GSoC: Distributed error reporting #12489
Conversation
akolson
added
DEV: backend
akolson
changed the title
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| }, | ||
| }; | ||
|
|
||
| Resource.client = jest.fn(); |
There was a problem hiding this comment.
Ideally, whenever you mock something in Python or JS, you want to ensure that the original implementation can be restored after the test is completed. That approach can keep tests from interfering with other tests, because of their use of mocks.
Since this is a direct replace of Resource.client, there isn't a way for it to be restored. So it would be better to use mock.spyOn or mock.replaceProperty here, and do so in the beforeEach. Then instead of clearAllMocks in afterEach (which only clears the mock state), I would suggest using restoreAllMocks as that would ensure any mocks are restored to what they should be (assuming the appropriate approach was used to create the mock in the first place).
| height: window.screen.height, | ||
| available_width: window.screen.availWidth, | ||
| available_height: window.screen.availHeight, | ||
| }, |
There was a problem hiding this comment.
There was discussion about using the screen size breakpoints instead of the actual width and height. Is that the case, because it doesn't look like it? The reason is that it protects privacy. Specific sizes can be used to identify users, which reduces the anonymity of the data
There was a problem hiding this comment.
Yes, we should definitely make this update. Although I am also noticing that this file shouldn't exist, because it has been moved into the plugin to make this behaviour pluggable.
| request_headers.pop("Cookie", None) | ||
|
|
||
| request_get = dict(request.GET) | ||
| request_get.pop("token", None) |
There was a problem hiding this comment.
In addition, probably for POST, we should ensure passwords are not sent?
kolibri/core/errorreports/models.py
Outdated
| error_report.context = context | ||
|
|
||
| error_report.save() | ||
| logger.error("ErrorReports: Database updated.") |
There was a problem hiding this comment.
This feels more like info-type logging?
| ping_once(started, server=server) | ||
| pingback_id = ping_once(started, server=server) | ||
| if pingback_id: | ||
| ping_error_reports.enqueue(args=(server, pingback_id)) |
There was a problem hiding this comment.
I see this is creating two different pathways that hinges on the pingback_id. In utils.py, there already exists logic dependent on if "id" in data:, which is the same condition here. It seems like this fits alongside the existing logic there.
| Vue.config.errorHandler = function (err, vm) { | ||
| logging.error(`Unexpected Error: ${err}`); | ||
| const error = new VueErrorReport(err, vm); | ||
| ErrorReportResource.report(error); | ||
| }; | ||
|
|
||
| window.addEventListener('error', e => { | ||
| logging.error(`Unexpected Error: ${e.error}`); | ||
| const error = new JavascriptErrorReport(e); | ||
| ErrorReportResource.report(error); | ||
| }); | ||
|
|
||
| window.addEventListener('unhandledrejection', event => { | ||
| event.preventDefault(); | ||
| logging.error(`Unhandled Rejection: ${event.reason}`); |
There was a problem hiding this comment.
I know the unhandledrejection listener will prevent default logging of the error, so in regards to that and the other logging statements, I'm concerned whether these are suppressing necessary log information, i.e. a stack trace, that developers would need? If logging.error outputs a stack trace, that may not be the same trace as the error itself.
There was a problem hiding this comment.
Is there a way to check whether we are in a prod or dev env in the frontend? If yes then we can skip the preventDefault and use logging.debug instead when in dev mode
There was a problem hiding this comment.
On second thought, as error_reports is a plugin now, can we unplug it by default in dev environment?
There was a problem hiding this comment.
Unplugging the plugin sounds fine for development. Although, having a proper stack trace logged to the console is helpful regardless of environment. On line 40 of this file, you can see that the it configures the logger based off environment.
What I'm trying to point out is if logging.error eventually feeds into console.error, the stack trace it prints would likely be different for:
`Unhandled Rejection: ${event.reason}`
then it would be for:
event.reason
assuming event.reason is an Error object.
kolibri/core/errorreports/tasks.py
Outdated
| join_url(server, "/api/v1/errors/report/"), | ||
| data=errors_json, | ||
| headers={"Content-Type": "application/json"}, | ||
| ) |
There was a problem hiding this comment.
Since this is using raw python requests, lets ensure this has explicit timeouts configured, and ideally separate timeouts for connection vs request.
There was a problem hiding this comment.
Can we use NetworkClient here ? The other ping-back task already uses NetworkClient
There was a problem hiding this comment.
Yeah if it's compatible, using the NetworkClient is just fine!
|
I am just seeing the reviews here |
add tests for model methods
Add test for error-report middleware
move POSSIBLE_ERRORS to contants.py
add API for frontend error report testcase for frontendreport view
tests for error_report task add error report task
…d, remove mark_as_reported
remove installation_type and release_version\n move request_time_to_error to context\n remove sensitive info from the requests info\n only use traceback and error_msg to fingerprint an error_report
rtibbles
force-pushed
the
distributed-error-reporting
branch
from
0c82a59 to
1d90422
Compare
rtibbles
force-pushed
the
distributed-error-reporting
branch
from
716e662 to
b5ba36f
Compare
rtibbles
force-pushed
the
distributed-error-reporting
branch
from
d408e96 to
8b3b22a
Compare
Summary
This pr implements the distributed error reporting feature as part of the Google Summer of Code(GSoC) 2024 program. See the epic for details.
References
Closes #12214
Reviewer guidance
All tests associated with the implementation must run successfully
Testing checklist
PR process
Reviewer checklist
yarnandpip)