Add outage tracking (#325)

* move migrations

* start on outages

* stuff

* initial outage interface

* fix spec syntax

* system outage testing

* report outages and api testing

* remove commented out table

* clarify

* goto 60 in docker-compose for tests

* add outages key to report fixture

* cast outages to list

* more testing

* fix delete outage test, storage interface list reports test

* remove unneeded try block

* lint, ugh

* load system outages when exclude_system_outages selected

* linting

* fix test

* move migration back to 57

* fix docker compose

* mysql tests partially

* fix sql test

* remove restrictions on outage time range  except start > report_end

Author: lboeman

datastore/migrations/0057_outages.down.sql

@@ -0,0 +1,9 @@
+DROP TABLE arbiter_data.system_outages;
+DROP TABLE arbiter_data.report_outages;
+DROP PROCEDURE store_system_outage;
+DROP PROCEDURE list_system_outages;
+DROP PROCEDURE read_system_outage;
+DROP PROCEDURE delete_system_outage;
+DROP PROCEDURE store_report_outage;
+DROP PROCEDURE list_report_outages;
+DROP PROCEDURE delete_report_outage;

datastore/migrations/0057_outages.up.sql

@@ -0,0 +1,171 @@
+-- Table for storing system outage information with start, end information
+CREATE TABLE arbiter_data.system_outages(
+    id BINARY(16) NOT NULL DEFAULT(UUID_TO_BIN(UUID(), 1)),
+    start TIMESTAMP NOT NULL,
+    end TIMESTAMP NOT NULL,
+    created_at TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    modified_at TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
+
+    PRIMARY KEY(id)
+) ENGINE=INNODB ENCRYPTION='Y' ROW_FORMAT=COMPRESSED;
+
+GRANT SELECT ON arbiter_data.system_outages TO 'select_objects'@'localhost';
+GRANT INSERT ON arbiter_data.system_outages TO 'insert_objects'@'localhost';
+GRANT SELECT, DELETE ON arbiter_data.system_outages TO 'delete_objects'@'localhost';
+
+
+-- Table for storing report-specific outage with start, end information
+CREATE TABLE arbiter_data.report_outages(
+    id BINARY(16) NOT NULL DEFAULT(UUID_TO_BIN(UUID(), 1)),
+    report_id BINARY(16) NOT NULL,
+    start TIMESTAMP NOT NULL,
+    end TIMESTAMP NOT NULL,
+    created_at TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    modified_at TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
+
+    PRIMARY KEY(id),
+    FOREIGN KEY (report_id)
+        REFERENCES reports(id)
+        ON DELETE CASCADE
+) ENGINE=INNODB ENCRYPTION='Y' ROW_FORMAT=COMPRESSED;
+
+GRANT SELECT ON arbiter_data.report_outages TO 'select_objects'@'localhost';
+GRANT INSERT ON arbiter_data.report_outages TO 'insert_objects'@'localhost';
+GRANT SELECT, DELETE ON arbiter_data.report_outages TO 'delete_objects'@'localhost';
+
+
+-- System outage procedures
+CREATE DEFINER = 'insert_objects'@'localhost' PROCEDURE store_system_outage (
+    IN strid VARCHAR(36), IN start TIMESTAMP, IN end TIMESTAMP)
+MODIFIES SQL DATA SQL SECURITY DEFINER
+BEGIN
+    DECLARE binid BINARY(16);
+    SET binid = (SELECT UUID_TO_BIN(strid, 1));
+    INSERT INTO arbiter_data.system_outages(id, start, end) VALUES (
+        binid, start, end
+    );
+END;
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.store_system_outage TO 'insert_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.store_system_outage TO 'frameworkadmin'@'%';
+
+CREATE DEFINER = 'select_objects'@'localhost' PROCEDURE list_system_outages ()
+READS SQL DATA SQL SECURITY DEFINER
+BEGIN
+    SELECT BIN_TO_UUID(id, 1) as outage_id, start, end, created_at, modified_at
+    FROM arbiter_data.system_outages;
+END;
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.list_system_outages TO 'select_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.list_system_outages TO 'frameworkadmin'@'%';
+-- apiuser should only be able to list system outages, not store or delete them
+GRANT EXECUTE ON PROCEDURE arbiter_data.list_system_outages TO 'apiuser'@'%';
+
+CREATE DEFINER = 'select_objects'@'localhost' PROCEDURE read_system_outage(
+    In strid VARCHAR(36))
+READS SQL DATA SQL SECURITY DEFINER
+BEGIN
+    DECLARE binid BINARY(16);
+    SET binid = (SELECT UUID_TO_BIN(strid, 1));
+    SELECT BIN_TO_UUID(id, 1) as outage_id, start, end, created_at, modified_at
+        FROM arbiter_data.system_outages
+        WHERE id = binid;
+END;
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.read_system_outage TO 'select_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.read_system_outage TO 'frameworkadmin'@'%';
+
+CREATE DEFINER = 'delete_objects'@'localhost' PROCEDURE delete_system_outage(
+    In strid VARCHAR(36))
+MODIFIES SQL DATA SQL SECURITY DEFINER
+BEGIN
+    DECLARE binid BINARY(16);
+    SET binid = (SELECT UUID_TO_BIN(strid, 1));
+    DELETE FROM arbiter_data.system_outages WHERE id = binid;
+END;
+
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.delete_system_outage TO 'delete_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.delete_system_outage TO 'frameworkadmin'@'%';
+
+
+-- Report outage procedure
+CREATE DEFINER = 'insert_objects'@'localhost' PROCEDURE store_report_outage (
+    IN auth0id VARCHAR(32), IN str_reportid VARCHAR(36),
+    IN str_outageid VARCHAR(36), IN start TIMESTAMP, IN end TIMESTAMP
+)
+MODIFIES SQL DATA SQL SECURITY DEFINER
+BEGIN
+    DECLARE bin_reportid BINARY(16);
+    DECLARE bin_outageid BINARY(16);
+    DECLARE allowed BOOLEAN DEFAULT FALSE;
+
+    SET bin_reportid = (SELECT UUID_TO_BIN(str_reportid, 1));
+    SET bin_outageid = (SELECT UUID_TO_BIN(str_outageid, 1));
+
+    -- Check that the user has update permissions
+    SET allowed = (SELECT can_user_perform_action(auth0id, bin_reportid, 'update'));
+    IF allowed THEN
+        INSERT INTO arbiter_data.report_outages(
+            id, report_id, start, end
+        ) VALUES (
+            bin_outageid, bin_reportid, start, end
+        );
+    ELSE
+        SIGNAL SQLSTATE '42000' SET MESSAGE_TEXT = 'Access denied to user on "update report for report outage write"',
+        MYSQL_ERRNO = 1142;
+    END IF;
+END;
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.store_report_outage TO 'insert_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.store_report_outage TO 'apiuser'@'%';
+
+CREATE DEFINER = 'select_objects'@'localhost' PROCEDURE list_report_outages (
+    IN auth0id VARCHAR(32), IN str_reportid VARCHAR(36)
+)
+READS SQL DATA SQL SECURITY DEFINER
+BEGIN
+    DECLARE bin_reportid BINARY(16);
+    DECLARE allowed BOOLEAN DEFAULT FALSE;
+
+    SET bin_reportid = (SELECT UUID_TO_BIN(str_reportid, 1));
+    SET allowed = (SELECT can_user_perform_action(auth0id, bin_reportid, 'read'));
+
+    IF allowed THEN
+        SELECT BIN_TO_UUID(id, 1) as outage_id, BIN_TO_UUID(report_id, 1) as report_id, start, end, created_at, modified_at
+        FROM arbiter_data.report_outages
+        WHERE report_id = bin_reportid;
+    ELSE
+        SIGNAL SQLSTATE '42000' SET MESSAGE_TEXT = 'Access denied to user on "read report outages"',
+        MYSQL_ERRNO = 1142;
+    END IF;
+    
+END;
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.list_report_outages TO 'select_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.list_report_outages TO 'apiuser'@'%';
+
+CREATE DEFINER = 'delete_objects'@'localhost' PROCEDURE delete_report_outage(
+    IN auth0id VARCHAR(32), IN str_reportid VARCHAR(36), IN str_outageid VARCHAR(36)
+)
+MODIFIES SQL DATA SQL SECURITY DEFINER
+BEGIN
+    DECLARE bin_reportid BINARY(16);
+    DECLARE bin_outageid BINARY(16);
+    DECLARE allowed BOOLEAN DEFAULT FALSE;
+
+    SET bin_reportid = (SELECT UUID_TO_BIN(str_reportid, 1));
+    SET bin_outageid = (SELECT UUID_TO_BIN(str_outageid, 1));
+    SET allowed = (SELECT can_user_perform_action(auth0id, bin_reportid, 'update'));
+    
+    IF allowed THEN
+        DELETE FROM arbiter_data.report_outages WHERE id = bin_outageid;
+    ELSE
+        SIGNAL SQLSTATE '42000' SET MESSAGE_TEXT = 'Access denied to user on "update report for report outage delete"',
+        MYSQL_ERRNO = 1142;
+    END IF;
+END;
+
+
+GRANT EXECUTE ON PROCEDURE arbiter_data.delete_report_outage TO 'delete_objects'@'localhost';
+GRANT EXECUTE ON PROCEDURE arbiter_data.delete_report_outage TO 'apiuser'@'%';

