break down 4.4.1

geropl · geropl · commit 541459591f4a · 2025-05-13T10:15:37.000Z
diff --git a/pdd/001-infra-rollout-4.4.1.md b/pdd/001-infra-rollout-4.4.1.md
@@ -0,0 +1,153 @@
+# Product Design Document: 4.4.1 Schedule Maintenance Notification (API & Backend)
+
+**References:**
+*   PRD: [001-infra-rollout.md#4.4. Schedule Maintenance Notification (Optional)](../../prd/001-infra-rollout.md#44-schedule-maintenance-notification-optional)
+*   Linear Issue: [CLC-1274](https://linear.app/gitpod/issue/CLC-1274/admin-schedule-maintenance-notification)
+*   Related PDD (Maintenance Mode): [pdd/001-infra-rollout-4.3.md](./001-infra-rollout-4.3.md)
+
+## 1. Overview
+This document details the technical design for the API and backend components of the "Schedule Maintenance Notification" feature. This feature allows organization owners to enable, disable, and set a custom notification message that can be displayed on the Gitpod dashboard. The actual display logic, including the use of a default message if no custom one is set, will be handled by the frontend (covered in PDD 4.4.2).
+
+## 2. Goals
+*   Define the API endpoints for managing scheduled maintenance notification settings (enabled status and custom message).
+*   Specify the backend logic for storing and retrieving these settings.
+*   Detail necessary database schema modifications for the `DBTeam` entity.
+*   Ensure the backend implementation adheres to PRD requirements R4.1, R4.2, R4.3 (backend portion), and supports R4.5.
+
+## 3. Proposed Solution (API & Backend)
+
+### 3.1. Database Schema Update (`gitpod-db`)
+*   **Target Entity:** `DBTeam` (represents an "Organization", likely in `components/gitpod-db/src/typeorm/entity/db-team.ts`).
+*   **Action:** Add a new column `maintenanceNotification` to the `DBTeam` entity.
+    *   **Name:** `maintenanceNotification`
+    *   **Type:** `json` (or `jsonb` if preferred by the database)
+    *   **Structure:** The JSON object will store:
+        ```json
+        {
+          "enabled": boolean,
+          "message": string | undefined
+        }
+        ```
+    *   **Default Value (for the column in DB):** `{"enabled": false, "message": null}`
+    *   **Nullable (column itself):** `false` (the column should always exist, its content defines state).
+*   **Migration:** A TypeORM migration script will be generated and applied to add this column with its default value.
+
+### 3.2. API Definition (Protobuf - Public API)
+*   **Target File:** `components/public-api/gitpod/v1/organization.proto` (or equivalent proto definition file for OrganizationService).
+*   **Action:** Add new RPC methods and messages to the `OrganizationService`:
+    ```protobuf
+    service OrganizationService {
+      // ... existing RPCs ...
+
+      // GetScheduledMaintenanceNotification retrieves the scheduled maintenance notification settings for an organization.
+      rpc GetScheduledMaintenanceNotification(GetScheduledMaintenanceNotificationRequest) returns (GetScheduledMaintenanceNotificationResponse) {}
+
+      // SetScheduledMaintenanceNotification sets the scheduled maintenance notification for an organization.
+      rpc SetScheduledMaintenanceNotification(SetScheduledMaintenanceNotificationRequest) returns (SetScheduledMaintenanceNotificationResponse) {}
+    }
+
+    message GetScheduledMaintenanceNotificationRequest {
+      string organization_id = 1;
+    }
+
+    message GetScheduledMaintenanceNotificationResponse {
+      bool is_enabled = 1;
+      string message = 2; // The custom message stored, if any. Empty or not present if no custom message is set.
+                          // The frontend will use its own default if this is empty/null and is_enabled is true.
+    }
+
+    message SetScheduledMaintenanceNotificationRequest {
+      string organization_id = 1;
+      bool is_enabled = 2;
+      optional string custom_message = 3; // User-provided custom message.
+                                          // If not provided or empty, the backend stores null/empty for the message.
+    }
+
+    message SetScheduledMaintenanceNotificationResponse {
+      bool is_enabled = 1; // The new enabled state
+      string message = 2; // The custom message that is now stored, if any.
+    }
+    ```
+*   Relevant code generation scripts will be run after this change.
+
+### 3.3. API Implementation (`components/server/src/api/organization-service-api.ts`)
+*   The `OrganizationServiceAPI` class will implement the new RPC methods.
+*   **`getScheduledMaintenanceNotification` Implementation:**
+    *   Input: `GetScheduledMaintenanceNotificationRequest`.
+    *   Calls `this.orgService.getScheduledMaintenanceNotificationSettings(ctxUserId(), req.organizationId)`.
+    *   Maps the internal result (e.g., `{ enabled: boolean, message: string | null }`) to `GetScheduledMaintenanceNotificationResponse`.
+        *   `response.is_enabled = internalResult.enabled;`
+        *   `response.message = internalResult.message || "";` (Return empty string if message is null).
+*   **`setScheduledMaintenanceNotification` Implementation:**
+    *   Input: `SetScheduledMaintenanceNotificationRequest`.
