catalogd metas https endpoint proposal

[grokspawn]

No description provided.

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign mandre for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[joelanford]

On the surface, 4-10s seems like a suspiciously long time to process 21MB of data. Are we talking about in-cluster clients here or clients outside the cluster that may have slower connections?

[joelanford]

Also, does this include client processing of the data, or simply clients downloading raw bytes as quickly as possible?

[grokspawn]

In that timeframe the POC performs:

1. download of the full FBC
2. decomposition of JSONL objects to JSON objects (which I've been told is a pain)
3. loading essential objects to the content delivery framework to fulfill catalog package listing
4. rendering the catalog listing in the web UI

I'd have to get breakdown details from @TheRealJon to be more specific. For now, I've backed off the language so it doesn't read as specific condemnation of download speeds.

[joelanford]

Should we talk about how we plan to deprecate "all" once the new endpoint is GA?

[joelanford]

Suggested change

	This API will be conditionally enabled by an upstream `APIV1QueryEndpoint` feature gate as part of a downstream `NewOLM{suffix}` style OCP TP feature gate, and will be disabled by default.
	This API will be conditionally enabled by an upstream `APIV1QueryEndpoint` feature gate as part of a downstream `NewOLM{suffix}` style OCP feature gate.

We can talk more about TP vs GA in the graduation criteria section.

[joelanford]

If we are worried about the fact that query endpoint responses will almost always be incomplete, a middle ground might be an endpoint that returns all of the FBC metadata for a specific package, but I'm not sure that endpoint would provide the necessary latency requirements we're shooting for.

[grokspawn]

I think this comes down to whether we require the new endpoint to always provide valid FBC.
When we start revising FBC schemas I think we're going to have to juggle this.
For example, if we revise olm.package.v2 which uses its package field self-referentially, then we also get package-scoped valid FBC without a change to this endpoint.
But how does a client request this? Does it have to request the v2 schema specifically?

[openshift-ci]

@grokspawn: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[joelanford]

I am very curious what @spadgett and @TheRealJon think about whether this enhancement, on its own (i.e. without further FBC schema evolution), will be a significant enough improvement for Console's use cases, that it is reasonable to keep schema evolution out-of-scope.

I ask because we may need to include the schema evoluation in scope in order to reference it in a graduation criteria for taking the combined OLM and Console changes for OLMv1 support to GA.

[grokspawn]

A fair take. All of this originated from our feature RFC, and it was concerned solely with what our team was going to implement in this iteration.
This doesn't seem aligned with this process' scope maybe, and we can adjust as makes sense.

[TheRealJon]

It's hard to know for sure whether this will make significant improvements to the network latency issues. We still require almost all of the FBC data in order to populate the catalog view as designed. We hope that making more strategic asynchronous requests will help. The data model issues still remain.

[joelanford]

I thought I commented this somewhere, so if this is a repeat comment, I apologize:

RFC 7234, Section 2 states that the cache key is the http method and the full URI, which would include the URL parameters used in the request.

If clients request metas?schema=olm.package&name=foo and get back a LastModified response header, they are not supposed to use that value in a subsequent If-Modified-Since request header when requesting metas?schema=olm.package&name=bar, because that is a different URI.

[TheRealJon]

nit, it's more like a 4-10 second delay total, given the size of the 4 default Red Hat catalogs

Suggested change

	Requiring OCP console to make the full catalog available to users incurs a 4-10 second delay _per catalog_ even
	Requiring OCP console to make the full catalog available to users incurs a 4-10 second delay even

[TheRealJon]

It's hard to know for sure whether this will make significant improvements to the network latency issues. We still require almost all of the FBC data in order to populate the catalog view as designed. We hope that making more strategic asynchronous requests will help. The data model issues still remain.

[spadgett]

Thanks, @grokspawn. Really appreciate all that you guys are doing to help the console team.

[spadgett]

An example of the API usage would help here.

Checking my understanding: This API will allow clients to limit the number of items returned, but there's no way to limit what properties are returned for each item, correct? You get the full item representation?

[anik120]

@spadgett that is correct. You essentially get the list of fbc blobs that match the query criteria, in their entirety.

[spadgett]

Hey, @grokspawn. I'm a little unclear what this is saying since earlier the enhancement says cache control headers are supported. Last-Modified and If-Modified-Since should work, correct? Is this about keeping a cache on the server for performance?

As @joelanford points out, the browser cache keys on the full URL, including query parameters. Each response for different query parameters is considered different.

[spadgett]

On duplicate requests: If using cache control headers, this is presumably a quick check if the catalog has been modified and a 304 response. If the catalog has changed, we would want to refresh the cache anyway, so the extra request is actually desirable?

In practice, I think console will either be fetching the entire catalog or just one item. Generally, users work with extensions they've already installed much more often than they'd install a new extension, so we'll usually be getting one item. It's a steep cost to download everything for a single item, even if we only do it once per session. And depending how often the catalog updates, it could be many times per session if we refresh the cache.

I think this is more about performance than code complexity (although complexity is a consideration as well).

[anik120]

@spadgett that is correct. You essentially get the list of fbc blobs that match the query criteria, in their entirety.

[anik120]

nit: Link to RFC7234 here would be helpful.

[anik120]

nit: It's 304 statusNotModified

[anik120]

This section could probably use a little more explanation as to why this is even a question, ie include the context that olm.package objects do not contain packageName

[anik120]

Does a collection of valid FBC blobs not constitute valid FBC?