Skip to content

Using Pydantic's MISSING sentinel in FastAPI for PATCH endpoints

Starting with Pydantic 2.12.0, the MISSING sentinel can be used to annotate non-required, non-nullable fields, which is very useful for PATCH endpoints.

This article is a follow-up to Using TypeDicts in FastAPI for PATCH endpoints.

Let's say we want to add the following endpoint:

  • PATCH /movies/{movie_id}: Update a movie's rating or comment

The request body will contain only the fields that user wants to update, and fail if the user provides the wrong data types, or if an unexpected field is included.

Solution: MISSING sentinel and extra="forbid"

The MISSING sentinel can be used to annotate non-required, non-nullable fields, and the extra="forbid" configuration can be used to disallow extra fields:

from pydantic import BaseModel, ConfigDict
from pydantic_core import MISSING


class MovieUpdate(BaseModel):
    model_config = ConfigDict(extra="forbid")

    rating: Rating | MISSING = MISSING
    comment: Comment | MISSING = MISSING


@app.patch("/movies/{movie_id}")
def update_movie(movie_id: int, update: schemas.MovieUpdate) -> schemas.MovieRead:
    if movie := db.get(doc_id=movie_id):
        movie.update(update.model_dump())
        db.update(movie, doc_ids=[movie_id])
        return schemas.MovieRead.model_validate({"id": movie.doc_id, **movie})

    raise HTTPException(
        status_code=http.HTTPStatus.NOT_FOUND,
        detail="Movie not found",
    )

This will correctly disallow updating fields that are not in the MovieUpdate model, such as title and year, while the rating and comment fields are optional and can be omitted from the request body:

  1. Fields are optional

    http -p=b PATCH :8000/movies/1 rating:=3
    {
    "comment": null,
    "id": 1,
    "rating": 3,
    "title": "Pulp Fiction",
    "year": 1994
}

  2. Extra fields are not allowed

    http -p=b PATCH :8000/movies/1 year:=2024
    {
    "detail": [
        {
            "input": 2024,
            "loc": [
                "body",
                "year"
            ],
            "msg": "Extra inputs are not permitted",
            "type": "extra_forbidden"
        }
    ]
}

  3. Fields are not nullable

    http -p=b PATCH :8000/movies/1 rating:=null
    {
    "detail": [
        {
            "input": null,
            "loc": [
                "body",
                "rating"
            ],
            "msg": "Input should be a valid integer",
            "type": "int_type"
        }
    ]
}

Appendix: Full code

my_app/app.py
  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
# /// script
# dependencies = [
#    "fastapi[standard]",
#    "mypy",
#    "pydantic>=2.12.0b1",
#    "tinydb",
#    "uvicorn",
# ]
# requires-python = ">=3.13"
# ///

import http
import pathlib
from typing import Annotated

from fastapi import FastAPI, HTTPException
from pydantic import BaseModel, ConfigDict, Field
from pydantic_core import MISSING
from tinydb import TinyDB

Comment = Annotated[
    str,
    Field(
        min_length=1,
        max_length=100,
        description="Comment up to 100 characters",
    ),
]

Rating = Annotated[
    int,
    Field(
        ge=1,
        le=5,
        description="Rating from 1 to 5",
    ),
]


class Movie(BaseModel):
    title: str
    year: int
    rating: Rating | None = None
    comment: Comment | None = None


class MovieRead(Movie):
    id: int


class MovieAdd(Movie): ...


class MovieList(BaseModel):
    movies: list[MovieRead]


class MovieUpdate(BaseModel):
    model_config = ConfigDict(extra="forbid")

    rating: Rating | MISSING = MISSING
    comment: Comment | MISSING = MISSING


app = FastAPI()

tinydb_path = pathlib.Path("./db.json")
db = TinyDB(tinydb_path)


@app.get("/movies")
def list_movies():
    return MovieList(
        movies=[
            MovieRead.model_validate({"id": movie.doc_id, **movie})
            for movie in db.all()
        ]
    )


@app.get("/movies/{movie_id}")
def read_movie(movie_id: int):
    if movie := db.get(doc_id=movie_id):
        return MovieRead.model_validate({"id": movie.doc_id, **movie})

    raise HTTPException(
        status_code=http.HTTPStatus.NOT_FOUND,
        detail="Movie not found",
    )


@app.patch("/movies/{movie_id}")
def update_movie(movie_id: int, update: MovieUpdate) -> MovieRead:
    if movie := db.get(doc_id=movie_id):
        movie.update(update.model_dump())
        db.update(movie, doc_ids=[movie_id])
        return MovieRead.model_validate({"id": movie.doc_id, **movie})

    raise HTTPException(
        status_code=http.HTTPStatus.NOT_FOUND,
        detail="Movie not found",
    )


@app.post("/movies")
def add_movie(movie: MovieAdd) -> MovieRead:
    movie_id = db.insert(movie.model_dump())
    new_movie = db.get(doc_id=movie_id)
    return MovieRead.model_validate({"id": movie_id, **new_movie})


@app.delete("/movies/{movie_id}", status_code=http.HTTPStatus.NO_CONTENT)
def delete_movie(movie_id: int) -> None:
    db.remove(doc_ids=[movie_id])


if __name__ == "__main__":
    import csv

    import uvicorn

    tinydb_path.unlink(missing_ok=True)
    db = TinyDB(tinydb_path)

    with pathlib.Path("./movies.csv").open() as f:
        reader = csv.DictReader(f)
        db.insert_multiple(reader)

    uvicorn.run(app, host="0.0.0.0", port=8000)