Docs: add sql review api tuts (#461)

* docs: first draft

* docs: update

Author: adela-bytebase

content/docs/share/tutorials/create-service-account.md

@@ -1,5 +1,5 @@
 1.  Log in as the admin user, and go to **Security & Policy > Users & Groups**. Click **+ Add User**, fill in with `api-example`, choose the `DBA` role that is sufficient for this tutorial and click **Confirm**.
-    ![service-account-create](/content/docs/share/tutorials/add-service-account.webp)
+    ![service-account-create](/content/docs/tutorials/share/add-service-account.webp)
 
 1.  Find the newly created service account and click on **Copy Service Key**. We will use this token to authenticate the API calls.
-    ![service-account-key](/content/docs/share/tutorials/service-account-key.webp)
+    ![service-account-key](/content/docs/tutorials/share/service-account-key.webp)

content/docs/tutorials/api-sql-review.md

@@ -0,0 +1,133 @@
+---
+title: Configure SQL Review Policies with Bytebase API
+author: Ningjing
+updated_at: 2024/11/12 18:00
+tags: Tutorial
+integrations: General, API
+level: Advanced
+estimated_time: '40 mins'
+description: 'Learn how to use the Bytebase API to configure SQL review rules in Bytebase'
+---
+
+Bytebase is a database DevOps and CI/CD tool designed for developers, DBAs, and platform engineering teams. While it offers an intuitive GUI for managing database schema changes and access control, some teams may want to integrate Bytebase into their existing DevOps platforms using the [Bytebase API](/docs/api/overview/).
+
+This tutorial will guide you through configuring SQL review rules using the Bytebase API. This approach allows you to manage SQL review rules as code within your repository, enabling DBAs or platform engineering teams to apply them to Bytebase as needed.
+
+<HintBlock type="info">
+
+This tutorial code repository is at https://github.com/bytebase/api-example/tree/main/sql-review
+
+</HintBlock>
+
+## Prerequisites
+
+1. [Docker](https://www.docker.com/) installed
+1. Node.js >= v18
+
+## Start Bytebase
+
+<IncludeBlock url="/docs/share/tutorials/start-bytebase"></IncludeBlock>
+
+## Create Service Account
+
+<IncludeBlock url="/docs/share/tutorials/create-service-account"></IncludeBlock>
+
+## Run Scripts in Terminal
+
+### Generate the Token
+
+1. Go to [Bytebase API Example
+   repo](https://github.com/bytebase/api-example) and clone it.
+
+1. Go to subfolder `sql-review`, and follow the instructions in the `README.md` to run the scripts. replace the `bytebase_url`, `bytebase_account`, `bytebase_password` with your own values. Then you will get a `bytebase_token` looks like `ey....9V8s`.
+
+   ```bash
+      export bytebase_url=http://localhost:8080
+      export [email protected]
+      export bytebase_password=bbs_xxxxxxxxxxxxxilcLVG
+      bytebase_token=$(curl -v ${bytebase_url}/v1/auth/login \
+            --data-raw '{"email":"'${bytebase_account}'","password":"'${bytebase_password}'","web":true}' \
+            --compressed 2>&1 | grep token | grep -o 'access-token=[^;]*;' | grep -o '[^;]*' | sed 's/access-token=//g; s/;//g')
+      echo $bytebase_token
+   ```
+
+### Configure SQL Review Policies
+
+1. Continue following the `README.md` to run the scripts.
+
+   ```bash
+      curl --request PATCH ${bytebase_url}/v1/reviewConfigs/basic \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @policy/basic.json
+      
+      curl --request PATCH ${bytebase_url}/v1/reviewConfigs/advanced \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @policy/advanced.json
+   ```
+
+1. In the Bytebase console, navigate to **CI/CD > SQL Review** to see the applied SQL review rules. You may click **Edit** to change the rules.
+   ![bb-sql-review-config](/content/docs/tutorials/api-sql-review/bb-sql-review-config.webp)
+
+1. To delete the SQL review rules, use the following commands:
+
+   ```bash
+      curl --request PATCH "${bytebase_url}/v1/reviewConfigs/basic?allow_missing=true&update_mask=rules" \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @policy/basic.json
+
+      curl --request PATCH "${bytebase_url}/v1/reviewConfigs/advanced?allow_missing=true&update_mask=rules" \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @policy/advanced.json
+   ```
+
+### Apply SQL Review Policies to Resources
+
+You may notice that the SQL review rules are not applied to any resources yet from the above screenshot. In Bytebase, the SQL review rules can be applied to the `environments` or `projects`. Project-level rules take precedence over environment-level rules.
+
+1. Follow the `README.md` to run the scripts to apply the SQL review rules to environments.
+
+   ```bash
+      curl --request PATCH "${bytebase_url}/v1/environments/test/policies/tag?allow_missing=true&update_mask=payload" \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @binding/environments/test.json
+
+      curl --request PATCH "${bytebase_url}/v1/environments/prod/policies/tag?allow_missing=true&update_mask=payload" \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @binding/environments/prod.json
+   ```
+
+1. Continue with the `README.md` to apply the SQL review rules to projects.
+
+   ```bash
+      curl --request PATCH "${bytebase_url}/v1/projects/project-sample/policies/tag?allow_missing=true&update_mask=payload" \
+      --header 'Authorization: Bearer '${bytebase_token} \
+      --data @binding/projects/project-sample.json
+   ```
+
+1. On the **CI/CD > SQL Review** page, you will see the SQL review rules are applied to environments and projects.
+   ![bb-sql-review-config-rsc](/content/docs/tutorials/api-sql-review/bb-sql-review-config-rsc.webp)
+
+1. Go to **Environments** page, click **Test** environment to see the applied SQL review rules.
+   ![bb-env](/content/docs/tutorials/api-sql-review/bb-env.webp)
+
+1. Go to `Sample Project` page, click **Setting** on the left sidebar to see the applied the SQL review rules.
+   ![bb-project-setting](/content/docs/tutorials/api-sql-review/bb-project-setting.webp)
+
+1. To delete SQL review rules from environments and projects, use the following commands:
+
+   ```bash
+      curl --request DELETE ${bytebase_url}/v1/environments/test/policies/tag \
+      --header 'Authorization: Bearer '${bytebase_token}
+
+      curl --request DELETE ${bytebase_url}/v1/environments/prod/policies/tag \
+      --header 'Authorization: Bearer '${bytebase_token}
+   ```
+
+   ```bash
+      curl --request DELETE ${bytebase_url}/v1/projects/project-sample/policies/tag \
+    --header 'Authorization: Bearer '${bytebase_token}
+   ```
+
+## Summary
+
+Congratulations! You can now configure SQL review rules using the Bytebase API, in addition to the Bytebase GUI, making SQL review policy as code a reality.