Optimise download many (#2001)

* download client side and bulk download

* working bulk download

* cleaned

* gestion of faulty submission

* changed to post instead of get and added failed.txt to bundle

* added limit on number of file to download simultaneously

* it should work

* cleaned comments

* Flake8 fixes

* added option to bulk download scores files and predictions files

* cleaned code

* exclude not finished submission inside download pred and scores

* download client side and bulk download

* working bulk download

* cleaned

* gestion of faulty submission

* changed to post instead of get and added failed.txt to bundle

* added limit on number of file to download simultaneously

* it should work

* cleaned comments

* Flake8 fixes

* Rebase optimise_download_many (#2159)

* removed  and  from docs

* replaced DEFAULT_FROM_EMAIL by SERVER_EMAIL

* remove docs/ since we do not need it anymore and it's unmaintained

* Django Admin Interface upgrades (#2090)

* update django admin interface to make it easier to manage spam

* add option to export email and username of organizers as a CSV file  or JSON

* add option to export email and username of queue owners as a CSV file  or JSON

* use raw_id_fields to make django admin pages load much faster

* make file size human readable

* re-arranged the fieldsets of some admin pages to be easier to navigate

* add small description about size (bytes of GB); limit text length displayed in list displays

* add custom text in list filter

* make some filter clearer: remove useless repetitions

* add export option for users

* fix typo

---------

Co-authored-by: Obada Haddad <obada.haddad@lisn.fr>

* `Compute Worker` Use docker-py  instead of the current subprocess way of doing things (for podman and docker) (#2065)

* Using docker-py and podman-py instead of the current subprocess way of doing things

* Removed useless line

* Started work on Podman; re-added log stream to codabench instance

* Corrected typo in variable name; small changes for image pulls for podman

* remove the podman package and use only docker API calls for both podman and docker containers

* add better progress bar when downloading and some debug logger output

* add github workflow

* workflow fixes

* format with ruff; add cleanup

* format with ruff; fix websockets connection infinite waiting

* change Dockerfile.compute_worker to remove docker; make GPU selection compatible with podman and  docker

* fix a typo

* ruff formatting; update documentation

* delete useless workflow

* update documentation, remove useless files, add docker in pyproject for pytests

* try to fix pytest errors

* fix typo

* remove unused folder for podman

* add more logs for the compute worker; update documentation

* fix poetry lock after rebase

* rebase + remove failing tests. We can test this in e2e tests

* fix flake8 errors

* fix poetry lock after rebase

* remove poetry at the end to fix vulnerabilities and make image lighter

* remove docker and rich from main pyproject.toml

* fix missing f

* add timeout for websocket connections

* add more information about which container engine we are using and if GPU will be used

* tentative fix for send_detailed_results websocket connection attempt

* make error reporting better; handle websocket conenctions failures better

* fix hostname inside celery worker to use container hostname

* fix compute worker startup in compute worker service since we use entrypoint in Dockerfile.compute worker

* add workflow to build and push compute worker image automatically on file changes for every branch

* change Dockerfile.compute_worker and test workflow

* fix missing checkout in new workflows

* fix missing needs: to make the push job wait for the build to finish first

* further fixes in workflow

* rebase branch and update documentation about the new docker image workflow

* update documentation to be more clear

* fix typo

* update compute worker image name

* raise timeout to make it less likely to fail when instance is slow to load

* fix compute worker name in github workflow

---------

Co-authored-by: Obada Haddad <obada.haddad@lisn.fr>

* version bump

* fix playwright test failing because it's not looking far enough for the leaderboard ID

* remove selenium traces; make celery do all the work instead of django

* re-enabled django acting as celery for some tasks

* fix typo

* added submission id and filename fileds to submission csv

* fixed date selection (february related ?)

* Remove useless files (#2138)

* remove useless files and update documentation

* Remove reference to reset_db.sh from README.md

---------

Co-authored-by: Obada Haddad <obada.haddad@lisn.fr>
Co-authored-by: didayolo <adrien.pavao@gmail.com>

* Django to 4.2.0 (#1959)

* django_to_3.2.25

* django_to_4.0.0

* django to 4.20 - close but still failing tests

* pdb in test_competitions

* STATICFILES_STORAGE is old pattern

* some migrations for changes to default field behaviors

* flake adjustments

* remove a pdb for test

* channels to 4.2.0

* merged develop into django4 branch

* Added Daphne middleware + whitenoise for static files; fixed csrf errors

* CSRF fixed

* CSRF fixes

* Fixed potential botocore problem with use_ssl state

* rebase and modifed migration

* remove daphne and selenium

* flake8 fixes

* makemigrations results after rebase

* Cleanup

* Update packages

---------

Co-authored-by: Obada Haddad <obada.haddad@lisn.fr>
Co-authored-by: didayolo <adrien.pavao@gmail.com>

* General - Added new files for Governance, Privacy and About (#2094)

* Added new files for Governance, Privacy and About. Updated links in docs to poin to these

* Fix links

* Reference to Codabench

---------

Co-authored-by: didayolo <adrien.pavao@gmail.com>

* Update mkdocs.yml

* Delete documentation/docs/Organizers/Benchmark_Creation/Cancer-Benchmarks.md

* More flexible server status page

* Fix behavior

---------

Co-authored-by: Ihsan Ullah <ihsan2131@gmail.com>
Co-authored-by: Obada Haddad-Soussac <11889208+ObadaS@users.noreply.github.com>
Co-authored-by: Obada Haddad <obada.haddad@lisn.fr>
Co-authored-by: acletournel <acl@lri.fr>
Co-authored-by: Benjamin Bearce <bbearce@gmail.com>

* Flake8 fixes

* Fix bulk download

---------

Co-authored-by: Nicolas HOMBERG <nicolas.homberg@univ-grenoble-alpes.fr>
Co-authored-by: Obada Haddad <obada.haddad@lisn.fr>
Co-authored-by: Adrien Pavão <adrien.pavao@u-psud.fr>
Co-authored-by: Ihsan Ullah <ihsan2131@gmail.com>
Co-authored-by: acletournel <acl@lri.fr>
Co-authored-by: Benjamin Bearce <bbearce@gmail.com>
Co-authored-by: didayolo <adrien.pavao@gmail.com>

Author: 7 people

src/apps/api/views/submissions.py

@@ -14,11 +14,10 @@
 from rest_framework.viewsets import ModelViewSet
 from rest_framework_csv import renderers
 from django.core.files.base import ContentFile
-from django.http import StreamingHttpResponse
 
 from profiles.models import Organization, Membership
 from tasks.models import Task
-from api.serializers.submissions import SubmissionCreationSerializer, SubmissionSerializer, SubmissionFilesSerializer
+from api.serializers.submissions import SubmissionCreationSerializer, SubmissionSerializer, SubmissionFilesSerializer, SubmissionDetailSerializer
 from competitions.models import Submission, SubmissionDetails, Phase, CompetitionParticipant
 from leaderboards.strategies import put_on_leaderboard_by_submission_rule
 from leaderboards.models import SubmissionScore, Column, Leaderboard
@@ -220,6 +219,27 @@ def destroy(self, request, *args, **kwargs):
         self.perform_destroy(submission)
         return Response(status=status.HTTP_204_NO_CONTENT)
 
+    def check_submission_permissions(self, request, submissions):
+        # Check permissions
+        if not request.user.is_authenticated:
+            raise PermissionDenied("You must be logged in to download submissions")
+        # Allow admins
+        if request.user.is_superuser or request.user.is_staff:
+            allowed = True
+        else:
+            # Build one Q object for "owner OR organizer"
+            organiser_q = (
+                Q(phase__competition__created_by=request.user) |
+                Q(phase__competition__collaborators=request.user)
+            )
+            # Submissions that violate the rule
+            disallowed = submissions.exclude(Q(owner=request.user) | organiser_q)
+            allowed = not disallowed.exists()
+        if not allowed:
+            raise PermissionDenied(
+                "You do not have permission to download one or more of the requested submissions"
+            )
+
     @action(detail=True, methods=('DELETE',))
     def soft_delete(self, request, pk):
         submission = self.get_object()
@@ -384,26 +404,28 @@ def re_run_many_submissions(self, request):
             submission.re_run()
         return Response({})
 
-    @action(detail=False, methods=['get'])
+    # TODO: The 3 functions download many should be bundled inside a genereic with the function like "get_prediction_result" as a parameter instead of the same code 3 times
+    @action(detail=False, methods=('POST',))
     def download_many(self, request):
-        """
-        Download a ZIP containing several submissions.
-        """
-        pks = request.query_params.get('pks')
-        if pks:
-            pks = json.loads(pks)  # Convert JSON string to list
-        else:
-            return Response({"error": "`pks` query parameter is required"}, status=400)
+        pks = request.data.get('pks')
+        if not pks:
+            return Response({"error": "`pks` field is required"}, status=400)
+
+        # pks is already parsed as a list if JSON was sent properly
+        if not isinstance(pks, list):
+            return Response({"error": "`pks` must be a list"}, status=400)
 
         # Get submissions
         submissions = Submission.objects.filter(pk__in=pks).select_related(
             "owner",
-            "phase__competition",
-            "phase__competition__created_by",
-        ).prefetch_related("phase__competition__collaborators")
-        if submissions.count() != len(pks):
+            "phase",
+            "data"
+        )
+
+        if len(list(submissions)) != len(pks):
             return Response({"error": "One or more submission IDs are invalid"}, status=404)
 
+        # Nicolas Homberg : should create a function for this ?
         # Check permissions
         if not request.user.is_authenticated:
             raise PermissionDenied("You must be logged in to download submissions")
@@ -424,12 +446,29 @@ def download_many(self, request):
                 "You do not have permission to download one or more of the requested submissions"
             )
 
