For Advisor's 'total systems' statistics, we only need to get a count of the systems with an Advisor ID, rather than getting the full transfer of every host's data and then counting them in Advisor. If there was a way to have some queries only return the count of hosts, rather than the list of hosts, that would save a lot of data transfer and time.

When calling /hosts/$ID, $ID needs to be in specific format of inventory_id ie. 3895b09f-1998-448e-bad3-d251e98316de. If it's not, API returns 500 and not empty list which should be the correct behavior I suppose.

The run_gunicorn.py script always creates a temporary directory to be used by Prometheus. Although it backs up the original environment variable value, a better approach would be to honor the existing one if it exists and to only create the temporary directory otherwise.

This is related to #88.

The code is a formatting mess. Virtually every Python file is formatted completely randomly, only remotely adhering to PEP 8.

@jhjaggars suggested using Black, which is a reasonable choice. It’d be nice to use a linter to block pull requests from being merged, but as first step, we can at least:

• Reformat existing code.
• Don’t push unformatted code any more.
• Don’t approve unformatted pull requests.

The first bullet point is the only one doable immediately to close this issue. I am aware that this would break all pull requests. Let’s take advantage of the fact that there are not many of them pending at the moment.

Before starting using the application it is necessary to run the database migrations. Otherwise there will be no hosts table and requests will fail.

Mention this in the README and provide a guide on how to initialize the database. This includes:

• Create the database. This is probably done automatically when using Docker Compose.
• Run the migrations with python manage.py upgrade. Don’t forget to set the INVENTORY_DB_NAME and other environment variables.
• Mention that if using different a database for testing, the migration must be run for it too.

Think about replacing the to_json() methods (there are 2 now) with an object that exports the data in the correct format.

Thinking out loud here... Maybe this doesn't really need to be an object. Maybe a simple exporter function that gets passed around. Maybe its a class with the __call__() method on it.

The Host db object shouldn't be responsible for knowing all the different export formats.

PEP 8 encourages prefixing a function name with an underscore if it’s intended for internal use. In the api.host module, the only public functions are those that represent API operations. All other functions are used only internally by this module and thus should be prefixed. This improves readability.

single_leading_underscore: weak "internal use" indicator. E.g. from M import * does not import objects whose names start with an underscore.

It may be even worth exposing the API operation functions in the all variable. Although they are not manually imported anywhere, they form this module’s interface and it’s what Connexion uses. This, again, is recommended by PEP 8.

To better support introspection, modules should explicitly declare the names in their public API using the all attribute. Setting all to an empty list indicates that the module has no public API.

Even with all set appropriately, internal interfaces (packages, modules, classes, functions, attributes or other names) should still be prefixed with a single leading underscore.

There is a typo in the test_api.HealthTestCase.test_heath test name. The name and the description of the whole test case are not the best, but they could be at least without typos.

Identity header should have identity key and then should follow user informations.

Example:

• Curent
  {account_number: '1111', org_id: '11111c1'} in BASE64: eyJhY2NvdW50X251bWJlciI6IjExMTEiLCJvcmdfaWQiOiIxMTExMWMxIn0=
• Expected
  {identity: {account_number: '1111', org_id: '11111c1'}} in BASE64 eyJpZGVudGl0eSI6eyJhY2NvdW50X251bWJlciI6IjExMTEiLCJvcmdfaWQiOiIxMTExMWMxIn19

It looks like logging filters that are assigned to top level module loggers do not get propagated to the sub-modules. There is a hack in app/logging.py [1] that assigns a custom logging.Filter to "api", "api.host", etc. Need to figure out a better way to do this.

[1] https://github.com/RedHatInsights/insights-host-inventory/blob/master/app/logging.py#L33

In the model definition of the id field:
id = db.Column(db.Integer, primary_key=True)
In the migration definition of the id field:
Column("id", UUID(), primary_key=True)
Is it an integer or a UUID?

There is a typo in the log_configuration method: Preifx instead of Prefix. Filing, so I don’t forget to make a pull request.

When a local Gunicorn server run by the run_gunicorn.sh script is terminated by a KeyboardInterrupt, another exception occurs:

Traceback (most recent call last):
  File "/…/insights-host-inventory/run_gunicorn.py", line 38, in <module>
    run_server()
  File "/usr/local/Cellar/python/3.7.0/Frameworks/Python.framework/Versions/3.7/lib/python3.7/contextlib.py", line 130, in __exit__
    self.gen.throw(type, value, traceback)
  File "/…/insights-host-inventory/run_gunicorn.py", line 24, in prometheus_temp_dir
    putenv(PROMETHEUS_ENV_VAR, orig)
TypeError: expected str, bytes or os.PathLike object, not NoneType

This is caused by returning a backed up PROMETHEUS_ENV_VAR value. It doesn’t work if the value was not set in the first place as it’s not possible to store None in an environment value.

When posting to the \hosts endpoint, if the body's facts dictionary does not contain the key namespace an internal server error will be raised.

Logs:

File "/insights-host-inventory/app/auth/init.py", line 46, in _wrapper
return view_func(*args, **kwargs)
File "/insights-host-inventory/api/host.py", line 35, in addHost
input_host = Host.from_json(host)
File "/insights-host-inventory/app/models.py", line 93, in from_json
convert_json_facts_to_dict(d.get("facts", [])),
File "/insights-host-inventory/app/models.py", line 41, in convert_json_facts_to_dict
if fact["namespace"] in fact_dict:
KeyError: 'namespace'

Potential Fix:

File: app/models.py

def convert_json_facts_to_dict(fact_list):
    fact_dict = {}
    for fact in fact_list:
        if fact.get("namespace", False):
            if fact["namespace"] in fact_dict:
                fact_dict[fact["namespace"]].update(fact["facts"])
            else:
                fact_dict[fact["namespace"]] = fact["facts"]
        else: 
            # 400 Error
    return fact_dict

The current (attempt at) pagination structure returned by getHostList and getHostById is not defined in the Swagger interface description. It is also not implemented as yet.

The usual pagination data in a paginated view includes:

• The current page length
• The current page number OR the offset from the first item
• The total number of items in the requested set (where possible)
• The values as a list
• Links to the 'next' and 'previous' pages, if available.

It should also be possible to request a particular page of items or the offset from the first item, and the number of items per page.

After @jhjaggars's work breaking the canonical_facts JSON into separate JSON properties, e.g. insights-id and fqdn, some of these properties contain dashes. As such they then cannot be imported into Javascript and used as object properties, because object property names cannot contain dashes. For the same reason, they are not compatible with Django-rest-framework serializers as serializer fields are implemented as class methods which have the same restriction on using dashes.

I would recommend these be changed to underscores throughout.

This would also make them more consistent with properties like display_name, created_on and modified_on.

The API specification imposes inconsistent constrains on facts in different operations.

• When adding a host, the facts can contain a value of any type – even a dictionary or an array.
• When merging or replacing facts though, the value type is limited to string.

I think this can be resolved by referencing ($ref) the Facts definition from the FactSet.facts field.

Steps to reproduce:

1. Create a host with a non-string fact.

   POST http://localhost:8080/r/insights/platform/inventory/api/v1/hosts
   

   {
     "account": "abc123",
     "display_name": "A host",
     "insights_id": "3f01b55457674041b75e41829bcee1da",
     "facts": [
       {
         "namespace": "complicated",
         "facts": {
           "complex": ["this", "is", "an", "array"]
         }
       }
     ]
   }

2. See that the hosts is successfully created.

   Response code: 200 (OK)
   

3. Replace (or merge) the host’s facts with the same set.

   PUT http://localhost:8080/r/insights/platform/inventory/api/v1/hosts/d24f3e10-58ed-4f11-8ed7-2142cc849d84/facts/complicated
   

   {
     "complex": ["this", "is", "an", "array"]
   }

4. See that the request fails as a Bad Request.

   {
     "detail": "['this', 'is', 'an', 'array'] is not of type 'string'",
     "status": 400,
     "title": "Bad Request",
     "type": "about:blank"
   }

   Response code: 400 (BAD REQUEST)
   

Move configuration of INVENTORY_SHARED_SECRET environment variable to the config object

Change method names to pep8 format in api/host.py

All tests are currently stuffed in two files: test_api.py and test_unit.py. As new tests and cases are added with every pull request, it’d be nice to have them more structured.

I suggest putting them in a /tests folder and then possibly into api and unit subfolders. Then I’d put every test case in a single file, or at least keep only the most closely related together.

Any further improvements like splitting into finer categories or utilizing Pytest etc. can be done subsequently as new issues.

The required x-rh-identity header is not listed in the Swagger spec.

It is also required for viewing the Swagger UI and for requesting the Swagger spec files, which makes it kind of hard for a requesting API to know what it's supposed to supply :-)

Because we allow users to query by ID it would be better to configure body parser to allow more than 1000 chars (by default set by swagger), that is around 30 IDs available to filter by. But users should be possible to filter by max number of items per page which is around 2000 chars (15 625 kb) https://stackoverflow.com/questions/34234666/swagger-generated-nodejs-error-request-entity-too-large

The Inventory needs to be able to list all the hosts by a given account number.

If you attempt to upload a system_profile with a url such as "http://foo.com http://foo.com", it will be rejected.

We probably want to accept invalid URLs, so users can look in inventory service to find misconfigurations.

It looks like we are missing sorting parameters for inventory table. Requred sort fields are name || fqdn || id and last sync. We are currently sorting just page user is located at which is not good.

The test script test_api.py seems to use the current database name and credentials to set up the test environment. During test tear-down, the database is destroyed in lines 40-42:

            # drop all tables
            db.session.remove()
            db.drop_all()

This causes the deletion of all data in the current database.
I would recommend the tests construct a temporary database and initialise it. Then tear-down of that database will not affect the main database.

• https://github.com/RedHatInsights/insights-host-inventory/blob/master/test_api.py#L9
• https://github.com/RedHatInsights/insights-host-inventory/blob/master/manage.py#L5

Maybe there are more.

There is an unused logger in the api.host module. It’s actually not used anywhere since the app uses current_app.logger instead. Remove this ghost variable.

Github raised an alert stating that PyYAML has a vulnerability: https://github.com/RedHatInsights/insights-host-inventory/network/alert/Pipfile.lock/pyyaml/open

We need to resolve the vulnerability but it looks like the versions we need to use a pre-releases:
https://pypi.org/project/PyYAML/#history

When trying to fetch page that is out of page range (10 pages in database, but user requests 15th page) we should return last page instead of error.

Many of the query functions called by get_host_list are essentially one-liners, or will became ones if #145 gets merged. At the same time, the else branch doesn’t have its own function. It would be nice to unify this a bit, doesn’t really matter which way.

In various places in the code, URIs are built and manipulated as bare strings. This applies mainly to:

• configuration
• API tests

In the configuration, environment variables are loaded and combined to configure the application itself. In the tests, URIs are built to make requests to the test client.

In simple cases, string manipulation may be sufficient. Since different parts of the URL (hostname, path, query) have different encoding and serialization rules, it can easily end up with bugs occurring with specific values. Also, further issues may occur like when comparing URI queries in #187.

It’d be good to leverage urllib.parse as it’s already done by some tests.

Use the official Prometheus client to collect metrics from the app. This consists of several steps:

• Allow a composition of WSGI applications (#59, #60)
• Install the client and use it. (#63, 64)
• Create a custom metric to ensure everything works.
• Configure this in OpenShift.

There are already pull requests waiting for a review that make the app use Prometheus with its default settings.

The application needs a health check endpoint simply returning 200 to any GET request.

The health check request must not require authentication. Thus it’s necessary to allow unauthenticated operations (#50) in the first place. Everything up to the real-world usage is reviewable and mergeable even now though.

• Create a health check endpoint (#39)
• Document the health check endpoint (#49)
• Enable a health probe on the deployed instance

Pull requests:

• #39 ready for a review
• #49 waiting for #39 to get reviewed and merged

We need to add the openshift deployment related yaml config files to the git repository

Never use a mutable object as a function argument default value! The HostWrapper constructor does this and it results in unexpected behavior. See:

>>> type(HostWrapper().insights_id)
<class 'NoneType'>
>>> HostWrapper().insights_id = "337a287f-e2d9-4692-856d-19efc548a04d"
>>> HostWrapper().insights_id
'337a287f-e2d9-4692-856d-19efc548a04d'

Why this happens? Because the default constructor argument (data) is always the same object. This happens:

1. The first instance receives a default argument – a dictionary.
2. This dictionary is stored in an instance variable (__data).
3. The "insights_id" value is stored as a new key into the __data dictionary.
4. The second instance receives the same dictionary as a default value. This dictionary already has the "insights_id" key from the assignment to the first instance.

If you create many hosts without passing the data argument to the constructor. All the instances will share the same __data attribute.

The current PR that automatically makes the requests authenticated by reading the OpenAPI specification is only in its smallest working state. It requires some polishing for it to have its fixed place in the repository:

• Remove the black magic that patches existing methods in an imported module. This is a simple code, but an obvious anti-pattern though. Use a custom resolver instead.
• Support parameter overloading: a Path Item object can override the parameters defined for the whole path. Examine the described and the real behavior.
• Support custom resolvers. The Connexion app can be given a custom resolver class that translates the operation to a view function. That is the one to be decorated.

• collectionFormat: csv is not necessary, it’s the default value.
• Every request can result in a 400 Bad Request response if it doesn’t match the specification. No need to explicitly state it for operations that don’t programmatically return it.
• getHostById actually don’t return 404 Not Found if a host is not found, but 200 with an empty list.
• mergeFacts and replaceFacts don’t return 404 Not Found if an invalid host or namespace is given, but
• Unify string quoting, at least for the HTTP response codes.
• Remove unnecessary string quoting, especially in the paths
• Remove commented out operations.
• DRY the hostId parameter by extracting it to the parameters specification.
• Unify the parameter names to use only snake case or camel case.
• Use plural names for array parameters like hostId.
• Missing reference from a FactSet to Facts.
• Use "type": ["string", "null"] for nullable types instead of non-standard x-nullable: true.
• Use hyphens in the UUID examples. First, check that the API accepts this format.
• Disable additional object fields by adding additionalProperties: False to make the schema more robust.
• Extract pagination to a standalone object and reference it from HostQueryOutput.

Checking whether the fact dictionary is empty on fact merge is not necessary. There is nothing wrong with a no-op merge. The check with its 400 response can be removed.

If there is some reason to keep this check I’m not aware of, it can be moved to the OpenAPI specification. That would mean to specify a schema for a non-empty fact set.

In both cases, the result would be a more coherent and simpler code.

For Advisor, it is useful if we only get hosts which have an Insights ID. These are the only hosts that will have Advisor reports filed for them. Advisor does not want to display hosts that are only identified to other services.

When hosts are filtered by the hostname_or_id parameter, they are not filtered by account number. The condition simply isn’t there. An account_number argument is passed, but it’s not used.

Steps to reproduce:

1. Create a host with one account number. (Here: abc123)

   POST http://localhost:8080/r/insights/platform/inventory/api/v1/hosts
   Content-Type: application/json
   x-rh-identity: eyJpZGVudGl0eSI6eyJhY2NvdW50X251bWJlciI6ImFiYzEyMyIsIm9yZ19pZCI6ImJjZDIzNCJ9fQ==
   

   [
     {
       "account": "abc123",
       "fqdn": "some.thing.cz"
     }
   ]

2. Query for this hosts using a different account number. (Here: 0000001)

   GET http://localhost:8080/r/insights/platform/inventory/api/v1/hosts?hostname_or_id=some.thing.cz
   x-rh-identity: eyJpZGVudGl0eSI6eyJhY2NvdW50X251bWJlciI6IjAwMDAwMDEifX0=
   

3. See that the host is retrieved.

   {
     "count": 1,
      "page": 1,
     "per_page": 50,
     "results": [
       {
         "account": "abc123",
         "bios_uuid": null,
         "created": "2019-03-18T12:47:28.151448Z",
         "display_name": "some.thing.cz",
         "external_id": null,
         "facts": [],
         "fqdn": "some.thing.cz",
         "id": "e6e717fb-eba2-47c7-ac00-a37532e33ce2",
         "insights_id": null,
         "ip_addresses": null,
         "mac_addresses": null,
         "rhel_machine_id": null,
         "satellite_id": null,
         "subscription_manager_id": null,
         "updated": "2019-03-18T12:47:28.151468Z"
       }
     ],
     "total": 1
   }

If the debug mode (FLASK_DEBUG) is on an a NOAUTH environment variable is set, the x-rh-identity header is not required. Although it looks nice, it doesn’t work as intended: virtually all the API calls crash if the identity data is not available. I would simply remove this.

The marker pagination code (from #143) used to download is a great candidate for extraction. This is a very common pattern that is probably going to be used not only in the future here, but also possibly in other repositories.

My idea is that this will be some kind of iterator. It would be constructed from a base query and a list of the marker columns and would then yield single records.

The application is configured to use the RestyResolver, but it’s actually not used: all routes have the method explicitly stated in the specification. Remove this along with the unused arguments parameter.

The test_api.HealthTestCase.test_metrics is failing. The problem is that this endpoint uses the Prometheus library and requires the prometheus_multiproc_dir environment variable to be set.

• Skip the test if the environment variable is not set.
• Create a test launcher that uses a temporary directory for this. Reuse the mechanism from run_gunicorn.py.

