Alerting: Update provisioning to validate user-defined UID on create #73793
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
yuri-tceretian
added
area/alerting
yuri-tceretian
requested review from
rwwiv,
JacobsonMT,
grobinson-grafana,
mildwonkey,
suntala and
yangkb09
and removed request for
a team
yuri-tceretian
changed the title
yuri-tceretian
changed the title
brendamuir
reviewed
Aug 25, 2023
docs/sources/alerting/set-up/provision-alerting-resources/file-provisioning/index.md
Outdated
Show resolved
Hide resolved
docs/sources/alerting/set-up/provision-alerting-resources/file-provisioning/index.md
Outdated
Show resolved
Hide resolved
Co-authored-by: brendamuir <100768211+brendamuir@users.noreply.github.com>
rwwiv
approved these changes
Aug 29, 2023
alexweav
approved these changes
Sep 7, 2023
There was a problem hiding this comment.
LGTM, nice approach with making it so only newly created objects uptake this, so it's not breaking.
What's here is good, though I suspect we could go further - check the PUT for contact points:
What happens if you PUT /contact-points/
with:
{
...
"uid": "some-long-invalid-uid"
}
I honestly don't remember the behavior here - does it try to update the actual UID of the contact point? If so, we could potentially also attempt to validate in this case too (as long as we don't break updates if the path UID is already invalid to begin with).
Co-authored-by: Alexander Weaver <weaver.alex.d@gmail.com>
I just tested it and uid in the payload is ignored. Perhaps we need to fail the request if uid is specified. |
chauchausoup
pushed a commit
to chauchausoup/grafana
that referenced
this pull request
Sep 15, 2023
…rafana#73793) * add ValidateUID to util * provisioning to validate UID on rule creation --------- Co-authored-by: brendamuir <100768211+brendamuir@users.noreply.github.com> Co-authored-by: Alexander Weaver <weaver.alex.d@gmail.com>
rwwiv
pushed a commit
that referenced
this pull request
Oct 2, 2023
…73793) * add ValidateUID to util * provisioning to validate UID on rule creation --------- Co-authored-by: brendamuir <100768211+brendamuir@users.noreply.github.com> Co-authored-by: Alexander Weaver <weaver.alex.d@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What is this feature?
Fixes provisioning service to validate user-assigned UID of alert rule and contact points, and return error if the UID does not meet the requirements.
Validation does not affect the update operation and therefore, existing resources will not be affected.
Why do we need this feature?
To enforce uniform rules for UIDs across all APIs and databases. In SQLite mode, the long UID will be accepted because the field has TEXT type. However, in MySQL and Postgres - the UID will be rejected by the database.
Also, it will help prevent users from getting in trouble while using manually assigned UIDs. For example, UID like
my=abcwill be accepted by provisioning but user will not be able to reach out the rule via UI.Who is this feature for?
[Add information on what kind of user the feature is for.]
Which issue(s) does this PR fix?:
Fixes #62904
Special notes for your reviewer:
Please check that: