Coding Best Practices

# Backend Code Process: Black Code Formatter

This document outlines the best practices for formatting Python code in our backend services using Black, the uncompromising Python code formatter.

## What is Black?

Black is a PEP 8 compliant opinionated formatter with its own style. It formats code in a consistent, deterministic way, minimizing diffs and eliminating debates about code style.

## Why Black?

- **Consistency**: Ensures uniform code style across all projects
- **Minimal diffs**: Produces smaller git diffs by using consistent formatting rules
- **Readability**: Improves code readability through standardized formatting
- **No debates**: Eliminates style discussions in code reviews
- **PEP 8 compliant**: Follows Python's style guide recommendations

## Installation

```bash
pip install black

pip install -r requirements-dev.txt

[tool.poetry.dev-dependencies]
black = "^25.9.0"

black {source_file_or_directory}

python -m black {source_file_or_directory}

[tool.black]
line-length = 88
target-version = ['py38']
include = '\.pyi?$'
extend-exclude = '''/(\n  # Exclude directories
  \.git
  | \.hg
  | \.mypy_cache
  | \.tox
  | \.venv
  | _build
  | buck-out
  | build
  | dist
)/
'''

[tool.isort]
profile = "black"

[flake8]
max-line-length = 88
extend-ignore = E203,E501,E701

# .pre-commit-config.yaml
repos:
-   repo: https://github.com/psf/black
    rev: 25.9.0
    hooks:
    -   id: black

# Example GitHub Actions workflow
name: Code Quality

on: [push, pull_request]

jobs:
  lint:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - uses: actions/setup-python@v4
        with:
          python-version: '3.10'
      - name: Install dependencies
        run: pip install black
      - name: Check formatting
        run: black --check .

{
    "python.formatting.provider": "black",
    "editor.formatOnSave": true,
    "python.formatting.blackArgs": ["--line-length", "88"]
}

# fmt: off
matrix = [
    1, 0, 0,
    0, 1, 0,
    0, 0, 1,
]
# fmt: on

[tool.black]
line-length = 100  # Custom line length

[tool.black]
target-version = ['py38', 'py39', 'py310']

[tool.black]
skip-string-normalization = true  # Preserves quote style

black --fast {source_file_or_directory}

# fmt: off  # Disable formatting for the next block
hard_coded_array = [
    1,    2,    3,
    4,    5,    6,
]
# fmt: on  # Re-enable formatting

# fmt: skip  # Skip formatting for this line only
my_dict = {"key": "value"}  # This line won't be formatted

long_string = (
    "This is a very long string that would exceed the line length limit "
    "so we break it into multiple lines using implicit string concatenation."
)

# Before formatting
result = some_function_call(argument1, argument2, some_other_function_call(argument3, argument4), yet_another_call())

# After Black formatting
result = some_function_call(
    argument1,
    argument2,
    some_other_function_call(argument3, argument4),
    yet_another_call(),
)

[tool.black]
extend-exclude = '/generated/'

# Format only files changed in the current branch compared to main
git diff --name-only main | grep -E '\.py$' | xargs black

name: Code Quality

on: [push, pull_request]

jobs:
  lint:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      
      - uses: actions/setup-python@v4
        with:
          python-version: '3.10'
          cache: 'pip'
          
      - name: Cache Black
        uses: actions/cache@v3
        with:
          path: ~/.cache/black
          key: black-cache-${{ runner.os }}-${{ hashFiles('**/pyproject.toml') }}
          
      - name: Install dependencies
        run: pip install black
        
      - name: Check formatting
        run: black --check .

name: Format Code

on:
  pull_request:
    paths:
      - '**.py'

jobs:
  format:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
        with:
          ref: ${{ github.head_ref }}
          
      - uses: actions/setup-python@v4
        with:
          python-version: '3.10'
          
      - name: Install Black
        run: pip install black
        
      - name: Format with Black
        run: black .
        
      - name: Commit changes
        uses: stefanzweifel/git-auto-commit-action@v4
        with:
          commit_message: "Apply Black formatting"

# Inefficient - causes N+1 query problem
authors = Author.objects.all()  # 1 query
for author in authors:
    print(author.profile.bio)  # N additional queries, one for each author

# Efficient - only 1 query
authors = Author.objects.select_related('profile').all()
for author in authors:
    print(author.profile.bio)  # No additional queries

# Inefficient - causes N+1 query problem
books = Book.objects.all()  # 1 query
for book in books:
    print([author.name for author in book.authors.all()])  # N additional queries

# Efficient - only 2 queries (one for books, one for all authors)
books = Book.objects.prefetch_related('authors').all()
for book in books:
    print([author.name for author in book.authors.all()])  # No additional queries

from django.db.models import Prefetch

# Prefetch only active authors for each book
books = Book.objects.prefetch_related(
    Prefetch('authors', queryset=Author.objects.filter(active=True))
).all()

# Fetch only what you need
authors = Author.objects.only('name', 'email').all()

# Exclude large fields you don't need
books = Book.objects.defer('content', 'cover_image').all()

from django.db.models import Count, Avg, Sum

# Inefficient
books = Book.objects.all()
avg_rating = sum(book.rating for book in books) / books.count()

# Efficient
avg_rating = Book.objects.aggregate(Avg('rating'))['rating__avg']

from django.db.models import Count, F, ExpressionWrapper, DecimalField

# Add calculated fields to your queryset
books = Book.objects.annotate(
    num_authors=Count('authors'),
    revenue=ExpressionWrapper(F('price') * F('sales'), output_field=DecimalField())
)

# Get just the titles and publication years
book_data = Book.objects.values('title', 'pub_year')

# Get a flat list of all book titles
titles = Book.objects.values_list('title', flat=True)

# Inefficient - N queries
for title in new_titles:
    Book.objects.create(title=title)

# Efficient - 1 query
Book.objects.bulk_create([Book(title=title) for title in new_titles])

# Bulk update
Book.objects.filter(publisher=old_publisher).update(publisher=new_publisher)

# Bulk delete
Book.objects.filter(pub_year__lt=2000).delete()

# Inefficient - retrieves all records
if Book.objects.filter(author=author).count() > 0:
    # Do something

# Efficient - stops after finding first match
if Book.objects.filter(author=author).exists():
    # Do something

from django.db.models import Q

# Find books that match either condition
books = Book.objects.filter(
    Q(title__icontains='django') | Q(tags__name='python')
).distinct()

class Book(models.Model):
    title = models.CharField(max_length=200)
    pub_date = models.DateField(db_index=True)  # Add index
    
    class Meta:
        indexes = [
            models.Index(fields=['title']),
            models.Index(fields=['author', 'pub_date']),  # Composite index
        ]

# Process millions of records without loading all into memory
for book in Book.objects.iterator():
    process_book(book)

# settings.py
DATABASES = {
    'default': {
        'ENGINE': 'dj_db_conn_pool.backends.postgresql',
        'NAME': 'mydatabase',
        'USER': 'myuser',
        'PASSWORD': 'mypassword',
        'HOST': 'localhost',
        'PORT': '5432',
        'POOL_OPTIONS': {
            'POOL_SIZE': 20,
            'MAX_OVERFLOW': 10,
            'RECYCLE': 300,  # Recycle connections after 5 minutes
        }
    }
}

from django.db import connection

def fast_count(table_name):
    cursor = connection.cursor()
    cursor.execute(f"SELECT COUNT(*) FROM {table_name}")
    return cursor.fetchone()[0]

from django.contrib.postgres.search import SearchVector, SearchQuery, SearchRank

# PostgreSQL full-text search
books = Book.objects.annotate(
    search=SearchVector('title', 'description'),
).filter(search=SearchQuery('python programming')).annotate(
    rank=SearchRank('search', SearchQuery('python programming'))
).order_by('-rank')

# settings.py
REST_FRAMEWORK = {
    'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.PageNumberPagination',
    'PAGE_SIZE': 100,
}

# For specific views with custom pagination
class LargeResultsSetPagination(PageNumberPagination):
    page_size = 1000
    page_size_query_param = 'page_size'
    max_page_size = 10000

class BookViewSet(viewsets.ModelViewSet):
    queryset = Book.objects.all()
    serializer_class = BookSerializer
    pagination_class = LargeResultsSetPagination

class BookListSerializer(serializers.ModelSerializer):
    class Meta:
        model = Book
        fields = ['id', 'title', 'author_name', 'pub_year']

class BookDetailSerializer(serializers.ModelSerializer):
    class Meta:
        model = Book
        fields = '__all__'
        depth = 1

class BookViewSet(viewsets.ModelViewSet):
    queryset = Book.objects.all()
    
    def get_serializer_class(self):
        if self.action == 'list':
            return BookListSerializer
        return BookDetailSerializer

# Inefficient - causes N+1 query problem
class BookSerializer(serializers.ModelSerializer):
    author_books_count = serializers.SerializerMethodField()
    
    class Meta:
        model = Book
        fields = ['id', 'title', 'author', 'author_books_count']
    
    def get_author_books_count(self, obj):
        return obj.author.books.count()  # One query per book

# Efficient - annotate the queryset before serialization
class BookViewSet(viewsets.ModelViewSet):
    serializer_class = BookSerializer
    
    def get_queryset(self):
        return Book.objects.annotate(author_books_count=Count('author__books'))

class BookSerializer(serializers.ModelSerializer):
    author_books_count = serializers.IntegerField(read_only=True)
    
    class Meta:
        model = Book
        fields = ['id', 'title', 'author', 'author_books_count']

from django.utils.decorators import method_decorator
from django.views.decorators.cache import cache_page

class BookViewSet(viewsets.ReadOnlyModelViewSet):
    queryset = Book.objects.all()
    serializer_class = BookSerializer
    
    @method_decorator(cache_page(60 * 15))  # Cache for 15 minutes
    def list(self, request, *args, **kwargs):
        return super().list(request, *args, **kwargs)

# settings.py
REST_FRAMEWORK = {
    'DEFAULT_THROTTLE_CLASSES': [
        'rest_framework.throttling.AnonRateThrottle',
        'rest_framework.throttling.UserRateThrottle'
    ],
    'DEFAULT_THROTTLE_RATES': {
        'anon': '100/day',
        'user': '1000/day'
    }
}

from django_filters.rest_framework import DjangoFilterBackend

class BookViewSet(viewsets.ModelViewSet):
    queryset = Book.objects.all()
    serializer_class = BookSerializer
    filter_backends = [DjangoFilterBackend]
    filterset_fields = ['title', 'author', 'genre', 'pub_year']

# settings.py
REST_FRAMEWORK = {
    'DEFAULT_VERSIONING_CLASS': 'rest_framework.versioning.URLPathVersioning',
    'DEFAULT_VERSION': 'v1',
    'ALLOWED_VERSIONS': ['v1', 'v2'],
}

# urls.py
urlpatterns = [
    path('api/v1/', include('api.v1.urls')),
    path('api/v2/', include('api.v2.urls')),
]

# settings.py
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': [
        'rest_framework.authentication.TokenAuthentication',
        'rest_framework_simplejwt.authentication.JWTAuthentication',
    ],
    'DEFAULT_PERMISSION_CLASSES': [
        'rest_framework.permissions.IsAuthenticated',
    ],
}

REST_FRAMEWORK = {
    'DEFAULT_RENDERER_CLASSES': [
        'rest_framework.renderers.JSONRenderer',
        'rest_framework.renderers.BrowsableAPIRenderer',
    ],
    'DEFAULT_PARSER_CLASSES': [
        'rest_framework.parsers.JSONParser',
        'rest_framework.parsers.FormParser',
        'rest_framework.parsers.MultiPartParser',
    ],
}

# tasks.py
from celery import shared_task

@shared_task
def generate_report(user_id):
    # Long-running task
    pass

# views.py
class ReportViewSet(viewsets.ViewSet):
    def create(self, request):
        task = generate_report.delay(request.user.id)
        return Response({'task_id': task.id}, status=202)  # Accepted

# exceptions.py
from rest_framework.views import exception_handler
from rest_framework.response import Response

def custom_exception_handler(exc, context):
    response = exception_handler(exc, context)
    
    if response is not None:
        response.data = {
            'error': {
                'code': response.status_code,
                'message': response.data.get('detail', str(exc)),
                'errors': response.data if 'detail' not in response.data else None
            }
        }
    
    return response

# settings.py
REST_FRAMEWORK = {
    'EXCEPTION_HANDLER': 'myapp.exceptions.custom_exception_handler',
}

# settings.py
INSTALLED_APPS = [
    # ...
    'drf_spectacular',
]

REST_FRAMEWORK = {
    'DEFAULT_SCHEMA_CLASS': 'drf_spectacular.openapi.AutoSchema',
}

SPECTACULAR_SETTINGS = {
    'TITLE': 'Your API',
    'DESCRIPTION': 'Your API description',
    'VERSION': '1.0.0',
}

# urls.py
from drf_spectacular.views import SpectacularAPIView, SpectacularSwaggerView

urlpatterns = [
    # ...
    path('api/schema/', SpectacularAPIView.as_view(), name='schema'),
    path('api/docs/', SpectacularSwaggerView.as_view(url_name='schema'), name='swagger-ui'),
]

from rest_framework.test import APITestCase

class BookAPITestCase(APITestCase):
    def setUp(self):
        self.user = User.objects.create_user(username='testuser', password='password')
        self.client.force_authenticate(user=self.user)
        
    def test_list_books(self):
        response = self.client.get('/api/books/')
        self.assertEqual(response.status_code, 200)

class TimeStampedModel(models.Model):
    created_at = models.DateTimeField(auto_now_add=True)
    updated_at = models.DateTimeField(auto_now=True)
    
    class Meta:
        abstract = True

class Book(TimeStampedModel):
    title = models.CharField(max_length=200)
    # No need to redefine created_at and updated_at

class OwnershipMixin:
    def get_queryset(self):
        return super().get_queryset().filter(owner=self.request.user)

class BookViewSet(OwnershipMixin, viewsets.ModelViewSet):
    queryset = Book.objects.all()
    serializer_class = BookSerializer

<!-- base.html -->
<!DOCTYPE html>
<html>
<head>
    <title>{% block title %}Default Title{% endblock %}</title>
    {% block extra_css %}{% endblock %}
</head>
<body>
    {% block content %}{% endblock %}
    {% block extra_js %}{% endblock %}


</body>
</html>

<!-- book_list.html -->

<div data-gb-custom-block data-tag="extends" data-0='base.html'></div>

<div data-gb-custom-block data-tag="block">Book List</div>

<div data-gb-custom-block data-tag="block">
    <h1>Books</h1>
    <ul>
        {% for book in books %}
            <li>{{ book.title }}</li>
        {% endfor %}
    </ul>
</div>

# utils.py
def generate_unique_slug(instance, slug_field, new_slug=None):
    """Generate a unique slug for a model instance."""
    if new_slug is not None:
        slug = new_slug
    else:
        slug = slugify(getattr(instance, slug_field))
    
    Klass = instance.__class__
    qs = Klass.objects.filter(slug=slug).exclude(pk=instance.pk)
    if qs.exists():
        # Slug exists, generate new unique slug
        new_slug = f"{slug}-{qs.count() + 1}"
        return generate_unique_slug(instance, slug_field, new_slug=new_slug)
    return slug

# models.py
from .utils import generate_unique_slug

class Article(models.Model):
    title = models.CharField(max_length=200)
    slug = models.SlugField(unique=True)
    
    def save(self, *args, **kwargs):
        if not self.slug:
            self.slug = generate_unique_slug(self, 'title')
        super().save(*args, **kwargs)

from django.views.generic import ListView, DetailView, CreateView, UpdateView, DeleteView

class BookListView(ListView):
    model = Book
    context_object_name = 'books'

class BookDetailView(DetailView):
    model = Book

class BookCreateView(CreateView):
    model = Book
    form_class = BookForm
    success_url = reverse_lazy('book-list')

# urls.py
from django.urls import path, include
from rest_framework.routers import DefaultRouter
from . import views

app_name = 'books'

router = DefaultRouter()
router.register('books', views.BookViewSet)
router.register('authors', views.AuthorViewSet)

urlpatterns = [
    path('api/', include(router.urls)),
]

# settings.py
BOOK_COVER_UPLOAD_PATH = 'covers/%Y/%m/'

# models.py
from django.conf import settings

class Book(models.Model):
    cover = models.ImageField(upload_to=settings.BOOK_COVER_UPLOAD_PATH)

# templatetags/book_tags.py
from django import template

register = template.Library()

@register.filter
def author_books_count(author):
    return author.books.count()

@register.inclusion_tag('books/book_list_snippet.html')
def show_latest_books(count=5):
    latest_books = Book.objects.order_by('-pub_date')[:count]
    return {'books': latest_books}

# signals.py
from django.db.models.signals import post_save
from django.dispatch import receiver
from .models import Book, BookIndex

@receiver(post_save, sender=Book)
def update_book_index(sender, instance, created, **kwargs):
    """Update search index when a book is saved."""
    BookIndex.objects.update_or_create(
        book=instance,
        defaults={
            'title': instance.title,
            'content': instance.content,
            'author': instance.author.name
        }
    )

class BaseBookForm(forms.ModelForm):
    def clean_title(self):
        title = self.cleaned_data['title']
        if len(title) < 5:
            raise forms.ValidationError("Title must be at least 5 characters long")
        return title

class CreateBookForm(BaseBookForm):
    class Meta:
        model = Book
        fields = ['title', 'author', 'content']

class UpdateBookForm(BaseBookForm):
    class Meta:
        model = Book
        fields = ['title', 'content']

# Too abstract and hard to follow
class GenericProcessor:
    def process(self, obj, action, **kwargs):
        method = getattr(self, f"process_{action}")
        return method(obj, **kwargs)
    
    def process_validate(self, obj, **kwargs):
        pass
    
    def process_transform(self, obj, **kwargs):
        pass
    
    def process_save(self, obj, **kwargs):
        pass

# Don't create abstractions for one-off use cases
# Wait until you see the pattern repeated

# It might be better to have some duplication if it keeps
# modules decoupled and independently maintainable

class BaseModel(models.Model):
    created = models.DateTimeField(auto_now_add=True)
    updated = models.DateTimeField(auto_now=True)
    
    class Meta:
        abstract = True

class Product(BaseModel):
    name = models.CharField(max_length=100)
    # Other fields...

import uuid
from django.db import models

class Product(models.Model):
    id = models.AutoField(primary_key=True)  # Private ID
    uid = models.UUIDField(default=uuid.uuid4, editable=False, unique=True)  # Public ID
    name = models.CharField(max_length=100)

# Inefficient - Python processing
students = []
for student in Student.objects.iterator():
    if student.math_score > student.english_score:
        students.append(student)

# Efficient - Database processing
from django.db.models import F
students = Student.objects.filter(math_score__gt=F('english_score'))

# Less flexible
student = Student.objects.get(id=42)

# More flexible
student = Student.objects.get(pk=42)

product = Product.objects.get(pk=1)
product.name = "new product name"
product.save(update_fields=['name'])

# Inefficient
if queryset.count() > 0:
    # Do something

# Efficient
if queryset.exists():
    # Do something

class Product(models.Model):
    name = models.CharField(max_length=100)
    
    class Meta:
        ordering = ['name']

from django.views.generic import ListView

class ProductListView(ListView):
    model = Product
    template_name = 'products/list.html'
    context_object_name = 'products'
    paginate_by = 20
    
    def get_queryset(self):
        return Product.objects.filter(is_active=True)

from django.shortcuts import render

def product_list(request):
    products = Product.objects.filter(is_active=True)
    return render(request, 'products/list.html', {'products': products})

class StaffRequiredMixin:
    def dispatch(self, request, *args, **kwargs):
        if not request.user.is_staff:
            return redirect('login')
        return super().dispatch(request, *args, **kwargs)

class ProductAdminView(StaffRequiredMixin, UpdateView):
    model = Product
    # Other view attributes

class ProductListView(ListView):
    model = Product
    
    def get_queryset(self):
        queryset = super().get_queryset()
        category = self.request.GET.get('category')
        if category:
            queryset = queryset.filter(category__slug=category)
        return queryset
    
    def get_context_data(self, **kwargs):
        context = super().get_context_data(**kwargs)
        context['categories'] = Category.objects.all()
        return context

class BookListView(ListView):
    def get_queryset(self):
        return Book.objects.select_related('publisher').prefetch_related('authors')

from django.core.paginator import Paginator

def product_list(request):
    products = Product.objects.all()
    paginator = Paginator(products, 25)  # 25 products per page
    page_number = request.GET.get('page')
    page_obj = paginator.get_page(page_number)
    return render(request, 'products/list.html', {'page_obj': page_obj})

<!-- base.html -->
<!DOCTYPE html>
<html>
<head>
    <title>{% block title %}Default Title{% endblock %}</title>
    {% block extra_css %}{% endblock %}
</head>
<body>
    {% block content %}{% endblock %}
    {% block extra_js %}{% endblock %}


</body>
</html>

<!-- product_list.html -->

<div data-gb-custom-block data-tag="extends" data-0='base.html'></div>

<div data-gb-custom-block data-tag="block">Product List</div>

<div data-gb-custom-block data-tag="block">

    <h1>Products</h1>
    <!-- Product list content -->

</div>

# templatetags/product_tags.py
from django import template

register = template.Library()

@register.filter
def discount_price(price, discount):
    return price * (1 - discount / 100)

@register.inclusion_tag('products/featured.html')
def show_featured_products(count=5):
    products = Product.objects.filter(featured=True)[:count]
    return {'products': products}

<div data-gb-custom-block data-tag="load"></div>

<div data-gb-custom-block data-tag="cache" data-0='600'>
    {% for product in products %}
        <!-- Product display code -->
    {% endfor %}
</div>

<!-- Bad: Performs a database query for each product -->

<div data-gb-custom-block data-tag="for">

    <p>{{ product.name }} - {{ product.category.all.count }} related products</p>

</div>

<!-- Good: Prefetch related data in the view -->

<div data-gb-custom-block data-tag="for">

    <p>{{ product.name }} - {{ product.categories_count }} related products</p>

</div>

CSP_DEFAULT_SRC = ("'self'",)
CSP_SCRIPT_SRC = ("'self'", "trusted-cdn.com")
CSP_STYLE_SRC = ("'self'", "trusted-cdn.com")

<form method="post">
    {% csrf_token %}
    <!-- Form fields -->
    <button type="submit">Submit</button>
</form>

from django.db import connection

def get_products_by_category(category_id):
    with connection.cursor() as cursor:
        cursor.execute(
            "SELECT * FROM products WHERE category_id = %s",
            [category_id]
        )
        return cursor.fetchall()

from django.contrib.auth.mixins import PermissionRequiredMixin

class ProductDeleteView(PermissionRequiredMixin, DeleteView):
    model = Product
    permission_required = 'products.delete_product'
    success_url = reverse_lazy('product-list')

# settings.py
INSTALLED_APPS = [
    # ...
    'axes',
]

MIDDLEWARE = [
    # ...
    'axes.middleware.AxesMiddleware',
]

AXES_FAILURE_LIMIT = 5  # Lock out after 5 failed attempts

# settings.py
SECURE_SSL_REDIRECT = True
SESSION_COOKIE_SECURE = True
CSRF_COOKIE_SECURE = True

# settings.py
SECURE_HSTS_SECONDS = 31536000  # 1 year
SECURE_HSTS_INCLUDE_SUBDOMAINS = True
SECURE_CONTENT_TYPE_NOSNIFF = True
SECURE_BROWSER_XSS_FILTER = True
X_FRAME_OPTIONS = 'DENY'

project/
├── config/             # Project configuration
├── products/           # Product feature
│   ├── models.py
│   ├── views.py
│   ├── urls.py
│   ├── forms.py
│   ├── services.py     # Business logic
│   └── tests/
├── orders/             # Order feature
│   ├── models.py
│   ├── views.py
│   └── ...
└── users/              # User feature
    ├── models.py
    ├── views.py
    └── ...

# services.py
class OrderService:
    @staticmethod
    def create_order(user, cart_items):
        order = Order.objects.create(user=user)
        for item in cart_items:
            OrderItem.objects.create(
                order=order,
                product=item.product,
                quantity=item.quantity,
                price=item.product.price
            )
        return order

# views.py
from .services import OrderService

def checkout(request):
    cart_items = Cart.objects.filter(user=request.user)
    order = OrderService.create_order(request.user, cart_items)
    return redirect('order-confirmation', order_id=order.id)

class ProductRepository:
    @staticmethod
    def get_active_products():
        return Product.objects.filter(is_active=True)
    
    @staticmethod
    def get_featured_products(limit=5):
        return Product.objects.filter(is_featured=True)[:limit]
    
    @staticmethod
    def get_by_category(category_slug):
        return Product.objects.filter(category__slug=category_slug)

class ReportFactory:
    @staticmethod
    def create_report(report_type, data):
        if report_type == 'sales':
            return SalesReport(data)
        elif report_type == 'inventory':
            return InventoryReport(data)
        else:
            raise ValueError(f"Unknown report type: {report_type}")

from django.db.models.signals import post_save
from django.dispatch import receiver

@receiver(post_save, sender=Order)
def order_created_handler(sender, instance, created, **kwargs):
    if created:
        # Send confirmation email
        send_order_confirmation_email(instance)
        
        # Update inventory
        update_inventory_for_order(instance)

project/
├── app1/
│   └── tests/
│       ├── __init__.py
│       ├── test_models.py
│       ├── test_views.py
│       └── test_forms.py
└── app2/
    └── tests/
        ├── __init__.py
        └── ...

from django.test import TestCase

class ProductModelTest(TestCase):
    def setUp(self):
        self.product = Product.objects.create(
            name="Test Product",
            price=9.99,
            is_active=True
        )
    
    def test_product_str(self):
        self.assertEqual(str(self.product), "Test Product")
    
    def test_product_is_active(self):
        self.assertTrue(self.product.is_active)

class DiscountCalculatorTest(TestCase):
    def test_calculate_discount(self):
        calculator = DiscountCalculator()
        self.assertEqual(calculator.calculate(100, 20), 80)

class OrderProcessingTest(TestCase):
    def setUp(self):
        self.user = User.objects.create_user('testuser', '[email protected]', 'password')
        self.product = Product.objects.create(name="Test Product", price=10.00)
        self.cart = Cart.objects.create(user=self.user)
        CartItem.objects.create(cart=self.cart, product=self.product, quantity=2)
    
    def test_order_creation(self):
        order_service = OrderService()
        order = order_service.create_from_cart(self.cart)
        
        self.assertEqual(order.user, self.user)
        self.assertEqual(order.items.count(), 1)
        self.assertEqual(order.total, 20.00)

class ProductViewTest(TestCase):
    def setUp(self):
        self.client = Client()
        self.product = Product.objects.create(
            name="Test Product",
            price=9.99,
            slug="test-product"
        )
    
    def test_product_detail_view(self):
        response = self.client.get(f'/products/{self.product.slug}/')
        self.assertEqual(response.status_code, 200)
        self.assertContains(response, "Test Product")
        self.assertTemplateUsed(response, 'products/detail.html')

import pytest
from django.urls import reverse

@pytest.mark.django_db
def test_product_list_view(client):
    url = reverse('product-list')
    response = client.get(url)
    assert response.status_code == 200

import factory
from django.contrib.auth.models import User
from myapp.models import Product

class UserFactory(factory.django.DjangoModelFactory):
    class Meta:
        model = User
    
    username = factory.Sequence(lambda n: f'user{n}')
    email = factory.LazyAttribute(lambda o: f'{o.username}@example.com')

class ProductFactory(factory.django.DjangoModelFactory):
    class Meta:
        model = Product
    
    name = factory.Sequence(lambda n: f'Product {n}')
    price = factory.Faker('pydecimal', left_digits=3, right_digits=2, positive=True)
    created_by = factory.SubFactory(UserFactory)

from unittest.mock import patch

class PaymentServiceTest(TestCase):
    @patch('myapp.services.payment.stripe.Charge.create')
    def test_process_payment(self, mock_charge_create):
        mock_charge_create.return_value = {'id': 'ch_test123', 'status': 'succeeded'}
        
        payment_service = PaymentService()
        result = payment_service.process_payment('tok_visa', 1000, 'usd')
        
        self.assertTrue(result['success'])
        mock_charge_create.assert_called_once_with(
            amount=1000,
            currency='usd',
            source='tok_visa',
            description='Payment for order'
        )

# Run tests with coverage
coverage run --source='.' manage.py test

# Generate a report
coverage report

# Generate HTML report
coverage html

# .github/workflows/test.yml
name: Django Tests

on: [push, pull_request]

jobs:
  test:
    runs-on: ubuntu-latest
    
    services:
      postgres:
        image: postgres:13
        env:
          POSTGRES_USER: postgres
          POSTGRES_PASSWORD: postgres
          POSTGRES_DB: test_db
        ports:
          - 5432:5432
        options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5
    
    steps:
    - uses: actions/checkout@v3
    - name: Set up Python
      uses: actions/setup-python@v4
      with:
        python-version: '3.10'
    
    - name: Install dependencies
      run: |
        python -m pip install --upgrade pip
        pip install -r requirements.txt
    
    - name: Run tests
      run: |
        python manage.py test
      env:
        DATABASE_URL: postgres://postgres:postgres@localhost:5432/test_db

# settings.py
import os
from pathlib import Path

# Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent

# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = os.environ.get('DJANGO_SECRET_KEY')

# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = os.environ.get('DJANGO_DEBUG', '') == 'True'

ALLOWED_HOSTS = os.environ.get('DJANGO_ALLOWED_HOSTS', '').split(',')

# Database
DATABASES = {
    'default': {
        'ENGINE': 'django.db.backends.postgresql',
        'NAME': os.environ.get('DB_NAME'),
        'USER': os.environ.get('DB_USER'),
