Skip to content

Commit

Permalink
Fix logic of SELECT FOR UDPDATE to only lock records that will be upd…
Browse files Browse the repository at this point in the history 
…ated
  • Loading branch information
@Ricardoalso @dutrieuc
Ricardoalso authored and dutrieuc committed Dec 18, 2024
1 parent 10e5983 commit c648037
Showing 1 changed file with 22 additions and 8 deletions.
30 changes: 22 additions & 8 deletions auth_saml/models/auth_saml_provider.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -411,21 +411,35 @@ def action_refresh_metadata_from_url(self):
)
if not providers:
return False

Check warning on line 413 in auth_saml/models/auth_saml_provider.py

View check run for this annotation

Codecov / codecov/patch

auth_saml/models/auth_saml_provider.py#L413 

Added line #L413 was not covered by tests

providers_to_update = {}
for provider in providers:
document = requests.get(provider.idp_metadata_url, timeout=5)
if document.status_code != 200:
raise UserError(

Check warning on line 419 in auth_saml/models/auth_saml_provider.py

View check run for this annotation

Codecov / codecov/patch

auth_saml/models/auth_saml_provider.py#L419 

Added line #L419 was not covered by tests
f"Unable to download the metadata for {provider.name}: {document.reason}"
)
if document.text != provider.idp_metadata:
providers_to_update[provider.id] = document.text

if not providers_to_update:
return False

Check warning on line 426 in auth_saml/models/auth_saml_provider.py

View check run for this annotation

Codecov / codecov/patch

auth_saml/models/auth_saml_provider.py#L426 

Added line #L426 was not covered by tests

# lock the records we might update, so that multiple simultaneous login
# attempts will not cause concurrent updates
provider_ids = tuple(providers_to_update.keys())
self.env.cr.execute(
"SELECT id FROM auth_saml_provider WHERE id in %s FOR UPDATE",
(tuple(providers.ids),),
(tuple(provider_ids),),
)
updated = False
for provider in providers:
document = requests.get(provider.idp_metadata_url, timeout=5)
if document.status_code != 200:
raise UserError(
f"Unable to download the metadata for {provider.name}: {document.reason}"
if provider.id in providers_to_update:
provider.idp_metadata = providers_to_update[provider.id]
_logger.info(
"Updated metadata for provider %s from %s",
provider.name,
)
if document.text != provider.idp_metadata:
provider.idp_metadata = document.text
_logger.info("Updated provider metadata for %s", provider.name)
updated = True

return updated

0 comments on commit c648037

Please sign in to comment.