feat(ws): add WorkspaceCreate model to backend #205
Conversation
thesuperzapper
requested review from
ederign
and removed request for
kimwnasptd
Signed-off-by: Mathew Wicks <5735406+thesuperzapper@users.noreply.github.com>
thesuperzapper
force-pushed
the
workspace-create-model
branch
from
da20e77 to
f39d6e7
Compare
|
@ederign this should be ready to do a quick review of, it solves a lot of the outstanding tasks on the backend. It also sets the example of how to do the other "create" and "update" APIs, especially around payload validation and unpacking the errors returned by our validating webhooks. However, we will still need a follow-up to add more tests for the validation (both the invalid create body payloads, and namespace/name HTTP path parameters), perhaps @Yael-F can take this up after we merge, as they already did something similar in #139 |
| import "net/http" | ||
|
|
||
| // LogError logs an error message with the request details. | ||
| func (a *App) LogError(r *http.Request, err error) { |
There was a problem hiding this comment.
It's a style choice, but maybe unify them under a single Log(level, message, error, r *http.Request)
There was a problem hiding this comment.
It's a lot more common to have separate functions, especially because some of them don't have errors.
There was a problem hiding this comment.
@thesuperzapper I just leave some optional comments here. I just would like to double check with you something.
When I've tested the API to Create, on the backend perspective worked well and I've received the right payload. (and error if I duplicate it)
I can see the workspace in the admissions logs of the controller:
2025-02-14T16:01:13Z DEBUG admission validating Workspace create {"webhookGroup": "kubeflow.org", "webhookKind": "Workspace", "Workspace": {"name":"dora","namespace":"default"}, "namespace": " │
│ 2025-02-14T16:01:31Z DEBUG admission validating Workspace create {"webhookGroup": "kubeflow.org", "webhookKind": "Workspace", "Workspace": {"name":"dora","namespace":"default"}, "namespace": " │
│ 2025-02-14T16:02:02Z DEBUG admission validating Workspace create {"webhookGroup": "kubeflow.org", "webhookKind": "Workspace", "Workspace": {"name":"dora1","namespace":"default"}, "namespace": │
│ 2025-02-14T16:10:15Z DEBUG admission validating Workspace create {"webhookGroup": "kubeflow.org", "webhookKind": "Workspace", "Workspace": {"name":"dora2","namespace":"default"}, "namespace": │
│
```
but I don't work see the workspace pod being created. Is this expected at this stage?
| method = r.Method | ||
| uri = r.URL.RequestURI() | ||
| ) | ||
| a.logger.Error(err.Error(), "method", method, "uri", uri) |
There was a problem hiding this comment.
One thing that we did on MR is to have tracing or correlation IDs on requests. When we do that, we should remember to log here also the r.context().
@alexcreasy I wonder if this would be something that you can do eventually for us? (include the debug/logs that you did on MR on Notebooks 2.0)
| name := ps.ByName(ResourceNamePathParam) | ||
|
|
||
| // validate path parameters | ||
| var valErrs field.ErrorList |
There was a problem hiding this comment.
We are duplicating this validation in multiple places. I would suggest moving this to a middleware. @thesuperzapper I can do this refactoring in a FUP if you agree.
The code in my POV is becoming a little complicated with the pattern:
- validate (I believe we can move this to middleware)
- auth (I believe we can move this to middleware)
- actual handler logic
Related to what Adem proposed #207
Similar to what I do here: https://github.com/kubeflow/model-registry/blob/main/clients/ui/bff/internal/api/app.go#L102-L113
Just let me know and I do this.
There was a problem hiding this comment.
Regarding perimeter validation, I guess we could do it with a middleware, but let's do that in a follow-up PR to see what it might look like.
I worry that it might get a bit messy, because each of the apis has a different set of parameters.
There was a problem hiding this comment.
I can send a small proposal in a PR as a FUP for this one.
There was a problem hiding this comment.
Then we can discuss what is the best approach! Better to compare with code examples
| } | ||
|
|
||
| func (a *App) GetWorkspacesHandler(w http.ResponseWriter, r *http.Request, ps httprouter.Params) { | ||
| namespace := ps.ByName(NamespacePathParam) | ||
|
|
||
| // validate path parameters |
@ederign Were you actually running the controller, because it won't create the pod unless you are. And if you were running the controller, what was the status of the workspace. |
|
@thesuperzapper I was running the controller the error is not related with this PR:
I'll setup everything correctly later and probably will work (because e2e tests works, to controller works). |
|
/lgtm |
|
/ok-to-test |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: ederign, thesuperzapper The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
google-oss-prow
bot
merged commit e5d4e41
into
kubeflow:notebooks-v2
This PR does the following:
WorkspaceCreatemodel which we use in the body of "create workspace" POST (and its return body)causes.validation_errorsfield for Error responses, which is used when an understood but invalid body is passed (HTTP 422)Content-Typeheader on POST (for now only affects the "create workspace", as this is the only POST).Locationheader when successfully creating a new Workspace (to the GET path for that workspace)WorkspaceKindsEnvelope->WorkspaceKindListEnvelopeResourceNamePathParam(for HTTP path parameter), rather than having "name" be defined as bothWorkspaceNamePathParamandWorkspaceKindNamePathParamnamespaceandnameHTTP path parametershelper.StatusCausesFromAPIStatusanda.failedValidationResponse)descUnexpectedHTTPStatus)For future PRs:
Example POST
Here is an example post to create a new workspace, and its response:
curl -X POST http://localhost:4000/api/v1/workspaces/default \ -H "Content-Type: application/json" \ -d '{ "data": { "name": "dora", "kind": "jupyterlab", "paused": false, "defer_updates": false, "pod_template": { "pod_metadata": { "labels": { "app": "dora" }, "annotations": { "app": "dora" } }, "volumes": { "home": "workspace-home-bella", "data": [ { "pvc_name": "workspace-data-bella", "mount_path": "/data/my-data", "read_only": false } ] }, "options": { "image_config": "jupyterlab_scipy_190", "pod_config": "tiny_cpu" } } } }'RESPONSE:
{ "data": { "name": "dora", "kind": "jupyterlab", "paused": false, "defer_updates": false, "pod_template": { "pod_metadata": { "labels": { "app": "dora" }, "annotations": { "app": "dora" } }, "volumes": { "home": "workspace-home-bella", "data": [ { "pvc_name": "workspace-data-bella", "mount_path": "/data/my-data" } ] }, "options": { "image_config": "jupyterlab_scipy_190", "pod_config": "tiny_cpu" } } } }