continue refactoring

Author: giancarloromeo

api/specs/web-server/_auth_api_keys.py

@@ -6,7 +6,7 @@
 from models_library.rest_error import EnvelopedError
 from simcore_service_webserver._meta import API_VTAG
 from simcore_service_webserver.api_keys._exceptions_handlers import _TO_HTTP_ERROR_MAP
-from simcore_service_webserver.api_keys._models import ApiKeysPathParams
+from simcore_service_webserver.api_keys._rest import ApiKeysPathParams
 
 router = APIRouter(
     prefix=f"/{API_VTAG}",
@@ -22,17 +22,6 @@
     operation_id="create_api_key",
     status_code=status.HTTP_201_CREATED,
     response_model=Envelope[ApiKeyGet],
-    # responses={
-    #     status.HTTP_400_BAD_REQUEST: {
-    #         "description": "key name requested is invalid",
-    #     },
-    #     status.HTTP_401_UNAUTHORIZED: {
-    #         "description": "requires login to  list keys",
-    #     },
-    #     status.HTTP_403_FORBIDDEN: {
-    #         "description": "not enough permissions to list keys",
-    #     },
-    # },
 )
 async def create_api_key(_body: ApiKeyCreate):
     """creates API keys to access public API"""
@@ -43,17 +32,6 @@ async def create_api_key(_body: ApiKeyCreate):
     operation_id="list_display_names",
     response_model=Envelope[list[str]],
     status_code=status.HTTP_200_OK,
-    # responses={
-    #     status.HTTP_400_BAD_REQUEST: {
-    #         "description": "key name requested is invalid",
-    #     },
-    #     status.HTTP_401_UNAUTHORIZED: {
-    #         "description": "requires login to  list keys",
-    #     },
-    #     status.HTTP_403_FORBIDDEN: {
-    #         "description": "not enough permissions to list keys",
-    #     },
-    # },
 )
 async def list_api_keys():
     """lists display names of API keys by this user"""
@@ -64,17 +42,6 @@ async def list_api_keys():
     operation_id="get_api_key",
     response_model=Envelope[ApiKeyGet],
     status_code=status.HTTP_200_OK,
-    # responses={
-    #     status.HTTP_400_BAD_REQUEST: {
-    #         "description": "key name requested is invalid",
-    #     },
-    #     status.HTTP_401_UNAUTHORIZED: {
-    #         "description": "requires login to get the keu",
-    #     },
-    #     status.HTTP_403_FORBIDDEN: {
-    #         "description": "not enough permissions to get the keu",
-    #     },
-    # },
 )
 async def get_api_key(_path: Annotated[ApiKeysPathParams, Depends()]):
     """returns the key or None"""
@@ -84,14 +51,6 @@ async def get_api_key(_path: Annotated[ApiKeysPathParams, Depends()]):
     "/auth/api-keys",
     operation_id="delete_api_key",
     status_code=status.HTTP_204_NO_CONTENT,
-    # responses={
-    #     status.HTTP_401_UNAUTHORIZED: {
-    #         "description": "requires login to  delete a key",
-    #     },
-    #     status.HTTP_403_FORBIDDEN: {
-    #         "description": "not enough permissions to delete a key",
-    #     },
-    # },
 )
 async def delete_api_key(_path: Annotated[ApiKeysPathParams, Depends()]):
     """deletes API key by ID"""

services/web/server/src/simcore_service_webserver/api_keys/_api.py

@@ -4,10 +4,11 @@
 from typing import Final
 
 from aiohttp import web
-from models_library.api_schemas_webserver.auth import ApiKeyCreate, ApiKeyGet
+from models_library.api_schemas_webserver.auth import ApiKeyGet
 from models_library.products import ProductName
 from models_library.users import UserID
 from servicelib.utils_secrets import generate_token_secret_key
+from simcore_service_webserver.api_keys._models import ApiKey
 
 from . import _db
 from .errors import ApiKeyNotFoundError
@@ -42,27 +43,20 @@ def _generate_api_key_and_secret(name: str):
 async def create_api_key(
     app: web.Application,
     *,
-    new: ApiKeyCreate,
+    display_name=str,
+    expiration=dt.timedelta,
     user_id: UserID,
     product_name: ProductName,
-) -> ApiKeyGet:
+) -> ApiKey:
     # generate key and secret
-    api_key, api_secret = _generate_api_key_and_secret(new.display_name)
+    api_key, api_secret = _generate_api_key_and_secret(display_name)
 
-    # raises if name exists already!
-    api_key_id = await _db.create(
+    return await _db.create(
         app,
         user_id=user_id,
         product_name=product_name,
-        display_name=new.display_name,
-        expiration=new.expiration,
-        api_key=api_key,
-        api_secret=api_secret,
-    )
-
-    return ApiKeyGet(
-        id_=api_key_id,
-        display_name=new.display_name,
+        display_name=display_name,
+        expiration=expiration,
         api_key=api_key,
         api_secret=api_secret,
     )

services/web/server/src/simcore_service_webserver/api_keys/_db.py

@@ -4,12 +4,11 @@
 import sqlalchemy as sa
 from aiohttp import web
 from models_library.api_schemas_api_server.api_keys import ApiKeyInDB
-from models_library.basic_types import IdInt
 from models_library.products import ProductName
 from models_library.users import UserID
-from pydantic import TypeAdapter
 from simcore_postgres_database.models.api_keys import api_keys
 from simcore_postgres_database.utils_repos import transaction_context
+from simcore_service_webserver.api_keys._models import ApiKey
 from sqlalchemy.dialects.postgresql import insert as pg_insert
 from sqlalchemy.ext.asyncio import AsyncConnection
 
