wbstack · m90 · Jul 30, 2024 · Jun 27, 2024 · Jul 3, 2024 · Jul 3, 2024
diff --git a/app/Http/Controllers/WikiEntityImportController.php b/app/Http/Controllers/WikiEntityImportController.php
@@ -7,7 +7,7 @@
 use Illuminate\Validation\Rule;
 use App\Wiki;
 use App\WikiEntityImport;
-use App\Jobs\WikiEntityImportDummyJob;
+use App\Jobs\WikiEntityImportJob;
 use Carbon\Carbon;
 
 class WikiEntityImportController extends Controller
@@ -30,7 +30,7 @@ public function create(Request $request): \Illuminate\Http\JsonResponse
     {
         $validatedInput = $request->validate([
             'wiki' => ['required', 'integer'],
-            'source_wiki_url' => ['required', 'string'],
+            'source_wiki_url' => ['required', 'url'],
             'entity_ids' => ['required', 'string', function (string $attr, mixed $value, \Closure $fail) {
                 $chunks = explode(',', $value);
                 foreach ($chunks as $chunk) {
@@ -66,7 +66,7 @@ public function create(Request $request): \Illuminate\Http\JsonResponse
             'payload' => $request->all(),
         ]);
 
-        dispatch(new WikiEntityImportDummyJob(
+        dispatch(new WikiEntityImportJob(
             wikiId: $wiki->id,
             sourceWikiUrl: $validatedInput['source_wiki_url'],
             importId: $import->id,
@@ -83,7 +83,7 @@ public function update(Request $request): \Illuminate\Http\JsonResponse
         // access right.
         $validatedInput = $request->validate([
             'wiki_entity_import' => ['required', 'integer'],
-            'status' => ['required', Rule::enum(WikiEntityImportStatus::class)],
+            'status' => ['required', Rule::in([WikiEntityImportStatus::Failed->value, WikiEntityImportStatus::Success->value])],
         ]);
 
         $import = WikiEntityImport::find($validatedInput['wiki_entity_import']);

diff --git a/app/Jobs/WikiEntityImportDummyJob.php b/app/Jobs/WikiEntityImportDummyJob.php
diff --git a/app/Jobs/WikiEntityImportJob.php b/app/Jobs/WikiEntityImportJob.php
@@ -0,0 +1,240 @@
+<?php
+
+namespace App\Jobs;
+
+use App\WikiEntityImportStatus;
+use Illuminate\Bus\Queueable;
+use Illuminate\Contracts\Queue\ShouldQueue;
+use Illuminate\Foundation\Bus\Dispatchable;
+use Illuminate\Queue\InteractsWithQueue;
+use Illuminate\Queue\SerializesModels;
+use Illuminate\Support\Facades\Http;
+use Illuminate\Support\Facades\Log;
+use Illuminate\Support\Facades\Config;
+use App\Wiki;
+use App\WikiEntityImport;
+use Carbon\Carbon;
+use Maclof\Kubernetes\Client;
+use Maclof\Kubernetes\Models\Job as KubernetesJob;
+
+class WikiEntityImportJob implements ShouldQueue
+{
+    use Dispatchable, InteractsWithQueue, Queueable, SerializesModels;
+
+    /**
+     * Create a new job instance.
+     */
+    public function __construct(
+        public int $wikiId,
+        public string $sourceWikiUrl,
+        public array $entityIds,
+        public int $importId,
+    )
+    {}
+
+    private string $targetWikiUrl;
+
+    /**
+     * Execute the job.
+     */
+    public function handle(Client $kubernetesClient): void
+    {
+        $import = null;
+        try {
+            $wiki = Wiki::findOrFail($this->wikiId);
+            $import = WikiEntityImport::findOrFail($this->importId);
+            $creds = $this->acquireCredentials($wiki->domain);
+
+            $this->targetWikiUrl = str_contains($wiki->domain, "localhost")
+                ? "http://".$wiki->domain
+                : "https://".$wiki->domain;
+
+            $kubernetesJob = new TransferBotKubernetesJob(
+                kubernetesClient: $kubernetesClient,
+                wiki: $wiki,
+                creds: $creds,
+                entityIds: $this->entityIds,
+                sourceWikiUrl: $this->sourceWikiUrl,
+                targetWikiUrl: $this->targetWikiUrl,
+                importId: $this->importId,
+            );
+            $jobName = $kubernetesJob->spawn();
+            Log::info(
+                'transferbot job for wiki "'.$wiki->domain.'" was created with name "'.$jobName.'".'
+            );
+        } catch (\Exception $ex) {
+            Log::error('Entity import job failed with error: '.$ex->getMessage());
+            $import?->update([
+                'status' => WikiEntityImportStatus::Failed,
+                'finished_at' => Carbon::now(),
+            ]);
+            $this->fail(
+                new \Exception('Error spawning transferbot for wiki '.$this->wikiId.': '.$ex->getMessage()),
+            );
+        }
+    }
+
+    private static function acquireCredentials(string $wikiDomain): OAuthCredentials
+    {
+        $response = Http::withHeaders(['host' => $wikiDomain])->asForm()->post(
+            getenv('PLATFORM_MW_BACKEND_HOST').'/w/api.php?action=wbstackPlatformOauthGet&format=json',
+            [
+                'consumerName' => 'WikiEntityImportJob',
+                'ownerOnly' => '1',
+                'consumerVersion' => '1',
+                'grants' => 'basic|highvolume|import|editpage|editprotected|createeditmovepage|uploadfile|uploadeditmovefile|rollback|delete|mergehistory',
+                'callbackUrlTail' => '/w/index.php',
+            ],
+        );
+
+        if ($response->status() > 399) {
+            throw new \Exception('Unexpected status code '.$response->status().' from Mediawiki');
+        }
+
+        $body = $response->json();
+        if (!$body || $body['wbstackPlatformOauthGet']['success'] !== '1') {
+            throw new \ErrorException('Unexpected error acquiring oauth credentials for wiki '.$wikiDomain);
+        }
+
+        return OAuthCredentials::unmarshalMediaWikiResponse($body);
+    }
+}
+
+class TransferBotKubernetesJob
+{
+    public function __construct(
+        public Client $kubernetesClient,
+        public Wiki $wiki,
+        public OAuthCredentials $creds,
+        public array $entityIds,
+        public string $sourceWikiUrl,
+        public string $targetWikiUrl,
+        public int $importId,
+    ){
+        $this->kubernetesNamespace = Config::get('wbstack.api_job_namespace');
+    }
+
+    private string $kubernetesNamespace;
+
+    public function spawn(): string
+    {
+        $spec = $this->constructSpec();
+        $jobSpec = new KubernetesJob($spec);
+
+        $this->kubernetesClient->setNamespace($this->kubernetesNamespace);
+        $jobObject = $this->kubernetesClient->jobs()->apply($jobSpec);
+        $jobName = data_get($jobObject, 'metadata.name');
+        if (data_get($jobObject, 'status') === 'Failure' || !$jobName) {
+            // The k8s client does not fail reliably on 4xx responses, so checking the name
+            // currently serves as poor man's error handling.
+            throw new \RuntimeException(
+                'transferbot creation for wiki "'.$this->wiki->domain.'" failed with message: '.data_get($jobObject, 'message', 'n/a')
+            );
+        }
+        return $jobName;
+    }
+
+    private function constructSpec(): array
+    {
+        return [
+            'metadata' => [
+                'generateName' => 'run-transferbot-',
+                'namespace' => $this->kubernetesNamespace,
+                'labels' => [
+                    'app.kubernetes.io/instance' => $this->wiki->domain,
+                    'app.kubernetes.io/name' => 'run-transferbot',
+                ]
+            ],
+            'spec' => [
+                'ttlSecondsAfterFinished' => 0,
+                'backoffLimit' => 0,
+                'template' => [
+                    'metadata' => [
+                        'name' => 'run-transferbot'
+                    ],
+                    'spec' => [
+                        'containers' => [
+                            0 => [
+                                'hostNetwork' => true,
+                                'name' => 'run-qs-updater',
+                                'image' => 'ghcr.io/wbstack/transferbot:1.0.0',
+                                'env' => [
+                                    ...$this->creds->marshalEnv(),
+                                    [
+                                        'name' => 'CALLBACK_ON_FAILURE',
+                                        'value' => 'curl -H "Accept: application/json" -H "Content-Type: application/json" --data \'{"wiki_entity_import":'.$this->importId.',"status":"failed"}\' -XPATCH http://api-app-backend.default.svc.cluster.local/backend/wiki/updateEntityImport'
+                                    ],
+                                    [
+                                        'name' => 'CALLBACK_ON_SUCCESS',
+                                        'value' => 'curl -H "Accept: application/json" -H "Content-Type: application/json" --data \'{"wiki_entity_import":'.$this->importId.',"status":"success"}\' -XPATCH http://api-app-backend.default.svc.cluster.local/backend/wiki/updateEntityImport'
+                                    ],
+                                ],
+                                'command' => [
+                                    'transferbot',
+                                    $this->sourceWikiUrl,
+                                    $this->targetWikiUrl,
+                                    ...$this->entityIds,
+                                ],
+                                'resources' => [
+                                    'requests' => [
+                                        'cpu' => '0.25',
+                                        'memory' => '250Mi',
+                                    ],
+                                    'limits' => [
+                                        'cpu' => '0.5',
+                                        'memory' => '500Mi',
+                                    ],
+                                ],
+                            ]
+                        ],
+                        'restartPolicy' => 'Never'
+                    ]
+                ]
+            ]
+        ];
+    }
+}
+
+class OAuthCredentials
+{
+    public function __construct(
+        public string $consumerToken,
+        public string $consumerSecret,
+        public string $accessToken,
+        public string $accessSecret,
+    )
+    {}
+
+    public static function unmarshalMediaWikiResponse(array $response): OAuthCredentials
+    {
+        $data = $response['wbstackPlatformOauthGet']['data'];
+        return new OAuthCredentials(
+            consumerToken: $data['consumerKey'],
+            consumerSecret: $data['consumerSecret'],
+            accessToken: $data['accessKey'],
+            accessSecret: $data['accessSecret'],
+        );
+    }
+
+    public function marshalEnv(string $prefix = 'TARGET_WIKI_OAUTH'): array
+    {
+        return [
+            [
+                'name' => $prefix.'_CONSUMER_TOKEN',
+                'value' => $this->consumerToken,
+            ],
+            [
+                'name' => $prefix.'_CONSUMER_SECRET',
+                'value' => $this->consumerSecret,
+            ],
+            [
+                'name' => $prefix.'_ACCESS_TOKEN',
+                'value' => $this->accessToken,
+            ],
+            [
+                'name' => $prefix.'_ACCESS_SECRET',
+                'value' => $this->accessSecret,
+            ],
+        ];
+    }
+}
diff --git a/app/WikiEntityImport.php b/app/WikiEntityImport.php
@@ -22,10 +22,3 @@ class WikiEntityImport extends Model
         'status' => WikiEntityImportStatus::class,
     ];
 }
-
-enum WikiEntityImportStatus: string
-{
-    case Pending = "pending";
-    case Success = "success";
-    case Failed = "failed";
-}
diff --git a/app/WikiEntityImportStatus.php b/app/WikiEntityImportStatus.php
@@ -0,0 +1,10 @@
+<?php
+
+namespace App;
+
+enum WikiEntityImportStatus: string
+{
+    case Pending = "pending";
+    case Success = "success";
+    case Failed = "failed";
+}