Some gears collection for getting life a little bit better.
pip install drf-gears
It gives you an ability to have multiple get_queryset methods for every needs.
querysets - is a dictionary of named querysets. You can provide different querysets for any action.
from rest_framework import viewsets
from rest_framework.decorators import action
from gears import ConditionalQuerysetMixin
from .models import MyModel
class MyModelViewSet(
ConditionalQuerysetMixin,
viewsets.ModelViewSet,
):
querysets = {
'list': MyModel.objects.all(),
'custom': MyModel.objects.filter(),
}
@action(methods=['get'])
def some_action(self, request, *args, **kwargs):
qs = self.get_queryset(name='custom')
...
Use named methods like get_name_queryset, where name is an any name.
from rest_framework import viewsets
from rest_framework.decorators import action
from gears import ConditionalQuerysetMixin
from .models import MyModel
class MyModelViewSet(
ConditionalQuerysetMixin,
viewsets.ModelViewSet,
):
def get_custom_queryset(self, qs):
# do something
return qs
@action(methods=['get'])
def some_action(self, request, *args, **kwargs):
qs = self.get_queryset(name='custom')
...
If ConditionalQuerysetMixin can't find a mapped or named queryset, it will try to find a method with a ViewSet action instead of name.
E.g: get_list_queryset, get_update_queryset, get_custom_action_queryset.
from rest_framework import viewsets
from gears import ConditionalQuerysetMixin
from .models import MyModel
class MyModelViewSet(
ConditionalQuerysetMixin,
viewsets.ModelViewSet,
):
def get_list_queryset(self, qs):
# do something
return qs
def get_retrieve_queryset(self, qs):
# do something
return qs
def get_some_action_queryset(self, qs):
# do something
return qs
Use this mixin if you need different serializers for any action.
By default, will be used a serializer_class or a default item of serializers dictionary.
By the way, you can change the default key providing default_name attribute.
from rest_framework import viewsets
from rest_cogs.mixins import SerializersMixin
class SomeViewSet(
SerializersMixin,
viewsets.ModelViewSet,
):
serializers = {
'default': DefaultModelSerializer,
'list': AdditionalModelSerializer,
}
Also, you can use a get_serializer method providing a specific name when you need to use a particular serializer.
from rest_framework import viewsets
from rest_framework.decorators import action
from rest_cogs.mixins import SerializersMixin
class SomeViewSet(
SerializersMixin,
viewsets.ModelViewSet,
):
serializers = {
'default': DefaultModelSerializer,
'some_action': SomeActionModelSerializer,
'list': ListModelSerializer,
}
@action(methods=['get'])
def some_action(self, request, *args, **kwargs):
serializer = self.get_serializer() # SomeActionModelSerializer
serializer = self.get_serializer(serializer_name='list') # ListModelSerializer
...
This part of specification is in progress.
There are a pair of things, which makes a charm when you work with API responses.
Imagine, every API response has an expected structure. I mean every response!
For example, take a look at this paginated objects list API response:
{
"success": true,
"status_code": 200,
"pagination": {
"count": 2,
"next": null,
"previous": null
},
"errors": [],
"data": [
{
"id": "c65e9bf7-1724-4593-bf57-394cea491887",
"phone_number": "10001001001"
},
{
"id": "d7c9342d-0bd8-44e7-8e3c-44a18ecbfb8f",
"phone_number": "10001001002"
}
]
}
... and this validation error response.
{
"success": false,
"status_code": 400,
"pagination": null,
"errors": [
[
{
"code": "value_required",
"location": "phone_number",
"description": "This field is required.",
"detail": null
}
],
[
{
"code": "value_required",
"location": "password",
"description": "This field is required.",
"detail": null
}
]
],
"data": null
}
... and this authorization error too.
{
"success": false,
"status_code": 403,
"pagination": null,
"errors": [
{
"code": "not_authenticated",
"location": null,
"description": "Authentication credentials were not provided.",
"detail": null
}
],
"data": null
}
All of these and any possible response will have the same structure:
boolean success, integer status_code, pagination object, a list of errors objects and the requested data of course.
You should just use a single gear for it:
REST_FRAMEWORK = {
...
'DEFAULT_RENDERER_CLASSES': (
'gears.ApiRenderer', # <-- that's it
),
...
}
Also, you could use the exception handler, if you want to see the same structure errors:
REST_FRAMEWORK = {
...
'EXCEPTION_HANDLER': 'gears.exception_handler', # <-- that's it
...
}
You have an ability to remap the standard error codes if you want.
Yeah, sometimes the standard ones are not verbose enough.
But you could handle this codes and remap them on your taste.
Just add the following settings variable and describe the errors' behaviour.
FYI, you're able to set not only the codes, but description, details and location are available as well.
# setting.py
from gears import Error
RESPONSE_ERROR_MAPPING = {
'required': Error(code='value_required'),
...
}
Before we start. We assumed you use Django Rest Framework and djangorestframework-simplejwt packages for handling the JWT authorisation process.
There are some gears which want to help you fill tokens with an additional payload.
Firstly, add the JWTUserModelMixin to your user model. It delivers a set of methods for extending the tokens.
from gears import JWTUserModelMixin
class User(JWTUserModelMixin, BaseUserModel):
...
def get_public_jwt_data(self):
return {
'name': self.name,
}
def get_private_jwt_data(self):
return {
'address': self.address,
}
You should override these two method. The first one must return a dictionary with an open data. The second one must return a dictionary with a sensitive data, which must be closed for anyone.
Keep on mind, JWT tokens could be unpacked by any person, so the information inside the token available for anyone who has this token.
If you need to fill JWT token with a sensitive data, please put it to the get_private_jwt_data. The entire data in this method will be encrypted with a secret symmetric key you will generate on the next step.
Now we should generate a secret key and put it into the settings:
from gears import TokenEncryption
secret_key = TokenEncryption.generate_key()
The value of the secret_key you must put to the project's settings.
It would be better to keep it in the virtual environment variable.
import os
JWT_PAYLOAD_ENCRYPTION_KEY = os.environ.get('JWT_PAYLOAD_ENCRYPTION_KEY')
There was used the symmetric Fernet algorithm. Anyone, who has a secret key could decrypt data.
An example how to do it on python:
from gears import TokenEncryption
decrypted_data = TokenEncryption.decrypt_data(encrypted_data, secret_key)
Google help you if you need similar functionality for another programming language.
FAQs
Some gears collection for getting life a little bit better.
We found that drf-gears demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Malicious Go packages are impersonating popular libraries to install hidden loader malware on Linux and macOS, targeting developers with obfuscated payloads.
Security News
Bybit's $1.46B hack by North Korea's Lazarus Group pushes 2025 crypto losses to $1.6B in just two months, already surpassing all of 2024's $1.49B total.
Security News
OpenSSF has published OSPS Baseline, an initiative designed to establish a minimum set of security-related best practices for open source software projects.