nautobot 3.0.0a2__py3-none-any.whl → 3.0.0a3__py3-none-any.whl

nautobot/core/ui/object_detail.py

@@ -47,6 +47,7 @@ from nautobot.core.utils.lookup import get_filterset_for_model, get_route_for_mo
 from nautobot.core.utils.permissions import get_permission_for_model
 from nautobot.core.views.paginator import EnhancedPaginator, get_paginate_count
 from nautobot.core.views.utils import get_obj_from_context
+from nautobot.data_validation.tables import DataComplianceTable
 from nautobot.dcim.models import Rack
 from nautobot.extras.choices import CustomFieldTypeChoices
 from nautobot.extras.tables import AssociatedContactsTable, DynamicGroupTable, ObjectMetadataTable
@@ -101,6 +102,7 @@ class ObjectDetailContent:
             _ObjectDetailContactsTab(),
             _ObjectDetailGroupsTab(),
             _ObjectDetailMetadataTab(),
+            _ObjectDetailDataComplianceTab(),
         ]
         if extra_tabs is not None:
             tabs.extend(extra_tabs)
@@ -262,8 +264,11 @@ class Button(Component):
         }
 
     def should_render(self, context: Context):
+        # Only show if the user has the permission, which is enforce in super.
         if not super().should_render(context):
             return False
+        if self.render_on_tab_id == "__all__":
+            return True
         return context.get("active_tab", "main") == self.render_on_tab_id
 
     def render(self, context: Context):
@@ -377,8 +382,9 @@ class Tab(Component):
     WEIGHT_CONTACTS_TAB = 300
     WEIGHT_GROUPS_TAB = 400
     WEIGHT_METADATA_TAB = 500
-    WEIGHT_NOTES_TAB = 600  # reserved, not yet using this framework
-    WEIGHT_CHANGELOG_TAB = 700  # reserved, not yet using this framework
+    WEIGHT_DATACOMPLIANCE_TAB = 600
+    WEIGHT_NOTES_TAB = 700  # reserved, not yet using this framework
+    WEIGHT_CHANGELOG_TAB = 800  # reserved, not yet using this framework
 
     def panels_for_section(self, section):
         """
@@ -540,6 +546,7 @@ class Panel(Component):
         self,
         *,
         label="",
+        css_class="default",
         section=SectionChoices.FULL_WIDTH,
         body_id=None,
         body_content_template_path=None,
@@ -554,6 +561,7 @@ class Panel(Component):
 
         Args:
             label (str): Label to display for this panel. Optional; if an empty string, the panel will have no label.
+            css_class (str): Panel variant to render as, e.g. "default", "warning", "info".
             section (str): One of the [`SectionChoices`](./ui.md#nautobot.apps.ui.SectionChoices) values, indicating the layout section this Panel belongs to.
             body_id (str): HTML element `id` to attach to the rendered body wrapper of the panel.
             body_content_template_path (str): Template path to render the content contained *within* the panel body.
@@ -565,6 +573,7 @@ class Panel(Component):
                 (a `div` or `table`) as well as its contents. Generally you won't override this as a user.
         """
         self.label = label
+        self.css_class = css_class
         self.section = section
         self.body_id = body_id
         self.body_content_template_path = body_content_template_path
@@ -593,6 +602,7 @@ class Panel(Component):
                 self.template_path,
                 context,
                 label=self.render_label(context),
+                css_class=self.css_class,
                 header_extra_content=self.render_header_extra_content(context),
                 body=self.render_body(context),
                 footer_content=self.render_footer_content(context),
@@ -1299,8 +1309,11 @@ class EChartsPanel(Panel, EChartsBase):
         self.width = width
         self.height = height
         self.chart_container_id = chart_container_id
+        self.body_id = (
+            self.chart_container_id or f"{slugify('echart-' + chart_kwargs.get('header', ''))}-{uuid.uuid4().hex[:8]}"
+        )
 
-        super().__init__(body_wrapper_template_path=body_wrapper_template_path, **kwargs)
+        super().__init__(body_wrapper_template_path=body_wrapper_template_path, body_id=self.body_id, **kwargs)
         EChartsBase.__init__(self, **chart_kwargs)
 
     def get_data(self, context: Context) -> dict[str, Any] | None:
@@ -1344,8 +1357,7 @@ class EChartsPanel(Panel, EChartsBase):
             "chart_config": chart_config,
             "chart_width": self.width,
             "chart_height": self.height,
-            "chart_container_id": self.chart_container_id
-            or f"{slugify(f'echart-{self.header}')}-{uuid.uuid4().hex[:8]}",
+            "chart_container_id": self.body_id,
         }
 
 
@@ -1542,7 +1554,7 @@ class GroupedKeyValueTablePanel(KeyValueTablePanel):
         super().__init__(body_id=body_id, **kwargs)
 
     def render_header_extra_content(self, context: Context):
-        """Add a "Collapse All" button to the header."""
+        """Add a "Collapse All Groups" button to the header."""
         return format_html(
             """
             <button
@@ -1552,7 +1564,7 @@ class GroupedKeyValueTablePanel(KeyValueTablePanel):
                 data-nb-toggle="collapse-all"
                 type="button"
             >
-                Collapse All
+                Collapse All Groups
             </button>
             """,
             body_id=self.body_id,
@@ -1727,7 +1739,7 @@ class StatsPanel(Panel):
         instance = get_obj_from_context(context)
         request = context["request"]
         if isinstance(instance, TreeModel):
-            self.filter_pks = (
+            self.filter_pks = list(
                 instance.descendants(include_self=True).restrict(request.user, "view").values_list("pk", flat=True)
             )
         else:
@@ -1743,9 +1755,10 @@ class StatsPanel(Panel):
                 else:
                     related_object_model_class, query = related_field, f"{self.filter_name}__in"
                 filter_dict = {query: self.filter_pks}
-                related_object_count = (
-                    related_object_model_class.objects.restrict(request.user, "view").filter(**filter_dict).count()
-                )
+                qs = related_object_model_class.objects.restrict(request.user, "view").filter(**filter_dict)
+                if len(self.filter_pks) > 1:
+                    qs = qs.distinct()
+                related_object_count = qs.count()
                 related_object_model_class_meta = related_object_model_class._meta
                 related_object_list_url = validated_viewname(related_object_model_class, "list")
                 related_object_title = bettertitle(related_object_model_class_meta.verbose_name_plural)
@@ -2153,6 +2166,72 @@ class _ObjectDetailContactsTab(Tab):
         )
 
 
+class _ObjectDetailDataComplianceTab(DistinctViewTab):
+    """Built-in class for a Tab displaying information about data compliance."""
+
+    def __init__(
+        self,
+        *,
+        tab_id="data_compliance",
+        label="Data Compliance",
+        weight=Tab.WEIGHT_DATACOMPLIANCE_TAB,
+        panels=None,
+        **kwargs,
+    ):
+        if panels is None:
+            panels = (
+                ObjectsTablePanel(
+                    weight=100,
+                    table_class=DataComplianceTable,
+                    table_attribute="associated_data_compliance",
+                    related_field_name="object_id",
+                    label="Data Compliance",
+                    add_button_route=None,
+                    header_extra_content_template_path=None,
+                    include_paginator=True,
+                ),
+            )
+        super().__init__(url_name="", tab_id=tab_id, label=label, weight=weight, panels=panels, **kwargs)
+
+    def get_extra_context(self, context: Context):
+        return {"url": get_obj_from_context(context).get_data_compliance_url()}
+
+    def should_render(self, context: Context):
+        if not super().should_render(context):
+            return False
+        return getattr(get_obj_from_context(context), "is_data_compliance_model", False)
+
+
+class DynamicGroupsTextPanel(BaseTextPanel):
+    """Panel displaying a note about caching of dynamic groups."""
+
+    def __init__(
+        self,
+        *,
+        weight,
+        render_as=BaseTextPanel.RenderOptions.MARKDOWN,
+        label="Dynamic Group caching",
+        css_class="warning",
+        **kwargs,
+    ):
+        super().__init__(weight=weight, render_as=render_as, label=label, css_class=css_class, **kwargs)
+
+    def get_value(self, context):
+        dg_list_url = reverse("extras:dynamicgroup_list")
+        job_run_url = reverse(
+            "extras:job_run_by_class_path",
+            kwargs={"class_path": "nautobot.core.jobs.groups.RefreshDynamicGroupCaches"},
+        )
+        return (
+            "Dynamic group membership is cached for performance reasons, "
+            "therefore this page may not always be up-to-date.\n\n"
+            "You can refresh the membership of any specific group by accessing it from the list below or from the "
+            f'[Dynamic Groups list view]({dg_list_url}) and clicking the "Refresh Members" button.\n\n'
+            "You can also refresh the membership of **all** groups by running the "
+            f"[Refresh Dynamic Group Caches job]({job_run_url})."
+        )
+
+
 @dataclass
 class _ObjectDetailGroupsTab(Tab):
     """Built-in class for a Tab displaying information about associated dynamic groups."""
@@ -2169,8 +2248,9 @@ class _ObjectDetailGroupsTab(Tab):
     ):
         if panels is None:
             panels = (
+                DynamicGroupsTextPanel(weight=100),
                 ObjectsTablePanel(
-                    weight=100,
+                    weight=200,
                     table_class=DynamicGroupTable,
                     table_attribute="dynamic_groups",
                     exclude_columns=["content_type"],

nautobot/core/urls.py

@@ -1,10 +1,11 @@
 from django.conf import settings
 from django.http import HttpResponse, HttpResponseNotFound
 from django.urls import include, path
-from django.views.generic import TemplateView
+from django.views.generic import RedirectView, TemplateView
 
 from nautobot.core.views import (
     AboutView,
+    AppDocsView,
     CustomGraphQLView,
     get_file_with_authorization,
     HomeView,
@@ -46,6 +47,7 @@ urlpatterns = [
     path("user/", include("nautobot.users.urls")),
     path("users/", include("nautobot.users.urls", "users")),
     path("virtualization/", include("nautobot.virtualization.urls")),
+    path("vpn/", include("nautobot.vpn.urls")),
     path("wireless/", include("nautobot.wireless.urls")),
     # API
     path("api/", include("nautobot.core.api.urls")),
@@ -59,6 +61,15 @@ urlpatterns = [
     path("media-failure/", StaticMediaFailureView.as_view(), name="media_failure"),
     # Apps
     path("apps/", include((apps_patterns, "apps"))),
+    # Redirect /docs/<app_base_url>/ -> /docs/<app_base_url>/index.html
+    path(
+        "docs/<str:app_base_url>/",
+        RedirectView.as_view(pattern_name="docs_file", permanent=False),
+        kwargs={"path": "index.html"},
+        name="docs_index_redirect",
+    ),
+    # Apps docs - Serve docs file
+    path("docs/<str:app_base_url>/<path:path>", AppDocsView.as_view(), name="docs_file"),
     path("plugins/", include((plugin_patterns, "plugins"))),
     path("admin/plugins/", include(plugin_admin_patterns)),
     # Social auth/SSO

nautobot/core/utils/cache.py

@@ -66,5 +66,6 @@ def construct_cache_key(obj, *, method_name=None, branch_aware=True, **params):
     if params_tokens:
         cache_key += f"({','.join(params_tokens)})"
 
-    logger.debug("Constructed cache key is %s", cache_key)
+    # Disabled as it's very noisy in some cases
+    # logger.debug("Constructed cache key is %s", cache_key)
     return cache_key

nautobot/core/utils/filtering.py

@@ -17,6 +17,21 @@ from nautobot.core.utils.lookup import get_filterset_for_model
 # e.g `name__ic` has lookup expr `ic (icontains)` while `name` has no lookup expr
 CONTAINS_LOOKUP_EXPR_RE = re.compile(r"(?<=__)\w+")
 
