Skip to content

Commit

Permalink
- Move abort() call to top-level API handling (#2730)
Browse files Browse the repository at this point in the history 
PBENCH-202

Move all abort() calls to top-level API handling in ApiBase._dispatch() to be sure that Flask's
abort exception isn't inadvertently converted to an INTERNAL_SERVER_ERROR via an
except Exception clause.
  • Loading branch information
@siddardh-ra
siddardh-ra authored May 4, 2022
1 parent 1da3573 commit 91d5261
Show file tree
Hide file tree
Showing 14 changed files with 112 additions and 106 deletions.
31 changes: 31 additions & 0 deletions lib/pbench/server/api/resources/__init__.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -221,6 +221,19 @@ def __str__(self):
return f"Unrecognized list value{'s' if len(self.bad) > 1 else ''} {self.bad!r} given for parameter {self.parameter.name}; expected {expected}"


class APIAbort(Exception):
"""
Used to report an error and abort if there is a failure in processing of API request.
"""

def __init__(self, http_status: int, message: str = None):
self.http_status = http_status
self.message = message if message else HTTPStatus(http_status).phrase

def __str__(self) -> str:
return f"API error {self.http_status} : {self.message}"


def convert_date(value: str, _) -> datetime:
"""
Convert a date/time string to a datetime.datetime object.
Expand Down Expand Up @@ -1041,6 +1054,15 @@ def _dispatch(
except SchemaError as e:
self.logger.exception("{}: SchemaError {}", api_name, e)
abort(e.http_status, message=str(e))
except APIAbort as e:
self.logger.exception("{} {}", self.__class__.__name__, e)
abort(e.http_status, message=e.message)
except Exception as e:
self.logger.exception("{} API error: {}", self.__class__.__name__, e)
abort(
HTTPStatus.INTERNAL_SERVER_ERROR,
message=HTTPStatus.INTERNAL_SERVER_ERROR.phrase,
)

try:
json_data = request.get_json()
Expand Down Expand Up @@ -1095,6 +1117,15 @@ def _dispatch(
except SchemaError as e:
self.logger.exception("{}: SchemaError {}", api_name, e)
abort(e.http_status, message=str(e))
except APIAbort as e:
self.logger.exception("{} {}", self.__class__.__name__, e)
abort(e.http_status, message=e.message)
except Exception as e:
self.logger.exception("{} API error: {}", self.__class__.__name__, e)
abort(
HTTPStatus.INTERNAL_SERVER_ERROR,
message=HTTPStatus.INTERNAL_SERVER_ERROR.phrase,
)

def _get(self, json_data: JSON, request: Request) -> Response:
"""
Expand Down
4 changes: 2 additions & 2 deletions lib/pbench/server/api/resources/datasets_list.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@

from pbench.server import PbenchServerConfig, JSON
from pbench.server.api.resources import (
ApiBase,
API_OPERATION,
Parameter,
ApiBase,
ParamType,
Parameter,
Schema,
)
from pbench.server.database.database import Database
Expand Down
20 changes: 8 additions & 12 deletions lib/pbench/server/api/resources/datasets_metadata.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,14 +3,14 @@

from flask.json import jsonify
from flask.wrappers import Request, Response
from flask_restful import abort

from pbench.server import JSONOBJECT, PbenchServerConfig
from pbench.server.api.resources import (
ApiBase,
APIAbort,
API_OPERATION,
Parameter,
ApiBase,
ParamType,
Parameter,
Schema,
)
from pbench.server.database.models.datasets import (
Expand Down Expand Up @@ -77,9 +77,9 @@ def _get(self, _, request: Request) -> Response:
try:
metadata = self._get_metadata(name, keys)
except DatasetNotFound:
abort(HTTPStatus.BAD_REQUEST, message=f"Dataset {name} not found")
raise APIAbort(HTTPStatus.BAD_REQUEST, f"Dataset {name} not found")
except MetadataError as e:
abort(HTTPStatus.BAD_REQUEST, message=str(e))
raise APIAbort(HTTPStatus.BAD_REQUEST, str(e))

return jsonify(metadata)

Expand Down Expand Up @@ -120,9 +120,8 @@ def _put(self, json_data: JSONOBJECT, _) -> Response:
dataset = Dataset.query(name=name)
except DatasetError as e:
self.logger.warning("Dataset {} not found: {}", name, str(e))
abort(
HTTPStatus.BAD_REQUEST,
message=f"Dataset {json_data['name']} not found",
raise APIAbort(
HTTPStatus.BAD_REQUEST, f"Dataset {json_data['name']} not found"
)

failures = []
Expand All @@ -133,9 +132,6 @@ def _put(self, json_data: JSONOBJECT, _) -> Response:
self.logger.warning("Unable to update key {} = {!r}: {}", k, v, str(e))
failures.append(k)
if failures:
abort(
HTTPStatus.INTERNAL_SERVER_ERROR,
message=f"Unable to update metadata keys {','.join(failures)}",
)
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)
results = self._get_metadata(name, list(metadata.keys()))
return jsonify(results)
55 changes: 22 additions & 33 deletions lib/pbench/server/api/resources/query_apis/__init__.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,12 +11,12 @@
from dateutil.relativedelta import relativedelta
from elasticsearch import Elasticsearch, helpers, VERSION
from flask.wrappers import Response
from flask_restful import abort
import requests

from pbench.server import PbenchServerConfig, JSON
from pbench.server.api.auth import Auth
from pbench.server.api.resources import (
APIAbort,
API_OPERATION,
ApiBase,
Schema,
Expand Down Expand Up @@ -389,14 +389,10 @@ def _call(self, method: Callable, json_data: JSON):
return "", HTTPStatus.NO_CONTENT
except UnauthorizedAccess as e:
self.logger.warning("{}", e)
abort(e.http_status, message=str(e))
raise APIAbort(e.http_status, str(e))
except KeyError as e:
self.logger.exception("{} problem in preprocess, missing {}", klasname, e)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
except Exception as e:
self.logger.exception("{} preprocess failed: {}", klasname, e)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")

raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)
try:
# prepare payload for Elasticsearch query
es_request = self.assemble(json_data, context)
Expand All @@ -409,7 +405,7 @@ def _call(self, method: Callable, json_data: JSON):
)
except Exception as e:
self.logger.exception("{} assembly failed: {}", klasname, e)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

try:
# perform the Elasticsearch query
Expand All @@ -428,51 +424,49 @@ def _call(self, method: Callable, json_data: JSON):
e,
es_request,
)
abort(
raise APIAbort(
HTTPStatus.BAD_GATEWAY,
message=f"Elasticsearch query failure {e.response.reason} ({e.response.status_code})",
f"Elasticsearch query failure {e.response.reason} ({e.response.status_code})",
)
except requests.exceptions.ConnectionError:
self.logger.exception(
"{}: connection refused during the Elasticsearch request", klasname
)
abort(
HTTPStatus.BAD_GATEWAY,
message="Network problem, could not reach Elasticsearch",
raise APIAbort(
HTTPStatus.BAD_GATEWAY, "Network problem, could not reach Elasticsearch"
)
except requests.exceptions.Timeout:
self.logger.exception(
"{}: connection timed out during the Elasticsearch request", klasname
)
abort(
raise APIAbort(
HTTPStatus.GATEWAY_TIMEOUT,
message="Connection timed out, could reach Elasticsearch",
"Connection timed out, could reach Elasticsearch",
)
except requests.exceptions.InvalidURL:
self.logger.exception(
"{}: invalid url {} during the Elasticsearch request", klasname, url
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)
except Exception as e:
self.logger.exception(
"{}: exception {} occurred during the Elasticsearch request",
klasname,
type(e).__name__,
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

try:
# postprocess Elasticsearch response
return self.postprocess(json_response, context)
except PostprocessError as e:
msg = f"{klasname}: the query postprocessor was unable to complete: {e}"
self.logger.warning("{}", msg)
abort(e.status, message=msg, data=e.data)
raise APIAbort(e.status, str(e.message))
except KeyError as e:
self.logger.error("{}: missing Elasticsearch key {}", klasname, e)
abort(
HTTPStatus.INTERNAL_SERVER_ERROR,
message=f"Missing Elasticsearch key {e}",
raise APIAbort(
HTTPStatus.INTERNAL_SERVER_ERROR, f"Missing Elasticsearch key {e}"
)
except Exception as e:
self.logger.exception(
Expand All @@ -481,7 +475,7 @@ def _call(self, method: Callable, json_data: JSON):
json_response,
e,
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

def _post(self, json_data: JSON, _) -> Response:
"""
Expand Down Expand Up @@ -627,14 +621,14 @@ def _post(self, json_data: JSON, _) -> Response:
try:
dataset = Dataset.query(name=json_data["name"])
except DatasetNotFound as e:
abort(HTTPStatus.NOT_FOUND, message=str(e))
raise APIAbort(HTTPStatus.NOT_FOUND, str(e))

owner = User.query(id=dataset.owner_id)
if not owner:
self.logger.error(
"Dataset owner ID {} cannot be found in Users", dataset.owner_id
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="Dataset owner not found")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

# For bulk Elasticsearch operations, we check authorization against the
# ownership of a designated dataset rather than having an explicit
Expand All @@ -646,7 +640,7 @@ def _post(self, json_data: JSON, _) -> Response:
try:
self._check_authorization(owner.username, dataset.access)
except UnauthorizedAccess as e:
abort(e.http_status, message=str(e))
raise APIAbort(e.http_status, str(e))

