chore(sentryapp): new SentryAppWebhookRequestsEndpoint control endpoint

[ameliahsu]

We need a new control endpoint in order to fetch sentry app requests from all regions.

Note:
Since installation requests are stored in control, we also have to fetch requests from the control buffer. We specifically query the region buffers for non-installation event requests to avoid duplicate requests (in case a region shares the same buffer as control).

[codecov]

Codecov Report

Attention: Patch coverage is 99.40120% with 1 line in your changes missing coverage. Please review.

✅ All tests successful. No failed tests found.

Files with missing lines	Patch %	Lines
...c/sentry/sentry_apps/api/utils/webhook_requests.py	98.03%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #81676      +/-   ##
==========================================
+ Coverage   80.41%   81.24%   +0.82%     
==========================================
  Files        7241     7280      +39     
  Lines      321573   338135   +16562     
  Branches    20830    20830              
==========================================
+ Hits       258604   274723   +16119     
- Misses      62574    63017     +443     
  Partials      395      395              

[cathteng]

i think there is some opportunity to condense code here

[cathteng]

should this be SentryAppPermission?

[Christinarlong]

SentryAppStatsPermission is the one to use for this endpoint, since we only want the integrator org to be able to get the requests/stats.

[cathteng]

there seems to only be a GET for this endpoint, so only the GET scopes would apply. the PARANOID_GET scopes from SentryAppPermission applies to anyone with member and above permissions which also seems appropriate

[cathteng]

you can use a serializer class to validate these rather than have it done inside the endpoint, like this

sentry/src/sentry/api/endpoints/api_tokens.py

Lines 81 to 84 in 329a08d

	serializer = ApiTokenSerializer(data=request.data)
	if serializer.is_valid():
	result = serializer.validated_data

[cathteng]

this is for this entire section before the "major changes" part

[cathteng]

is there a better way to write this? i think there's a lot of repeated code where you extend the list of requests. the first two ifs are REALLY similar other than changing the event

[cathteng]

if we plan to publish this in the future, this can be ApiPublishStatus.EXPERIMENTAL

[cathteng]

is it possible to filter the requests before we even add them to the list, so we don't have to iterate over them again? this is where i think a helper function would be useful, for this part and the repeated logic above

[GabeVillalobos]

Instead of encoding requests-v2 in the path, could we instead name this something different? Like request-logs or webhook-responses?

[GabeVillalobos]

Setting a default value here would be nice.

[GabeVillalobos]

Could we combine this with the validation for validate_end? This seems like a field error on end vs a general exception.

[ameliahsu]

We have to use validate in order to access multiple fields (in this case start and end) 😔

[GabeVillalobos]

Instead of nesting these closures, could these live in a separate class/service that handles retrieving buffer requests? I could see a case where we use these outside of this endpoint.

[GabeVillalobos]

Will this paginate correctly? I'm concerned the results will be weird if an org has a high volume of webhooks and older request buffer responses are constantly rotating off.

Also, do we need to be paginating if our limit is ~100 buffers per region?

[ameliahsu]

Just updating here that we decided to remove pagination

[GabeVillalobos]

This name is a bit generic, could we make it more specific to SentryApp Webhook Requests?

[GabeVillalobos]

Is is possible to add more narrow typing to item_list and user?

[github-actions]

🚨 Warning: This pull request contains Frontend and Backend changes!

It's discouraged to make changes to Sentry's Frontend and Backend in a single pull request. The Frontend and Backend are not atomically deployed. If the changes are interdependent of each other, they must be separated into two pull requests and be made forward or backwards compatible, such that the Backend or Frontend can be safely deployed independently.

Have questions? Please ask in the #discuss-dev-infra channel.

[codecov]

Bundle Report

Changes will increase total bundle size by 136.86kB (0.43%) ⬆️. This is within the configured threshold ✅

Detailed changes

Bundle name	Size	Change
app-webpack-bundle-array-push	32.11MB	136.86kB (0.43%) ⬆️

[iamrajjoshi]

looks good, good job!

[Christinarlong]

UHHH I FORGOT TO CLICK SUBMIT. I did this on monday so it may be out of date

[Christinarlong]

Q: where does this get used ?

[ameliahsu]

This is called when .is_valid() is called (same as validate above). See docs here

[Christinarlong]

if we know the shape of the data we could TypedDict this instead of Mapping[Any,Any]

[Christinarlong]

Same as above 🥺

[GabeVillalobos]

Agreed. Avoid using Any typing unless absolutely necessary.

[Christinarlong]

is the list composed of RpcSentryAppRequest or SentryAppRequests?

[ameliahsu]

We have to translate the results of this function call into an RpcSentryAppRequest, so I don't think we can type this?

sentry/src/sentry/sentry_apps/api/utils/webhook_requests.py

Lines 71 to 72 in e1aa641

	serialize_rpc_sentry_app_request(req)
	for req in control_buffer.get_requests(event=event, errors_only=errors_only)

[Christinarlong]

I think we can ? It looks like we know what's going to be in the request data for that serializer so we could type the return here.

[Christinarlong]

it would be good to test the shape of the data is what we want

[Christinarlong]

We should add some tests to for cross region functionality
e.g two different orgs in diff regions do something that adds to buffer

• validate that the requests are not in the same buffer
• validate that when we get the requests both reqs show up

etc. ( I can add more cases in a bit)

[ameliahsu]

I talked to Gabe about this and we said we wouldn't test cross region, since it's not easy to mock multiple Redis instances

[GabeVillalobos]

Yeah, unfortunately I don't think we have the testing infrastructure for this unless the redis key we're generating in each silo is distinct somehow. Worth verifying at least, but I'm not sure it's worth the extra effort when we can manually validate this behavior ourselves using feature flags.

[Christinarlong]

I sees RIP

[sentaur-athena]

I started reviewing but then I realized there are multiple open questions that I also have too. Can you address them and ping the channel again?

[sentaur-athena]

You can update this to ecosystem. Integrations is the old stuff.

[GabeVillalobos]

This logic living here is a bit unusual. Could we move this date filtering behavior into the get_buffer_requests_from_control and get_buffer_requests_from_regions helper functions instead? I could also see this being a standalone utility method for general RpcSentryAppRequest filtering.

Pulling more of this business logic out of the controller and putting it into shared modules will help with reusability and testing.

[GabeVillalobos]

Agreed. Avoid using Any typing unless absolutely necessary.

[GabeVillalobos]

Yeah, unfortunately I don't think we have the testing infrastructure for this unless the redis key we're generating in each silo is distinct somehow. Worth verifying at least, but I'm not sure it's worth the extra effort when we can manually validate this behavior ourselves using feature flags.

[GabeVillalobos]

Do we want to gate access here with a feature flag maybe? We may want to validate the behavior of this endpoint before releasing it to the public.

[iamrajjoshi]

Would marking the endpoint as experimental be enough? I think we could update the callee side to use this new endpoint to test then roll the cutover out to few customers before going public.

[ameliahsu]

Update: We decided to feature flag this endpoint while we test fetching requests from multiple regions

[Christinarlong]

I think we can ? It looks like we know what's going to be in the request data for that serializer so we could type the return here.

[Christinarlong]

Also we're potentially missing the error response & request bodies from error webhook requests here

Same in the RpcModel

[ameliahsu]

We decided to remove some properties for now since they're not shown on the dashboard, we can add them back later if needed

[Christinarlong]

uh can you link me to this discussion ? We shouldn't or we should log them instead since we & customers use that data a lot as a debugging resource

[iamrajjoshi]

hmm, do we have customer stories where they inspect the response we are sending rather than the dashboard?

[ameliahsu]

I think the conversation was on Slack but #81267 (comment)

[Christinarlong]

Yes, for this customer issue we needed to see our req bodies to validate our webhooks were working. It's also a customer request in this issue. It's currently not a priority to add the UI to the dashboard but without returning at all to the frontend there is no visibility into the buffer for both customers and us.

[Christinarlong]

cc @GabeVillalobos

[GabeVillalobos]

The general guidance I've been giving @ameliahsu is: exclude it until we actually implement this feature. It should be trivial to add to the response body in the future, but I don't want to be exposing this data right now if we aren't using it. It also gives us an opportunity to analyze the overall performance of this endpoint with smaller payloads to start before adding a bunch of additional data.

[Christinarlong]

clarification q, is 'this feature' == the endpoint ? or the UI ? Either way though, I still think it's very important to expose that data for debugging. The comment 2 up, sums up the reasons and related issues/asks. Without this data being exposed debugging webhooks & buffer issues becomes incredibly hard without setting up an integration on that sentry app's org.

[GabeVillalobos]

Ah I missed that. Fair point, alright let's go ahead and add it then (sorry @ameliahsu)

[Christinarlong]

also is there a reason we need this nesting?
i.e {item: { org: Org}} vs {org:Org}

[iamrajjoshi]

qood question -
Looking at the code, the nesting structure {item: {"organization": org}} is necessary because of how Django's serializer system works. Here's why:

1. The get_attrs() method is part of Sentry's Serializer base class pattern, where:

• It needs to return a mapping of objects to their attributes
• These attributes are then passed to the serialize() method as the attrs parameter
• Each object in item_list needs its own set of attributes
  If you were to return just {org: Org}, you would lose the connection between which organization belongs to which item in the item_list, and the serialize() method wouldn't know which organization to use for each object being serialized.
  You can see this in how the data is used in the serialize() method:

def serialize(self, obj: Any, attrs: Mapping[Any, Any], user: Any, **kwargs: Any) -> Mapping[str, Any]:
    organization = attrs.get("organization")  # This comes from the nested structure
    # ... rest of the serialization logic ...

The nesting pattern {item: {attributes}} is a common pattern in Django-style serializers as it maintains the relationship between objects and their associated data throughout the serialization process.

--- from ChatGPT

[Christinarlong]

;0 kewl

[getsantry]

This pull request has gone three weeks without activity. In another week, I will close it.

But! If you comment or otherwise update it, I will reset the clock, and if you add the label WIP, I will leave it alone unless WIP is removed ... forever!

---

"A weed is but an unloved flower." ― Ella Wheeler Wilcox 🥀