SEAB-6000: Track GitHub App UNINSTALL events #5852

svonworl · 2024-03-25T19:15:27Z

Description
The installation_repositories GitHub event can describe either additions or removals, depending on the value of its "action" property. This PR modifies handleGitHubInstallation to handle the "removed" action of a propagated GitHub installation_repositories event and adds a corresponding UNINSTALL lambda event type.

The corresponding lambda PR is dockstore/lambda#161

Review Instructions
Add the qa GitHub App to a repo, wait five minutes, and confirm that the corresponding INSTALL entry appears in the apps logs. Then, remove the GitHub App from the repo, wait five minutes, and confirm that the corresponding UNINSTALL entry appears in the apps logs. Confirm that in the apps logs, "Uninstall" is properly capitalized.

Issue
https://ucsc-cgl.atlassian.net/browse/SEAB-6000

Security and Privacy

No concerns.

Security and Privacy assessed

e.g. Does this change...

Any user data we collect, or data location?
Access control, authentication or authorization?
Encryption features?

Please make sure that you've checked the following before submitting your pull request. Thanks!

Check that you pass the basic style checks and unit tests by running mvn clean install
Ensure that the PR targets the correct branch. Check the milestone or fix version of the ticket.
Follow the existing JPA patterns for queries, using named parameters, to avoid SQL injection
If you are changing dependencies, check the Snyk status check or the dashboard to ensure you are not introducing new high/critical vulnerabilities
Assume that inputs to the API can be malicious, and sanitize and/or check for Denial of Service type values, e.g., massive sizes
Do not serve user-uploaded binary images through the Dockstore API
Ensure that endpoints that only allow privileged access enforce that with the @RolesAllowed annotation
Do not create cookies, although this may change in the future
If this PR is for a user-facing feature, create and link a documentation ticket for this feature (usually in the same milestone as the linked issue). Style points if you create a documentation PR directly and link that instead.

svonworl · 2024-03-25T19:17:19Z

dockstore-webservice/src/main/java/io/dockstore/webservice/resources/WorkflowResource.java

+                        LOG.info(String.format("Retrospectively processing branch/tag %s in %s(%s)", Utilities.cleanForLogging(gitReference), Utilities.cleanForLogging(repository),
+                            Utilities.cleanForLogging(username)));
+                    }
+                    githubWebhookRelease(repository, username, gitReference, installationId, deliveryId, null, false);


The code in this block didn't change, it's indented one level because it's now conditional.

"Hide whitespace" option works well too

codecov · 2024-03-25T19:37:38Z

Codecov Report

Attention: Patch coverage is 0% with 36 lines in your changes are missing coverage. Please review.

Project coverage is 70.18%. Comparing base (6a2a085) to head (23b8926).
Report is 1 commits behind head on develop.

Files	Patch %	Lines
...ckstore/webservice/resources/WorkflowResource.java	0.00%	22 Missing ⚠️
.../core/webhook/InstallationRepositoriesPayload.java	0.00%	13 Missing ⚠️
...java/io/dockstore/webservice/core/LambdaEvent.java	0.00%	1 Missing ⚠️

Additional details and impacted files

@@              Coverage Diff              @@
##             develop    #5852      +/-   ##
=============================================
- Coverage      73.04%   70.18%   -2.86%     
+ Complexity      5142     4957     -185     
=============================================
  Files            366      366              
  Lines          18974    19000      +26     
  Branches        2020     2025       +5     
=============================================
- Hits           13860    13336     -524     
- Misses          4137     4694     +557     
+ Partials         977      970       -7

Flag	Coverage Δ
bitbuckettests	`27.07% <0.00%> (-0.04%)`	⬇️
integrationtests	`51.12% <0.00%> (-7.29%)`	⬇️
languageparsingtests	`10.95% <0.00%> (-0.02%)`	⬇️
localstacktests	`21.54% <0.00%> (-0.03%)`	⬇️
toolintegrationtests	`30.44% <0.00%> (-0.05%)`	⬇️
unit-tests_and_non-confidential-tests	`28.89% <0.00%> (-0.04%)`	⬇️
workflowintegrationtests	`38.68% <0.00%> (+3.83%)`	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

denis-yuen · 2024-03-25T21:01:10Z

...vice/src/main/java/io/dockstore/webservice/core/webhook/InstallationRepositoriesPayload.java

    @JsonProperty("repositories_added")
    @Schema(name = "repositories_added", description = "An array of repository objects, which were added to the installation", requiredMode = RequiredMode.REQUIRED)
    private List<WebhookRepository> repositoriesAdded;

+    @JsonProperty("repositories_removed")
+    @Schema(name = "repositories_removed", description = "An array of repository objects, which were removed from the installation", requiredMode = RequiredMode.REQUIRED)


TIL they're working on an openapi 4 for things like this (i.e. either this parameter or this other one OAI/OpenAPI-Specification#256 (comment) )

i.e. it's a little weird that both repositoriesRemoved and repositoriesAdded are required

denis-yuen · 2024-03-25T21:01:53Z

dockstore-webservice/src/main/java/io/dockstore/webservice/resources/WorkflowResource.java

+        final String action = payload.getAction();
+        // Currently, the action can be either "added" or "removed".
+        // This check is not necessary, but will detect if github adds another type of action to the event.
+        if (!List.of("added", "removed").contains(action)) {


Share an enum with dockstore-integration-testing/src/test/java/io/dockstore/webservice/helpers/GitHubAppHelper.java so that if one is changed, the future me knows to change the other at the same time

And link to installation_repositories I suppose

denis-yuen · 2024-03-25T21:02:39Z

dockstore-webservice/src/main/java/io/dockstore/webservice/resources/WorkflowResource.java

+                        LOG.info(String.format("Retrospectively processing branch/tag %s in %s(%s)", Utilities.cleanForLogging(gitReference), Utilities.cleanForLogging(repository),
+                            Utilities.cleanForLogging(username)));
+                    }
+                    githubWebhookRelease(repository, username, gitReference, installationId, deliveryId, null, false);


"Hide whitespace" option works well too

coverbeck

Looks good, but I like Denis' suggestion of an enum, so I'll wait for that change for final approval.

kathy-t

Was here, I agree with Denis' feedback so will wait for that

sonarqubecloud · 2024-03-27T16:31:22Z

Quality Gate failed

Failed conditions
71.8% Coverage on New Code (required ≥ 80%)

See analysis details on SonarCloud

denis-yuen · 2024-03-28T14:21:21Z

...store-integration-testing/src/test/java/io/dockstore/webservice/helpers/GitHubAppHelper.java

@@ -56,6 +56,16 @@ public static void handleGitHubRelease(WorkflowsApi workflowsApi, String reposit
    public static void handleGitHubInstallation(WorkflowsApi workflowsApi, List<String> repositories, String gitHubUsername) {
        InstallationRepositoriesPayload payload = new InstallationRepositoriesPayload()
                .repositoriesAdded(repositories.stream().map(repo -> new WebhookRepository().fullName(repo)).toList());
+        payload.setAction(io.dockstore.webservice.core.webhook.InstallationRepositoriesPayload.Action.ADDED.toString());


Could import io.dockstore.webservice.core.webhook.InstallationRepositoriesPayload to make this a bit more concise, not worth changing unless there are other changes

svonworl added 4 commits March 15, 2024 20:53

process github "uninstall"

3f3402f

merge develop

10e9958

add integration test

040a41a

merge develop

4ca302f

svonworl commented Mar 25, 2024

View reviewed changes

svonworl changed the title ~~SEAB-6000: Track UNINSTALL Github App events~~ SEAB-6000: Track Github App UNINSTALL events Mar 25, 2024

svonworl changed the title ~~SEAB-6000: Track Github App UNINSTALL events~~ SEAB-6000: Track GitHub App UNINSTALL events Mar 25, 2024

svonworl self-assigned this Mar 25, 2024

svonworl requested review from kathy-t, denis-yuen, coverbeck and hyunnaye March 25, 2024 20:10

This was referenced Mar 25, 2024

SEAB-6000: Propagate both the "added" and "removed" varieties of the "installation_repositories" event dockstore/lambda#161

Merged

SEAB-6000: Adjust for UNINSTALL LambdaEvent dockstore/dockstore-ui2#1953

Merged

denis-yuen reviewed Mar 25, 2024

View reviewed changes

coverbeck reviewed Mar 27, 2024

View reviewed changes

kathy-t reviewed Mar 27, 2024

View reviewed changes

added enum

23b8926

svonworl requested review from denis-yuen, kathy-t and coverbeck March 27, 2024 16:40

coverbeck approved these changes Mar 27, 2024

View reviewed changes

kathy-t approved these changes Mar 27, 2024

View reviewed changes

denis-yuen approved these changes Mar 28, 2024

View reviewed changes

svonworl merged commit 8c6524e into develop Mar 28, 2024

svonworl deleted the feature/seab-6000/track-uninstall-events branch March 28, 2024 16:04

svonworl mentioned this pull request Apr 5, 2024

DOCK-2312: Add "is this Entry automatically syncing?" endpoint #5865

Merged

10 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

SEAB-6000: Track GitHub App UNINSTALL events #5852

SEAB-6000: Track GitHub App UNINSTALL events #5852

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

SEAB-6000: Track GitHub App UNINSTALL events #5852

SEAB-6000: Track GitHub App UNINSTALL events #5852

Uh oh!

Conversation

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Codecov Report

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Quality Gate failed

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!