Merge pull request #214 from novafloss/errors-apiv2

Change errors format in the builder

Author: mgu

CHANGELOG.rst

@@ -5,7 +5,8 @@ ChangeLog
 master (unreleased)
 ===================
 
-nothing yet.
+- Change errors format returned in the builder in order to have something
+  more constistant (#214)
 
 Release 0.9.1 (2017-04-24)
 ==========================

demo/tests/test_post_save_callbacks.py

@@ -58,7 +58,7 @@ def test_create_error_post(self):
                 reverse('formidable:form_create'), form_data_without_items,
                 format='json'
             )
-            self.assertEquals(res.status_code, 400)
+            self.assertEquals(res.status_code, 422)
             self.assertEqual(patched_callback.call_count, 1)
 
     @override_settings(
@@ -137,7 +137,7 @@ def test_update_error_post(self):
                 reverse('formidable:form_detail', args=[self.form.id]),
                 form_data_without_items, format='json'
             )
-            self.assertEquals(res.status_code, 400)
+            self.assertEquals(res.status_code, 422)
             self.assertEqual(patched_callback.call_count, 1)
 
     @override_settings(

demo/tests/test_post_save_callbacks_regression_tests.py

@@ -32,7 +32,7 @@ def test_create_error(self):
             reverse('formidable:form_create'), form_data_without_items,
             format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
 
     @override_settings()
     def test_create_no_settings_no_error(self):
@@ -52,7 +52,7 @@ def test_create_no_settings_error(self):
             reverse('formidable:form_create'), form_data_without_items,
             format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
 
 
 class UpdateFormTestCase(APITestCase):
@@ -80,7 +80,7 @@ def test_update_error(self):
             reverse('formidable:form_detail', args=[self.form.id]),
             form_data_without_items, format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
 
     @override_settings()
     def test_update_no_settings_no_error(self):
@@ -101,4 +101,4 @@ def test_update_no_settings_error(self):
             reverse('formidable:form_detail', args=[self.form.id]),
             form_data_without_items, format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)

demo/tests/tests_integration.py

@@ -27,6 +27,21 @@
     from mock import patch
 
 
+class FormidableAPITestCase(APITestCase):
+
+    def check_errors_format(self, data):
+        # keys must be in {'code', 'message', 'errors'}
+        # 'errors' is optional
+        self.assertFalse(set(data.keys()) - {'code', 'message', 'errors'})
+        self.assertIn('code', data)
+        self.assertIn('message', data)
+        for error in data.get('errors', []):
+            self.assertFalse(set(error.keys()) - {'code', 'message', 'field'})
+            # 'field' is optional
+            self.assertIn('code', error)
+            self.assertIn('message', error)
+
+
 class MyTestForm(FormidableForm):
 
     name = fields.CharField(label='Name', accesses={'jedi': 'REQUIRED'})
@@ -70,7 +85,7 @@ class Meta:
         ]
 
 
-class CreateFormTestCase(APITestCase):
+class CreateFormTestCase(FormidableAPITestCase):
 
     def test_simple(self):
         initial_count = Formidable.objects.count()
@@ -99,7 +114,8 @@ def test_fields_slug(self):
         res = self.client.post(
             reverse('formidable:form_create'), data, format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
+        self.check_errors_format(res.data)
 
     def test_with_items_in_fields(self):
         initial_count = Formidable.objects.count()
@@ -120,7 +136,8 @@ def test_forgotten_items_fields(self):
             reverse('formidable:form_create'), form_data_without_items,
             format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
+        self.check_errors_format(res.data)
 
     def test_with_unknown_accesses(self):
         form_data_copy = deepcopy(form_data)
@@ -130,10 +147,11 @@ def test_with_unknown_accesses(self):
             reverse('formidable:form_create'), form_data_copy,
             format='json'
         )
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
+        self.check_errors_format(res.data)
 
 
-class UpdateFormTestCase(APITestCase):
+class UpdateFormTestCase(FormidableAPITestCase):
 
     def setUp(self):
         super(UpdateFormTestCase, self).setUp()
@@ -203,7 +221,8 @@ def test_duplicate_items_update(self):
         data['fields'] *= 2
         res = self.client.put(self.edit_url, data, format='json')
         # expect validation error
-        self.assertEquals(res.status_code, 400)
+        self.assertEquals(res.status_code, 422)
+        self.check_errors_format(res.data)
 
     def test_delete_field_on_update(self):
         self.form.fields.create(
@@ -270,7 +289,7 @@ def order_by(self, *fields):
         self.assertEquals(res.status_code, 200, res)
 
 
-class TestAccess(APITestCase):
+class TestAccess(FormidableAPITestCase):
 
     def test_get(self):
         response = self.client.get(reverse('formidable:accesses_list'))
@@ -292,7 +311,7 @@ def test_get(self):
                 self.assertEqual(access['preview_as'], 'FORM')
 
 
-class TestPresetsList(APITestCase):
+class TestPresetsList(FormidableAPITestCase):
 
     def test_get(self):
         response = self.client.get(reverse('formidable:presets_list'))
@@ -306,10 +325,10 @@ def test_get(self):
             self.assertIn('arguments', preset)
 
 
-class TestChain(APITestCase):
+class TestChain(FormidableAPITestCase):
 
     def setUp(self):
-        super(APITestCase, self).setUp()
+        super(FormidableAPITestCase, self).setUp()
         self.form = MyTestForm.to_formidable(label='Jedi Form')
         self.assertTrue(self.form.pk)
 
@@ -337,7 +356,7 @@ def test_jedi_form_form_invalid(self):
         )
 
 
-class TestContextFormEndPoint(APITestCase):
+class TestContextFormEndPoint(FormidableAPITestCase):
 
     @classmethod
     def setUpClass(cls):
@@ -378,7 +397,7 @@ class Meta:
         ]
 
 
-class TestValidationEndPoint(APITestCase):
+class TestValidationEndPoint(FormidableAPITestCase):
 
     def setUp(self):
         super(TestValidationEndPoint, self).setUp()

formidable/exception_handler.py

@@ -0,0 +1,178 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django import forms
+from django.core.exceptions import NON_FIELD_ERRORS, PermissionDenied
+from django.forms.utils import ErrorDict, ErrorList
+from django.http import Http404
+
+import six
+
+from rest_framework import exceptions
+from rest_framework.response import Response
+from rest_framework.settings import api_settings
+
+
+def _reformat_drf_errors(errors, detail, path=None):
+    if path is None:
+        path = []
+    if isinstance(detail, dict):
+        for k, v in detail.items():
+            if k == api_settings.NON_FIELD_ERRORS_KEY:
+                new_path = path
+            else:
+                new_path = path + [k]
+            _reformat_drf_errors(errors, v, new_path)
+    elif isinstance(detail, list):
+        for idx, v in enumerate(detail):
+            if v:
+                _reformat_drf_errors(errors, v, path + ['{}'.format(idx)])
+    else:
+        # errors are always coerced to a list so we
+        # can skip the last level in our path
+        path.pop()
+        message = six.text_type(detail)
+        error = {
+            'message': message,
+            'code': getattr(detail, 'code', 'invalid') or 'invalid',
+        }
+        # do not put a field attribute on global validaiton errors
+        if path:
+            error['field'] = '.'.join(path)
+        errors.append(error)
+
+
+def format_validation_error(detail):
+    errors = []
+    _reformat_drf_errors(errors, detail)
+    return {
+        'code': 'validation_error',
+        'message': 'Validation failed',
+        'errors': errors,
+    }
+
+
+def _reformat_forms_errors(errors, error, path=None):
+    if path is None:
+        path = []
+    if isinstance(error, ErrorDict):
+        for k, v in error.items():
+            if k == NON_FIELD_ERRORS:
+                new_path = path
+            else:
+                new_path = path + [k]
+            _reformat_forms_errors(errors, v, new_path)
+    elif isinstance(error, ErrorList):
+        for item in error.as_data():
+            _reformat_forms_errors(errors, item, path)
+    elif isinstance(error, list):
+        for item in error:
+            _reformat_forms_errors(errors, item, path)
+    else:
+        # django.core.exceptions.Exception
+        item = {
+            'message': six.text_type(error.message),
+            'code': error.code or 'invalid',
+        }
+        if path:
+            item['field'] = '.'.join(path)
+        errors.append(item)
+
+
+def format_forms_error(error):
+    errors = []
+    _reformat_forms_errors(errors, error)
+    return {
+        'code': 'validation_error',
+        'message': 'Validation failed',
+        'errors': errors,
+    }
+
+
+def exception_handler(exc, context):
+    """
+    Returns the response that should be used for any given exception.
+
+    By default we handle the REST framework `APIException`, and also
+    Django's built-in `Http404` and `PermissionDenied` exceptions.
+
+    Any unhandled exceptions may return `None`, which will cause a 500 error
+    to be raised.
+    """
+    headers = None
+    if isinstance(exc, exceptions.ValidationError):
+        data = format_validation_error(exc.detail)
+        # change default 400 status code from DRF to Unprocessable Entity
+        status_code = 422
+        # status_code = exc.status_code
+    elif isinstance(exc, exceptions.APIException):
+        headers = {}
+        if getattr(exc, 'auth_header', None):
+            headers['WWW-Authenticate'] = exc.auth_header
+        if getattr(exc, 'wait', None):
+            headers['Retry-After'] = '%d' % exc.wait
+
+        data = {
+            'code': getattr(exc.detail, 'code', 'error'),
+            'message': six.text_type(exc.detail),
+        }
+        status_code = exc.status_code
+    elif isinstance(exc, Http404):
+        data = {
+            'code': 'not_found',
+            'message': six.text_type(exceptions.NotFound.default_detail),
+        }
+        status_code = 404
+    elif isinstance(exc, PermissionDenied):
+        data = {
+            'code': 'permission_denied',
+            'message': six.text_type(
+                exceptions.PermissionDenied.default_detail),
+        }
+        status_code = 403
+    elif isinstance(exc, forms.ValidationError):
+        data = format_forms_error(exc.error_list)
+        status_code = 422
+    else:
+        # unhandled exception, return generic error
+        # TODO add logs ?
+        data = {
+            'code': 'error',
+            'message': six.text_type(
+                exceptions.APIException.default_detail),
+        }
+        status_code = 500
+
+    return Response(data, status=status_code, headers=headers)
+
+
+class ExceptionHandlerMixin(object):
+    """
+    this mixin replaces the exception handler from the APIView
+
+    Warning: must be set *after* `CallbackMixin`.
+    """
+
+    def handle_exception(self, exc):
+        """
+        Handle any exception that occurs, by returning an appropriate response,
+        or re-raising the error.
+        """
+        if isinstance(exc, (exceptions.NotAuthenticated,
+                            exceptions.AuthenticationFailed)):
+            # WWW-Authenticate header for 401 responses, else coerce to 403
+            auth_header = self.get_authenticate_header(self.request)
+
+            if auth_header:
+                exc.auth_header = auth_header
+            else:
+                exc.status_code = 403
+
+        context = self.get_exception_handler_context()
+        response = exception_handler(exc, context)
+
+        if response is None:
+            raise
+
+        response.exception = True
+        return response

formidable/serializers/forms.py

@@ -2,14 +2,13 @@
 
 from __future__ import unicode_literals
 
-from django.core.exceptions import ValidationError
 from django.db import transaction
-
 from formidable.models import Formidable
 from formidable.serializers import fields
 from formidable.serializers.common import WithNestedSerializer
 from formidable.serializers.presets import PresetModelSerializer
 from rest_framework import serializers
+from rest_framework.exceptions import ValidationError
 
 
 class FormidableSerializer(WithNestedSerializer):