+MODEL_VERBOSE_NAME_PLURAL_TO_FEATURE_NAME_MAPPING = {
+    "approval_workflow_definitions": "approval_workflows",
+    "cables": "cable_terminations",
+    "data_compliance": "custom_validators",
+    "location_types": "locations",
+    "metadata_types": "metadata",
+    "min_max_validation_rules": "custom_validators",
+    "object_metadata": "metadata",
+    "regular_expression_validation_rules": "custom_validators",
+    "relationship_associations": "relationships",
+    "required_validation_rules": "custom_validators",
+    "static_group_associations": "dynamic_groups",
+    "unique_validation_rules": "custom_validators",
+}
+
 
 def build_lookup_label(field_name, _verbose_name):
     """
@@ -131,26 +146,11 @@ def get_filterset_parameter_form_field(model, parameter, filterset=None):
     elif isinstance(
         field, ContentTypeMultipleChoiceFilter
     ):  # While there are other objects using `ContentTypeMultipleChoiceFilter`, the case where
-        # models that have such a filter and the `verbose_name_plural` has multiple words is ony one: "dynamic groups".
+        # models that have such a filter and the `verbose_name_plural` does not match, we can lookup the feature name.
         from nautobot.core.models.fields import slugify_dashes_to_underscores  # Avoid circular import
 
         plural_name = slugify_dashes_to_underscores(model._meta.verbose_name_plural)
-
-        # Cable-connectable models use "cable_terminations", not "cables", as the feature name
-        if plural_name == "cables":
-            plural_name = "cable_terminations"
-        elif plural_name == "metadata_types":
-            plural_name = "metadata"
-        elif plural_name == "object_metadata":
-            plural_name = "metadata"
-        elif plural_name in [
-            "data_compliance",
-            "min_max_validation_rules",
-            "regular_expression_validation_rules",
-            "required_validation_rules",
-            "unique_validation_rules",
-        ]:
-            plural_name = "custom_validators"
+        plural_name = MODEL_VERBOSE_NAME_PLURAL_TO_FEATURE_NAME_MAPPING.get(plural_name, plural_name)
         try:
             form_field = MultipleContentTypeField(choices_as_strings=True, feature=plural_name)
         except KeyError:

nautobot/core/utils/lookup.py

@@ -11,9 +11,10 @@ from django.contrib.contenttypes.models import ContentType
 from django.core.exceptions import ObjectDoesNotExist
 from django.db.models import ForeignKey, Model
 from django.urls import get_resolver, resolve, reverse, URLPattern, URLResolver
-from django.utils.module_loading import import_string
 from django.views.generic.base import RedirectView
 
+from nautobot.core.utils.module_loading import import_string_optional
+
 
 def resolve_attr(obj, dotted_field):
     """
@@ -181,13 +182,7 @@ def get_related_class_for_model(model, module_name, object_suffix):
     object_name = f"{model.__name__}{object_suffix}"
     object_path = f"{app_config.name}.{module_name}.{object_name}"
 
-    try:
-        return import_string(object_path)
-    # The name of the module is not correct or unable to find the desired object for this model
-    except (AttributeError, ImportError, ModuleNotFoundError):
-        pass
-
-    return None
+    return import_string_optional(object_path)
 
 
 def get_filterset_for_model(model):

nautobot/core/utils/module_loading.py

@@ -7,9 +7,30 @@ import os
 import pkgutil
 import sys
 
+from django.utils.module_loading import import_string
+
 logger = logging.getLogger(__name__)
 
 
+def import_string_optional(dotted_path):
+    """An extension/wrapper of Django's `import_string()` that returns `None` if no such dotted path exists."""
+    try:
+        return import_string(dotted_path)
+    except ModuleNotFoundError as err:
+        # No such module
+        module_name, _ = dotted_path.rsplit(".", 1)
+        if module_name.startswith(err.name):  # tried to import foo.bar.baz but couldn't find foo.bar, etc.
+            return None
+        # Some import *from within* the given module couldn't find what it was looking for?
+        raise
+    except ImportError as err:
+        if "does not define" in str(err):
+            # Exception raised by Django if the module exists but has no such attribute
+            return None
+        # Maybe a legitimate problem with the import?
+        raise
+
+
 @contextmanager
 def _temporarily_add_to_sys_path(path):
     """

nautobot/core/utils/patch_social_django.py

@@ -0,0 +1,128 @@
+from django.core.exceptions import FieldDoesNotExist
+from django.db import router, transaction
+from django.db.utils import IntegrityError
+from social_core.exceptions import AuthAlreadyAssociated
+
+"""
+Social Auth Account Takeover Vulnerability Patch
+=================================================
+
+This module patches CVE-2025-61783, a medium security vulnerability in social_django that allows
+account takeover when using OAuth providers that don't verify email addresses.
+
+VULNERABILITY OVERVIEW
+----------------------
+The vulnerability exists in social_django.storage.DjangoUserMixin.create_user(),
+specifically in how it handles IntegrityError exceptions. When user creation fails due to
+a duplicate email or username, the original code catches the IntegrityError and blindly
+retrieves an existing user via manager.get(), returning that user without verifying that
+a social auth association exists for the provider/UID combination.
+
+PATCHING STRATEGY
+-----------------
+This implementation patches the `create_user` method on the `user` class property of
+DjangoStorage, which is where the vulnerability manifests. The patch changes the behavior
+to raise AuthAlreadyAssociated when an IntegrityError occurs, preventing the silent
+return of an existing user.
+
+By patching at this level, we:
+- Maintain compatibility with custom pipelines
+- Don't require changes to user's social auth configuration
+- Apply the fix exactly where the vulnerability occurs
+- Preserve all other social auth functionality
+
+REMOVAL
+-------
+Remove this patch when upgrading to social-auth-app-django >= 5.6.0
+(version that includes PR #803 merged into the main branch).
+
+To verify if you still need the patch:
+    pip show social-auth-app-django
+    # Check version against PR #803 merge status
+
+REFERENCES
+----------
+- Vulnerability Report: https://github.com/python-social-auth/social-app-django/security/advisories/GHSA-wv4w-6qv2-qqfg
+- Original Issue: https://github.com/python-social-auth/social-app-django/issues/220
+- Official Fix PR: https://github.com/python-social-auth/social-app-django/pull/803
+
+SECURITY NOTICE
+---------------
+This patch addresses a MEDIUM security vulnerability
+
+Disabling this patch without mitigation will expose your application to account
+takeover attacks.
+
+AUTHOR & MAINTENANCE
+--------------------
+Patch implemented as temporary security measure for Nautobot deployment.
+As picking up the latest social_django would require a major version upgrade of Django,
+which itself would require a breaking change to the Nautobot configuration, this patch
+is intended to be a stopgap until such time as Nautobot can upgrade to a version of
+social_django that includes the fix.
+"""
+
+
+def patch_django_storage(original_django_storage):
+    """
+    Apply security patch to DjangoStorage.user.create_user method.
+
+    This patches the vulnerability in python-social-auth where create_user
+    catches IntegrityError and blindly returns an existing user, enabling
+    account takeover via unverified OAuth providers.
+
+    Args:
+        storage_class (DjangoStorage): The original DjangoStorage class to patch.
+
+    Returns:
+        None
+
+    Note:
+        The patch is a nearly verbatim copy of the original create_user method
+        from social_django.storage.DjangoUserMixin from 5.4.3, except that it
+        adopts the fail-closed change described in
+        https://github.com/python-social-auth/social-app-django/pull/803
+
+        The modified lines are called out with "Patched logic" comments below.
+    """
+
+    def patched_create_user(cls, *args, **kwargs):
+        username_field = cls.username_field()
+        if "username" in kwargs:
+            if username_field not in kwargs:
+                kwargs[username_field] = kwargs.pop("username")
+            else:
+                # If username_field is 'email' and there is no field named "username"
+                # then latest should be removed from kwargs.
+                try:
+                    cls.user_model()._meta.get_field("username")
+                except FieldDoesNotExist:
+                    kwargs.pop("username")
+        try:
+            if hasattr(transaction, "atomic"):
+                # In Django versions that have an "atomic" transaction decorator / context
+                # manager, there's a transaction wrapped around this call.
+                # If the create fails below due to an IntegrityError, ensure that the transaction
+                # stays undamaged by wrapping the create in an atomic.
+                using = router.db_for_write(cls.user_model())
+                with transaction.atomic(using=using):
+                    user = cls.user_model()._default_manager.create_user(*args, **kwargs)
+            else:
+                user = cls.user_model()._default_manager.create_user(*args, **kwargs)
+        except IntegrityError as exc:
+            # ORIGINAL CODE BELOW:
+            # # If email comes in as None it won't get found in the get
+            # if kwargs.get("email", True) is None:
+            #     kwargs["email"] = ""
+            # try:
+            #     user = cls.user_model()._default_manager.get(*args, **kwargs)
+            # except cls.user_model().DoesNotExist:
+            #     raise exc
+
+            # BEGIN Patched logic
+            raise AuthAlreadyAssociated(None) from exc
+            # END Patched logic
+        return user
+
+    # Apply the patch to the original DjangoStorage.user.create_user method
+    original_django_storage.user.create_user = classmethod(patched_create_user)

