Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow setting the acl for uploaded files (s3) #204

Merged
merged 5 commits into from
Oct 21, 2024
Merged

Allow setting the acl for uploaded files (s3) #204

merged 5 commits into from
Oct 21, 2024

Conversation

Gitii
Copy link
Contributor

@Gitii Gitii commented Oct 9, 2024

Hi @emgarten,

I made some changes based on your suggestions.
Please take a look at it.
I still need to figure out how to add some tests.

Thanks!

emgarten
emgarten reviewed Oct 10, 2024
View reviewed changes
@Gitii
Copy link
Contributor Author

Gitii commented Oct 10, 2024

@emgarten As far as I understand, the aws s3 related tests are all using a real aws account? I do not have an aws account. Can you recommend what tests I can add? Thanks!

@emgarten
Copy link
Owner

@emgarten As far as I understand, the aws s3 related tests are all using a real aws account? I do not have an aws account. Can you recommend what tests I can add? Thanks!

Take this test that creates and bucket and pushes, copy it, and update it so it passes a public ACL which will effectively be the same, but still hit your code paths.

Sleet/test/Sleet.AmazonS3.Tests/BasicTests.cs

Line 75 in 610cb10

public async Task GivenAStorageAccountWithNoContainerVerifyPushSucceeds()

It won't run automatically as part of your PR validation, but I'll kick the regular CI validation off and verify it against a real s3 account.

Are the changes working for you with scaleway?

@Gitii
Copy link
Contributor Author

Gitii commented Oct 11, 2024

@emgarten Yes, it works 🙂!
That said, I could not test the bucket creation route because my bucket already exists.
As far as I can tell, bucket creation is part of the test suite, so this should be covered by the automated tests.

Right now, if the acl is not found (not a canned acl) then the acl will not be set. Is this behaviour ok for you or should that throw an error or log a warning?

@Gitii Gitii mentioned this pull request Oct 11, 2024
Closed
@emgarten
Copy link
Owner

Right now, if the acl is not found (not a canned acl) then the acl will not be set. Is this behaviour ok for you or should that throw an error or log a warning?

Make it fail fast and throw when it can't find the canned acl.

If someone was trying to use the acl to make it private this would be something they would want to fail on. Also, it is better to make it strict to start and default it later. The other way around would be a more breaking change.

@Gitii
Copy link
Contributor Author

Gitii commented Oct 14, 2024
edited
Loading

@emgarten I bug a bit through the aws s3 sdk and realized, that there isn't an easy way to check if the acl is actually valid (or predefined). The FindValue method constructs a new "constant value" when no predefined is found 🤷‍♂️. I do not want to use reflection because that will break AOT.
That means that there will be a run time exception during upload. That exception is not thrown by my code, but from the aws sdk (with an invalid acl):

Reading feed [...]/
Reading feed
Replace existing package: Hardware.Info 200.0.0
Replace existing package: Hardware.Info.Aot 200.0.0
Processing feed changes
Committing changes to [...]/
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.nuspec'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.nuspec'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/200.0.0.json'. Retrying.
Failed to upload '[...]/registration/hardware.info/200.0.0.json'. Retrying.
Failed to upload '[...]/sleet.packageindex.json'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/index.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.nuspec'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/200.0.0.json'. Retrying.
Failed to upload '[...]/sleet.packageindex.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.nuspec'. Retrying.
Failed to upload '[...]/registration/hardware.info/200.0.0.json'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/index.json'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/200.0.0.json'. Retrying.
Failed to upload '[...]/registration/hardware.info/200.0.0.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/sleet.packageindex.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.nuspec'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.nuspec'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/index.json'. Retrying.
Failed to upload '[...]/registration/hardware.info/200.0.0.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.nuspec'. Retrying.
Failed to upload '[...]/sleet.packageindex.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info/200.0.0/hardware.info.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/200.0.0.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.200.0.0.nupkg'. Retrying.
Failed to upload '[...]/registration/hardware.info.aot/index.json'. Retrying.
Failed to upload '[...]/flatcontainer/hardware.info.aot/200.0.0/hardware.info.aot.nuspec'. Retrying.
[Amazon.S3.AmazonS3Exception] Invalid argument.

At the end, a single Invalid argument. exception is shown. Is there a way to provide more details to the user? The exception object might contain more error details that can be useful for the user.

@emgarten
Copy link
Owner

Does it fail on upload if the acl is invalid?

I would avoid any reflection like that.

@Gitii
Copy link
Contributor Author

Gitii commented Oct 15, 2024
edited
Loading

Does it fail on upload if the acl is invalid?

I would avoid any reflection like that.

Yes, it fails on upload (like shown in the code block).
The issue is that I cannot determine whether the acl is valid until the actual upload (so no fast fail).

@emgarten
Copy link
Owner

The issue is that I cannot determine whether the acl is valid until the actual upload (so no fast fail).

That's a good behavior here. I would still consider that failing fast, it just doesn't have up front validation.

@Gitii Gitii marked this pull request as ready for review October 17, 2024 08:30
@Gitii
Copy link
Contributor Author

Gitii commented Oct 17, 2024
edited
Loading

@emgarten Ok, if you are fine with the current behaviour then that's fine for me, too. I made this PR ready for final review.
If there is anything else, just say so and I will look into it.

emgarten
emgarten approved these changes Oct 21, 2024
View reviewed changes
Copy link
Owner

@emgarten emgarten left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The new functional test is passing along with all the others. Great work on this useful feature 🏆

@emgarten emgarten merged commit 751d665 into emgarten:main Oct 21, 2024
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@emgarten emgarten emgarten approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Gitii @emgarten