Read the original data for PersistedMetadataStore::update_data() inside the write transaction

This avoids overwriting data with stale values in multiprocess scenarios.

Author: tgoyne

src/realm/object-store/sync/app.cpp

@@ -715,12 +715,11 @@ void App::get_profile(const std::shared_ptr<User>& user,
                     identities.push_back({get<std::string>(doc, "id"), get<std::string>(doc, "provider_type")});
                 }
 
-                if (auto data = m_metadata_store->get_user(user->user_id())) {
-                    data->identities = std::move(identities);
-                    data->profile = UserProfile(get<BsonDocument>(profile_json, "data"));
-                    m_metadata_store->update_user(user->user_id(), *data);
-                    user->update_backing_data(std::move(data));
-                }
+                m_metadata_store->update_user(user->user_id(), [&](auto& data) {
+                    data.identities = std::move(identities);
+                    data.profile = UserProfile(get<BsonDocument>(profile_json, "data"));
+                    user->update_backing_data(data); // FIXME
+                });
             }
             catch (const AppError& err) {
                 return completion(nullptr, err);
@@ -812,12 +811,11 @@ void App::log_in_with_credentials(const AppCredentials& credentials, const std::
             try {
                 auto json = parse<BsonDocument>(response.body);
                 if (linking_user) {
-                    if (auto user_data = m_metadata_store->get_user(linking_user->user_id())) {
-                        user_data->access_token = RealmJWT(get<std::string>(json, "access_token"));
-                        // maybe a callback for this?
-                        m_metadata_store->update_user(linking_user->user_id(), *user_data);
-                        linking_user->update_backing_data(std::move(user_data));
-                    }
+                    m_metadata_store->update_user(linking_user->user_id(), [&](auto& data) {
+                        data.access_token = RealmJWT(get<std::string>(json, "access_token"));
+                        // FIXME: should be powered by callback
+                        linking_user->update_backing_data(data);
+                    });
                 }
                 else {
                     auto user_id = get<std::string>(json, "user_id");
@@ -1338,11 +1336,10 @@ void App::refresh_access_token(const std::shared_ptr<User>& user, bool update_lo
             try {
                 auto json = parse<BsonDocument>(response.body);
                 RealmJWT access_token{get<std::string>(json, "access_token")};
-                if (auto data = self->m_metadata_store->get_user(user->user_id())) {
-                    data->access_token = access_token;
-                    self->m_metadata_store->update_user(user->user_id(), *data);
-                    user->update_backing_data(std::move(data));
-                }
+                self->m_metadata_store->update_user(user->user_id(), [&](auto& data) {
+                    data.access_token = access_token;
+                    user->update_backing_data(data);
+                });
             }
             catch (AppError& err) {
                 return completion(std::move(err));

src/realm/object-store/sync/impl/app_metadata.cpp

@@ -520,13 +520,21 @@ struct PersistedSyncMetadataManager : public app::MetadataStore {
         realm->commit_transaction();
     }
 
-    void update_user(std::string_view user_id, const UserData& data) override
+    void update_user(std::string_view user_id, util::FunctionRef<void(UserData&)> update_fn) override
     {
         auto realm = get_realm();
         realm->begin_transaction();
         auto& schema = m_user_schema;
         Obj obj = find_user(*realm, user_id);
-        REALM_ASSERT(obj);
+        auto opt_data = read_user(obj);
+        if (!opt_data) {
+            realm->cancel_transaction();
+            return;
+        }
+
+        auto& data = *opt_data;
+        update_fn(data);
+
         obj.set(schema.state_col,
                 int64_t(data.access_token ? SyncUser::State::LoggedIn : SyncUser::State::LoggedOut));
         obj.set<String>(schema.refresh_token_col, data.refresh_token.token);
@@ -794,12 +802,16 @@ class InMemoryMetadataStorage : public app::MetadataStore {
         }
     }
 
