feat(quota): #309 Improve handling of "quota limit reached" errors

When quota limit is reached ggshield: - prints this error: "Could not perform the requested action: no more API calls available." - exits with an error code of 128 - does not print anything through the output handlers (no text report, no JSON report)
GitGuardian · Jul 5, 2023 · 0629315 · 0629315
1 parent 65d2dba
commit 0629315
Show file tree

Hide file tree

Showing 6 changed files with 135 additions and 4 deletions.
diff --git a/....guillaume_scrt_3734_ggshield_improve_handling_of_quota_limit_reached_errors.md b/....guillaume_scrt_3734_ggshield_improve_handling_of_quota_limit_reached_errors.md
@@ -0,0 +1,41 @@
+<!--
+A new scriv changelog fragment.
+
+Uncomment the section that is right (remove the HTML comment wrapper).
+-->
+
+<!--
+### Removed
+
+- A bullet item for the Removed category.
+
+-->
+<!--
+### Added
+
+- A bullet item for the Added category.
+
+-->
+<!--
+### Changed
+
+- A bullet item for the Changed category.
+
+-->
+<!--
+### Deprecated
+
+- A bullet item for the Deprecated category.
+
+-->
+
+### Fixed
+
+- Improve handling of "quota limit reached" errors (#309)
+
+<!--
+### Security
+
+- A bullet item for the Security category.
+
+-->
diff --git a/ggshield/core/errors.py b/ggshield/core/errors.py
@@ -66,6 +66,14 @@ def __init__(self, instance: str, message: str):
         self.instance = instance
 
 
+class QuotaLimitReachedError(_ExitError):
+    def __init__(self):
+        super().__init__(
+            ExitCode.UNEXPECTED_ERROR,
+            "Could not perform the requested action: no more API calls available.",
+        )
+
+
 class UnknownInstanceError(AuthError):
     """
     Raised when the requested instance does not exist

diff --git a/ggshield/secret/repo.py b/ggshield/secret/repo.py
@@ -13,7 +13,7 @@
 from ggshield.core.client import check_client_api_key
 from ggshield.core.config import Config
 from ggshield.core.constants import MAX_WORKERS
-from ggshield.core.errors import ExitCode, handle_exception
+from ggshield.core.errors import ExitCode, QuotaLimitReachedError, handle_exception
 from ggshield.core.git_shell import get_list_commit_SHA, is_git_dir
 from ggshield.core.text_utils import create_progress_bar, display_error
 from ggshield.core.types import IgnoredMatch
@@ -90,6 +90,8 @@ def scan_commits_content(
             commit_files,
             scan_threads=SCAN_THREADS,
         )
+    except QuotaLimitReachedError:
+        raise
     except Exception as exc:
         results = Results.from_exception(exc)
 
@@ -163,7 +165,6 @@ def scan_commit_range(
     max_documents = client.secret_scan_preferences.maximum_documents_per_scan
 
     with create_progress_bar(doc_type="commits") as progress:
-
         task_scan = progress.add_task(
             "[green]Scanning Commits...", total=len(commit_list)
         )
@@ -192,6 +193,13 @@ def scan_commit_range(
                         ignored_detectors,
                     )
                 )
+                # Stop now if an exception has been raised by a future
+                if any(future.exception() is not None for future in futures):
+                    raise next(
+                        future.exception()
+                        for future in futures
+                        if future.exception() is not None
+                    )
 
             for future in as_completed(futures):
                 scan_collection = future.result()

diff --git a/ggshield/secret/secret_scanner.py b/ggshield/secret/secret_scanner.py
@@ -13,7 +13,7 @@
 from ggshield.core.cache import Cache
 from ggshield.core.client import check_client_api_key
 from ggshield.core.constants import MAX_WORKERS
-from ggshield.core.errors import UnexpectedError
+from ggshield.core.errors import QuotaLimitReachedError, UnexpectedError
 from ggshield.core.filter import (
     remove_ignored_from_result,
     remove_results_from_ignore_detectors,
@@ -209,6 +209,9 @@ def _collect_results(
                 )
 
             if not scan.success:
+                if scan.status_code == 403 and scan.detail == "Quota limit reached.":
+                    raise QuotaLimitReachedError()
+
                 handle_scan_chunk_error(scan, chunk)
                 continue
 

diff --git a/tests/functional/conftest.py b/tests/functional/conftest.py
@@ -1,3 +1,4 @@
+import abc
 import http.server
 import shutil
 import socketserver
@@ -23,7 +24,7 @@
 requires_docker = pytest.mark.skipif(not HAS_DOCKER, reason="This test requires Docker")
 
