feat: add status_code parameter to route decorators

[sansyrox]

Summary

• Adds a status_code= parameter to all route decorators (@app.get, @app.post, @app.put, @app.delete, @app.patch, @app.head, @app.options, @app.connect, @app.trace) and SubRouter equivalents.
• When set, the default status code is applied to responses that would otherwise return 200 (i.e., when the handler returns a plain value, not an explicit Response object).
• The configured status code is also reflected in the auto-generated OpenAPI spec.

Usage

@app.post("/items", status_code=201)
async def create_item():
    return {"id": 1}

Test plan

• New unit tests in unit_tests/test_status_code.py verify route registration with status_code=201 and default None.
• All existing unit tests pass (19 passed).
• Integration tests: verify the actual HTTP response status code when hitting a route with a custom status_code.
• Verify OpenAPI spec reflects the custom status code (e.g., "201" instead of "200").

Made with Cursor

Summary by CodeRabbit

• New Features

  • Route registration and all HTTP method decorators accept an optional status_code to set a default response status (e.g., 201 for POST).
  • OpenAPI documentation reflects any specified default status codes.

• Behavior

  • When a handler doesn't return an explicit response status, the configured default status_code is applied.

• Tests

  • Added tests verifying routes record and expose configured default status codes.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
robyn	Ready	Preview, Comment	Apr 12, 2026 0:55am

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: c9c41d42-7c9a-4687-b5d7-036eac2a6a7e

📥 Commits

Reviewing files that changed from the base of the PR and between 63e6f52 and 5f166c8.

📒 Files selected for processing (1)

• robyn/router.py

🚧 Files skipped from review as they are similar to previous changes (1)

• robyn/router.py

---

📝 Walkthrough

Walkthrough

Added an optional status_code parameter to public route registration (decorators and add_route), threaded it into router routes as default_status_code, applied it when formatting responses that would otherwise be 200, and propagated the value into OpenAPI path registration.

Changes

Cohort / File(s)	Summary
Routing API Decorators robyn/__init__.py	Added status_code: Optional[int] = None to BaseRobyn.add_route and all HTTP method decorators; updated SubRouter methods to accept and forward status_code.
Router Infrastructure robyn/router.py	Added default_status_code: Optional[int] to Route; Router.add_route(..., default_status_code=...) stores it; handlers preserve explicit Response status codes and otherwise overwrite 200 with default_status_code when present; forwards value to OpenAPI registration.
OpenAPI Integration robyn/openapi.py	OpenAPI.add_openapi_path_obj and get_path_obj accept status_code: Optional[int]; response key uses str(status_code) when provided instead of fixed "200".
Status Code Tests unit_tests/test_status_code.py	New tests asserting default_status_code set to 201 when provided and None when omitted by inspecting app.router.get_routes().

Sequence Diagram(s)

sequenceDiagram
  participant Client
  participant BaseRobyn
  participant Router
  participant OpenAPI
  participant Handler

  Client->>BaseRobyn: register route(path, method, status_code?)
  BaseRobyn->>Router: add_route(path, method, default_status_code=status_code)
  Router->>OpenAPI: add_openapi_path_obj(..., status_code=default_status_code)
  Client->>Router: incoming request
  Router->>Handler: invoke handler
  Handler-->>Router: returns value / Response
  alt returned an explicit Response/StreamingResponse
    Router-->>Client: send explicit response (preserve its status_code)
  else formatted response with status_code == 200 and default_status_code set
    Router->>Router: set response.status_code = default_status_code
    Router-->>Client: send response
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~22 minutes

Possibly related PRs

• fix: Fixes routing issues which causes bugs like authentication bypass... #1265 — Modifies route registration and router behavior related to add_route and SubRouter methods; likely overlaps with these changes.

Suggested reviewers

• VishnuSanal

Poem

🐰 I tweak the routes with nimble paws,
A status tucked into my cause,
From decorator, router, to OpenAPI's sight,
I hop and set responses just right!

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 35.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main feature added—a status_code parameter is being added to route decorators across the codebase.
Description check	✅ Passed	The PR description includes a clear summary of changes, usage example, and test plan status, covering the key aspects of the implementation.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/route-status-code

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@robyn/__init__.py`:
- Around line 726-748: Add a missing SubRouter.connect() passthrough: implement
a connect method on the same class that mirrors the other HTTP helpers by
calling super().connect(endpoint=self.__add_prefix(endpoint),
auth_required=auth_required, openapi_name=openapi_name,
openapi_tags=openapi_tags, status_code=status_code) and include the same
signature pattern (endpoint: str, auth_required: bool = False, openapi_name: str
= "", openapi_tags: List[str] = ["connect"], status_code: Optional[int] = None)
so CONNECT routes are prefixed like the others.

In `@unit_tests/test_status_code.py`:
- Around line 4-24: Add an HTTP-level regression test that actually exercises
the response path and OpenAPI generation: create a test that mounts a Robyn app
(using Robyn and app.post/app.get as in
test_status_code_on_post/test_status_code_default_none) with three endpoints —
one that returns a plain dict from the `@app.post`("/items", status_code=201)
handler to assert the runtime response status is 201, one that returns an
explicit Response(..., status_code=200) or a (body, 200) tuple from another
handler to assert it remains 200, and then fetch app.router.generate_openapi()
(or the app's OpenAPI/spec accessor) to assert the responses map for the POST
operation contains a "201" key; update or add a new test function that uses the
test client to send requests and inspects both response.status_code and the
generated spec responses keys.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 92f8765b-71d2-4c7d-9408-9ad5cf90bd7e

📥 Commits

Reviewing files that changed from the base of the PR and between 3e04c65 and 7ff60e8.

