daemon: add notices API #13364
daemon: add notices API #13364
Conversation
github-actions
bot
added
the
Needs Documentation -auto-
olivercalder
added
Needs Samuele review
|
NEWS.md will need to be modified to note that the notices API has been added. This can likely occur along with other API documentation changes. |
olivercalder
force-pushed
the
notices-api
branch
from
95ab176 to
8a529f9
Compare
github-actions
bot
added
the
Needs Documentation -auto-
olivercalder
force-pushed
the
notices-api
branch
from
8a529f9 to
6382ece
Compare
daemon/api_notices.go
Outdated
| if !noticeType.Valid() { | ||
| // Ignore invalid notice types (so requests from newer clients | ||
| // with unknown types succeed). | ||
| continue |
There was a problem hiding this comment.
nitpick: there could be a short test for this
There was a problem hiding this comment.
Good point, thanks! Technically, I'm not sure that this check is even necessary, since the notice filter within overlord/state/notices.go will happily accept arbitrary strings, but I agree it's safer to sanity check them here before they make it to the state notices code. I'll add a test for this.
There was a problem hiding this comment.
Actually, if the user only has invalid notice types, the current behavior would return all notices (assuming no other filters), since this is equivalent to an empty types filter. I'll add a check and tests to make sure no notices are returned in this case.
daemon/api_notices_test.go
Outdated
| elapsed := time.Since(start) | ||
| c.Check(elapsed > 10*time.Millisecond, Equals, true) | ||
| c.Check(elapsed < time.Second, Equals, true) |
There was a problem hiding this comment.
This feels a bit brittle. It's probably fine but I'm thinking about the slower systems on which spread runs, we've had issues with timing dependent things before I think. Just something to be on the lookout in the first runs
There was a problem hiding this comment.
I think checking elapsed > 10*time.Millisecond is the brittle part, as it could be that the goroutine waiting to cancel the context runs for a while before start time is recorded. I think the solution is to record the start time before spawning the cancel goroutine. Checking that elapsed time is less than 1s should be safe, I would think, on all systems.
daemon/api_notices_test.go
Outdated
|
|
||
| st := s.d.Overlord().State() | ||
| go func() { | ||
| time.Sleep(10 * time.Millisecond) |
There was a problem hiding this comment.
If we do see any timing-related issues and end up having to mock WaitNotices, we could also change this one
| @@ -231,6 +231,16 @@ func CommaSeparatedList(str string) []string { | |||
| return filtered | |||
| } | |||
|
|
|||
| // MultiCommaSeparatedList parses each string in strs with CommaSeparatedList | |||
| // and returns the concatenation of all parsed values. | |||
| func MultiCommaSeparatedList(strs []string) []string { | |||
There was a problem hiding this comment.
Nitpick, but I think it provides clearer intent:
| func MultiCommaSeparatedList(strs []string) []string { | |
| func FlattenCommaSeparatedLists(strs []string) []string { |
There was a problem hiding this comment.
I agree and prefer your approach to this naming and description, but this is an existing function in the "github.com/canonical/x-go/strutil" package, so for compatibility's sake I don't think we should change them here, if the code body is otherwise unchanged.
There was a problem hiding this comment.
Ah, a bit annoying we have a copy of another package, but I see
Codecov ReportAttention:
❗ Your organization needs to install the Codecov GitHub app to enable full functionality. Additional details and impacted files@@ Coverage Diff @@
## master #13364 +/- ##
==========================================
+ Coverage 78.80% 78.85% +0.04%
==========================================
Files 1022 1024 +2
Lines 127295 127648 +353
==========================================
+ Hits 100317 100654 +337
- Misses 20697 20707 +10
- Partials 6281 6287 +6
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
daemon/api_notices.go
Outdated
| ReadAccess: openAccess{}, | ||
| } | ||
|
|
||
| noticeCmd = &Command{ | ||
| Path: "/v2/notices/{id}", | ||
| GET: getNotice, | ||
| ReadAccess: openAccess{}, |
There was a problem hiding this comment.
until we have the distinction of public|private coming together with the per-user work we probably want authenticatedAccess here (that also matches UserOK on the pebble side)
daemon/request.go
Outdated
There was a problem hiding this comment.
I see that this was added just like this on the pebble side, I wonder though if both there and here more helper could move here, otoh it's really an orthogonal issue to the PR
|
@ernestl or @Meulengracht , could you please advise me on what I need to do for recording the addition of the notices API in NEWS.md? |
|
Added "Skip" spread so I can rebase without running spread tests. Previous spread run had only 1 failure, on Ubuntu 20.04-arm (log here: https://github.com/snapcore/snapd/actions/runs/7105573085/job/19355042068?pr=13364) |
This is a port from Pebble into snapd of the notices API. The original PR can be found at: canonical/pebble#296 Signed-off-by: Oliver Calder <[email protected]>
This new function is useful for parsing `url.Values` where there may be multiple values for the same key, and those values may themselves be comma-separated values. This is a port of a commit from the `x-go` package, which was originally intended to be used in pebble. The commit can be found here: canonical/x-go@32684ae Signed-off-by: Oliver Calder <[email protected]>
As notices are originally from pebble, various adjustments must be made in order for the ported API to work with snapd. Signed-off-by: Oliver Calder <[email protected]>
Unlike pebble, snapd does not have a client for notices, and notices should not be created from outside of snapd. As a result, there is no need for a POST handler on the notices API. Signed-off-by: Oliver Calder <[email protected]>
In snapd, there are no user-defined notices, so there is no need for a custom notice type. Signed-off-by: Oliver Calder <[email protected]>
Invalid notice types are ignored when parsing the API request to construct the notice filter. However, if only invalid notice types are included in the request, discarding all types results in a filter indistinguishable from one which never had any types in the first place, and thus should return notices of any type. This commit fixes this behaviour, so no notices are returned if only invalid notice types are requested. Signed-off-by: Oliver Calder <[email protected]>
Signed-off-by: Oliver Calder <[email protected]>
Most importantly, wait to lock the state until after the optional duration has been parsed, in case an error occurs. Also, moves the types query parsing/sanitization into its own function, since this cleans up the GET notices handler and better matches future handling of user ID filtering. Signed-off-by: Oliver Calder <[email protected]>
TODO: probably revert this commit once per-user notices are implemented, as that will provide the proper restrictions so that non-privileged users cannot read private notices intended for other users. Signed-off-by: Oliver Calder <[email protected]>
Signed-off-by: Oliver Calder <[email protected]>
olivercalder
force-pushed
the
notices-api
branch
from
3e4ba1f to
00e825b
Compare
This PR adds the notices API endpoints, which are originally from pebble. The spec for pebble notices is JUu48
Various modifications are required to adapt the notices API to snapd. The most notable are the removal of the custom notice type and the removal of the POST notices handler, both of which result from the fact that snapd does not have a notices client or user-defined notices.
Additionally, snapd uses the
strutilpackage internal to snapd, while pebble usesstrutilfrom github.com/canonical/x-go. The prior addition ofMultiCommaSeparatedListto thex-go/strutilpackage must be ported tosnapd/strutilas well.The corresponding PR from pebble can be found at: canonical/pebble#296