domverse/pngx-sync
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Implement master promotion feature
All checks were successful
Deploy / deploy (push) Successful in 33s
Details

Browse Source 
Allows promoting any replica to master with zero document re-downloads.
The sync_map rebuild uses existing DB data only — pure in-memory join.

Changes:
- app/sync/promote.py: preflight() checks (doc count, sync lock, ack
  warnings) and promote() transaction (pause scheduler, rebuild all
  sync_maps, create old-master replica, swap settings, resume scheduler)
- app/api/master.py: GET /api/master/promote/{id}/preflight (dry run)
  and POST /api/master/promote/{id} (execute)
- app/models.py: add promoted_from_master bool field to Replica
- app/database.py: idempotent ALTER TABLE migration for new column
- app/main.py: register master router
- app/templates/replica_detail.html: "Promote to Master" button +
  dialog with pre-flight summary, 3-card stats, ack checkboxes, spinner
- app/ui/routes.py: flash query param on dashboard route
- app/templates/dashboard.html: blue info banner for post-promotion flash

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
domverse
2026-03-25 21:16:57 +01:00
parent f29a451e55
commit cdc9407ff3
8 changed files with 567 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

60
app/api/master.py Normal file
View File

@@ -0,0 +1,60 @@
"""API endpoints for master promotion."""
from fastapi import APIRouter, HTTPException
from pydantic import BaseModel
router = APIRouter(prefix="/api/master", tags=["master"])
class PromoteRequest(BaseModel):
old_master_name: str
acknowledge_pending: bool = False
acknowledge_errors: bool = False
@router.get("/promote/{replica_id}/preflight")
async def preflight_endpoint(replica_id: int):
"""Dry-run pre-flight check. No state is modified."""
from ..sync.promote import preflight
result = await preflight(replica_id)
return {
"can_promote": result.can_promote,
"error": result.error,
"detail": result.detail,
"pending_entries": result.pending_entries,
"error_entries": result.error_entries,
"ok_entries": result.ok_entries,
"missing_doc_count": result.missing_doc_count,
"replica_doc_count": result.replica_doc_count,
"master_doc_count": result.master_doc_count,
}
@router.post("/promote/{replica_id}")
async def promote_endpoint(replica_id: int, body: PromoteRequest):
"""Execute promotion. Pauses scheduler, runs transaction, resumes scheduler."""
from ..sync.promote import promote
try:
result = await promote(
replica_id=replica_id,
old_master_name=body.old_master_name,
acknowledge_pending=body.acknowledge_pending,
acknowledge_errors=body.acknowledge_errors,
)
except ValueError as exc:
error_code = exc.args[0] if exc.args else "UNKNOWN"
detail_msg = exc.args[1] if len(exc.args) > 1 else str(exc)
status = 409 if error_code == "SYNC_RUNNING" else 422
raise HTTPException(status_code=status, detail={"error": error_code, "detail": detail_msg})
return {
"ok": result.ok,
"new_master": {"url": result.new_master_url, "name": result.new_master_name},
"old_master_replica_id": result.old_master_replica_id,
"sync_map_rebuilt": {
"replicas_affected": result.replicas_affected,
"entries_mapped": result.entries_mapped,
"entries_skipped": result.entries_skipped,
},
}

7
app/database.py
View File

@@ -56,4 +56,11 @@ def create_db_and_tables() -> None:
"INSERT INTO logs_fts(logs_fts, rowid, message) "
"VALUES('delete', old.id, old.message); END"
)
# Idempotent column additions for schema evolution (no Alembic)
try:
conn.exec_driver_sql(
"ALTER TABLE replicas ADD COLUMN promoted_from_master INTEGER DEFAULT 0"
)
except Exception:
pass # column already exists
conn.commit()

2
app/main.py
View File

@@ -142,12 +142,14 @@ def create_app() -> FastAPI:
from .api.logs import router as logs_router
from .api.settings import router as settings_router
from .api.status import router as status_router
from .api.master import router as master_router
app.include_router(replicas_router)
app.include_router(sync_router)
app.include_router(logs_router)
app.include_router(settings_router)
app.include_router(status_router)
app.include_router(master_router)
# ── Health & Metrics (no auth) ────────────────────────────────────────────

1
app/models.py
View File

@@ -18,6 +18,7 @@ class Replica(SQLModel, table=True):
consecutive_failures: int = 0
suspended_at: Optional[datetime] = None
last_alert_at: Optional[datetime] = None
promoted_from_master: Optional[bool] = Field(default=False)
created_at: datetime = Field(default_factory=datetime.utcnow)

334
app/sync/promote.py Normal file
View File

@@ -0,0 +1,334 @@
"""Master promotion: pre-flight checks and atomic promotion transaction."""
import asyncio
from dataclasses import dataclass
from datetime import datetime, timezone
from typing import Optional
from sqlmodel import Session, select
from ..config import get_config
from ..crypto import decrypt
from ..database import get_engine
from ..models import Log, Replica, Setting, SyncMap, SyncRun
@dataclass
class PreflightResult:
can_promote: bool
error: Optional[str] = None
detail: Optional[str] = None
pending_entries: int = 0
error_entries: int = 0
ok_entries: int = 0
missing_doc_count: int = 0
replica_doc_count: Optional[int] = None
master_doc_count: Optional[int] = None
@dataclass
class PromoteResult:
ok: bool
new_master_url: Optional[str] = None
new_master_name: Optional[str] = None
old_master_replica_id: Optional[int] = None
replicas_affected: int = 0
entries_mapped: int = 0
entries_skipped: int = 0
error: Optional[str] = None
async def preflight(replica_id: int) -> PreflightResult:
"""
Dry-run pre-flight checks. The only network calls are two doc-count fetches.
Does not modify any state.
"""
from ..api.status import _fetch_count
from ..scheduler import SETTINGS_DEFAULTS
from ..sync.engine import _sync_lock
engine = get_engine()
config = get_config()
if _sync_lock.locked():
return PreflightResult(
can_promote=False,
error="SYNC_RUNNING",
detail="A sync cycle is currently running. Wait for it to complete.",
)
with Session(engine) as session:
rows = session.exec(select(Setting)).all()
settings = dict(SETTINGS_DEFAULTS)
for row in rows:
if row.value is not None:
settings[row.key] = row.value
master_url = settings.get("master_url", "")
master_token_enc = settings.get("master_token", "")
if not master_url or not master_token_enc:
return PreflightResult(
can_promote=False,
error="NO_MASTER",
detail="Master URL or token is not configured.",
)
replica = session.get(Replica, replica_id)
if not replica:
return PreflightResult(
can_promote=False, error="NOT_FOUND", detail="Replica not found."
)
if not replica.enabled or replica.suspended_at is not None:
return PreflightResult(
can_promote=False,
error="REPLICA_DISABLED",
detail="Replica must be enabled and not suspended before promotion.",
)
all_entries = session.exec(
select(SyncMap).where(SyncMap.replica_id == replica_id)
).all()
replica_url = replica.url
replica_token_enc = replica.api_token
ok_entries = sum(1 for e in all_entries if e.status == "ok")
pending_entries = sum(1 for e in all_entries if e.status == "pending")
error_entries = sum(1 for e in all_entries if e.status == "error")
master_token = decrypt(master_token_enc, config.secret_key)
replica_token = decrypt(replica_token_enc, config.secret_key)
master_count, replica_count = await asyncio.gather(
_fetch_count(master_url, master_token),
_fetch_count(replica_url, replica_token),
)
if master_count is not None and replica_count is not None and replica_count < master_count:
return PreflightResult(
can_promote=False,
error="MISSING_DOCS",
detail=(
f"Replica has {replica_count} documents; master has {master_count}. "
f"Replica is missing {master_count - replica_count} document(s). "
"Complete the sync before promoting."
),
pending_entries=pending_entries,
error_entries=error_entries,
ok_entries=ok_entries,
missing_doc_count=master_count - replica_count,
replica_doc_count=replica_count,
master_doc_count=master_count,
)
return PreflightResult(
can_promote=True,
pending_entries=pending_entries,
error_entries=error_entries,
ok_entries=ok_entries,
replica_doc_count=replica_count,
master_doc_count=master_count,
)
async def promote(
replica_id: int,
old_master_name: str,
acknowledge_pending: bool = False,
acknowledge_errors: bool = False,
) -> PromoteResult:
"""
Execute promotion. Pauses the scheduler, runs a single DB transaction,
resumes the scheduler in a finally block.
Raises ValueError(error_code, detail) on pre-flight violations.
"""
from .. import envfile
from .. import scheduler as _sched_module
from ..sync.engine import _sync_lock
engine = get_engine()
config = get_config()
now = datetime.now(timezone.utc)
# Re-run preflight as atomic gate
pf = await preflight(replica_id)
if not pf.can_promote:
raise ValueError(pf.error or "PREFLIGHT_FAILED", pf.detail or "")
if pf.pending_entries > 0 and not acknowledge_pending:
raise ValueError(
"ACK_REQUIRED",
f"Replica has {pf.pending_entries} pending sync_map entries. "
"Set acknowledge_pending=true to proceed.",
)
if pf.error_entries > 0 and not acknowledge_errors:
raise ValueError(
"ACK_REQUIRED",
f"Replica has {pf.error_entries} error sync_map entries. "
"Set acknowledge_errors=true to proceed.",
)
# Pause scheduler before touching the DB
if _sched_module._scheduler is not None:
_sched_module._scheduler.pause()
try:
with Session(engine) as session:
# ── Read old master credentials ───────────────────────────────────
def _get_setting(key: str) -> str:
s = session.get(Setting, key)
return (s.value or "") if s else ""
old_master_url = _get_setting("master_url")
old_master_token_enc = _get_setting("master_token")
old_master_token_plain = decrypt(old_master_token_enc, config.secret_key)
# ── Load Replica A; capture attrs before deletion ────────────────
replica_a = session.get(Replica, replica_id)
promoted_name = replica_a.name # type: ignore[union-attr]
promoted_url = replica_a.url # type: ignore[union-attr]
promoted_token_enc = replica_a.api_token # type: ignore[union-attr]
promoted_token_plain = decrypt(promoted_token_enc, config.secret_key)
# ── Build A's ok-entry map: old_master_id → A_doc_id ─────────────
a_entries = session.exec(
select(SyncMap).where(
SyncMap.replica_id == replica_id,
SyncMap.status == "ok",
)
).all()
# old_master_doc_id → A's replica_doc_id (= new master doc id)
a_doc_id_map: dict[int, int] = {
e.master_doc_id: e.replica_doc_id
for e in a_entries
if e.replica_doc_id is not None
}
# ── Rebuild sync_maps for all other replicas ──────────────────────
other_replicas = session.exec(
select(Replica).where(Replica.id != replica_id)
).all()
total_mapped = 0
total_skipped = 0
for rep_b in other_replicas:
b_entries = session.exec(
select(SyncMap).where(
SyncMap.replica_id == rep_b.id,
SyncMap.status == "ok",
)
).all()
b_doc_id_map: dict[int, int] = {
e.master_doc_id: e.replica_doc_id
for e in b_entries
if e.replica_doc_id is not None
}
b_checksum_map: dict[int, Optional[str]] = {
e.master_doc_id: e.file_checksum for e in b_entries
}
# Delete all existing rows for B (ok + non-ok)
for entry in session.exec(
select(SyncMap).where(SyncMap.replica_id == rep_b.id)
).all():
session.delete(entry)
# Insert rebuilt rows
for old_master_id, a_doc_id in a_doc_id_map.items():
if old_master_id in b_doc_id_map:
session.add(SyncMap(
replica_id=rep_b.id,
master_doc_id=a_doc_id,
replica_doc_id=b_doc_id_map[old_master_id],
status="ok",
last_synced=now,
file_checksum=b_checksum_map.get(old_master_id),
))
total_mapped += 1
else:
total_skipped += 1
# Force full validation pass on next sync
rep_b.last_sync_ts = None
session.add(rep_b)
# ── Create replica row for old master ─────────────────────────────
new_old_master_replica = Replica(
name=old_master_name,
url=old_master_url,
api_token=old_master_token_enc,
enabled=True,
promoted_from_master=True,
last_sync_ts=None,
)
session.add(new_old_master_replica)
session.flush() # populate .id before inserting SyncMap rows
for old_master_id, a_doc_id in a_doc_id_map.items():
session.add(SyncMap(
replica_id=new_old_master_replica.id,
master_doc_id=a_doc_id,
replica_doc_id=old_master_id,
status="ok",
last_synced=now,
))
# ── Null out FK references so replica_a can be deleted ───────────
# sync_runs and logs keep history; just unlink the replica FK
for run in session.exec(
select(SyncRun).where(SyncRun.replica_id == replica_id)
).all():
run.replica_id = None
session.add(run)
for log in session.exec(
select(Log).where(Log.replica_id == replica_id)
).all():
log.replica_id = None
session.add(log)
# ── Delete sync_map + replica A ───────────────────────────────────
for entry in session.exec(
select(SyncMap).where(SyncMap.replica_id == replica_id)
).all():
session.delete(entry)
session.delete(replica_a)
# ── Update settings ───────────────────────────────────────────────
def _upsert(key: str, value: str) -> None:
s = session.get(Setting, key)
if s is None:
s = Setting(key=key, value=value)
else:
s.value = value
session.add(s)
_upsert("master_url", promoted_url)
_upsert("master_token", promoted_token_enc)
session.commit()
old_master_replica_id = new_old_master_replica.id
# ── Update envfile (outside DB transaction — file I/O) ────────────────
envfile.write({
"MASTER_URL": promoted_url,
"MASTER_TOKEN": promoted_token_plain,
})
url_key, token_key = envfile.replica_keys(old_master_name)
envfile.write({url_key: old_master_url, token_key: old_master_token_plain})
return PromoteResult(
ok=True,
new_master_url=promoted_url,
new_master_name=promoted_name,
old_master_replica_id=old_master_replica_id,
replicas_affected=len(other_replicas),
entries_mapped=total_mapped,
entries_skipped=total_skipped,
)
except ValueError:
raise
except Exception as exc:
raise exc
finally:
if _sched_module._scheduler is not None:
_sched_module._scheduler.resume()

6
app/templates/dashboard.html
View File

@@ -15,6 +15,12 @@
</div>
</div>
{% if flash %}
<div role="alert" style="padding:0.6rem 1rem; margin-bottom:1rem; background:#eff6ff; color:#1d4ed8; border-radius:0.4rem; border-left:3px solid #1d4ed8; font-size:0.95em;">
{{ flash }}
</div>
{% endif %}
<!-- Progress bar -->
<div id="progress-bar" class="{% if progress.running %}active{% endif %}"
hx-get="/api/sync/running"

156
app/templates/replica_detail.html
View File

@@ -11,7 +11,7 @@
<div style="display:flex; align-items:center; justify-content:space-between; flex-wrap:wrap; gap:1rem;">
<h2 style="margin:0;">{{ replica.name }}</h2>
<div style="display:flex; gap:0.5rem;">
<div style="display:flex; gap:0.5rem; flex-wrap:wrap;">
<button class="secondary outline"
hx-post="/api/replicas/{{ replica.id }}/test"
hx-target="#conn-result" hx-swap="innerHTML">
@@ -30,6 +30,11 @@
Re-enable
</button>
{% endif %}
{% if replica.enabled and not replica.suspended_at %}
<button class="outline" style="margin-left:auto;" onclick="openPromoteDialog()">
Promote to Master
</button>
{% endif %}
</div>
</div>
@@ -149,4 +154,153 @@
</div>
</details>
<!-- Promote to Master dialog -->
<dialog id="promote-dialog">
<article>
<header>
<button aria-label="Close" rel="prev" onclick="document.getElementById('promote-dialog').close()"></button>
<h3 style="margin:0;">Promote <strong>{{ replica.name }}</strong> to Master</h3>
<p style="margin:0.25rem 0 0; font-size:0.875em; color:var(--pico-muted-color);">
{{ replica.url }}
</p>
</header>
<div id="promote-preflight-content" style="min-height:6rem;">
<progress></progress>
<p class="muted">Checking pre-flight conditions…</p>
</div>
<footer style="display:flex; justify-content:flex-end; gap:0.5rem; padding:0; margin-top:1.25rem;">
<button class="secondary outline" onclick="document.getElementById('promote-dialog').close()">Cancel</button>
<button id="promote-confirm-btn" disabled onclick="doPromote()">Promote to Master</button>
</footer>
</article>
</dialog>
<script>
const REPLICA_ID = {{ replica.id }};
const REPLICA_NAME = {{ replica.name | tojson }};
let _preflightData = null;
async function openPromoteDialog() {
const dialog = document.getElementById('promote-dialog');
const content = document.getElementById('promote-preflight-content');
const btn = document.getElementById('promote-confirm-btn');
content.innerHTML = '<progress></progress><p class="muted">Checking pre-flight conditions\u2026</p>';
btn.disabled = true;
_preflightData = null;
dialog.showModal();
try {
const resp = await fetch('/api/master/promote/' + REPLICA_ID + '/preflight');
_preflightData = await resp.json();
renderPreflight(_preflightData);
} catch (err) {
content.innerHTML = '<p><span class="badge badge-error">Error</span> ' + err + '</p>';
}
}
function renderPreflight(data) {
const content = document.getElementById('promote-preflight-content');
const btn = document.getElementById('promote-confirm-btn');
let html = '';
if (!data.can_promote) {
html += '<div style="padding:0.75rem 1rem; background:#fff5f5; border-radius:0.4rem; border-left:3px solid var(--pico-del-color);">';
html += '<strong>' + (data.error || 'Cannot promote') + '</strong><br>';
html += '<small>' + (data.detail || '') + '</small>';
html += '</div>';
content.innerHTML = html;
btn.disabled = true;
return;
}
// Summary cards
html += '<div style="display:grid; grid-template-columns:repeat(3,1fr); gap:0.75rem; margin-bottom:1rem;">';
html += '<div style="padding:0.6rem 0.75rem; background:var(--pico-card-sectionning-background-color); border-radius:0.4rem; text-align:center;">';
html += '<small class="muted">Master docs</small><br><strong>' + (data.master_doc_count ?? '?') + '</strong></div>';
html += '<div style="padding:0.6rem 0.75rem; background:var(--pico-card-sectionning-background-color); border-radius:0.4rem; text-align:center;">';
html += '<small class="muted">Replica docs</small><br><strong>' + (data.replica_doc_count ?? '?') + '</strong></div>';
html += '<div style="padding:0.6rem 0.75rem; background:var(--pico-card-sectionning-background-color); border-radius:0.4rem; text-align:center;">';
html += '<small class="muted">Mappings to rebuild</small><br><strong>' + data.ok_entries + '</strong></div>';
html += '</div>';
// Old master name field
html += '<label style="margin-bottom:0.75rem; display:block;">Name for the current master (it becomes a new replica)<input type="text" id="old-master-name" value="old-master" required oninput="updateConfirmBtn()" style="margin-top:0.25rem;"></label>';
// Warnings with ack checkboxes
if (data.pending_entries > 0) {
html += '<label style="display:flex; gap:0.5rem; align-items:flex-start; margin-bottom:0.5rem; cursor:pointer;">';
html += '<input type="checkbox" id="ack-pending" onchange="updateConfirmBtn()" style="margin-top:0.1rem; flex-shrink:0;">';
html += '<span><strong>' + data.pending_entries + ' pending entries</strong> \u2014 these documents may be re-uploaded after promotion.</span>';
html += '</label>';
}
if (data.error_entries > 0) {
html += '<label style="display:flex; gap:0.5rem; align-items:flex-start; margin-bottom:0.5rem; cursor:pointer;">';
html += '<input type="checkbox" id="ack-errors" onchange="updateConfirmBtn()" style="margin-top:0.1rem; flex-shrink:0;">';
html += '<span><strong>' + data.error_entries + ' error entries</strong> \u2014 these documents will be re-synced after promotion.</span>';
html += '</label>';
}
html += '<p style="margin:0.75rem 0 0; font-size:0.875em; color:var(--pico-muted-color);">The current master will be added as a new replica and will sync from <strong>' + REPLICA_NAME + '</strong> going forward.</p>';
content.innerHTML = html;
updateConfirmBtn();
}
function updateConfirmBtn() {
if (!_preflightData || !_preflightData.can_promote) return;
const btn = document.getElementById('promote-confirm-btn');
const nameOk = (document.getElementById('old-master-name')?.value || '').trim().length > 0;
const pendingOk = _preflightData.pending_entries === 0 || document.getElementById('ack-pending')?.checked;
const errorsOk = _preflightData.error_entries === 0 || document.getElementById('ack-errors')?.checked;
btn.disabled = !(nameOk && pendingOk && errorsOk);
}
async function doPromote() {
const btn = document.getElementById('promote-confirm-btn');
const oldMasterName = (document.getElementById('old-master-name')?.value || '').trim();
const ackPending = !!document.getElementById('ack-pending')?.checked;
const ackErrors = !!document.getElementById('ack-errors')?.checked;
btn.disabled = true;
btn.setAttribute('aria-busy', 'true');
btn.textContent = 'Promoting\u2026';
try {
const resp = await fetch('/api/master/promote/' + REPLICA_ID, {
method: 'POST',
headers: {'Content-Type': 'application/json'},
body: JSON.stringify({
old_master_name: oldMasterName,
acknowledge_pending: ackPending,
acknowledge_errors: ackErrors,
}),
});
if (resp.ok) {
const result = await resp.json();
const msg = 'Promoted\u00a0' + (result.new_master?.name || REPLICA_NAME) +
'\u00a0to master.\u00a0' + oldMasterName + '\u00a0added as replica.\u00a0' +
result.sync_map_rebuilt.entries_mapped + '\u00a0document mappings rebuilt.';
window.location.href = '/?flash=' + encodeURIComponent(msg);
} else {
const err = await resp.json();
const detail = err.detail?.detail || err.detail || 'Unknown error';
const content = document.getElementById('promote-preflight-content');
content.innerHTML += '<p style="margin-top:0.75rem;"><span class="badge badge-error">Error</span> ' + detail + '</p>';
btn.disabled = false;
btn.removeAttribute('aria-busy');
btn.textContent = 'Promote to Master';
}
} catch (err) {
const content = document.getElementById('promote-preflight-content');
content.innerHTML += '<p style="margin-top:0.75rem;"><span class="badge badge-error">Network error</span> ' + err + '</p>';
btn.disabled = false;
btn.removeAttribute('aria-busy');
btn.textContent = 'Promote to Master';
}
}
</script>
{% endblock %}

3
app/ui/routes.py
View File

@@ -86,7 +86,7 @@ async def doc_counts_fragment(request: Request, session: Session = Depends(get_s
@router.get("/", response_class=HTMLResponse)
def dashboard(request: Request, session: Session = Depends(get_session)):
def dashboard(request: Request, session: Session = Depends(get_session), flash: Optional[str] = None):
replicas = session.exec(select(Replica)).all()
now = datetime.now(timezone.utc)
progress = get_progress()
@@ -133,6 +133,7 @@ def dashboard(request: Request, session: Session = Depends(get_session)):
"replica_rows": replica_rows,
"last_run": last_run,
"progress": progress,
"flash": flash,
},
)