Introduce new mirroring and credential settings format and REST API #880
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ikhoon
changed the title
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #880 +/- ##
============================================
+ Coverage 66.86% 70.60% +3.74%
- Complexity 3529 3748 +219
============================================
Files 370 375 +5
Lines 14531 14917 +386
Branches 1563 1597 +34
============================================
+ Hits 9716 10532 +816
+ Misses 3936 3436 -500
- Partials 879 949 +70 ☔ View full report in Codecov by Sentry. |
minwoox
reviewed
Sep 11, 2023
server/src/main/java/com/linecorp/centraldogma/server/internal/mirror/AbstractMirror.java
Show resolved
Hide resolved
...va/com/linecorp/centraldogma/server/internal/mirror/MirroringAndCredentialServiceV1Test.java
Outdated
Show resolved
Hide resolved
...va/com/linecorp/centraldogma/server/internal/mirror/MirroringAndCredentialServiceV1Test.java
Outdated
Show resolved
Hide resolved
...va/com/linecorp/centraldogma/server/internal/mirror/MirroringAndCredentialServiceV1Test.java
Outdated
Show resolved
Hide resolved
...va/com/linecorp/centraldogma/server/internal/mirror/MirroringAndCredentialServiceV1Test.java
Outdated
Show resolved
Hide resolved
...java/com/linecorp/centraldogma/server/internal/storage/repository/DefaultMetaRepository.java
Outdated
Show resolved
Hide resolved
...rc/main/java/com/linecorp/centraldogma/server/internal/storage/repository/RepositoryUri.java
Outdated
Show resolved
Hide resolved
...rc/main/java/com/linecorp/centraldogma/server/internal/storage/repository/RepositoryUri.java
Outdated
Show resolved
Hide resolved
...a/com/linecorp/centraldogma/server/internal/mirror/credential/PublicKeyMirrorCredential.java
Outdated
Show resolved
Hide resolved
...a/com/linecorp/centraldogma/server/internal/mirror/credential/PublicKeyMirrorCredential.java
Outdated
Show resolved
Hide resolved
jrhee17
reviewed
Sep 25, 2023
common/src/main/java/com/linecorp/centraldogma/internal/jsonpatch/AddOperation.java
Outdated
Show resolved
Hide resolved
common/src/main/java/com/linecorp/centraldogma/internal/jsonpatch/AddOperation.java
Outdated
Show resolved
Hide resolved
...rc/main/java/com/linecorp/centraldogma/server/internal/mirror/MirroringMigrationService.java
Outdated
Show resolved
Hide resolved
Comment on lines
+141
to
+142
| final JsonNode credentialId = mirror.get("credentialId"); | ||
| if (credentialId != null) { |
There was a problem hiding this comment.
But I have no idea how to prevent JSON upsert operation. We may need to stop replication just before rolling updates.
Instead of the current approach of updating from a Leader directly, would it be possible to issue a custom command (i.e. MigrateMirrorCommand) ?
If we take a write lock while migrating, I guess there will be minimal issues regarding inconsistency.
jrhee17
reviewed
Sep 25, 2023
...rc/main/java/com/linecorp/centraldogma/server/internal/mirror/MirroringMigrationService.java
Outdated
Show resolved
Hide resolved
ikhoon
commented
Nov 28, 2023
server/src/main/java/com/linecorp/centraldogma/server/internal/api/MirroringServiceV1.java
Outdated
Show resolved
Hide resolved
ikhoon
added a commit
to ikhoon/centraldogma
that referenced
this pull request
Nov 28, 2023
Motivation: While mirroring migration job is implemeted line#880, read-only mode is necessary to safely migrate the legacy `mirrors.json` and `credentials.json` the HEAD revision. As the current read-only mode rejects all commands, the migration job is also unable to push commits. A new command type is required to rejects only users requests but allows administrative cases. I propose to introduce two new command types for the smooth migration job. Modifications: - Add `UpdateServerStatusCommand` so as to toggle the read-only mode for the cluster. - Add `ForcePush` so as to wrap a push `Command` to be executed even in the read-only mode. Result: `UpdateServerStatusCommand` and `ForcePush` have been added as new commands to update the cluster status and forcibly push commits in the read-only mode.
minwoox
pushed a commit
that referenced
this pull request
Feb 2, 2024
Motivation: While mirroring migration job is implemeted #880, read-only mode is necessary to safely migrate the legacy `mirrors.json` and `credentials.json` the HEAD revision. As the current read-only mode rejects all commands, the migration job is also unable to push commits. A new command type is required to rejects only users requests but allows administrative cases. I propose to introduce two new command types for the smooth migration job. Modifications: - Add `UpdateServerStatusCommand` so as to toggle the read-only mode for the cluster. - Add `ForcePush` so as to wrap a push `Command` to be executed even in the read-only mode. Result: `UpdateServerStatusCommand` and `ForcePush` have been added as new commands to update the cluster status and forcibly push commits in the read-only mode.
|
I found a bug in updating server's status during rolling restart. Let me send a separate PR to handle it first. |
|
I will proceed with this PR after #921 is merged. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Motivation:
The ID for mirroring and credential configurations is optional, so I found it difficult to safely update a configuration with REST API. If a user updates a file manually on UI or commit API, the REST API may update a wrong configuration without a unique ID.
@trustin suggested changing the directory layout to store a configuration to a file with a unique ID. #838 (review)
This PR has three major changes:
.baksuffix. e,g.mirrors.json->mirrors.json.bak,credentials.json->credentials.json.bak.Modifications:
MirroringMigrationServicethat is executed when a server starts and scan all/mirrors.jsonand/credentials.jsonin the meta repo of projects and migrate them to the new format.mirror-<projectName>-<localRepo>-<shortWord>credential-<projectName>-<shortWord>short_wordlist.txtis used as the word database.Mirrorand related classes to haveid,enabledas required fields.CredentailServiceV1andMirrorServiceV1to serve REST API for CRU.DefaultMetaRepository.RepositoryUrito represent a repository-specific URI such as a Git repository URL.MirrorDtoto serialize a mirroring configuration.Mirrorrepresents a mirroring task, soMirroris not suitable for serialization.MirrorCredentialis used as is instead of creating a new DTO.Result: