Django-rest-framework: Missing primary keys on validated data in ListSerializer subclass .update method

Created on 18 Dec 2014  路  7Comments  路  Source: encode/django-rest-framework

Not sure if this is a bug or PEBKAC, but I'm migrating from DRF2 and currently implementing an .update method on a subclass of ListSerializer. However, the validated_data is missing the primary keys passed in the request. This makes it a little tricky to determine what items are being updated! :-)

I have an AssociatedMedia model which defines a primary key called associated_media_id, and some other fields that aren't relevant to the issue:

class AssociatedMedia(models.Model):
    associated_media_id = models.AutoField(primary_key=True)

There's a corresponding AssociatedMediaSerializer, of which the associated_media_id field is specified in the Meta fields list and not overridden - it defaults to an automatically generated field of type IntegerField(read_only=True) as I would expect.

class AssociatedMediaSerializer(serializers.ModelSerializer):
    [...]
    class Meta:
        list_serializer_class = AssociatedMediaListSerializer
        model = models.AssociatedMedia
        fields = (
            "associated_media_id",
    [...]

There's also an AssociatedMediaListSerializer (as noted above) which includes just the .update method:

class AssociatedMediaListSerializer(serializers.ListSerializer):
    def update(self, instance, validated_data):
    [...]

instance has a list of the expected AssociatedMedia instances already in the database. However, validated_data has everything passed in the request JSON, except for the associated_media_id primary key. For example, a source request of [{'media_type_id': 3, 'sort_order': 1, 'is_approved': False, 'associated_media_id': 2}] ends up as the validated_data of [{u'media_type_id': 3, u'sort_order': 1, u'is_approved': False}].

If I override the associated_media_id field in AssociatedMediaSerializer to be an IntegerField which has read_only=False, it will now appear in validated_data: [{u'media_type_id': 3, u'sort_order': 1, u'is_approved': False, u'associated_media_id': 2}]

It looks like read_only fields are being skipped on validation. I can see SkipField exceptions raised and trapped in DRF's fields.py which look like it might be the cause, because the field has a default set to rest_framework.fields.empty. Overriding the default for the field to another value always sets it to that value rather than the one supplied in the request.

picture metaljoe
👍3

Most helpful comment

it defaults to an automatically generated field of type IntegerField(read_only=True) as I would expect.

Yup. You can override this by specifying the field explicitly on the serializer class. If you're performing bulk updates and expecting to be able to require the ids as part of the input then that's exactly what you need to be doing.

If I override the associated_media_id field in AssociatedMediaSerializer to be an IntegerField which has read_only=False, it will now appear in validated_data: [{u'media_type_id': 3, u'sort_order': 1, u'is_approved': False, u'associated_media_id': 2}]

Indeed. Do that.

It looks like read_only fields are being skipped on validation.

Yeah. They're only for the output representation, so that's to be expected.

Ticket https://github.com/tomchristie/django-rest-framework/issues/2310 is open for improving documentation about this sort of thing, and also links to a bunch of different examples / discussions.

picture tomchristie on 18 Dec 2014
👍9 🎉1

All 7 comments

it defaults to an automatically generated field of type IntegerField(read_only=True) as I would expect.

Yup. You can override this by specifying the field explicitly on the serializer class. If you're performing bulk updates and expecting to be able to require the ids as part of the input then that's exactly what you need to be doing.

If I override the associated_media_id field in AssociatedMediaSerializer to be an IntegerField which has read_only=False, it will now appear in validated_data: [{u'media_type_id': 3, u'sort_order': 1, u'is_approved': False, u'associated_media_id': 2}]

Indeed. Do that.

It looks like read_only fields are being skipped on validation.

Yeah. They're only for the output representation, so that's to be expected.

Ticket https://github.com/tomchristie/django-rest-framework/issues/2310 is open for improving documentation about this sort of thing, and also links to a bunch of different examples / discussions.

tomchristie picture tomchristie on 18 Dec 2014
👍9 🎉1

Excellent, cheers Tom - I'll override the field.

DRF 3 is really helping to clean up a lot of the code for the API I'm working on, so big thank you for all your work.

metaljoe picture metaljoe on 18 Dec 2014

Glad to hear it! :)

tomchristie picture tomchristie on 18 Dec 2014

Hi Tom,
I'm missing something here.. if the ID field is expected to be left out, do I have to always explicitly set it to read_only = False when I want to do a list serializer? Otherwise I don't see how this example could work (data_mapping):

class BookListSerializer(serializers.ListSerializer):
def update(self, instance, validated_data):
# Maps for id->instance and id->data item.
book_mapping = {book.id: book for book in instance}
data_mapping = {item['id']: item for item in validated_data}

Thanks for the clarification.

macav picture macav on 4 Feb 2015

Hi @macav prob best to take this question onto the mailing list. Usage questions against closed tickets tend to get a bit lost.

tomchristie picture tomchristie on 9 Feb 2015

Thanks @tomchristie. I posted it there as you suggested but had no luck in getting answer :/

macav picture macav on 27 Feb 2015

I also had the same issue and posted in the same thread.

silviogutierrez picture silviogutierrez on 14 Nov 2015
Was this page helpful?
0 / 5 - 0 ratings

Related issues

sebdiem picture sebdiem  路  3Comments
aidanlister picture aidanlister  路  4Comments
thnee picture thnee  路  3Comments
hemanthsp picture hemanthsp  路  3Comments
gabn88 picture gabn88  路  3Comments