Sketch delete

[jaegeral]

This PR introduces the capability to delete sketches in Timesketch, both via the API and the command-line clients (tsctl and the Python API client). The implementation includes support for both a 'soft' delete (marking the sketch as deleted in the database) and a 'hard' delete (permanently removing the sketch, its associated data, and the underlying OpenSearch indices). The changes span the API endpoint, the Python API client library, and the tsctl command-line tool, along with updates to tests.

Highlights

• Sketch Deletion Feature: Adds the core functionality to delete sketches from Timesketch.
• Soft vs. Hard Delete: Introduces two modes of deletion: a default soft delete that marks the sketch as deleted, and a hard delete (triggered by a force_delete flag/parameter) that permanently removes the sketch, related database objects, and OpenSearch indices.
• API Endpoint: Modifies the existing DELETE endpoint for sketches (/api/v1/sketches/<sketch_id>/) to accept a force_delete parameter (via body or URL query) to control the deletion mode. It also adds checks to prevent deletion of archived sketches or those with specific protective labels (like 'lithold').
• Python API Client: Updates the delete method in the Sketch class to accept the force_delete boolean parameter and pass it to the API endpoint.
• CLI and tsctl Commands: Adds a new sketch-delete command to both the Python CLI client and tsctl. These commands provide a command-line interface for deleting sketches, including a --force-delete flag for hard deletion and a default dry-run mode.
• Test Updates: Updates tests to reflect the new behavior, specifically changing the expected response code when attempting to delete an archived sketch from 200 to 400 (Bad Request).

Changelog

Click here to see the changelog

• api_client/python/timesketch_api_client/sketch.py
  • Modified the delete method to accept a force_delete boolean parameter.
  • Added logic to append ?force=true to the API request URL if force_delete is True.
  • Updated docstring for the delete method to explain the force_delete parameter.
• cli_client/python/timesketch_cli_client/commands/sketch.py
  • Added a new Click command sketch-delete under the sketch_group.
  • Implemented --force_delete flag for the sketch-delete command.
  • Added dry-run behavior as the default when --force-delete is not used.
  • Added checks for archived sketches and protective labels ('lithold').
  • Calls the sketch object's delete method (which interacts with the API).
• timesketch/api/v1/resources/sketch.py
  • Modified the delete method in SketchResource to accept sketch_id and an optional force_delete boolean parameter (defaulting to False).
  • Updated the docstring extensively to explain soft vs. hard delete, the force_delete parameter (via argument or URL query), permissions, and potential error codes.
  • Implemented logic for soft delete (setting sketch status to 'deleted').
  • Implemented logic for hard delete (explicitly deleting related database objects like views, stories, timelines, etc., and deleting the associated OpenSearch indices).
  • Added checks to prevent deletion if the sketch is archived or has a protective label.
• timesketch/api/v1/resources_test.py
  • Updated the test_attempt_to_delete_archived_sketch test.
  • Changed the expected HTTP status code for attempting to delete an archived sketch from 200 to 400 (HTTP_STATUS_CODE_BAD_REQUEST).
• timesketch/tsctl.py
  • Added a new Click command sketch-delete.
  • Implemented --force-delete flag for the sketch-delete command.
  • Added dry-run behavior as the default when --force-delete is not used.
  • Added checks for sketch existence, deleted status, archived status, and protective labels ('lithold').
  • Calls the sketch object's delete method and explicitly deletes the sketch from the database session if force-delete is true.

Open:

• Only admins can delete
• Remove related data objects and trust in the dependencies in database
• Remove the 404 errors from test_delete_sketch when trying to verify the sketch is gone
• check that only an admin user can pull "marked as deleted" sketches

[jaegeral]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces a proof-of-concept for deleting sketches, which is a valuable addition. However, there are several critical issues that need to be addressed before this can be merged. The main API endpoint for deletion currently aborts all requests, and the tsctl implementation seems to be using an incorrect approach for deletion. There's also a broken CLI command and some unclear code in the API client.

I've focused on correctness and maintainability in this review, referencing the provided style guide where applicable (e.g., for docstrings and string formatting).

Summary of Findings

• API Deletion Blocked: The primary API endpoint for deleting sketches (timesketch/api/v1/resources/sketch.py) contains an abort() call that prevents any deletion from occurring, returning a 400 Bad Request instead. This needs to be resolved for the feature to work.
• tsctl sketch-delete Implementation: The new tsctl sketch-delete command in timesketch/tsctl.py attempts to delete a sketch by directly interacting with database ORM models and calls a non-existent sketch.delete() method. This approach will not correctly delete sketches (especially OpenSearch data) and should likely use the Timesketch API client instead.
• Unclear z_delete method in API Client: The api_client/python/timesketch_api_client/sketch.py file introduces a z_delete method alongside modifications to the existing delete method. The purpose and differences (especially in handling force_delete via URL parameters vs. request body) are unclear and could lead to confusion or incorrect API calls.
• Broken add_label CLI Command: The Click decorators for the add_label command in cli_client/python/timesketch_cli_client/commands/sketch.py have been removed, which will make the command non-functional.
• Pending Tests and Documentation: The PR description indicates that unit tests, e2e tests, and documentation updates are still pending. These are crucial for ensuring the quality and usability of this new feature.

Merge Readiness

This pull request is a good start for the sketch deletion feature, but it's currently in a DRAFT state and has several critical issues that prevent the core functionality from working. The API endpoint for deletion is blocked, and the tsctl command for deletion is not correctly implemented. Additionally, an existing CLI command (add_label) appears to be broken by changes in this PR.

I recommend addressing these critical and high-severity issues before this PR can be considered for merging. Specifically, the abort() call in the API needs to be removed/fixed, tsctl should use the API client for deletion, the z_delete method in the API client needs clarification, and the add_label command needs its decorators restored. Completing the pending tests and documentation will also be essential.

As an AI assistant, I am not authorized to approve pull requests. Please ensure further review and approval from other team members after the identified issues are resolved.

[jaegeral]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces sketch deletion functionality (soft and hard deletes) across the API, Python client, and CLI tools. The API changes for hard deletion are quite thorough. Key areas for attention include the tsctl hard delete logic, a test assertion for deleting archived sketches, and minor improvements to a CLI docstring and an e2e test's completeness. The use of status codes for certain error conditions in the API could also be reviewed for semantic accuracy.

[jaegeral]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces a robust sketch deletion feature, complete with soft and hard delete options, API client updates, and new CLI commands. The changes are well-structured and include comprehensive tests.

I've identified a critical logic bug in the API client's retry mechanism that could cause performance issues, along with some opportunities to improve the robustness and consistency of the hard-delete logic on the backend. My feedback also includes suggestions to simplify some of the new code for better maintainability.

Overall, this is a solid contribution. Addressing these points will make the new feature even more reliable.

[gemini-code-assist]

The hard delete logic appears to be incomplete. The PR description mentions that related objects like views and stories will be explicitly deleted, but the current implementation only explicitly deletes timelines and searchindices from the database session. While SQLAlchemy's cascade settings on the Sketch model might handle the deletion of other related objects (views, stories, aggregations, etc.), relying on it while also performing explicit deletions for timelines is inconsistent. This could lead to orphaned objects if any relationship is missing the correct cascade configuration.

To ensure a complete and robust hard delete, I recommend either:

1. Explicitly delete all related objects (views, stories, aggregations, etc.) in loops, similar to how timelines are handled. This matches the intent described in the PR.
2. Rely entirely on cascading deletes. Remove the explicit db_session.delete(timeline) and db_session.delete(searchindex) calls and ensure all relationships on the Sketch model have the correct cascade options set. The loop would then only be needed for deleting the OpenSearch indices.

[gemini-code-assist]

The logic here is a bit complex and contains an unreachable statement. If error.check_return_status() returns True, the else block is executed, which calls check_return_status again and returns its result. This makes the final return True on line 509 unreachable. You can simplify this block for better readability and to remove the dead code.

        if not error.check_return_status(response, logger):
            error.error_message(
                response,
                message=f"Failed to delete sketch {self.id}",
                error=RuntimeError,
            )
        return True

[gemini-code-assist]

The new sketch-delete command currently supports a dry-run (default) and a hard-delete (with --force_delete). However, it doesn't provide a way to perform a soft-delete, which is the default behavior of the underlying API (sketch.delete(force_delete=False)). This creates an inconsistency between the API's capabilities and the CLI's interface. It would be beneficial to allow users to perform soft deletes from the CLI as well.

[gemini-code-assist]

Checking for the existence of an index immediately after deletion can be unreliable due to the asynchronous nature of OpenSearch's delete operations. This check could lead to a race condition where the index still appears to exist for a short time after the delete call has succeeded, causing the function to incorrectly abort with a 500 error. It's generally safe to trust that the delete operation was successful if it didn't raise an exception. I recommend removing this check to improve the robustness of the hard-delete operation.

                # The index deletion is asynchronous, so checking for existence
                # immediately after can be racy. It's better to trust the delete
                # call if it doesn't raise an exception.
                logger.debug(
                    "OpenSearch index %s successfully deleted.",
                    index_name_to_delete,
                )

[gemini-code-assist]

Using a broad except Exception can mask underlying issues and make debugging harder. For instance, a TypeError due to a programming error would be caught here and returned as a generic 500 error. It would be better to catch a more specific exception. The opensearch-py client's exceptions inherit from opensearchpy.OpenSearchException. Catching that would be safer and more specific, while still handling a wide range of potential datastore errors.

            except opensearchpy.OpenSearchException as e:
                # Catch any other unexpected errors during deletion
                e_msg = (
                    f"An unexpected error occurred while deleting "
                    f"OpenSearch index {index_name_to_delete}: {e}"
                )
                logger.error(e_msg)
                abort(
                    HTTP_STATUS_CODE_INTERNAL_SERVER_ERROR,
                    e_msg,
                )