[Provision alignment] Blueprint: Namespace Provision Sync
status: proposed
creation-date: "2024-12-03"
authors: [ "@bhrai", "@cwiesner" ]
coach: "TBD"
approvers: [ "@courtmeddaugh", "@rhardarson " ]
owning-stage: "~"section::fulfillment" "~"group::provision"
participating-stages: []Namespace Provision Sync
Summary
As a part of aligning provisioning between Self-Managed and SaaS , we are restructuring the way provision for namespace is done on GitLab.com
Motivation
The work for this will align the provisioning for GitLab.com closer to the way SM/Dedicated is provisioned. A similar approach will be implemented to sync a namespace's subscription (or trial) info.
Goals
The goal of this blueprint is to produce:
- an architectural design(s) on how the namespace will be provisioned in new process
- an iteration plan to achieve the chosen design
- add blueprint to the design docs or CDot docs.
CDot Side
Sequence Diagram
sequenceDiagram
participant User
participant CDot
participant GitLab
alt New subscription or changed info
User->>CDot: Create/Update subscription
CDot->>CDot: Create new gitlab_namespaces_syncs and<br/> create new gitlab_namespaces_sync_attempts (state set to started)
CDot->>GitLab: Trigger sync
GitLab-->>CDot: Response
alt success: 200
CDot->>CDot: Update state to completed in gitlab_namespaces_sync_attempts
else error
CDot->>CDot: Update state to failed in gitlab_namespaces_sync_attempts and<br/> handle response error
end
end
User->>CDot: Manual re-sync request
CDot->>CDot: Create new gitlab_namespaces_sync_attempts (state set to started)<br/> for existing gitlab_namespaces_syncs
CDot->>GitLab: Trigger sync
GitLab-->>CDot: Response
alt success: 200
CDot->>CDot: Update state to completed in gitlab_namespaces_sync_attempts
else error
CDot->>CDot: Update state to failed in gitlab_namespaces_sync_attempts and<br/> handle response error
endFlow chart
graph TD
A[Start] --> B{New subscription or changed info?}
B -->|Yes| C[Create new gitlab_namespaces_syncs and<br/> new gitlab_namespaces_sync_attempts]
B -->|No| D[No new record created]
C --> E[Trigger sync to GitLab]
E --> F[GitLab: response]
F --> G{success: 200?}
G -->|Yes| H[Update state in gitlab_namespaces_sync_attempts]
G -->|No| I[Update state in gitlab_namespaces_sync_attempts and handle error response]
H --> J[End]
I --> J
D --> J
K[Manual re-sync request] --> L[Trigger sync to GitLab]
L --> M[GitLab: response]
M --> N{success: 201?}
N -->|Yes| O[Update state in gitlab_namespaces_sync_attempts]
N -->|No| P[Update state in gitlab_namespaces_sync_attempts and handle error response]
O --> Q[End]
P --> QDatabase
erDiagram
gitlab_namespaces_sync_attempts {
bigint id PK
timestamptz created_at
timestamptz updated_at
bigint namespaces_sync_id FK
integer state
}
gitlab_namespaces_syncs {
bigint id PK
timestamptz created_at
timestamptz updated_at
integer namespace_id
string attrs_sha256
jsonb attrs
}
gitlab_namespaces_syncs ||--o{ gitlab_namespaces_sync_attempts : "has many"GitLab.com side
Sequence diagram
sequenceDiagram
participant BW as CDot Background Worker
participant DB as CDot Database
participant GL as GitLab
participant GLDB as GitLab Database
Note over BW: Namespace provisioning job starts
BW->>DB: Fetch latest namespace_syncs for namespace_id
activate DB
DB-->>BW: Return namespace_sync record
deactivate DB
Note over BW: Process namespace attributes
BW->>GL: HTTP POST /api/v4/internal/gitlab_subscriptions/namespaces/:id/provision
activate GL
Note over GL: Step 1: Update gitlab_subscription
GL->>GLDB: Update gitlab_subscriptions table with plan details
activate GLDB
GLDB-->>GL: Confirm subscription update
deactivate GLDB
Note over GL: Step 2: Update namespace for: compute_minutes & storage
GL->>GLDB: Update namespaces table with compute_minutes & storage limits
activate GLDB
GLDB-->>GL: Confirm namespace update
deactivate GLDB
Note over GL: Step 3: Provision add_on_purchase
GL->>GLDB: Upsert add_on_purchases table
activate GLDB
GLDB-->>GL: Confirm add-on purchase upserted
deactivate GLDB
Note over GL: Check for any failures
alt Any step failed
GL-->>BW: Return error response (422) with failure details
else All steps succeeded
GL-->>BW: Return success response (200)
end
deactivate GL
alt Success Response (200)
Note over BW: Job completed successfully
else Validation Error (422)
Note over BW: Log error details
BW->>DB: Update namespace_sync as partially failed
else Server Error (5XX)
Note over BW: Schedule job retry
BW->>DB: Update job status for retry
endAPI Contract
A new internal endpoint will be created on GitLab that will do full provision of the namespace.
POST /api/v4/internal/gitlab_subscriptions/namespaces/:id/provision
The endpoint will accept following JSON body structure:
Notes:
- All params inside
provisionobject are optional
{
"provision": {
"main_plan": {
"plan_code": "string_value",
"start_date": "2023-06-01",
"end_date": "2024-05-31",
"seats": 100,
"max_seats_used": 90,
"trial": false,
"trial_starts_on": "2023-07-01",
"trial_ends_on": "2024-07-01",
"auto_renew": true
},
"compute_minutes": {
"shared_runners_minutes_limit": 50000,
"extra_shared_runners_minutes_limit": 10000,
"packs": [
{
"purchase_xid": "purchase_1",
"number_of_minutes": 5000,
"expires_at": "2023-12-31"
},
{
"purchase_xid": "purchase_2",
"number_of_minutes": 5000,
"expires_at": "2024-06-30"
}
]
},
"storage": {
"additional_purchased_storage_size": 1000,
"additional_purchased_storage_ends_on": "2024-05-31"
},
"add_on_purchases": {
"duo_pro": [
{
"quantity": 100,
"started_on": "2023-06-01",
"expires_on": "2024-05-31",
"purchase_xid": "purchase_123",
"trial": false
}
]
}
}
}Response:
-
200: Successful Request✅ -
422: Unprocesssable Entity⚠️ -
401: Unauthorized Request🔐 -
404: Namespace not found🤷 -
500: Server Error💥
Edited by Corinna Gogolok