[#2756] Apply config through the airy controller

[ljupcovangelski]

addresses #2756

A draft PR for proof of concept and also to get some feedback 🙏 .

The CLI returns this:

$ airy config apply
Configured component  Enabled
security              true
sources-facebook      true
sources-google        true
integration-webhook   true

The endpoint accepts json

{
  "security": {
    "allowedOrigins": "*",
    "jwtSecret": "secret",
    "systemToken": "test"
  },
  "components": {
    "sources": {
      "facebook": {
        "token1": "token",
        "token2": "token"
      }
    }
  }
}

and also the legacy yaml format of the airy.yaml file.

[ljupcovangelski]

Moved the payloads outside of the httpclient package, because they are also used by the controller.

[ljupcovangelski]

This is currently only used by the ConfigApplyResponsePayload, so not sure if it should be here or in payloads. Also Removed is just to be in line with the current concept (when a configuration is applied without a component - that component is removed).

I'd be happy to remove this and add a separate endpoint for removing a component.

[chrismatix]

As mentioned I would suggest that we nest the config inside a data field. This will make the API more maintainable as we can add more options to the request body later when needed.

[juan-sebastian]

Maybe having everything inside components. Also if we add more options specially mandatory options. That will create a breaking change anyway. Not sure having a nested value will be necessary

[chrismatix]

In this case, the request should fail and terminate early (same below)

[ljupcovangelski]

In this case, the request should fail and terminate early (same below)

I am not sure about this. The components are independent from each-other, so an error in deploying one component/configMap should not impact the ones that follow after.

We can return perhaps a list of failed components

[chrismatix]

It's true that we could do that but for clients, a completely failed state is easier to recover from than a state that is half failed.

What do you return for a request that only did 50% of what you asked it to? 200 aka "success"? In that case, clients may not be aware that anything failed at all

[ljupcovangelski]

Yes, I get it 👍 We can return the failed-components in a separate list, but I think as it is very unlikely that only one configMap fails - I will set it to return a 500 - InternalServerError.
From the UI I assume it will mostly be used for applying a single component at a time anyway.

[chrismatix]

Payload needs to follow our snake_case convention

[ljupcovangelski]

Payload needs to follow our snake_case convention

Thanks 👍. I changed it for security and data. For the values which were in the airy.yaml (allowedOrigins, systemToken, jwtSecret, ...) I suggest we do it in a subsequent PR, as it has lots of changes across almost all components.

[chrismatix]

We want to make this API the new source of truth for interacting with Airy. Therefore I'd argue that as with all other endpoints we also convert these keys into snake_case so that the interface is uniform.

[chrismatix]

Delete outer {} since this isn't valid json

[chrismatix]

I think we can use the variable that's already stored in s.namespace here

[chrismatix]

Can data ever be non-null? If no, then I'd remove it.

Also: security isn't a component

[ljupcovangelski]

Do we need another endpoint for applying the configuration forsecurity?

[juan-sebastian]

I changed the cli part to use airy-controller endpoint. #3130

[chrismatix]

same here

[juan-sebastian]

I will fix this in my PR #3221

[ljupcovangelski]

• Added another endpoint for updating the general configuration of Airy Core - cluster.update. Currently only security can be configured, but we can use that endpoint to also update other generic configuration in the future.
• airy config apply applies both components through components.update and the cluster config through cluster.update.
• Components are deleted only by explicitly calling components.delete.
• Added conversion for the security attributes and the components attributes to snake_case when posting to the API. The controller converts them back to lower_camel_case before writing the configuration, so this is compatible with the current airy.yaml file and the data that the components expect in the configMaps.
• When a configMap is not applied, the endpoint returns 500, even though some of the configMaps might have applied successfully before that. We return a list of which configMaps were applied and which one failed, just in case this is needed on the client side.
• Updated the docs

[juan-sebastian]

Look good. Juste some small things to adresse and it will be good to merge

[juan-sebastian]

I did some minor changes it looks good now to me

[chrismatix]

Does this actually work yet? 🤔 When I run the image in my local cluster this endpoint returns:

{"components":{}}

Or perhaps there is something more than add the image that I have to do :)

[ljupcovangelski]

Does this actually work yet? thinking When I run the image in my local cluster this endpoint returns:

{"components":{}}

Or perhaps there is something more than add the image that I have to do :)

You would also need to add the ingress rules.

[chrismatix]

This request is directly from within the cluster. If it was a networking issue the response would be a 404. Will do more testing later

[juan-sebastian]

Perfect. great work!! Thanks for adding the label everywhere