-    void update_user(std::string_view user_id, const UserData& data) override
+    void update_user(std::string_view user_id, util::FunctionRef<void(UserData&)> update_fn) override
     {
         std::lock_guard lock(m_mutex);
-        auto& user = m_users.find(user_id)->second;
-        user = data;
-        user.legacy_identities.clear();
+        auto it = m_users.find(user_id);
+        if (it == m_users.end()) {
+            return;
+        }
+
+        update_fn(it->second);
+        it->second.legacy_identities.clear();
     }
 
     void log_out(std::string_view user_id, SyncUser::State new_state) override

src/realm/object-store/sync/impl/app_metadata.hpp

@@ -56,7 +56,7 @@ class MetadataStore {
                              std::string_view device_id) = 0;
 
     // Update the stored data for an existing user
-    virtual void update_user(std::string_view user_id, const UserData& data) = 0;
+    virtual void update_user(std::string_view user_id, util::FunctionRef<void(UserData&)>) = 0;
 
     // Discard the given user's tokens and set its state to the given one (LoggedOut or Removed).
     // If the user was the active user, a new active user is selected from the

test/object-store/sync/metadata.cpp

@@ -187,11 +187,12 @@ TEST_CASE("app metadata: common", "[sync][metadata]") {
 
     SECTION("create_user() only updates the given fields and leaves the rest unchanged") {
         store->create_user(user_id, refresh_token, access_token, device_id);
-        auto data = store->get_user(user_id);
-        REQUIRE(data);
-        data->profile = bson::BsonDocument{{"name", "user's name"}, {"email", "user's email"}};
-        data->identities = {{"identity", "provider"}};
-        store->update_user(user_id, *data);
+        UserProfile profile = bson::BsonDocument{{"name", "user's name"}, {"email", "user's email"}};
+        std::vector<UserIdentity> identities{{"identity", "provider"}};
+        store->update_user(user_id, [&](UserData& data) {
+            data.profile = profile;
+            data.identities = identities;
+        });
 
         const auto access_token_2 = encode_fake_jwt("access_token_2", 123, 456);
         const auto refresh_token_2 = encode_fake_jwt("refresh_token_2", 123, 456);
@@ -203,8 +204,8 @@ TEST_CASE("app metadata: common", "[sync][metadata]") {
         CHECK(data2->refresh_token.token == refresh_token_2);
         CHECK(data2->legacy_identities.empty());
         CHECK(data2->device_id == "device id 2");
-        CHECK(data2->identities == data->identities);
-        CHECK(data2->profile.data() == data->profile.data());
+        CHECK(data2->identities == identities);
+        CHECK(data2->profile.data() == profile.data());
     }
 
     SECTION("has_logged_in_user() is only true if user is present and valid") {
@@ -296,12 +297,15 @@ TEST_CASE("app metadata: common", "[sync][metadata]") {
         store->create_user("user 2", refresh_token, access_token, device_id);
         store->create_user("user 3", refresh_token, access_token, device_id);
 
-        auto data = store->get_user("user 3");
-        data->access_token.token.clear();
-        data->refresh_token.token.clear();
-        store->update_user("user 3", *data);
+        store->update_user("user 3", [](auto& data) {
+            data.access_token.token.clear();
+            data.refresh_token.token.clear();
+        });
         CHECK(store->get_current_user() == "user 1");
-        store->update_user("user 1", *data);
+        store->update_user("user 1", [](auto& data) {
+            data.access_token.token.clear();
+            data.refresh_token.token.clear();
+        });
         CHECK(store->get_current_user() == "user 2");
 
         store->set_current_user("not a user");
@@ -334,10 +338,10 @@ TEST_CASE("app metadata: common", "[sync][metadata]") {
 
     SECTION("update_user() does not set legacy identities") {
         store->create_user(user_id, refresh_token, access_token, device_id);
+        store->update_user(user_id, [](auto& data) {
+            data.legacy_identities.push_back("legacy uuid");
+        });
         auto data = store->get_user(user_id);
-        data->legacy_identities.push_back("legacy uuid");
-        store->update_user(user_id, *data);
-        data = store->get_user(user_id);
         REQUIRE(data->legacy_identities.empty());
     }