[api] Rest API for PKI app

[ManishShah120]

Closes #462

[coveralls]

Coverage increased (+0.03%) to 98.673% when pulling a020222 on rest-api-for-pki-app into 41badf5 on master.

[atb00ker]

Going in the correct direction, one question:

[ManishShah120]

@ManishShah120 why in the cert detail endpoint the name of the CA is shown while in the list endpoint it's the ID?

I would always show the ID because it's the only way to be super sure someone is dealing with a specific object.

Let's be consistent.

@nemesisdesign, I tried to keep it similar to the admin panel, But, Fixed it now. 😊

[nemesifier]

@ManishShah120 I merged the latest master in and some query checks failed can you please double check?

[ManishShah120]

@ManishShah120 I merged the latest master in and some query checks failed can you please double check?

Fixed it 👍 @nemesisdesign

[atb00ker]

LGTM! 😄

[nemesifier]

So here's some important actions that can be performed from the admin but seem missing from the API.

• renew cert
• renew CA
• revoke certificate

To keep it simple, we can introduce these actions for singular objects (leaving the implementation for performing renew/revoke on multiple objects for a future phase if needed at all).

The models have method for each of these actions so the implementation should be pretty easy.

The API urls can be like:

POST /cert/{id}/renew/
POST /ca/{id}/renew/
POST /cert/{id}/revoke/

[nemesifier]

this looks mostly the same as the Ca serializer

[nemesifier]

these two method also are almost identical

[nemesifier]

can you please move these 3 methods above to a BaseListSerializer which inherits from BaseSerializer and then use it as a base for CertListSerializer and CatListSerializer?

The line which adds data.update({'ca': instance.ca}) can be added with super()

[nemesifier]

almost there

[nemesifier]

return the serialized data with the updated data and 200 as status code, applies to the other endpoints as well

[ManishShah120]

This is done. 👍

[ManishShah120]

@nemesisdesign I have made the requested changes for the revoke and renew endpoints, but there's one minor issue, i.e., I have used the CaDetailSerializer & CertDetailSerializer for serializing the instance data for returning it, but since in this serializers some of the fields are set to write so these fields are also displayed in the response page.

However, this will not be a an issue, in production. Still I will see if I can fix it.

[nemesifier]

@nemesisdesign I have made the requested changes for the revoke and renew endpoints, but there's one minor issue, i.e., I have used the CaDetailSerializer & CertDetailSerializer for serializing the instance data for returning it, but since in this serializers some of the fields are set to write so these fields are also displayed in the response page.

However, this will not be a an issue, in production. Still I will see if I can fix it.

Sure, better fix this and ensure the serializers are correct, you simply need to create a new serializers inheriting the serializer you're using now and removing the write_only fields.

[ManishShah120]

Sure, better fix this and ensure the serializers are correct, you simply need to create a new serializers inheriting the serializer you're using now and removing the write_only fields.

Done, Fixed it. 👍

[nemesifier]

Almost there, let's do some more code improvement and then we're done.

[nemesifier]

two doubts here:

• why the default argument is None? it looks like there should be no default argument
• why this naming? Capital letter is used for classes, I think this should be named get_cert_list_fields

Eg:

def get_cert_list_fields(fields):
    pass

[nemesifier]

same here as for get_cert_list_fields

[nemesifier]

same here

[nemesifier]

can you please move these 3 methods above to a BaseListSerializer which inherits from BaseSerializer and then use it as a base for CertListSerializer and CatListSerializer?

The line which adds data.update({'ca': instance.ca}) can be added with super()

[ManishShah120]

Hi @nemesisdesign have implemented the BaseListSerializer, Is the implementation correct.

[nemesifier]

I found another weird thing: why does the list endpoint provide the info about extensions but the details endpoint does not?

[ManishShah120]

I found another weird thing: why does the list endpoint provide the info about extensions but the details endpoint does not?

@nemesisdesign currently I have also removed the passphrase field from the detail endpoint, Should I leave it as as it is or should I make it visible too in the detail endpoint.

[nemesifier]

I found another weird thing: why does the list endpoint provide the info about extensions but the details endpoint does not?

@nemesisdesign currently I have also removed the passphrase field from the detail endpoint, Should I leave it as as it is or should I make it visible too in the detail endpoint.

Passphrase shall be write_only: a020222.

With this change I think we're done here.