API Access to Moderation Queue

[gflohr]

Checklist

• All new and existing tests are passing
• (If adding features:) I have added tests to cover my changes
• (If docs changes needed:) I have updated the documentation accordingly.
• I have added an entry to CHANGES.rst because this is a user-facing change or an important bugfix
• I have written proper commit message(s)
  

What changes does this Pull Request introduce?

This PR introduces a new API endpoint /pending which works like /latest with the following differences:

• Requests must be authorized with HTTP basic authentication using username "admin" and the admin password.
• The endpoint is enabled in the configuration with [general] pending-enabled set to "true".
• The endpoint only returns posts in the moderation queue.
• The endpoint additionally requires the admin interface to be enabled.

The last requirement is maybe a little bit paranoid. Rationale: the admin password is currently only used for the admin interface. The requirement is meant to ensure that people have changed the default password. On the other hand, the endpoint does not expose sensitive information but only potential spam.

The feature/endpoint only makes sense, when moderation is enabled. But this is not explicitly checked because it causes no harm if moderation is not enabled.

Why is this necessary?

If you want to implement an alternative notification mechanism for comments awaiting moderation, access to the moderation queue via the API is required. The existing /latest endpoint only returns accepted comments. The new endpoint should require authorization because it exposes comments that are not publicly visible.
...

[ix5]

In general, I think this idea is sensible. A few comments inline.

I don't think you really need a new config option for this though. Either someone has already enabled the admin interface, giving anyone with admin credentials access to all comments, or admin is disabled, which will also disable the new /pending endpoint. My concern is that going at this rate, the whole routing system will at some point in the future be (poorly) exposed through the configuration file.

[ix5]

Are these tests guaranteed to be run in order? I'd prefer you un-set the admin.enabled value at test end.

[gflohr]

That is no longer an issue.

[gflohr]

I'm afraid, I will need a couple of weeks to come back to this PR.

[jelmer]

Hi @gflohr , any news on this?

[gflohr]

I'll try to find time within the next couple of days.

[jelmer]

can we make these strings? it's hard to remember what these integers mean

[gflohr]

#1028 (comment) suggested the numeric constants. But make a suggestion for string constants.

[jelmer]

mode=pending vs mode=accepted ?

[gflohr]

Okay. I will change that then.

[gflohr]

I have changed my mind after looking a little bit deeper into isso/views/comments.py. The mode property is a number in all API responses. Do you really want to change that to a string for requests?

[jelmer]

Open to the idea of supporting both integers and strings, but I do strongly feel that we should move away from integers.

[gflohr]

But that can only be done in requests. In the responses, it would break compatibility. So what should I do?

[gflohr]

One way to maintain full backwards compatibility would be to have mode still be a number, but an equivalent parameter state would expect strings. In the responses, both mode and string can then be given. And mode could be deprecated everywhere. But up to you, not my project.

[jelmer]

Please also take a look at the lint failures.

[jelmer]

Open to the idea of supporting both integers and strings, but I do strongly feel that we should move away from integers.