[Backend] Save and Retrieve Privacy Preferences by Fides User Device Id

[pattisdr]

Closes #2838
❗ Contains migration; check downrev before merge
❗ Dependent on #3131

Description Of Changes

• Adds two new endpoints to Save and Retrieve Privacy Preferences with respect to a fides_user_device_id that was in the browser instead of just a verified identity like an email or a phone number
• Start saving current and historical privacy preferences with respect to an optional fides user device id
• Allow current and historical preferences to be saved with respect to one or both of a verified provided identity and a fides user device provided identity id simultaneously
• If preferences are saved with respect to a verified provided identity and a fides user device id simultaneously, consolidate the current preferences into single records
• Expose the new fides user device id in the historical report
• Enforce on the backend that a privacy preference must either be saved with respect to a verified provided identity or a fides user device id provided identity (or both!) but we require at least one.

Code Changes

• Add new indexed FK column on the current record: CurrentPrivacyPreference.fides_user_device_provided_identity_id. A unique constraint added here so we maintain one "current" record for each "fides_user_provided_identity_id" and each "privacy_notice"
• Add new indexed FK column on the historical record: PrivacyPreferenceHistory.fides_user_device_provided_identity_id
• Add hashed field PrivacyPreferenceHistory.hashed_fides_user_device field so we can search historical records by this device id more easily
• Cache the encrypted value PrivacyPreferenceHistory.fides_user_device directly on this field so we can surface for reporting purposes without having to join in the ProvidedIdentity table.
• Add new method get_or_create_fides_user_device_id_provided_identity to get and create provided identity records for device ides and keeping ProvidedIdentities for a fides user device id unique when saved for the purposes of consent. We separately create these records for privacy requests, and those are not expected to be unique.
• Update existing endpoint for saving privacy preferences in the verified identity flow to allow a fides user device id to optionally be saved alongside these preferences
• Pull out a new method _save_privacy_preferences_for_identities to be shared between the existing endpoint that saves privacy preferences with respect to a verified identity and the new endpoint that only saves preferences with respect to a fides user device id.
• Add the two new endpoints: PATCH /privacy-preferences and GET /privacy-preferences?fides_user_device_id=XXXXXX

Steps to Confirm

• In postman, create a client with permission to save privacy notices.
• Use the Privacy Notices > Create Privacy Notices endpoint to create a starting set of notices. Note one of the "privacy_notice_history_id"s that are created
• Under the Privacy Preferences > Save Privacy Preferences for Device Id collection, save a preference with respect to a privacy_notice_history_id you created above. Verify response matches what you'd expect
• Get saved Privacy Preferences with respect to device id under the Privacy Preferences > Privacy Preferences by Fides User Device Id collection
• Access the historical report via the PrivacyPReferences > Get Historical Preferences collection and verify that fides user device id shows up under "fides_user_device_id"

Pre-Merge Checklist

• All CI Pipelines Succeeded
• Documentation:
  • documentation complete, PR opened in fidesdocs
  • documentation issue created in fidesdocs
• Issue Requirements are Met
• Relevant Follow-Up Issues Created
• Update CHANGELOG.md
• For API changes, the Postman collection has been updated

[cypress]

Passing run #1555 ↗︎

0	3	0	0	0
⚠️ You've recorded test results over your free plan limit. Upgrade your plan to view test results.

Details:

Merge e69e85e into 01ea9b4...
Project: fides	Commit: 51865cc4d9 ℹ️
Status: Passed	Duration: 00:36 💡
Started: Apr 25, 2023 3:49 AM	Ended: Apr 25, 2023 3:49 AM

_{This comment has been generated by cypress-bot as a result of this project's GitHub integration settings.}

[codecov]

Codecov Report

Patch coverage: 98.91% and project coverage change: +0.03 🎉

Comparison is base (01ea9b4) 87.48% compared to head (e69e85e) 87.51%.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3132      +/-   ##
==========================================
+ Coverage   87.48%   87.51%   +0.03%     
==========================================
  Files         309      309              
  Lines       17924    17993      +69     
  Branches     2325     2337      +12     
==========================================
+ Hits        15680    15747      +67     
- Misses       1820     1821       +1     
- Partials      424      425       +1     

Impacted Files	Coverage Δ
...s/api/v1/endpoints/privacy_preference_endpoints.py	99.21% <97.77%> (-0.79%)	⬇️
src/fides/api/ops/api/v1/urn_registry.py	100.00% <100.00%> (ø)
src/fides/api/ops/models/privacy_preference.py	100.00% <100.00%> (ø)
src/fides/api/ops/schemas/privacy_preference.py	100.00% <100.00%> (ø)
src/fides/api/ops/schemas/redis_cache.py	100.00% <100.00%> (ø)
src/fides/api/ops/util/consent_util.py	100.00% <100.00%> (ø)

... and 1 file with indirect coverage changes

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

[pattisdr]

@seanpreston requesting your review since I'm saving privacy preferences here with respect to the new style PrivacyPreferenceHistory and CurrentPrivacyPreference records and you are working on saving this with respect to the old-style Consent records. This is built off of your ProvidedIdentity migration, and I also add a method or two that might be useful for your work.

@eastandwestwind I was hoping to get your review on this as well as it's the start of the backend for being able to save and retrieve privacy preferences from things like overlays.

[eastandwestwind]

Great work on this @pattisdr ! I've gone through your testing steps and confirmed that everything worked as expected for me.

I can send everything expected in PATCH {{host}}/privacy-preferences with no issues, from FE for now. We can definitely refactor some into BE later.

[eastandwestwind]

One more question as I'm looking through docs- will we need an endpoint to retrieve privacy preference by user id (email / phone)? This can be a follow-up of course depending on need, specifically in privacy center, when an identity is known, but it was a first time visitor.

[pattisdr]

One more question as I'm looking through docs- will we need an endpoint to retrieve privacy preference by user id (email / phone)? This can be a follow-up of course depending on need, specifically in privacy center, when an identity is known, but it was a first time visitor.

@eastandwestwind I am not sure I understand your question.

I do have this separate endpoint for retrieving privacy preferences by an email or phone number that's very similar to the request we make in the privacy center now except this returns the new-style privacy preferences. This endpoint requires you follow that flow to verify your identity.

[eastandwestwind]

@pattisdr this was what I was looking for, thanks!