ci(aio): change AIO preview server stuff to use CircleCI

[petebacondarwin]

The system now waits for a CircleCI webhook to tell the upload server that a build has completed.
The upload server then pulls down the build artifact and passes it along as before to the rest of the preview creation logic.

This means that there is no need to store a secret on CircleCI for pushing the artifacts to the upload server; which means that we no longer rely upon JWT.

The downloaded artifact is stored in a temp location; this is cleared out along with the actual preview builds by the periodic cleanup task.

There are some (self-serving) changes to the testing of components that were not significantly changed for this PR. This includes more use of async/await for managing async tests; and also making some API public (rather than protected). This allows us to unit test, while maintaining type safety. Previously, we had to cast to any which meant that changes to the API may not be passed through to the unit tests.

TODO:

• check for CI success before processing
• consider not downloading an artifact if it has been downloaded already
• fix up / write more e2e tests
• update the docs
• consider renaming "upload server" to "preview server"
• configure the rest of the environment variables for the new processing
• ascertain whether we need a CircleCI access token for making the GET requests
• work out how (and when) to run the PWA-score test; probably by the preview-server triggering a specific CircleCI job via API

[IgorMinar]

at a high level this looks good. I'll let @gkalpak take a more thorough look through all the changes.

[IgorMinar]

can we call this file with a more specific name? maybe aio-snapshot.tgz?

[petebacondarwin]

How about aio/aio-snapshot.tgz?

[gkalpak]

Half-way through (mostly reviewed anything outside scripts-js/).

[gkalpak]

AFAICT, destination needs to be kept in sync with AIO_ARTIFACT_PATH in preview server's Dockerfile. It is a good idea to add a comment about that too 😁

[gkalpak]

Why this change?

[petebacondarwin]

This is because we want to test failures where the artifact is too large. Rather than having to create an enormous file, I just set this a "bit" lower :-)

[gkalpak]

But why set it a "bit" lower (for tests)?

[petebacondarwin]

I don't understand the question. I set it lower because in the tests we now actually create a mock file that is returned from the mock CircleCI API. To test that the max-size check is working we would have to create a mock file that is larger than 20971520 bytes. What is the point of that when we can just set the limit to something smaller?

[gkalpak]

Not alphabetical order 😭

[gkalpak]

💯

[IgorMinar]

could we jump to v10 instead?

[petebacondarwin]

I'll see if we can

[petebacondarwin]

It looks like the JS tests all pass so we should be fine with Node 10

[gkalpak]

🙅‍♂️

[gkalpak]

Still no good 🙅‍♂️

[petebacondarwin]

:-(

[gkalpak]

Note: These files are made executable on the preview server. So there is no need to have them executable here (unless you want to execute them outside of the docker container...which you probably shouldn't be doing 😛).

[gkalpak]

This shouldn't be necessary?

[gkalpak]

These new scripts (dev.sh, run-tests.sh, test-env.sh) should be documented in overview--scripts-and-commands.md.

[petebacondarwin]

Done

[gkalpak]

Are you sure?

[petebacondarwin]

They are actually documented in misc--debug-docker-container.md. I'll add a bit to overview--scripts-and-commands.md for good measure.

[gkalpak]

I feel a littlevery uncomfortable having this on the production server 😱

[gkalpak]

Still feeling uncomfortable.
As discussed, we could have these scripts in a directory that is not included in the docker container by default, but could be explicitly attached (e.g. as a volume).

[petebacondarwin]

This file no longer exists. It has been replaced by verify-setup-and-log, which no longer deletes anything:

aio-verify-setup
ls -t /var/log/aio/upload-server-verify* | head -1 | xargs cat

[gkalpak]

What is this script? 😱 😱 😱

[petebacondarwin]

@gkalpak I have addressed yourr comments and reordered the commits. But I still have some tidying up to do in the TypeScript files - later today.

[petebacondarwin]

So the key change here is that we now must also clean the downloads folder, which is populated with artifacts downloaded from CircleCI.

[petebacondarwin]

Note that the specific GitHub API classes (like Teams and Pull Requests) now use this helper class by composition rather than inheritance. Therefore I had to make getPaginated a public method to expose it to these classes.

[gkalpak]

Why using composition over inheritance?

[petebacondarwin]

Composition provides a number of benefits. We only need to create on instance of the underlying GithubApi service, we can test that service independently of the subclasses that use it; and the clients of this service get a clean public API to work against.

[petebacondarwin]

Throwing and catching is simply to capture the stack trace to make debugging easier.

[petebacondarwin]

I wonder if we need to use a Dependency Injection framework here? :-P

[petebacondarwin]

I converted these methods to static because really creating an instance of this class was unnecessary - there is not state in the class. The only reason I didn't pull them out into independent exported functions is that it is nice to have them in a container so that it is simple to spy/mock them for testing.

[petebacondarwin]

Here is the meat of the change to this file - the new handler for the circle-build request.

[petebacondarwin]

I don't believe I made any substantive change to the pr-updated request handler, other than a sprinkling of await.

[mary-poppins]

You can preview 2c4fc68 at https://pr23576-2c4fc68.ngbuilds.io/.

[angular-automatic-lock-bot]

This issue has been automatically locked due to inactivity.
Please file a new issue if you are encountering a similar or related problem.

Read more about our automatic conversation locking policy.

_{This action has been performed automatically by a bot.}