        'PASSWORD': os.environ.get('DB_PASSWORD'),
        'HOST': os.environ.get('DB_HOST'),
        'PORT': os.environ.get('DB_PORT', '5432'),
    }
}

# settings.py
import environ

env = environ.Env(
    # set casting, default value
    DEBUG=(bool, False)
)

# Take environment variables from .env file
environ.Env.read_env(os.path.join(BASE_DIR, '.env'))

# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = env('SECRET_KEY')

# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = env('DEBUG')

ALLOWED_HOSTS = env.list('ALLOWED_HOSTS')

# Database
DATABASES = {
    'default': env.db(),
}

# settings.py
STATIC_URL = '/static/'
STATIC_ROOT = os.path.join(BASE_DIR, 'staticfiles')

if not DEBUG:
    # Use a CDN in production
    STATIC_URL = 'https://your-cdn.com/static/'
    
    # Configure AWS S3 for media files
    DEFAULT_FILE_STORAGE = 'storages.backends.s3boto3.S3Boto3Storage'
    AWS_ACCESS_KEY_ID = env('AWS_ACCESS_KEY_ID')
    AWS_SECRET_ACCESS_KEY = env('AWS_SECRET_ACCESS_KEY')
    AWS_STORAGE_BUCKET_NAME = env('AWS_STORAGE_BUCKET_NAME')
    AWS_S3_CUSTOM_DOMAIN = f'{AWS_STORAGE_BUCKET_NAME}.s3.amazonaws.com'
    MEDIA_URL = f'https://{AWS_S3_CUSTOM_DOMAIN}/media/'

# settings.py
INSTALLED_APPS = [
    # ...
    'compressor',
]

STATICFILES_FINDERS = [
    'django.contrib.staticfiles.finders.FileSystemFinder',
    'django.contrib.staticfiles.finders.AppDirectoriesFinder',
    'compressor.finders.CompressorFinder',
]

COMPRESSOR_ENABLED = not DEBUG

# settings.py
CACHES = {
    'default': {
        'BACKEND': 'django.core.cache.backends.redis.RedisCache',
        'LOCATION': env('REDIS_URL'),
    }
}

# Cache middleware
MIDDLEWARE = [
    'django.middleware.cache.UpdateCacheMiddleware',
    # ... other middleware
    'django.middleware.cache.FetchFromCacheMiddleware',
]

# Cache settings
CACHE_MIDDLEWARE_SECONDS = 60 * 15  # 15 minutes

# celery.py
import os
from celery import Celery

os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'project.settings')

app = Celery('project')
app.config_from_object('django.conf:settings', namespace='CELERY')
app.autodiscover_tasks()

# tasks.py
from celery import shared_task

@shared_task
def process_order(order_id):
    order = Order.objects.get(id=order_id)
    # Process the order
    order.status = 'processing'
    order.save()
    # Send confirmation email
    send_order_confirmation(order)
    return True

# settings.py
LOGGING = {
    'version': 1,
    'disable_existing_loggers': False,
    'formatters': {
        'verbose': {
            'format': '{levelname} {asctime} {module} {message}',
            'style': '{',
        },
    },
    'handlers': {
        'file': {
            'level': 'INFO',
            'class': 'logging.FileHandler',
            'filename': os.path.join(BASE_DIR, 'logs/django.log'),
            'formatter': 'verbose',
        },
        'console': {
            'level': 'INFO',
            'class': 'logging.StreamHandler',
            'formatter': 'verbose',
        },
    },
    'loggers': {
        'django': {
            'handlers': ['file', 'console'],
            'level': 'INFO',
            'propagate': True,
        },
        'myapp': {
            'handlers': ['file', 'console'],
            'level': 'INFO',
            'propagate': True,
        },
    },
}

# settings.py
INSTALLED_APPS = [
    # ...
    'django_prometheus',
]

MIDDLEWARE = [
    'django_prometheus.middleware.PrometheusBeforeMiddleware',
    # ... other middleware
    'django_prometheus.middleware.PrometheusAfterMiddleware',
]

# urls.py
urlpatterns = [
    # ...
    path('metrics/', include('django_prometheus.urls')),
]

# myapp/management/commands/import_products.py
from django.core.management.base import BaseCommand
from myapp.models import Product
import csv

class Command(BaseCommand):
    help = 'Import products from a CSV file'

    def add_arguments(self, parser):
        parser.add_argument('csv_file', type=str, help='Path to the CSV file')

    def handle(self, *args, **options):
        csv_file = options['csv_file']
        count = 0
        
        with open(csv_file, 'r') as file:
            reader = csv.DictReader(file)
            for row in reader:
                Product.objects.create(
                    name=row['name'],
                    price=float(row['price']),
                    description=row['description'],
                    is_active=row['is_active'].lower() == 'true'
                )
                count += 1
        
        self.stdout.write(self.style.SUCCESS(f'Successfully imported {count} products'))

# myapp/templatetags/pagination_tags.py
from django import template

register = template.Library()

@register.inclusion_tag('common/pagination.html')
def paginate(page_obj, url_name, **kwargs):
    """Render pagination for a page object."""
    return {
        'page_obj': page_obj,
        'url_name': url_name,
        'kwargs': kwargs,
    }

# myapp/middleware.py
import time
import logging

logger = logging.getLogger('myapp.middleware')

class RequestTimingMiddleware:
    def __init__(self, get_response):
        self.get_response = get_response

    def __call__(self, request):
        start_time = time.time()
        
        response = self.get_response(request)
        
        duration = time.time() - start_time
        logger.info(f'Request to {request.path} took {duration:.2f}s')
        
        # Add timing header to response
        response['X-Request-Duration'] = f'{duration:.2f}s'
        
        return response

# myapp/context_processors.py
from myapp.models import Category

def categories(request):
    """Add categories to all templates."""
    return {
        'categories': Category.objects.all(),
    }

# settings.py
TEMPLATES = [
    {
        # ...
        'OPTIONS': {
            'context_processors': [
                # ...
                'myapp.context_processors.categories',
            ],
        },
    },
]

# myapp/models.py
from django.db import models

class ActiveProductManager(models.Manager):
    def get_queryset(self):
        return super().get_queryset().filter(is_active=True)
    
    def featured(self):
        return self.get_queryset().filter(is_featured=True)

class Product(models.Model):
    name = models.CharField(max_length=100)
    price = models.DecimalField(max_digits=10, decimal_places=2)
    is_active = models.BooleanField(default=True)
    is_featured = models.BooleanField(default=False)
    
    objects = models.Manager()  # Default manager
    active = ActiveProductManager()  # Custom manager
    
    # Usage:
    # Product.objects.all()  # All products
    # Product.active.all()  # Only active products
    # Product.active.featured()  # Only active and featured products

# Install Channels
pip install channels

# Add to INSTALLED_APPS
INSTALLED_APPS = [
    # ...
    'channels',
]

# Configure the ASGI application in asgi.py
import os
from channels.routing import ProtocolTypeRouter, URLRouter
from django.core.asgi import get_asgi_application

os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'myproject.settings')

application = ProtocolTypeRouter({
    'http': get_asgi_application(),
    'websocket': URLRouter([
        # Your WebSocket routes here
    ]),
})

async def async_view(request):
    # Perform async operations
    await asyncio.sleep(1)  # Non-blocking sleep
    data = await async_function()  # Call async function
    return JsonResponse(data)

# Install Uvicorn
pip install uvicorn

# Run with Uvicorn
uvicorn myproject.asgi:application

.
├── apps/                      # All Django applications
│   ├── accounts/             # User accounts app
│   │   ├── api/              # API components
│   │   │   ├── v1/           # API version 1
│   │   │   │   ├── serializers.py
│   │   │   │   ├── urls.py
│   │   │   │   └── views.py
│   │   │   └── __init__.py
│   │   ├── migrations/
│   │   ├── templates/        # App-specific templates
│   │   ├── tests/            # App-specific tests
│   │   ├── __init__.py
│   │   ├── admin.py
│   │   ├── apps.py
│   │   ├── models.py
│   │   ├── services.py       # Business logic
│   │   ├── urls.py
│   │   └── views.py
│   └── __init__.py
├── config/                    # Project configuration
│   ├── __init__.py
│   ├── asgi.py
│   ├── settings.py
│   ├── urls.py
│   └── wsgi.py
├── deployments/               # Deployment configurations
│   ├── docker/
│   └── nginx/
├── docs/                      # Project documentation
│   ├── CHANGELOG.md
│   └── deployment.md
├── requirements/              # Dependencies by environment
│   ├── common.txt
│   ├── development.txt
│   └── production.txt
├── static/                    # Static files
├── templates/                 # Project-level templates
├── .env.example               # Example environment variables
├── .gitignore
├── manage.py
└── README.md

app/
├── api/
│   ├── v1/
│   │   ├── serializers.py
│   │   ├── urls.py
│   │   └── views.py
│   └── v2/
       ├── serializers.py
       ├── urls.py
       └── views.py

# services.py
class OrderService:
    @staticmethod
    def create_order(user, items):
        # Business logic for creating an order
        order = Order.objects.create(user=user)
        # More logic...
        return order

# Future imports
from __future__ import annotations

# Standard library
import json
from datetime import datetime

# Third-party
import requests

# Django
from django.db import models
from django.conf import settings

# Local
from .models import Product

class Product(models.Model):
    # 1. Fields
    name = models.CharField(max_length=100)
    price = models.DecimalField(max_digits=10, decimal_places=2)
    created_at = models.DateTimeField(auto_now_add=True)
    
    # 2. Custom manager
    objects = ProductManager()
    
    # 3. Meta
    class Meta:
        ordering = ['-created_at']
        verbose_name_plural = 'products'
    
    # 4. String representation
    def __str__(self):
        return self.name
    
    # 5. Save method
    def save(self, *args, **kwargs):
        # Custom save logic
        super().save(*args, **kwargs)
    
    # 6. URL
    def get_absolute_url(self):
        return reverse('product-detail', kwargs={'pk': self.pk})
    
    # 7. Custom methods
    def is_on_sale(self):
        return self.price < self.regular_price

# settings.py - Use strong password validators
AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
        'OPTIONS': {'min_length': 12},
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]

# Install django-two-factor-auth
pip install django-two-factor-auth

# Add to INSTALLED_APPS
INSTALLED_APPS = [
    # ...
    'django_otp',
    'django_otp.plugins.otp_totp',
    'django_otp.plugins.otp_static',
    'two_factor',
]

# Add to MIDDLEWARE
MIDDLEWARE = [
    # ...
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django_otp.middleware.OTPMiddleware',
]

# Using function decorators
from django.contrib.auth.decorators import permission_required

@permission_required('app.change_model')
def edit_model(request, model_id):
    # View logic here
    pass

# Using class-based view mixins
from django.contrib.auth.mixins import PermissionRequiredMixin

class EditModelView(PermissionRequiredMixin, UpdateView):
    permission_required = 'app.change_model'
    # View attributes

# Install django-csp
pip install django-csp

# Add to MIDDLEWARE
MIDDLEWARE = [
    # ...
    'csp.middleware.CSPMiddleware',
]

# Configure CSP
CSP_DEFAULT_SRC = ("'self'",)
CSP_SCRIPT_SRC = ("'self'", "trusted-cdn.com")
CSP_STYLE_SRC = ("'self'", "trusted-cdn.com")
CSP_IMG_SRC = ("'self'", "trusted-cdn.com", "data:")

<form method="post">
    {% csrf_token %}
    <!-- Form fields -->
    <button type="submit">Submit</button>


</form>

const csrftoken = document.querySelector('[name=csrfmiddlewaretoken]').value;

fetch('/api/endpoint/', {
    method: 'POST',
    headers: {
        'Content-Type': 'application/json',
        'X-CSRFToken': csrftoken,
    },
    body: JSON.stringify(data),
});

# Bad - vulnerable to SQL injection
Product.objects.raw(f"SELECT * FROM products WHERE category = '{category}'")

# Good - parameterized query
Product.objects.raw("SELECT * FROM products WHERE category = %s", [category])

# Better - use the ORM
Product.objects.filter(category=category)

def handle_uploaded_file(f):
    # Validate file type
    if not f.name.endswith(('.jpg', '.jpeg', '.png', '.gif')):
        raise ValidationError("Unsupported file type")
        
    # Validate file size
    if f.size > 5 * 1024 * 1024:  # 5MB limit
        raise ValidationError("File too large")
        
    # Generate safe filename
    import uuid
    safe_filename = f"{uuid.uuid4().hex}{os.path.splitext(f.name)[1]}"
    
    # Save to secure location outside web root
    with open(os.path.join(settings.MEDIA_ROOT, 'uploads', safe_filename), 'wb+') as destination:
        for chunk in f.chunks():
            destination.write(chunk)

# settings.py
SECURE_SSL_REDIRECT = True
SESSION_COOKIE_SECURE = True
CSRF_COOKIE_SECURE = True

# settings.py
SECURE_HSTS_SECONDS = 31536000  # 1 year
SECURE_HSTS_INCLUDE_SUBDOMAINS = True
SECURE_HSTS_PRELOAD = True
SECURE_CONTENT_TYPE_NOSNIFF = True
SECURE_BROWSER_XSS_FILTER = True
X_FRAME_OPTIONS = 'DENY'

# settings.py
import os
from django.core.exceptions import ImproperlyConfigured

def get_env_variable(var_name):
    try:
        return os.environ[var_name]
    except KeyError:
        error_msg = f"Set the {var_name} environment variable"
        raise ImproperlyConfigured(error_msg)
        
SECRET_KEY = get_env_variable('DJANGO_SECRET_KEY')
DATABASE_PASSWORD = get_env_variable('DATABASE_PASSWORD')

# Check for vulnerable packages
pip install safety
safety check

# Update packages
pip install -U django
pip install -U -r requirements.txt

# Instead of this (causes N+1 queries)
authors = Author.objects.all()
for author in authors:
    print(author.user.email)  # Each access triggers a new query

# Do this (single query with join)
authors = Author.objects.select_related('user')
for author in authors:
    print(author.user.email)  # No additional queries

# Instead of this (causes N+1 queries)
books = Book.objects.all()
for book in books:
    print([author.name for author in book.authors.all()])  # New query for each book

# Do this (2 queries total)
books = Book.objects.prefetch_related('authors')
for book in books:
    print([author.name for author in book.authors.all()])  # No additional queries

class Product(models.Model):
    name = models.CharField(max_length=100)
    price = models.DecimalField(max_digits=10, decimal_places=2)
    category = models.ForeignKey(Category, on_delete=models.CASCADE)
    created_at = models.DateTimeField(auto_now_add=True, db_index=True)  # Add index
    is_active = models.BooleanField(default=True, db_index=True)  # Add index
    
    class Meta:
        indexes = [
            models.Index(fields=['name', 'category']),  # Composite index
            models.Index(fields=['-created_at']),  # Index for sorting
        ]

from django.db.models import F, Sum, Count, Avg

# Instead of this (inefficient)
total = 0
for order in Order.objects.all():
    total += order.price * order.quantity

# Do this (single efficient query)
total = Order.objects.aggregate(total=Sum(F('price') * F('quantity')))['total']

# Group by with aggregation
category_stats = Product.objects.values('category').annotate(
    count=Count('id'),
    avg_price=Avg('price')
).order_by('-count')

# Install django-db-connection-pool
pip install django-db-connection-pool

# settings.py
DATABASES = {
    'default': {
        'ENGINE': 'dj_db_conn_pool.backends.postgresql',
        'NAME': 'mydatabase',
        'USER': 'myuser',
        'PASSWORD': 'mypassword',
        'HOST': 'localhost',
        'PORT': '5432',
        'POOL_OPTIONS': {
            'POOL_SIZE': 20,
            'MAX_OVERFLOW': 10,
            'RECYCLE': 300,  # Recycle connections after 5 minutes
        },
    }
}

# settings.py - Redis cache example
CACHES = {
    'default': {
        'BACKEND': 'django.core.cache.backends.redis.RedisCache',
        'LOCATION': 'redis://127.0.0.1:6379/1',
        'OPTIONS': {
            'CLIENT_CLASS': 'django_redis.client.DefaultClient',
        }
    }
}

from django.views.decorators.cache import cache_page

@cache_page(60 * 15)  # Cache for 15 minutes
def product_list(request):
    products = Product.objects.all()
    return render(request, 'products/list.html', {'products': products})

<div data-gb-custom-block data-tag="load"></div>

<div data-gb-custom-block data-tag="cache" data-0='600'>
    {% for product in products %}
        <!-- Product display code -->
    {% endfor %}
</div>

from django.core.cache import cache

# Set cache
cache.set('product_count', Product.objects.count(), timeout=300)  # 5 minutes

# Get from cache
product_count = cache.get('product_count')
if product_count is None:
    product_count = Product.objects.count()
    cache.set('product_count', product_count, timeout=300)

# settings.py
STATIC_URL = 'https://your-cdn.com/static/'
MEDIA_URL = 'https://your-cdn.com/media/'

# Install django-compressor
pip install django-compressor

# Add to INSTALLED_APPS
INSTALLED_APPS = [
    # ...
    'compressor',
]

# Configure compressor
STATICFILES_FINDERS = [
    'django.contrib.staticfiles.finders.FileSystemFinder',
    'django.contrib.staticfiles.finders.AppDirectoriesFinder',
    'compressor.finders.CompressorFinder',
]

COMPRESSOR_ENABLED = not DEBUG
COMPRESSOR_CSS_FILTERS = ['compressor.filters.css_default.CssAbsoluteFilter', 'compressor.filters.cssmin.rCSSMinFilter']
COMPRESSOR_JS_FILTERS = ['compressor.filters.jsmin.JSMinFilter']

<div data-gb-custom-block data-tag="load"></div>

<div data-gb-custom-block data-tag="compress">

<link rel="stylesheet" href="

<div data-gb-custom-block data-tag="static" data-0='css/style.css'></div>">
<link rel="stylesheet" href="<div data-gb-custom-block data-tag="static" data-0='css/responsive.css'></div>

">

</div>

<div data-gb-custom-block data-tag="compress">

<script src="

<div data-gb-custom-block data-tag="static" data-0='js/main.js'></div>"></script>
<script src="<div data-gb-custom-block data-tag="static" data-0='js/analytics.js'></div>

"></script>

</div>

# Install Celery and Redis
pip install celery redis

# celery.py
import os
from celery import Celery

os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'project.settings')

app = Celery('project')
app.config_from_object('django.conf:settings', namespace='CELERY')
app.autodiscover_tasks()

# tasks.py
from celery import shared_task
from django.core.mail import send_mail

@shared_task
def send_notification_email(user_id, subject, message):
    from django.contrib.auth.models import User
    user = User.objects.get(id=user_id)
    send_mail(
        subject,
        message,
        '[email protected]',
        [user.email],
        fail_silently=False,
    )
    return True

# views.py
from .tasks import send_notification_email

def register_user(request):
    # User registration logic
    user = User.objects.create_user(...)
    
    # Send welcome email asynchronously
    send_notification_email.delay(
        user.id,
        'Welcome to our site',
        'Thank you for registering!'
    )
    
    return redirect('home')

# Install Channels and Redis
pip install channels channels-redis

# Add to INSTALLED_APPS
INSTALLED_APPS = [
    # ...
    'channels',
]

# Configure Channels
ASGI_APPLICATION = 'myproject.asgi.application'
CHANNEL_LAYERS = {
    'default': {
        'BACKEND': 'channels_redis.core.RedisChannelLayer',
        'CONFIG': {
            'hosts': [('127.0.0.1', 6379)],
        },
    },
}

# Install Django Debug Toolbar
pip install django-debug-toolbar

# Add to INSTALLED_APPS
INSTALLED_APPS = [
    # ...
    'debug_toolbar',
]

# Add to MIDDLEWARE
MIDDLEWARE = [
    # ...
    'debug_toolbar.middleware.DebugToolbarMiddleware',
]

# Configure
INTERNAL_IPS = ['127.0.0.1']

# Add to urls.py
if settings.DEBUG:
    import debug_toolbar
    urlpatterns = [path('__debug__/', include(debug_toolbar.urls))] + urlpatterns

# Install django-silk
pip install django-silk

# Add to INSTALLED_APPS
INSTALLED_APPS = [
    # ...
    'silk',
]

# Add to MIDDLEWARE
MIDDLEWARE = [
    # ...
    'silk.middleware.SilkyMiddleware',
]

# Add to urls.py
urlpatterns = [path('silk/', include('silk.urls'))] + urlpatterns

# Install Locust
pip install locust

# locustfile.py
from locust import HttpUser, task, between

class WebsiteUser(HttpUser):
    wait_time = between(1, 5)  # Wait 1-5 seconds between tasks
    
    @task
    def index_page(self):
        self.client.get("/")
        
    @task(3)  # 3x more frequent than other tasks
    def view_products(self):
        self.client.get("/products/")
        
    @task
    def view_product(self):
        product_id = random.randint(1, 100)
        self.client.get(f"/products/{product_id}/")

locust -f locustfile.py --host=http://localhost:8000

app/
├── tests/
│   ├── __init__.py
│   ├── test_models.py
│   ├── test_views.py
│   ├── test_forms.py
│   ├── test_api.py
│   └── test_services.py

def test_user_creation_with_valid_data_succeeds():
    # Test code

def test_user_creation_with_duplicate_email_fails():
    # Test code

from django.test import TestCase
from myapp.models import Product

class ProductModelTest(TestCase):
    def setUp(self):
        self.product = Product.objects.create(
            name="Test Product",
            price=9.99,
            is_active=True
        )
    
    def test_product_str_method(self):
        self.assertEqual(str(self.product), "Test Product")
    
    def test_is_on_sale_with_discount(self):
        self.product.regular_price = 19.99
        self.assertTrue(self.product.is_on_sale())
    
    def test_is_on_sale_without_discount(self):
        self.product.regular_price = 9.99
        self.assertFalse(self.product.is_on_sale())

from django.test import TestCase
from django.urls import reverse
from myapp.models import Product, Category

class ProductViewsIntegrationTest(TestCase):
    def setUp(self):
        self.category = Category.objects.create(name="Electronics")
        self.product = Product.objects.create(
            name="Test Product",
            price=9.99,
            category=self.category,
            is_active=True
        )
    
    def test_product_list_view(self):
        url = reverse('product-list')
        response = self.client.get(url)
        self.assertEqual(response.status_code, 200)
        self.assertContains(response, "Test Product")
        self.assertTemplateUsed(response, 'products/list.html')
    
    def test_product_detail_view(self):
        url = reverse('product-detail', args=[self.product.id])
        response = self.client.get(url)
        self.assertEqual(response.status_code, 200)
        self.assertContains(response, "Test Product")
        self.assertContains(response, "$9.99")

from rest_framework.test import APITestCase
from rest_framework import status
from django.urls import reverse
from myapp.models import Product

class ProductAPITest(APITestCase):
    def setUp(self):
        self.product = Product.objects.create(
            name="Test Product",
            price=9.99,
            is_active=True
        )
        self.url = reverse('api:product-detail', args=[self.product.id])
    
    def test_get_product(self):
        response = self.client.get(self.url)
        self.assertEqual(response.status_code, status.HTTP_200_OK)
        self.assertEqual(response.data['name'], "Test Product")
        self.assertEqual(float(response.data['price']), 9.99)
    
    def test_update_product(self):
        data = {'name': 'Updated Product', 'price': 19.99}
        response = self.client.patch(self.url, data, format='json')
        self.assertEqual(response.status_code, status.HTTP_200_OK)
        self.product.refresh_from_db()
        self.assertEqual(self.product.name, "Updated Product")
        self.assertEqual(float(self.product.price), 19.99)

# Install pytest and plugins
pip install pytest pytest-django pytest-cov

# Create a pytest.ini file
# pytest.ini
[pytest]
DJANGO_SETTINGS_MODULE = myproject.settings
python_files = test_*.py

# Write tests with pytest
import pytest
from django.urls import reverse

@pytest.mark.django_db
def test_product_list_view(client):
    url = reverse('product-list')
    response = client.get(url)
    assert response.status_code == 200
    assert 'products' in response.context

# Install factory_boy
pip install factory_boy

# Create factories
import factory
from django.contrib.auth.models import User
from myapp.models import Product, Category

class UserFactory(factory.django.DjangoModelFactory):
    class Meta:
        model = User
    
    username = factory.Sequence(lambda n: f'user{n}')
    email = factory.LazyAttribute(lambda o: f'{o.username}@example.com')
    password = factory.PostGenerationMethodCall('set_password', 'password')

class CategoryFactory(factory.django.DjangoModelFactory):
    class Meta:
        model = Category
    
    name = factory.Sequence(lambda n: f'Category {n}')

class ProductFactory(factory.django.DjangoModelFactory):
    class Meta:
        model = Product
    
    name = factory.Sequence(lambda n: f'Product {n}')
    price = factory.Faker('pydecimal', left_digits=3, right_digits=2, positive=True)
    category = factory.SubFactory(CategoryFactory)
    created_by = factory.SubFactory(UserFactory)

from unittest.mock import patch, MagicMock
from django.test import TestCase
from myapp.services import PaymentService

class PaymentServiceTest(TestCase):
    @patch('myapp.services.stripe.Charge.create')
    def test_process_payment(self, mock_charge_create):
        # Configure the mock
        mock_charge_create.return_value = {
            'id': 'ch_test123',
            'status': 'succeeded',
            'amount': 1000
        }
        
        # Call the service
        payment_service = PaymentService()
        result = payment_service.process_payment('tok_visa', 10.00, 'usd')
        
        # Assert the result
        self.assertTrue(result['success'])
        self.assertEqual(result['charge_id'], 'ch_test123')
        
        # Verify the mock was called correctly
        mock_charge_create.assert_called_once_with(
            amount=1000,  # Amount in cents
            currency='usd',
            source='tok_visa',
            description='Payment for order'
        )

# Run tests with coverage
python -m pytest --cov=myapp

# Generate HTML report
python -m pytest --cov=myapp --cov-report=html

# .github/workflows/test.yml
name: Tests

on: [push, pull_request]

jobs:
  test:
    runs-on: ubuntu-latest
    
    services:
      postgres:
        image: postgres:13
        env:
          POSTGRES_USER: postgres
          POSTGRES_PASSWORD: postgres
          POSTGRES_DB: test_db
        ports:
          - 5432:5432
        options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5
    
    steps:
    - uses: actions/checkout@v3
    
    - name: Set up Python
      uses: actions/setup-python@v4
      with:
        python-version: '3.10'
    
    - name: Install dependencies
      run: |
        python -m pip install --upgrade pip
        pip install -r requirements/development.txt
    
    - name: Run tests
      run: |
        pytest --cov=myapp --cov-report=xml
      env:
        DATABASE_URL: postgres://postgres:postgres@localhost:5432/test_db
    
    - name: Upload coverage to Codecov
      uses: codecov/codecov-action@v3
      with:
        file: ./coverage.xml

# Bad - tests depend on each other
def test_create_user():
    User.objects.create_user('testuser', '[email protected]', 'password')
    assert User.objects.count() == 1

def test_authenticate_user():
    # This assumes test_create_user ran first
    user = authenticate(username='testuser', password='password')
    assert user is not None

# Good - tests are isolated
def test_create_user():
    User.objects.create_user('testuser', '[email protected]', 'password')
    assert User.objects.count() == 1

def test_authenticate_user():
    User.objects.create_user('testuser', '[email protected]', 'password')
    user = authenticate(username='testuser', password='password')
    assert user is not None

def test_divide_numbers():
    # Test normal case
    assert divide(10, 2) == 5
    
    # Test edge cases
    assert divide(0, 5) == 0
    
    # Test error conditions
    with pytest.raises(ValueError):
        divide(10, 0)  # Division by zero should raise ValueError

def test_user_cannot_access_another_users_data():
    # Create two users
    user1 = UserFactory()
    user2 = UserFactory()
    
    # Create data for user1
    order = OrderFactory(user=user1)
    
    # Log in as user2
    self.client.force_login(user2)
    
    # Try to access user1's order
    url = reverse('order-detail', args=[order.id])
    response = self.client.get(url)
    
    # Should be forbidden
    self.assertEqual(response.status_code, 403)