Skip to content

Thirteen inaccessible snapshots in dev #8153

Description

@hannes-ucsc

(Posted by Claude Code)

The indexer service account does not have access to the following 5 configured TDR snapshots in the dev deployment:

  • hca_dev_1c6a960d52ac44eab728a59c7ab9dc8e__20210827_20210928 (datarepo-dev-135f340c)
  • hca_dev_520afa10f9d24e93ab7a26c4c863ce18__20210827_20210928 (datarepo-dev-71de019e)
  • hca_dev_71436067ac414acebe1b2fbcc2cb02fa__20210827_20210928 (datarepo-dev-3545971c)
  • hca_dev_05657a599f9d4bb9b77b24be13aa5cea__20210827_20230215 (datarepo-dev-3d6d24ad)
  • hca_dev_51f02950ee254f4b8d0759aa99bb3498__20210827_20230215 (datarepo-dev-b46086a9)

This was detected by a new assertion in SourceService._all_sources (added in #354) which verifies that all configured sources are accessible to the indexer SA at deployment time (during outsourcing).

Previously, post_deploy_tdr.py:verify_sources would have caught this via plugin.resolve_source, but the new check runs earlier during make lambdas and blocks the build.

Either the indexer SA needs to be granted access to these snapshots, or they should be removed from the catalog configuration if they are no longer needed.

Metadata

Metadata

Assignees

Labels

no demo[process] Not to be demonstrated at the end of the sprint

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions