RFQ API Auth Cache

[aureliusbtc]

Description
A clear and concise description of the features you're adding in this pull request.

Additional context
Add any other context about the problem you're solving.

Metadata

• Fixes #[Link to Issue]

Summary by CodeRabbit

• New Features
  • Enhanced role-checking logic for improved error handling and role caching.
• Bug Fixes
  • Improved clarity of error messages related to relayer roles.
• Tests
  • Added a new test for handling multiple PUT requests with incorrect authorization, ensuring robust authentication mechanisms.

[coderabbitai]

Walkthrough

The recent changes enhance the functionality and reliability of the QuoterAPIServer by improving role-checking logic and error handling. The modifications ensure better caching of relayer roles and more informative error messages. Additionally, a new test function has been introduced to validate the server's response to multiple unauthorized PUT requests, strengthening the security framework of the API.

Changes

File	Change Summary
services/rfq/api/rest/server.go	Restructured checkRole method for improved error handling and role caching logic.
services/rfq/api/rest/server_test.go	Added TestMultiplePutRequestsWithIncorrectAuth to validate API response to unauthorized requests.

Poem

In fields of code, a rabbit hops,
With role checks clear, and error drops.
Through tests we run, the server's might,
Safeguarding paths, both day and night.
Let's dance with joy, in coding we trust,
For every change, a leap is a must! 🐇✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[greptile-apps]

PR Summary

The PR enhances the checkRole function in server.go to optimize the role verification caching mechanism and adds a new test for multiple incorrect authorization attempts.

• Improved checkRole function in services/rfq/api/rest/server.go to update the role cache only after successful on-chain role checks.
• Added TestMultiplePutRequestsWithIncorrectAuth in services/rfq/api/rest/server_test.go to verify server responses to multiple incorrect authorization attempts.
• Minor formatting adjustments in import statements in services/rfq/api/rest/server_test.go.

These changes aim to reduce unnecessary on-chain calls and ensure robust authentication.

_{2 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings}

[cloudflare-workers-and-pages]

Deploying sanguine-fe with    Cloudflare Pages

Latest commit:	9422370
Status:	✅  Deploy successful!
Preview URL:	https://91eb57f1.sanguine-fe.pages.dev
Branch Preview URL:	https://rfq-api-auth-cache.sanguine-fe.pages.dev

View logs

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

Commits

Files that changed from the base of the PR and between a16787b and e0823db.

Files selected for processing (2)

• services/rfq/api/rest/server.go (1 hunks)
• services/rfq/api/rest/server_test.go (2 hunks)

Additional comments not posted (2)

services/rfq/api/rest/server.go (1)

284-296: LGTM! Verify role cache behavior.

The restructuring of cache logic and improved error handling enhance robustness and clarity. The changes are approved.

However, ensure that the role cache behaves as expected, especially in scenarios where the role check fails.

Verification successful

---

Role Cache Behavior Verified in checkRole Method

The role cache is primarily used within the checkRole method in services/rfq/api/rest/server.go. The Set and Get methods are correctly utilized to manage role information, ensuring consistent behavior. No additional usage patterns were found outside this method.

• File: services/rfq/api/rest/server.go
• Lines: 284-296

The cache logic is consistent and appropriately implemented.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify role cache behavior in `checkRole` method.

# Test: Search for role cache usage. Expect: Consistent behavior in role caching.
rg --type go $'r.roleCache[$_]'

Length of output: 32

---

Script:

#!/bin/bash
# Search for the declaration and initialization of `roleCache`.
rg --type go 'roleCache'

# Search for methods or functions interacting with `roleCache`.
rg --type go 'roleCache.Set'
rg --type go 'roleCache.Get'

Length of output: 611

services/rfq/api/rest/server_test.go (1)

209-251: Great addition! Verify test coverage.

The test function effectively validates the server's response to unauthorized PUT requests. The changes are approved.

Consider verifying the test coverage to ensure all edge cases are handled.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 25.27320%. Comparing base (2842a3a) to head (9422370).
Report is 18 commits behind head on master.

Additional details and impacted files

@@                 Coverage Diff                 @@
##              master       #3007         +/-   ##
===================================================
+ Coverage   24.93457%   25.27320%   +0.33862%     
===================================================
  Files            800         781         -19     
  Lines          58080       56918       -1162     
  Branches          82          82                 
===================================================
- Hits           14482       14385         -97     
+ Misses         42108       41048       -1060     
+ Partials        1490        1485          -5     

Flag	Coverage Δ
opbot	0.48900% <ø> (ø)
promexporter	?

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[greptile-apps]

PR Summary

(updates since last review)

The changes in this pull request focus on enhancing the build configuration, improving error handling, and adding new features across various components of the synapsecns/sanguine repository.

• Build Configuration Enhancements:

  • Updated contrib/screener-api/.goreleaser.yml to include gcflags and ldflags for better debugging and versioning information.
  • Added Docker image labels with metadata in contrib/screener-api/.goreleaser.yml.

• Caching and Performance Improvements:

  • Introduced caching for address screening results in contrib/screener-api/chainalysis/chainalysisapi.go to reduce redundant network calls.

• Dependency Updates:

  • Updated Go version and added new dependencies in contrib/screener-api/go.mod to enhance functionality and compatibility.

• Metrics and Observability:

  • Added metrics for tracking blocked and unblocked addresses in contrib/screener-api/screener/screener.go.

• Role-Checking and Error Handling:

  • Enhanced role-checking logic and improved error handling in services/rfq/api/rest/server.go.

These updates collectively aim to improve the robustness, performance, and maintainability of the codebase.

_{293 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings}