CMR-10393: Allow only one sqs client queue to subscribe to one collection for NRT (ingest) subscriptions

[jmaeng72]

Overview

What is the feature/fix?

Problem: The ingest (NRT) subscriptions has a bug where if User1 creates a subscription to Coll1 and then User2 creates a different subscription to the same Coll1 for the same queue, it will overwrite the first subscription in the backend SNS subscription filter for that queue.

What is the Solution?

Add a verify check to make sure this does not happen

What areas of the application does this impact?

Ingest subscription

Checklist

• I have updated/added unit and int tests that prove my fix is effective or that my feature works
• New and existing unit and int tests pass locally and remotely
• clj-kondo has been run locally and all errors corrected
• I have removed unnecessary/dead code and imports in files I have changed
• I have performed a self-review of my own code
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have cleaned up integration tests by doing one or more of the following:
  • migrated any are2 tests to are3 in files I have changed
  • de-duped, consolidated, removed dead int tests
  • transformed applicable int tests into unit tests
  • refactored to reduce number of system state resets by updating fixtures (use-fixtures :each (ingest/reset-fixture {})) to be :once instead of :each

[jmaeng72]

I hope this makes sense... please double check during your reviews if this is clear

[eereiter]

Its clear to me.

[codecov-commenter]

Codecov Report

Attention: Patch coverage is 79.62963% with 11 lines in your changes missing coverage. Please review.

Project coverage is 58.25%. Comparing base (0733700) to head (77d5029).

Files with missing lines	Patch %	Lines
ingest-app/src/cmr/ingest/api/subscriptions.clj	71.42%	1 Missing and 5 partials ⚠️
...a-db-app/src/cmr/metadata_db/api/subscriptions.clj	0.00%	3 Missing ⚠️
ingest-app/src/cmr/ingest/config.clj	66.66%	0 Missing and 1 partial ⚠️
transmit-lib/src/cmr/transmit/metadata_db2.clj	95.00%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #2216      +/-   ##
==========================================
+ Coverage   58.23%   58.25%   +0.01%     
==========================================
  Files        1056     1056              
  Lines       71134    71185      +51     
  Branches     2063     2068       +5     
==========================================
+ Hits        41428    41467      +39     
- Misses      27780    27784       +4     
- Partials     1926     1934       +8     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[eereiter]

Why are we matching this specific URL? I though the issue was only with SQS?

[jmaeng72]

this is the local dev SQS ARN (which doesn't start with arn:aws:sqs, but I still wanted to capture it and have it act like it was an sqs arn subscription concept endpoint)

[TylerHeald1]

Not directed at this specific PR, but are there/do we need guards against localhost subscription URLs?

[jmaeng72]

can you explain further? You mean, do we need to distinguish between localhost URL and localhost SQS?

[jmaeng72]

or are you saying that we might not need line 104 because we don't care about distinguishing between local sqs and local http endpoint?

[TylerHeald1]

Nah, like when someone sends in a subscription with url endpoint, do we block them/do we even need to block them from sending in a subscription that is for localhost (since that would point to our subscription processor). Again, not aimed directly at this PR, just occurred to me while looking at the localhost there

[jmaeng72]

ooo I see what you are saying. I think we could. It doesn't hurt to just limit them to non-local URLs for http endpoints

[jmaeng72]

updated with new blocker for this

[eereiter]

I am wondering why you created an API call into metadata-db, instead of just reading the cache directly?

Not asking you to change anything.

[jmaeng72]

the cache funcs are in the metadata-db app which is typically accessed from the transmit lib that acts like a middle-man. Which is why I created a metadata-db API

[jceaser]

I had very minor comments, must fix that one new line where the variable is below the let.

[TylerHeald1]

Just need to make sure the defconfig value is properly added to each environment

[jmaeng72]

Yep. Just checked each env and it has the parameter with the correct env var