Project

General

Profile

Actions

Story #9186

closed

[API] Test client impact of async_permissions_update=True

Added by Brett Smith over 8 years ago. Updated over 7 years ago.

Status:
Closed
Priority:
Normal
Assigned To:
-
Category:
-
Target version:
-
Start date:
04/15/2016
Due date:
04/15/2016
% Done:

0%

Estimated time:
Story points:
-

Description

One thing we know is likely to break is that when you create a new project, you won't be able to put things in that project, or even view it, until the permissions update finishes.

Deploy an API server with async_permissions_update=True and try to use it "normally" and see what clients break:

  • arv-put
  • arv-get
  • arv-keepdocker
  • arv-mount
  • arv-run-pipeline-instance
  • Workbench: Create new projects; upload data to them; run pipeline instances in them

Note that the API server should be preloaded with some data to make for an interesting test case. If the database is nearly empty, permissions updates will finish very quickly, and testing might reveal fewer issues than would occur at scale. Consider having at least 1,000 projects, and maybe a bunch of simple collections (with duplicated data) inside them.

Document the results here. The goal of this story is to determine what further development would be required to make asynchronous permissions updates viable in prodcution.


Related issues 2 (0 open2 closed)

Related to Arvados - Story #9502: [API] Update permissions cache as needed after select writesResolved06/28/2016

Actions
Follows (1 day) Arvados - Story #8886: [API] Do not block individual API queries on rebuilding the permissions graphResolvedPeter Amstutz04/13/2016

Actions
Actions

Also available in: Atom PDF