Skip to content

data-to-insight/dfe-csc-api-data-flows

BranchesTags

Repository files navigation

CSC API Pipeline

Status Version Spec Platform Data%20Format DfE%20API SSD%20Compatible Automation

A Python and equivellent Powershell(non-delta payloads only) tools for submitting agreed structured JSON payloads to the DfE Children’s Social Care (CSC) API endpoint. Expected to run as scheduled job (as part of LAs existing overnight batches). However release files also offer scope for LA deployment|project teams to fully end-to-end test locally, with only minimal privilleges.

Features

  • Extracts data from a SQL Server SSD staging table
  • Generates full or partial JSON payloads based on change detection
  • Authenticates via OAuth2 client credentials flow
  • Submits payloads to an API endpoint with retry and backoff logic
  • Logs responses and updates submission state in SQL
  • Offers .exe packaging for offline deployment via PyInstaller
  • Includes CLI tools for test and verification modes
  • Project published help and how-to technical documentation

Supported platforms and databases

  • Python 3.10, 3.11, 3.12
  • Windows and Linux, ODBC required
  • Microsoft SQL Server 2012, and 2016 SP1 compatible
  • Aligns with the Standard Safeguarding Dataset, SSD schema

Installation

Clone the repo and install locally:

pip install .

Or run directly as a module:

python -m api_pipeline run

Environment Config

Copy or rename .env.example and fill in missing values using your DfE supplied values:

DB_CONNECTION_STRING=...
TOKEN_ENDPOINT=...
API_ENDPOINT=...
CLIENT_ID=...
CLIENT_SECRET=...
SCOPE=...
SUPPLIER_KEY=...
DEBUG=true

Pre flight checks

A separate archive, pre_flight_checks.zip, contains:

  • phase_1_api_credentials_smoke_test.ps1
  • ssd_csc_api_schema_checks.sql

Download, extract, run the smoke test first, then run schema checks against your deployed SSD schema.

Run API Pipeline

As a Python module

python -m api_pipeline run

As executable (packaged .exe):

csc_api_pipeline.exe

Note for Windows users:
The executable bundles Python and all required libraries, but it still requires the Microsoft ODBC Driver for SQL Server to be installed on your machine. We expect most LA colleagues will have this by default. But if not:
Download and install ODBC Driver 18 for SQL Server from the official Microsoft site:
https://learn.microsoft.com/en-us/sql/connect/odbc/download-odbc-driver-for-sql-server
Without this driver, the .exe won't be able to connect to your database.

Configuration: Place your .env file (based on .env.example) in the same folder where you run the .exe. The tool will read from current working directory.

CLI Commands

Run local diagnostics (limited options at the moment):

python -m api_pipeline test-endpoint
python -m api_pipeline test-db-connection
python -m api_pipeline test-schema

Using the installed CLI (after pip install):

d2i-csc-api run
d2i-csc-api test-endpoint
d2i-csc-api test-db-connection
d2i-csc-api test-schema

From the Windows executable:

csc_api_pipeline.exe test-endpoint
csc_api_pipeline.exe test-db-connection
csc_api_pipeline.exe test-schema

CLI Help

d2i-csc-api --help
csc_api_pipeline.exe --help

Returns:

CSC API Pipeline CLI

Usage:
  d2i-csc-api [command]
  csc_api_pipeline.exe [command]

Commands:
  run             Run full API submission process
  test-endpoint   Check API connectivity and token authentication
  test-db-connection   Check database connection
  test-schema     Validate required table structure/schema

On Windows user installs, ensure your Python scripts directory is on PATH (e.g. %APPDATA%\Python\Python310\Scripts), or call inside a virtual env.

Verifying Executable Contents

To help confirm that downloaded .exe is safe and built from the provided Python source code:

Check the SHA256 Hash

Each file on GitHub Releases page includes a sha256: hash. After downloading, you can verify file integrity with:

On Windows PowerShell:

Get-FileHash .\csc_api_pipeline.exe -Algorithm SHA256

On Linux/macOS:

shasum -a 256 csc_api_pipeline.exe

Compare this output to hash shown next to .exe in the release.

Rebuild Locally (Advanced)

If needed, you can rebuild the .exe yourself from source:

git clone https://github.com/data-to-insight/dfe-csc-api-data-flows.git
cd dfe_csc_api_data_flows
pip install -r requirements.txt
pyinstaller api_pipeline/entry_point.py --onefile --name csc_api_pipeline

Then compare hash of the new dist/csc_api_pipeline.exe with downloaded one.

This ensures full transparency of the release process.

(D2I Dev only)Documentation

Documentation is maintained under docs/ and built via MkDocs

  • Local preview: mkdocs serve
  • Static build: mkdocs build
  • PDF export: mkdocs-with-pdf build

Site (and release updates) auto-deploys via Git Pages on push to main into : data-to-insight.github.io/dfe-csc-api-data-flows

Workflows:

  • .github/workflows/build-api-pipeline-pkg.yml – build Py distribution artifacts (sdist & wheel) and uploads as Git Actions artifact
  • .github/workflows/build-release-exe.yml – build Windows exe
  • .github/workflows/gh-pages.yml – build and deploy MkDocs site

Note: pyproject.toml and MANIFEST.in live at project root (for PEP621 + package-data inclusion).

Git Actions Workflows

  1. build-api-pipeline-pkg.yml – Build .whl and .tar.gz Python packages and upload as Git Actions artifacts (triggered by push or PR to main)
  2. build-release-exe.yml – On version tag push or Git Release, build Windows .exe, package into release.zip, include .env.example, README.md, plus .whl and .tar.gz, then upload to Git Release
  3. gh-pages.yml – On push to main, build and deploy MkDocs site to Git Pages

Git Actions Diagram

flowchart LR
  %% Triggers
  A1[Push to main]
  A2[Pull request to main]
  B1[Version tag push v1.2.3]
  B2[GitHub Release event]

  %% Workflows
  W1[build-api-pipeline-pkg.yml]
  W2[build-release-exe.yml]
  W3[gh-pages.yml]

  %% Outputs
  O11[Wheel .whl]
  O12[Source tarball .tar.gz]

  O21[csc_api_pipeline.exe]
  O22[release.zip]
  O23[Wheel and sdist]
  O24[.env.example]
  O25[README.md]

  O31[Deployed MkDocs site]

  %% Edges
  A1 --> W1
  A2 --> W1
  B1 --> W2
  B2 --> W2
  A1 --> W3

  W1 --> O11
  W1 --> O12

  W2 --> O21
  W2 --> O22
  W2 --> O23
  W2 --> O24
  W2 --> O25

  W3 --> O31
Loading

Project Structure

File / Folder Purpose
api_pipeline/ Core pipeline code
api_pipeline/entry_point.py Standalone launcher
api_pipeline/config.py Loads environment and config values
api_pipeline/auth.py Handles OAuth authentication
api_pipeline/db.py Manages SQL Server access
api_pipeline/payload.py Builds JSON payloads
api_pipeline/tests.py Diagnostics and CLI tools
docs/ MkDocs site content
.github/workflows/ CI and deployment definitions
pyproject.toml Packaging metadata and build-system
MANIFEST.in Include non-code files in sdist
README.md This file
LICENSE Licensing information

License

MIT License. See LICENSE file.

(D2I dev) Notes

  • Run using python -m api_pipeline in dev
  • Maintain .env in root for local config
  • Build Windows executable using:
pyinstaller api_pipeline/entry_point.py --onefile --name csc_api_pipeline
python -m build --sdist --wheel --outdir dist

- Check environment before release:

gitleaks detect --no-git --source=. --report-path=current_only.json

- Release Process (D2I dev)

Use ./release.sh to bump version, build Python package (sdist + wheel), (optionally) build .exe, zip artifacts, tag, and push.
Trigger workflows via pushing a vX.Y.Z tag or publishing a Release in GitHub UI.

Badges

Python Build License

Support

For technical issues, raise a GitHub Issue(not yet enabled) or contact the D2I API team.

About

DfE CSC Private Dashboard API - Early adopters daily data flows pilot

data-to-insight.github.io/dfe-csc-api-data-flows/

Topics

python api dashboard pipeline powershell pilot dfe

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 4

v0.3.4 Latest
Nov 28, 2025
+ 3 releases

Languages