Log blocking rule in resolver

[zc-devs]

Follow up of #1460 (review)
Closes #1458

[ThinkChaos]

Thanks for following up with this!

I put comments about mostly minor things. but some of it does require changing a bunch of code so I tried to put suggestions those.

Could you also please add a couple checks in tests that return a positive mach for the rule? Alternatively, add some basic dedicated tests for that.
If it can be any help, the way I'd do it is update the tests to not assert anything. make the function print the rule before returning. and add an Expect(false) at the end so ginkgo prints the output and you can copy past the rules instead of typing them out.
Some kind of snapshot testing would be nice here, but that's more work and we don't have anything like that already.

And just to be explicit about this: nothing is set in stone feel free to push back on anything :)

[ThinkChaos]

I think it'd be nice to swap the return values so it matches map:

Suggested change

	contains(searchString string) (bool, string)
	contains(searchString string) (string, bool)

I'll put suggestions for the other uses, hopefully I don't miss anything!

[zc-devs]

I would not do this with contains method. The name implies that the main return type should be boolean. Consider error return value:

contains(searchString string) (bool, err)

err should be at the end as it is not the main response from method.

Could we rename contains to match and get rid of boolean?

// returns rule if matched, otherwise empty string
func match(searchString string) (string)

[ThinkChaos]

Suggested change

	func (cache stringMap) contains(searchString string) (bool, string) {
	func (cache stringMap) contains(searchString string) (string, bool) {

[ThinkChaos]

Suggested change

	return false, ""
	return "", false

[ThinkChaos]

Suggested change

	return true, blockRule
	return blockRule, true

[ThinkChaos]

I think we can change this to log all the info:

Suggested change

	logger.WithField("groups", maps.Keys(matches)).Debugf("domain is allowlisted")
	logger.WithField("matches", matches).Debug("domain is allowlisted")

[ThinkChaos]

Suggested change

	logger.WithField("groups", maps.Keys(matches)).Debugf("%s is allowlisted", tName)
	logger.WithField("matches", matches).Debug("%s is allowlisted", tName)

[ThinkChaos]

Can you pass matches to handleBlock instead of msg so we can move the formatting there and deduplicate it with Resolve?

[zc-devs]

resolver/blocking_resolver.go:383 passes a string:

resp, err := r.handleBlocked(logger, request, question, "BLOCKED (ALLOWLIST ONLY)")

Could we return custom type from r.matches(...) and override String() method?

[ThinkChaos]

Also pass maches to handleBlocked here.

[codecov]

Codecov Report

Attention: Patch coverage is 98.33333% with 1 lines in your changes are missing coverage. Please review.

Project coverage is 94.28%. Comparing base (fe84ab8) to head (9e59fab).
Report is 77 commits behind head on main.

Files	Patch %	Lines
resolver/blocking_resolver.go	94.44%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1489      +/-   ##
==========================================
+ Coverage   93.88%   94.28%   +0.39%     
==========================================
  Files          78       78              
  Lines        6361     5018    -1343     
==========================================
- Hits         5972     4731    -1241     
+ Misses        300      196     -104     
- Partials       89       91       +2     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[zc-devs]

Could you also please add a couple checks in tests ...
... copy past the rules instead of typing them out.

Sorry, I don't understand what you want. There are checks for the rules in blocking_resolver_test.go. And I've copy-pasted tests, not typed manually. Could you provide an example?