datastore/tests/test_outages.py

@@ -0,0 +1,151 @@
+import datetime
+from conftest import newuuid, bin_to_uuid
+
+
+import pymysql
+import pytest
+
+
+@pytest.fixture()
+def add_perm(cursor, new_permission, valueset):
+    # Add a permission to user0, role0 of valueset
+    role_id = valueset[2][0]['id']
+    org = valueset[0][0]
+
+    def fcn(action, what):
+        perm = new_permission(action, what, True, org=org)
+        cursor.execute(
+            'INSERT INTO role_permission_mapping (role_id, permission_id) '
+            'VALUES (%s, %s)', (role_id, perm['id'])
+        )
+    return fcn
+
+
+@pytest.fixture
+def one_system_outage(cursor):
+    some_uuid = bin_to_uuid(newuuid())
+    start = datetime.datetime(2021, 4, 14, 12, 0)
+    end = datetime.datetime(2021, 4, 14, 13, 0)
+
+    cursor.execute(
+        'CALL store_system_outage(%s, %s, %s)',
+        (some_uuid,
+         start.strftime('%Y-%m-%d %H:%M'),
+         end.strftime('%Y-%m-%d %H:%M')
+         )
+    )
+    return some_uuid
+
+
+def test_get_system_outages(cursor):
+    cursor.execute('CALL list_system_outages()')
+    assert cursor.fetchall() == ()
+
+
+def test_add_remove_system_otuage(cursor):
+    some_uuid = bin_to_uuid(newuuid())
+    start = datetime.datetime(2021, 4, 14, 12, 0)
+    end = datetime.datetime(2021, 4, 14, 13, 0)
+
+    cursor.execute(
+        'CALL store_system_outage(%s, %s, %s)',
+        (some_uuid,
+         start.strftime('%Y-%m-%d %H:%M'),
+         end.strftime('%Y-%m-%d %H:%M')
+         )
+    )
+    cursor.execute('CALL list_system_outages()')
+    outages = cursor.fetchall()
+    assert len(outages) == 1
+    outage = outages[0]
+
+    assert outage[0] == some_uuid
+    assert outage[1] == start
+    assert outage[2] == end
+    cursor.execute('CALL delete_system_outage(%s)', some_uuid)
+
+    cursor.execute('CALL list_system_outages()')
+    outages = cursor.fetchall()
+    assert len(outages) == 0
+
+
+def test_report_outage_no_perms(cursor, valueset, new_report):
+    org = valueset[0][0]
+    user = valueset[1]
+    auth0_id = user[0]['auth0_id']
+    report = new_report(org=org)
+    report_id = bin_to_uuid(report['id'])
+    some_uuid = bin_to_uuid(newuuid())
+    start = datetime.datetime(2021, 4, 14, 12, 0)
+    end = datetime.datetime(2021, 4, 14, 13, 0)
+    with pytest.raises(pymysql.err.OperationalError):
+        cursor.execute(
+            "CALL store_report_outage(%s, %s, %s, %s, %s)",
+            (auth0_id, report_id, some_uuid,
+             start.strftime('%Y-%m-%d %H:%M'),
+             end.strftime('%Y-%m-%d %H:%M'))
+        )
+
+
+def test_store_and_read_report_outage(cursor, valueset, new_report, add_perm):
+    org = valueset[0][0]
+    user = valueset[1]
+    auth0_id = user[0]['auth0_id']
+    add_perm("read", "reports")
+    add_perm("update", "reports")
+    report = new_report(org=org)
+    report_id = bin_to_uuid(report['id'])
+    some_uuid = bin_to_uuid(newuuid())
+    start = datetime.datetime(2021, 4, 14, 12, 0)
+    end = datetime.datetime(2021, 4, 14, 13, 0)
+    cursor.execute(
+        "CALL store_report_outage(%s, %s, %s, %s, %s)",
+        (auth0_id, report_id, some_uuid,
+         start.strftime('%Y-%m-%d %H:%M'),
+         end.strftime('%Y-%m-%d %H:%M'))
+    )
+    cursor.execute(
+        "CALL list_report_outages(%s, %s)",
+        (auth0_id, report_id)
+    )
+    outages = cursor.fetchall()
+    assert len(outages) == 1
+    outage = outages[0]
+    assert outage[0] == some_uuid
+    assert outage[1] == report_id
+    assert outage[2] == start
+    assert outage[3] == end
+
+
+def test_delete_report_outage(cursor, valueset, new_report, add_perm):
+    org = valueset[0][0]
+    user = valueset[1]
+    auth0_id = user[0]['auth0_id']
+    add_perm("read", "reports")
+    add_perm("update", "reports")
+    report = new_report(org=org)
+    report_id = report['id']
+    some_uuid = newuuid()
+    start = datetime.datetime(2021, 4, 14, 12, 0)
+    end = datetime.datetime(2021, 4, 14, 13, 0)
+    cursor.execute(
+        "INSERT INTO report_outages (id, report_id, start, end) "
+        "VALUES (%s, %s, %s, %s)",
+        (some_uuid, report_id,
+         start.strftime('%Y-%m-%d %H:%M'),
+         end.strftime('%Y-%m-%d %H:%M'))
+    )
+    cursor.execute(
+        "SELECT * FROM report_outages WHERE report_id = %s",
+        (report_id,)
+    )
+    assert len(cursor.fetchall()) == 1
+    cursor.execute(
+        "CALL delete_report_outage(%s, %s, %s)",
+        (auth0_id, bin_to_uuid(report_id), bin_to_uuid(some_uuid))
+    )
+    cursor.execute(
+        "SELECT * FROM report_outages WHERE report_id = %s",
+        (report_id,)
+    )
+    assert len(cursor.fetchall()) == 0

sfa_api/__init__.py

@@ -67,9 +67,11 @@ def create_app(config_name='ProductionConfig'):
     from sfa_api.reports import reports_blp
     from sfa_api.aggregates import agg_blp
     from sfa_api.zones import zone_blp
+    from sfa_api.outages import outage_blp
 
     for blp in (obs_blp, forecast_blp, site_blp, user_blp, user_email_blp,
-                role_blp, permission_blp, reports_blp, agg_blp, zone_blp):
+                role_blp, permission_blp, reports_blp, agg_blp, zone_blp,
+                outage_blp):
         blp.before_request(protect_endpoint)
         app.register_blueprint(blp)