In this chapter, we improved the RESTful API in many ways. We added user-friendly error messages for when resources aren't unique. We tested how to update single or multiple fields with the PATCH
method and we created our own generic pagination class to enable us to paginate result sets.
Then, we started working with authentication and permissions. We added a user model and we updated the underlying PostgreSQL database. We made many changes in the different pieces of code to achieve a specific security goal and we took advantage of Flask-HTTPAuth
and passlib
to use HTTP authentication in our API.
Now that we have built an improved a complex API that uses pagination and authentication, we will use additional abstractions included in the framework and we will code, execute and improve unit tests to get ready to encapsulate our API in a microservice, which are the topics of the next chapter.