feat: Stop pending queries when user close dashboard

[graceguo-supercat]

SUMMARY

This is a feature requested from airbnb. When user open a large dashboard and apply filters, very possibly there is no cached query results, so the dashboard will send queries to Presto, some of them might be very slow. In airbnb, Presto resource is allocated by user. Each user can run 3 concurrent queries at a time, and extra queries are queued up. As the result new queries will not be executed until queued queries were finished first.

This limitation of using Presto resource sometime causes bad experience for Superset dashboard users. Once user's queries are queued up, there is no way to free up, and users have to wait pretty long time to back to normal (after all the previous queued queries are completed). Both users and Superset have no way to stop the queued queries, even users may want to abandon them.

To avoid this situation, this PR proposes a solution: Superset dashboard detects browser close event. When it happens, Dashboard will call a Presto API, with username and dashboard_id, then Presto will kill/stop all the pending and waiting queries from this user and dashboard.

Note:
This solution depends on an airbnb internal API call, which is not available for other corporations. This PR is to provide a hook that connects Dashboard to internal API so that we can expands Superset functionalities.

TEST PLAN

1. Open Superset dashboard, and open presto web interface to watch for new queries
2. Apply dashboard filter, should see new queries started in Presto
3. Close dashboard from browser, or open other url in the same browser window.
4. Should see pending queries are killed by Presto.

cc @etr2460 @john-bodley @ktmud

[codecov-commenter]

Codecov Report

Merging #10836 into master will decrease coverage by 4.40%.
The diff coverage is 84.44%.

@@            Coverage Diff             @@
##           master   #10836      +/-   ##
==========================================
- Coverage   65.88%   61.47%   -4.41%     
==========================================
  Files         815      815              
  Lines       38337    38360      +23     
  Branches     3601     3601              
==========================================
- Hits        25257    23582    -1675     
- Misses      12978    14592    +1614     
- Partials      102      186      +84     

Flag	Coverage Δ
#cypress	?
#javascript	61.74% <57.14%> (-0.01%)	⬇️
#python	61.31% <96.77%> (-0.16%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
...et-frontend/src/dashboard/components/Dashboard.jsx	76.66% <53.84%> (-12.75%)	⬇️
superset/db_engine_specs/base.py	87.09% <66.66%> (-0.17%)	⬇️
superset-frontend/src/featureFlags.ts	87.50% <100.00%> (-12.50%)	⬇️
superset/config.py	90.42% <100.00%> (ø)
superset/views/core.py	74.73% <100.00%> (+0.26%)	⬆️
superset/views/utils.py	85.16% <100.00%> (+0.86%)	⬆️
superset-frontend/src/SqlLab/App.jsx	0.00% <0.00%> (-100.00%)	⬇️
superset-frontend/src/explore/App.jsx	0.00% <0.00%> (-100.00%)	⬇️
superset-frontend/src/dashboard/App.jsx	0.00% <0.00%> (-100.00%)	⬇️
superset-frontend/src/explore/index.jsx	0.00% <0.00%> (-100.00%)	⬇️
... and 175 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 141ef4a...00f6d93. Read the comment docs.

[graceguo-supercat]

black automatically formatted this section. not related with my PR.

[graceguo-supercat]

This check blocks requests to those databases that don't support stop queries function, or those companies that not implements stop queries API.

[etr2460]

instead of making this a get function, why not call this allows_stop_pending_queries and put it up around line 150?

Also, to be more explicit with the API, can you add the stop_queries function to this class too and make it pass?

[etr2460]

Alternatively, if stop_queries was an empty function, you might be able to remove the allows_stop_pending_queries attribute altogether. I think the only reason we might need the database level allows attribute would be if you wanted to prevent the frontend from sending the request to stop queries. But that could be messy as dashboards can be based off multiple different databases.

So maybe remove the allows check completely and just make stop_queries an empty function here

[bkyryliuk]

+1 to this suggestion

[graceguo-supercat]

thanks for the suggestion. fixed by remove get_allow_stop_pending_queries check, and add an empty stop_queries.

[etr2460]

a few comments, thanks for the implementation here!

[etr2460]

Since this is wrapped by has_access_api, does that guarantee that the user object already exists?

[graceguo-supercat]

agree. fixed.

[etr2460]

Is this dangerous? I assume this means that anyone who steals a session cookie could constantly kill all that user's queries?

it's probably fine for internal deployments, but I wonder if there's a way we could do this without removing CSRF protections

[graceguo-supercat]

I know 2 APIs here that don't use CSRF token: log and stop_dashboard_queries, both of them use sendbeacon which can't send CSRF token. The advantage of sendbeacon vs regular POST is here: it doesn't need to wait response. And it's pretty common for sendbeacon call go without CSRF token.

CSRF token is used to prevent malicious site from executing some transaction, like move money from your bank account to mine :) I feel kill other ppl's queries when their dashboard is still loading, is not very dangerous.

But for superset.charts.api.data i am not sure why it is in the exempt list. But this is not related to this PR.

[villebro]

The reason superset.charts.api.data is exempt is because it is only a POST due to having a large request payload that doesn't sit well with a GET. Therefore it's not really a state changing POST, but a simulated GET.

[etr2460]

instead of making this a get function, why not call this allows_stop_pending_queries and put it up around line 150?

Also, to be more explicit with the API, can you add the stop_queries function to this class too and make it pass?

[etr2460]

Alternatively, if stop_queries was an empty function, you might be able to remove the allows_stop_pending_queries attribute altogether. I think the only reason we might need the database level allows attribute would be if you wanted to prevent the frontend from sending the request to stop queries. But that could be messy as dashboards can be based off multiple different databases.

So maybe remove the allows check completely and just make stop_queries an empty function here

[bkyryliuk]

It may be useful to sync with @dpgaspar on using api v1.
Also please add some tests, we have presto on CI

[graceguo-supercat]

in open source code base, stop_queries function is empty, nothing to test. airbnb and other companies can add their internal implementation to stop queries by dashboard_id, but this is not a standard Presto API.

[bkyryliuk]

it would be nice to have stop_queries implementation in the test config.
It will help in 2 ways:

1. be a safeguard from open source contributions not to break it
2. will work as an example for the companies willing to try it out

[graceguo-supercat]

@bkyryliuk do you have an existed example, what is implementation in the test config? thanks!

[bkyryliuk]

yep, custom templates:
https://github.com/apache/incubator-superset/blob/master/tests/superset_test_config.py#L100
cta schema:
https://github.com/apache/incubator-superset/blob/master/tests/celery_tests.py#L176

[bkyryliuk]

I think as I mentioned above, core apis are deprecated and new ones should be added here: https://github.com/apache/incubator-superset/blob/master/superset/dashboards/api.py @dpgaspar & @villebro would probably know more on this topic

[bkyryliuk]

this is a good candidate for the util function - get database ids from the dashboard

by the way it would be much more efficient if that logic could be done in the SQL itself

[graceguo-supercat]

moved to util function, and added unit test.

[ktmud]

A couple of thoughts on naming nits

[ktmud]

I think it's the beforeunload event that triggers the stopPendingQueries action. So maybe we can just call this method stopPendingQueries?

[graceguo-supercat]

ok. fixed method name.

[ktmud]

Can we name this stop_dashboard_queries since it accepts dashboard_id as a required parameter? Also, would user_id be better suited for this API than username?

[graceguo-supercat]

airbnb's internal API accept username and dashboard_id :)

[bkyryliuk]

curious if there is an interest to have in in superset as well e.g. use smth like:
CALL system.runtime.kill_query('20151207_215727_00146_tx3nr');
prestodb/presto#1515

However a challenge here would be tracking all queries and there ids

[graceguo-supercat]

correct. Dashboard is running in synchronized mode, there is no query id passed from query engine to dashboard. While in SQL lab, which is running in asynchronized mode, query id is saved into database, and celery Worker will update query status.

[graceguo-supercat]

if you find another solution, i am happy to learn :)

[villebro]

Would it be possible to introduce a hook here that can either link a database or a db engine spec to a function that handles the query termination? Something similar to what JINJA_CONTEXT_ADDONS or CUSTOM_TEMPLATE_PROCESSORS does in config.py.

[graceguo-supercat]

only return database id for table type datasources.

[dpgaspar]

Looks good, but left some suggestions

[dpgaspar]

@protect or @has_access does not guarantee we a have a user, since it's possible for a public/non authenticated user to access this resource. It's probably very unlikely that a Public role has access to this resource, but now it's possible to set PUBLIC_ROLE_LIKE = "Admin".

[dpgaspar]

optional: maybe it would be simpler to set this endpoint to /data/stop/<id> HTTP POST or PUT, no need for a payload

[robdiciuccio]

Curious why if this endpoint takes a dashboard_id value, does it live in the charts namespace?

[villebro]

While the dashboard namespace was considered, the main use case for this endpoint is to terminate pending chart data queries, hence the chart namespace. The signature will likely be broadened in the future, making it possible to cancel queries based on other parameters (cache_key, slice_id etc). This endpoint will likely change significantly when the async framework is fully implemented, and will be revisited then.

[graceguo-supercat]

I feel there could be 2 use cases: terminate pending query(s) by dashboard_id, or terminate pending query by chart id. Currently airbnb has internal API to do 1), but i feel in the future (when the async framework is fully implemented), Superset should be able to do both.

[dpgaspar]

We don't need content on a empty response, also see if HTTP 204 makes sense

[dpgaspar]

If this is behind a feature flag we can go even further and not register the endpoint at all. Take a look at: https://github.com/apache/incubator-superset/blob/master/superset/dashboards/api.py#L173

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. For admin, please label this issue .pinned to prevent stale bot from closing the issue.

[amitmiran137]

closing due to inactivity