+    *   Calls `this.orgService.setScheduledMaintenanceNotificationSettings(ctxUserId(), req.organizationId, req.isEnabled, req.customMessage)`.
+    *   Maps the internal result to `SetScheduledMaintenanceNotificationResponse`.
+        *   `response.is_enabled = internalResult.enabled;`
+        *   `response.message = internalResult.message || "";`
+
+### 3.4. Backend Service Logic (`components/server/src/orgs/organization-service.ts`)
+*   The `OrganizationService` class will contain the core logic.
+*   **Type definition for the notification settings (internal use):**
+    ```typescript
+    interface MaintenanceNotificationSettings {
+      enabled: boolean;
+      message: string | undefined;
+    }
+    ```
+*   **`getScheduledMaintenanceNotificationSettings(userId: string, orgId: string): Promise<MaintenanceNotificationSettings>` method:**
+    *   Authorization: `await this.auth.checkPermissionOnOrganization(userId, "maintenance", orgId);`.
+    *   Logic:
+        *   Fetch `DBTeam` by `orgId` using `this.teamDB.findTeamById(orgId)`.
+        *   If not found, throw `ApplicationError(ErrorCodes.NOT_FOUND)`.
+        *   Let `dbNotificationConfig = team.maintenanceNotification;`
+        *   If `dbNotificationConfig` is null or parsing fails (though TypeORM usually handles JSON column parsing):
+            *   Return `{ enabled: false, message: undefined }`.
+        *   Else (valid JSON from DB):
+            *   Return `{ enabled: dbNotificationConfig.enabled, message: dbNotificationConfig.message === null ? undefined : dbNotificationConfig.message }`.
+*   **`setScheduledMaintenanceNotificationSettings(userId: string, orgId: string, isEnabled: boolean, customMessage?: string | null): Promise<MaintenanceNotificationSettings>` method:**
+    *   Authorization: `await this.auth.checkPermissionOnOrganization(userId, "maintenance", orgId);`.
+    *   Logic:
+        *   Fetch `DBTeam`. If not found, throw `ApplicationError(ErrorCodes.NOT_FOUND)`.
+        *   Construct the new `MaintenanceNotificationSettings` object for internal logic:
+            ```typescript
+            const newInternalNotificationConfig: MaintenanceNotificationSettings = {
+              enabled: isEnabled,
+              message: (customMessage && customMessage.trim() !== "") ? customMessage.trim() : undefined,
+            };
+            ```
+        *   Prepare the object to be stored in the DB (JSON will store `null` for `undefined` message):
+            ```typescript
+            const notificationConfigForDb = {
+              enabled: newInternalNotificationConfig.enabled,
+              message: newInternalNotificationConfig.message === undefined ? null : newInternalNotificationConfig.message,
+            };
+            ```
+        *   Prepare update payload for `this.teamDB.updateTeam(orgId, updatePayload)`:
+            *   `updatePayload.maintenanceNotification = notificationConfigForDb;` (The DB driver will handle JSON serialization).
+        *   Persist changes: `const updatedTeam = await this.teamDB.updateTeam(orgId, updatePayload);`
+        *   Analytics:
+            ```typescript
+            this.analytics.track({
+                userId,
+                event: isEnabled ? "scheduled_maintenance_notification_enabled" : "scheduled_maintenance_notification_disabled",
+                properties: {
+                    organization_id: orgId,
+                    has_custom_message: isEnabled && !!newInternalNotificationConfig.message,
+                },
+            });
+            ```
+        *   Return the `newInternalNotificationConfig` object reflecting the logical state post-update.
+
+## 4. Permissions & Auditing
+
+### 4.1. Permissions
+*   Backend service methods (`OrganizationService`) will use `await this.auth.checkPermissionOnOrganization(userId, "maintenance", orgId)` for both `getScheduledMaintenanceNotificationSettings` and `setScheduledMaintenanceNotificationSettings`. This aligns with the permission used for managing the Maintenance Mode feature (4.3) and ensures that users who can manage one can manage the other.
+
+### 4.2. Auditing
+*   Analytics tracking as detailed in section 3.4 covers basic auditing of enable/disable actions and presence of a custom message.
+*   If more detailed `DbAuditLog` entries are required (e.g., logging the actual message content changes), they can be added within the `setScheduledMaintenanceNotificationSettings` method in `OrganizationService`.
+
+## 5. Open Questions / Considerations (Backend Specific)
+*   Ensuring the default value for the `maintenanceNotification` JSON column (`{"enabled": false, "message": null}`) is correctly applied by the migration and handled if the column is ever unexpectedly null.
+*   Error handling during JSON parsing from the DB (though TypeORM typically handles this well for JSON columns).
+*   The `message` field in `GetScheduledMaintenanceNotificationResponse` and `SetScheduledMaintenanceNotificationResponse` will be an empty string if no custom message is set (i.e., `null` in the DB). The frontend will be responsible for interpreting this as "use frontend default".
diff --git a/prd/001-infra-rollout.md b/prd/001-infra-rollout.md
@@ -4,58 +4,61 @@
 
 ## 1. Overview
 
-This document outlines the requirements for improving the infrastructure update rollout experience for Gitpod administrators. The goal is to provide administrators with better tools for visibility, communication, and control during infrastructure maintenance, thereby reducing operational stress and minimizing the risk of incidents.
+This document outlines the requirements for improving the infrastructure update rollout experience for Gitpod org owners. The goal is to provide org owners with better tools for visibility, communication, and control during infrastructure maintenance, thereby reducing operational stress and minimizing the risk of incidents.
 
 ## 2. Background
 
 Customers have reported significant challenges in coordinating infrastructure updates for their Gitpod installations. These challenges stem from several factors:
 *   **Long Workspace Timeouts:** Workspaces can run for extended periods (e.g., 36 hours), making it difficult to find a suitable maintenance window without disrupting users.
 *   **Ineffective Communication:** Company-internal communication channels and email announcements regarding maintenance are often missed or ignored by users.
-*   **Lack of Determinism:** The unpredictability of user activity and workspace states during updates makes the process stressful for administrators.
+*   **Lack of Determinism:** The unpredictability of user activity and workspace states during updates makes the process stressful for org owners.
 
 These issues have led to difficult update experiences and, in some cases, service incidents, including data loss for customers. This project aims to address these problems by introducing a dedicated admin interface with tools to manage maintenance periods more effectively.
 
 ## 3. Goals
 
-*   Improve the predictability and reduce the stress of infrastructure updates for administrators.
+*   Improve the predictability and reduce the stress of infrastructure updates for org owners.
 *   Minimize disruption to end-users during maintenance windows.
 *   Reduce the risk of data loss or other incidents related to infrastructure updates.
-*   Provide administrators with clear visibility into running workspaces.
-*   Enable administrators to effectively communicate upcoming maintenance to users.
-*   Give administrators control over workspace creation and termination during maintenance.
+*   Provide org owners with clear visibility into running workspaces.
+*   Enable org owners to effectively communicate upcoming maintenance to users.
+*   Give org owners control over workspace creation and termination during maintenance.
 
 ## 4. Requirements
 
 An "Admin" section will be added to the Gitpod organization menu. This section will house the following features:
 
 ### 4.1. View Running Workspaces (Ref: [CLC-1240](https://linear.app/gitpod/issue/CLC-1240/admin-ability-to-see-running-workspaces))
-*   **R1.1:** Administrators must be able to view a list of all currently running workspaces within their organization.
+*   **R1.1:** Org owners must be able to view a list of all currently running workspaces within their organization.
 *   **R1.2:** The list should include relevant information for each workspace (e.g., user, workspace ID, start time, project).
 *   **R1.3:** This feature aims to restore or provide similar functionality to a previously available view that helped admins identify active users during upgrades.
 
 ### 4.2. Stop All Running Workspaces (Ref: [CLC-1275](https://linear.app/gitpod/issue/CLC-1275/admin-stop-all-running-workspaces-button-for-infra-update))
-*   **R3.1:** Administrators must have an option (e.g., a button) to stop all currently running workspaces within their organization.
+*   **R3.1:** Org owners must have an option (e.g., a button) to stop all currently running workspaces within their organization.
 *   **R3.2:** This action is intended to ensure all running workspaces are backed up before an infrastructure update.
 *   **R3.3:** The UI should provide a clear explanation of what this action does and its implications.
 
 ### 4.3. Maintenance Mode Toggle (Ref: [CLC-1273](https://linear.app/gitpod/issue/CLC-1273/admin-maintenance-mode-toggle))
-*   **R2.1:** Administrators must be able to manually enable or disable a "Maintenance Mode" for their Gitpod instance.
+*   **R2.1:** Org owners must be able to manually enable or disable a "Maintenance Mode" for their Gitpod instance.
 *   **R2.2:** When Maintenance Mode is enabled:
     *   Users must be prevented from starting new workspaces.
     *   A clear warning or notification must be displayed on the dashboard indicating that the system is in maintenance.
     *   The "Stop All Running Workspaces" button (from feature 4.2) must be enabled; otherwise, it must be disabled.
-*   **R2.3:** This toggle allows administrators to control the state before, during, and after an update.
+*   **R2.3:** This toggle allows org owners to control the state before, during, and after an update.
 
 ### 4.4. Schedule Maintenance Notification (Optional) (Ref: [CLC-1274](https://linear.app/gitpod/issue/CLC-1274/admin-schedule-maintenance-notification))
-*   **R4.1:** Administrators must be able to schedule and display a maintenance notification banner on the Gitpod dashboard.
+*   **R4.1:** Org owners must be able to schedule and display a maintenance notification banner on the Gitpod dashboard.
 *   **R4.2:** The notification system must include an enable/disable toggle.
-*   **R4.3:** Administrators must be able to provide custom text for the notification banner to explain the purpose, timing, and impact of the maintenance.
-*   **R4.4:** A default notification message should be provided if no custom text is set.
+*   **R4.3:** Org owners must be able to provide custom text for the notification banner via an input field, to explain the purpose, timing, and impact of the maintenance.
+*   **R4.4:** A default notification message must be provided.
+    *   **R4.4.1:** This default message will be pre-filled as the default value in the "set notification message" input field.
+    *   **R4.4.2:** If the notification is enabled (R4.2) and no custom text is entered (i.e., the default message is used), this default message is stored on the backend. If custom text is provided, that custom text is stored.
+*   **R4.5:** If both the "Maintenance Mode" notification (from feature 4.3) and this "Schedule Maintenance Notification" are enabled and active, only the "Maintenance Mode" notification must be displayed to users.
 
 ## 5. Design Considerations (High-Level)
 
 *   The new "Admin" page should be easily accessible from the organization menu.
-*   The UI for these features should be intuitive and provide clear feedback to the administrator.
+*   The UI for these features should be intuitive and provide clear feedback to the org owner.
 *   Actions with significant impact (e.g., stopping all workspaces) should require confirmation.
 
 ## 6. Technical Considerations (High-Level)
@@ -73,7 +76,7 @@ An "Admin" section will be added to the Gitpod organization menu. This section w
 ## 8. Deployment Considerations
 
 *   These features will be rolled out as part of a standard Gitpod update.
-*   Documentation for administrators on how to use these new features will be required.
+*   Documentation for org owners on how to use these new features will be required.
 *   Consider feature flagging for a phased rollout if deemed necessary.
 
 ## 9. Implementation Progress
@@ -88,12 +91,12 @@ An "Admin" section will be added to the Gitpod organization menu. This section w
 | - API: Trigger stop all workspaces                     | Done (N/A)  | Cline    | (Leverages existing StopWorkspace API)                     |
 | - Logic: Iterate and stop workspaces                   |             |          | (Frontend orchestration)                                   |
 | - UI: Button & Confirm                                 |             |          | (Integrated into RunningWorkspacesCard)                    |
-| **4.3 Maintenance Mode Toggle**                        |             |          |                                                            |
+| **4.3 Maintenance Mode Toggle**                        | Done        | Cline    | [001-infra-rollout-4.3.md](pdd/001-infra-rollout-4.3.md)   |
 | - API: Get/Set Maintenance Mode                        |             |          |                                                            |
 | - Logic: Prevent new workspace starts                  |             |          |                                                            |
 | - UI: Toggle & Dashboard Banner                        |             |          |                                                            |
 | - UI: Enable/disable "Stop All Workspaces" button      |             |          | (Logic within RunningWorkspacesCard to check Maint. Mode)  |
-| **4.4 Schedule Maintenance Notification (Optional)**   |             |          |                                                            |
+| **4.4 Schedule Maintenance Notification (Optional)**   |             |          | [001-infra-rollout-4.4.1.md](pdd/001-infra-rollout-4.4.1.md) (API/Backend) |
 | - API: Get/Set Notification                            |             |          |                                                            |
 | - UI: Form for scheduling & Dashboard Banner           |             |          |                                                            |
 | **General**                                            |             |          |                                                            |
