Address AI feedback

Signed-off-by: Lukasz Gryglicki <[email protected]>

Assisted by [OpenAI](https://platform.openai.com/)

Assisted by [GitHub Copilot](https://github.com/features/copilot)

Author: lukaszgryglicki

cla-backend-go/github/github_repository.go

@@ -838,7 +838,6 @@ func GetCoAuthorCommits(
 			Authorized:   false,
 		}
 		log.WithFields(f).Debugf("PR: %d, %+v", pr, summary)
-		GithubUserCache.Set(cacheKey, user)
 	} else {
 		summary = &UserCommitSummary{
 			SHA: utils.StringValue(commit.SHA),
@@ -852,7 +851,12 @@ func GetCoAuthorCommits(
 			Authorized: false,
 		}
 		log.WithFields(f).Debugf("Co-author GitHub user details not found: %v", coAuthor)
-		GithubUserCache.SetWithTTL(cacheKey, user, 30*time.Minute) // negative cache for 30 minutes
+	}
+	if found {
+		GithubUserCache.Set(cacheKey, user)
+	} else {
+		// negative cache for 30 minutes (this is for GitHub user not found)
+		GithubUserCache.SetWithTTL(cacheKey, user, 30*time.Minute)
 	}
 
 	return summary, found

cla-backend-go/swagger/cla.v2.yaml

@@ -4047,7 +4047,7 @@ paths:
         - sign
 
   /clear-cache:
-    get:
+    post:
       summary: Clear cache
       description: Clears the service cache
       operationId: clearCaches

cla-backend-go/v2/sign/handlers.go

@@ -84,13 +84,22 @@ func Configure(api *operations.EasyclaAPI, service Service, userService users.Se
 			reqID := utils.GetRequestID(params.XREQUESTID)
 			ctx := utils.ContextWithRequestAndUser(params.HTTPRequest.Context(), reqID, user) // nolint
 			utils.SetAuthUserProperties(user, params.XUSERNAME, params.XEMAIL)
+			f := logrus.Fields{
+				"functionName":   "v2.sign.handlers.ClearCachesHandler",
+				utils.XREQUESTID: reqID,
+				"authUserName":   utils.StringValue(params.XUSERNAME),
+				"authUserEmail":  utils.StringValue(params.XEMAIL),
+			}
+			log.WithFields(f).Info("clearing caches")
 			resp, err := service.ClearCaches(ctx)
 			if err != nil {
+				log.WithFields(f).WithError(err).Warn("failed to clear caches")
 				if strings.Contains(err.Error(), "internal server error") {
 					return sign.NewClearCachesInternalServerError().WithPayload(errorResponse(reqID, err))
 				}
 				return sign.NewClearCachesBadRequest().WithPayload(errorResponse(reqID, err))
 			}
+			log.WithFields(f).Info("caches cleared successfully")
 			return sign.NewClearCachesOK().WithPayload(resp)
 		})
 

cla-backend-go/v2/sign/service.go

@@ -616,7 +616,7 @@ func (s *service) SignedIndividualCallbackGithub(ctx context.Context, payload []
 		err = github.UpdateCacheAfterSignature(context.Background(), claUser, signature.ProjectID)
 		if err != nil {
 			log.WithFields(f).WithError(err).Warnf("unable to update cache for user: %s, project ID: %s", claUser.Username, signature.ProjectID)
-			return err
+			return nil
 		}
 
 	} else {

cla-backend/cla/models/github_models.py

@@ -41,7 +41,7 @@
 # GitHub usernames must be 3-39 characters long, can only contain alphanumeric characters or hyphens,
 # cannot begin or end with a hyphen, and cannot contain consecutive hyphens.
 GITHUB_USERNAME_REGEX = re.compile(r'^(?!-)(?!.*--)[A-Za-z0-9-]{3,39}(?<!-)$')
-NEGATIVE_CACHE_TTL = 180  # 3 minutes TTL for quick cache (all negative cases)
+NEGATIVE_CACHE_TTL = 180  # 3 minutes TTL for negative cache (all negative cases)
 PROJECT_CACHE_TTL = 10800  # 3 hours TTL for project cache (positive cases)
 
 class TTLCache:
@@ -2517,7 +2517,8 @@ def get_co_author_commits(co_author, commit_sha, pr, installation_id) -> Tuple[U
     if found:
         github_user_cache.set(cache_key, user)
     else:
-        github_user_cache.set_with_ttl(cache_key, user, 1800)  # negative cache for 30 minutes
+        # negative cache for 30 minutes (this is for GitHub user not found)
+        github_user_cache.set_with_ttl(cache_key, user, 1800)
     return (co_author_summary, found)
 
 

cla-backend/cla/routes.py

@@ -1879,10 +1879,10 @@ def user_from_token(auth_user: check_auth, request, response):
     """
     return cla.controllers.user.get_or_create_user(auth_user).to_dict()
 
-@hug.get("/clear-cache", versions=2)
+@hug.post("/clear-cache", versions=2)
 def clear_cache(auth_user: check_auth):
     """
-    GET: /clear-cache  (v2)
+    POST: /clear-cache
 
     Requires a valid Bearer token.
     Clears in-memory caches used by the Python GitHub layer and returns

utils/clear_cache_go.sh

@@ -32,8 +32,8 @@ API="${API_URL}/v4/clear-cache"
 
 if [ ! -z "$DEBUG" ]
 then
-  echo "curl -s -XGET -H \"X-ACL: ${XACL}\" -H \"Authorization: Bearer ${TOKEN}\" -H \"Content-Type: application/json\" \"${API}\""
-  curl -s -XGET -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}"
+  echo "curl -s -XPOST -H \"X-ACL: ${XACL}\" -H \"Authorization: Bearer ${TOKEN}\" -H \"Content-Type: application/json\" \"${API}\""
+  curl -s -XPOST -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}"
 else
-  curl -s -XGET -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}" | jq -r '.'
+  curl -s -XPOST -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}" | jq -r '.'
 fi

utils/clear_cache_py.sh

@@ -4,7 +4,7 @@
 # Or to get a real user data:
 # 2a) on local (non remote) computer: ~/get_oauth_token.sh (or ~/get_oauth_token_prod.sh) (will open browser, authenticate to LF, and return token data)
 # 2b) edit 'cla/auth.py': uncomment: 'LG: for local environment override', then run server via: clear && AUTH0_USERNAME_CLAIM_CLI='http://lfx.dev/claims/username' yarn serve:ext
-# 2c) then TOKEN='value from the get_oauth_token.sh script' DEBUG='' ./utils/get_user_from_token_py.sh
+# 2c) then TOKEN='value from the get_oauth_token.sh script' DEBUG='' ./utils/clear_cache_py.sh
 
 if [ -z "$TOKEN" ]
 then
@@ -38,8 +38,8 @@ API="${API_URL}/v2/clear-cache"
 
 if [ ! -z "$DEBUG" ]
 then
-  echo "curl -s -XGET -H \"X-ACL: ${XACL}\" -H \"Authorization: Bearer ${TOKEN}\" -H \"Content-Type: application/json\" \"${API}\""
-  curl -s -XGET -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}"
+  echo "curl -s -XPOST -H \"X-ACL: ${XACL}\" -H \"Authorization: Bearer ${TOKEN}\" -H \"Content-Type: application/json\" \"${API}\""
+  curl -s -XPOST -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}"
 else
-  curl -s -XGET -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}" | jq -r '.'
+  curl -s -XPOST -H "X-ACL: ${XACL}" -H "Authorization: Bearer ${TOKEN}" -H "Content-Type: application/json" "${API}" | jq -r '.'
 fi