Make sync continuous

[sssoleileraaa]

Description

Followup from #652
Fixes #672
Fixes #671

This is the last PR for the sync architecture change to have a continuous metadata syncs that occur frequently and unpause the queue when they succeed

This is dependent on the following PRs getting merged first (for now I cherry-picked them here so others working on the client will have visibility):

• remove sync_api when files are missing for opening, exporting, or printing a file: update gui instead of sync when file missing #724
• removing sync_api when a reply is sent: no longer sync after sending a reply #722

This PR includes the following changes:

• removing the metadata queue in favor of a background thread that doesn't pause when other queues are paused
• removing the last sync_api call on login and removing sync_api all together

Test Plan

1. See that the GUI still shows the active sync animation in the top left of the client
2. Force the queues to pause and see how our background sync thread will continue to run syncs until one succeeds and unpauses the queues

[sssoleileraaa]

This cannot be merged until #732 is merged, which removes user-initiated syncs via the Refresh button in the upper left-hand corner of the client.

[sssoleileraaa]

this is where we used to call sync_api on login which i replaced with starting the background sync thread

[sssoleileraaa]

when we log out we need to make sure the background sync thread does not continue making api requests to get new data from the server

[sssoleileraaa]

I left some inline comments to help with review. This is ready. Update: Actually it makes sense that this should be blocked until the current sync_api removal prs are merged.

[sssoleileraaa]

This is ready for review. The last PR dependency this relies on is this one: #737 (removal of sync_api from the gui and controller when file is missing).

For now you can cherry-pick the 2 commits from that PR to here to see tests pass and review the code.

[sssoleileraaa]

This is no longer blocked

[sssoleileraaa]

rebased on master branch and resolved conflicts with all the great changes coming in

[redshiftzero]

I started looking at this today - this is looking pretty good to me but I'll finish review tomorrow AM and drop any comments in the PR for when you sign on @creviera

[sssoleileraaa]

review comments addressed

[sssoleileraaa]

rebased on master branch and signed commits

[redshiftzero]

excellent, my comments above were addressed, thanks! so there's an unexpected behavior that I observed when I was running this in Qubes: when I paused my app-staging VM in order to test the pause behavior, I got the login screen and a "session expired, login again" [paraphrasing] message - have you seen this too? My expectation was that I'd see a pause and the retry banner... I'm not sure if it's related to this change yet

[sssoleileraaa]

when I paused my app-staging VM in order to test "session expired, login again" [paraphrasing] message - have you seen this too?

I have not seen this but I'll work on repro'ing. This would mean that the MetadataSyncJob is seeing an ApiInaccessibleError when this occurs, so I'll pay close attention to the logs, and will also check master. I believe we're correctly interpreting AuthError to mean the token is invalid/expired, so my guess is that the local api_client is getting set to None somewhere when it shouldn't be.

Update:

We are correctly interpreting AuthError to mean the token is invalid/expired but the SDK is incorrectly sending request timeout and other types of errors as AuthErrors. See comment below for explanation.

[sssoleileraaa]

It looks like this is occurring because of this issue I just opened up in the SDK repo: freedomofpress/securedrop-sdk#109

The reason this has gone unnoticed on master is because we don't ask the user to provide credentials when we see an ApiInaccessibleError. Instead we just pause the queue the way we pause the queue for request timeouts as well.

Once the client begins receiving RequestTimeoutError instead of an AuthError this will work. I also wrote up in that sdk issue that it would be valuable to be able to receive a new ConnectTimeout error to indicate that we can't reach the server as opposed to a request timeout or read timeout.

[kushaldas]

While running the branch, I am getting the following error in the log:

2020-02-06 15:46:12,722 - securedrop_client.queue:145(process) ERROR: Skipping job
2020-02-06 15:46:12,803 - securedrop_client.api_jobs.downloads:149(_download) INFO: File downloaded to /tmp/tmp.lkSEe1s2av/data/colorless_throes/1-colorless_throes-msg.txt
2020-02-06 15:46:12,910 - securedrop_client.api_jobs.downloads:168(_decrypt) INFO: File decrypted: 1-colorless_throes-msg.txt (decrypted file: )
2020-02-06 15:46:12,912 - securedrop_client.queue:144(process) ERROR: Job <securedrop_client.queue.RunnableQueue object at 0x7fdca48094c8> raised an exception: AttributeError: 'RunnableQueue' object has no attribute 'pinged'
2020-02-06 15:46:12,913 - securedrop_client.queue:145(process) ERROR: Skipping job
2020-02-06 15:46:13,019 - securedrop_client.api_jobs.downloads:149(_download) INFO: File downloaded to /tmp/tmp.lkSEe1s2av/data/colorless_throes/2-colorless_throes-msg.txt
2020-02-06 15:46:13,177 - securedrop_client.api_jobs.downloads:168(_decrypt) INFO: File decrypted: 2-colorless_throes-msg.txt (decrypted file: )
2020-02-06 15:46:13,179 - securedrop_client.queue:144(process) ERROR: Job <securedrop_client.queue.RunnableQueue object at 0x7fdca48094c8> raised an exception: AttributeError: 'RunnableQueue' object has no attribute 'pinged'
2020-02-06 15:46:13,179 - securedrop_client.queue:145(process) ERROR: Skipping job
2020-02-06 15:46:13,286 - securedrop_client.api_jobs.downloads:149(_download) INFO: File downloaded to /tmp/tmp.lkSEe1s2av/data/prepositional_technicolor/1-prepositional_technicolor-msg.txt

[sssoleileraaa]

ah looks like a pinged signal was missed in the removal

[redshiftzero]

all my comments were addressed, and kushal's comment was addressed in the latest change so I'm gonna approve this 🚢

[redshiftzero]

there is still the outstanding issue discovered during review here, but that will be resolved separately as part of freedomofpress/securedrop-sdk#109