events: Remove brittle needsInitialFetch system

[chrisbobbe]

This is the next PR in my series toward better offline handling for the /register request.

We've long thought that the current logic is complex and fragile;
see for example
https://chat.zulip.org/#narrow/stream/243-mobile-team/topic/Stuck.20on.20loading.20screen/near/907688

[gnprice]

Thanks @chrisbobbe! This code around needsInitialFetch has been a tangly part of our control flow -- very glad to see it cleaned up. Comments below.

[gnprice]

nit in commit message:

Since that register-queue code can end up calling `logout` [1], and

This footnote doesn't seem to exist.

[gnprice]

nit: this dependency list can have just init, right?

[gnprice]

nit: this can just say init

[chrisbobbe]

init returns a Promise.

useEdgeTriggeredEffect, as well as useEffect and our new useConditionalEffect we discussed in the office on Thursday, won't take a callback that returns a Promise.

In fact, if I just pass an async function expression directly to useEffect—

useEffect(async () => 'foo');

—I get a complaint from react-hooks/exhaustive-deps, with some explanation:

Effect callbacks are synchronous to prevent race conditions. Put the async function inside:

useEffect(() => {
  async function fetchData() {
    // You can await here
    const response = await MyAPI.getData(someId);
    // ...
  }
  fetchData();
}, [someId]); // Or [] if effect doesn't need props or state

Learn more about data fetching with Hooks: https://reactjs.org/link/hooks-data-fetchingeslint[react-hooks/exhaustive-deps](https://github.com/facebook/react/issues/14920)

[gnprice]

I see, yeah. Here we're happy for it to be an async thing we don't wait for, but it is good to have something making that explicit. Which this does, a little bit.

[gnprice]

I think this sentence can be deleted when we separate out the outbox-send and init-notifications bits -- that's what it's really about.

[gnprice]

Let's say somewhere in the jsdoc for this that this is also called "the initial fetch". That phrase still appears in various comments and docs (try git grep -i initial.?fetch), as well as in lots of discussion history, so it's good to have some hint for people trying to look up what it's referring to.

[chrisbobbe]

Ah, good thought. Here's an important place where it shows up: https://zulip.readthedocs.io/en/latest/subsystems/events-system.html#the-initial-data-fetch

[gnprice]

This fetchPrivateMessages is covered already by the registerAndStartPolling, right?

[gnprice]

Oh also in the commit message:

This time for DEAD_QUEUE: just directly dispatch `doInitialFetch` in

s/doInitialFetch/registerAndStartPolling and friends/, or words to that effect. Same in the previous commit.

[gnprice]

Given that isHydrated is always true, I believe this can be simplified to:

  useEffect(init, []);

(Plus a comment explaining that the point is this runs upon hydration.)

That is, it will run on first render of this component, and never again.

I guess one thing about that line is that it would violate one of the Rules of Hooks -- it doesn't have a dependency on init, and in particular on (indirectly) hasAuth. And hasAuth really is non-constant.

But I think what that's really telling us is that useEdgeTriggeredEffect should only be used with a callback that's constant. (As it effectively is in the one existing use site, in ChatScreen.) And that the lint rules for the Rules of Hooks would ideally be supplemented by one that checks for that (or, to which we could somehow express that it should check for that.)

Then I think an explicit eslint-ignore line would be a better way to express breaking that rule than would getting around what the lint rules can see by using this other hook 😉

[gnprice]

Suggested change

	* Which is invoked by `StoreHydratedGate` on startup, just if there's an
	active, logged-in account.
	* It's also invoked in other crucial places:
	* In turn `registerAndStartPolling` is invoked in several situations:
	* On startup, by `StoreHydratedGate`, just if there's an active, logged-in account.

(To group the different call sites together at the same level, and also to clarify the referent of "Which is invoked …".)

[gnprice]

In the final version, where this is in StoreHydratedGate and so isHydrated may start out false, I agree useEdgeTriggeredEffect is a good fit.

Continuing on from the comment above, though: I think the dependency on hasAuth should be taken as a genuine breach of the Rules of Hooks -- one that we're deliberately choosing here -- even though the ESLint plugin doesn't spot it. So there should be a comment explaining why that's OK. I think the point is basically that if hasAuth becomes true later, that's going to be either via ACCOUNT_SWITCH or LOGIN_SUCCESS, and each of those is accompanied by its own invocation of basically the same things as are in this init function.

[gnprice]

Remind me: was there something that actually goes wrong as a result of this, that removing it fixes? Or was it just a matter of feeling that this wasn't the right place for it?

As I think more about this action, I think it's actually in a situation very much parallel to sendOutbox: there's some data we have (be it our notifications token, or the user's messages they've tried to send); we want to get it to the server; when we eventually succeed at that, we'll update our data to reflect that, so we always have a to-do list of what we still want to send; and we want to keep trying in order to get it through to the server, until we succeed (or in the case of a message, perhaps time out.)

Those, and: we don't currently have a real principled way of driving those retries. Instead, we take the occasion of the initial fetch as a hook to get us to retry. It'd be good to get a principled way of doing them (for outbox, that's #3881), but until then every place we retry is potentially a helpful one, even if ad hoc.

So if there isn't a concrete problem that's solved by removing these initNotification calls, I think I'd prefer to actually keep them. After #3881, we can take whatever we work out for that and make something similar for driving these retries too.

[chrisbobbe]

Remind me: was there something that actually goes wrong as a result of this, that removing it fixes? Or was it just a matter of feeling that this wasn't the right place for it?

Yeah, as far as I remember it's the latter. I'll adjust.

[chrisbobbe]

Yeah, we'll have to think carefully about retries.

Even setting that aside, I've often found our code for registering push tokens pretty hard to follow, and wondered if we could make it better.

We quick-fixed a P0 bug #4573 with 6ffc7e1, and I don't think we've settled on a plan for something more permanent.

I think this is the description of what the relevant subsystem is aimed at:

For all servers we want notifications from, we should keep the server up-to-date with our current device token.

• If we're logged into a server, we want notifications from it.
  • This suggests having some per-account code that runs with the account's LOGIN_SUCCESS.
• Our device token could change between sessions of running the app, or during a session.
  • This suggests having some global code that runs on startup, and on learning (e.g., from an event) that the token has changed during this session. Global because the token is for the device, and also because we may need to tell multiple servers about the token.

I think there's a main reason why our code has developed such that it's not super clear how we answer these requirements: we're not supposed to ask iOS for the token until we're ready to pop up a permissions request, and we're supposed to do that only in a context where the permission would be useful to have. We've (reasonably) decided that the app enters that context when a /register completes, so that's when we request the token on iOS.

Here's an example of how the code is hard to follow. It occurred to me after your comment prompted me to keep thinking about this:

• Our device token could change between sessions of running the app […].
  • This suggests having some global code that runs on startup […]. Global because the token is for the device, and also because we may need to tell multiple servers about the token.

Our "on-startup" code for this is initNotifications. That sure doesn't look like "some global code", does it? It's a ThunkAction, not a GlobalThunkAction. But then, if you sit and think about it and read some distant code, it's possible to convince yourself that all interested servers will indeed be notified if the device token changed between sessions of running the app, on iOS and Android. Better if the "on-startup" code were instead a GlobalThunkAction, with a nice jsdoc that mentioned that device tokens can change between sessions.

I have a draft from a year ago for a unified getAndReturnNotificationToken function that grabs the token in the platform-appropriate way. That specific draft may or may not end up being helpful, but I think if we chose one of the following, we could unify our separate iOS/Android code and thus remove lots of complexity:

1. iOS and Android both get the token immediately on startup (sad for iOS because the permission pop-up isn't deferred till after /register), or
2. iOS and Android both get the token after /register, where iOS gets it currently (maybe sad for Android because Android doesn't have this requirement that iOS has—but also it wouldn't be harmful, would it?)

[gnprice]

I think this is the description of what the relevant subsystem is aimed at:

Yeah, that all seems right.

Here's an example of how the code is hard to follow. It occurred to me after your comment prompted me to keep thinking about this: […]

Our "on-startup" code for this is initNotifications. That sure doesn't look like "some global code", does it? It's a ThunkAction, not a GlobalThunkAction. But then, if you sit and think about it and read some distant code, it's possible to convince yourself that all interested servers will indeed be notified if the device token changed between sessions of running the app, on iOS and Android.

Hmm, indeed. I agree, that seems like a key point for why this logic is hard to follow.

Want to make an issue for this? That'll probably provide a better way to track it than this review subthread.

[chrisbobbe]

Sure, sounds good: #5329.

[chrisbobbe]

Thanks for the review! Revision pushed.

[gnprice]

nit:

Suggested change

	// HideIfNotHydrated.
	// StoreHydratedGate.

[gnprice]

I see, yeah. Here we're happy for it to be an async thing we don't wait for, but it is good to have something making that explicit. Which this does, a little bit.

[gnprice]

This can still be an unexported const deadQueue when it becomes a thunk action.

[gnprice]

I think this still calls for an explanation of why it's OK that we only call this once, even if hasAuth later changes. Along the lines of here:
#5300 (comment)

[gnprice]

I think this is the description of what the relevant subsystem is aimed at:

Yeah, that all seems right.

Here's an example of how the code is hard to follow. It occurred to me after your comment prompted me to keep thinking about this: […]

Our "on-startup" code for this is initNotifications. That sure doesn't look like "some global code", does it? It's a ThunkAction, not a GlobalThunkAction. But then, if you sit and think about it and read some distant code, it's possible to convince yourself that all interested servers will indeed be notified if the device token changed between sessions of running the app, on iOS and Android.

Hmm, indeed. I agree, that seems like a key point for why this logic is hard to follow.

Want to make an issue for this? That'll probably provide a better way to track it than this review subthread.

[gnprice]

Thanks! This generally looks good; small comments above.

[chrisbobbe]

Thanks for the review! Revision pushed.

[chrisbobbe]

Just rebased (whew, there was a lot to do this time, especially after #5393!)

[gnprice]

Just rebased (whew, there was a lot to do this time, especially after #5393 [the Prettier 2 upgrade]!)

Hmm, yeah -- we didn't discuss workflow for open PRs, did we. For comparable changes in zulip/zulip, there's generally an explicit set of steps pre-developed, tested, and then announced to contributors, for how to rebase their work past the change.

I think the basic algorithm that should reliably work, and avoids a lot of manual conflict resolution, is:

• Rebase onto the commit just before the formatting change. Resolve conflicts along the way as usual.
• Rebase onto the commit that made the formatting change. Resolve each conflict mechanically, by taking your changed code and auto-formatting it: like git checkout --theirs . && tools/test prettier --fix --diff @ && git add -u && git rebase --continue. (Well, and prefixed with yarn install && the first time.)
• Rebase onto the latest upstream. Resolve conflicts along the way as usual.

I did something like that for one complex PR I had open at the time, and it worked well. I have plenty of draft branches I'll probably have to do something similar with, and you likely do too. I guess let's discuss in a chat thread with whatever we find the next time one of us does a rebase that calls for this. Should be possible to distill it into a short copy-pasteable script, and/or a little script in tools/ (though it's a bit tricky to use the latter, since by definition one's acting on old branches.)

[chrisbobbe]

Oh, yeah, that's a very good idea. 🙂

[gnprice]

OK, revision reviewed! I also re-read the whole branch to refresh myself on all the changes and make one more review pass on it, given that this is reworking such a core subsystem.

Everything looks good except a few small comments below -- all of which are on the three newer commits at the end. Those are close, but this PR thread has already gotten long for GitHub. So I think a good plan is:

• I'll merge the other 15 commits. 🎉
• Then please send a revision of those last 3 commits as a fresh PR.

[gnprice]

Generally a comment like this one should also have a similar comment at the other end. So seeing such a comment get moved makes me curious about that other end, if it isn't being updated in the same commit. 🙂

Here, that looks like:

  // Show the main UI screen.
  //
  // If we don't have server data yet, that screen will show a loading
  // indicator until the data is loaded. Crucially, AppDataFetcher will make
  // sure we really will be loading.
  return { initialRouteName: 'main-tabs' };

So that comment should get updated to match.

More broadly, git grep AppDataFetcher finds a handful of other doc and comment references, so each of those should get updated.

[gnprice]

Let's squash this line into the parent commit, which has this:

+        // The `store` type isn't complete: it ignores thunk actions, etc.
+        // $FlowFixMe[incompatible-type]
+        const dispatch: Dispatch = store.dispatch;

That provides a bit more context as to what this is about.

[gnprice]

nit: this can be simplified to:

Suggested change

	return () => unsubscribeStoreObserver();
	return unsubscribeStoreObserver;

And then this and the preceding statement can be simplified further, to:

    return observeStore(
      store,
      // …

I think that last version makes a pretty idiomatic way to write this kind of effect with a cleanup callback.

(The version in this revision makes sense for the "Convert to function component" commit, as it's the most direct translation of the componentDidMount / this.unsubscribeStoreObserver / componentWillUnmount combination. But then it can be cleaned up afterward.)

[gnprice]

Another cleanup that becomes possible after the Hooks conversion: break this up into a couple of separate effects. One for the observeStore watching zulipVersion, and one for the restore call and its callback.

That also provides the opportunity to put the observeStore effect first (without having to keep around unsubscribeStoreObserver over a longer stretch of code.) That just makes it a bit easier to look at this code and be sure that the observer is in place in time to see the persisted data when it gets restored.