darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-09 14:42:24 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
4114306307b728668a6eaaf6350c34b25f74d3fc
notifications-api/app/__init__.py

598 lines
21 KiB
Python
Raw Normal View History

revert truststore
2025-07-24 10:01:03 -07:00
import logging as real_logging
import os
import secrets
import string
import time
import uuid
from contextlib import contextmanager
from threading import Lock
from time import monotonic
from celery import Celery, Task, current_task
from flask import (
try using truststore
2025-07-22 10:44:14 -07:00
current_app,
g,
has_request_context,
jsonify,
make_response,
request,
)
revert truststore
2025-07-24 10:01:03 -07:00
from flask.ctx import has_app_context
from flask_migrate import Migrate
from flask_socketio import SocketIO
from flask_sqlalchemy import SQLAlchemy as _SQLAlchemy
from sqlalchemy import event
from werkzeug.exceptions import HTTPException as WerkzeugHTTPException
from werkzeug.local import LocalProxy
from app import config
from app.clients import NotificationProviderClients
from app.clients.cloudwatch.aws_cloudwatch import AwsCloudwatchClient
from app.clients.document_download import DocumentDownloadClient
from app.clients.email.aws_ses import AwsSesClient
from app.clients.email.aws_ses_stub import AwsSesStubClient
from app.clients.sms.aws_sns import AwsSnsClient
from notifications_utils import logging, request_helper
from notifications_utils.clients.encryption.encryption_client import Encryption
from notifications_utils.clients.redis.redis_client import RedisClient
from notifications_utils.clients.zendesk.zendesk_client import ZendeskClient
New config style
2016-07-05 15:38:20 +01:00
change page size
2025-05-21 13:44:14 -07:00
job_cache = {}
job_cache_lock = Lock()
Set statement timeout on all DB connections A recent issue with a long-running query (#2288) highlighted the fact that even though the original HTTP connection might be closed (for example after gorouter timeout of 15 minutes, which returns a 504 response to the client), the request worker will not be stopped. This means that the worker is spending time and potentially DB resources generating a response that will never be delivered. Gunicorn's timeout setting only applies to sync workers and there doesn't seem to be an option to interrupt individual requests in gevent/eventlet deployments. Since the most likely (and potentially most dangerous) scenario for this is a long-running DB query, we can set a statement timeout on our DB connections. This will raise a sqlalchemy.exc.OperationalError (wrapping psycopg2.extensions.QueryCanceledError), interrupting the request after the given timeout has been reached. This is a Postgres client setting, so the database itself will abort the transaction when it reaches the set timeout. Since this will also apply to our celery tasks (including potentially long-running nightly tasks) we set a timeout of 20 minutes to begin with. This can potentially be split in the future to set a different value for each app, so that we could limit API requests even more.
2019-01-09 12:22:51 +00:00
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
class NotifyCelery(Celery):
def init_app(self, app):
self.task_cls = make_task(app)
# Configure Celery app with options from the main app config.
self.config_from_object(app.config["CELERY"])
stop workers from propagating logs
2024-12-18 11:59:30 -08:00
self.conf.worker_hijack_root_logger = False
logger = real_logging.getLogger("celery")
logger.propagate = False
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
def send_task(self, name, args=None, kwargs=None, **other_kwargs):
other_kwargs["headers"] = other_kwargs.get("headers") or {}
if has_request_context() and hasattr(request, "request_id"):
other_kwargs["headers"]["notify_request_id"] = request.request_id
elif has_app_context() and "request_id" in g:
other_kwargs["headers"]["notify_request_id"] = g.request_id
return super().send_task(name, args, kwargs, **other_kwargs)
Set statement timeout on all DB connections A recent issue with a long-running query (#2288) highlighted the fact that even though the original HTTP connection might be closed (for example after gorouter timeout of 15 minutes, which returns a 504 response to the client), the request worker will not be stopped. This means that the worker is spending time and potentially DB resources generating a response that will never be delivered. Gunicorn's timeout setting only applies to sync workers and there doesn't seem to be an option to interrupt individual requests in gevent/eventlet deployments. Since the most likely (and potentially most dangerous) scenario for this is a long-running DB query, we can set a statement timeout on our DB connections. This will raise a sqlalchemy.exc.OperationalError (wrapping psycopg2.extensions.QueryCanceledError), interrupting the request after the given timeout has been reached. This is a Postgres client setting, so the database itself will abort the transaction when it reaches the set timeout. Since this will also apply to our celery tasks (including potentially long-running nightly tasks) we set a timeout of 20 minutes to begin with. This can potentially be split in the future to set a different value for each app, so that we could limit API requests even more.
2019-01-09 12:22:51 +00:00
class SQLAlchemy(_SQLAlchemy):
"""We need to subclass SQLAlchemy in order to override create_engine options"""
def apply_driver_hacks(self, app, info, options):
Upgrade pip packages
2022-08-12 15:37:39 +00:00
sa_url, options = super().apply_driver_hacks(app, info, options)
fix db connection pool
2025-01-09 10:53:33 -08:00
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
if "connect_args" not in options:
options["connect_args"] = {}
options["connect_args"]["options"] = "-c statement_timeout={}".format(
int(app.config["SQLALCHEMY_STATEMENT_TIMEOUT"]) * 1000
Set statement timeout on all DB connections A recent issue with a long-running query (#2288) highlighted the fact that even though the original HTTP connection might be closed (for example after gorouter timeout of 15 minutes, which returns a 504 response to the client), the request worker will not be stopped. This means that the worker is spending time and potentially DB resources generating a response that will never be delivered. Gunicorn's timeout setting only applies to sync workers and there doesn't seem to be an option to interrupt individual requests in gevent/eventlet deployments. Since the most likely (and potentially most dangerous) scenario for this is a long-running DB query, we can set a statement timeout on our DB connections. This will raise a sqlalchemy.exc.OperationalError (wrapping psycopg2.extensions.QueryCanceledError), interrupting the request after the given timeout has been reached. This is a Postgres client setting, so the database itself will abort the transaction when it reaches the set timeout. Since this will also apply to our celery tasks (including potentially long-running nightly tasks) we set a timeout of 20 minutes to begin with. This can potentially be split in the future to set a different value for each app, so that we could limit API requests even more.
2019-01-09 12:22:51 +00:00
)
fix db connection pool
2025-01-09 10:53:33 -08:00
Upgrade pip packages
2022-08-12 15:37:39 +00:00
return (sa_url, options)
Set statement timeout on all DB connections A recent issue with a long-running query (#2288) highlighted the fact that even though the original HTTP connection might be closed (for example after gorouter timeout of 15 minutes, which returns a 504 response to the client), the request worker will not be stopped. This means that the worker is spending time and potentially DB resources generating a response that will never be delivered. Gunicorn's timeout setting only applies to sync workers and there doesn't seem to be an option to interrupt individual requests in gevent/eventlet deployments. Since the most likely (and potentially most dangerous) scenario for this is a long-running DB query, we can set a statement timeout on our DB connections. This will raise a sqlalchemy.exc.OperationalError (wrapping psycopg2.extensions.QueryCanceledError), interrupting the request after the given timeout has been reached. This is a Postgres client setting, so the database itself will abort the transaction when it reaches the set timeout. Since this will also apply to our celery tasks (including potentially long-running nightly tasks) we set a timeout of 20 minutes to begin with. This can potentially be split in the future to set a different value for each app, so that we could limit API requests even more.
2019-01-09 12:22:51 +00:00
fix db connection pool
2025-01-09 10:53:33 -08:00
# Set db engine settings here for now.
# They were not being set previous (despite environmental variables with appropriate
# sounding names) and were defaulting to low values
db = SQLAlchemy(
engine_options={
"pool_size": config.Config.SQLALCHEMY_POOL_SIZE,
"max_overflow": 10,
"pool_timeout": config.Config.SQLALCHEMY_POOL_TIMEOUT,
"pool_recycle": config.Config.SQLALCHEMY_POOL_RECYCLE,
"pool_pre_ping": True,
}
)
lazy init migrate
2025-10-02 09:19:05 -07:00
migrate = None
Fixing up tests to validate the call to the celery tasks. - mocker used to test call or otherwise of the task - no new tests just a spring clean
2016-02-16 14:06:56 +00:00
notify_celery = NotifyCelery()
more mocks
2025-10-02 10:49:05 -07:00
aws_ses_client = None
lazy init migrate
2025-10-02 09:19:05 -07:00
aws_ses_stub_client = None
lazyinit aws_sns_client
2025-10-06 07:32:35 -07:00
aws_sns_client = None
lazy init aws_cloudwatch_client
2025-10-02 09:38:02 -07:00
aws_cloudwatch_client = None
lazy init encryption
2025-10-06 12:16:34 -07:00
encryption = None
lazy initialize zendesk_client
2025-10-02 07:36:55 -07:00
zendesk_client = None
Refactored the initialisation of the redis client to follow the model used in the StatsdClient. Basically wrapped the client so we can enable/disable, exception handle and so on.
2016-11-10 11:50:49 +00:00
redis_store = RedisClient()
lazy initialize document_download_client
2025-10-02 08:18:12 -07:00
document_download_client = None
fix references to gds
2023-08-17 09:01:53 -07:00
Update the flask-socketio config to play more nicely: * Reverts run commands to what they previously were * Addresses some outstanding linting/formatting * Accounts for proper config initialization (CORS, Redis) * Updates dependencies and pulls in latest changes from main Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
2025-04-16 17:43:10 -04:00
socketio = SocketIO(
cors_allowed_origins=[
config.Config.ADMIN_BASE_URL,
],
message_queue=config.Config.REDIS_URL,
logger=True,
engineio_logger=True,
)
Initial code added for models and services not functional yet. Bootstrap and migrations added for db.
2016-01-07 17:31:17 +00:00
rename clients to notification_provider_clients i think it's causing havoc with my attempts to mock stuff in the `app.clients` directory because it's also accessible at that path. the name's super vague and doesn't explain what it is anyway
2020-11-17 12:35:18 +00:00
notification_provider_clients = NotificationProviderClients()
Updated the Provider stats and rates DAO objects to query based on the identifier in the ProviderDetails object. - updated all tests - changed teardown to leave provider details rows on end of individual tests
2016-05-06 09:09:47 +01:00
Bump utils to bring in fix for optional placeholder bug See https://github.com/alphagov/notifications-utils/pull/878 for details. Changes we had to make for our app and tests to work correctly after the dependency updates: 1. Update emergency alerts polygons test because we changed how exact we are with locations of the points on the map. 2. Use Flask's g object to set additional request attributes So far we have been storing them in _request_ctx_stack which is an innard for Flask's request context. Because of major update to Werkzeug dependency, which Flask relies on, the way we were using it stopped working, so we had a new way to set those values. The way we set those values now, by using g object, seems to also be favoured in Flask documentation: https://flask.palletsprojects.com/en/1.1.x/reqcontext/#how-the-context-works
2021-07-07 17:35:15 +01:00
api_user = LocalProxy(lambda: g.api_user)
authenticated_service = LocalProxy(lambda: g.authenticated_service)
First pass at implementing API authentication using new JWT tokens - NOTE - this does not manage secrets. There is only one URL and there is no functionality implemented - prior to rolling out we need to store secrets properly Uses the JWT libraries in [https://github.com/alphagov/notifications-python-client](https://github.com/alphagov/notifications-python-client) - Tokens are checked on every request and will be rejected if token is invalid as per the rules in the python clients.
2015-12-15 10:47:20 +00:00
socket io setup
2025-04-09 16:56:42 -07:00
lazy initialize zendesk_client
2025-10-02 07:36:55 -07:00
def get_zendesk_client():
global zendesk_client
# Our unit tests mock anyway
if os.environ.get("NOTIFY_ENVIRONMENT") == "test":
return None
if zendesk_client is None:
cleanup
2025-10-03 09:22:55 -07:00
zendesk_client = ZendeskClient()
lazy initialize zendesk_client
2025-10-02 07:36:55 -07:00
return zendesk_client
fix tests
2025-10-02 11:56:20 -07:00
def get_aws_ses_client():
global aws_ses_client
if os.environ.get("NOTIFY_ENVIRONMENT") == "test":
return AwsSesClient()
if aws_ses_client is None:
raise RuntimeError(f"Celery not initialized aws_ses_client: {aws_ses_client}")
return aws_ses_client
lazyinit aws_sns_client
2025-10-06 07:32:35 -07:00
def get_aws_sns_client():
global aws_sns_client
if os.environ.get("NOTIFY_ENVIRONMENT") == "test":
return AwsSnsClient()
if aws_ses_client is None:
raise RuntimeError(f"Celery not initialized aws_sns_client: {aws_sns_client}")
return aws_sns_client
lazy init encryption
2025-10-06 12:58:43 -07:00
class FakeEncryptionApp:
config = None
def init_fake_encryption_app(self, config):
self.config = config
lazy init encryption
2025-10-06 12:16:34 -07:00
def get_encryption():
global encryption
if os.environ.get("NOTIFY_ENVIRONMENT") == "test":
lazy init encryption
2025-10-06 12:58:43 -07:00
encryption = Encryption()
fake_app = FakeEncryptionApp()
sekret = "SEKRET_KEY"
sekret.replace("K", "C")
fake_app.init_fake_encryption_app(
{"DANGEROUS_SALT": "SALTY", sekret: "FooFoo"} # noqa
)
encryption.init_app(fake_app)
return encryption()
lazy init encryption
2025-10-06 12:16:34 -07:00
if encryption is None:
raise RuntimeError(f"Celery not initialized encryption: {encryption}")
return encryption
lazy initialize document_download_client
2025-10-02 08:18:12 -07:00
def get_document_download_client():
global document_download_client
# Our unit tests mock anyway
if os.environ.get("NOTIFY_ENVIRONMENT") == "test":
return None
if document_download_client is None:
raise RuntimeError(
f"Celery not initialized document_download_client: {document_download_client}"
)
return document_download_client
Remove flask-script, move commands to click click (http://click.pocoo.org/) is used by flask to run its cli args. In removing flask_script (it's unmaintained), we had to migrate all our commands to use click. This is a change for the better in my eyes - you don't need to define the command in several places, and it makes managing options a bit easier. View diff with whitespace turned off unless you're a masochist.
2017-11-06 12:34:29 +00:00
def create_app(application):
lazy init encryption
2025-10-06 12:16:34 -07:00
global zendesk_client, migrate, document_download_client, aws_ses_client, aws_ses_stub_client, aws_sns_client, encryption # noqa
Run API on Paas
2016-12-08 12:12:45 +00:00
from app.config import configs
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
notify_environment = os.environ["NOTIFY_ENVIRONMENT"]
Revert celery4 Revert the following three pull requests: https://github.com/alphagov/notifications-api/pull/1085 https://github.com/alphagov/notifications-api/pull/1086 https://github.com/alphagov/notifications-api/pull/1088 celery 4.0.2 looked promising, however, on staging under mild load (5/sec api calls) the performance was actually worse than 3.1.25
2017-07-19 13:50:29 +01:00
Run API on Paas
2016-12-08 12:12:45 +00:00
application.config.from_object(configs[notify_environment])
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.config["NOTIFY_APP_NAME"] = application.name
Merge branch 'master' into move-sms-notifications-into-celery Conflicts: app/__init__.py tests/conftest.py
2016-02-17 09:14:37 +00:00
init_app(application)
Fix risk of uncaught exceptions due to gds metrics Similar to https://github.com/alphagov/notifications-admin/pull/3510 Because of https://github.com/alphagov/gds_metrics_python/pull/8
2020-07-08 16:51:41 +01:00
initial test socket io setup
2025-03-27 09:51:22 -07:00
socketio.init_app(application)
socket io setup
2025-04-09 16:56:42 -07:00
from app.socket_handlers import register_socket_handlers
Update the flask-socketio config to play more nicely: * Reverts run commands to what they previously were * Addresses some outstanding linting/formatting * Accounts for proper config initialization (CORS, Redis) * Updates dependencies and pulls in latest changes from main Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
2025-04-16 17:43:10 -04:00
socket io setup
2025-04-09 16:56:42 -07:00
register_socket_handlers(socketio)
Use function from utils to check secret header value This adds a before_request handler to check whether all incoming requests have the proxy header configured.
2017-11-14 14:26:00 +00:00
request_helper.init_app(application)
Initial code added for models and services not functional yet. Bootstrap and migrations added for db.
2016-01-07 17:31:17 +00:00
db.init_app(application)
Use only stdout logging in cloud.gov
2022-11-22 11:05:55 -05:00
logging.init_app(application)
Stub SES email client to avoid hitting SES during load testing If we set an environment variable, we can stub out calls to SES and send them to our own stub app. If the environment variable is not set, things work as normal. To be used alongside https://github.com/alphagov/notifications-email-provider-stub
2020-06-01 17:08:30 +01:00
lazy initialize zendesk_client
2025-10-02 07:36:55 -07:00
# start lazy initialization for gevent
lazy init migrate
2025-10-02 09:19:05 -07:00
migrate = Migrate()
migrate.init_app(application, db=db)
cleanup
2025-10-03 09:22:55 -07:00
if zendesk_client is None:
zendesk_client = ZendeskClient()
lazy initialize zendesk_client
2025-10-02 07:36:55 -07:00
zendesk_client.init_app(application)
lazy initialize document_download_client
2025-10-02 08:18:12 -07:00
document_download_client = DocumentDownloadClient()
document_download_client.init_app(application)
lazy init aws_cloudwatch_client
2025-10-02 09:38:02 -07:00
aws_cloudwatch_client = AwsCloudwatchClient()
aws_cloudwatch_client.init_app(application)
more mocks
2025-10-02 10:49:05 -07:00
aws_ses_client = AwsSesClient()
aws_ses_client.init_app()
lazy init migrate
2025-10-02 09:19:05 -07:00
aws_ses_stub_client = AwsSesStubClient()
aws_ses_stub_client.init_app(stub_url=application.config["SES_STUB_URL"])
lazyinit aws_sns_client
2025-10-06 07:32:35 -07:00
aws_sns_client = AwsSnsClient()
aws_sns_client.init_app(application)
lazy init encryption
2025-10-06 12:16:34 -07:00
encryption = Encryption()
encryption.init_app(application)
lazy init migrate
2025-10-02 09:19:05 -07:00
lazy initialize zendesk_client
2025-10-02 07:36:55 -07:00
# end lazy initialization
Stub SES email client to avoid hitting SES during load testing If we set an environment variable, we can stub out calls to SES and send them to our own stub app. If the environment variable is not set, things work as normal. To be used alongside https://github.com/alphagov/notifications-email-provider-stub
2020-06-01 17:08:30 +01:00
# If a stub url is provided for SES, then use the stub client rather than the real SES boto client
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
email_clients = (
[aws_ses_stub_client]
if application.config["SES_STUB_URL"]
else [aws_ses_client]
)
Add boilerplate for sending SMS via Reach This works in conjunction with the new SMS provider stub [^1]. Local testing: - Run the migrations to add Reach as an inactive provider. - Activate the Reach provider locally and deactivate the others. update provider_details set priority = 100, active = false where notification_type = 'sms'; update provider_details set active = true where identifier = 'reach'; - Tweak your local environment to point at the SMS stub. export REACH_URL="http://host.docker.internal:6300/reach" - Start / restart Celery to pick up the config change. - Send a SMS via the Admin app and see the stub log it. - Reset your environment so you can send normal SMS. update provider_details set active = true where notification_type = 'sms'; update provider_details set active = false where identifier = 'reach'; [^1]: https://github.com/alphagov/notifications-sms-provider-stub/pull/10
2022-03-25 15:03:52 +00:00
notification_provider_clients.init_app(
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
sms_clients=[aws_sns_client], email_clients=email_clients
Add boilerplate for sending SMS via Reach This works in conjunction with the new SMS provider stub [^1]. Local testing: - Run the migrations to add Reach as an inactive provider. - Activate the Reach provider locally and deactivate the others. update provider_details set priority = 100, active = false where notification_type = 'sms'; update provider_details set active = true where identifier = 'reach'; - Tweak your local environment to point at the SMS stub. export REACH_URL="http://host.docker.internal:6300/reach" - Start / restart Celery to pick up the config change. - Send a SMS via the Admin app and see the stub log it. - Reset your environment so you can send normal SMS. update provider_details set active = true where notification_type = 'sms'; update provider_details set active = false where identifier = 'reach'; [^1]: https://github.com/alphagov/notifications-sms-provider-stub/pull/10
2022-03-25 15:03:52 +00:00
)
Stub SES email client to avoid hitting SES during load testing If we set an environment variable, we can stub out calls to SES and send them to our own stub app. If the environment variable is not set, things work as normal. To be used alongside https://github.com/alphagov/notifications-email-provider-stub
2020-06-01 17:08:30 +01:00
Remove unnecessary statsd_client parameter It turns out this is available from the app object [1], and we were already assuming this in the tests. [1]: https://github.com/alphagov/notifications-utils/blob/48c6c822e85d0d1893d2c239e14706cfe0ad8e16/notifications_utils/clients/statsd/statsd_client.py#L52
2021-04-13 14:53:46 +01:00
notify_celery.init_app(application)
Adding Flask-Redis to the project. [https://pypi.python.org/pypi/Flask-Redis/0.1.0](https://pypi.python.org/pypi/Flask-Redis/0.1.0) Initial addition as we think about redis as cache.
2016-11-10 11:27:57 +00:00
redis_store.init_app(application)
Celery tests
2016-02-09 13:31:45 +00:00
- Add validation methods for post notification. - Use these validation methods in post_sms_notification and the version 1 of post_notification. - Create a v2 error handlers. - InvalidRequest has a to_dict method for private and v1 error responses and a to_dict_v2 method to create the v2 of the error responses. - Each validation method has extensive unit tests, so the unit test for the endpoint do not need to check every error case, but check that the error handle formats the message correctly. - The format of the error messages is still a work on progress. - This version of the api could be deployed without causing a problem to the application. - The new endpoing is still a work in progress and is not being used yet.
2016-10-27 11:46:37 +01:00
register_blueprint(application)
Updated utils to the latest version. This version of utils has less logging at info level and as such no longer prints out the celery task timing which are found to be use to find out if a tasks has been called but also the timing for the task. Added an extra timing message for celery tasks so that it can be determined if the these are less frequent than the API calls and provide more useful information
2018-02-05 14:58:02 +00:00
# avoid circular imports by importing this file later
Remove flask-script, move commands to click click (http://click.pocoo.org/) is used by flask to run its cli args. In removing flask_script (it's unmaintained), we had to migrate all our commands to use click. This is a change for the better in my eyes - you don't need to define the command in several places, and it makes managing options a bit easier. View diff with whitespace turned off unless you're a masochist.
2017-11-06 12:34:29 +00:00
from app.commands import setup_commands
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
Remove flask-script, move commands to click click (http://click.pocoo.org/) is used by flask to run its cli args. In removing flask_script (it's unmaintained), we had to migrate all our commands to use click. This is a change for the better in my eyes - you don't need to define the command in several places, and it makes managing options a bit easier. View diff with whitespace turned off unless you're a masochist.
2017-11-06 12:34:29 +00:00
setup_commands(application)
add prometheus metrics for connection pools (both web and sql) add the following prometheus metrics to keep track of general app instance health. # sqs_apply_async_duration how long does the actual SQS call (a standard web request to AWS) take. a histogram with default bucket sizes, split up per task that was created. # concurrent_web_request_count how many web requests is this app currently serving. this is split up per process, so we'd expect multiple responses per app instance # db_connection_total_connected how many connections does this app (process) have open to the database. They might be idle. # db_connection_total_checked_out how many connections does this app (process) have open that are currently in use by a web worker # db_connection_open_duration_seconds a histogram per endpoint of how long the db connection was taken from the pool for. won't have any data if a connection was never opened.
2020-04-24 14:36:21 +01:00
# set up sqlalchemy events
setup_sqlalchemy_events(application)
- Add validation methods for post notification. - Use these validation methods in post_sms_notification and the version 1 of post_notification. - Create a v2 error handlers. - InvalidRequest has a to_dict method for private and v1 error responses and a to_dict_v2 method to create the v2 of the error responses. - Each validation method has extensive unit tests, so the unit test for the endpoint do not need to check every error case, but check that the error handle formats the message correctly. - The format of the error messages is still a work on progress. - This version of the api could be deployed without causing a problem to the application. - The new endpoing is still a work in progress and is not being used yet.
2016-10-27 11:46:37 +01:00
return application
def register_blueprint(application):
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.authentication.auth import (
requires_admin_auth,
requires_auth,
requires_no_auth,
)
from app.billing.rest import billing_blueprint
from app.complaint.complaint_rest import complaint_blueprint
Read openapi schema for the owasp scan
2022-11-16 15:50:08 -05:00
from app.docs import docs as docs_blueprint
create, edit and use email branding instead of organisation notable things that have been kept until migration is complete: * passing in `organisation` to update_service will update email branding * both `/email-branding` and `/organisation` hit the same code * service endpoints still return organisation as well as email branding
2018-02-05 12:02:35 +00:00
from app.email_branding.rest import email_branding_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.events.rest import events as events_blueprint
Add inbound_number rest and tests
2017-08-04 19:26:51 +01:00
from app.inbound_number.rest import inbound_number_blueprint
add inbound sms api two endpoints: * get all inbound sms for a service (you can limit to the X most recent, or filter by user's phone number [which will be normalised]) * get a summary of inbound sms for a service - returns the count of inbound sms in the database, and the date that the most recent was sent
2017-05-31 14:49:14 +01:00
from app.inbound_sms.rest import inbound_sms as inbound_sms_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.job.rest import job_blueprint
code review feedback, fix setup.cfg and reformat
2023-08-25 08:10:33 -07:00
from app.notifications.notifications_ses_callback import ses_callback_blueprint
from app.notifications.receive_notifications import receive_notifications_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.notifications.rest import notifications as notifications_blueprint
notify-api-332 rename organisation
2023-07-10 11:06:29 -07:00
from app.organization.invite_rest import organization_invite_blueprint
from app.organization.rest import organization_blueprint
Rename to performance_dashboard Fix totals to return totals for all time rather than for date range. Added more test data
2021-03-10 11:12:29 +00:00
from app.performance_dashboard.rest import performance_dashboard_blueprint
Create platform-stats blueprint Created a platform-stats blueprint and moved the new platform stats endpoint to the new blueprint (it was previously in the service blueprint). Since the original platform stats route and the new platform stats route are now in different blueprints, their view functions can have the same name without any issues.
2018-06-28 08:39:25 +01:00
from app.platform_stats.rest import platform_stats_blueprint
code review feedback, fix setup.cfg and reformat
2023-08-25 08:10:33 -07:00
from app.provider_details.rest import provider_details as provider_details_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.service.callback_rest import service_callback_blueprint
from app.service.rest import service_blueprint
code review feedback, fix setup.cfg and reformat
2023-08-25 08:10:33 -07:00
from app.service_invite.rest import service_invite as service_invite_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.status.healthcheck import status as status_blueprint
from app.template.rest import template_blueprint
add template folder CRUD * create template folder * rename template folder * get list of template folders for service (not nested/presented in any particular way) * delete template folder Also removed `lazy=dynamic` from the `template_folder.templates` relationship. lazy=dynamic returns a query object (which you can then filter further). We just want to return the entire fetched list, at least for now.
2018-10-30 16:26:25 +00:00
from app.template_folder.rest import template_folder_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.template_statistics.rest import (
template_statistics as template_statistics_blueprint,
)
Add uploads blueprint, the endpoint returns a combination of uploaded letters and jobs. The endpoint returns data about the uploaded letter or job, including notification statistics for the upload. The data is ordered by scheduled for and created_at. It is likely this endppoint will need additional data for the UI to display, for the first iteration this will enable the /uploads page to show both letters and jobs. Only letter uploaded by the UI are included in the resultset. Add file name to resultset.
2019-12-03 15:53:32 +00:00
from app.upload.rest import upload_blueprint
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.user.rest import user_blueprint
add webauthn crud endpoints added some simple validation to the delete endpoint for sanity, but generally my assumption is that more validation will happen on the admin side. noteably im not checking whether the credentials are duplicated, nor is there a uniqueness constraint in the database - I'm not sure if the credential blob will always reliably be equivalent, and I believe the browser should hopefully take care of dupes.
2021-05-10 22:09:07 +01:00
from app.webauthn.rest import webauthn_blueprint
Added endpoints for creating job, and getting job/jobs.
2016-01-15 15:48:05 +00:00
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
service_blueprint.before_request(requires_admin_auth)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.register_blueprint(service_blueprint, url_prefix="/service")
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
user_blueprint.before_request(requires_admin_auth)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.register_blueprint(user_blueprint, url_prefix="/user")
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
add webauthn crud endpoints added some simple validation to the delete endpoint for sanity, but generally my assumption is that more validation will happen on the admin side. noteably im not checking whether the credentials are duplicated, nor is there a uniqueness constraint in the database - I'm not sure if the credential blob will always reliably be equivalent, and I believe the browser should hopefully take care of dupes.
2021-05-10 22:09:07 +01:00
webauthn_blueprint.before_request(requires_admin_auth)
application.register_blueprint(webauthn_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
template_blueprint.before_request(requires_admin_auth)
Updates to template endpoints: - moved into templates rest class - updated dao - removed delete methods - constraint on subject line
2016-02-22 12:55:18 +00:00
application.register_blueprint(template_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
status_blueprint.before_request(requires_no_auth)
Updated status page - include travis build number - renamed properties - ELB version - moved code all into health check - changed health check to be on same URL for admin and api
2016-03-03 15:18:12 +00:00
application.register_blueprint(status_blueprint)
clean flake8 except provider code
2022-10-14 14:45:27 +00:00
Read openapi schema for the owasp scan
2022-11-16 15:50:08 -05:00
docs_blueprint.before_request(requires_no_auth)
application.register_blueprint(docs_blueprint)
canada UK ses callbacks monster mash
2022-09-15 14:59:13 -07:00
# delivery receipts
ses_callback_blueprint.before_request(requires_no_auth)
application.register_blueprint(ses_callback_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
remove ip restrictions from sms delivery receipts for now our research mode tasks were hitting these endpoints, and getting 403s, causing lots of unexpected exceptions.
2017-10-16 13:23:19 +01:00
# inbound sms
Change to fix ip restrictions
2017-11-10 12:05:06 +00:00
receive_notifications_blueprint.before_request(requires_no_auth)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
application.register_blueprint(receive_notifications_blueprint)
notifications_blueprint.before_request(requires_auth)
Move job processing into celery - brings boto S3 into new AWS folder - CSV processing utils method Rejigs the jobs rest endpoint - removes some now unused endpoints, Calls to the task with the job, job processing in task, delegating SMS calls to the sms task
2016-02-24 17:12:30 +00:00
application.register_blueprint(notifications_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
job_blueprint.before_request(requires_admin_auth)
Fix for job urls that should have been within context of a service. The service id path parameter is captured in the url prefix for the job blueprint.
2016-01-18 09:57:04 +00:00
application.register_blueprint(job_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
rename invite blueprints nb: the routes are not changing as part of this, only file paths and blueprint names. invite -> service_invite this blueprint handles fetching invites for a service, creating invites, etc. accept_invite -> global_invite this blueprint handles accepting invites for now, but will also involve retrieving service/org user invite data without knowing the service/org id associated. i'm not in love with this name and open to suggestions, but i wanted to contrast it from service_invite and organisation/invite_rest.py.
2021-03-05 20:13:56 +00:00
service_invite_blueprint.before_request(requires_admin_auth)
application.register_blueprint(service_invite_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
notify-api-332 rename organisation
2023-07-10 11:06:29 -07:00
organization_invite_blueprint.before_request(requires_admin_auth)
application.register_blueprint(organization_invite_blueprint)
remove the global_invite (accept_invite) endpoint move the endpoints into service_invite/rest.py and organisation/invite_rest.py respectively. Remove the prefix from all the blueprints to allow this.
2021-03-11 20:26:44 +00:00
Add inbound_number rest and tests
2017-08-04 19:26:51 +01:00
inbound_number_blueprint.before_request(requires_admin_auth)
Moved url_prefix to inbound_number rest.py
2017-08-14 12:46:04 +01:00
application.register_blueprint(inbound_number_blueprint)
Add inbound_number rest and tests
2017-08-04 19:26:51 +01:00
add inbound sms api two endpoints: * get all inbound sms for a service (you can limit to the X most recent, or filter by user's phone number [which will be normalised]) * get a summary of inbound sms for a service - returns the count of inbound sms in the database, and the date that the most recent was sent
2017-05-31 14:49:14 +01:00
inbound_sms_blueprint.before_request(requires_admin_auth)
application.register_blueprint(inbound_sms_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
template_statistics_blueprint.before_request(requires_admin_auth)
[WIP] Added dao method and rest endpoint for getting template statistics by service. Some cosmetic changes to imports. Added fix for job rest not correctly returning errors.
2016-04-04 12:21:38 +01:00
application.register_blueprint(template_statistics_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
events_blueprint.before_request(requires_admin_auth)
Endpoint for recording events in api. An event has an id, a type and a blob of json attached.
2016-04-27 10:27:05 +01:00
application.register_blueprint(events_blueprint)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
provider_details_blueprint.before_request(requires_admin_auth)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.register_blueprint(
provider_details_blueprint, url_prefix="/provider-details"
)
Register a before_request event for all blueprints, that defines the authentication requirement. There are three authentication methods: - requires_no_auth - public endpoint that does not require an Authorisation header - requires_auth - public endpoints that need an API key in the Authorisation header - requires_admin_auth - private endpoint that requires an Authorisation header which contains the API key for the defined as the client admin user
2017-03-16 18:15:49 +00:00
create, edit and use email branding instead of organisation notable things that have been kept until migration is complete: * passing in `organisation` to update_service will update email branding * both `/email-branding` and `/organisation` hit the same code * service endpoints still return organisation as well as email branding
2018-02-05 12:02:35 +00:00
email_branding_blueprint.before_request(requires_admin_auth)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.register_blueprint(
email_branding_blueprint, url_prefix="/email-branding"
)
Added healthcheck page - used in ELB healthchecks
2015-12-15 17:14:13 +00:00
This adds new endpoints to retrieve billing data from the new table: 1. Create a separate billing blueprint to house these endpoints 2. Return monthly breakdown in same format as we did before 3. Return yearly breakdown but only return {billing units, rate, notification_type}. Admin only makes use of these.
2017-08-15 17:26:10 +01:00
billing_blueprint.before_request(requires_admin_auth)
application.register_blueprint(billing_blueprint)
move service_inbound_api endpoints to their own blueprint try and reduce the size of the service blueprint :)
2017-11-29 16:28:01 +00:00
service_callback_blueprint.before_request(requires_admin_auth)
application.register_blueprint(service_callback_blueprint)
This adds new endpoints to retrieve billing data from the new table: 1. Create a separate billing blueprint to house these endpoints 2. Return monthly breakdown in same format as we did before 3. Return yearly breakdown but only return {billing units, rate, notification_type}. Admin only makes use of these.
2017-08-15 17:26:10 +01:00
notify-api-332 rename organisation
2023-07-10 11:06:29 -07:00
organization_blueprint.before_request(requires_admin_auth)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.register_blueprint(organization_blueprint, url_prefix="/organizations")
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
New endpoint to return data for complaints.
2018-06-05 14:25:24 +01:00
complaint_blueprint.before_request(requires_admin_auth)
application.register_blueprint(complaint_blueprint)
Rename to performance_dashboard Fix totals to return totals for all time rather than for date range. Added more test data
2021-03-10 11:12:29 +00:00
performance_dashboard_blueprint.before_request(requires_admin_auth)
application.register_blueprint(performance_dashboard_blueprint)
Add an endpoint to return all the data required for the performance platform page.
2021-03-04 16:10:53 +00:00
Create platform-stats blueprint Created a platform-stats blueprint and moved the new platform stats endpoint to the new blueprint (it was previously in the service blueprint). Since the original platform stats route and the new platform stats route are now in different blueprints, their view functions can have the same name without any issues.
2018-06-28 08:39:25 +01:00
platform_stats_blueprint.before_request(requires_admin_auth)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
application.register_blueprint(
platform_stats_blueprint, url_prefix="/platform-stats"
)
Create platform-stats blueprint Created a platform-stats blueprint and moved the new platform stats endpoint to the new blueprint (it was previously in the service blueprint). Since the original platform stats route and the new platform stats route are now in different blueprints, their view functions can have the same name without any issues.
2018-06-28 08:39:25 +01:00
add template folder CRUD * create template folder * rename template folder * get list of template folders for service (not nested/presented in any particular way) * delete template folder Also removed `lazy=dynamic` from the `template_folder.templates` relationship. lazy=dynamic returns a query object (which you can then filter further). We just want to return the entire fetched list, at least for now.
2018-10-30 16:26:25 +00:00
template_folder_blueprint.before_request(requires_admin_auth)
application.register_blueprint(template_folder_blueprint)
Add uploads blueprint, the endpoint returns a combination of uploaded letters and jobs. The endpoint returns data about the uploaded letter or job, including notification statistics for the upload. The data is ordered by scheduled for and created_at. It is likely this endppoint will need additional data for the UI to display, for the first iteration this will enable the /uploads page to show both letters and jobs. Only letter uploaded by the UI are included in the resultset. Add file name to resultset.
2019-12-03 15:53:32 +00:00
upload_blueprint.before_request(requires_admin_auth)
application.register_blueprint(upload_blueprint)
- Add validation methods for post notification. - Use these validation methods in post_sms_notification and the version 1 of post_notification. - Create a v2 error handlers. - InvalidRequest has a to_dict method for private and v1 error responses and a to_dict_v2 method to create the v2 of the error responses. - Each validation method has extensive unit tests, so the unit test for the endpoint do not need to check every error case, but check that the error handle formats the message correctly. - The format of the error messages is still a work on progress. - This version of the api could be deployed without causing a problem to the application. - The new endpoing is still a work in progress and is not being used yet.
2016-10-27 11:46:37 +01:00
Added a test to ensure that all blueprints have a registered before_request method. Added a test for the status endpoint.
2017-03-17 16:21:41 +00:00
def init_app(app):
fix ExpiringDict caching solution
2024-07-19 13:58:23 -07:00
Log start of request so requests can be timed
2016-05-12 13:56:27 +01:00
@app.before_request
Refactor statsd logging Removed all existing statsd logging and replaced with: - statsd decorator. Infers the stat name from the decorated function call. Delegates statsd call to statsd client. Calls incr and timing for each decorated method. This is applied to all tasks and all dao methods that touch the notifications/notification_history tables - statsd client changed to prefix all stats with "notification.api." - Relies on https://github.com/alphagov/notifications-utils/pull/61 for request logging. Once integrated we pass the statsd client to the logger, allowing us to statsd all API calls. This passes in the start time and the method to be called (NOT the url) onto the global flask object. We then construct statsd counters and timers in the following way notifications.api.POST.notifications.send_notification.200 This should allow us to aggregate to the level of - API or ADMIN - POST or GET etc - modules - methods - status codes Finally we count the callbacks received from 3rd parties to mapped status.
2016-08-05 10:44:43 +01:00
def record_request_details():
Log start of request so requests can be timed
2016-05-12 13:56:27 +01:00
g.start = monotonic()
Refactor statsd logging Removed all existing statsd logging and replaced with: - statsd decorator. Infers the stat name from the decorated function call. Delegates statsd call to statsd client. Calls incr and timing for each decorated method. This is applied to all tasks and all dao methods that touch the notifications/notification_history tables - statsd client changed to prefix all stats with "notification.api." - Relies on https://github.com/alphagov/notifications-utils/pull/61 for request logging. Once integrated we pass the statsd client to the logger, allowing us to statsd all API calls. This passes in the start time and the method to be called (NOT the url) onto the global flask object. We then construct statsd counters and timers in the following way notifications.api.POST.notifications.send_notification.200 This should allow us to aggregate to the level of - API or ADMIN - POST or GET etc - modules - methods - status codes Finally we count the callbacks received from 3rd parties to mapped status.
2016-08-05 10:44:43 +01:00
g.endpoint = request.endpoint
Log start of request so requests can be timed
2016-05-12 13:56:27 +01:00
Made changes for zap scans
2025-07-31 10:50:55 -04:00
@app.before_request
def handle_options():
if request.method == "OPTIONS":
response = make_response("", 204)
response.headers["Access-Control-Allow-Origin"] = "*"
response.headers["Access-Control-Allow-Methods"] = (
"GET, POST, PUT, DELETE, OPTIONS"
)
response.headers["Access-Control-Allow-Headers"] = (
"Content-Type, Authorization"
)
response.headers["Access-Control-Max-Age"] = "3600"
return response
Addedcors response.
2016-01-20 15:28:39 +00:00
@app.after_request
def after_request(response):
Made changes for zap scans
2025-07-31 10:50:55 -04:00
# Security headers for government compliance
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
response.headers.add("X-Content-Type-Options", "nosniff")
Made changes for zap scans
2025-07-31 10:50:55 -04:00
response.headers.add("X-Frame-Options", "DENY")
response.headers.add("X-XSS-Protection", "1; mode=block")
response.headers.add("Referrer-Policy", "strict-origin-when-cross-origin")
response.headers.add(
"Permissions-Policy", "geolocation=(), microphone=(), camera=()"
)
try to fix dynamic scan warnings
2025-02-03 08:08:47 -08:00
Made changes for zap scans
2025-07-31 10:50:55 -04:00
# CORS-related security headers
try to fix dynamic scan warnings
2025-02-03 07:56:30 -08:00
response.headers.add("Cross-Origin-Opener-Policy", "same-origin")
response.headers.add("Cross-Origin-Embedder-Policy", "require-corp")
response.headers.add("Cross-Origin-Resource-Policy", "same-origin")
Made changes for zap scans
2025-07-31 10:50:55 -04:00
if not request.path.startswith("/docs"):
response.headers.add(
"Content-Security-Policy", "default-src 'none'; frame-ancestors 'none';"
)
response.headers.add(
"Strict-Transport-Security", "max-age=31536000; includeSubDomains"
)
try to fix dynamic scan warnings
2025-02-03 07:56:30 -08:00
Fixed formatting
2016-01-20 15:51:13 +00:00
return response
Addedcors response.
2016-01-20 15:28:39 +00:00
Add application level error handler. This should catch any unexcpeted exceptions.
2016-11-24 17:09:56 +00:00
@app.errorhandler(Exception)
def exception(error):
code review feedback and merge from main
2024-09-11 09:39:18 -07:00
app.logger.exception(f"Handling error: {error}")
Add application level error handler. This should catch any unexcpeted exceptions.
2016-11-24 17:09:56 +00:00
# error.code is set for our exception types.
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
msg = getattr(error, "message", str(error))
code = getattr(error, "code", 500)
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
response = make_response(
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
jsonify(result="error", message=msg), code, error.get_headers()
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
)
response.content_type = "application/json"
return response
handle 405s Handle werkzeug http errors separately. Also, improve the generic `Exception` handler to be more flexible when exceptions don't look like http errors. note: because they're 405s the route isn't matched, so the v2 error handlers don't trip properly. this might be an issue because the internal endpoints expect a different return format. Might have to think about how to handle this.
2019-07-26 13:26:20 +01:00
@app.errorhandler(WerkzeugHTTPException)
def werkzeug_exception(e):
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
response = make_response(
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
jsonify(result="error", message=e.description), e.code, e.get_headers()
handle 405s Handle werkzeug http errors separately. Also, improve the generic `Exception` handler to be more flexible when exceptions don't look like http errors. note: because they're 405s the route isn't matched, so the v2 error handlers don't trip properly. this might be an issue because the internal endpoints expect a different return format. Might have to think about how to handle this.
2019-07-26 13:26:20 +01:00
)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
response.content_type = "application/json"
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
return response
Add application level error handler. This should catch any unexcpeted exceptions.
2016-11-24 17:09:56 +00:00
- Add validation methods for post notification. - Use these validation methods in post_sms_notification and the version 1 of post_notification. - Create a v2 error handlers. - InvalidRequest has a to_dict method for private and v1 error responses and a to_dict_v2 method to create the v2 of the error responses. - Each validation method has extensive unit tests, so the unit test for the endpoint do not need to check every error case, but check that the error handle formats the message correctly. - The format of the error messages is still a work on progress. - This version of the api could be deployed without causing a problem to the application. - The new endpoing is still a work in progress and is not being used yet.
2016-10-27 11:46:37 +01:00
@app.errorhandler(404)
def page_not_found(e):
msg = e.description or "Not found"
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
response = make_response(
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
jsonify(result="error", message=msg), 404, e.get_headers()
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
)
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
response.content_type = "application/json"
Address moderate and low owasp findings * CORS headers removed because browsers should not interact with API directly * Updated error handling to return expected content-type for JSON error messages
2023-04-19 09:27:16 -04:00
return response
- Add validation methods for post notification. - Use these validation methods in post_sms_notification and the version 1 of post_notification. - Create a v2 error handlers. - InvalidRequest has a to_dict method for private and v1 error responses and a to_dict_v2 method to create the v2 of the error responses. - Each validation method has extensive unit tests, so the unit test for the endpoint do not need to check every error case, but check that the error handle formats the message correctly. - The format of the error messages is still a work on progress. - This version of the api could be deployed without causing a problem to the application. - The new endpoing is still a work in progress and is not being used yet.
2016-10-27 11:46:37 +01:00
Basic commit to add get pages showing - bootstrap script - run script - couple of views - basic config
2015-12-10 10:56:59 +00:00
Move job processing into celery - brings boto S3 into new AWS folder - CSV processing utils method Rejigs the jobs rest endpoint - removes some now unused endpoints, Calls to the task with the job, job processing in task, delegating SMS calls to the sms task
2016-02-24 17:12:30 +00:00
def create_uuid():
return str(uuid.uuid4())
Statsd counter for user agents. We want to log the usage of the various API clients we have so that we understand when they can be cycled. To this end we are going to count usage in statsd. All notify clients have a suer agent, of the format: NOTIFY-API-{LANGUAGE}-CLIENT/version.number For example, NOTIFY-API-PYTHON-CLIENT/3.0.0 We convert that into a statsd/graphite friendly string of the format: notify-api-python-client.3-0-0 So we can subdivide on client and client version on our dashboards. Present but unknown User agents are records as "non-notify-user-agent" Missing are presented as "unknown"
2016-11-25 13:27:36 +00:00
Added the random string reference to the letter - uses the reference field on the notifications table to store a 16char random string used to cross reference DVLA letters back to the notification - used as letter barcode does not have space for a UUID notification id Depends on https://github.com/alphagov/notifications-utils/pull/149 Renamed the numeric_id to notification_reference in utils and changed validation rules to match this Note also the persist_notification method set "reference" to be "client_reference" which is confusing and they are different things, so fixed this too.
2017-04-12 17:56:55 +01:00
def create_random_identifier():
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
return "".join(
secrets.choice(string.ascii_uppercase + string.digits) for _ in range(16)
)
Added the random string reference to the letter - uses the reference field on the notifications table to store a 16char random string used to cross reference DVLA letters back to the notification - used as letter barcode does not have space for a UUID notification id Depends on https://github.com/alphagov/notifications-utils/pull/149 Renamed the numeric_id to notification_reference in utils and changed validation rules to match this Note also the persist_notification method set "reference" to be "client_reference" which is confusing and they are different things, so fixed this too.
2017-04-12 17:56:55 +01:00
more tests
2023-08-14 15:32:22 -07:00
# TODO maintainability what is the purpose of this? Debugging?
add prometheus metrics for connection pools (both web and sql) add the following prometheus metrics to keep track of general app instance health. # sqs_apply_async_duration how long does the actual SQS call (a standard web request to AWS) take. a histogram with default bucket sizes, split up per task that was created. # concurrent_web_request_count how many web requests is this app currently serving. this is split up per process, so we'd expect multiple responses per app instance # db_connection_total_connected how many connections does this app (process) have open to the database. They might be idle. # db_connection_total_checked_out how many connections does this app (process) have open that are currently in use by a web worker # db_connection_open_duration_seconds a histogram per endpoint of how long the db connection was taken from the pool for. won't have any data if a connection was never opened.
2020-04-24 14:36:21 +01:00
def setup_sqlalchemy_events(app):
# need this or db.engine isn't accessible
with app.app_context():
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
@event.listens_for(db.engine, "connect")
fix dead code errors
2025-07-24 10:35:33 -07:00
def connect(dbapi_connection, connection_record):
fix format
2025-09-30 12:29:00 -07:00
if dbapi_connection is None or connection_record is None:
current_app.logger.warning(
f"Something wrong with sqalalchemy \
dbapi_connection {dbapi_connection} connection_record {connection_record}"
)
fix references to gds
2023-08-17 09:01:53 -07:00
pass
add prometheus metrics for connection pools (both web and sql) add the following prometheus metrics to keep track of general app instance health. # sqs_apply_async_duration how long does the actual SQS call (a standard web request to AWS) take. a histogram with default bucket sizes, split up per task that was created. # concurrent_web_request_count how many web requests is this app currently serving. this is split up per process, so we'd expect multiple responses per app instance # db_connection_total_connected how many connections does this app (process) have open to the database. They might be idle. # db_connection_total_checked_out how many connections does this app (process) have open that are currently in use by a web worker # db_connection_open_duration_seconds a histogram per endpoint of how long the db connection was taken from the pool for. won't have any data if a connection was never opened.
2020-04-24 14:36:21 +01:00
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
@event.listens_for(db.engine, "close")
fix dead code errors
2025-07-24 10:35:33 -07:00
def close(dbapi_connection, connection_record):
fix format
2025-09-30 12:29:00 -07:00
if dbapi_connection is None or connection_record is None:
current_app.logger.warning(
f"Something wrong with sqalalchemy \
dbapi_connection {dbapi_connection} connection_record {connection_record}"
)
fix references to gds
2023-08-17 09:01:53 -07:00
pass
add prometheus metrics for connection pools (both web and sql) add the following prometheus metrics to keep track of general app instance health. # sqs_apply_async_duration how long does the actual SQS call (a standard web request to AWS) take. a histogram with default bucket sizes, split up per task that was created. # concurrent_web_request_count how many web requests is this app currently serving. this is split up per process, so we'd expect multiple responses per app instance # db_connection_total_connected how many connections does this app (process) have open to the database. They might be idle. # db_connection_total_checked_out how many connections does this app (process) have open that are currently in use by a web worker # db_connection_open_duration_seconds a histogram per endpoint of how long the db connection was taken from the pool for. won't have any data if a connection was never opened.
2020-04-24 14:36:21 +01:00
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
@event.listens_for(db.engine, "checkout")
fix dead code errors
2025-07-24 10:35:33 -07:00
def checkout(dbapi_connection, connection_record, connection_proxy):
fix format
2025-09-30 12:29:00 -07:00
if dbapi_connection is None or connection_proxy is None:
current_app.logger.warning(
f"Something wrong with sqalalchemy \
dbapi_connection {dbapi_connection} connection_record {connection_proxy}"
)
Catch and log any exception thrown in the checkin event method. We don't want an exception while recording metrics to affect a user action. A KeyError exception was thrown today, that meant that a user say a 500, the action being performed was to download a document from the document-download-frontend app. By catching the error we prevent the user from seeing a 500 when a recording the connection metric fails. Also catch the exception in the checkout event.
2020-08-28 11:23:51 +01:00
try:
# this will overwrite any previous checkout_at timestamp
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
connection_record.info["checkout_at"] = time.monotonic()
Catch and log any exception thrown in the checkin event method. We don't want an exception while recording metrics to affect a user action. A KeyError exception was thrown today, that meant that a user say a 500, the action being performed was to download a document from the document-download-frontend app. By catching the error we prevent the user from seeing a 500 when a recording the connection metric fails. Also catch the exception in the checkout event.
2020-08-28 11:23:51 +01:00
# checkin runs after the request is already torn down, therefore we add the request_data onto the
# connection_record as otherwise it won't have that information when checkin actually runs.
# Note: this is not a problem for checkouts as the checkout always happens within a web request or task
# web requests
if has_request_context():
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
connection_record.info["request_data"] = {
"method": request.method,
"host": request.host,
reformat up to latest version of black
2024-04-01 15:12:33 -07:00
"url_rule": (
request.url_rule.rule if request.url_rule else "No endpoint"
),
Catch and log any exception thrown in the checkin event method. We don't want an exception while recording metrics to affect a user action. A KeyError exception was thrown today, that meant that a user say a 500, the action being performed was to download a document from the document-download-frontend app. By catching the error we prevent the user from seeing a 500 when a recording the connection metric fails. Also catch the exception in the checkout event.
2020-08-28 11:23:51 +01:00
}
# celery apps
elif current_task:
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
connection_record.info["request_data"] = {
"method": "celery",
"host": current_app.config["NOTIFY_APP_NAME"], # worker name
"url_rule": current_task.name, # task name
Catch and log any exception thrown in the checkin event method. We don't want an exception while recording metrics to affect a user action. A KeyError exception was thrown today, that meant that a user say a 500, the action being performed was to download a document from the document-download-frontend app. By catching the error we prevent the user from seeing a 500 when a recording the connection metric fails. Also catch the exception in the checkout event.
2020-08-28 11:23:51 +01:00
}
only retry if the broadcast message task is in sending previously we would retry if the task was queued up for retry but the status is in "received-ack" or "received-err". We don't expect that a task will be retried after getting this status, but if there are duplicate tasks that could happen. Lets plan for the worst by saying "only process a retry if the task is currently in sending". this way, if a duplicate task is on retry and the first task goes through succesfully, the duplicate task will give up.
2021-02-18 12:02:34 +00:00
# anything else. migrations possibly, or flask cli commands.
Catch and log any exception thrown in the checkin event method. We don't want an exception while recording metrics to affect a user action. A KeyError exception was thrown today, that meant that a user say a 500, the action being performed was to download a document from the document-download-frontend app. By catching the error we prevent the user from seeing a 500 when a recording the connection metric fails. Also catch the exception in the checkout event.
2020-08-28 11:23:51 +01:00
else:
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
current_app.logger.warning(
"Checked out sqlalchemy connection from outside of request/task"
)
connection_record.info["request_data"] = {
"method": "unknown",
"host": "unknown",
"url_rule": "unknown",
Catch and log any exception thrown in the checkin event method. We don't want an exception while recording metrics to affect a user action. A KeyError exception was thrown today, that meant that a user say a 500, the action being performed was to download a document from the document-download-frontend app. By catching the error we prevent the user from seeing a 500 when a recording the connection metric fails. Also catch the exception in the checkout event.
2020-08-28 11:23:51 +01:00
}
except Exception:
more exc_info
2024-08-15 11:07:36 -07:00
current_app.logger.exception(
code review feedback and merge from main
2024-09-11 09:39:18 -07:00
"Exception caught for checkout event.",
more exc_info
2024-08-15 11:07:36 -07:00
)
add prometheus metrics for connection pools (both web and sql) add the following prometheus metrics to keep track of general app instance health. # sqs_apply_async_duration how long does the actual SQS call (a standard web request to AWS) take. a histogram with default bucket sizes, split up per task that was created. # concurrent_web_request_count how many web requests is this app currently serving. this is split up per process, so we'd expect multiple responses per app instance # db_connection_total_connected how many connections does this app (process) have open to the database. They might be idle. # db_connection_total_checked_out how many connections does this app (process) have open that are currently in use by a web worker # db_connection_open_duration_seconds a histogram per endpoint of how long the db connection was taken from the pool for. won't have any data if a connection was never opened.
2020-04-24 14:36:21 +01:00
notify-api-412 use black to enforce python style standards
2023-08-23 10:35:43 -07:00
@event.listens_for(db.engine, "checkin")
fix dead code errors
2025-07-24 10:35:33 -07:00
def checkin(dbapi_connection, connection_record):
fix format
2025-09-30 12:29:00 -07:00
if dbapi_connection is None or connection_record is None:
current_app.logger.warning(
f"Something wrong with sqalalchemy \
dbapi_connection {dbapi_connection} connection_record {connection_record}"
)
fix references to gds
2023-08-17 09:01:53 -07:00
pass
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
def make_task(app):
class NotifyTask(Task):
abstract = True
start = None
@property
def queue_name(self):
delivery_info = self.request.delivery_info or {}
return delivery_info.get("routing_key", "none")
@property
def request_id(self):
# Note that each header is a direct attribute of the
# task context (aka "request").
return self.request.get("notify_request_id")
@contextmanager
def app_context(self):
with app.app_context():
# Add 'request_id' to 'g' so that it gets logged.
g.request_id = self.request_id
yield
revert truststore
2025-07-24 10:01:03 -07:00
def on_success(self, retval, task_id, args, kwargs):
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
# enables request id tracing for these logs
with self.app_context():
elapsed_time = time.monotonic() - self.start
app.logger.info(
"Celery task {task_name} (queue: {queue_name}) took {time}".format(
task_name=self.name,
queue_name=self.queue_name,
time="{0:.4f}".format(elapsed_time),
)
)
fix dead code warning
2025-08-05 09:09:26 -07:00
def on_failure(self, exc, task_id, args, kwargs, einfo):
fix dead code errors
2025-07-24 10:35:33 -07:00
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
# enables request id tracing for these logs
with self.app_context():
fix dead code warning
2025-08-05 09:09:26 -07:00
app.logger.debug(f"einfo is {einfo}")
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
app.logger.exception(
"Celery task {task_name} (queue: {queue_name}) failed".format(
task_name=self.name,
queue_name=self.queue_name,
more exc_info
2024-08-15 11:07:36 -07:00
),
remove celery from notifications-utils (notify-api-130)
2024-03-04 10:32:19 -08:00
)
def __call__(self, *args, **kwargs):
# ensure task has flask context to access config, logger, etc
with self.app_context():
self.start = time.monotonic()
return super().__call__(*args, **kwargs)
return NotifyTask
Reference in New Issue Copy Permalink