# Build an Elasticsearch instance to manage the bulk update
elastic = Elasticsearch(self.elastic_uri)
Expand Down Expand Up @@ -734,7 +728,7 @@ def _post(self, json_data: JSON, _) -> Response:
type(e).__name__,
report,
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

summary = {"ok": count - error_count, "failure": error_count}

Expand All @@ -747,7 +741,7 @@ def _post(self, json_data: JSON, _) -> Response:
klasname,
type(e).__name__,
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

# Return the summary document as the success response, or abort with an
# internal error if we weren't 100% successful. Some elasticsearch
Expand All @@ -766,12 +760,7 @@ def _post(self, json_data: JSON, _) -> Response:
error_count,
json.dumps(report),
)
abort(
HTTPStatus.INTERNAL_SERVER_ERROR,
message=f"{error_count:d} of {count:d} Elasticsearch document actions failed",
data=summary,
)

raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR, summary)
self.logger.info(
"{}:dataset {}: {} successful document actions", klasname, dataset, count
)
Expand Down
29 changes: 14 additions & 15 deletions lib/pbench/server/api/resources/query_apis/datasets/__init__.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,10 +2,9 @@
from logging import Logger
from typing import AnyStr, Union, List

from flask_restful import abort

from pbench.server import PbenchServerConfig, JSON
from pbench.server.api.resources import Schema, SchemaError
from pbench.server.api.resources import APIAbort, Schema, SchemaError

from pbench.server.api.resources.query_apis import CONTEXT, ElasticBase
from pbench.server.database.models.datasets import (
Dataset,
Expand Down Expand Up @@ -92,23 +91,25 @@ def preprocess(self, client_json: JSON) -> CONTEXT:
object and run_id as JSON CONTEXT so that the postprocess operations
can use it to identify the index to be searched from document index
metadata.
Raises:
APIAbort: input can't be validated or normalized
"""
run_id = client_json["run_id"]

# Query the dataset using the given run id
try:
dataset = Dataset.query(md5=run_id)
except DatasetNotFound:
self.logger.debug(f"Dataset with Run ID {run_id!r} not found")
abort(HTTPStatus.NOT_FOUND, message="Dataset not found")

raise APIAbort(
HTTPStatus.NOT_FOUND, f"No datasets with Run ID '{run_id!r}' found."
)
owner = User.query(id=dataset.owner_id)
if not owner:
self.logger.error(
f"Dataset owner ID { dataset.owner_id!r} cannot be found in Users"
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="Dataset owner not found")

raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)
# We check authorization against the ownership of the dataset that
# was selected rather than having an explicit "user"
# JSON parameter. This will raise UnauthorizedAccess on failure.
Expand All @@ -125,15 +126,13 @@ def get_index(self, dataset: Dataset, root_index_name: AnyStr) -> AnyStr:
"""
try:
index_map = Metadata.getvalue(dataset=dataset, key=Metadata.INDEX_MAP)
except MetadataError as e:
self.logger.error(f"Indices from metadata table not found {e!r}")
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
except MetadataError as exc:
self.logger.error("{}", str(exc))
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

if index_map is None:
self.logger.error(
f"server.index-map not found in Metadata for a dataset {dataset!r}"
)
abort(HTTPStatus.INTERNAL_SERVER_ERROR, message="INTERNAL ERROR")
self.logger.error("Index map metadata has no value")
raise APIAbort(HTTPStatus.INTERNAL_SERVER_ERROR)

index_keys = [key for key in index_map if root_index_name in key]
indices = ",".join(index_keys)
Expand Down
9 changes: 0 additions & 9 deletions lib/pbench/server/api/resources/query_apis/datasets/datasets_contents.py
View file
Original file line number Diff line number Diff line change
@@ -1,8 +1,6 @@
from http import HTTPStatus
from logging import Logger

from flask_restful import abort

from pbench.server import PbenchServerConfig
from pbench.server.api.resources import (
JSON,
Expand Down Expand Up @@ -65,14 +63,7 @@ def assemble(self, json_data: JSON, context: CONTEXT) -> JSON:

# Retrieve the ES indices that belong to this run_id from the metadata
# table

indices = self.get_index(dataset, "run-toc")
if not indices:
self.logger.debug(
f"Found no indices matching the prefix run-toc"
f" for a dataset {dataset!r}"
)
abort(HTTPStatus.NOT_FOUND, message="Found no matching indices")

return {
"path": f"/{indices}/_search",
Expand Down
Loading

0 comments on commit 91d5261

Please sign in to comment.