otter/models/cass.py

"""
Cassandra implementation of the store for the front-end scaling groups engine
"""

import functools
import json
import time
import uuid
from datetime import datetime
from itertools import cycle, takewhile

from characteristic import attributes

from effect import Effect, TypeDispatcher, parallel
from effect.do import do, do_return

from jsonschema import ValidationError

from kazoo.protocol.states import KazooState

from pyrsistent import freeze

from silverberg.client import ConsistencyLevel

from toolz.curried import filter, map
from toolz.dicttoolz import assoc, keymap
from toolz.functoolz import compose

from twisted.internet import defer

from txeffect import deferred_performer

from zope.interface import implementer

from otter.log import log as otter_log
from otter.models.interface import (
    GroupNotEmptyError,
    GroupState,
    IAdmin,
    IScalingGroup,
    IScalingGroupCollection,
    IScalingGroupServersCache,
    IScalingScheduleCollection,
    NoSuchPolicyError,
    NoSuchScalingGroupError,
    NoSuchWebhookError,
    PoliciesOverLimitError,
    ScalingGroupOverLimitError,
    ScalingGroupStatus,
    UnrecognizedCapabilityError,
    WebhooksOverLimitError,
    next_cron_occurrence)
from otter.util import timestamp, zk
from otter.util.config import config_value
from otter.util.cqlbatch import Batch, batch
from otter.util.deferredutils import with_lock
from otter.util.hashkey import generate_capability, generate_key_str
from otter.util.retry import repeating_interval, retry, retry_times
from otter.util.weaklocks import WeakLocks


LOCK_PATH = '/locks'

DEFAULT_CONSISTENCY = ConsistencyLevel.QUORUM

QUERY_LIMIT = 10000

# Max number of seconds to wait to acquire group kazoo lock. This should
# not be held for more than 10-15ms in normal circumstances but we keep it high
# for safety sake. We don't want it to be < 30 since any request will be
# terminated by CLB by then.
ACQUIRE_TIMEOUT = 10
# Ideally release should not even timeout but keep this to capture any unwanted
# error
RELEASE_TIMEOUT = 10


@attributes(['query', 'params', 'consistency_level'])
class CQLQueryExecute(object):
    """
    An intent to execute CQL query
    """


@deferred_performer
def perform_cql_query(conn, disp, intent):
    """
    Perform CQLQueryExecute intent using given silverberg connection
    """
    return conn.execute(
        intent.query, intent.params, intent.consistency_level)


def get_cql_dispatcher(connection):
    """
    Get dispatcher with `CQLQueryExecute`'s performer in it

    :param connection: Silverberg connection
    """
    return TypeDispatcher({
        CQLQueryExecute: functools.partial(perform_cql_query, connection)
    })


def cql_eff(query, params={}, consistency_level=DEFAULT_CONSISTENCY):
    """
    Return Effect of CQLQueryExecute intent
    """
    return Effect(
        CQLQueryExecute(query=query, params=params,
                        consistency_level=consistency_level))


def serialize_json_data(data, ver):
    """
    Serialize json data to cassandra by adding a version and dumping it to a
    string
    """
    dataOut = data.copy()
    dataOut["_ver"] = ver
    return json.dumps(dataOut)

# ACHTUNG LOOKENPEEPERS!
#
# Batch operations don't let you have semicolons between statements.  Regular
# operations require you to end them with a semicolon.
#
# If you are doing a INSERT or UPDATE query, it's going to be part of a batch.
# Otherwise it won't.
#
# Thus, selects have a semicolon, everything else doesn't.

# NOTE about deleted groups: Make sure every query involving groups *either*
# filters out deleting=false, *or* includes the `deleting` query so that
# _unmarshal_state can parse the status correctly.
_cql_view = ('SELECT {column}, created_at FROM {cf} '
             'WHERE "tenantId" = :tenantId AND "groupId" = :groupId '
             'AND deleting=false;')
_cql_view_policy = (
    'SELECT data, version FROM {cf} '
    'WHERE "tenantId" = :tenantId AND "groupId" = :groupId '
    'AND "policyId" = :policyId;')
_cql_view_webhook = (
    'SELECT data, capability FROM {cf} '
    'WHERE "tenantId" = :tenantId AND '
    '"groupId" = :groupId AND "policyId" = :policyId AND '
    '"webhookId" = :webhookId;')
_cql_create_group = (
    'INSERT INTO {cf}("tenantId", "groupId", group_config, '
    'launch_config, active, pending, "policyTouched", paused, '
    'desired, created_at, deleting, suspended) '
    'VALUES (:tenantId, :groupId, :group_config, '
    ':launch_config, :active, :pending, :policyTouched, '
    ':paused, :desired, :created_at, false, false) '
    'USING TIMESTAMP :ts')
_cql_view_manifest = (
    'SELECT "tenantId", "groupId", group_config, '
    'launch_config, active, pending, "groupTouched", '
    '"policyTouched", paused, desired, created_at, status, error_reasons, '
    'deleting, suspended FROM {cf} '
    'WHERE "tenantId" = :tenantId AND "groupId" = :groupId')
_cql_insert_policy = (
    'INSERT INTO {cf}("tenantId", "groupId", "policyId", data, version) '
    'VALUES (:tenantId, :groupId, :{name}policyId, :{name}data, '
    ':{name}version)')
_cql_insert_group_state = (
    'INSERT INTO {cf}("tenantId", "groupId", active, pending, "groupTouched", '
    '"policyTouched", paused, desired, suspended) '
    'VALUES(:tenantId, :groupId, :active, :pending, :groupTouched, '
    ':policyTouched, :paused, :desired, :suspended) '
    'USING TIMESTAMP :ts')

# --- Event related queries
_cql_insert_group_event = (
    'INSERT INTO {cf}(bucket, "tenantId", "groupId", "policyId", trigger, '
    'version) '
    'VALUES (:{name}bucket, :tenantId, :groupId, :{name}policyId, '
    ':{name}trigger, :{name}version)')
_cql_insert_group_event_with_cron = (
    'INSERT INTO {cf}(bucket, "tenantId", "groupId", "policyId", trigger, '
    'cron, version) '
    'VALUES (:{name}bucket, :tenantId, :groupId, :{name}policyId, '
    ':{name}trigger, :{name}cron, :{name}version)')
_cql_insert_cron_event = (
    'INSERT INTO {cf}(bucket, "tenantId", "groupId", "policyId", trigger, '
    'cron, version) '
    'VALUES (:{name}bucket, :{name}tenantId, :{name}groupId, :{name}policyId, '
    ':{name}trigger, :{name}cron, :{name}version);')
_cql_fetch_batch_of_events = (
    'SELECT "tenantId", "groupId", "policyId", "trigger", cron, version '
    'FROM {cf} '
    'WHERE bucket = :bucket AND trigger <= :now LIMIT :size;')
_cql_delete_bucket_event = (
    'DELETE FROM {cf} WHERE bucket = :bucket '
    'AND trigger = :{name}trigger AND "policyId" = :{name}policyId;')
_cql_oldest_event = 'SELECT * from {cf} WHERE bucket=:bucket LIMIT 1;'

_cql_insert_webhook = (
    'INSERT INTO {cf}("tenantId", "groupId", "policyId", "webhookId", data, '
    'capability, '
    '"webhookKey") VALUES (:tenantId, :groupId, :policyId, :{name}Id, '
    ':{name}, :{name}Capability, :{name}Key)')
_cql_update = (
    'INSERT INTO {cf}("tenantId", "groupId", {column}) '
    'VALUES (:tenantId, :groupId, {name}) USING TIMESTAMP :ts')
_cql_update_webhook = (
    'INSERT INTO {cf}("tenantId", "groupId", "policyId", "webhookId", data) '
    'VALUES (:tenantId, :groupId, :policyId, :webhookId, :data);')
_cql_delete_group = (
    'DELETE FROM {cf} USING TIMESTAMP :ts '
    'WHERE "tenantId" = :tenantId AND "groupId" = :groupId')
_cql_delete_all_in_group = (
    'DELETE FROM {cf} WHERE "tenantId" = :tenantId AND '
    '"groupId" = :groupId{name}')
_cql_delete_all_in_policy = (
    'DELETE FROM {cf} WHERE "tenantId" = :tenantId '
    'AND "groupId" = :groupId AND "policyId" = :policyId')
_cql_delete_one_webhook = (
    'DELETE FROM {cf} WHERE "tenantId" = :tenantId AND '
    '"groupId" = :groupId AND "policyId" = :policyId AND '
    '"webhookId" = :webhookId')
_cql_list_states = (
    'SELECT "tenantId", "groupId", group_config, active, pending, '
    '"groupTouched", "policyTouched", paused, desired, created_at, status, '
    'error_reasons, suspended '
    'FROM {cf} WHERE "tenantId"=:tenantId AND deleting=false;')
_cql_list_policy = (
    'SELECT "policyId", data FROM {cf} WHERE '
    '"tenantId" = :tenantId AND "groupId" = :groupId;')
_cql_list_webhook = (
    'SELECT "webhookId", data, capability FROM {cf} '
    'WHERE "tenantId" = :tenantId AND "groupId" = :groupId '
    'AND "policyId" = :policyId;')
_cql_list_all_in_group = ('SELECT * FROM {cf} WHERE "tenantId" = :tenantId '
                          'AND "groupId" = :groupId {order_by};')

# Webhook keys table
_cql_insert_webhook_key = (
    'INSERT INTO {cf}("webhookKey", "tenantId", "groupId", "policyId") '
    'VALUES (:{name}Key, :tenantId, :groupId, :policyId)')
_cql_find_webhook_token = (
    'SELECT "tenantId", "groupId", "policyId" FROM {cf} '
    'WHERE "webhookKey" = :webhookKey;')
_cql_del_on_key = 'DELETE FROM {cf} WHERE "webhookKey"=:{name}webhookKey'

_cql_count_for_tenant = (
    'SELECT COUNT(*) FROM {cf} '
    'WHERE "tenantId"=:tenantId {deleting};')
_cql_count_for_policy = (
    'SELECT COUNT(*) FROM {cf} '
    'WHERE "tenantId" = :tenantId AND "groupId" = :groupId '
    'AND "policyId" = :policyId;')
_cql_count_for_group = (
    'SELECT COUNT(*) FROM {cf} WHERE "tenantId" = :tenantId '
    'AND "groupId" = :groupId;')
_cql_count_all = ('SELECT COUNT(*) FROM {cf};')

# seems to be pretty quick no matter the consistency - unfortunately this only
# checks we can connect to Cassandra, and not whether the otter keyspace is
# correct, etc.
_cql_health_check = ('SELECT now() FROM system.local;')


def _paginated_list(tenant_id, group_id=None, policy_id=None, limit=100,
                    marker=None):
    """
    :param tenant_id: the tenant ID - if this is all that is provided, this
        function returns cql to list all groups

    :param group_id: the group ID - if this and tenant ID are all that is
        provided, this function returns cql to list all policies.

    :param policy_id: the policyID - if this and gorupID and tenant ID are
        provided, this function returns cql to list all webhooks.  Note that
        if this is provided and groupID is not provided, the policy ID will be
        ignored and cql to list all groups will be returned.

    :param marker: the ID of the last column of the provided keys. (e.g.
        group_id, when listing groups, policy_id, when listing policies,
        and webhook_id, when listing webhooks)

    :param limit: is the number of items to fetch

    :returns: a tuple of cql and a dict of the parameters to provide when
        executing that CQL.

    The CQL will look like:

        SELECT "policyId", data FROM {cf} WHERE "tenantId" = :tenantId AND
        "groupId" = :groupId AND "policyId" > :marker LIMIT 100;

    Note that the column family name still has to be inserted.

    Also, no ``ORDER BY`` is in the CQL, since for these are all primary keys
    sorted by cluster order (e.g. if you get all scaling groups for a tenant,
    the groups will be returned in ascending order of group ID, and if you get
    all policies for a scaling group, they will be returned in ascending order
    of policy ID)

    See http://cassandra.apache.org/doc/cql3/CQL.html#createTableOptions
    """
    params = {'tenantId': tenant_id, 'limit': limit}
    marker_cql = ''

    if marker is not None:
        marker_cql = " AND {0} > :marker"
        params['marker'] = marker

    if group_id is not None:
        params['groupId'] = group_id

        if policy_id is not None:
            params['policyId'] = policy_id
            cql_parts = [_cql_list_webhook.rstrip(';'),
                         marker_cql.format('"webhookId"')]
        else:
            cql_parts = [_cql_list_policy.rstrip(';'),
                         marker_cql.format('"policyId"')]
    else:
        cql_parts = [_cql_list_states.rstrip(';'),
                     marker_cql.format('"groupId"')]

    cql_parts.append(" LIMIT :limit;")
    return (''.join(cql_parts), params)


def _build_policies(policies, policies_table, event_table, queries, data,
                    buckets):
    """
    Because inserting many values into a table with compound keys with one
    insert statement is hard. This builds a bunch of insert statements and a
    dictionary matching different parameter names to different policies.

    :param policies: a list of policy data without ID
    :type policies: ``list`` of ``dict``

    :param policies_table: the name of the policies table
    :type policies_table: ``str``

    :param queries: a list of existing CQL queries to add to
    :type queries: ``list`` of ``str``

    :param data: the dictionary of named parameters and values passed in
        addition to the query to execute the query
    :type data: ``dict``

    :returns: a ``list`` of the created policies along with their generated IDs
    """
    outpolicies = []

    if policies is not None:
        for i, policy in enumerate(policies):
            polname = "policy{}".format(i)
            polId = generate_key_str('policy')
            queries.append(_cql_insert_policy.format(cf=policies_table,
                                                     name=polname))

            data[polname + 'data'] = serialize_json_data(policy, 1)
            data[polname + 'policyId'] = polId
            data[polname + 'version'] = uuid.uuid1()

            if policy.get("type") == 'schedule':
                _build_schedule_policy(policy, event_table, queries,
                                       data, polname, buckets)

            outpolicies.append(policy.copy())
            outpolicies[-1]['id'] = polId

    return outpolicies


def _build_schedule_policy(policy, event_table, queries, data, polname,
                           buckets):
    """
    Build schedule-type policy
    """
    data[polname + 'bucket'] = buckets.next()
    if 'at' in policy["args"]:
        queries.append(_cql_insert_group_event
                       .format(cf=event_table, name=polname))
        at_time = timestamp.from_timestamp(policy["args"]["at"])
        data[polname + "trigger"] = at_time
    elif 'cron' in policy["args"]:
        queries.append(_cql_insert_group_event_with_cron
                       .format(cf=event_table, name=polname))
        cron = policy["args"]["cron"]
        data[polname + "trigger"] = next_cron_occurrence(cron)
        data[polname + 'cron'] = cron


def _build_webhooks(bare_webhooks, webhooks_table, webhooks_keys_table,
                    queries, cql_parameters):
    """
    Because inserting many values into a table with compound keys with one
    insert statement is hard. This builds a bunch of insert statements and a
    dictionary matching different parameter names to different policies.

    :param bare_webhooks: a list of webhook data without ID or webhook keys,
        or any generated capability hash info
    :type bare_webhooks: ``list`` of ``dict``

    :param webhooks_table: the name of the webhooks table
    :type webhooks_table: ``str``

    :param queries: a list of existing CQL queries to add to
    :type queries: ``list`` of ``str``

    :param cql_parameters: the dictionary of named parameters and values passed
        in addition to the query to execute the query - additional parameters
        will be added to this dictionary
    :type cql_paramters: ``dict``

    :returns: ``list`` of the created webhooks along with their IDs
    """
    output = []
    for i, webhook in enumerate(bare_webhooks):
        name = "webhook{0}".format(i)
        webhook_id = generate_key_str('webhook')
        queries.append(_cql_insert_webhook.format(cf=webhooks_table,
                                                  name=name))
        queries.append(_cql_insert_webhook_key.format(cf=webhooks_keys_table,
                                                      name=name))

        # generate the real data that will be stored, which includes the
        # webhook token, the capability stuff, and metadata by default
        bare_webhooks[i].setdefault('metadata', {})
        version, cap_hash = generate_capability()

        cql_parameters[name] = serialize_json_data(webhook, 1)
        cql_parameters['{0}Id'.format(name)] = webhook_id
        cql_parameters['{0}Key'.format(name)] = cap_hash
        cql_parameters['{0}Capability'.format(name)] = serialize_json_data(
            {version: cap_hash}, 1)

        output.append(dict(id=webhook_id,
                           capability={'hash': cap_hash, 'version': version},
                           **webhook))
    return output


def _assemble_webhook_from_row(row, include_id=False):
    """
    Builds a webhook as per :data:`otter.json_schema.model_schemas.webhook`
    from the user-mutable user data (name and metadata) and the
    non-user-mutable capability data.

    :param dict row: a dictionary of cassandra data containing the key
        ``data`` (the user-mutable data) and the key ``capability`` (the
        capability info, stored in cassandra as:
        ``{<version>: <capability hash>}``)

    :return: the webhook, as per webhook schema
    :rtype: ``dict``
    """
    webhook_base = _jsonloads_data(row['data'])
    capability_data = _jsonloads_data(row['capability'])

    version, cap_hash = capability_data.iteritems().next()
    webhook_base['capability'] = {'version': version, 'hash': cap_hash}

    if include_id:
        webhook_base['id'] = row['webhookId']

    return webhook_base


def _check_empty_and_grab_data(results, exception_if_empty):
    if len(results) == 0:
        raise exception_if_empty
    return _jsonloads_data(results[0]['data'])


def _jsonloads_data(raw_data):
    data = json.loads(raw_data)
    if "_ver" in data:
        del data["_ver"]
    return data


def _group_status(status, deleting):
    if deleting:
        return ScalingGroupStatus.DELETING
    else:
        # TODO: #1304
        if status is None:
            return ScalingGroupStatus.ACTIVE
        elif status == 'DISABLED':
            return ScalingGroupStatus.ERROR
        else:
            return ScalingGroupStatus.lookupByName(status)


def _unmarshal_state(state_dict):
    desired_capacity = state_dict['desired']
    if desired_capacity is None:
        desired_capacity = 0

    status = _group_status(state_dict['status'],
                           state_dict.get('deleting', False))

    return GroupState(
        state_dict["tenantId"], state_dict["groupId"],
        _jsonloads_data(state_dict["group_config"])["name"],
        _jsonloads_data(state_dict["active"]),
        _jsonloads_data(state_dict["pending"]),
        state_dict["groupTouched"],
        _jsonloads_data(state_dict["policyTouched"]),
        state_dict["paused"],
        status,
        desired=desired_capacity,
        error_reasons=(state_dict["error_reasons"] or []),
        suspended=bool(state_dict["suspended"])
    )


def assemble_webhooks_in_policies(policies, webhooks):
    """
    Assemble webhooks inside policies.

    'webhooks' property will be added to each policy `dict` in `policies`. It
    will be list of webhooks taken from `webhooks`.

    :param policies: list of policy `dict` sorted based on 'id' based on
        `group_schemas.policy`
    :param webhooks: list of webhook `dict` sorted based on 'policyId' and
        'webhookId' based on `model_schemas.webhook`
    :return: policies with webhooks in them

    """
    # Assuming policies and webhooks are sorted based on policyId and
    # (policyId, webhookId) respectively
    iwebhooks = iter(webhooks)
    ipolicies = iter(policies)
    try:
        webhook = iwebhooks.next()
        policy = ipolicies.next()
        while True:
            policy.setdefault('webhooks', [])
            if policy['id'] == webhook['policyId']:
                policy['webhooks'].append(
                    _assemble_webhook_from_row(webhook, include_id=True))
                webhook = iwebhooks.next()
            elif policy['id'] < webhook['policyId']:
                policy = ipolicies.next()
            else:
                webhook = iwebhooks.next()
    except StopIteration:
        # Add empty webhooks for remaining policies
        [p.update({'webhooks': []}) for p in ipolicies]
    return policies


def verified_view(connection, view_query, del_query, data, consistency,
                  exception_if_empty, log):
    """
    Ensures the view query on the group does not get resurrected row,
    i.e. one that does not have "created_at" in it.  Any resurrected entry is
    deleted and `exception_if_empty` is raised. Also raises
    `exception_if_empty` if group's status is DELETING

    :return: Deferred that fires with result of executing view query
    """
    def _check_resurrection(result):
        if len(result) == 0:
            raise exception_if_empty
        group = result[0]
        if group.get('created_at') is None:
            # resurrected row, trigger its deletion and raise empty exception
            log.msg('Resurrected row', row=result[0], row_params=data)
            connection.execute(del_query, data, consistency)
            raise exception_if_empty
        return group

    d = connection.execute(view_query, data, consistency)
    return d.addCallback(_check_resurrection)


def _del_webhook_queries(table, webhooks):
    """
    Return queries and params to delete webhooks from webhook_keys table
    """
    queries, params = [], {}
    for i, webhook in enumerate(webhooks):
        name = 'key{}'.format(i)
        queries.append(_cql_del_on_key.format(cf=table, name=name))
        params[name + 'webhookKey'] = webhook['webhookKey']
    return queries, params


def get_client_ts(reactor):
    """
    Return EPOCH with microseconds precision synchronously
    """
    return int(reactor.seconds() * 1000000)


def _check_deleting(group, get_deleting=False):
    """
    Given a single group from reading the scaling group table, and whether
    a deleting group should be returns, either returns the group or raises
    a :class:`NoSuchScalingGroupError`.
    """
    if not get_deleting and group['deleting']:
        raise NoSuchScalingGroupError(group['tenantId'], group['groupId'])
    return group


@implementer(IScalingGroup)
class CassScalingGroup(object):
    """
    .. autointerface:: otter.models.interface.IScalingGroup

    :ivar tenant_id: the tenant ID of the scaling group - once set, should not
        be updated
    :type tenant_id: ``str``

    :ivar uuid: UUID of the scaling group - once set, cannot be updated
    :type uuid: ``str``

    :ivar connection: silverberg client used to connect to cassandra
    :type connection: :class:`silverberg.client.CQLClient`

    :ivar buckets: Scheduler buckets
    :type buckets: iterator of buckets that does not end

    :ivar kz_client: Kazoo client used for locking
    :type kz_client: :class:`txkazoo.TxKazooClient`

    :ivar reactor: Reactor used for time manipulations
    :type reactor: :class:`twisted.internet.reactor.IReactorTime` provider

    :ivar local_locks: Local locks used when modifying state
    :type local_locks: :class:`WeakLocks`

    IMPORTANT REMINDER: In CQL, update will create a new row if one doesn't
    exist.  Therefore, before doing an update, a read must be performed first
    else an entry is created where none should have been.

    Cassandra doesn't have atomic read-update.  You can't be guaranteed that
    the previous state (from the read) hasn't changed between when you got it
    back from Cassandra and when you are sending your new update/insert
    request.

    Also, because deletes are done as tombstones rather than actually deleting,
    deletes are also updates and hence a read must be performed before deletes.

    """
    def __init__(self, log, tenant_id, uuid, connection, buckets, kz_client,
                 reactor, local_locks, dispatcher):
        """
        Creates a CassScalingGroup object.
        """
        self.log = log.bind(system=self.__class__.__name__,
                            tenant_id=tenant_id,
                            scaling_group_id=uuid)
        self.tenant_id = tenant_id
        self.uuid = uuid
        self.connection = connection
        self.buckets = buckets
        self.kz_client = kz_client
        self.reactor = reactor
        self.local_locks = local_locks
        self.dispatcher = dispatcher

        self.group_table = "scaling_group"
        self.launch_table = "launch_config"
        self.policies_table = "scaling_policies"
        self.state_table = "group_state"
        self.webhooks_table = "policy_webhooks"
        self.webhooks_keys_table = "webhook_keys"
        self.event_table = "scaling_schedule_v2"
        self.servers_cache_table = "servers_cache"

    def with_timestamp(self, func):
        """
        Decorator that calls the given function with timestamp

        The timestamp returned is used when inserting/deleting/updating group.
        This is required because state updates very close in time can be
        corrupted (even if they are serial). This is because of small clock
        drifts in cass nodes.  This ensures that state updates from same node
        is always serial. This however does not (yet) handle simultaneous
        executions from multiple nodes.
        """
        @functools.wraps(func)
        def wrapper(*args):
            return func(get_client_ts(self.reactor), *args)
        return wrapper

    def view_manifest(self, with_policies=True, with_webhooks=False,
                      get_deleting=False):
        """
        see :meth:`otter.models.interface.IScalingGroup.view_manifest`
        """
        def _set_policies_on_group(policies, group):
            group['scalingPolicies'] = policies
            return group

        def _get_policies(group):
            d = self._naive_list_policies()
            return d.addCallback(_set_policies_on_group, group)

        def _get_policies_and_webhooks(group):
            d = defer.gatherResults(
                [self._naive_list_policies(),
                 self._naive_list_all_webhooks()], consumeErrors=True)
            return d.addCallback(lambda results: (group, results))

        def _assemble_webhooks((group, results)):
            policies, webhooks = results
            return _set_policies_on_group(
                assemble_webhooks_in_policies(policies, webhooks),
                group)

        def _generate_manifest_group_part(group):
            m = {
                'groupConfiguration': _jsonloads_data(group['group_config']),
                'launchConfiguration': _jsonloads_data(group['launch_config']),
                'id': self.uuid,
                'state': _unmarshal_state(group),
            }
            return m

        view_query = _cql_view_manifest.format(
            cf=self.group_table)
        del_query = _cql_delete_all_in_group.format(
            cf=self.group_table, name='')
        d = verified_view(self.connection, view_query, del_query,
                          {"tenantId": self.tenant_id,
                           "groupId": self.uuid},
                          DEFAULT_CONSISTENCY,
                          NoSuchScalingGroupError(self.tenant_id, self.uuid),
                          self.log)
        d.addCallback(_check_deleting, get_deleting)
        d.addCallback(_generate_manifest_group_part)

        if with_policies:
            if with_webhooks:
                d.addCallback(_get_policies_and_webhooks)
                d.addCallback(_assemble_webhooks)
            else:
                d.addCallback(_get_policies)

        return d

    def view_config(self):
        """
        see :meth:`otter.models.interface.IScalingGroup.view_config`
        """
        view_query = _cql_view.format(
            cf=self.group_table, column='group_config')
        del_query = _cql_delete_all_in_group.format(
            cf=self.group_table, name='')
        d = verified_view(self.connection, view_query, del_query,
                          {"tenantId": self.tenant_id,
                           "groupId": self.uuid},
                          DEFAULT_CONSISTENCY,
                          NoSuchScalingGroupError(self.tenant_id, self.uuid),
                          self.log)

        return d.addCallback(lambda group:
                             _jsonloads_data(group['group_config']))

    def view_launch_config(self):
        """
        see :meth:`otter.models.interface.IScalingGroup.view_launch_config`
        """
        view_query = _cql_view.format(
            cf=self.group_table, column='launch_config')
        del_query = _cql_delete_all_in_group.format(
            cf=self.group_table, name='')
        d = verified_view(self.connection, view_query, del_query,
                          {"tenantId": self.tenant_id,
                           "groupId": self.uuid},
                          DEFAULT_CONSISTENCY,
                          NoSuchScalingGroupError(self.tenant_id, self.uuid),
                          self.log)

        return d.addCallback(lambda group:
                             _jsonloads_data(group['launch_config']))

    def view_state(self, consistency=None, get_deleting=False):
        """
        see :meth:`otter.models.interface.IScalingGroup.view_state`
        """
        if consistency is None:
            consistency = DEFAULT_CONSISTENCY

        view_query = _cql_view_manifest.format(cf=self.group_table)
        del_query = _cql_delete_all_in_group.format(
            cf=self.group_table, name='')
        d = verified_view(self.connection, view_query, del_query,
                          {"tenantId": self.tenant_id,
                           "groupId": self.uuid},
                          consistency,
                          NoSuchScalingGroupError(self.tenant_id, self.uuid),
                          self.log)

        d.addCallback(_check_deleting, get_deleting)
        return d.addCallback(_unmarshal_state)

    def modify_state(self, modifier_callable, *args, **kwargs):
        """
        see :meth:`otter.models.interface.IScalingGroup.modify_state`
        """
        modify_state_reason = kwargs.pop('modify_state_reason', None)
        log = self.log.bind(
            system='CassScalingGroup.modify_state',
            modify_state_reason=modify_state_reason)
        consistency = DEFAULT_CONSISTENCY

        @self.with_timestamp
        def _write_state(timestamp, new_state):
            assert (new_state.tenant_id == self.tenant_id and
                    new_state.group_id == self.uuid)
            params = {
                'tenantId': new_state.tenant_id,
                'groupId': new_state.group_id,
                'active': serialize_json_data(new_state.active, 1),
                'pending': serialize_json_data(new_state.pending, 1),
                'paused': new_state.paused,
                'suspended': new_state.suspended,
                'desired': new_state.desired,
                'groupTouched': new_state.group_touched,
                'policyTouched': serialize_json_data(new_state.policy_touched,
                                                     1),
                'ts': timestamp
            }
            return self.connection.execute(
                _cql_insert_group_state.format(cf=self.group_table),
                params, consistency)

        def _modify_state():
            d = self.view_state(consistency)
            d.addCallback(lambda state: modifier_callable(
                self, state, *args, **kwargs))
            return d.addCallback(_write_state)

        lock = zk.PollingLock(self.dispatcher, LOCK_PATH + '/' + self.uuid)
        lock.acquire = functools.partial(lock.acquire, timeout=ACQUIRE_TIMEOUT)
        local_lock = self.local_locks.get_lock(self.uuid)
        return local_lock.run(
            with_lock, self.reactor, lock, _modify_state,
            log.bind(category='locking', lock_reason='modify_state'),
            acquire_timeout=ACQUIRE_TIMEOUT + 5,
            release_timeout=RELEASE_TIMEOUT)

    def update_status(self, status):
        """
        see :meth:`otter.models.interface.IScalingGroup.update_status`
        """
        self.log.bind(status=status).msg("Updating status")

        @self.with_timestamp
        def _do_update(ts, _):
            return self.connection.execute(
                _cql_update.format(cf=self.group_table,
                                   column='status',
                                   name=':status'),
                {'tenantId': self.tenant_id,
                 'groupId': self.uuid,
                 'ts': ts,
                 'status': status.name},
                DEFAULT_CONSISTENCY)

        @self.with_timestamp
        def set_deleting(ts, _):
            return self.connection.execute(
                _cql_update.format(cf=self.group_table,
                                   column='deleting',
                                   name=':deleting'),
                {'tenantId': self.tenant_id,
                 'groupId': self.uuid,
                 'ts': ts,
                 'deleting': True},
                DEFAULT_CONSISTENCY)

        d = self.view_config()
        if status == ScalingGroupStatus.DELETING:
            d.addCallback(set_deleting)
        else:
            d.addCallback(_do_update)
        return d

    def update_error_reasons(self, reasons):
        """
        see :meth:`otter.models.interface.IScalingGroup.update_error_reasons`
        """
        self.log.msg("Updating error reasons {reasons}", reasons=reasons)

        @self.with_timestamp
        def _do_update(ts, lastRev):
            query = _cql_update.format(
                cf=self.group_table, column='error_reasons', name=":reasons")
            return self.connection.execute(
                query,
                {"tenantId": self.tenant_id, "groupId": self.uuid,
                 "reasons": reasons, "ts": ts},
                DEFAULT_CONSISTENCY)

        d = self.view_config()
        d.addCallback(_do_update)
        return d

    def update_config(self, data):
        """
        see :meth:`otter.models.interface.IScalingGroup.update_config`
        """
        self.log.bind(updated_config=data).msg("Updating config")

        @self.with_timestamp
        def _do_update_config(ts, lastRev):
            queries = [_cql_update.format(
                cf=self.group_table, column='group_config', name=":scaling")]

            b = Batch(queries, {"tenantId": self.tenant_id,
                                "groupId": self.uuid,
                                "scaling": serialize_json_data(data, 1),
                                "ts": ts},
                      consistency=DEFAULT_CONSISTENCY)
            return b.execute(self.connection)

        d = self.view_config()
        d.addCallback(_do_update_config)
        return d

    def update_launch_config(self, data):
        """
        see :meth:`otter.models.interface.IScalingGroup.update_launch_config`
        """
        self.log.bind(updated_launch_config=data).msg("Updating launch config")

        @self.with_timestamp
        def _do_update_launch(ts, lastRev):
            queries = [_cql_update.format(
                cf=self.group_table, column='launch_config', name=":launch")]

            b = Batch(queries, {"tenantId": self.tenant_id,
                                "groupId": self.uuid,
                                "launch": serialize_json_data(data, 1),
                                "ts": ts},
                      consistency=DEFAULT_CONSISTENCY)
            d = b.execute(self.connection)
            return d

        d = self.view_config()
        d.addCallback(_do_update_launch)
        return d

    def _naive_list_policies(self, limit=None, marker=None):
        """
        Like :meth:`otter.models.cass.CassScalingGroup.list_policies`, but gets
        all the policies associated with particular scaling group
        irregardless of whether the scaling group still exists.
        """
        def insert_id(rows):
            return [dict(id=row['policyId'], **_jsonloads_data(row['data']))
                    for row in rows]

        # TODO: this is just in place so that pagination in the manifest can
        # be handled elsewhere
        if limit is not None:
            cql, params = _paginated_list(self.tenant_id, self.uuid,
                                          limit=limit, marker=marker)
        else:
            cql = _cql_list_policy
            params = {"tenantId": self.tenant_id, "groupId": self.uuid}

        d = self.connection.execute(cql.format(cf=self.policies_table), params,
                                    DEFAULT_CONSISTENCY)
        d.addCallback(insert_id)
        return d

    def list_policies(self, limit=100, marker=None):
        """
        see :meth:`otter.models.interface.IScalingGroup.list_policies`
        """
        # If there are no policies - make sure it's not because the group
        # doesn't exist
        def _check_if_empty(policies_dict):
            if len(policies_dict) == 0:
                return self.view_config().addCallback(lambda _: policies_dict)
            return policies_dict

        d = self._naive_list_policies(limit=limit, marker=marker)
        return d.addCallback(_check_if_empty)

    def get_policy(self, policy_id, version=None):
        """
        see :meth:`otter.models.interface.IScalingGroup.get_policy`
        """
        def fetch_policy(_):
            query = _cql_view_policy.format(cf=self.policies_table)
            d = self.connection.execute(query,
                                        {"tenantId": self.tenant_id,
                                         "groupId": self.uuid,
                                         "policyId": policy_id},
                                        DEFAULT_CONSISTENCY)
            return d.addCallback(_extract_policy)

        def _extract_policy(rows):
            if len(rows) == 0 or version and rows[0]['version'] != version:
                raise NoSuchPolicyError(self.tenant_id, self.uuid, policy_id)
            return _jsonloads_data(rows[0]['data'])

        d = self.view_config()  # Ensure group exists
        return d.addCallback(fetch_policy)

    def create_policies(self, data):
        """
        see :meth:`otter.models.interface.IScalingGroup.create_policies`
        """
        self.log.bind(policies=data).msg("Creating policies")

        def _do_limits_check(lastRev):
            d = self.connection.execute(
                _cql_count_for_group.format(cf=self.policies_table),
                {"tenantId": self.tenant_id,
                 "groupId": self.uuid},
                DEFAULT_CONSISTENCY)
            return d.addCallback(_check_limit).addCallback(lambda _: lastRev)

        def _check_limit(curr_policies):
            max_policies = config_value('limits.absolute.maxPoliciesPerGroup')
            curr_policies = curr_policies[0]['count']
            if curr_policies + len(data) > max_policies:
                raise PoliciesOverLimitError(
                    curr_policies=curr_policies,
                    max_policies=max_policies,
                    new_policies=len(data),
                    tenant_id=self.tenant_id,
                    group_id=self.uuid)

        def _do_create_pol(lastRev):
            queries = []
            cqldata = {"tenantId": self.tenant_id,
                       "groupId": self.uuid}

            outpolicies = _build_policies(data, self.policies_table,
                                          self.event_table, queries, cqldata,
                                          self.buckets)

            b = Batch(queries, cqldata,
                      consistency=DEFAULT_CONSISTENCY)
            d = b.execute(self.connection)
            return d.addCallback(lambda _: outpolicies)

        d = self.view_config()
        d.addCallback(_do_limits_check)
        d.addCallback(_do_create_pol)
        return d

    def update_policy(self, policy_id, data):
        """
        see :meth:`otter.models.interface.IScalingGroup.update_policy`
        """
        bound_log = self.log.bind(updated_policy=data, policy_id=policy_id)
        bound_log.msg("Updating policy")

        queries = []
        cqldata = {'tenantId': self.tenant_id,
                   'groupId': self.uuid,
                   'policyId': policy_id,
                   'version': uuid.uuid1()}

        def _do_update_schedule(lastRev):
            if "type" in lastRev:
                if lastRev["type"] != data["type"]:
                    raise ValidationError("Cannot change type of "
                                          "a scaling policy")
                if lastRev["type"] == 'schedule':
                    _build_schedule_policy(data, self.event_table, queries,
                                           cqldata, '', self.buckets)

        def _do_update_policy(_):
            queries.append(_cql_insert_policy.format(
                cf=self.policies_table, name=""))
            cqldata['data'] = serialize_json_data(data, 1)
            b = Batch(queries, cqldata,
                      consistency=DEFAULT_CONSISTENCY)
            return b.execute(self.connection)

        d = self.get_policy(policy_id)
        d.addCallback(_do_update_schedule)
        d.addCallback(_do_update_policy)
        return d

    def delete_policy(self, policy_id):
        """
        see :meth:`otter.models.interface.IScalingGroup.delete_policy`
        """
        self.log.bind(policy_id=policy_id).msg("Deleting policy")

        def _do_delete(webhooks):
            # delete webhook keys
            queries, params = _del_webhook_queries(
                self.webhooks_keys_table,
                [{'webhookKey': w['id']} for w in webhooks])
            queries.extend([
                _cql_delete_all_in_policy.format(cf=self.policies_table),
                _cql_delete_all_in_policy.format(cf=self.webhooks_table)])
            params.update({"tenantId": self.tenant_id, "groupId": self.uuid,
                           "policyId": policy_id})
            b = Batch(queries, params,
                      consistency=DEFAULT_CONSISTENCY)
            return b.execute(self.connection)

        d = self.get_policy(policy_id)
        d.addCallback(
            lambda _: self._naive_list_webhooks(policy_id, QUERY_LIMIT, None))
        d.addCallback(_do_delete)
        return d

    def _naive_list_all_webhooks(self):
        """
        List all webhooks of a group. Does not check if group exists and
        does not paginate
        """
        d = self.connection.execute(
            _cql_list_all_in_group.format(
                cf=self.webhooks_table,
                order_by='ORDER BY "groupId", "policyId", "webhookId"'),
            {'tenantId': self.tenant_id, 'groupId': self.uuid},
            DEFAULT_CONSISTENCY)
        return d

    def _naive_list_webhooks(self, policy_id, limit, marker):
        """
        Like :meth:`otter.models.cass.CassScalingGroup.list_webhooks`, but gets
        all the webhooks associated with particular scaling policy
        irregardless of whether the scaling policy still exists.
        """
        def _assemble_webhook_results(results):
            return [_assemble_webhook_from_row(row, include_id=True)
                    for row in results]

        cql, params = _paginated_list(self.tenant_id, self.uuid, policy_id,
                                      limit=limit, marker=marker)

        d = self.connection.execute(cql.format(cf=self.webhooks_table), params,
                                    DEFAULT_CONSISTENCY)
        d.addCallback(_assemble_webhook_results)
        return d

    def list_webhooks(self, policy_id, limit=100, marker=None):
        """
        see :meth:`otter.models.interface.IScalingGroup.list_webhooks`
        """
        def _check_if_empty(webhooks_dict):
            if len(webhooks_dict) == 0:
                policy_there = self.get_policy(policy_id)
                return policy_there.addCallback(lambda _: webhooks_dict)
            return webhooks_dict

        d = self._naive_list_webhooks(policy_id, limit=limit, marker=marker)
        d.addCallback(_check_if_empty)
        return d

    def create_webhooks(self, policy_id, data):
        """
        see :meth:`otter.models.interface.IScalingGroup.create_webhooks`
        """
        bound_log = self.log.bind(policy_id=policy_id, webhook=data)
        bound_log.msg("Creating webhooks")

        main_params = {"tenantId": self.tenant_id,
                       "groupId": self.uuid,
                       "policyId": policy_id}

        d = self.get_policy(policy_id)  # check that policy exists first

        def _check_limit(curr_webhooks):
            max_webhooks = config_value('limits.absolute.maxWebhooksPerPolicy')
            curr_webhooks = curr_webhooks[0]['count']
            if curr_webhooks + len(data) > max_webhooks:
                raise WebhooksOverLimitError(
                    curr_webhooks=curr_webhooks,
                    max_webhooks=max_webhooks,
                    new_webhooks=len(data),
                    tenant_id=self.tenant_id,
                    group_id=self.uuid,
                    policy_id=policy_id)

        def _do_limits_check(lastRev):
            d = self.connection.execute(
                _cql_count_for_policy.format(cf=self.webhooks_table),
                main_params,
                DEFAULT_CONSISTENCY)
            return d.addCallback(_check_limit).addCallback(lambda _: lastRev)

        d.addCallback(_do_limits_check)

        def _do_create(lastRev):
            queries = []
            cql_params = main_params.copy()
            output = _build_webhooks(
                data, self.webhooks_table, self.webhooks_keys_table,
                queries, cql_params)

            b = Batch(queries, cql_params,
                      consistency=DEFAULT_CONSISTENCY)
            d = b.execute(self.connection)
            return d.addCallback(lambda _: output)

        d.addCallback(_do_create)
        return d

    def get_webhook(self, policy_id, webhook_id):
        """
        see :meth:`otter.models.interface.IScalingGroup.get_webhook`
        """
        def _assemble_webhook(cass_data):
            if len(cass_data) == 0:
                raise NoSuchWebhookError(self.tenant_id, self.uuid, policy_id,
                                         webhook_id)
            return _assemble_webhook_from_row(cass_data[0])

        def fetch_webhook(_):
            query = _cql_view_webhook.format(cf=self.webhooks_table)
            d = self.connection.execute(query,
                                        {"tenantId": self.tenant_id,
                                         "groupId": self.uuid,
                                         "policyId": policy_id,
                                         "webhookId": webhook_id},
                                        DEFAULT_CONSISTENCY)
            d.addCallback(_assemble_webhook)
            return d

        # Ensure group is there since it can be deleting group and its
        # corresponding policy and webhook entries will remain.
        # We need not check if policy exists since corresponding
        # webhook row will not be there if policy is not there
        return self.view_config().addCallback(fetch_webhook)

    def update_webhook(self, policy_id, webhook_id, data):
        """
        see :meth:`otter.models.interface.IScalingGroup.update_webhook`
        """
        self.log.bind(policy_id=policy_id, webhook_id=webhook_id,
                      webhook=data).msg("Updating webhook")

        def _update_data(lastRev):
            data.setdefault('metadata', {})
            query = _cql_update_webhook.format(cf=self.webhooks_table)
            return self.connection.execute(
                query,
                {"tenantId": self.tenant_id,
                 "groupId": self.uuid,
                 "policyId": policy_id,
                 "webhookId": webhook_id,
                 "data": serialize_json_data(data, 1)},
                DEFAULT_CONSISTENCY)

        d = self.get_webhook(policy_id, webhook_id)
        return d.addCallback(_update_data)

    def delete_webhook(self, policy_id, webhook_id):
        """
        see :meth:`otter.models.interface.IScalingGroup.delete_webhook`
        """
        bound_log = self.log.bind(policy_id=policy_id, webhook_id=webhook_id)
        bound_log.msg("Deleting webhook")

        def _do_delete(lastRev):
            queries = [
                _cql_delete_one_webhook.format(cf=self.webhooks_table),
                _cql_del_on_key.format(cf=self.webhooks_keys_table, name='')]

            d = self.connection.execute(
                batch(queries),
                {"tenantId": self.tenant_id,
                 "groupId": self.uuid,
                 "policyId": policy_id,
                 "webhookId": webhook_id,
                 "webhookKey": lastRev['capability']['hash']},
                DEFAULT_CONSISTENCY)
            return d

        return self.get_webhook(policy_id, webhook_id).addCallback(_do_delete)

    def delete_group(self):
        """
        see :meth:`otter.models.interface.IScalingGroup.delete_group`
        """
        log = self.log.bind(system='CassScalingGroup.delete_group')

        @self.with_timestamp
        def _delete_everything(ts, webhooks):
            # delete webhook keys
            queries, params = _del_webhook_queries(
                self.webhooks_keys_table, webhooks)

            queries.extend([
                _cql_delete_all_in_group.format(cf=table, name='') for table in
                (self.policies_table, self.webhooks_table,
                 self.servers_cache_table)])
            queries.append(_cql_delete_group.format(cf=self.group_table))
            params.update({'tenantId': self.tenant_id,
                           'groupId': self.uuid,
                           'ts': ts})

            b = Batch(queries, params,
                      consistency=DEFAULT_CONSISTENCY)

            return b.execute(self.connection)

        def _maybe_delete(state):
            if (state.status != ScalingGroupStatus.DELETING and
                    len(state.active) + len(state.pending) > 0):
                raise GroupNotEmptyError(self.tenant_id, self.uuid)

            d = self._naive_list_all_webhooks()
            d.addCallback(_delete_everything)
            return d

        def _delete_group():
            d = self.view_state(get_deleting=True)
            d.addCallback(_maybe_delete)
            return d

        def _delete_lock_znode(result):
            # retry every 5 seconds for 5 minutes
            d = retry(
                lambda: self.kz_client.delete(LOCK_PATH + '/' + self.uuid),
                can_retry=retry_times(60),
                next_interval=repeating_interval(5),
                clock=self.reactor,
            )
            d.addErrback(
                lambda f: self.log.msg(
                    "Error cleaning up lock path (when deleting group)",
                    exc=f.value,
                    otter_msg_type="ignore-delete-lock-error"))

        lock = zk.PollingLock(self.dispatcher, LOCK_PATH + '/' + self.uuid)
        lock.acquire = functools.partial(lock.acquire, timeout=ACQUIRE_TIMEOUT)
        d = with_lock(self.reactor, lock, _delete_group,
                      log.bind(category='locking', lock_reason='delete_group'),
                      acquire_timeout=ACQUIRE_TIMEOUT + 5,
                      release_timeout=RELEASE_TIMEOUT)
        # Cleanup /locks/<groupID> znode as it will not be required anymore
        d.addCallback(_delete_lock_znode)
        d.addCallback(lambda _: None)
        return d


@implementer(IScalingGroupCollection, IScalingScheduleCollection)
class CassScalingGroupCollection:
    """
    .. autointerface:: otter.models.interface.IScalingGroupCollection

    :param reactor: IReactorTime provider

    The Cassandra schema structure::

        Configs:
        CF = scaling_group
        RK = tenantId
        CK = groupID

        Launch Configs (mirrors config):
        CF = launch_config
        RK = tenantId
        CK = groupID

        Scaling Policies (doesn't mirror config):
        CF = policies
        RK = tenantId
        CK = groupID:policyId

    IMPORTANT REMINDER: In CQL, update will create a new row if one doesn't
    exist.  Therefore, before doing an update, a read must be performed first
    else an entry is created where none should have been.

    Cassandra doesn't have atomic read-update.  You can't be guaranteed that
    the previous state (from the read) hasn't changed between when you got it
    back from Cassandra and when you are sending your new update/insert
    request.

    Also, because deletes are done as tombstones rather than actually deleting,
    deletes are also updates and hence a read must be performed before deletes.
    """
    def __init__(self, connection, reactor, max_groups):
        """
        Init

        :param CQLClient connection: Silverberg client implementation
        :param reactor: Twisted reactor
        :param int max_groups: Maximum number of groups allowed per tenant
        """
        self.connection = connection
        self.reactor = reactor
        self.max_groups = max_groups
        self.local_locks = WeakLocks()
        self.group_table = "scaling_group"
        self.launch_table = "launch_config"
        self.policies_table = "scaling_policies"
        self.webhooks_table = "policy_webhooks"
        self.webhook_keys_table = "webhook_keys"
        self.state_table = "group_state"
        self.event_table = "scaling_schedule_v2"
        self.buckets = None
        self.kz_client = None
        self.dispatcher = None

    def set_scheduler_buckets(self, buckets):
        """
        Set round-robin list of buckets that will be used to store scheduled
        events.
        """
        self.buckets = cycle(buckets)

    def create_scaling_group(self, log, tenant_id, config, launch,
                             policies=None):
        """
        see :meth:`IScalingGroupCollection.create_scaling_group`
        """
        scaling_group_id = generate_key_str('scalinggroup')
        log = log.bind(tenant_id=tenant_id, scaling_group_id=scaling_group_id)

        # obey limits
        d = self.get_groups_count(log, tenant_id)

        def check_groups(cur_count):
            if cur_count >= self.max_groups:
                log.msg('client has reached maxGroups limit')
                raise ScalingGroupOverLimitError(tenant_id, self.max_groups)

        d.addCallback(check_groups)

        def _create_group(ts):
            log.msg("Creating scaling group")
            queries = [_cql_create_group.format(cf=self.group_table)]

            data = {
                "tenantId": tenant_id,
                "groupId": scaling_group_id,
                "group_config": serialize_json_data(config, 1),
                "launch_config": serialize_json_data(launch, 1),
                "active": '{}',
                "pending": '{}',
                "created_at": datetime.utcnow(),
                "policyTouched": '{}',
                "paused": False,
                "desired": config.get('minEntities', 0),
                "ts": ts
            }

            scaling_group_state = GroupState(
                tenant_id,
                scaling_group_id,
                config['name'],
                {},
                {},
                data['created_at'].isoformat(),
                {},
                data['paused'],
                ScalingGroupStatus.ACTIVE,
                desired=data['desired']
            )
            outpolicies = _build_policies(
                policies, self.policies_table,
                self.event_table, queries, data, self.buckets)

            b = Batch(queries, data,
                      consistency=DEFAULT_CONSISTENCY)

            bd = b.execute(self.connection)
            bd.addCallback(lambda _: {
                'groupConfiguration': config,
                'launchConfiguration': launch,
                'scalingPolicies': outpolicies,
                'id': scaling_group_id,
                'state': scaling_group_state
            })

            return bd

        d.addCallback(lambda _: get_client_ts(self.reactor))
        return d.addCallback(_create_group)

    def list_scaling_group_states(self, log, tenant_id, limit=100,
                                  marker=None):
        """
        see :meth:`IScalingGroupCollection.list_scaling_group_states`.
        """
        def _build_states(group_states):
            return [_unmarshal_state(state) for state in group_states]

        def _filter_resurrected(groups):
            valid_groups, resurrected_groups = [], []
            for group in groups:
                if group['created_at']:
                    valid_groups.append(group)
                else:
                    resurrected_groups.append(group)
            # We can trigger deletion of resurrected groups and return
            # valid_groups right away We need not wait till deletion
            # completes.
            _delete_resurrected_groups(resurrected_groups)
            return valid_groups

        def _delete_resurrected_groups(groups):
            if not groups:
                return None
            log.msg('Resurrected rows', rows=groups)

            queries = [
                _cql_delete_all_in_group.format(cf=table, name=i)
                for table in (self.group_table,
                              self.policies_table,
                              self.webhooks_table)
                for i in range(len(groups))]

            params = {'groupId{0}'.format(i): group['groupId']
                      for i, group in enumerate(groups)}
            params['tenantId'] = tenant_id

            b = Batch(queries, params, DEFAULT_CONSISTENCY)
            return b.execute(self.connection)

        log = log.bind(tenant_id=tenant_id)
        cql, params = _paginated_list(tenant_id, limit=limit, marker=marker)
        d = self.connection.execute(cql.format(cf=self.group_table), params,
                                    DEFAULT_CONSISTENCY)
        d.addCallback(_filter_resurrected)
        d.addCallback(_build_states)
        return d

    def get_scaling_group(self, log, tenant_id, scaling_group_id):
        """
        see :meth:`IScalingGroupCollection.get_scaling_group`
        """
        return CassScalingGroup(log, tenant_id, scaling_group_id,
                                self.connection, self.buckets, self.kz_client,
                                self.reactor, self.local_locks,
                                self.dispatcher)

    def fetch_and_delete(self, bucket, now, size=100):
        """
        Fetch events to be occurring now or before in a bucket
        and delete them after fetching
        """
        def delete_events(events):
            if not events:
                return events
            data = {'bucket': bucket}
            queries = []
            for i, event in enumerate(events):
                event_name = 'event{}'.format(i)
                queries.append(
                    _cql_delete_bucket_event.format(cf=self.event_table,
                                                    name=event_name))
                data[event_name + 'policyId'] = event['policyId']
                data[event_name + 'trigger'] = event['trigger']
            b = Batch(queries, data, DEFAULT_CONSISTENCY)
            return b.execute(self.connection).addCallback(lambda _: events)

        d = self.connection.execute(
            _cql_fetch_batch_of_events.format(cf=self.event_table),
            {"size": size, "now": now, "bucket": bucket}, DEFAULT_CONSISTENCY)
        return d.addCallback(delete_events)

    def add_cron_events(self, cron_events):
        """
        Add cron events to event table
        """
        queries, data = list(), dict()
        for i, event in enumerate(cron_events):
            event_name = 'event{}'.format(i)
            queries.append(_cql_insert_cron_event.format(cf=self.event_table,
                                                         name=event_name))
            data[event_name + 'bucket'] = self.buckets.next()
            data.update({event_name + key: event[key] for key in event})
        b = Batch(queries, data, ConsistencyLevel.ONE)
        return b.execute(self.connection)

    def get_oldest_event(self, bucket):
        """
        see :meth:`IScalingScheduleCollection.get_oldest_event`
        """
        d = self.connection.execute(
            _cql_oldest_event.format(cf=self.event_table),
            {'bucket': bucket}, ConsistencyLevel.ONE)
        d.addCallback(lambda r: r[0] if len(r) > 0 else None)
        return d

    def webhook_info_by_hash(self, log, capability_hash):
        """
        see :meth:`IScalingGroupCollection.webhook_info_by_hash`
        """
        d = self.connection.execute(
            _cql_find_webhook_token.format(cf=self.webhook_keys_table),
            {"webhookKey": capability_hash}, ConsistencyLevel.ONE)

        def extract_info(rows):
            if len(rows) == 0:
                raise UnrecognizedCapabilityError(capability_hash, 1)
            r = rows[0]
            return (r['tenantId'], r['groupId'], r['policyId'])

        d.addCallback(extract_info)
        return d

    def get_webhook_index_only(self):
        """
        Get webhook info that is there in webhook index but is not there in
        webhook_keys table

        :return: Effect of list of pmap. The pmap contains tenantId, groupId,
            policyId and webhookKey
        """
        query = ('SELECT "tenantId", "groupId", "policyId", "webhookKey" '
                 'FROM {cf}')
        eff = parallel(
            [Effect(
                CQLQueryExecute(query=query.format(cf=self.webhooks_table),
                                params={},
                                consistency_level=ConsistencyLevel.ONE)),
             Effect(
                CQLQueryExecute(query=query.format(cf=self.webhook_keys_table),
                                params={},
                                consistency_level=ConsistencyLevel.ONE))])
        return eff.on(
            lambda (whooks, wkeys): set(freeze(whooks)) - set(freeze(wkeys)))

    def add_webhook_keys(self, webhook_keys):
        """
        Add webhook keys to webhook_keys table.

        :param dict webhook_keys: It must have tenantId, groupId, policyId
            and webhookKey

        :return: Effect of None
        """
        query = (
            'INSERT INTO {cf} ("tenantId", "groupId", "policyId", '
            '"webhookKey")'
            'VALUES (:tenantId{i}, :groupId{i}, :policyId{i}, :webhookKey{i})')
        stmts = []
        data = {}
        for i, wkey in enumerate(webhook_keys):
            data.update(keymap(lambda k: k + str(i), wkey))
            stmts.append(query.format(cf=self.webhook_keys_table, i=i))
        return Effect(
            CQLQueryExecute(query=batch(stmts), params=data,
                            consistency_level=ConsistencyLevel.ONE))

    def _extract_count(self, r):
        return r[0]['count']

    def get_groups_count(self, log, tenant_id):
        """
        Return number of valid (non-deleting) groups of the tenant
        """
        d = self.connection.execute(
            _cql_count_for_tenant.format(cf='scaling_group',
                                         deleting='AND deleting=false'),
            {'tenantId': tenant_id}, ConsistencyLevel.ONE)
        return d.addCallback(self._extract_count)

    def get_counts(self, log, tenant_id):
        """
        see :meth:`otter.models.interface.IScalingGroupCollection.get_counts`
        """
        deferreds = []
        for table in ['scaling_policies', 'policy_webhooks']:
            d = self.connection.execute(
                _cql_count_for_tenant.format(cf=table, deleting=''),
                {'tenantId': tenant_id}, ConsistencyLevel.ONE)
            d.addCallback(self._extract_count)
            deferreds.append(d)

        deferreds = [self.get_groups_count(log, tenant_id)] + deferreds
        d = defer.gatherResults(deferreds)
        d.addCallback(lambda results: dict(zip(
            ('groups', 'policies', 'webhooks'), results)))
        return d

    def kazoo_health_check(self):
        """
        Checks zookeer connection status and acquires a temporary lock to see
        if that recipe is working fine.

        return is same as described in
        :meth:`otter.models.interface.IScalingGroupCollection.health_check`
        """
        if self.kz_client is None:
            return False, {'reason': 'No client yet'}
        elif not self.kz_client.connected:
            return False, {'reason': 'Not connected yet'}
        elif self.kz_client.state != KazooState.CONNECTED:
            return False, {'zookeeper_state': self.kz_client.state}

        # check if sample lock can be acquired
        lock_path = LOCK_PATH + '/test_{}'.format(uuid.uuid1())
        lock = self.kz_client.Lock(lock_path)
        lock.acquire = functools.partial(lock.acquire, timeout=5)
        start_time = self.reactor.seconds()
        d = with_lock(self.reactor, lock, lambda: None,
                      otter_log.bind(system='health_check',
                                     lock_reason='kazoo_health_check'))

        d.addCallback(lambda _:
                      self.kz_client.delete(lock_path, recursive=True))
        d.addCallback(lambda _:
                      (True, {'total_time':
                              self.reactor.seconds() - start_time}))
        return d

    def health_check(self):
        """
        see :meth:`otter.models.interface.IScalingGroupCollection.health_check`

        In addition to ``healthy`` and ``time``, returns whether it can
        connect to cassandra
        """
        start_time = self.reactor.seconds()

        d = self.connection.execute(
            _cql_health_check.format(cf=self.group_table), {},
            ConsistencyLevel.ONE)

        d.addCallback(lambda _:
                      (True, {'cassandra_time':
                              self.reactor.seconds() - start_time}))
        return d

    def get_all_valid_groups(self):
        """
        Get all *valid* scaling groups

        :return: `Deferred` fired with ``list`` of group ``dict``
        """
        def _valid_group_row(row):
            return (row.get('created_at') is not None and
                    row.get('desired') is not None and
                    not row.get('deleting', False))

        d = self.get_scaling_group_rows()
        return d.addCallback(lambda gs: list(filter(_valid_group_row, gs)))

    @defer.inlineCallbacks
    def get_scaling_group_rows(self, props=None, batch_size=100):
        """
        Return scaling group rows from Cassandra as a list of ``dict`` where
        each dict has all columns in table if `props` is None. Otherwise
        only columns given in `props` are retreived

        :param ``list`` props: List of extra properties to extract
        :param int batch_size: Number of groups to fetch at a time
        :return: `Deferred` fired with ``list`` of ``dict``
        """
        # TODO: Currently returning all groups as one giant list for now.
        # Will try to use Twisted tubes to do streaming later
        if props is None:
            cols = "*"
        else:
            cols = ','.join(sorted(props))
        query = ('SELECT ' + cols +
                 ' FROM scaling_group {where} LIMIT :limit;')
        where_key = 'WHERE "tenantId"=:tenantId AND "groupId">:groupId'
        where_token = 'WHERE token("tenantId") > token(:tenantId)'

        # We first start by getting all groups limited on batch size
        # It will return groups sorted first based on hash of tenant id
        # and then based group id. Note that only tenant id is sorted
        # based on hash; group id is sorted normally
        batch = yield self.connection.execute(
            query.format(where=''),
            {'limit': batch_size}, ConsistencyLevel.ONE)
        if len(batch) < batch_size:
            defer.returnValue(batch)

        # We got batch size response. That means there are probably more groups
        groups = batch
        while batch != []:
            # We start by getting all the groups of last tenant ID we received
            # except the ones we already got. We do that by asking
            # groups > last group id since groups are sorted
            tenant_id = batch[-1]['tenantId']
            while len(batch) == batch_size:
                batch = yield self.connection.execute(
                    query.format(where=where_key),
                    {'limit': batch_size,
                     'tenantId': tenant_id,
                     'groupId': batch[-1]['groupId']},
                    ConsistencyLevel.ONE)
                groups.extend(batch)
            # We then get next tenant's groups by using there hash value. i.e
            # tenants whose hash > last tenant id we just fetched
            batch = yield self.connection.execute(
                query.format(where=where_token),
                {'limit': batch_size, 'tenantId': tenant_id},
                ConsistencyLevel.ONE)
            groups.extend(batch)
        defer.returnValue(groups)


@implementer(IScalingGroupServersCache)
class CassScalingGroupServersCache(object):
    """
    Collection of cache of scaling group servers
    """

    def __init__(self, tenant_id, group_id):
        self.tenantId = tenant_id
        self.groupId = group_id
        self.table = "servers_cache"
        self.params = {"tenantId": self.tenantId, "groupId": self.groupId}

    @do
    def get_servers(self, only_as_active):
        """
        See :method:`IScalingGroupServersCache.get_servers`
        """
        query = ('SELECT server_blob, server_as_active, last_update FROM {cf} '
                 'WHERE "tenantId"=:tenantId AND "groupId"=:groupId '
                 'ORDER BY last_update DESC;')
        rows = yield cql_eff(query.format(cf=self.table), self.params)
        if len(rows) == 0:
            yield do_return(([], None))
        last_update = rows[0]['last_update']
        rows = takewhile(lambda r: r['last_update'] == last_update, rows)

        def _dict(r): return json.loads(r['server_blob'])
        rfunc = (
            compose(map(_dict), filter(lambda r: r['server_as_active']))
            if only_as_active else map(_dict))

        yield do_return((list(rfunc(rows)), last_update))

    @do
    def update_servers(self, time, servers):
        """
        See :method:`IScalingGroupServersCache.update_servers`

        This implementation makes two important assumptions which needs to be
        taken care by caller:
        - It is not re-entrant for a given object; i.e a call to this must
          be returned before another can be made
        - `time` must be higher for subsequent calls.
        """
        # get current servers
        current, last_update = yield self.get_servers(False)
        if last_update is not None and time <= last_update:
            raise ValueError(
                "Given time arg {} must be greater than time of earlier "
                "inserted servers {}".format(time, last_update))

        # Insert new ones
        if servers:
            query = ('INSERT INTO {cf} ("tenantId", "groupId", last_update, '
                     'server_id, server_blob, server_as_active) '
                     'VALUES(:tenantId, :groupId, :last_update, :server_id{i},'
                     ' :server_blob{i}, :server_as_active{i});')
            params = assoc(self.params, "last_update", time)
            queries = []
            for i, server in enumerate(servers):
                params.update({
                    'server_id{}'.format(i): server['id'],
                    'server_as_active{}'.format(i): server.pop('_is_as_active',
                                                               False),
                    'server_blob{}'.format(i): json.dumps(server)
                })
                queries.append(query.format(cf=self.table, i=i))
            yield cql_eff(batch(queries), params)

        # Delete earlier fetched servers
        if last_update:
            yield self.delete_servers(last_update)

    def delete_servers(self, time):
        """
        See :method:`IScalingGroupServersCache.delete_servers`
        """
        query = ('DELETE FROM {cf} '
                 'WHERE "tenantId"=:tenantId AND "groupId"=:groupId '
                 'AND last_update=:last_update;')
        params = assoc(self.params, "last_update", time)
        return cql_eff(query.format(cf=self.table), params)


@implementer(IAdmin)
class CassAdmin(object):
    """
    .. autointerface:: otter.models.interface.IAdmin
    """

    def __init__(self, connection):
        self.connection = connection

    def get_metrics(self, log):
        """
        see :meth:`otter.models.interface.IAdmin.get_metrics`
        """
        def _get_metric(table, label):
            """
            Execute a CQL statement and return a formatted result
            """
            def _format_result(result, label):
                """
                :param result: Result from metric collection
                :param label: Label for the metric

                :return: dict of metric label, value and time
                """
                return dict(
                    id="otter.metrics.{0}".format(label),
                    value=result[0]['count'],
                    time=int(time.time()))

            dc = self.connection.execute(_cql_count_all.format(cf=table), {},
                                         ConsistencyLevel.QUORUM)
            dc.addCallback(_format_result, label)
            return dc

        tables = ['scaling_group', 'scaling_policies', 'policy_webhooks']
        labels = ['groups', 'policies', 'webhooks']
        mapping = zip(tables, labels)

        deferreds = [_get_metric(table, label) for table, label in mapping]
        return defer.gatherResults(deferreds, consumeErrors=True)