When an Internal Server Error occurs, the response should still a valid error JSON. Now, the response is an HTML document:

<html>
<head>
    <title>Internal Server Error</title>
</head>
<body>
<h1><p>Internal Server Error</p></h1>

</body>
</html>

The error should be in the same format that Connexion emits on failure. Content-Type is application/problem+json and it looks like this:

{
  "detail": "You don't have the permission to access the requested resource. It is either read-protected or not readable by the server.",
  "status": 403,
  "title": "Forbidden",
  "type": "about:blank"
}

I expect that this can be fixed by setting up a Flask error handler. It might be even possible to use the Connexion’s error handler instead of just mimicking its format.

Running test_api.py raises a lot of ValidationErrors. They are apparently caused by #160 introducing Marshmallow to do validations. It’s not possible to add some hosts now.

Sample error:

Input validation error while adding host: {'account': '000501', 'display_name': '', 'ip_addresses': ['10.10.0.1'], 'facts': [{'namespace': 'ns1', 'facts': {'key1': 'value1'}}]}
Traceback (most recent call last):
  File "/Users/stomsa/Vývoj/Insights/Repozitáře/insights-host-inventory/api/host.py", line 30, in add_host_list
    (host, status_code) = _add_host(host)
  File "/Users/stomsa/Vývoj/Insights/Repozitáře/insights-host-inventory/api/host.py", line 67, in _add_host
    validated_input_host_dict = HostSchema(strict=True).load(host)
  File "/Users/stomsa/.virtualenvs/insights-host-inventory-_ShLCp88/lib/python3.6/site-packages/marshmallow/schema.py", line 588, in load
    result, errors = self._do_load(data, many, partial=partial, postprocess=True)
  File "/Users/stomsa/.virtualenvs/insights-host-inventory-_ShLCp88/lib/python3.6/site-packages/marshmallow/schema.py", line 711, in _do_load
    raise exc
marshmallow.exceptions.ValidationError: {'display_name': ['Length must be between 1 and 200.']}

Using the following command to create a new host:

curl -X POST --header 'Content-Type: application/json' --header 'Accept: application/problem+json' -d '{"account": "1234567", "display_name": "system1.example.com", "canonical_facts": {"insights_uuid": "00112233-4455-6677-8899-AABBCCDDEE01"}}' 'http://127.0.0.1:5000/api/hosts'

generates the following error:

sqlalchemy.exc.IntegrityError: (psycopg2.IntegrityError) null value in column "id" violates not-null constraint
DETAIL:  Failing row contains (null, 1234567, system1.example.com, 2018-11-01 00:01:53.569721, 2018-11-01 00:01:53.569729, {}, [], {"insights_uuid": "00112233-4455-6677-8899-AABBCCDDEE01"}).
 [SQL: 'INSERT INTO hosts (account, display_name, created_on, modified_on, facts, tags, canonical_facts) VALUES (%(account)s, %(display_name)s, %(created_on)s, %(modified_on)s, %(facts)s, %(tags)s, %(canonical_facts)s) RETURNING hosts.id'] [parameters: {'account': '1234567', 'display_name': 'system1.example.com', 'created_on': datetime.datetime(2018, 11, 1, 0, 1, 53, 569721), 'modified_on': datetime.datetime(2018, 11, 1, 0, 1, 53, 569729), 'facts': '{}', 'tags': '[]', 'canonical_facts': '{"insights_uuid": "00112233-4455-6677-8899-AABBCCDDEE01"}'}] (Background on this error at: http://sqlalche.me/e/gkpj)

I can't see anywhere in the code where a new ID is generated for a new host.

There are at least two reasons why we need to allow unauthenticated routes:

• A health check endpoint for the health probe (#46)
• The Swagger UI Console

To be compliant with the OpenAPI specification file and to avoid ugly hacks for the Swagger UI, authenticated operations must be explicitly marked. All other ones are considered not requiring the identity header.

Steps:

• Support unauthenticated operations (#50)
• Allow a creation of additional operations in tests (#45)
• Test unauthenticated operations (#52)
• Mark the unauthenticated operations automatically by the OpenAPI specification (No pull request yet)

Pull requests:

• #50 ready for a review, without functional tests
• #45 ready for a review, will allow having functional tests for #50
• #52 waiting for #50 and #45 to get reviewed and merged

Based on the REST API Guidelines IPP APIs should listen on a path formatted like /$PATH_PREFIX/$APP/v$VERSION/$RESOURCE/$ID

Which, for example, would give me a path like /r/insights/platform/inventory/v1/hosts rather than the current path which is /r/insights/platform/inventory/api/v1/hosts