@@ -45,7 +44,7 @@ async def create(
     expiration: timedelta | None,
     api_key: str,
     api_secret: str,
-) -> IdInt:
+) -> ApiKey:
     async with transaction_context(get_asyncpg_engine(app), connection) as conn:
         stmt = (
             api_keys.insert()
@@ -62,7 +61,14 @@ async def create(
 
         result = await conn.stream(stmt)
         row = await result.first()
-        return TypeAdapter(IdInt).validate_python(row.id)
+
+        return ApiKey(
+            id=row.id,
+            display_name=display_name,
+            expiration=expiration,
+            api_key=api_key,
+            api_secret=api_secret,
+        )
 
 
 async def get(

services/web/server/src/simcore_service_webserver/api_keys/_models.py

@@ -1,5 +1,11 @@
-from models_library.rest_base import StrictRequestParameters
+import datetime as dt
+from dataclasses import dataclass
 
 
-class ApiKeysPathParams(StrictRequestParameters):
-    api_key_id: int
+@dataclass
+class ApiKey:
+    id: str
+    display_name: str
+    expiration: dt.timedelta
+    api_key: str
+    api_secret: str

services/web/server/src/simcore_service_webserver/api_keys/_rest.py

@@ -3,6 +3,7 @@
 from aiohttp import web
 from aiohttp.web import RouteTableDef
 from models_library.api_schemas_webserver.auth import ApiKeyCreate, ApiKeyGet
+from models_library.rest_base import StrictRequestParameters
 from servicelib.aiohttp import status
 from servicelib.aiohttp.requests_validation import (
     parse_request_body_as,
@@ -13,7 +14,6 @@
 from simcore_service_webserver.api_keys._exceptions_handlers import (
     handle_plugin_requests_exceptions,
 )
-from simcore_service_webserver.api_keys._models import ApiKeysPathParams
 
 from .._meta import API_VTAG
 from ..login.decorators import login_required
@@ -28,6 +28,10 @@
 routes = RouteTableDef()
 
 
+class ApiKeysPathParams(StrictRequestParameters):
+    api_key_id: int
+
+
 @routes.get(f"/{API_VTAG}/auth/api-keys", name="list_api_keys")
 @login_required
 @permission_required("user.apikey.*")
@@ -64,22 +68,25 @@ async def api_key_get(request: web.Request):
 @handle_plugin_requests_exceptions
 async def create_api_key(request: web.Request):
     req_ctx = RequestContext.model_validate(request)
-    new = await parse_request_body_as(ApiKeyCreate, request)
+    new_api_key = await parse_request_body_as(ApiKeyCreate, request)
     try:
-        resp: ApiKeyGet = await _api.create_api_key(
+        created_api_key = await _api.create_api_key(
             request.app,
-            new=new,
+            display_name=new_api_key.display_name,
+            expiration=new_api_key.expiration,
             user_id=req_ctx.user_id,
             product_name=req_ctx.product_name,
         )
-        # resp.api_base_url = TODO: https://github.com/ITISFoundation/osparc-simcore/issues/6340
+
+        api_key = ApiKeyGet.model_validate(created_api_key)
+        # api_key.api_base_url = TODO: https://github.com/ITISFoundation/osparc-simcore/issues/6340
     except DatabaseError as err:
         raise web.HTTPBadRequest(
             reason="Invalid API key name: already exists",
             content_type=MIMETYPE_APPLICATION_JSON,
         ) from err
 
-    return envelope_json_response(resp)
+    return envelope_json_response(api_key)
 
 
 @routes.delete(f"/{API_VTAG}/auth/api-keys/{{api_key_id}}", name="delete_api_key")

services/web/server/tests/unit/with_dbs/01/test_api_keys.py

@@ -10,17 +10,18 @@
 from http.client import HTTPException
 
 import pytest
-import simcore_service_webserver.api_keys._db as db
 from aiohttp.test_utils import TestClient
 from faker import Faker
 from models_library.products import ProductName
 from pytest_simcore.helpers.assert_checks import assert_status
 from pytest_simcore.helpers.webserver_login import NewUser, UserInfoDict
 from servicelib.aiohttp import status
+from simcore_service_webserver.api_keys import _db
 from simcore_service_webserver.api_keys._api import (
     get_or_create_api_key,
     prune_expired_api_keys,
 )
+from simcore_service_webserver.api_keys._models import ApiKey
 from simcore_service_webserver.db.models import UserRole
 
 
@@ -32,8 +33,8 @@ async def fake_user_api_keys(
     faker: Faker,
 ) -> AsyncIterable[list[int]]:
     assert client.app
-    api_key_ids: list[int] = [
-        await db.create(
+    api_keys: list[ApiKey] = [
+        await _db.create(
             client.app,
             user_id=logged_user["id"],
             product_name=osparc_product_name,
@@ -45,12 +46,12 @@ async def fake_user_api_keys(
         for _ in range(5)
     ]
 
-    yield api_key_ids
+    yield api_keys
 
-    for api_key_id in api_key_ids:
-        await db.delete(
+    for api_key in api_keys:
+        await _db.delete(
             client.app,
-            api_key_id=api_key_id,
+            api_key_id=api_key.id,
             user_id=logged_user["id"],
             product_name=osparc_product_name,
         )
@@ -127,8 +128,8 @@ async def test_delete_api_keys(
     resp = await client.delete("/v0/auth/api-keys/0")
     await assert_status(resp, expected)
 
-    for api_key_id in fake_user_api_keys:
-        resp = await client.delete(f"/v0/auth/api-keys/{api_key_id}")
+    for api_key in fake_user_api_keys:
+        resp = await client.delete(f"/v0/auth/api-keys/{api_key.id}")
         await assert_status(resp, expected)