Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use standard create/update/delete features for Authentications #1220

Merged
merged 1 commit into from
Feb 12, 2024
Merged

Use standard create/update/delete features for Authentications #1220

merged 1 commit into from
Feb 12, 2024

Conversation

agrare
Copy link
Member

@agrare agrare commented Apr 24, 2023
edited by kbrock
Loading

Move the /api/authentications endpoint towards using standard create/update/delete supports features rather than checking for specific methods.

The goal is to use the standard create_ems_resource and ems_resource actions here

Depends on:

@agrare agrare requested a review from bdunne as a code owner April 24, 2023 17:17
@miq-bot miq-bot added the wip label Apr 24, 2023
@agrare agrare force-pushed the use_standard_crud_features_authentications branch from 3e4ae01 to 7ca006f Compare April 24, 2023 18:01
kbrock
kbrock reviewed Apr 28, 2023
View reviewed changes
app/controllers/api/authentications_controller.rb
klass = ::Authentication.descendant_get(attrs['type'])
ensure_supports(type, klass, :create)
Copy link
Member

@kbrock kbrock Apr 28, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Darn, this is very close to the api_resource model.

almost like we want to define:

def resource_search(id, type)
  ::Authentication.descendant_get(type)
end

def create_resource(type, _id, data)
  api_resource(type, nil, "Creating", :supports => :create) do |klass|
    manager_resource, attrs = validate_auth_attrs(data)
    {:task_id => klass.create_in_provider_queue(manager_resource.id, attrs.deep_symbolize_keys)}
  end
end

But may need to fall back to api_action.

Now that I think about it, I had refactored this method a number of times.
Never got it quite right.

This is a definite improvement.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ooh, right

I kept splitting apart the validate_auth_attrs:

def create_resource(_type, _id, data)
  type, id = data_resource(data)
  # maybe attrs from data_resource ?
  api_resource(type, id, "Creating", :supports => :create) do |auth, klass|
    {:task_id => klass.create_in_provider_queue(auth.id, attrs.deep_symbolize_keys)}
  end
end

def data_resource(data)
  href = Href.new(data['manager_resource']['href'])
  raise 'invalid manager_resource href specified' unless href.subject && href.subject_id
  [href.subject, href.subject_id]
end

nvr mind. there is a reason I never created a PR for this.

@kbrock
Copy link
Member

kbrock commented Apr 28, 2023

the tests turned out very nicely.

I think getting to api_action or api_resource is a great start.

I think I have refactored this a number of times but got derailed with so many changes across the other controllers. Lets do as much as you want here but get it in.

The changes to the tests really show that you are on the right track.

@miq-bot miq-bot added the stale label Jul 31, 2023
@miq-bot
Copy link
Member

miq-bot commented Jul 31, 2023

This pull request has been automatically marked as stale because it has not been updated for at least 3 months.

If these changes are still valid, please remove the stale label, make any changes requested by reviewers (if any), and ensure that this issue is being looked at by the assigned/reviewer(s)

Thank you for all your contributions! More information about the ManageIQ triage process can be found in the triage process documentation.

@agrare agrare removed the stale label Aug 1, 2023
@kbrock
Copy link
Member

kbrock commented Aug 29, 2023

@agrare un-WIP if you ready to merge this one.

There was only one suggestion for api_resource, but I'm ok merging without that change.

@agrare
Copy link
Member Author

agrare commented Aug 29, 2023

Hey thanks for the nudge @kbrock let me rebase this and see if it still passes specs

@agrare agrare force-pushed the use_standard_crud_features_authentications branch from 7ca006f to 8e86202 Compare August 29, 2023 18:13
@agrare agrare changed the title [WIP] Use standard create/update/delete features for Authentications Use standard create/update/delete features for Authentications Aug 30, 2023
@miq-bot miq-bot removed the wip label Aug 30, 2023
@agrare agrare force-pushed the use_standard_crud_features_authentications branch from 8e86202 to a6bb13d Compare August 30, 2023 13:20
@miq-bot
Copy link
Member

miq-bot commented Aug 30, 2023

Checked commit agrare@a6bb13d with ruby 2.6.10, rubocop 1.28.2, haml-lint 0.35.0, and yamllint
4 files checked, 4 offenses detected

spec/requests/authentications_spec.rb

spec/requests/configuration_script_payloads_spec.rb

@kbrock
Copy link
Member

kbrock commented Sep 22, 2023

kicking. I want this in

@kbrock kbrock closed this Sep 22, 2023
@kbrock kbrock reopened this Sep 22, 2023
@Fryguy
Copy link
Member

Fryguy commented Sep 22, 2023
edited
Loading

Not all authentications are tied to a provider, so will this change prevent any operations on those? I'm asking because I thought this one was "special" for exactly this reason.

@agrare
Copy link
Member Author

agrare commented Sep 22, 2023

Not all authentications are tied to a provider, so will this change prevent any operations on those? I'm asking because I thought this one was "special" for exactly this reason.

This still doesn't require authentications to be tied to a provider, previously we used only the presence of a create_in_provider_queue method existing on the class, this just changes that to use supports :create/:update instead.

@agrare
Copy link
Member Author

agrare commented Sep 22, 2023

@kbrock @Fryguy I still need to update the providers to ensure they have the correct supports set, realizing now that is why I had it WIP before #1220 (comment)

@agrare agrare changed the title Use standard create/update/delete features for Authentications [WIP] Use standard create/update/delete features for Authentications Sep 22, 2023
@miq-bot miq-bot added the wip label Sep 22, 2023
@kbrock
Copy link
Member

kbrock commented Sep 28, 2023

I still need to update the providers to ensure they have the correct supports set

can you restate this?
What supports (I see :delete) and where do those need to go?

@agrare
Copy link
Member Author

agrare commented Sep 28, 2023

What supports (I see :delete) and where do those need to go?

We have :create, :update, and :delete here. We used to check for respond_to? on create_in_provider_queue,, update_in_provider_queue, and delete_in_provider_queue.

We need to find all authentication classes that define these methods but not corresponding supports and add the supports feature in otherwise they will no longer work after this change. Just the first example I looked for, https://github.com/ManageIQ/manageiq-providers-awx/blob/master/app/models/manageiq/providers/awx/automation_manager/credential.rb#L12 has only supports :create but it responds to update/delete_in_provider_queue

@miq-bot miq-bot added the stale label Jan 1, 2024
@miq-bot
Copy link
Member

miq-bot commented Jan 1, 2024

This pull request has been automatically marked as stale because it has not been updated for at least 3 months.

If these changes are still valid, please remove the stale label, make any changes requested by reviewers (if any), and ensure that this issue is being looked at by the assigned/reviewer(s).

@kbrock kbrock mentioned this pull request Feb 9, 2024
Merged
4 tasks
@kbrock
Copy link
Member

kbrock commented Feb 9, 2024

re: WIP

I think ManageIQ/manageiq#22894 is the only change needed. It does not require a change in the class listed. (though I did add a caveat that adding to each of the child leaf nodes is an option)

@agrare agrare mentioned this pull request Feb 12, 2024
Merged
@agrare
Copy link
Member Author

agrare commented Feb 12, 2024
edited
Loading

@kbrock I think this is the list

>> Authentication.leaf_subclasses.select { |a| a.new.respond_to?(:update_in_provider_queue) }.reject { |a| a.supports?(:update) }.map(&:name)
=> 
["ManageIQ::Providers::EmbeddedAnsible::AutomationManager::AmazonCredential",  
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::AzureCredential",   
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::GoogleCredential",  
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::OpenstackCredential",
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::RhvCredential",     
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::VmwareCredential",  
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::MachineCredential", 
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::NetworkCredential", 
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::ScmCredential",     
 "ManageIQ::Providers::EmbeddedAnsible::AutomationManager::VaultCredential",   
 "ManageIQ::Providers::Workflows::AutomationManager::ScmCredential",           
 "ManageIQ::Providers::Workflows::AutomationManager::WorkflowCredential",      
 "ManageIQ::Providers::AnsibleTower::AutomationManager::AmazonCredential",     
 "ManageIQ::Providers::AnsibleTower::AutomationManager::AzureCredential",      
 "ManageIQ::Providers::AnsibleTower::AutomationManager::GoogleCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::OpenstackCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::RhvCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::Satellite6Credential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::VmwareCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::MachineCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::NetworkCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::ScmCredential",
 "ManageIQ::Providers::AnsibleTower::AutomationManager::VaultCredential",
 "ManageIQ::Providers::Awx::AutomationManager::AmazonCredential",
 "ManageIQ::Providers::Awx::AutomationManager::AzureCredential",
 "ManageIQ::Providers::Awx::AutomationManager::GoogleCredential",
 "ManageIQ::Providers::Awx::AutomationManager::OpenstackCredential",
 "ManageIQ::Providers::Awx::AutomationManager::RhvCredential",
 "ManageIQ::Providers::Awx::AutomationManager::Satellite6Credential",
 "ManageIQ::Providers::Awx::AutomationManager::VmwareCredential",
 "ManageIQ::Providers::Awx::AutomationManager::MachineCredential",
 "ManageIQ::Providers::Awx::AutomationManager::NetworkCredential",
 "ManageIQ::Providers::Awx::AutomationManager::ScmCredential",
 "ManageIQ::Providers::Awx::AutomationManager::VaultCredential"]

So your PR ManageIQ/manageiq#22894 covers the EmbeddedAnsible ones, so we just need ManageIQ/manageiq-providers-awx#24 and one for workflows

@agrare agrare changed the title [WIP] Use standard create/update/delete features for Authentications Use standard create/update/delete features for Authentications Feb 12, 2024
@kbrock kbrock merged commit cc03158 into ManageIQ:master Feb 12, 2024
5 checks passed
@agrare agrare deleted the use_standard_crud_features_authentications branch February 12, 2024 16:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kbrock kbrock kbrock left review comments

@bdunne bdunne Awaiting requested review from bdunne bdunne is a code owner

Assignees

@kbrock kbrock

Labels
refactoring
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@agrare @kbrock @miq-bot @Fryguy