Settings
=============
.. _Available Settings:
Available Settings
------------------
These are the default settings for DSG, with explanations provided below.
These settings should be defined under the ``GRPC_FRAMEWORK`` variable in django settings.
See the documentation on django settings if your not familiar with it: `Django settings documentation `_.
.. code-block:: python
GRPC_FRAMEWORK = {
"ROOT_HANDLERS_HOOK": None,
"SERVER_INTERCEPTORS": None,
"SERVER_OPTIONS": None,
"DEFAULT_AUTHENTICATION_CLASSES": [],
"DEFAULT_FILTER_BACKENDS": [],
"DEFAULT_PAGINATION_CLASS": None,
"DEFAULT_PERMISSION_CLASSES": [],
"GRPC_ASYNC": False,
"GRPC_CHANNEL_PORT": 50051,
"SEPARATE_READ_WRITE_MODEL": True,
"GRPC_MIDDLEWARE": [
"django_socio_grpc.middlewares.log_requests_middleware",
"django_socio_grpc.middlewares.close_old_connections_middleware",
],
"ROOT_GRPC_FOLDER": "grpc_folder",
"MAP_METADATA_KEYS": {
"headers": "headers",
"pagination": "pagination",
"filters": "filters",
},
"LOG_OK_RESPONSE": False,
"IGNORE_LOG_FOR_ACTION": [],
"ROOT_CERTIFICATES_PATH": None,
"PRIVATE_KEY_CERTIFICATE_CHAIN_PAIRS_PATH": [],
"REQUIRE_CLIENT_AUTH": False,
"FILTER_BEHAVIOR": "METADATA_STRICT",
"PAGINATION_BEHAVIOR": "METADATA_STRICT",
"DEFAULT_MESSAGE_NAME_CONSTRUCTOR": "django_socio_grpc.protobuf.message_name_constructor.DefaultMessageNameConstructor",
"DEFAULT_GENERATION_PLUGINS": [],
"ENABLE_HEALTH_CHECK": False,
}
.. _root-handler-hook-setting:
ROOT_HANDLERS_HOOK
^^^^^^^^^^^^^^^^^^
This setting points to the `grpc_handlers` function responsible for registering all gRPC Services for the project's applications.
This function runs just before the start of the server, making it useful for any other kind of initialization
See :ref:`Register services section in the Getting Started documentation` for quick example of :ref:`Service Registry ` for complete understanding and recommandation.
For a project named "my_project" with the `grpc_handlers` function inside `my_project/handlers.py`, the configuration would be:
.. code-block:: python
"ROOT_HANDLERS_HOOK": "my_project.handlers.grpc_handlers"
.. _settings-server-interceptors:
SERVER_INTERCEPTORS
^^^^^^^^^^^^^^^^^^^
.. note::
``SERVER_INTERCEPTORS`` settings allow you to make actions at the grpc request level. To have all the DSG functionnalities like ``request.user`` and more please use :ref:`GRPC_MIDDLEWARE setting `
This setting specifies a list of gRPC server interceptors. Interceptors allow you to run custom code before or after a gRPC method gets executed. Common uses for interceptors include logging, authentication, and request/response transformations.
Example:
Consider you have two interceptors, LoggingInterceptor and AuthenticationInterceptor. These interceptors would be added to the SERVER_INTERCEPTORS setting as:
.. code-block:: python
"SERVER_INTERCEPTORS": [LoggingInterceptor(), AuthenticationInterceptor()],
With this configuration, every gRPC method invocation will first pass through the LoggingInterceptor and then the AuthenticationInterceptor before the actual gRPC method is executed.
See the ServerInterceptor documentation for Python : `sync `_ and `async `_.
SERVER_OPTIONS
^^^^^^^^^^^^^^
This setting defines a list of key-value pairs specifying options for the gRPC server. These options help configure server behavior, such as setting limits on the size of incoming or outgoing messages.
Example if you want to set the maximum size for sending and receiving messages to 100MB, you can configure the SERVER_OPTIONS as:
.. code-block:: python
"SERVER_OPTIONS": [
("grpc.max_send_message_length", 100 * 1024 * 1024),
("grpc.max_receive_message_length", 100 * 1024 * 1024),
],
The above configuration allows the gRPC server to send and receive messages up to a size of 100MB.
For more options, see the `grpc documentation `_.
.. _default_authentication_classes:
DEFAULT_AUTHENTICATION_CLASSES
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Defines the list of authentication classes the gRPC server uses to validate incoming requests. Requests are authenticated based on the methods provided by these classes, in the order they are listed.
Example if you want to set a custom Authentication class ``your_project.auth.JWTAuthentication``, you can configure the ``DEFAULT_AUTHENTICATION_CLASSES`` as:
.. code-block:: python
"DEFAULT_AUTHENTICATION_CLASSES": [
"your_project.auth.JWTAuthentication"
]
For more details, see the `DRF documentation on auth `_ as DSG use the same system.
.. _default_filter_backends_settings:
DEFAULT_FILTER_BACKENDS
^^^^^^^^^^^^^^^^^^^^^^^
This setting designates the default filtering backends that gRPC services should use. Filtering backends allow requests to be filtered based on query parameters.
For instance, to use django-filter backend (`doc `_):
.. code-block:: python
"DEFAULT_FILTER_BACKENDS": ["django_filters.rest_framework.DjangoFilterBackend"]
For more details, see the `DRF documentation on filters `_ as DSG use the same system.
.. _default_pagination_class_settings:
DEFAULT_PAGINATION_CLASS
^^^^^^^^^^^^^^^^^^^^^^^^
Defines the default pagination class for gRPC services. This class will be used to paginate large datasets in the response.
Example configuration to use the `PageNumberPagination ` class:
.. code-block:: python
"DEFAULT_PAGINATION_CLASS": "rest_framework.pagination.PageNumberPagination"
For more details, see the `DRF documentation on doc `_ as DSG use the same system.
DEFAULT_PERMISSION_CLASSES
^^^^^^^^^^^^^^^^^^^^^^^^^^
This setting defines the list of default permissions classes that will be used for gRPC services. Each class specified in this list will be responsible for verifying the identity of the user making the request.
For a hypothetical project that uses `DRF IsAuthenticated `_ and a custom ``HasServiceAccess`` permissions :
.. code-block:: python
"DEFAULT_PERMISSION_CLASSES": [
"rest_framework.permissions.IsAuthenticated",
"your_project.permissions.HasServiceAccess",
]
For more details, see the `DRF documentation on permissions `_ as DSG use the same system.
.. note::
All `DRF permissions `_ are supported out of the box.
GRPC_ASYNC
^^^^^^^^^^
This setting determines the running mode of the gRPC server. If set to `True`, the server will operate in asynchronous mode. When in asynchronous mode, the server is capable of handling multiple concurrent requests using Python's ``asyncio``.
This setting is overriden to ``True`` when running the project with :ref:`grpcrunaioserver` command and to ``False`` when running the project with :ref:`grpcrunaioserver`.
**Please consider to always use async as it may become the only accepted behavior in DSG 1.0.**
.. code-block:: python
"GRPC_ASYNC": True
GRPC_CHANNEL_PORT
^^^^^^^^^^^^^^^^^
This is the default port on which the gRPC server will listen for incoming requests. You can change this if your server needs to listen on a different port.
This settigns will only be used if :ref:`grpcrunaioserver` or :ref:`grpcrunaioserver` parameter ``address`` is not used.
.. code-block:: python
"GRPC_CHANNEL_PORT": 50051
.. _grpc-settings-separate-read-write-model:
SEPARATE_READ_WRITE_MODEL
^^^^^^^^^^^^^^^^^^^^^^^^^
The `SEPARATE_READ_WRITE_MODEL` setting determines whether to use separate request and response messages for a model, primarily to activate the `read_only` and `write_only` properties of a serializer. This ensures more granular control over serialized data, where some fields can be made read-only or write-only.
By enabling this option (set to `True`), it ensures that specific fields in a model can be set to be write-only during a write operation and will not be exposed during a read operation, and vice versa for read-only fields. This is particularly useful when certain data should be kept private or when different sets of data should be exposed for reading vs. writing.
For instance, if you have fields in your model that should only be updated but never retrieved in a response, you can mark them as `write_only`. Similarly, fields that should be displayed but never modified can be marked as `read_only`.
**Please consider to always separate read/write model as it may become the only accepted behavior in DSG 1.0.**
.. code-block:: python
"SEPARATE_READ_WRITE_MODEL": True
.. _settings-grpc-middleware:
GRPC_MIDDLEWARE
^^^^^^^^^^^^^^^
This setting defines a list of middleware classes specifically tailored for the gRPC framework. Middleware in gRPC can be seen as a series of processing units that handle both incoming requests and outgoing responses. They can be used for various tasks like logging, authentication, data enrichment, and more.
Middlewares are processed in the order they are defined. Each middleware should adhere to the gRPC middleware structure, having methods to process requests and responses.
More details about :ref:`middlewares`.
The difference with a :ref:`gRPC Interceptor` is that the middlewares occur at the Django level, meaning the request has already been wrapped into a Django-like request. Interceptors handle pure gRPC calls.
For instance, you could have a generic logging middleware that logs every gRPC request and a middleware to handle connection issues:
.. code-block:: python
"GRPC_MIDDLEWARE": [
"your_project.middlewares.GenericLoggingMiddleware",
"your_project.middlewares.ConnectionHandlingMiddleware",
]
.. _root_grpc_folder_settings:
ROOT_GRPC_FOLDER
^^^^^^^^^^^^^^^^
This setting specifies the root directory name where all the
generated proto files of external services are outputted.
More details about
:ref:`how to define proto and service in a shared library`.
.. code-block:: python
"ROOT_GRPC_FOLDER": "my_root_grpc_folder"
.. _settings-map-medata-keys:
MAP_METADATA_KEYS
^^^^^^^^^^^^^^^^^
This setting defines where the framework should look within the metadata for
specific pieces of information like headers, pagination data, and filters.
Essentially, it provides mapping keys that indicate where to extract certain types of metadata.
This setting can be partially overriden. If some keys are not provided the default ones are used
For a standard configuration, you might have:
.. code-block:: python
"MAP_METADATA_KEYS": {
"headers": "headers",
"pagination": "pagination",
"filters": "filters",
}
This means that when the framework encounters metadata, it knows to look for a ``headers``
key to retrieve headers, a ``pagination`` key to fetch pagination data, and a ``filters`` key
for filtering details.
.. note::
See specific documentation for each:
- headers : :ref:`Authentication`
- filters: :ref:`Filters`
- pagination: :ref:`Pagination`
.. _settings-log-ok-response:
LOG_OK_RESPONSE
^^^^^^^^^^^^^^^
This setting enables the logging of requests that return an OK. (see :ref:`logging `)
Default is False. Being in DEBUG mode enables it.
.. code-block:: python
"LOG_OK_RESPONSE": True
.. _settings-ignore-log-for-action:
IGNORE_LOG_FOR_ACTION
^^^^^^^^^^^^^^^^^^^^^
When using :ref:`Log requests middleware ` allow to specify a list of action that we do not want to automatically log.
.. code-block:: python
"IGNORE_LOG_FOR_ACTION": ["Service1.Action1", "Service1.Action1"]
.. _settings-private-key-certificate_chain-pairs-path:
PRIVATE_KEY_CERTIFICATE_CHAIN_PAIRS_PATH
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
List of pair of key/server certificate to use gRPC secure port mechanisme. See :ref:`work-with-secure-port`.
.. code-block:: python
"PRIVATE_KEY_CERTIFICATE_CHAIN_PAIRS_PATH": [("/path/to/server-key.pem", "/path/to/server.pem")]
.. _settings-root-certificates-path:
ROOT_CERTIFICATES_PATH
^^^^^^^^^^^^^^^^^^^^^^
Client root certificate path that server will use to verify client authentication. See :ref:`work-with-secure-port`.
.. code-block:: python
"ROOT_CERTIFICATES_PATH": "/path/to/certificates.pem"
.. _settings-require-client-auth:
REQUIRE_CLIENT_AUTH
^^^^^^^^^^^^^^^^^^^
A boolean indicating whether or not to require clients to be authenticated. May only be True if :ref:`settings-root-certificates-path` is not None. See :ref:`work-with-secure-port`.
.. code-block:: python
"REQUIRE_CLIENT_AUTH": True
.. _settings-filter-behavior:
FILTER_BEHAVIOR
^^^^^^^^^^^^^^^
.. warning::
Default behavior will change in 1.0.0 to accept only request filtering. If you start a new project please consider setting FILTER_BEHAVIOR to REQUEST_STRUCT_STRICT
Variable allowing user to configure how the filter work.
The differents options are described in :func:`django_socio_grpc.settings.FilterAndPaginationBehaviorOptions`
.. code-block:: python
from django_socio_grpc.settings import FilterAndPaginationBehaviorOptions
"FILTER_BEHAVIOR": FilterAndPaginationBehaviorOptions.METADATA_STRICT
.. _settings-pagination-behavior:
PAGINATION_BEHAVIOR
^^^^^^^^^^^^^^^^^^^
.. warning::
Default behavior will change in 1.0.0 to accept only request filtering. If you start a new project please consider setting PAGINATION_BEHAVIOR to REQUEST_STRUCT_STRICT
Variable allowing user to configure how the pagination work.
The differents options are described in :func:`django_socio_grpc.settings.FilterAndPaginationBehaviorOptions`
.. code-block:: python
from django_socio_grpc.settings import FilterAndPaginationBehaviorOptions
"PAGINATION_BEHAVIOR": FilterAndPaginationBehaviorOptions.METADATA_STRICT
.. _settings-default-message-name-constructor:
DEFAULT_MESSAGE_NAME_CONSTRUCTOR
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Variable that indicate the class used to generate the name of the proto messages. Default is :func:`DefaultMessageNameConstructor `.
For more informations see :ref:`the documentation `
.. code-block:: python
"DEFAULT_MESSAGE_NAME_CONSTRUCTOR": "django_socio_grpc.protobuf.message_name_constructor.DefaultMessageNameConstructor"
.. _settings-default-generation-plugin:
DEFAULT_GENERATION_PLUGINS
^^^^^^^^^^^^^^^^^^^^^^^^^^
List of class inherited from :func:`BaseGenerationPlugin `
to specify plugin that are used globally for all actions.
:ref:`See documentation `
.. code-block:: python
"DEFAULT_GENERATION_PLUGINS": ["django_socio_grpc.protobuf.generation_plugin.FilterGenerationPlugin"]
.. _settings-enable-health-check:
ENABLE_HEALTH_CHECK
^^^^^^^^^^^^^^^^^^^
A boolean indicating wether or not the health checking is enabled. Default is False.
For more informations see :ref:`the documentation `
.. code-block:: python
"ENABLE_HEALTH_CHECK": False