Account migration schemas #2170
Conversation
| @@ -0,0 +1,36 @@ | |||
| { | |||
| "lexicon": 1, | |||
| "id": "com.atproto.repo.listMissingBlobs", | |||
There was a problem hiding this comment.
After seeing this, I could imagine moving migration-specific endpoints like this into their own segment, e.g. com.atproto.migrate.listMissingBlobs.
There was a problem hiding this comment.
I actually think this is a useful route in it's own right fwiw. There are some repos now that are missing blobs and this could be useful to figure out what
There was a problem hiding this comment.
does this let external folks discover which blobs have been purged for an account? or do purged blobs not show up in this output?
There was a problem hiding this comment.
(dholms replied below; I think the reason the github reply box didn't show in my review is that this comment was on the same line that divy commented on previously?)
| "didMigrated": { "type": "boolean" }, | ||
| "uploadedRepo": { "type": "boolean" }, | ||
| "importedRepo": { "type": "boolean" }, | ||
| "importRepoError": { "type": "string" }, |
There was a problem hiding this comment.
It could be nice to make room for an error message and a code/name here.
There was a problem hiding this comment.
I actually had a change of heart and decided against processing the repo async, that way we can just report the error directly in the request
There was a problem hiding this comment.
hmm! that is a big change (not being async). it does feel like async would be more general and reliable than keeping a long HTTP request open, and enable a nice dynamic progress bar UI.
but we could add that as an alternative endpoint later.
| "schema": { | ||
| "type": "object", | ||
| "properties": { | ||
| "rotationKeys": { |
There was a problem hiding this comment.
it is a tiny bit weird having rotationKeys here. it matches the PLC operation syntax/fields, but the other fields here match DID document fields but this one doesn't. I guess it's fine? plcRotationKeys is tempting but probably not worth breaking consistency.
a description on this field (in the Lexicon schema) would be good.
There was a problem hiding this comment.
Yeah I agree :/ But I think it makes most sense to return them here & keep it consistent with the other routes.
One thing we can do that may make it go down a bit easier is not return rotationKeys when this route is requested by a did:web. If we add some additional method that requires another field, we can add another property to the response this would be undefined for plc & web dids
There was a problem hiding this comment.
nice! that is a good way to handle it.
| "defs": { | ||
| "main": { | ||
| "type": "procedure", | ||
| "description": "Signs a PLC operation to update some value(s) in the requesting DID's document.", |
There was a problem hiding this comment.
does this endpoint also the same safety checks as sendPlcOp, or nah?
There was a problem hiding this comment.
No it doesn't, because it's used to sign an operation for a possibly different service. Though that reminds me, I do intend to put it behind email verification 👍
| "encoding": "application/json", | ||
| "schema": { | ||
| "type": "object", | ||
| "required": ["op"], |
There was a problem hiding this comment.
I would probably expand all these "op" to "operation". eg the plc directory APIs have full "operation".
but not a strong feeling.
There was a problem hiding this comment.
eh yeah probably a good idea. generally we don't shoot for brevity in lexicon 😛
| "defs": { | ||
| "main": { | ||
| "type": "procedure", | ||
| "description": "Validates a PLC operation to ensure that it doesn't violate a service's constraints or get the identity into a bad state, then submits it to the PLC registry", |
There was a problem hiding this comment.
should we allow a param to skip validation, like we do for lexicons?
I'd be fine not making the validation optional to start, but maybe add it in the future.
There was a problem hiding this comment.
In my view, if you want to do that, you should just send the operation to PLC yourself. But yeah we can always add it later if we decide we want it 👍
| "defs": { | ||
| "main": { | ||
| "type": "procedure", | ||
| "description": "Deactivates a currently active account. Used to finalize account migration with the old host after the account has been activated on the new host.", |
There was a problem hiding this comment.
will we open this up to be the way for folks to temporarily deactivate/reactivate accounts as an account status thing? not sure if described the way it is to set near-term or long-term expectations.
There was a problem hiding this comment.
I think yes, but we shouldn't advertise it as a feature just yet
| "parameters": { | ||
| "type": "params", | ||
| "required": ["aud"], | ||
| "properties": { |
There was a problem hiding this comment.
what about expiration (exp)? should client be allowed to request longer/shorter tokens within some range?
There was a problem hiding this comment.
Makes me a bit uneasy honestly - I don't think we want to offer long versions of these tokens. If you request one, you should really only be using it once
There was a problem hiding this comment.
I definitely think the returned token should have some exp; I guess we can just set it to 5-10min in the future or something like that? Single-use in addition is good, I just don't like the idea of a token floating around that could be used (for the first time) the next day or something.
There was a problem hiding this comment.
Oh to clarify - the returned token does have an exp and it's set to 60s 👍
We just don't provide optionality around requesting a longer one
| "properties": { | ||
| "aud": { | ||
| "type": "string", | ||
| "format": "did", |
There was a problem hiding this comment.
if we make this format: uri it would work with DIDs and leave the door open to other audience URIs/values... but probably best to keep it DID-only.
There was a problem hiding this comment.
I like just leaving it DID for now until we see the need for that. I think we can upgrade into format: uri without much trouble
| @@ -0,0 +1,36 @@ | |||
| { | |||
| "lexicon": 1, | |||
| "id": "com.atproto.repo.listMissingBlobs", | |||
There was a problem hiding this comment.
does this let external folks discover which blobs have been purged for an account? or do purged blobs not show up in this output?
| "cursor": { "type": "string" }, | ||
| "cids": { | ||
| "type": "array", | ||
| "items": { "type": "string", "format": "cid" } |
There was a problem hiding this comment.
I don't know if it is easy or worth it, but if this returned blob objects (eg, with size, mimetype, etc, in addition to CID), might be more ergonomic and helpful for humans. and machines could do things like compute total size of missing objects.
There was a problem hiding this comment.
hmmm that's not a bad idea 🤔 down to take a stab at it
And to answer the prev question (which GH isn't letting me respond to for some reason), this is not accessible to external accounts, but purged blobs would not show up in the output
There was a problem hiding this comment.
Updated it to the blob type (similar to output of uploadBlob) which contains all that info 👍
|
all looking good! I left follow-up comments on importRepo and authtoken sections. |
| @@ -9,7 +9,7 @@ | |||
| "encoding": "application/json", | |||
| "schema": { | |||
| "type": "object", | |||
| "required": ["availableUserDomains"], | |||
| "required": ["did", "availableUserDomains"], | |||
There was a problem hiding this comment.
Ooh this is a sneaky little breaking change we need to be a little careful with for rollout.
There was a problem hiding this comment.
yup yup - just need to ensure we update all our PDSs before publishing this new agent library
thought it was important to get in before there are other PDSs out in the wild
There was a problem hiding this comment.
funny, this bit me too, only just now realized I needed to add it. bsky.app was unhappy with my PDS just now until I did. 😆
Think there's a good question around how these schemas are grouped. Should they all live under a
com.atproto.migrationinterface? Or spread out as they are to their relevant category?