Page MenuHomePhabricator
Create Task
Maniphest T366918

MPIC: A fix to configure memorystore properly to allow openid-client to use sessions
Closed, ResolvedPublic1 Estimated Story Points
Actions

Description

Description

Apparently we cannot use express-session with the default configuration because MemoryStatedefault configuration that library uses is not designed for a production-like environment. That's why, when running MPIC on staging, openid session details are not created properly. There is a warning when running MPIC at staging:

Warning: connect.session() MemoryStore is not
designed for a production environment, as it will leak
memory, and will not scale past a single process.

And this error when trying to log in:

Error: did not find expected authorization request details in session, req.session["oidc:idp.wikimedia.org"] is undefined

We use a session cookie to keep the user logged in but`openid` needs to store some details in the user session during the log in process (we get some data from there: user id and user groups). And, at this time, that's not working for staging/production environments.

That said, we need a fix to be able to use memorystore library whose purpose is being able to use memorystore in production environments and prune expired entries based on the specified interval (24 hours in our case)

Acceptance criteria

  • MPIC is using memorystore library and sessions are configured to use that library with a checkPeriod to avoid lacks of memory

Notes

Details

SubjectRepoBranchLines +/-
Metrics Platform Instrument Configurator: Deploying to stagingoperations/deployment-chartsmaster+1 -1
Metrics Platform Instrument Configurator: Deploying to stagingoperations/deployment-chartsmaster+1 -1
Customize query in gerrit

Event Timeline

Sfaci created this task.Jun 7 2024, 3:11 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJun 7 2024, 3:11 PM
Sfaci moved this task from Sprint Backlog to In Process on the Data Products (Data Products Sprint 14) board.Jun 7 2024, 3:11 PM
CodeReviewBot added a comment.Jun 7 2024, 3:34 PM

sfaci updated https://gitlab.wikimedia.org/repos/data-engineering/mpic/-/merge_requests/37

Using memorystore to store openid-client session details

Sfaci updated the task description. (Show Details)Jun 7 2024, 3:38 PM
Sfaci updated the task description. (Show Details)Jun 7 2024, 4:59 PM
phuedx moved this task from Backlog to Metrics Platform Instrument Configurator on the Metrics Platform board.Jun 10 2024, 9:42 AM
Sfaci set the point value for this task to 1.Jun 10 2024, 10:08 AM
Sfaci moved this task from In Process to Code Review / Tech Input on the Data Products (Data Products Sprint 14) board.Jun 10 2024, 2:10 PM
xcollazo moved this task from Code Review / Tech Input to To Deploy on the Data Products (Data Products Sprint 14) board.Jun 10 2024, 4:10 PM
gerritbot added a comment.Jun 10 2024, 8:26 PM

Change #1041221 had a related patch set uploaded (by Santiago Faci; author: Santiago Faci):

[operations/deployment-charts@master] Metrics Platform Instrument Configurator: Deploying to staging

https://gerrit.wikimedia.org/r/1041221

gerritbot added a project: Patch-For-Review.Jun 10 2024, 8:26 PM
gerritbot added a comment.Jun 10 2024, 8:30 PM

Change #1041221 merged by jenkins-bot:

[operations/deployment-charts@master] Metrics Platform Instrument Configurator: Deploying to staging

https://gerrit.wikimedia.org/r/1041221

Sfaci moved this task from To Deploy to In Process on the Data Products (Data Products Sprint 14) board.Jun 10 2024, 9:19 PM
gerritbot added a comment.Jun 11 2024, 9:30 AM

Change #1041547 had a related patch set uploaded (by Santiago Faci; author: Santiago Faci):

[operations/deployment-charts@master] Metrics Platform Instrument Configurator: Deploying to staging

https://gerrit.wikimedia.org/r/1041547

gerritbot added a comment.Jun 11 2024, 9:32 AM

Change #1041547 merged by jenkins-bot:

[operations/deployment-charts@master] Metrics Platform Instrument Configurator: Deploying to staging

https://gerrit.wikimedia.org/r/1041547

Sfaci moved this task from In Process to To Deploy on the Data Products (Data Products Sprint 14) board.Jun 11 2024, 9:51 AM
Sfaci moved this task from To Deploy to Done on the Data Products (Data Products Sprint 14) board.
VirginiaPoundstone closed this task as Resolved.Jun 20 2024, 8:39 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits