Merge pull request #2470 from IFRCGo/feature/schema-file

Add openapi schema file

Author: sudip-khanal

.github/go-api-artifacts-add-or-replace.sh

@@ -0,0 +1,72 @@
+#!/bin/bash
+
+set -e
+
+if ! command -v jq &>/dev/null; then
+    echo "jq is not installed."
+    exit 1
+fi
+
+: "${GITHUB_TOKEN:?GITHUB_TOKEN is required and cannot be empty}"
+: "${GITHUB_OWNER:?GITHUB_OWNER is required and cannot be empty}"
+: "${GITHUB_REPO:?GITHUB_REPO is required and cannot be empty}"
+: "${GITHUB_BRANCH:?GITHUB_BRANCH is required and cannot be empty}"
+: "${SOURCE_FILE_PATH:?SOURCE_FILE_PATH is required and cannot be empty}"
+: "${DEST_FILE_PATH:?DEST_FILE_PATH is required and cannot be empty}"
+: "${COMMIT_MESSAGE:?COMMIT_MESSAGE is required and cannot be empty}"
+
+GITHUB_API_URL="https://api.github.com/repos/$GITHUB_OWNER/$GITHUB_REPO/contents/$DEST_FILE_PATH"
+
+function get_existing_file_sha {
+    # Get file SHA if it exists
+    FILE_INFO=$(curl -s -H "Authorization: token $GITHUB_TOKEN" $GITHUB_API_URL?ref=$GITHUB_BRANCH)
+    echo "$FILE_INFO" | jq -r .sha
+}
+
+# Read and encode file
+if [ ! -f "$SOURCE_FILE_PATH" ]; then
+    echo "File $SOURCE_FILE_PATH not found!"
+    exit 1
+fi
+# NOTE: -w 0 disables line wrapping
+ENCODED_CONTENT=$(base64 -w 0 "$SOURCE_FILE_PATH")
+
+EXISTING_FILE_SHA=$(get_existing_file_sha)
+
+# Prepare API payload
+if [ "$EXISTING_FILE_SHA" == "null" ]; then
+    echo "Creating new file..."
+    SHA_PART=""
+else
+    echo "Updating existing file..."
+    SHA_PART=", \"sha\": \"$EXISTING_FILE_SHA\""
+fi
+
+# To avoid `Argument list too long` error
+TMPFILE=$(mktemp)
+
+if [ -n "$EXISTING_FILE_SHA" ]; then
+  cat > "$TMPFILE" <<EOF
+{
+  "message": "$COMMIT_MESSAGE",
+  "content": "$ENCODED_CONTENT",
+  "branch": "$GITHUB_BRANCH",
+  "sha": "$EXISTING_FILE_SHA"
+}
+EOF
+else
+  cat > "$TMPFILE" <<EOF
+{
+  "message": "$COMMIT_MESSAGE",
+  "content": "$ENCODED_CONTENT",
+  "branch": "$GITHUB_BRANCH"
+}
+EOF
+fi
+
+curl --fail -X PUT \
+    $GITHUB_API_URL \
+    -H "Authorization: token $GITHUB_TOKEN" \
+    -H "Content-Type: application/json" \
+    -H "Accept: application/vnd.github.v3+json" \
+    -d @"$TMPFILE"

.github/workflows/build-publish-docker-helm.yml

@@ -22,6 +22,8 @@ jobs:
     uses: ./.github/workflows/ci.yml
     with:
       push_docker_image: true
+    secrets:
+      GO_API_ARTIFACTS_TOKEN: ${{ secrets.GO_API_ARTIFACTS_TOKEN }}
 
   build:
     name: Publish Helm

.github/workflows/ci.yml

@@ -6,6 +6,10 @@ on:
       push_docker_image:
         type: string  # true or false
         default: "false"
+    secrets:
+      GO_API_ARTIFACTS_TOKEN:
+        description: 'Token to pull/push to go-api-artifacts'
+        required: true
     outputs:
       docker_image_name:
         description: "Only docker image name"
@@ -64,7 +68,7 @@ jobs:
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
 
-      - name: 🐳 Prepare Docker
+      - name: Prepare
         id: prep
         env:
           IMAGE_NAME: ghcr.io/${{ github.repository }}
@@ -134,6 +138,32 @@ jobs:
           DOCKER_IMAGE: ${{ steps.prep.outputs.tagged_image }}
         run: docker compose run --rm serve ./manage.py test --keepdb -v 2 --pattern="test_fake.py"
 
+      # NOTE: Schema generation requires a valid database. Therefore, this step must run after "Run Django migrations."
+      - name: 🕮 Generate latest openapi schema
+        env:
+          DOCKER_IMAGE: ${{ steps.prep.outputs.tagged_image }}
+          DJANGO_DB_NAME: "test_test"
+        run: |
+          docker compose run --rm serve ./manage.py spectacular --file openapi-schema-latest.yaml
+
+      - name: 🕮 Upload latest openapi schema to IFRCGo/go-api-artifacts
+        env:
+          # Github
+          # NOTE: `GO_API_ARTIFACTS_TOKEN` has an expiry date. Please follow `docs/go-artifacts.md` for token rotation.
+          GITHUB_TOKEN: ${{ secrets.GO_API_ARTIFACTS_TOKEN }}
+          GITHUB_OWNER: IFRCGo
+          GITHUB_REPO: go-api-artifacts
+          GITHUB_BRANCH: main
+          # File
+          SOURCE_FILE_PATH: openapi-schema-latest.yaml
+        run: |
+          COMMIT_SHA="${{ github.event.pull_request.head.sha || github.sha }}"
+          export DEST_FILE_PATH="generated/$COMMIT_SHA/openapi-schema.yaml"
+          export COMMIT_MESSAGE="Add openapi-schema of $GITHUB_REF_NAME@$COMMIT_SHA"
+          .github/go-api-artifacts-add-or-replace.sh
+          DEST_FILE_URL="https://github.com/$GITHUB_OWNER/$GITHUB_REPO/blob/$GITHUB_BRANCH/$DEST_FILE_PATH"
+          echo "::notice::Uploaded latest openapi-schema to: ${DEST_FILE_URL}"
+
       - name: 🤞 Run Test 🧪
         env:
           DOCKER_IMAGE: ${{ steps.prep.outputs.tagged_image }}

docs/go-artifacts.md

@@ -0,0 +1,32 @@
+# Artifact Repository
+
+https://github.com/IFRCGo/go-api-artifacts
+
+## What is this?
+
+This is a **GitHub repository** used to store and manage **build files**, **generated files**, or **automation results** made by other tools or workflows (like GitHub Actions or CI/CD pipelines).
+
+- Why use this?
+  - Keeps the main source code clean by storing big or auto-made files separately.
+  - Other projects (like go-web-app) can download the required files as required.
+
+## Creating a PAT Token
+
+A GitHub PAT (Personal Access Token) is needed to upload files to the `go-api-artifacts` repository.
+This token is stored in the GitHub Actions secret: `secrets.GO_API_ARTIFACTS_TOKEN`.
+For more details, see [ci.yml](/.github/workflows/ci.yml).
+
+> [!Important]
+> Currently, the PAT token is created using the https://github.com/ifrcgo-dev account.
+
+### How to create a new token:
+
+- **Go to**: [GitHub Personal Access Tokens](https://github.com/settings/personal-access-tokens)
+- **Token name**: `ifrc-go-artifacts-xyz` (replace `xyz` as needed)
+- **Resource owner**: `IFRCGO`
+- **Expiration**: No expiration
+- **Repository access**: Only select repositories
+  - Select: `IFRCGo/go-api-artifacts`
+- **Permissions**:
+  - **Repository permissions**:
+    - **Contents**: Read and write

main/settings.py

@@ -817,6 +817,13 @@ def log_render_extra_context(record):
     "SERVE_INCLUDE_SCHEMA": False,
     "ENUM_ADD_EXPLICIT_BLANK_NULL_CHOICE": False,
     "ENUM_NAME_OVERRIDES": {},
+    # "DEFAULT_GENERATOR_CLASS": "main.utils.OrderedSchemaGenerator",
+    "SORT_OPERATION_PARAMETERS": False,
+    "SORT_OPERATIONS": False,
+    "POSTPROCESSING_HOOKS": [
+        "drf_spectacular.hooks.postprocess_schema_enums",
+        "main.utils.postprocess_schema",
+    ],
 }
 
 # A character which is rarely used in strings – for separator:

main/utils.py

@@ -184,3 +184,16 @@ def logger_context(data):
     Check main.settings.py::log_render_extra_context
     """
     return {"context": data}
+
+
+def sort_dict_recursively(d):
+    if isinstance(d, dict):
+        return {k: sort_dict_recursively(d[k]) for k in sorted(d)}
+    elif isinstance(d, list):
+        return [sort_dict_recursively(item) for item in d]
+    else:
+        return d
+
+
+def postprocess_schema(result, **kwargs):
+    return sort_dict_recursively(result)