Use secret key when adding allowed process model

src/spiffworkflow_backend/api.yml

@@ -2034,10 +2034,16 @@ components:
           type: number
           example: 1
           nullable: true
+        secret_key:
+          description: The key of the secret associated with this allowed process path
+          type: string
+          example: 2
+          nullable: true
         secret_id:
           description: The id of the secret associated with this allowed process path
           type: number
           example: 2
+          nullable: true
         allowed_relative_path:
           description: The allowed process path
           type: string

src/spiffworkflow_backend/routes/process_api_blueprint.py

@@ -1308,8 +1308,9 @@ def delete_secret(key: str) -> Response:
 
 def add_allowed_process_path(body: dict) -> Response:
     """Get allowed process paths."""
+    secret = SecretService().get_secret(body["secret_key"])
     allowed_process_path = SecretService.add_allowed_process(
-        body["secret_id"], g.user.id, body["allowed_relative_path"]
+        secret.id, g.user.id, body["allowed_relative_path"]
     )
     return Response(
         json.dumps(SecretAllowedProcessSchema().dump(allowed_process_path)),

tests/spiffworkflow_backend/integration/test_secret_service.py

@@ -453,7 +453,7 @@ class TestSecretServiceApi(SecretServiceTestHelpers):
             process_model_info
         )
         data = {
-            "secret_id": test_secret.id,
+            "secret_key": test_secret.key,
             "allowed_relative_path": process_model_relative_path,
         }
         response: TestResponse = client.post(