 
-class SlowGGAPIHandler(http.server.BaseHTTPRequestHandler):
+class AbstractGGAPIHandler(http.server.BaseHTTPRequestHandler, metaclass=abc.ABCMeta):
     def do_HEAD(self):
         self.send_response(200)
 
@@ -45,6 +46,12 @@ def do_GET(self):
 
         self.wfile.write(response.content)
 
+    @abc.abstractmethod
+    def do_POST(self):
+        raise NotImplementedError()
+
+
+class SlowGGAPIHandler(AbstractGGAPIHandler):
     def do_POST(self):
         if "multiscan" in self.path:
             content = b'{"detail":"Sorry, I overslept!"}'
@@ -58,6 +65,16 @@ def do_POST(self):
             self.send_response(418)
 
 
+class NoQuotaGGAPIHandler(AbstractGGAPIHandler):
+    def do_POST(self):
+        content = b'{"detail":"Quota limit reached."}'
+        self.send_response(403)
+        self.send_header("content-type", "application/json")
+        self.send_header("Content-Length", str(len(content)))
+        self.end_headers()
+        self.wfile.write(content)
+
+
 class ReuseAddressServer(socketserver.TCPServer):
     allow_reuse_address = True
 
@@ -67,6 +84,11 @@ def _start_slow_gitguardian_api(host: str, port: int):
         httpd.serve_forever()
 
 
+def _start_no_quota_gitguardian_api(host: str, port: int):
+    with ReuseAddressServer((host, port), NoQuotaGGAPIHandler) as httpd:
+        httpd.serve_forever()
+
+
 @pytest.fixture
 @pytest.mark.allow_hosts(["localhost"])
 def slow_gitguardian_api() -> Generator[str, None, None]:
@@ -78,3 +100,16 @@ def slow_gitguardian_api() -> Generator[str, None, None]:
     finally:
         server_process.kill()
         server_process.join()
+
+
+@pytest.fixture
+@pytest.mark.allow_hosts(["localhost"])
+def no_quota_gitguardian_api() -> Generator[str, None, None]:
+    host, port = "localhost", 8124
+    server_process = Process(target=_start_no_quota_gitguardian_api, args=(host, port))
+    server_process.start()
+    try:
+        yield f"http://{host}:{port}"
+    finally:
+        server_process.kill()
+        server_process.join()
diff --git a/tests/functional/secret/test_scan_repo.py b/tests/functional/secret/test_scan_repo.py
@@ -1,4 +1,6 @@
+import os
 from pathlib import Path
+from unittest.mock import patch
 
 from tests.conftest import GG_VALID_TOKEN
 from tests.functional.utils import recreate_censored_content, run_ggshield_scan
@@ -24,3 +26,37 @@ def test_scan_repo(tmp_path: Path) -> None:
     proc = run_ggshield_scan("repo", str(repo.path), expected_code=1, cwd=repo.path)
 
     assert recreate_censored_content(leak_content, GG_VALID_TOKEN) in proc.stdout
+
+
+def test_scan_repo_quota_limit_reached(
+    tmp_path: Path, no_quota_gitguardian_api: str, caplog
+) -> None:
+    # GIVEN a repository
+    repo = Repository.create(tmp_path)
+
+    # AND a commit containing a leak
+    secret_file = repo.path / "secret.conf"
+    leak_content = f"password = {GG_VALID_TOKEN}"
+    secret_file.write_text(leak_content)
+    repo.add("secret.conf")
+
+    # AND some clean commits on top of it
+    for _ in range(3):
+        repo.create_commit()
+
+    # WHEN scanning the repo
+    # THEN error code is 128
+    with patch.dict(
+        os.environ, {**os.environ, "GITGUARDIAN_API_URL": no_quota_gitguardian_api}
+    ):
+        proc = run_ggshield_scan(
+            "repo", str(repo.path), "--json", expected_code=128, cwd=repo.path
+        )
+
+    # AND stderr contains an error message
+    assert (
+        "Error: Could not perform the requested action: no more API calls available."
+        in proc.stderr
+    )
+    # AND stdout is empty
+    assert proc.stdout.strip() == ""