Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: protect pro tier projects and our services #1445

Merged
merged 11 commits into from
Dec 1, 2023
Merged

feat: protect pro tier projects and our services #1445

merged 11 commits into from
Dec 1, 2023

Conversation

chesedo
Copy link
Contributor

@chesedo chesedo commented Nov 30, 2023

Description of change

Prevent the creation of new projects or the starting of idle projects that will overload our servers

How has this been tested? (if applicable)

Updating the tests

chesedo added 11 commits November 30, 2023 11:58
@chesedo
test: soft blocking of non-pro projects
42ac5c2
@chesedo
feat: add soft limit to free project creation
b58ba8d
@chesedo
test: starting an idle project that will go over soft limits
b798d4f
@chesedo
feat: don't start free idle project if there is no capacity
c94a7e3
@chesedo
refactor: deduplicate capacity logic
3699507
@chesedo
test: pro users going over container limits
c640462
@chesedo
bug: tests losing track of account tier
823c3ae 
While implementing the ability to allow pro users to start project above
the soft limit I could not understand why the tests kept failing.
Eventually found is was because gateway thought these were basic users.
This happened because our mock auth only tracked scopes and not the
actual tiers of users it managed.
@chesedo
feat: allow pro users to go over the soft container limit
13b56fa
@chesedo
refactor: clippy suggestions
cdc2221
@chesedo
test: pro users cannot go over hard limits
a5ec3be
@chesedo
feat: add a hard container limit
3e130a7
@chesedo chesedo marked this pull request as ready for review November 30, 2023 16:38
oddgrd
oddgrd approved these changes Nov 30, 2023
View reviewed changes
Copy link
Contributor

@oddgrd oddgrd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! I left one comment about observability, but it's not blocking.

gateway/src/service.rs
Comment on lines +963 to +971
let has_capacity = if current_container_count < self.cch_container_limit {
true
} else if current_container_count < self.soft_container_limit {
!is_cch_project
} else if current_container_count < self.hard_container_limit {
matches!(account_tier, AccountTier::Pro)
} else {
false
};
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we add tracing events with the count if we are over any of the limits?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm honestly not sure. Because of the ambulance event (in the other PR) we can already setup a honeycomb alert. So I want to add a warn! in this function but don't see how it will be useful considering the ambulance event.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

True, it's likely overkill. 👍

@oddgrd oddgrd merged commit d320d15 into main Dec 1, 2023
@oddgrd oddgrd deleted the feature/eng-1985-add-a-pull-the-plug-for-all-non-pro-projects branch December 1, 2023 10:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@oddgrd oddgrd oddgrd approved these changes

@jonaro00 jonaro00 jonaro00 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@chesedo @oddgrd @jonaro00