feat(ecosystem): Adds Project Management integration SLOs #80719
Conversation
github-actions
bot
added
the
Scope: Backend
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| return Response(exc.field_errors, status=400) | ||
| except IntegrationError as e: | ||
| lifecycle.record_halt(e) | ||
| return Response({"non_field_errors": [str(e)]}, status=400) |
Check warning
Code scanning / CodeQL
Information exposure through an exception Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 2 days ago
To fix the problem, we should avoid exposing the detailed exception message to the end user. Instead, we can log the detailed error message on the server for debugging purposes and return a generic error message to the user. This approach ensures that sensitive information is not exposed while still allowing developers to diagnose issues.
- Modify the exception handling code to log the detailed error message.
- Return a generic error message to the user instead of the detailed exception message.
| @@ -186,3 +186,4 @@ | ||
| lifecycle.record_failure(e) | ||
| return Response({"non_field_errors": [str(e)]}, status=400) | ||
| self.log_error(e) | ||
| return Response({"non_field_errors": ["An internal error has occurred."]}, status=400) | ||
|
|
||
| @@ -249,2 +250,8 @@ | ||
|
|
||
| def log_error(self, error: Exception) -> None: | ||
| # Log the detailed error message for debugging purposes | ||
| import logging | ||
| logger = logging.getLogger(__name__) | ||
| logger.error("Integration error occurred: %s", str(error)) | ||
|
|
||
| def post(self, request: Request, group, integration_id) -> Response: |
There was a problem hiding this comment.
This isn't new code, this is what allows errors to propagate up to the UI when ticket creation or linking fails on the integrator side (usually a config issue with the ticket contents)
| return Response(exc.field_errors, status=400) | ||
| except IntegrationError as e: | ||
| lifecycle.record_halt(e) | ||
| return Response({"non_field_errors": [str(e)]}, status=400) |
Check warning
Code scanning / CodeQL
Information exposure through an exception Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 2 days ago
To fix the problem, we need to ensure that detailed exception messages are not exposed to the end user. Instead, we should log the detailed error message on the server and return a generic error message to the user. This can be achieved by modifying the exception handling code to log the exception and return a generic error message.
- Import the
loggingmodule to log the detailed error message. - Modify the exception handling blocks to log the exception and return a generic error message.
| @@ -27,2 +27,3 @@ | ||
| from sentry.users.models.user import User | ||
| import logging | ||
|
|
||
| @@ -220,3 +221,4 @@ | ||
| lifecycle.record_failure(e) | ||
| return Response({"non_field_errors": [str(e)]}, status=400) | ||
| logging.error("IntegrationError: %s", str(e)) | ||
| return Response({"non_field_errors": ["An internal error has occurred."]}, status=400) | ||
|
|
||
| @@ -233,2 +235,3 @@ | ||
| lifecycle.record_halt(exc) | ||
| logging.error("IntegrityError: %s", str(exc)) | ||
| return Response({"non_field_errors": ["That issue is already linked"]}, status=400) |
| @dataclass | ||
| class ProjectManagementEvent(IntegrationEventLifecycleMetric): | ||
| action_type: ProjectManagementActionType | ||
| integration: Integration | RpcIntegration |
There was a problem hiding this comment.
Turns out we don't always have access to integration installations (specifically the inbound assignment code), so I made this use integration/rpc integration.
| logger.info( | ||
| "%s.rule_trigger.create_ticket.failure", | ||
| provider, | ||
| extra={ | ||
| "rule_id": rule_id, | ||
| "provider": provider, | ||
| "integration_id": integration.id, | ||
| "error_message": str(e), | ||
| "exception_type": type(e).__name__, | ||
| }, |
There was a problem hiding this comment.
It's nice being able to delete these logs in the future
| class BrokenJiraMock(MockJira): | ||
| """ | ||
| Subclass of MockJira client, which implements a broken create_issue method | ||
| to simulate a misconfigured alert rule for Jira. | ||
| """ | ||
|
|
||
| def create_issue(self, raw_form_data): | ||
| raise ApiInvalidRequestError("Invalid data entered") |
There was a problem hiding this comment.
This is gross, but was the easiest way to trigger a failure scenario.
Codecov ReportAttention: Patch coverage is ✅ All tests successful. No failed tests found. Additional details and impacted files@@ Coverage Diff @@
## master #80719 +/- ##
==========================================
+ Coverage 78.39% 78.42% +0.02%
==========================================
Files 7206 7212 +6
Lines 319438 319787 +349
Branches 43991 44011 +20
==========================================
+ Hits 250437 250777 +340
- Misses 62620 62626 +6
- Partials 6381 6384 +3 |
There was a problem hiding this comment.
i just have a few questions, but i think we are kind of aligned on "halt".
i have been thinking of fault as any unexpected condition that isn't user's fault.
with that definition, i have been considering halt as all other non-success conditions, which makes it probably the broadest in definition.
| try: | ||
| installation.after_link_issue(external_issue, data=request.data) | ||
| except IntegrationFormError as exc: | ||
| lifecycle.record_halt(exc) |
There was a problem hiding this comment.
are these errors user config errors?
There was a problem hiding this comment.
Yeah, typically an IntegrationFormError is an incorrectly configured Jira ticket creation config.
| item for item in data["changelog"]["items"] if item["field"] == "assignee" | ||
| ) | ||
| if not assignee_changed: | ||
| lifecycle.record_halt() |
There was a problem hiding this comment.
could this possibly be a success? are these normal scenarios where jira doesn't send us assignee?
There was a problem hiding this comment.
That's fair. Tbh though, I'm looking at moving this call into the shared util this calls as there are specific lifecycles we probably want to track there, so this is likely to change.
| assignee = fields.get("assignee") | ||
|
|
||
| if assignee is None: | ||
| lifecycle.record_halt() |
There was a problem hiding this comment.
does this mean the ticket was unassigned? why does this have to be a halt?
There was a problem hiding this comment.
Yep, this is actually fine and should be recorded as a success.
Also resets changes made to jira utils API file, which is probably the incorrect place to be adding metrics gathering.
GabeVillalobos
force-pushed
the
gv/issue-slos
branch
from
12effc0
to
cb387a3
Compare
WIP - Adds Project Management/Issues SLO metrics
This PR adds metric coverage to the majority of Project Management features:
Has Metrics, Needs Testing:
Incidental Work:
sync_outbound_assignmentandsync_outbound_statustasks, which previously only had endpoint level testing.sync_group_assignee_inboundutility (src/sentry/integrations/utils/sync.py)