Record Track Downloads via Entity Manager #9103
Conversation
rickyrombo
requested review from
alecsavvy,
dharit-tan,
isaacsolo and
raymondjacobson
🦋 Changeset detectedLatest commit: 71159a7 The changes in this PR will be included in the next version bump. This PR includes changesets to release 2 packages
Not sure what this means? Click here to learn what changesets are. Click here if you're a maintainer who wants to add another changeset to this PR |
| import { logger } from "./logger"; | ||
| import { Wallet, providers } from "ethers"; | ||
|
|
||
| const localDevWallets = [ |
There was a problem hiding this comment.
these all came from POA ganache
| * The numeric user id | ||
| */ | ||
| userId: number | ||
| userId?: number |
There was a problem hiding this comment.
Unsure if downloads are gated on being signed in at a protocol level, so made user ID optional
|
this is AWESOME! I'm imagining notifications when someone downloads your track 👀 |
| if (isUserDeactivate(isDeactivated, encodedABI)) { | ||
| logger.info("user deactivation") | ||
| createOrDeactivate = true | ||
| isAnonymousAllowed = true |
There was a problem hiding this comment.
thanks for making this flag more general
|
Preview this change https://demo.audius.co/mjp-track-recorded-downloads |
isaacsolo
left a comment
isaacsolo
left a comment
There was a problem hiding this comment.
awesome! would be nice to have access validation for recording a download, more reason to move this to content in the future
| track_id INTEGER NOT NULL, | ||
| user_id INTEGER, | ||
| created_at TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP, | ||
| CONSTRAINT track_downloads_blocknumber_fkey FOREIGN KEY (blocknumber) REFERENCES blocks("number") ON DELETE CASCADE, |
There was a problem hiding this comment.
do we have these constraints elsewhere now? especially the on delete cascade part. just curious if this is in line with the current strategy for these tables
There was a problem hiding this comment.
Yeah we do it for eg track routes i believe and others - cascade deletes helps w/ reverts and replays. CC: @isaacsolo to confirm I set this up correctly
|
|
||
|
|
||
| def download_track(params: ManageEntityParameters): | ||
| validate_track_tx(params) |
There was a problem hiding this comment.
do we need to validate that the params.user_id is the signer too?
There was a problem hiding this comment.
Good q. validate_track_tx calls validate_signer, so this does. Do we need that? Arguably no. I designed everything else assuming that there isn't a user here, so if I wanted to be consistent I would need to make sure that a user not being found is allowed.
HOWEVER, in the client, we don't allow downloads unless signed in. So I think my assumption was off - despite the download API not requiring a user (iirc), the client does. Maybe the right thing to do is require an account for the download API and then keeping everything requiring a user?
There was a problem hiding this comment.
chatted offline. kinda whatever you want to do here. require user is fine
|
Preview this change https://demo.audius.co/mjp-track-recorded-downloads |
|
|
||
| track_id = params.entity_id | ||
| existing_track = params.existing_records["Track"][track_id] | ||
| if ( |
There was a problem hiding this comment.
i don't quite understand this - wouldn't track_id never change on an update?
and how is new_records["Track"][track_id][-1] an array...
maybe the comment wording is throwing me off.
There was a problem hiding this comment.
this is all copy-pasted, but I think I understand it?
track_id isn't changing, but the track might be (ie if a couple of edits come in the same block). We want to work with the most recent changed track or we might have problems.
existing_records is a dict mapping ids => records
new_records is a dict mapping ids => record lists
|
| GitGuardian id | GitGuardian status | Secret | Commit | Filename | |
|---|---|---|---|---|---|
| 11648676 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/discovery-one.docker.env | View secret |
| 11648676 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/discovery-one.env | View secret |
| 11648678 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/content-three.env | View secret |
| 11648678 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/content-three.docker.env | View secret |
| 11648679 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/content-two.docker.env | View secret |
| 11648679 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/content-two.env | View secret |
| 11648680 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/content-one.env | View secret |
| 11648680 | Triggered | Generic High Entropy Secret | 9beb0ed | core/infra/dev_config/content-one.docker.env | View secret |
🛠 Guidelines to remediate hardcoded secrets
- Understand the implications of revoking this secret by investigating where it is used in your code.
- Replace and store your secrets safely. Learn here the best practices.
- Revoke and rotate these secrets.
- If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.
To avoid such incidents in the future consider
- following these best practices for managing and storing secrets including API keys and other credentials
- install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.
🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.
|
Preview this change https://demo.audius.co/mjp-track-recorded-downloads |
[876e321] [QA-1459] Fix 0087_fix_slugs_with_slash.sql migration (#9411) Raymond Jacobson [c34cd83] Record Track Downloads via Entity Manager (#9103) Marcus Pasell [d38870a] Small repairer clean up (#9405) Michelle Brier [8cd3d6c] Payment router exception for when no geo_data found in memo (#9404) Reed [53bf3e2] [PAY-3321][PAY-3333] Add network cut feature flag and update staking bridge and payment router addresses (#9393) Saliou Diallo
[7121301] Set is_custom_musical_key (#9418) Sebastian Klingler [ee99fd4] add is_custom_musical_key (#9416) Michelle Brier [f30a637] [PAY-3332] Remixers users endpoint (#9401) Reed [f2eabb1] [QA-1491] Fix balance polling bug (#9402) Raymond Jacobson [c5e7348] Fix lint (#9412) Raymond Jacobson [5598656] [QA-1356] Improve notification UI (#9390) Raymond Jacobson [dcb74eb] Fix useClickOutside (#9409) Andrew Mendelsohn [975b630] Add better error messages for Claimable Tokens Program (#9369) Marcus Pasell [17904fb] [PAY-3335] Add priority fees to SDK Solana usages (#9399) Marcus Pasell [c34cd83] Record Track Downloads via Entity Manager (#9103) Marcus Pasell [e59dfc8] [QA-1357] Remove excessive polling and amplitude events in unlock (#9391) Raymond Jacobson [26b2fc9] [QA-1496] fix unsafe read of audio analysis field (#9406) Randy Schott [abc1b37] [C-4934] Search bar fixes (#9403) Sebastian Klingler [d525a1b] [C-4930, C-4931] Add IconText, ArtistPick, and Identifier components to harmony and harmony native (#9400) Kyle Shanks [53bf3e2] [PAY-3321][PAY-3333] Add network cut feature flag and update staking bridge and payment router addresses (#9393) Saliou Diallo [4d0fbc2] [PAY-3294] Hide save/repost for locked albums on mobile (#9333) Reed [7e3a75c] [C-4936] FilterButton fixes (#9397) Sebastian Klingler [517251d] [PAY-3286] Upload/edit confirmation drawer & modal rework (#9326) Raymond Jacobson [dce9903] [C-4920] Only show bpm decimals if necessary (#9398) Sebastian Klingler [d6dbab0] [C-4937] Adding some pagination buttons (#9394) JD Francis [f183f7e] [PAY-3336] fix isPlaying logic for details screens (#9395) Randy Schott [5ed523f] Add comment actions: edit, delete, react (#9372) Isaac Solo [88e24b5] [C 4922] Update mobile filter button (#9385) Dylan Jeffers [901d811] [C-4923] Persist verified filter & general cleanup (#9384) Sebastian Klingler [bab49d6] Add Pin icon and Timestamp component to harmony and harmony-native (#9383) Kyle Shanks [53a1a32] [QA-1485] Redir to signup/in on direct /feed link (#9373) Raymond Jacobson [c618eb9] Improve useClickOutside (#9377) Sebastian Klingler [a97deb8] [PAY-2267] Update stage payment router and program addresses (#9387) Raymond Jacobson [def034f] [QA-1446] Fix popup alignment (#9389) Raymond Jacobson [c86bc70] Add priority fees to purchases (#9392) Marcus Pasell [66f1a0e] [PAY-3314] Track select dropdown for purchase/remix targeting (#9386) Andrew Mendelsohn [5fe7681] Comments Read/Create E2E - Changes to DB/Discovery/SDK/Desktop UI (#9319) JD Francis [1ccfcd4] [PAY-3331] Purchase/sale endpoint filtering by content id (#9376) Reed [fc59a10] [PAY-3330] Fix spacing on RepostsFavoritesStats (#9375) Raymond Jacobson [7712005] Fix short trending bug (#9378) Raymond Jacobson [196fdba] [QA-1114] Include menu items even if buttons are present (#9381) Raymond Jacobson [8e6b1e8] [QA-1486] Fix sign up select artists screen (#9371) Sebastian Klingler [34d4417] [PAY-3313] Targeted DMs CTA and modal (#9364) Andrew Mendelsohn [3a19003] [C-4921] Fix search v2 navigating back from profile (#9370) Sebastian Klingler [d266394] [C-4918] Improve harmony web FilterButton (#9366) Dylan Jeffers [4ef81a7] Bump mobile versions to 110 (#9367) Dylan Jeffers
7 participants
Description
Quick EntityManager implementation of recording track downloads across the network.
Ideal solution would be to do this from content or discovery rather than the client, but this is a quick and dirty way of getting it done fast.
Note the commit messages - might help going commit by commit.
Things I would change given more time:
How Has This Been Tested?
Tested locally w/ download all on local dev client