feat: add AwsS3EntityProvider as replacement for AwsS3DiscoveryProcessor

[pjungermann]

Add a new provider AwsS3EntityProvider as a replacement for the now deprecated
AwsS3DiscoveryProcessor.

The new provider will scan configured S3 buckets (with optional) prefix and
add Location entities for all discovered catalog files.

These Location entities will then be processed as usual.

At each execution, the provider will apply a full mutation, replacing all previous
entities with the new entities/state.

Relates-to: #10183
Signed-off-by: Patrick Jungermann Patrick.Jungermann@gmail.com

Hey, I just made a Pull Request!

✔️ Checklist

• A changeset describing the change and affected packages. (more info)
• Added or updated documentation
• Tests for new functionality and regression tests for bug fixes
• Screenshots attached (for UI changes)
• All your commits have a Signed-off-by line in the message. (more info)

[github-actions]

Changed Packages

Package Name	Package Path	Changeset Bump	Current Version
@backstage/plugin-catalog-backend-module-aws	plugins/catalog-backend-module-aws	patch	v0.1.4-next.1

[jhaals]

Nice work Patrick! 🙌 I've added some suggestions :)

[pjungermann]

I rebased on master since PR #10454 was merged to make it a bit more clean here

[benjdlambert]

Hmm just wondering if we should skip the deprecation of the older stuff for now, just until we can confirm that the provider API's that we've settled on are right and do everything that we want before losing support for things that might have been supported in the Processor approach? Does that make sense for now at least?

[pjungermann]

Hmm just wondering if we should skip the deprecation of the older stuff for now, just until we can confirm that the provider API's that we've settled on are right and do everything that we want before losing support for things that might have been supported in the Processor approach? Does that make sense for now at least?

@benjdlambert the provider does the same thing as the processor -- just that changes will not cause orphans. Also, deprecating it will not remove it yet. This breaking change could come at a later step.

But of course, deprecating it suggests users to migrate.

At the moment, I don't see a value of the processor anymore though. But maybe I miss something.

If you prefer to remove the deprecation it can be done, of course. Not sure about the docs then though. I would find it a bit confusing to have both there (as user).

[benjdlambert]

Yeah sorry, I didn't mean in your implementation, I just meant from our side let's not get people to migrate until we're settled on Providers for the catalog. Maybe you could break the documentation up into Recommended and Other? @freben thoughts here on what we should be encouraging?

[pjungermann]

@benjdlambert as a user, I would prefer providers due to the orphans created when using processors.

Also a reason why I contributed this one and plan to contribute a few more.

As next level, I would see event-based updates vs those (full) syncs. A combination like initial full sync + event-based updates + full syncs once in a while as auto-healing would work fine.

For event-based updates, webhook-based change events as from SCM systems or other evens like S3 events can be interesting, maybe buffered in a queue; so general JMS support might make sense. Inside backstage, this could be solved with adaptors for the different providers converting events into a unified event schema or triggering APIs directly.
I know there are a couple of thoughts floating around for this and all these need to go through an RFC first.
Just for context.

[pjungermann]

processors are still great to enhance/modify entities. Ingestion I would leave to providers.

[freben]

Man, it's getting way too late, some early comments before reading through fully

[pjungermann]

just added the option to omit the provider ID in the config for the single config use case using "default" as ID.

# app-config.yaml

catalog:
  providers:
    awsS3:
      # uses "default" as provider ID
      bucketName: sample-bucket
      prefix: prefix/ # optional
      region: us-east-2 # optional, uses the default region otherwise

[pjungermann]

@Rugvip @freben I believe it is ready to be merged :-)

[freben]

Let's merge and tweak!

[freben]

thought for the future: this actually can never be undefined at the current point in time, but if we ever changed the behavior to not add a default entry silently, it might have been wise to be defensive here and throw an error if integration turned out to be undefined

[pjungermann]

good point. I can create a PR to add this.

[pjungermann]

follow-up PR #10697

[freben]

we would have to check if the target was really an amazon one right?

[pjungermann]

We already check these cases in the lines before. If we don't point to the real AWS S3, we need to provide the endpoint config property (e.g., when LocalStack is used, etc.). So, I'd say it is already covered.

[pjungermann]

I just realized that applying the "allow" catalog rule to locations emitted by an entity provider only supports the global config.

For the awsS3 processor, this was not really the case as the processor's Location can have a the Location-specific "allow" rule and itself only emits the entities contained within the S3 objects/catalog files. Hence, the rule was applied successfully.

For other processors which emit Locations as well like the SCM-related processors for github, gitlab, bitbucket, etc. should be impacted by this limitation as well.

In order to mitigate this, you need to ensure that to be added entities are allowed by the global rule.

Not yet sure what would be the right strategy to have a custom configuration for the provider (instance) and be more restrictive at the global rule. 🤔

[pjungermann]

issue #12880 as follow up related to the "allow" rule