Skip to content

refactor: simplify identity types, move API code to daemon package #765

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
benhoyt wants to merge 18 commits into
base: master
Choose a base branch
from
Open

refactor: simplify identity types, move API code to daemon package #765

benhoyt wants to merge 18 commits into from
+311 −399

Conversation

@benhoyt
Copy link
Contributor

@benhoyt benhoyt commented Dec 16, 2025
edited
Loading

This is a follow-up PR after #744. It's not related to the package move, but it's to simplify the number of identity types from 3 to 2, and make it more consistent with how we do other API handling: internal type for internal usage, and then separate type or conversion functions in the daemon/API package to do the conversion to and from the API format.

This is now ready for review, though I still also want to do a few more manual tests on it.

@benhoyt benhoyt changed the title refactor: simplify identity types refactor: simplify identity types, move API code to daemon package Dec 16, 2025
@benhoyt benhoyt marked this pull request as ready for review January 5, 2026 07:29
@benhoyt benhoyt requested review from Copilot and dimaqq January 5, 2026 07:58

This comment was marked as resolved.

Sign in to view

@benhoyt
add nil check for defensive programming
7336183 
This shouldn't happen, as it's coming from our own internal JSON.
But doesn't hurt to check, like the other pem.Decode code paths.
dmitry-lyfar
dmitry-lyfar reviewed Jan 6, 2026
View reviewed changes
Copy link
Contributor

@dmitry-lyfar dmitry-lyfar left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I looked into the logic separation, validation and tests, not so much into the specifics of the identities types implementation. LGTM, it makes it easier to port these to another snapd-based codebase.

For my understanding: If I have:

{
  "action": "replace",
  "identities": {
    "alice": null,
    "bob": {
       ...
    }
  }
}

it would result in a nil apiIdent which would return nil as an identityFromApi. This looks like a legitimate case for the remove action, so that that identity should not only be mentioned but must be explicitly set to null by the client. Ditto for the replace.

I cannot seem to grasp the difference between replace and a combination of add, update and remove. My guess was that this action introduced for the client's convenience to reduce the number of round trips for cases when an entity does not exist but has to be created without an extra GET to ensure that? When one should use update vs. replace?

@benhoyt
Copy link
Contributor Author

benhoyt commented Jan 6, 2026

Yeah, your understanding is correct. The "null" identity is only for remove and replace (in the replace case "null" means remove it). The add/update/remove commands were more intended for manual usage; the replace command was more intended for API usage (it's idempotent and does all three).

@dimaqq
Copy link
Contributor

dimaqq commented Jan 7, 2026
edited
Loading

Yeah, your understanding is correct. The "null" identity is only for remove and replace (in the replace case "null" means remove it).

Let's add a unit test for that.

Edit: there are tests for update and remove already, they were just not visible in the change set.

dimaqq
dimaqq approved these changes Jan 7, 2026
View reviewed changes
Copy link
Contributor

@dimaqq dimaqq left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me!

@benhoyt
Copy link
Contributor Author

benhoyt commented Jan 7, 2026
edited
Loading

Yeah, your understanding is correct. The "null" identity is only for remove and replace (in the replace case "null" means remove it).

Let's add a unit test for that.

Yep, there's "null" tests for replace too:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@dimaqq dimaqq dimaqq approved these changes

+1 more reviewer

@dmitry-lyfar dmitry-lyfar dmitry-lyfar approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@benhoyt @dimaqq @dmitry-lyfar