Chore/add authz caching

[nss10]

Link to JIRA ticket if there is one: MIDRC-946

Improvements

• Cache arborist requests for 1 second to reduce multiple frequent requets.
• Add "linux/amd64" as the build platform to increase CI speed

[github-actions]

The style in this PR agrees with black. ✔️

This formatting comment was generated automatically by a script in uc-cdis/wool.

[coveralls]

Pull Request Test Coverage Report for Build 13844442420

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• 7 unchanged lines in 1 file lost coverage.
• Overall coverage increased (+0.07%) to 62.5%

---

Files with Coverage Reduction	New Missed Lines	%
auth/init.py	7	90.41%

Totals
Change from base Build 13812991300:	0.07%
Covered Lines:	2380
Relevant Lines:	3808

---

💛 - Coveralls

[github-actions]

Please find the ci env pod logs here

[github-actions]

filepath	$$\textcolor{#23d18b}{\tt{passed}}$$	$$\textcolor{#ffa500}{\tt{skipped}}$$	SUBTOTAL
$$\textcolor{#ffa500}{\tt{tests/test\_graph\_submit\_and\_query.py}}$$	$$\textcolor{#23d18b}{\tt{13}}$$	$$\textcolor{#ffa500}{\tt{1}}$$	$$\textcolor{#ffa500}{\tt{14}}$$
$$\textcolor{#ffa500}{\tt{tests/test\_data\_upload.py}}$$	$$\textcolor{#23d18b}{\tt{8}}$$	$$\textcolor{#ffa500}{\tt{1}}$$	$$\textcolor{#ffa500}{\tt{9}}$$
$$\textcolor{#ffa500}{\tt{TOTAL}}$$	$$\textcolor{#23d18b}{\tt{21}}$$	$$\textcolor{#ffa500}{\tt{2}}$$	$$\textcolor{#ffa500}{\tt{23}}$$

Please find the detailed integration test report here

Please find the ci env pod logs here

[paulineribeyre]

not building linux/arm64 isn't great for people with m1 macs trying to run images locally (like myself) - is this a recommendation from the SDET or PE teams?

[nss10]

“It wasn’t—I mixed it up with the thread about _native.yaml. I’ll update it accordingly.”

[paulineribeyre]

i'm a bit unsure about using the hash function here, we shouldn't take any risks with authz checks and from a quick google search there's a "high" risk of collision. A long key that includes the whole JWT worked fine for orthanc, could we do that here? If not, maybe the username or user ID?

[nss10]

Thanks for pointing this out! I didn’t realize hash was so prone to collisions. I’ll replace it with an underscore-separated string, similar to how it’s handled in Orthanc.

[paulineribeyre]

any way we could move this to the unit tests, then?
and please add a link to the known bug - github issue or such

[nss10]

I’ve removed the try-except block entirely and instead fixed mock_auth_request to ensure it returns True or raises an AuthzError as expected.

[paulineribeyre]

Retrieving typo - and i don't think this log is necessary, it would clutter the sheepdog logs. I think you're using it to debug unit tests? let's remove it when you're done

[paulineribeyre]

could/should these changes be moved to a different PR?

[nss10]

I think in terms of bigger picture all of them are solving a single problem of solving sheepdog crashes. But I get it, i can put that as a different PR to avoid confusion in the future.

Here we go -- Update gunicorn config to improve sheepdog's responsiveness #433

[github-actions]

filepath	$$\textcolor{#23d18b}{\tt{passed}}$$	$$\textcolor{#ffa500}{\tt{skipped}}$$	SUBTOTAL
$$\textcolor{#ffa500}{\tt{tests/test\_graph\_submit\_and\_query.py}}$$	$$\textcolor{#23d18b}{\tt{13}}$$	$$\textcolor{#ffa500}{\tt{1}}$$	$$\textcolor{#ffa500}{\tt{14}}$$
$$\textcolor{#ffa500}{\tt{tests/test\_data\_upload.py}}$$	$$\textcolor{#23d18b}{\tt{8}}$$	$$\textcolor{#ffa500}{\tt{1}}$$	$$\textcolor{#ffa500}{\tt{9}}$$
$$\textcolor{#ffa500}{\tt{TOTAL}}$$	$$\textcolor{#23d18b}{\tt{21}}$$	$$\textcolor{#ffa500}{\tt{2}}$$	$$\textcolor{#ffa500}{\tt{23}}$$

Please find the detailed integration test report here

Please find the ci env pod logs here