-        # Download
-        from competitions.tasks import stream_batch_download
-        in_memory_zip = stream_batch_download(pks)
-        response = StreamingHttpResponse(in_memory_zip, content_type='application/zip')
-        response['Content-Disposition'] = 'attachment; filename="bulk_submissions.zip"'
-        return response
+        files = []
+
+        for sub in submissions:
+            file_path = sub.data.data_file.name.split('/')[-1]
+            short_name = f"{sub.id}_{sub.owner}_PhaseId{sub.phase.id}_{sub.data.created_when.strftime('%Y-%m-%d:%M-%S')}_{file_path}"
+            # url = sub.data.data_file.url
+            url = SubmissionDetailSerializer(sub.data, context=self.get_serializer_context()).data['data_file']
+            # url = SubmissionFilesSerializer(sub, context=self.get_serializer_context()).data['data_file']
+            files.append({"name": short_name, "url": url})
+
+        return Response(files)
+
+        for sub in submissions:
+            if sub.status not in [Submission.FINISHED]:  # Submission.FAILED, Submission.CANCELLED
+                continue
+            file_path = sub.data.data_file.name.split('/')[-1]
+            complete_name = f"res_{sub.id}_{sub.owner}_PhaseId{sub.phase.id}_{sub.data.created_when.strftime('%Y-%m-%d:%M-%S')}_{file_path}"
+            result_url = SubmissionDetailSerializer(sub.data, context=self.get_serializer_context()).get_scoring_result(sub)
+            # detailed results is already in the results zip file but For very large detailed results it could be helpfull to remove it
+            # detailed_result_url = serializer.get_scoring_result(sub)
+            files.append({"name": complete_name, "url": result_url})
+
+        return Response(files)
 
     @action(detail=True, methods=('GET',))
     def get_details(self, request, pk):

src/apps/competitions/tasks.py

@@ -19,10 +19,6 @@
 from django.utils.timezone import now
 from rest_framework.exceptions import ValidationError
 
-from urllib.request import urlopen
-from contextlib import closing
-from urllib.error import ContentTooShortError
-
 from celery_config import app
 from competitions.models import Submission, CompetitionCreationTaskStatus, SubmissionDetails, Competition, \
     CompetitionDump, Phase
@@ -317,49 +313,6 @@ def send_child_id(submission, child_id):
     })
 
 
-def retrieve_data(url, data=None):
-    with closing(urlopen(url, data)) as fp:
-        headers = fp.info()
-
-        bs = 1024 * 8
-        size = -1
-        read = 0
-        if "content-length" in headers:
-            size = int(headers["Content-Length"])
-
-        while True:
-            block = fp.read(bs)
-            if not block:
-                break
-            read += len(block)
-            yield(block)
-
-    if size >= 0 and read < size:
-        raise ContentTooShortError(
-            "retrieval incomplete: got only %i out of %i bytes"
-            % (read, size))
-
-
-def zip_generator(submission_pks):
-    in_memory_zip = BytesIO()
-    with zipfile.ZipFile(in_memory_zip, 'w', zipfile.ZIP_DEFLATED) as zip_file:
-        for submission_id in submission_pks:
-            submission = Submission.objects.get(id=submission_id)
-            short_name = "ID_" + str(submission_id) + '_' + submission.data.data_file.name.split('/')[-1]
-            url = make_url_sassy(path=submission.data.data_file.name)
-            for block in retrieve_data(url):
-                zip_file.writestr(short_name, block)
-
-    in_memory_zip.seek(0)
-
-    return in_memory_zip
-
-
-@app.task(queue='site-worker', soft_time_limit=60 * 60)
-def stream_batch_download(submission_pks):
-    return zip_generator(submission_pks)
-
-
 @app.task(queue='site-worker', soft_time_limit=60)
 def _run_submission(submission_pk, task_pks=None, is_scoring=False):
     """This function is wrapped so that when we run tests we can run this function not

src/static/js/ours/client.js

@@ -128,31 +128,13 @@ CODALAB.api = {
         return CODALAB.api.request('GET', `${URLS.API}submissions/${id}/get_detail_result/`)
     },
     download_many_submissions: function (pks) {
-        console.log('Request bulk');
-        const params = new URLSearchParams({ pks: JSON.stringify(pks) });
-        const url = `${URLS.API}submissions/download_many/?${params}`;
-        return fetch(url, {
-            method: 'GET',
-            headers: {
-                'Content-Type': 'application/json'
-            }
-        }).then(response => {
-            if (!response.ok) {
-                throw new Error('Network response was not ok ' + response.statusText);
-            }
-            return response.blob();
-        }).then(blob => {
-            const link = document.createElement('a');
-            link.href = window.URL.createObjectURL(blob);
-            link.download = 'bulk_submissions.zip';
-            document.body.appendChild(link);
-            link.click();
-            document.body.removeChild(link);
-        }).catch(error => {
-            console.error('Error downloading submissions:', error);
-        });
+        return CODALAB.api.request(
+            'POST',
+            URLS.API + "submissions/download_many/",
+            { pks: pks }   // body is JSON by convention
+        );
     },
-
+        
     /*---------------------------------------------------------------------
          Leaderboards
     ---------------------------------------------------------------------*/