Page MenuHomePhabricator
Create Task
Maniphest T181025

Database purges should not be done for GET requests
Closed, ResolvedPublic
Actions

Description

In ThrottleOverrideHooks::onPingLimiter, when a database lookup results in an expired record it is purged from the database. Current best practice is to avoid database modifications in response to a GET request as the GET verb is expected to be idempotent.

Details

SubjectRepoBranchLines +/-
Move expired record purge to a jobmediawiki/extensions/ThrottleOverridemaster+104 -44
Customize query in gerrit

Related Objects
Search...

Event Timeline

bd808 created this task.Nov 21 2017, 5:13 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 21 2017, 5:13 AM
bd808 added a parent task: T27000: Deploy ThrottleOverride extension to Wikimedia wikis.Nov 21 2017, 5:14 AM
bd808 added a comment.Nov 21 2017, 5:20 AM

See comments on https://gerrit.wikimedia.org/r/#/c/392556/3/ThrottleOverride.hooks.php for more information/ideas from Aaron.

EddieGP subscribed.Nov 21 2017, 3:34 PM

I'd handle thr_expiry like ug_expiry in user_groups:

  • SpecialThrottleOverrideList should filter out expired rows (it might already do, haven't checked)
  • The hooks class should filter out expired rows (each row has to be checked against the current time anyways so that expired throttles do not apply).
  • SpecialOverrideThrottle should purge expired rows whenever another (no matter whether a related one) override is edited/added/removed (the latter pending to be implemented). These operations are POST-requests anyways.
  • The purging process should live in a in a job for performance reasons. DeferredUpdate would do as well, but according to the docs that's for time-critical stuff. If we just ignore expired rows, it doesn't matter whether those are removed from the db immediately or a few hours - or even a few days - later.

This will have expired overrides staying in the db for quite a while on small wikis (where SpecialOverrideThrottle isn't used regularly) though. But using "WHERE thr_expiry < $NOW" shouldn't be that hard, so this will never hit the mw layer and thus I'd say it can be neglected.

gerritbot subscribed.Nov 22 2017, 5:50 AM

Change 392778 had a related patch set uploaded (by BryanDavis; owner: Bryan Davis):
[mediawiki/extensions/ThrottleOverride@master] Move expired record purge to a job

https://gerrit.wikimedia.org/r/392778

gerritbot added a project: Patch-For-Review.Nov 22 2017, 5:50 AM
bd808 moved this task from Backlog to WMF Deployment Blockers on the MediaWiki-extensions-ThrottleOverride board.Nov 22 2017, 6:02 AM
EddieGP moved this task from WMF Deployment Blockers to Doing or waiting for review on the MediaWiki-extensions-ThrottleOverride board.Nov 25 2017, 9:48 AM
gerritbot added a comment.Nov 26 2017, 8:18 PM

Change 392778 merged by jenkins-bot:
[mediawiki/extensions/ThrottleOverride@master] Move expired record purge to a job

https://gerrit.wikimedia.org/r/392778

EddieGP closed this task as Resolved.Nov 26 2017, 8:25 PM
EddieGP assigned this task to bd808.
EddieGP moved this task from Doing or waiting for review to Done on the MediaWiki-extensions-ThrottleOverride board.
EddieGP mentioned this in T147363: Purge expired throttles.Nov 26 2017, 8:41 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL