GET /organizations/{org}/activity fails in testing

[github-actions[bot]]

The test on GET /organizations/{org}/activity keeps failing. This endpoint is new to api v3.

Likely caused by a bug with the API since the response body along with the 422 is "message": "Syntax Error Parsing JSON"

In Cypress tests:

• 19-api-v3/02-organization.ts - GET /organizations/{org}/activity Run Link: https://github.com/bcgov/api-services-portal/actions/runs/10394438579

To reproduce:

• against docker compose, run tests in 01/01, then run 19/02

Attached is a dump of the Activity table from postgres after these steps - dump_activity.csv

Logs at the error show:

apsportal                                 | 2024-08-14 22:29:04 debug: [keystone.activity] [getActivity] 20 / 0
apsportal                                 | 2024-08-14 22:29:04 debug: [keystone.activity] [getActivity] where: {"namespace_in":["gw-1d907","newplatform","gw-6af6d","platform","gw-86ac1","gw-63d6e","gw-5eab7","gw-4d7b1"]}
apsportal                                 | 2024-08-14 22:29:04 debug: [keystone.activity] [getActivity] returned=20
apsportal                                 | 2024-08-14 22:29:04 error: [dsapi] SyntaxError: Unexpected token s in JSON at position 0
apsportal                                 |     at JSON.parse (<anonymous>)
apsportal                                 |     at /app/dist/batch/feed-worker.js:7907:280
apsportal                                 |     at Array.forEach (<anonymous>)
apsportal                                 |     at Object.parseJsonString (/app/dist/batch/feed-worker.js:7904:25)
apsportal                                 |     at /app/dist/controllers/v3/OrganizationController.js:195:43
apsportal                                 |     at Array.map (<anonymous>)
apsportal                                 |     at OrganizationController.<anonymous> (/app/dist/controllers/v3/OrganizationController.js:195:18)
apsportal                                 |     at Generator.next (<anonymous>)
apsportal                                 |     at fulfilled (/app/dist/controllers/v3/OrganizationController.js:17:58)
apsportal                                 |     at processTicksAndRejections (node:internal/process/task_queues:96:5)
apsportal                                 | 2024-08-14 22:29:04 error: [dsapi] Syntax Error PATH: /ds/api/v3/organizations/ministry-of-health/activity
oauth2-proxy                              | 172.20.0.1:44852 - 6e6931ab-4129-43fd-be83-2b24ad718b13 - janis@testmail.com [2024/08/14 22:29:04] oauth2proxy.localtest.me:4180 GET / "/ds/api/v3/organizations/ministry-of-health/activity" HTTP/1.1 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36 Edg/127.0.0.0" 422 39 0.056

From logs, it looks like OrganzationController /activity hits the error on .map((o) => parseJsonString(o, ['blob'])); - https://github.com/bcgov/api-services-portal/blob/ff77d4a95521b7b971007e12fc0d917ed44e3c53/src/controllers/v3/OrganizationController.ts#L304-L305

as part of

    return transformActivity(records)
      .map((o) => removeEmpty(o))
      .map((o) => transformAllRefID(o, ['blob']))
      .map((o) => parseJsonString(o, ['blob']));

whereas NamespaceController /activity, which I was able to call passing all the gateways without any error, uses https://github.com/bcgov/api-services-portal/blob/ff77d4a95521b7b971007e12fc0d917ed44e3c53/src/controllers/v3/GatewayController.ts#L244

    return transformActivity(records)
      .map((o) => removeKeys(o, ['id']))
      .map((o) => removeEmpty(o))
      .map((o) => parseJsonString(o, ['context']))
      .map((o) => parseBlobString(o));
  }

[rustyjux]

@ikethecoder, I was able to reproduce the error (against the test branch running locally in docker compose, run 01/01, then 19/02).

I tried switching parseJsonString in OrganizationController to use parseBlobString (which makes sense, since the blob can contain yaml or json) in https://github.com/bcgov/api-services-portal/tree/feature/org-activity-error.

[rustyjux]

Most recent changes did not reproduce failure when running 01/01 then 19/02, but resulted in a 500 error (instead of 422) on the org/activity when running the full suite - https://github.com/bcgov/api-services-portal/actions/runs/10710602531

[rustyjux]

Debug logging shows:

YAML parsing failed for key blob. Error: end of the stream or a document separator is expected (1:1)

 1 | }
-----^
Failing content for key blob:
}
Record details:
{
  "result": "success",
  "message": "{actor} deleted {environment} environment",
  "params": {
    "actor": "Janis Smith",
    "environment": "test"
  },
  "activityAt": "2024-09-09T23:50:21.144Z",
  "blob": "{\"access\":[]}"
}

Errors are occurring when trying to parse {"access":[]} as YAML. This is odd because this record has json as the type in the Blob table.

This blob content is generated to accompany delete environment activity. Similar other json blob content which is related to activities are for deleted namespaces ({"access":[],"serviceAccounts":[]}) but this wont ever fetched since the deleted namespaces will be omitted from the assorted namespaces.

Pulling the json blob entries from the test env on OCP, they are limited to delete env/namespace (though it looks like these will have non-null values if there were consumers or SAs for the env/namespace at time of deletion), along with ops_metrics_<something> records which can be very lengthy (1MB+)

Next steps:

• return to the original parseJsonString function (since this is what API v2 has been using all along) and see record is actually generating the original error

[rustyjux]

Returned to using parseJsonString but tweaked the function to:

export const parseJsonString = (obj: any, keys: string[]) => {
  console.warn('Entering parseJsonString with keys:', keys);
  console.warn('Object to parse:', JSON.stringify(obj, null, 2));

  Object.entries(obj).forEach(
    ([key, val]) => {
      if (keys.includes(key)) {
        console.warn(`Attempting to parse key: ${key}`);
        console.warn(`Value before parsing: ${val}`);
        try {
          if (typeof val === 'string') {
            obj[key] = JSON.parse(val);
            console.warn(`Successfully parsed ${key}`);
          } else {
            console.warn(`Skipping parse for ${key}: value is not a string`);
          }
        } catch (error) {
          console.error(`Error parsing ${key}:`, error);
          console.error(`Problematic value:`, val);
        }
      } else if (val && typeof val === 'object') {
        parseJsonString(val, keys);
      }
    }
  );

  console.warn('Exiting parseJsonString. Parsed object:', JSON.stringify(obj, null, 2));
  return obj;
};

This showed more details about why the 422 errors were occurring before beyond SyntaxError: Unexpected token 's'. The problem values are YAML, e.g.:

services:
- host: httpbin.org
  name: cc-service-for-platform
...

The updated function has an internal error, but still returns a 200 with an object like:

{
  "id": "153",
  "result": "completed",
  "message": "{actor} {action} {entity} {message}",
  "params": {
    "action": "published",
    "actor": "sa-gw-c5a9b-e0000000-6bddb4d48c1b",
    "entity": "gateway configuration",
    "result": "completed"
  },
  "activityAt": "2024-09-10T23:20:36.626Z",
  "blob": "services:\n- host: httpbin.org\n  name: cc-service-for-platform\n  port: 443\n  protocol: https\n  retries: 0\n  routes:\n  - hosts:\n    - cc-service-for-platform.api.gov.bc.ca\n    https_redirect_status_code: 426\n    methods:\n    - GET\n    name: cc-service-for-platform-route\n    path_handling: v0\n    paths:\n    - /\n    strip_path: false\n    tags:\n    - ns.gw-c5a9b\n  tags:\n  - ns.gw-c5a9b\n"
}

Would this suffice? I need more info on why /activity in OrganizationController might diverge from GatewayController.

[rustyjux]

Clarity! From Aidan:

Basically Organization and Gateway should have the exact same logic to prepare the Activity info.. only difference is the filter criteria. And It's there for completeness and can come in handy for us as you can get activity for deleted gateways, whereas GatewayController will not show you activity after its been deleted.