[temp] Add additional permissions to pulls and test results endpoint

[rohitvinnakota-codecov]

Purpose/Motivation

What is the feature? Why is this being done?

This change unblocks some short term workflows between Codecov and Sentry's Seer service. Seer will query Codecov's pulls endpoint for a given PR and use coverage information to generate tests.

Legal Boilerplate

Look, I get it. The entity doing business as "Sentry" was incorporated in the State of Delaware in 2015 as Functional Software, Inc. In 2022 this entity acquired Codecov and as result Sentry is going to need some rights from me in order to utilize my contributions in this PR. So here's the deal: I retain all rights, title and interest in and to my contributions, and by keeping this boilerplate intact I confirm that Sentry can use, modify, copy, and redistribute my contributions, under Sentry's choice of terms.

[codecov-notifications]

Codecov Report

All modified and coverable lines are covered by tests ✅

✅ All tests successful. No failed tests found.

📢 Thoughts on this report? Let us know!

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 96.23%. Comparing base (c2a3149) to head (1d8d6a5).
Report is 1 commits behind head on main.

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@             Coverage Diff             @@
##               main       #827   +/-   ##
===========================================
  Coverage   96.23000   96.23000           
===========================================
  Files           812        812           
  Lines         18567      18575    +8     
===========================================
+ Hits          17868      17876    +8     
  Misses          699        699           

Flag	Coverage Δ
unit	92.46% <100.00%> (+<0.01%)	⬆️
unit-latest-uploader	92.46% <100.00%> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[adrian-codecov]

These look good, although I encourage you to also add tests to ensure this works accordingly - check the test_report_viewset.py file as guidance. During local development, use print() to ensure you're going through the authentication class you're expecting

[rohitvinnakota-codecov]

@codecov-ai-reviewer

[codecov-ai]

I've reviewed this Pull Request and have no helpful feedback.

[adrian-codecov]

Just realized there's a typo in permisssions, could you pls change those 🙏

[adrian-codecov]

Optional: since this test succeeds because the token must match the SUPER_API_TOKEN, perhaps make a constant MOCK_SUPER_API_TOKEN up top and use it where needed

[adrian-codecov]

I also didn't explicitly ask, but you're expecting only GETs to these endpoints right?

[rohitvinnakota-codecov]

Yeah

[adrian-codecov]

I'm actually curious, I don't think we need this mock here. Could you try getting rid of this and see if the test still passes?

[adrian-codecov]

Left some suggestions, those applicable please do to the other test as well, but after that you should be gtg 👏