Only allow update of proxy entities via the API #714
Comments
|
@mercul3s Do you know if this is still relevant? I know 1.x just replace the existing entity and merging entities could potentially lead to some complications so I'm curious! |
|
If someone modifies an entity via the API, which if we don’t support now we will in the future, the store needs to be the source of truth. |
|
Would merging two entities update the other resources (e.g. check results / events) related to those entities? I'm thinking like a cascading update in a relational DB... Example:
Will Entity 1 now have event/incident id 101 and 102 associated with it? |
|
@calebhailey in short, no. We don't have a relational DB and we should avoid, as much as possible, any attempts to treat it as such. There are some exceptions to this rule, but those need to be minimized. The original intent for "merging entities" was so that people could customize entities via the API. There are a number of very thorny issues here. Modifying entities via the API is currently possible due to the need for custom entities in proxy requests. I think perhaps proxy entities deserved their own type, but that ship has sailed for now. Updating entities via the API is highly problematic. Processes that create and update entities (e.g. agents) should be the source of truth for that entity. Ideally, these processes are sending truths to sensu-backend. Given that, then any input from the API not from those processes are synthetic. Merging two entities was a proposal for dealing with this circumstance. Entity A is updated via the API to have subscriptions A more mischievous example would be: Entity A is update via the API to have team "foo", but the agent is configured to have team "bar." This field isn't an array, so who do we trust? The configured agent or the update to the API? I'm of the opinion that we should not allow this circumstance to happen. The configured agent should be the source of truth. Any entities with the reserved type of "agent" should be immutable via the API and their identity provided by the agent's configuration. We should also, therefore, not |
|
OK - in this case, we shouldn't allow entities of class "agent" to be modified, only proxy entities. The API does not currently have that restriction. |
|
I think we still have the outstanding question of "should we support this and to what extent?" I was just opining. |
|
@mercul3s yeah, I think that's right ("proxy" class entities can be updated via sensuctl, but "agent" class entities cannot). It's not even that they "can't" be updated, it's just misleading to the user since the updates are wiped out on subsequent keepalive, right? |
|
This requires further investigation and subsequent discussion. |
grepory
changed the title
|
In the entities API, validate the In the case that In subcommand being: get, list, update, delete, etc. |
|
This is going to require a documentation update, of course. Just let's not forget about it. |
|
Updated description to reflect new spec. |
|
We're going to be changing how all of this works shortly, so this issue can be closed. |
In the entities API, validate the entity_class field is proxy before allowing an entity create or update.
In the case that entity_class is not proxy, return a human-readable error indicating that only proxy entities are allowed to be modified via the API. This would cause sensuctl entity update to return that human readable error.
In sensuctl disambiguate proxy entities and entities, providing a command to manage proxy entities: sensuctl proxy-entity .
subcommand being: get, list, update, delete, etc.
Update all proxy entity / proxy check documentation to reflect this change and refer to
sensuctl proxy-entity.The text was updated successfully, but these errors were encountered: