feat: testing develop build

- using the makerun image in k8s
2026-01-10 16:17:56 +11:00
8 changed files with 130 additions and 169 deletions
--- a/.gitignore
+++ b/.gitignore
@ -45,7 +45,3 @@ uv.lock

 # Docker volumes
 minio_data/
-
-# Local configuration overrides
-docker-compose.yml
-ca-bundle.pem
--- a/5
+++ b/5
@ -23,6 +23,10 @@ RUN wget -O /app/uv-x86_64-unknown-linux-musl.tar.gz https://github.com/astral-s
    chmod +x /usr/local/bin/uv && \
    uv --version

+# Copy CA bundle from host
+COPY ca-bundle.pem /app/ca-bundle.pem
+RUN chmod 644 /app/ca-bundle.pem
+
 # Create non-root user first
 RUN adduser -D -s /bin/sh appuser && \
    chown -R appuser:appuser /app
@ -37,7 +41,6 @@ RUN uv sync --frozen
 # Copy application source
 COPY --chown=appuser:appuser src/ ./src/
 COPY --chown=appuser:appuser remotes.yaml ./
-COPY --chown=appuser:appuser ca-bundle.pem ./

 # Expose port
 EXPOSE 8000
--- a/2
+++ b/2
@ -26,6 +26,8 @@ format:
 	uv run ruff format .

 run:
+	uv venv --python 3.11 && \
+	source .venv/bin/activate && \
 	uv run python -m src.artifactapi.main

 docker-up:
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -0,0 +1,86 @@
+version: '3.8'
+
+services:
+  artifactapi:
+    build:
+      context: .
+      dockerfile: Dockerfile
+      no_cache: true
+    ports:
+      - "8000:8000"
+    environment:
+      - CONFIG_PATH=/app/remotes.yaml
+      - DBHOST=postgres
+      - DBPORT=5432
+      - DBUSER=artifacts
+      - DBPASS=artifacts123
+      - DBNAME=artifacts
+      - REDIS_URL=redis://redis:6379
+      - MINIO_ENDPOINT=minio:9000
+      - MINIO_ACCESS_KEY=minioadmin
+      - MINIO_SECRET_KEY=minioadmin
+      - MINIO_BUCKET=artifacts
+      - MINIO_SECURE=false
+    depends_on:
+      postgres:
+        condition: service_healthy
+      redis:
+        condition: service_healthy
+      minio:
+        condition: service_healthy
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8000/health"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+
+  minio:
+    image: minio/minio:latest
+    ports:
+      - "9000:9000"
+      - "9001:9001"
+    environment:
+      MINIO_ROOT_USER: minioadmin
+      MINIO_ROOT_PASSWORD: minioadmin
+    command: server /data --console-address ":9001"
+    volumes:
+      - minio_data:/data
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:9000/minio/health/live"]
+      interval: 30s
+      timeout: 20s
+      retries: 3
+
+  redis:
+    image: redis:7-alpine
+    ports:
+      - "6379:6379"
+    volumes:
+      - redis_data:/data
+    command: redis-server --save 20 1
+    healthcheck:
+      test: ["CMD", "redis-cli", "ping"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+
+  postgres:
+    image: postgres:15-alpine
+    ports:
+      - "5432:5432"
+    environment:
+      POSTGRES_DB: artifacts
+      POSTGRES_USER: artifacts
+      POSTGRES_PASSWORD: artifacts123
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U artifacts -d artifacts"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+
+volumes:
+  minio_data:
+  redis_data:
+  postgres_data:
--- a/pyproject.toml
+++ b/pyproject.toml
@ -1,6 +1,6 @@
 [project]
 name = "artifactapi"
-version = "2.0.5"
+version = "2.0.0"
 description = "Generic artifact caching system with support for various package managers"

 dependencies = [
@ -40,11 +40,4 @@ dev = [
    "isort>=5.12.0",
    "mypy>=1.6.0",
    "ruff>=0.1.0",
-    "bump-my-version>=1.2.0",
 ]
-
-[tool.bumpversion]
-current_version = "2.0.5"
-commit = true
-tag = true
-message = "Bump version: {current_version} → {new_version}"
--- a/src/artifactapi/cache.py
+++ b/src/artifactapi/cache.py
@ -23,13 +23,8 @@ class RedisCache:
            file_path.endswith("APKINDEX.tar.gz")
            or file_path.endswith("Packages.gz")
            or file_path.endswith("repomd.xml")
-            or ("repodata/" in file_path
-                and file_path.endswith((
-                    ".xml", ".xml.gz", ".xml.bz2", ".xml.xz", ".xml.zck", ".xml.zst",
-                    ".sqlite", ".sqlite.gz", ".sqlite.bz2", ".sqlite.xz", ".sqlite.zck", ".sqlite.zst",
-                    ".yaml.xz", ".yaml.gz", ".yaml.bz2", ".yaml.zst",
-                    ".asc", ".txt"
-                )))
+            or "repodata/" in file_path
+            and file_path.endswith((".xml", ".xml.gz", ".xml.bz2", ".xml.xz"))
        )

    def get_index_cache_key(self, remote_name: str, path: str) -> str:
@ -66,19 +61,9 @@ class RedisCache:
            return

        try:
-            # Construct the URL the same way as in the main flow
-            from .config import ConfigManager
-            import os
-            config_path = os.environ.get("CONFIG_PATH")
-            if config_path:
-                config = ConfigManager(config_path)
-                remote_config = config.get_remote_config(remote_name)
-                if remote_config:
-                    base_url = remote_config.get("base_url")
-                    if base_url:
-                        # Use hierarchical path-based key (same as cache_single_artifact)
-                        s3_key = storage.get_object_key(remote_name, path)
-                        if storage.exists(s3_key):
-                            storage.client.delete_object(Bucket=storage.bucket, Key=s3_key)
+            # Get the S3 key and remove it
+            s3_key = storage.get_object_key_from_path(remote_name, path)
+            if storage.exists(s3_key):
+                storage.client.delete_object(Bucket=storage.bucket, Key=s3_key)
        except Exception:
            pass
--- a/src/artifactapi/main.py
+++ b/src/artifactapi/main.py
@ -1,7 +1,6 @@
 import os
 import re
 import hashlib
-import logging
 from typing import Dict, Any, Optional
 import httpx
 from fastapi import FastAPI, HTTPException, Response, Query, File, UploadFile
@ -9,13 +8,6 @@ from fastapi.responses import PlainTextResponse, JSONResponse
 from pydantic import BaseModel
 from prometheus_client import generate_latest, CONTENT_TYPE_LATEST

-try:
-    from importlib.metadata import version
-    __version__ = version("artifactapi")
-except ImportError:
-    # Fallback for development when package isn't installed
-    __version__ = "dev"
-
 from .config import ConfigManager
 from .database import DatabaseManager
 from .storage import S3Storage
@ -28,14 +20,7 @@ class ArtifactRequest(BaseModel):
    include_pattern: str


-# Configure logging
-logging.basicConfig(
-    level=logging.INFO,
-    format='%(asctime)s - %(name)s - %(levelname)s - %(message)s'
-)
-logger = logging.getLogger(__name__)
-
-app = FastAPI(title="Artifact Storage API", version=__version__)
+app = FastAPI(title="Artifact Storage API", version="2.0.0")

 # Initialize components using config
 config_path = os.environ.get("CONFIG_PATH")
@ -60,7 +45,7 @@ def read_root():
    config._check_reload()
    return {
        "message": "Artifact Storage API",
-        "version": app.version,
+        "version": "2.0.0",
        "remotes": list(config.config.get("remotes", {}).keys()),
    }

@ -70,87 +55,6 @@ def health_check():
    return {"status": "healthy"}


-@app.put("/cache/flush")
-def flush_cache(
-    remote: str = Query(default=None, description="Specific remote to flush (optional)"),
-    cache_type: str = Query(default="all", description="Type to flush: 'all', 'index', 'files', 'metrics'")
-):
-    """Flush cache entries for specified remote or all remotes"""
-    try:
-        result = {
-            "remote": remote,
-            "cache_type": cache_type,
-            "flushed": {
-                "redis_keys": 0,
-                "s3_objects": 0,
-                "operations": []
-            }
-        }
-
-        # Flush Redis entries based on cache_type
-        if cache_type in ["all", "index", "metrics"] and cache.available and cache.client:
-            patterns = []
-
-            if cache_type in ["all", "index"]:
-                if remote:
-                    patterns.append(f"index:{remote}:*")
-                else:
-                    patterns.append("index:*")
-
-            if cache_type in ["all", "metrics"]:
-                if remote:
-                    patterns.append(f"metrics:*:{remote}")
-                else:
-                    patterns.append("metrics:*")
-
-            for pattern in patterns:
-                keys = cache.client.keys(pattern)
-                if keys:
-                    cache.client.delete(*keys)
-                    result["flushed"]["redis_keys"] += len(keys)
-                    logger.info(f"Cache flush: Deleted {len(keys)} Redis keys matching '{pattern}'")
-
-            if result["flushed"]["redis_keys"] > 0:
-                result["flushed"]["operations"].append(f"Deleted {result['flushed']['redis_keys']} Redis keys")
-
-        # Flush S3 objects if requested
-        if cache_type in ["all", "files"]:
-            try:
-                # Use prefix filtering for remote-specific deletion
-                list_params = {"Bucket": storage.bucket}
-                if remote:
-                    list_params["Prefix"] = f"{remote}/"
-
-                response = storage.client.list_objects_v2(**list_params)
-                if 'Contents' in response:
-                    objects_to_delete = [obj['Key'] for obj in response['Contents']]
-
-                    for key in objects_to_delete:
-                        try:
-                            storage.client.delete_object(Bucket=storage.bucket, Key=key)
-                            result["flushed"]["s3_objects"] += 1
-                        except Exception as e:
-                            logger.warning(f"Failed to delete S3 object {key}: {e}")
-
-                    if objects_to_delete:
-                        scope = f" for remote '{remote}'" if remote else ""
-                        result["flushed"]["operations"].append(f"Deleted {len(objects_to_delete)} S3 objects{scope}")
-                        logger.info(f"Cache flush: Deleted {len(objects_to_delete)} S3 objects{scope}")
-
-            except Exception as e:
-                result["flushed"]["operations"].append(f"S3 flush failed: {str(e)}")
-                logger.error(f"Cache flush S3 error: {e}")
-
-        if not result["flushed"]["operations"]:
-            result["flushed"]["operations"].append("No cache entries found to flush")
-
-        return result
-
-    except Exception as e:
-        logger.error(f"Cache flush error: {e}")
-        raise HTTPException(status_code=500, detail=f"Cache flush failed: {str(e)}")
-
-
 async def construct_remote_url(remote_name: str, path: str) -> str:
    remote_config = config.get_remote_config(remote_name)
    if not remote_config:
@ -194,11 +98,13 @@ async def check_artifact_patterns(


 async def cache_single_artifact(url: str, remote_name: str, path: str) -> dict:
-    # Use hierarchical path-based key
-    key = storage.get_object_key(remote_name, path)
+    # Check if using URL-based key or path-based key
+    if url.startswith("http"):
+        key = storage.get_object_key(url)
+    else:
+        key = storage.get_object_key_from_path(remote_name, path)

    if storage.exists(key):
-        logger.info(f"Cache ALREADY EXISTS: {url} (key: {key})")
        return {
            "url": url,
            "cached_url": storage.get_url(key),
@ -212,8 +118,6 @@ async def cache_single_artifact(url: str, remote_name: str, path: str) -> dict:

            storage_path = storage.upload(key, response.content)

-            logger.info(f"Cache ADD SUCCESS: {url} (size: {len(response.content)} bytes, key: {key})")
-
            return {
                "url": url,
                "cached_url": storage.get_url(key),
@ -269,7 +173,6 @@ async def get_artifact(remote_name: str, path: str):

    # Check if artifact matches configured patterns
    if not await check_artifact_patterns(remote_name, repo_path, file_path, path):
-        logger.info(f"PATTERN BLOCKED: {remote_name}/{path} - not matching include patterns")
        raise HTTPException(
            status_code=403, detail="Artifact not allowed by configuration patterns"
        )
@ -277,20 +180,24 @@ async def get_artifact(remote_name: str, path: str):
    # Construct the remote URL
    remote_url = await construct_remote_url(remote_name, path)

-    # Check if artifact is already cached
-    cached_key = storage.get_object_key(remote_name, path)
-    if not storage.exists(cached_key):
-        cached_key = None
+    # Check if artifact is already cached (try both URL and path-based keys)
+    url_key = storage.get_object_key(remote_url)
+    path_key = storage.get_object_key_from_path(remote_name, path)
+
+    cached_key = None
+    if storage.exists(url_key):
+        cached_key = url_key
+    elif storage.exists(path_key):
+        cached_key = path_key

    # For index files, check Redis TTL validity
    filename = os.path.basename(path)
-    is_index = cache.is_index_file(path)  # Check full path, not just filename
+    is_index = cache.is_index_file(filename)

    if cached_key and is_index:
        # Index file exists, but check if it's still valid
        if not cache.is_index_valid(remote_name, path):
            # Index has expired, remove it from S3
-            logger.info(f"Index EXPIRED: {remote_name}/{path} - removing from cache")
            cache.cleanup_expired_index(storage, remote_name, path)
            cached_key = None  # Force re-download

@ -300,9 +207,6 @@ async def get_artifact(remote_name: str, path: str):
            artifact_data = storage.download_object(cached_key)
            filename = os.path.basename(path)

-            # Log cache hit
-            logger.info(f"Cache HIT: {remote_name}/{path} (size: {len(artifact_data)} bytes, key: {cached_key})")
-
            # Determine content type based on file extension
            content_type = "application/octet-stream"
            if filename.endswith(".tar.gz"):
@ -341,11 +245,9 @@ async def get_artifact(remote_name: str, path: str):
            )

    # Artifact not cached, cache it first
-    logger.info(f"Cache MISS: {remote_name}/{path} - fetching from remote: {remote_url}")
    result = await cache_single_artifact(remote_url, remote_name, path)

    if result["status"] == "error":
-        logger.error(f"Cache ADD FAILED: {remote_name}/{path} - {result['error']}")
        raise HTTPException(
            status_code=502, detail=f"Failed to fetch artifact: {result['error']}"
        )
@ -356,11 +258,10 @@ async def get_artifact(remote_name: str, path: str):
        cache_config = config.get_cache_config(remote_name)
        index_ttl = cache_config.get("index_ttl", 300)  # Default 5 minutes
        cache.mark_index_cached(remote_name, path, index_ttl)
-        logger.info(f"Index file cached with TTL: {remote_name}/{path} (ttl: {index_ttl}s)")

    # Now return the cached artifact
    try:
-        cache_key = storage.get_object_key(remote_name, path)
+        cache_key = storage.get_object_key(remote_url)
        artifact_data = storage.download_object(cache_key)
        filename = os.path.basename(path)

@ -382,7 +283,7 @@ async def get_artifact(remote_name: str, path: str):
        metrics.record_cache_miss(remote_name, len(artifact_data))

        # Record artifact mapping in database
-        cache_key = storage.get_object_key(remote_name, path)
+        cache_key = storage.get_object_key(remote_url)
        database.record_artifact_mapping(
            cache_key, remote_name, path, len(artifact_data)
        )
@ -630,11 +531,7 @@ async def list_cached_artifacts(

        cached_artifacts = []
        for url in matching_urls:
-            # Extract path from URL for hierarchical key generation
-            from urllib.parse import urlparse
-            parsed = urlparse(url)
-            path = parsed.path
-            key = storage.get_object_key(remote, path)
+            key = storage.get_object_key(url)
            if storage.exists(key):
                cached_artifacts.append(
                    {"url": url, "cached_url": storage.get_url(key), "key": key}
--- a/src/artifactapi/storage.py
+++ b/src/artifactapi/storage.py
@ -1,5 +1,6 @@
 import os
 import hashlib
+from urllib.parse import urlparse
 import boto3
 from botocore.config import Config
 from botocore.exceptions import ClientError
@ -54,19 +55,17 @@ class S3Storage:
        except ClientError:
            self.client.create_bucket(Bucket=self.bucket)

-    def get_object_key(self, remote_name: str, path: str) -> str:
-        # Extract directory path and filename
-        clean_path = path.lstrip('/')
-        filename = os.path.basename(clean_path)
-        directory_path = os.path.dirname(clean_path)
+    def get_object_key(self, url: str) -> str:
+        url_hash = hashlib.sha256(url.encode()).hexdigest()[:16]
+        parsed = urlparse(url)
+        filename = os.path.basename(parsed.path)
+        return f"{parsed.netloc}/{url_hash}/{filename}"

-        # Hash the directory path to keep keys manageable while preserving remote structure
-        if directory_path:
-            path_hash = hashlib.sha256(directory_path.encode()).hexdigest()[:16]
-            return f"{remote_name}/{path_hash}/{filename}"
-        else:
-            # If no directory, just use remote and filename
-            return f"{remote_name}/{filename}"
+    def get_object_key_from_path(self, remote_name: str, path: str) -> str:
+        # Create a key based on the API path for direct access
+        path_hash = hashlib.sha256(path.encode()).hexdigest()[:16]
+        filename = os.path.basename(path)
+        return f"{remote_name}/{path_hash}/{filename}"

    def exists(self, key: str) -> bool:
        try: