APERTA-9087 Configure rails+sidekiq for redis sentinel in tahi/ihat

[tadp]

JIRA issue: https://developer.plos.org/jira/browse/APERTA-9087

What this PR does:

This implements Redis Sentinel for sidekiq in tahi and ihat.

Dependent Prs:

IHAT pr: https://github.com/Tahi-project/ihat/pull/134

aperta-formula pr: https://github.com/PLOS-Formulas/aperta-formula/pull/31

Notes:

QA: This deploys correctly when the right settings are in place. I don't think there is much else to check. @egh and I also verified the failover of the sentinel setup.

---

Code Review Tasks:

Reviewer tasks:

• I skimmed the code; it makes sense
• I read the code; it looks good
• I ran the code (in the review environment or locally)
• I performed a 5 minute walkthrough of the site looking for oddities
• I agree the code fulfills the Acceptance Criteria
• I agree the author has fulfilled their tasks

After the Code Review:

Author tasks:

• The Product Team has reviewed and approved this feature

[egh]

I think you mean split(/,/)

[egh]

Per https://brigade.engineering/high-availability-sidekiq-with-redis-sentinel-2c562e65ecd2 the key sentinels expects an array. Why are we joining using ,?

[egh]

Can you explain what master_name is? Does this need to be configurable?

[egh]

We should not copy & paste code.

[egh]

When you are parsing a string dumped by some other process, we need to know that what we are parsing is what the other process is dumping. What is salt dumping? Just because YAML 'works' doesn't mean this is an appropriate solution

[tadp]

Salt is dumping YAML and defaults to YAML for its settings, so we can safely assume that this will work. https://docs.saltstack.com/en/latest/topics/tutorials/starting_states.html

[JackLaBarba]

@tadp, I don't think this is true. YAML is the default format for .sls files, but the means by which salt serializes python objects in a jinja template is another matter I think, it might just use whatever default serializing python uses (print).

When setting up a system like this, where one application is serializing information and another is deserializing, I think it's important to have a well-established contract that's easy to use. To this end, I think we should keep the deserializing logic in TahiEnv. It would be great to add a validator for array values that ensures that they're serialized properly in our env files. It would be pretty cool to just write

TahiEnv.redis_sentinels

and automatically get a ruby list back instead of some string that still needs further parsing.

[egh]

Nice. Yeah, we should be extending TahiEnv here.

[tadp]

Great idea everyone. I'll move the YAML:load into TahiEnv and include a test for TahiEnv to make sure it is converting the string correctly.

[egh]

I still don't understand this. The sidekiq configuration seems to want an array of values URLs. Why are we passing it an array of hashes? See https://brigade.engineering/high-availability-sidekiq-with-redis-sentinel-2c562e65ecd2

[tadp]

So when I tried URLs initially, everything would break with an error because it was expecting HOST and PORT to be defined. This is one of the things I would like to test in a sentinel environment.

[egh]

It should be possible to test this code in your local vagrant by modifying your aperta/vagrant.sls file to include the correct configuration, then running vagrant provision, then deploying to vagrant using cap vagrant deploy, then trying to start the app in your vagrant. If we can't test this locally, I have a feeling it's going to take a long time to get this right if we have to merge to master every time we make a change.

[tadp]

@egh I'll revert the other related merges in a separate pr and try in vagrant tomorrow before proceeding with this pr

[surfacedamage]

Hey @tadp, I didn't explore this PR in detail and you may have already done so, but could you verify that switching to sentinel still works with the health check endpoint and especially on the endpoint on the heroku review apps?

[tadp]

@surfacedamage The heroku review apps and our development environment should be unaffected because it will use the previous settings unless REDIS_SENTINEL_ENABLED is 'true'

I plan to do some testing in the CI and Stage environments soon and I'll look out for health check issues. Thanks for the heads up.

[egh]

This config doesn't actually work. This does:

redis_config = if TahiEnv.redis_sentinel_enabled?
                 {
                   url: ENV[ENV['REDIS_PROVIDER'] || 'REDIS_URL'],
                   role: :master,
                   master_name: 'aperta',
                   sentinels: TahiEnv.redis_sentinels.map do |s|
                     u = URI.parse(s)
                     { host: u.host, port: (u.port || 26_379) }
                   end,
                   failover_reconnect_timeout: 20,
                   namespace: "tahi_#{Rails.env}"
                 }
               else
                 {
                   namespace: "tahi_#{Rails.env}"
                 }
               end

See https://github.com/redis/redis-rb#sentinel-support

[bnbeckwith]

@egh and I walked through the change to ensure that this deploys with the right configuration. We also took down one of the redis instances to see it failover (while watching the health_check route). Everything worked as expected.

[bnbeckwith]

This can go in when these are complete:

• IHat: https://github.com/Tahi-project/ihat/pull/134
• Plos formulas: https://github.com/PLOS-Formulas/aperta-formula/pull/31