Enhancement: clients can use REST url for all methods

[davidalexandru7013]

Description of changes

In this modification, I created the opportunity for users to decide between using v1 api or rest api route in the SnykClient. Previously, only the get method let user to use the rest api. Patch method was created for use cases in which the verb PATCH is necessary, thing that didn't exist previously.

Technical details

• added patch method in the SnykClient class.
• updated old tests and added new test cases for the new modifications.
• redirect delete project from v1 to rest in the client.
• updated rest api version, because some endpoints were not available in the old version.

Context

These changes were made to enable users use the rest api, because v1 is approaching its end of life. It provides more flexibility to the developers who wants to interact with different instances of Snyk APIs.

How to test

This modification should not impact the existing functionality of the library. Everything should work as intended.

Example Usage

Update an existing project

client = SnykClient(token=api_key)
client.patch(
    f"orgs/org_id/projects/project_id",
    body={
        "data": {
            "attributes": {
                "business_criticality": ["critical", "medium", "low"],
                "tags": [
                    {"key": "keytest1", "value": "valuetest1"},
                    {"key": "keytest2", "value": "valuetest2"},
                ],
                "environment": ["backend", "frontend"],
                "lifecycle": ["development"],
            },
            "id": "project_id",
            "relationships": {},
            "type": "project",
        }
    },
)

[iulia-ionce]

feels a bit confusing to user the api_post_headers in the put. Maybe use the api_headers or create a similar api_put_headers?

[davidalexandru7013]

This line was not changed from the initial version, it is marked as modified, because I've added params and the linter splits them on multiple lines.

[iulia-ionce]

I'm not sure if we should keep consistency here with a rest parameter or not. I know it would be useless, and need to be set to true. It's just triggering my OCD having this lack of uniformity of methods 🙈

[davidalexandru7013]

According to the documentation(https://snyk.docs.apiary.io/#reference) there is no endpoint which makes use of patch verb in V1.

[iulia-ionce]

maybe a typo? patch should not return a "new" project

[iulia-ionce]

sorry, don't know enough python 😅 how does this test work? What does it test?

[davidalexandru7013]

It makes sure that there is a value in Authorization header and nobody deletes the line which add the value, by mistake.

[pablo-snyk]

client is a fixture. See the function client() in the top of the class.
When you add an argument to the test it runs the function and uses the returned value as parameter.

[iulia-ionce]

Nice job! Just left a few comments (some just asking for clarification 😄 )

[pablo-snyk]

Suggested change

	self.api_post_headers = copy.deepcopy(self.api_headers)
	self.api_post_headers = dict(self.api_headers)

Why do we need to copy them?

[davidalexandru7013]

Since both api post headers and patch post headers have different content-type, I wanted a way to avoid side-effects(since simple assigning creates a shallow copy and dictionaries are mutable in python) when changing content-type. The solution given by you might be better rather than creating a deep-copy.

[pablo-snyk]

So my suggestion is to set those headers explicitly in the specific function.
Otherwise it's confusing.

[davidalexandru7013]

This might introduce duplicate code, since both V1 and REST API are using the same headers.

[pablo-snyk]

Again, it's a suggestion only. In my opinion it is better to duplicate code and make them explicit rather than start looking at who modified what header. Moreover, if you do that you will be able to get rid of the api_post_headers property.

[pablo-snyk]

Suggested change

	self.api_patch_headers = copy.deepcopy(self.api_headers)
	self.api_patch_headers = dict(self.api_headers)

Same here. Why do we need to duplicate them?

[davidalexandru7013]

The same reason as stated above.

[pablo-snyk]

If this is a dict, so can use Dict. If it's either a dict or a str you can do something like Union[Dict, str].

[pablo-snyk]

What version of Python do you use? The type dict is allowed only from 3.9. I saw in the pyproject.toml file that the allowed versions of Python are from version 3.7 and up. If this is still the case I suggest using Dict instead.

[davidalexandru7013]

This was previously in the project, I can change it, but I need to make sure every instance gets changed.

[pablo-snyk]

I'm not suggesting to upgrade. But if we still want to support Python 3.7 we need to change line 96 to be something like:

headers: Dict = {}. # note the capital D.

[pablo-snyk]

Suggested change

	params["version"] = self.version if self.version else "2024-06-21"
	params["version"] = self.version or "2024-06-21"

[pablo-snyk]

Also, any chance we define the default version in a constant?

[pablo-snyk]

Suggested change

	params["version"] = self.version if self.version else "2024-06-21"
	params["version"] = self.version or "2024-06-21"

Any chance to define the default version in a constant?

[pablo-snyk]

The last commit to package retry's repo was in 2016.
I suggest replace it.