miki725/django-rest-framework-bulk miki725/django-rest-framework-bulk

  • Stars
    star
    520
  • Rank 85,117 (Top 2 %)
  • Language
    Python
  • License
    Other
  • Created almost 11 years ago
  • Updated about 4 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
miki725/django-rest-framework-bulk
github

miki725

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Django REST Framework bulk CRUD view mixins

Django REST Framework Bulk

https://badge.fury.io/py/djangorestframework-bulk.png https://travis-ci.org/miki725/django-rest-framework-bulk.svg?branch=master

Django REST Framework bulk CRUD view mixins.

Overview

Django REST Framework comes with many generic views however none of them allow to do bulk operations such as create, update and delete. To keep the core of Django REST Framework simple, its maintainer suggested to create a separate project to allow for bulk operations within the framework. That is the purpose of this project.

Requirements

  • Python>=2.7
  • Django>=1.3
  • Django REST Framework >= 3.0.0
  • REST Framework >= 2.2.5 (only with Django<1.8 since DRF<3 does not support Django1.8)

Installing

Using pip:

$ pip install djangorestframework-bulk

or from source code:

$ pip install -e git+http://github.com/miki725/django-rest-framework-bulk#egg=djangorestframework-bulk

Example

The bulk views (and mixins) are very similar to Django REST Framework's own generic views (and mixins):

from rest_framework_bulk import (
    BulkListSerializer,
    BulkSerializerMixin,
    ListBulkCreateUpdateDestroyAPIView,
)

class FooSerializer(BulkSerializerMixin, ModelSerializer):
    class Meta(object):
        model = FooModel
        # only necessary in DRF3
        list_serializer_class = BulkListSerializer

class FooView(ListBulkCreateUpdateDestroyAPIView):
    queryset = FooModel.objects.all()
    serializer_class = FooSerializer

The above will allow to create the following queries

# list queryset
GET

# create single resource
POST
{"field":"value","field2":"value2"}     <- json object in request data

# create multiple resources
POST
[{"field":"value","field2":"value2"}]

# update multiple resources (requires all fields)
PUT
[{"field":"value","field2":"value2"}]   <- json list of objects in data

# partial update multiple resources
PATCH
[{"field":"value"}]                     <- json list of objects in data

# delete queryset (see notes)
DELETE

Router

The bulk router can automatically map the bulk actions:

from rest_framework_bulk.routes import BulkRouter

class UserViewSet(BulkModelViewSet):
    model = User

    def allow_bulk_destroy(self, qs, filtered):
        """Don't forget to fine-grain this method"""

router = BulkRouter()
router.register(r'users', UserViewSet)

DRF3

Django REST Framework made many API changes which included major changes in serializers. As a result, please note the following in order to use DRF-bulk with DRF3:

  • You must specify custom list_serializer_class if your view(set) will require update functionality (when using BulkUpdateModelMixin)

  • DRF3 removes read-only fields from serializer.validated_data. As a result, it is impossible to correlate each validated_data in ListSerializer with a model instance to update since validated_data will be missing the model primary key since that is a read-only field. To deal with that, you must use BulkSerializerMixin mixin in your serializer class which will add the model primary key field back to the validated_data. By default id field is used however you can customize that field by using update_lookup_field in the serializers Meta:

    class FooSerializer(BulkSerializerMixin, ModelSerializer):
    class Meta(object):
        model = FooModel
        list_serializer_class = BulkListSerializer
        update_lookup_field = 'slug'

Notes

Most API urls have two URL levels for each resource:

  1. url(r'foo/', ...)
  2. url(r'foo/(?P<pk>\d+)/', ...)

The second url however is not applicable for bulk operations because the url directly maps to a single resource. Therefore all bulk generic views only apply to the first url.

There are multiple generic view classes in case only a certail bulk functionality is required. For example ListBulkCreateAPIView will only do bulk operations for creating resources. For a complete list of available generic view classes, please take a look at the source code at generics.py as it is mostly self-explanatory.

Most bulk operations are pretty safe in terms of how they operate, that is you explicitly describe all requests. For example, if you need to update 3 specific resources, you have to explicitly identify those resources in the request's PUT or PATCH data. The only exception to this is bulk delete. Consider a DELETE request to the first url. That can potentially delete all resources without any special confirmation. To try to account for this, bulk delete mixin allows to implement a hook to determine if the bulk delete request should be allowed:

class FooView(BulkDestroyAPIView):
    def allow_bulk_destroy(self, qs, filtered):
        # custom logic here

        # default checks if the qs was filtered
        # qs comes from self.get_queryset()
        # filtered comes from self.filter_queryset(qs)
        return qs is not filtered

By default it checks if the queryset was filtered and if not will not allow the bulk delete to complete. The logic here is that if the request is filtered to only get certain resources, more attention was payed hence the action is less likely to be accidental. On how to filter requests, please refer to Django REST docs. Either way, please use bulk deletes with extreme caution since they can be dangerous.

More Repositories

1

django-url-filter

Django URL Filter provides a safe way to filter data via human-friendly URLs.
Python
333
star
2

alchemy-mock

SQLAlchemy mock helpers.
Python
82
star
3

importanize

Utility for organizing Python imports using PEP8 or custom rules
Python
66
star
4

Django-jQuery-File-Uploader-Integration-demo

A simple example of how to integrate jQuery File Uploader in Django while preserving Django's CSRF protection
JavaScript
31
star
5

django-gevent-deploy

Hook to manage.py to be able to start gevent WSGI server
Python
30
star
6

django-url-filter-deprecated

DEPRECATED. Please use https://github.com/miki725/django-url-filter instead.
17
star
7

xunitmerge

Utility for merging multiple XUnit xml reports into a single xml report.
Python
15
star
8

django-sqrl

Django auth implementation for SQRL (https://www.grc.com/sqrl/sqrl.htm)
Python
14
star
9

django-sub-query

Django app which uses SQL sub-queries to solve some ORM limitations
Python
11
star
10

tno

Set of web tools following TNO cryptography principle
Python
8
star
11

django-auxilium

Django utility app to help in Django development
Python
8
star
12

md2pdf-ieee-sample

TeX
5
star
13

backblaze-b2

Library for interacting with Backblaze B2 object storage
Python
4
star
14

formslayer

Django application which implements RESTful API for working with PDFs
Python
3
star
15

encode.js

Html encode/decode
JavaScript
3
star
16

md2pdf-ieee

Templates to convert md2pdf to ieee
TeX
2
star
17

neovim-sh

Python
2
star
18

django-debug-toolbar-alchemy

Django Debug Toolbar panel for SQLAlchemy.
Python
2
star
19

django-multires

Django app which provides db-backed multiple resolutions for images
2
star
20

.dotfiles

Lua
2
star
21

editable

In place editing made easy
JavaScript
2
star
22

pyzenfolio

Light-weight Zenfolio API wrapper
Python
1
star
23

applied_crypto_2022_spring_ta

Python
1
star
24

fish-docker

Shell
1
star
25

mro-tools

Various cli tools related to MRO. Useful for debugging complex class strictures.
Python
1
star
26

hint

Bash CLI for devhints.io
Shell
1
star