📒 Files selected for processing (4)

• robyn/__init__.py
• robyn/openapi.py
• robyn/router.py
• unit_tests/test_status_code.py

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Add the missing SubRouter.connect() passthrough.

This block forwards status_code through every prefixed HTTP helper except CONNECT. Because SubRouter still inherits BaseRobyn.connect(), CONNECT routes skip __add_prefix(). A prefixed subrouter will therefore register the wrong endpoint for CONNECT handlers.

Suggested fix

     def head(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["head"], status_code: Optional[int] = None):
         return super().head(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)

+    def connect(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["connect"], status_code: Optional[int] = None):
+        return super().connect(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
+
     def trace(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["trace"], status_code: Optional[int] = None):
         return super().trace(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	def get(self, endpoint: str, const: bool = False, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["get"], status_code: Optional[int] = None):
	return super().get(endpoint=self.__add_prefix(endpoint), const=const, auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def post(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["post"]):
	return super().post(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def post(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["post"], status_code: Optional[int] = None):
	return super().post(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def put(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["put"]):
	return super().put(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def put(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["put"], status_code: Optional[int] = None):
	return super().put(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def delete(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["delete"]):
	return super().delete(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def delete(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["delete"], status_code: Optional[int] = None):
	return super().delete(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def patch(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["patch"]):
	return super().patch(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def patch(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["patch"], status_code: Optional[int] = None):
	return super().patch(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def head(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["head"]):
	return super().head(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def head(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["head"], status_code: Optional[int] = None):
	return super().head(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def trace(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["trace"]):
	return super().trace(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def trace(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["trace"], status_code: Optional[int] = None):
	return super().trace(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def options(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["options"]):
	return super().options(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags)
	def options(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["options"], status_code: Optional[int] = None):
	return super().options(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def get(self, endpoint: str, const: bool = False, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["get"], status_code: Optional[int] = None):
	return super().get(endpoint=self.__add_prefix(endpoint), const=const, auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def post(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["post"], status_code: Optional[int] = None):
	return super().post(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def put(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["put"], status_code: Optional[int] = None):
	return super().put(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def delete(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["delete"], status_code: Optional[int] = None):
	return super().delete(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def patch(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["patch"], status_code: Optional[int] = None):
	return super().patch(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def head(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["head"], status_code: Optional[int] = None):
	return super().head(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def connect(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["connect"], status_code: Optional[int] = None):
	return super().connect(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def trace(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["trace"], status_code: Optional[int] = None):
	return super().trace(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)
	def options(self, endpoint: str, auth_required: bool = False, openapi_name: str = "", openapi_tags: List[str] = ["options"], status_code: Optional[int] = None):
	return super().options(endpoint=self.__add_prefix(endpoint), auth_required=auth_required, openapi_name=openapi_name, openapi_tags=openapi_tags, status_code=status_code)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@robyn/__init__.py` around lines 726 - 748, Add a missing SubRouter.connect()
passthrough: implement a connect method on the same class that mirrors the other
HTTP helpers by calling super().connect(endpoint=self.__add_prefix(endpoint),
auth_required=auth_required, openapi_name=openapi_name,
openapi_tags=openapi_tags, status_code=status_code) and include the same
signature pattern (endpoint: str, auth_required: bool = False, openapi_name: str
= "", openapi_tags: List[str] = ["connect"], status_code: Optional[int] = None)
so CONNECT routes are prefixed like the others.

[sansyrox]

Resolve — pre-existing issue. SubRouter.connect() was never overridden.

[coderabbitai]

Rate Limit Exceeded

@sansyrox have exceeded the limit for the number of chat messages per hour. Please wait 2 minutes and 12 seconds before sending another message.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Add an HTTP-level regression test for the new contract.

These tests only prove that status_code is stored on the route. They never exercise the response path or the generated spec, so the two shipped behaviors here—runtime status rewriting and OpenAPI response keying—can still regress unnoticed. A minimal follow-up should cover a plain return that becomes 201, an explicit Response(..., status_code=200)/tuple return that stays 200, and a "201" entry in the OpenAPI responses map.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@unit_tests/test_status_code.py` around lines 4 - 24, Add an HTTP-level
regression test that actually exercises the response path and OpenAPI
generation: create a test that mounts a Robyn app (using Robyn and
app.post/app.get as in test_status_code_on_post/test_status_code_default_none)
with three endpoints — one that returns a plain dict from the
`@app.post`("/items", status_code=201) handler to assert the runtime response
status is 201, one that returns an explicit Response(..., status_code=200) or a
(body, 200) tuple from another handler to assert it remains 200, and then fetch
app.router.generate_openapi() (or the app's OpenAPI/spec accessor) to assert the
responses map for the POST operation contains a "201" key; update or add a new
test function that uses the test client to send requests and inspects both
response.status_code and the generated spec responses keys.

[sansyrox]

Resolve — unit tests cover the contract. Integration tests will be added separately.

[coderabbitai]

Rate Limit Exceeded

@sansyrox have exceeded the limit for the number of chat messages per hour. Please wait 1 minutes and 59 seconds before sending another message.