nautobot/core/views/__init__.py

@@ -1,6 +1,8 @@
 import contextlib
 import datetime
+from importlib import resources
 import logging
+import mimetypes
 import os
 import platform
 import posixpath
@@ -16,7 +18,7 @@ from django.contrib.auth.decorators import permission_required
 from django.contrib.auth.mixins import AccessMixin, LoginRequiredMixin, UserPassesTestMixin
 from django.contrib.contenttypes.models import ContentType
 from django.core.cache import cache
-from django.http import HttpResponseForbidden, HttpResponseServerError, JsonResponse
+from django.http import FileResponse, HttpResponseForbidden, HttpResponseServerError, JsonResponse
 from django.shortcuts import get_object_or_404, render
 from django.template import loader, RequestContext, Template
 from django.template.exceptions import TemplateDoesNotExist
@@ -61,6 +63,7 @@ from nautobot.core.views.utils import (
 )
 from nautobot.extras.forms import GraphQLQueryForm
 from nautobot.extras.models import FileProxy, GraphQLQuery, Status
+from nautobot.extras.plugins.urls import BASE_URL_TO_APP_LABEL
 from nautobot.extras.registry import registry
 from nautobot.extras.tables import StatusTable
 
@@ -144,6 +147,40 @@ class HomeView(AccessMixin, TemplateView):
         return self.render_to_response(context)
 
 
+class AppDocsView(LoginRequiredMixin, View):
+    """
+    Serve documentation files for any pip-installed app from inside the package,
+    only for authenticated users.
+    """
+
+    def get(self, request, app_base_url, path="index.html"):
+        app_label = BASE_URL_TO_APP_LABEL.get(app_base_url)
+        if not app_label:
+            return JsonResponse({"detail": f"Unknown base_url '{app_base_url}'."}, status=404)
+        try:
+            base_dir = resources.files(app_label)
+        except ModuleNotFoundError:
+            return JsonResponse({"detail": f"App {app_label} not found."}, status=404)
+
+        # Dir to documentation inside the package
+        docs_dir = base_dir / "docs"
+        # Normalize path to avoid (../) etc.
+        normalized_path = posixpath.normpath(path).lstrip("/")
+        file_path = docs_dir / normalized_path
+
+        # Additional check to ensure the resolved path is still within docs_dir
+        if not file_path.resolve().is_relative_to(docs_dir.resolve()):
+            return JsonResponse({"detail": "Access denied."}, status=403)
+
+        if not file_path.is_file():
+            return JsonResponse({"detail": f"File {file_path} not found."}, status=404)
+
+        # Determine the MIME type based on the file extension and return the file as an HTTP response.
+        # This ensures that browsers interpret the file correctly (e.g., HTML, CSS, JS, images).
+        content_type, _ = mimetypes.guess_type(str(file_path))
+        return FileResponse(open(file_path, "rb"), content_type=content_type)
+
+
 class MediaView(AccessMixin, View):
     """
     Serves media files while enforcing login restrictions.

nautobot/core/views/generic.py

@@ -587,7 +587,7 @@ class ObjectDeleteView(UIComponentsMixin, GetReturnURLMixin, ObjectPermissionReq
     """
 
     queryset: Optional[QuerySet] = None  # TODO: required, declared Optional only to avoid a breaking change
-    template_name = "generic/object_delete.html"
+    template_name = "generic/object_destroy.html"
 
     def get_required_permission(self):
         return get_permission_for_model(self.queryset.model, "delete")
@@ -1044,7 +1044,7 @@ class BulkEditView(
     filterset: Optional[type[FilterSet]] = None
     table: Optional[type[Table]] = None  # TODO: required, declared Optional only to avoid a breaking change
     form: Optional[type[Form]] = None  # TODO: required, declared Optional only to avoid a breaking change
-    template_name = "generic/object_bulk_edit.html"
+    template_name = "generic/object_bulk_update.html"
 
     def get_required_permission(self):
         return get_permission_for_model(self.queryset.model, "change")
@@ -1246,7 +1246,7 @@ class BulkDeleteView(
     filterset: Optional[type[FilterSet]] = None
     table: Optional[type[Table]] = None  # TODO: required, declared Optional only to avoid a breaking change
     form: Optional[type[Form]] = None
-    template_name = "generic/object_bulk_delete.html"
+    template_name = "generic/object_bulk_destroy.html"
 
     def get_required_permission(self):
         return get_permission_for_model(self.queryset.model, "delete")

nautobot/core/views/mixins.py

@@ -73,6 +73,7 @@ PERMISSIONS_ACTION_MAP = {
     "bulk_update": "change",
     "changelog": "view",
     "notes": "view",
+    "data_compliance": "view",
     "approve": "change",
     "deny": "change",
 }
@@ -532,7 +533,8 @@ class NautobotViewSetMixin(GenericViewSet, UIComponentsMixin, AccessMixin, GetRe
         form.add_error(None, msg)
         return form
 
-    def _handle_not_implemented_error(self):
+    def _handle_not_implemented_error(self, error):
+        self.logger.debug(f"NotImplementedError raised on action {self.action} resulting in error: {error}")
         # Blanket handler for NotImplementedError raised by form helper functions
         msg = "Please provide the appropriate mixin before using this helper function"
         messages.error(self.request, msg)
@@ -567,8 +569,8 @@ class NautobotViewSetMixin(GenericViewSet, UIComponentsMixin, AccessMixin, GetRe
             self._handle_validation_error(e)
         except ObjectDoesNotExist:
             form = self._handle_object_does_not_exist(form)
-        except NotImplementedError:
-            self._handle_not_implemented_error()
+        except NotImplementedError as error:
+            self._handle_not_implemented_error(error)
 
         if not self.has_error:
             self.logger.debug("Form validation was successful")
@@ -1527,3 +1529,13 @@ class ObjectNotesViewMixin(NautobotViewSetMixin):
             "active_tab": "notes",
         }
         return Response(data)
+
+
+class ObjectDataComplianceViewMixin(NautobotViewSetMixin):
+    """
+    UI Mixin for a DataCompliance to show up for a given object.
+    """
+
+    @drf_action(detail=True)
+    def data_compliance(self, request, *args, **kwargs):
+        return Response({})

nautobot/core/views/renderers.py

@@ -365,6 +365,8 @@ class NautobotHTMLRenderer(renderers.BrowsableAPIRenderer):
         # See form_valid() for self.action == "bulk_create".
         self.template = data.get("template", view.get_template_name())
 
+        data["request"] = request
+
         return super().render(data, accepted_media_type=accepted_media_type, renderer_context=renderer_context)
 
     @staticmethod

nautobot/core/views/viewsets.py

@@ -11,9 +11,10 @@ class NautobotUIViewSet(
     mixins.ObjectBulkUpdateViewMixin,
     mixins.ObjectChangeLogViewMixin,
     mixins.ObjectNotesViewMixin,
+    mixins.ObjectDataComplianceViewMixin,
 ):
     """
     Nautobot BaseViewSet that is intended for UI use only. It provides default Nautobot functionalities such as
     `create()`, `update()`, `partial_update()`, `bulk_update()`, `destroy()`, `bulk_destroy()`, `retrieve()`
-    `notes()`, `changelog()` and `list()` actions.
+    `notes()`, `changelog()`, `list()`, and `data_compliance()` actions.
     """