Migrate Existing Session Data to Redis and Begin Reading It #58019
Conversation
…sed sessions to redis-based sessions with no user impact
…erlying Rails code
… the redis cache without actually relying on it.
| request.set_header("action_dispatch.request.unsigned_session_cookie", {}) | ||
| write_session(request, session_id, session_data.except("session_id"), request.session_options) |
There was a problem hiding this comment.
Between these two lines of code, the session only exists in memory, is there anything bad that happens if we clear the cookie and then fail to write the session? Or is it fine if we throw a 500 with the cookie cleared?
There was a problem hiding this comment.
Oh, good catch! I'm not entirely sure how the 500 error response interacts with manually-set headers like this, but my expectation is that we would indeed lose the cookie data in that case. I'll swap these lines, and add an error handler just in case.
| @@ -1,10 +1,10 @@ | |||
| require 'cdo/cookie_helpers' | |||
| require_relative '../custom_session_store/mirror_cookies_in_redis_store' | |||
| require_relative '../custom_session_store/migrate_cookies_to_redis_store' | |||
There was a problem hiding this comment.
Is mirror_cookies_in_redis_store still in use? Does that file need to go away here?
There was a problem hiding this comment.
It isn't; I had it in my head that I was going to clean that up later when I eventually remove the MigrateCookiesStore logic, but I guess there's no reason not to do so now
… Redis. Also add an error handler for the whole operation
|
Do we need to update our Rack Request extension? It seems to try to decrypt the session cookie to extract the user_id, I'm guessing so that Pegasus knows who the user is. code-dot-org/lib/cdo/rack/request.rb Lines 90 to 111 in 1ad9b87 |
|
This is a foundational change to our web applications. Are there ways we can reduce risk? Can we roll out this change to a subset of users/sessions and increase that percentage over time to all users? Do we have easy ways to rollback without a deploy? I'm assuming/hoping that any unanticipated negative impacts of this change would actually be smaller than the several hundred requests a day that are failing due to Cookie overflow 😅 |
Oh damn, yes we do. I did not know this existed; I'm hoping that Drone tests will catch this now that they're configured correctly.
Not easily; we'd have to implement a session store that supports both cookie-based and redis-based sessions simultaneously, which would involve significantly more custom logic than what we've done so far.
No, not at all. I'm planning to put some work into implementing another custom session store that will allow us to rollback this change at all, but by default attempting to switch back from a Redis-based session storage strategy that just puts a string in the cookie to a Cookie-based session storage strategy that expects the cookie to contain a Hash would be extremely disruptive. |
…58232) * Update Legacy `user_id` Implementation to Support New Session Store In response to us moving session data out of the cookie and into a persistent store, also update the legacy implementation of `user_id` we have in Rack to read the user id from that store rather than the cookie. * add comments * reimplement private method rather than calling it in a hacky way * Add unit tests for Cdo::RequestExtension In addition to adding a unit test for the new piece of functionality being added in this PR, also add some tests for existing functionality which has been heretofore untested. * use dynamic rather than hardcoded test values, since the underlying data being tested gets regularly updated
Follow-up to #57972. We have been successfully writing session data to Redis, so now it's time to start using it.
This PR switches us from a cookie-based session store to a Redis-based one provided by the
redis-actionpackgem. It also includes some temporary logic which will gracefully migrate any sessions that are still trying to store data in the cookie into redis.Links
Testing story
Tested locally and and on an adhoc that user registration, authentication, and deauthentication all work as expected. Also verified that I can start a session on the
stagingbranch, then switch to this branch and restart the server to pick up the changes, and then continue my session in the browser with no disruption.Deployment strategy
We should plan to deploy this during a low traffic time when we are able to quickly respond with a revert in case things go wrong.
Follow-up work
After all (or most) sessions have been successfully migrated into Redis, we can remove the migration logic and use a vanilla un-customized Redis-based session store.
PR Checklist: