APIv3 "Import Project" endpoint

[humitos]

This PR allows POST at /api/v3/projects to Import a Project.

It follows the same idea that importing from the Dashboard:

1. Create the Project object
2. Assign the user who makes the request as maintainer
3. Send project_import Django signal
4. Trigger an initial build

Note that I had to refactor the function that trigger the initial build to be able to call the same logic from two different places.

[ericholscher]

This looks good, but I do think it might be useful to keep all the logic together from the view and code. This does it for the trigger_initial_build logic, but it would be useful for the logic around adding the user to the Project, since this varies between sites.

[ericholscher]

Do we want to support that? I feel like creating a project via the web form is probably not going to be the best UX.

[humitos]

I've been thinking on making the browsable API consistent with what the API offers. Besides consistency, it helps to explore it and have a better understanding of what's available and what can be done: not "self-documented" but in that direction.

[humitos]

On the other hand, removing the create from this check it fails with 404 when accessing to /api/v3/projects/ because of an internal DRF check. Actually, that's how I realized that I needed it :)

[davidfischer]

Overall I'm in favor of making the browsable API be consistent with what the API can do. We still can restrict creating with additional permissions or even turn off the browsable API in prod completely if needed (hopefully not as I do believe the browsable API makes the API more approachable). Generally though I hope regular users are not creating projects in production through the DRF UI.

[ericholscher]

Does this not allow us to update the entire project via API?

[humitos]

No, in theory only the fields from ProjectCreateSerializer.Meta.fields are allowed (name, language, repository and project_url). If there are extra fields passed, they are ignored.

We may want to add more, though.

[davidfischer]

Seems like a good test case, actually.

[humitos]

Added.

[ericholscher]

what is superproject here? They should probably be constants.

[humitos]

superproject is the @action defined in the ProjectViewSet that returns the superproject of a project.

I'm not sure if it makes sense to make it a constant. Although, maybe it's good to add a comment in this line to avoid confusions.

[ericholscher]

Yea, we should add a comment at least, since it's not like the others.

[ericholscher]

I wonder if this should all be abstracted into a single function called trigger_build(initial) and used in all the builds, so we only have to change this logic in one place.

[ericholscher]

Where does this happen in the normal import workflow? I can't find it in the code.

[ericholscher]

Ah, was on the subclass: https://github.com/rtfd/readthedocs.org/blob/master/readthedocs/projects/forms.py#L50-L53

[ericholscher]

So perhaps we should be inheriting form this form for the Form we're using?

[humitos]

I'm not sure I like to inherit a Serializer from a Wizard Form. Although, maybe these common methods could be extracted into a Mixin that it's usage by both. Actually, in that case, there is nothing to change in corporate since it's already done the override.

[humitos]

This involves a bigger refactor than I thought. All the process to import a project is very tied to forms methods. ProjectBasicForm.save links the remote repository.

ImportWizardView manipulates the Basic and the Extra form to make it all fit in one project before saving it plus triggering a new build (done method in the form)

[humitos]

This looks good, but I do think it might be useful to keep all the logic together from the view and code

Like a import_project(validated_data, request) helper that, create the project, assign the user, trigger the initial build, etc? I think this can be handy, I need to think a little on the implementation since we probably will need a class so it can be override from corporate (that has some differencies).

[humitos]

@ericholscher I refactored the Import Project code by extracting the shared bits into a Mixin. Looks better than the first option that I proposed, but still it's not perfect.

All the manipulation of the fields (from the Form or Serializer) happen on each view and once those things are done, the data is passed to the common method that will finish the import.

[humitos]

Maybe finish_import_project is a better name here, what do you think @ericholscher? Considering that the Project object is created outside this function and this one does the final steps.

[ericholscher]

That seems better.

[humitos]

We can add more fields here. Maybe these are also useful:

• default_branch
• default_version
• tags
• analytics_code
• show_version_warning

[ericholscher]

Lots of good stuff here, just a few comments.

We also need to add public-facing docs here, that is the biggest missing piece for me.

[ericholscher]

I think this should auto-link, no? Or you can put <> around it I believe (depending on markdown implementation, 😦)

[humitos]

Yes. It's rendered as Markdown using "some implementation" and [Text](Link) is the format that works.

[ericholscher]

Yea, we should add a comment at least, since it's not like the others.

[ericholscher]

any reason not to just use a list here? Or check for the value explicitly?

[humitos]

Just for consistency.

[ericholscher]

What is the empty list for? We should use kwargs to make it more explicit.

[humitos]

I put request as first argument and make tags an optional with None as default. I think it's better now.

[ericholscher]

That seems better.

[ericholscher]

As you noted in the PR comment above, we should note what work it assumes has already been done in the code comment as well.

[ericholscher]

I might put the request first, as that is the normal order in Django in my experience.

[ericholscher]

Do we need to chain these? Seems like we still want to update the docs even if webhook setup fails, and they don't depend on each other in any real way.

[humitos]

We do a chain just to follow an order. If attach_webhook fails, it handles it by itself, set a message to the user and the build process continue. It does not block the update of the docs.

Anyways, this logic is not something I want to change/refactor in this PR because it's something bigger than this.

[ericholscher]

kwargs here too would be good.

[humitos]

We also need to add public-facing docs here, that is the biggest missing piece for me.

I was thinking on finish all the docs in another PR (#5895) so we can deploy this without blocking on docs, which are deployed just with a merge. It's on my list to write them.

[humitos]

@ericholscher I think I made all the changes needed from your comments. I had some issues when rebasing with master, hopefully I didn't break anything :)

[ericholscher]

Why not just merge master into the branch?

[ericholscher]

now I can't really see what commits have changed since my review :/

[ericholscher]

Looking at it though, the changes look good to me 👍

[humitos]

@ericholscher I'm sorry about that. I usually do rebase against master but, I may need to change that flow because of this problem