Keep this in mind if the effects of some callbacks may influence others.


## Example Usage

!!! note
This example expands on the example in the [quickstart](quickstart.md). If you have not read through the
[quickstart](quickstart.md) this will make more sense if you do.

This scenario represents an app that tracks teachers and students. The requirements for the app are:

- Teachers' credentials must to be verified against an external service before they can be added.
- All modification actions need be added to the audit log for compliance.
- When a student or teacher is added they will be sent a welcome email.


```python title="myapp/models.py"
from myapp import db

class Teacher(db.Model):
id = db.Column(db.Integer, primary_key=True)
name = db.Column(db.String, nullable=False)
email = db.Column(db.String, nullable=False)
years_teaching = db.Column(db.Integer)

class Student(db.Model):
id = db.Column(db.Integer, primary_key=True)
name = db.Column(db.String, nullable=False)
email = db.Column(db.String, nullable=False)
parent_id = db.Column(db.ForeignKey(Teacher.id))
parent = db.relationship(Teacher)
```

```python title="myapp/callbacks.py"
from flask import request
from flask_login import current_user
from flask_muck import FlaskMuckCallback

from myapp.utils import add_audit_log#(1)!
from myapp.utils import verify_teacher#(2)!
from myapp.utils import send_welcome_email#(3)!


class VerifyTeacherCredentialsCallback(FlaskMuckCallback):
"""Check external service to verify a teacher has the correct teaching credentials."""
def execute(self) -> None:
verify_teacher(self.resource.name)

class AuditLogCallback(FlaskMuckCallback):
"""Adds a record to the audit log for SOC2 compliance."""
def execute(self) -> None:
add_audit_log(
user=current_user,
operation=request.method,
resource_type=type(self.resource),
resource_id=self.resource.id,
kwargs=self.kwargs,
)

class SendWelcomeEmailCallback(FlaskMuckCallback):
"""Sends a welcome email to newly created student or teacher."""
def execute(self) -> None:
send_welcome_email(name=self.resource.name, email=self.resource.email)
```


1. `add_audit_log` is a function that adds a record to an audit used for compliance purposes.
2. `verify_teacher` is a function that makes a request to an external service and verifies they have adequate teacher's credentials. If they do not have the proper credentials an exception is raised.
3. `send_welcome_email` is a function that sends a welcome email to a student or teacher when they are added to the application.


```python title="myapp/schemas.py"
from marshmallow import Schema
from marshmallow import fields as mf


class TeacherSchema(Schema):
id = mf.Integer(dump_only=True)
name = mf.String(required=True)
email = mf.String(required=True)
years_teaching = mf.Integer()

class StudentSchema(Schema):
id = mf.Integer(dump_only=True)
email = mf.String(required=True)
name = mf.String(required=True)
```

```python title="myapp/views.py"
from flask_muck import FlaskMuckApiView
from myapp import db
from myapp.auth.decorators import login_required
from myapp.models import Teacher, Student
from myapp.schemas import TeacherSchema, StudentSchema
from myapp.callbacks import VerifyTeacherCredentialsCallback, AuditLogCallback, SendWelcomeEmailCallback


class BaseApiView(FlaskMuckApiView):
session = db.session
decorators = [login_required]


class TeacherApiView(BaseApiView):
api_name = "teachers"
Model = Teacher
ResponseSchema = TeacherSchema
CreateSchema = TeacherSchema
PatchSchema = TeacherSchema
UpdateSchema = TeacherSchema

pre_create_callbacks = [VerifyTeacherCredentialsCallback]#(1)!
post_create_callbacks = [AuditLogCallback, SendWelcomeEmailCallback]#(2)!
post_patch_callbacks = [AuditLogCallback]
post_update_callbacks = [AuditLogCallback]
post_delete_callbacks = [AuditLogCallback]


class StudentApiView(BaseApiView):
api_name = "student"
Model = Student
parent = TeacherApiView
ResponseSchema = StudentSchema
CreateSchema = StudentSchema
PatchSchema = StudentSchema
UpdateSchema = StudentSchema

post_create_callbacks = [AuditLogCallback, SendWelcomeEmailCallback]
post_patch_callbacks = [AuditLogCallback]
post_update_callbacks = [AuditLogCallback]
post_delete_callbacks = [AuditLogCallback]
```

1. Using the `pre_create_callbacks` to validate the teacher before they are added.
2. Note that you can add as many callbacks as you like. They will be executed serially and in order.
1 change: 1 addition & 0 deletions docs/mkdocs.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,5 +50,6 @@ nav:
- Quick Start: quickstart.md
- Configuration: configuration.md
- Nesting APIs: nesting_apis.md
- Pre/Post Callbacks: callbacks.md
- Supporting Logical Data Separation (Multi-tenancy): logical_separation.md
- API Reference: api_reference.md

0 comments on commit 38795de

Please sign in to comment.