feat: delete unconfirmed users

Author: pajgo

doc/rfcs/inactive_users_cleanup.md

@@ -0,0 +1,42 @@
+# Inactive user cleanup
+
+## Overview and motivation
+Currently `ms-users` service using TTL based cleanup for users who didn't pass activation process. In this case there's a lots of data keys beeing kept in database. That brings additional 'mess' into db data.
+
+In order to provide generally better data handling and clean database structure, I introduce some changes in service logic.
+
+## General defs
+  - `inactive-users`
+  Redis database sorted set key. Bound to `USER_ACTIVATE` constant.
+  Record contains `userId` as value and `timestamp` as score. 
+  - `user-audience`
+  Redis database hash key. Bound to `USERS_AUDIENCE` constant. Stores `userId` to `audience[string]` mapping, contains any audiences used in user's metadata.
+  - `deleteInactivated` Redis script, handling all cleanup logic
+
+
+## Registration and activation hooks
+Hook `users:cleanup` executed before any Registration or Activation request. Hook not breaking general logic and not throwing errors, logs error into logfile (IMHO We don't need to show this exception to service consumers). Such execution strategy saves from any inconsistent changes eg: inactive user hit TTL but tried to pass activation process, we shouldn't allow such situations.
+
+## Registration process
+When user succeds registration but activation not requested new  record added to `inactive-users`. Record contains `userId` and `currenttimestamp`
+
+## Activation process
+When user succeds activation `userId` record deleted from `inactive-users`.
+
+## User's MetaData
+`updateMetadata` util must be updated to track user audience on any data change. This change brings additinal benefits in further processing user data.
+
+## `users:cleanup` hook
+Calls `deleteInactivated` script with TTL parameter from `service.config.deleteInactiveAccounts`
+
+## Remove User process
+For correct code deduplication in redis scripts, we need to provide some templating in them. Currently only added logic to remove `audience` and `inactive-users` data.
+
+## Redis Delete Inactive User Delete script
+`deleteInactivated.lua`
+Delete process requires a lot of data resolved before execution and all database actions must be executed in one shot, to save database consistence. Exports `deleteInactivated` command into namespace and wrapped by `utils/inactive/deleteUsers.js`.
+
+When script started:
+1. It extracts from `inactive-user` list of `userId` with score range '-inf' to 'currentimestamp - ttl'.
+2. Removes all user data including aliases, emails,  metadata, tokens, SSO accounts, throttles and cleans all bound indicies
+3. Removes processed records from `inactive-user`

rfcs/mfa.md doc/rfcs/mfa.mdrfcs/mfa.md renamed to doc/rfcs/mfa.md

@@ -0,0 +1,160 @@
+local outIndexKey = KEYS[1];
+local dataKeyTemplate = KEYS[2];
+local metaKeyTemplate = KEYS[3];
+local kIndUserTokenTemplate = KEYS[4];
+
+local exTime = ARGV[6];
+
+-- hashes
+local kUserAudiences = KEYS[5];
+local kAliasToId = KEYS[6];
+local kUsernameToId = KEYS[7];
+local kSSOToId = KEYS[8];
+
+-- indexes
+local kIndUsers = KEYS[9];
+local kIndUsersPublic = KEYS[10];
+
+-- throttleprefix
+local kThrottlePrefix = KEYS[11];
+
+-- constant fields names
+local fUserId = ARGV[1]
+local fUserAlias = ARGV[2];
+local fUserName = ARGV[3];
+
+local _rawSSOProviders = ARGV[4];
+local _rawThrottleActions = ARGV[5];
+
+local throttleActions = cjson.decode(_rawThrottleActions);
+local ssoProviders = cjson.decode(_rawSSOProviders);
+
+local delimiter = "!";
+
+local function isempty(s)
+  return s == nil or s == '' or s == false;
+end
+
+local function toTable(data)
+  local result = {};
+  for i = 1, #data, 2 do
+    result[data[i]] = data[i + 1]
+  end
+  return result;
+end
+
+-- key generators
+local function key(...)
+  return table.concat(arg, delimiter);
+end
+
+local function decode(strval)
+  if type(strval) == "string" then
+    return cjson.decode(strval);
+  else
+    return {}
+  end
+end
+
+local function makeKey (userId, template)
+  local str = template:gsub('{userid}', userId, 1);
+  return str
+end
+
+local function makeMetaDataKey (userId, audience, template)
+  local str = template:gsub('{userid}', userId, 1);
+  str = str:gsub('{audience}', audience, 1);
+  return str;
+end
+
+local function getUserAudiences(userId)
+  local strVal = redis.call("HGET", kUserAudiences, userId);
+  return decode(strVal)
+end
+
+local function getUserData (userId)
+  local key = makeKey(userId, dataKeyTemplate);
+  local data = redis.call("HGETALL", key);
+
+  if #data > 0 then
+    return toTable(data)
+  end
+
+  return nil;
+end
+
+-- delete logic
+local function deleteUser(userId, userData)
+  if userData == nil then
+    return;
+  end
+
+  local alias = userData[fUserAlias];
+  local username = userData[fUserName];
+
+  if isempty(alias) == false then
+    redis.call("HDEL", kAliasToId, alias, string.lower(alias));
+  end
+
+  --almost impossible but
+  if isempty(username) == false then
+    redis.call("HDEL", kUsernameToId, username);
+  end
+
+  for k,v in pairs(ssoProviders) do
+    local rawData = userData[v];
+    local provData = decode(rawData);
+    if isempty(provData['uid']) == false then
+      redis.call("HDEL", kSSOToId, provData['uid']);
+    end
+  end
+
+  -- clean indicies
+  redis.call("HDEL", kIndUsersPublic, userId );
+  redis.call("HDEL", kIndUsers, userId);
+
+  -- delete user data
+  redis.call("DEL", makeKey(userId, dataKeyTemplate))
+
+  -- delete meta
+  for k,v in pairs(getUserAudiences(userId)) do
+    local metaKey = makeMetaDataKey(userId, v, metaKeyTemplate);
+    redis.call("DEL", metaKey);
+  end
+
+  -- delete USERS_TOKENS
+  local userTokensKey = makeKey(userId, kIndUserTokenTemplate);
+  redis.call("DEL", userTokensKey);
+
+  -- remove audience list
+  redis.call("HDEL", kUserAudiences, userId);
+
+  -- throttle constants
+  for k,v in pairs(throttleActions) do
+    local throttleKey = key(kThrottlePrefix, v, userId);
+    redis.call("DEL", throttleKey);
+  end
+
+end
+
+local function getInactiveUsers()
+  return redis.call("ZRANGEBYSCORE", outIndexKey, '-inf', exTime);
+end
+
+local function cleanInactiveUsers(idList)
+  for k,v in pairs(idList) do
+    redis.call('ZREM', outIndexKey, v);
+  end
+end
+
+-- Command body
+local inactiveUsers = getInactiveUsers();
+
+for k,v in pairs(inactiveUsers) do
+  local userData = getUserData(v);
+  deleteUser(v, userData);
+end
+
+cleanInactiveUsers(inactiveUsers);
+-- returns count of deleted users
+return { #inactiveUsers }

rfcs/scopes.md doc/rfcs/scopes.mdrfcs/scopes.md renamed to doc/rfcs/scopes.md

@@ -5,6 +5,7 @@ const jwt = require('../utils/jwt.js');
 const { getInternalData } = require('../utils/userData');
 const getMetadata = require('../utils/getMetadata');
 const handlePipeline = require('../utils/pipelineError.js');
+const { removeInactiveUser } = require('../utils/inactive/users');
 const {
   USERS_INDEX,
   USERS_DATA,
@@ -126,6 +127,8 @@ function activateAccount(data, metadata) {
     .persist(userKey)
     .sadd(USERS_INDEX, userId);
 
+  removeInactiveUser(pipeline, userId);
+
   if (alias) {
     pipeline.sadd(USERS_PUBLIC_INDEX, userId);
   }
@@ -192,6 +195,8 @@ function activateAction({ params }) {
   };
 
   return Promise
+    .resolve(['users:cleanup'])
+    .spread(this.hook.bind(this))
     .bind(context)
     .then(verifyRequest)
     .bind(this)

scripts/deleteInactivated.lua

@@ -22,6 +22,7 @@ const checkLimits = require('../utils/checkIpLimits');
 const challenge = require('../utils/challenges/challenge');
 const handlePipeline = require('../utils/pipelineError');
 const hashPassword = require('../utils/register/password/hash');
+const { addInactiveUser } = require('../utils/inactive/users');
 const {
   USERS_REF,
   USERS_INDEX,
@@ -208,7 +209,7 @@ async function performRegistration({ service, params }) {
   pipeline.hset(USERS_USERNAME_TO_ID, username, userId);
 
   if (activate === false && config.deleteInactiveAccounts >= 0) {
-    pipeline.expire(userDataKey, config.deleteInactiveAccounts);
+    addInactiveUser(pipeline, userId, audience);
   }
 
   await pipeline.exec().then(handlePipeline);
@@ -348,7 +349,11 @@ module.exports = async function registerUser({ params }) {
     .disposer(lockDisposer);
 
   return Promise
-    .using({ service, params }, acquireLock, performRegistration)
+    .resolve(['users:cleanup'])
+    .spread(service.hook.bind(service))
+    .then(() => {
+      return Promise.using({ service, params }, acquireLock, performRegistration);
+    })
     .catchThrow(LockAcquisitionError, ErrorRaceCondition);
 };
 

src/actions/activate.js

@@ -12,6 +12,8 @@ const {
   USERS_PUBLIC_INDEX,
   USERS_ALIAS_TO_ID,
   USERS_SSO_TO_ID,
+  USERS_ACTIVATE,
+  USERS_AUDIENCE,
   USERS_USERNAME_TO_ID,
   USERS_USERNAME_FIELD,
   USERS_DATA,
@@ -92,6 +94,10 @@ async function removeUser({ params }) {
   transaction.srem(USERS_PUBLIC_INDEX, userId);
   transaction.srem(USERS_INDEX, userId);
 
+  // clean audiences and delete from inactive list
+  transaction.zrem(USERS_ACTIVATE, userId);
+  transaction.hdel(USERS_AUDIENCE, userId);
+
   // remove metadata & internal data
   transaction.del(key(userId, USERS_DATA));
   transaction.del(key(userId, USERS_METADATA, audience));

src/actions/register.js

@@ -6,6 +6,10 @@ module.exports = exports = {
   USERS_PUBLIC_INDEX: 'users-public',
   USERS_REFERRAL_INDEX: 'users-referral',
   ORGANIZATIONS_INDEX: 'organization-iterator-set',
+  // inactive user id's list
+  USERS_ACTIVATE: 'users-activate',
+  // handles json list of audiences
+  USERS_AUDIENCE: 'users-audience',
   // id mapping
   USERS_ALIAS_TO_ID: 'users-alias',
   USERS_SSO_TO_ID: 'users-sso-hash',
@@ -108,6 +112,7 @@ module.exports = exports = {
   // lock names
   lockAlias: alias => `users:alias:${alias}`,
   lockRegister: username => `users:register:${username}`,
+  lockActivate: username => `users:activate:${username}`,
   lockOrganization: organizationName => `organizations:create:${organizationName}`,
 };
 

src/actions/remove.js

@@ -76,6 +76,7 @@ module.exports = class Users extends Microfleet {
       // init token manager
       const tokenManagerOpts = { backend: { connection: redis } };
       this.tokenManager = new TokenManager(merge({}, config.tokenManager, tokenManagerOpts));
+      this.on('users:cleanup', require('./utils/inactive/users').cleanUsers);
     });
 
     this.on('plugin:start:http', (server) => {
@@ -96,6 +97,7 @@ module.exports = class Users extends Microfleet {
     this.on(`plugin:close:${this.redisType}`, () => {
       this.dlock = null;
       this.tokenManager = null;
+      this.removeListener('users:cleanup');
     });
 
     // add migration connector

src/constants.js

@@ -0,0 +1,52 @@
+const key = require('../key');
+
+const {
+  USERS_ACTIVATE,
+  USERS_AUDIENCE,
+  USERS_ALIAS_TO_ID,
+  USERS_SSO_TO_ID,
+  USERS_DATA,
+  USERS_METADATA,
+  USERS_TOKENS,
+  USERS_INDEX,
+  USERS_PUBLIC_INDEX,
+  USERS_ID_FIELD,
+  USERS_ALIAS_FIELD,
+  USERS_USERNAME_TO_ID,
+  USERS_USERNAME_FIELD,
+  SSO_PROVIDERS,
+  THROTTLE_PREFIX,
+  USERS_ACTION_ACTIVATE,
+  USERS_ACTION_REGISTER,
+  USERS_ACTION_PASSWORD,
+  USERS_ACTION_RESET,
+} = require('../../constants');
+
+const encode = obj => JSON.stringify(obj);
+
+/**
+ * Clean all users, who did't pass activation
+ * see scripts/deleteInactivated.lua
+ */
+async function deleteInactiveUsers(redis, ttl) {
+  const userDataTmpl = key('{userid}', USERS_DATA);
+  const metaDataTmpl = key('{userid}', USERS_METADATA, '{audience}');
+  const tokenTmpl = key('{userid}', USERS_TOKENS);
+  const ssoProviders = encode(SSO_PROVIDERS);
+  const throttleActions = encode([USERS_ACTION_ACTIVATE, USERS_ACTION_PASSWORD, USERS_ACTION_RESET, USERS_ACTION_REGISTER]);
+
+  const expire = Date.now() - (ttl * 1000);
+
+  // not pretty but....
+  // Leaving binding to THROTTLE_PREFIX, but this constants absent.
+  const cmd = redis.deleteInactivated(11,
+    USERS_ACTIVATE, userDataTmpl, metaDataTmpl, tokenTmpl, USERS_AUDIENCE,
+    USERS_ALIAS_TO_ID, USERS_USERNAME_TO_ID, USERS_SSO_TO_ID, USERS_INDEX, USERS_PUBLIC_INDEX,
+    THROTTLE_PREFIX,
+    USERS_ID_FIELD, USERS_ALIAS_FIELD, USERS_USERNAME_FIELD,
+    ssoProviders, throttleActions, expire);
+
+  return cmd;
+}
+
+module.exports = deleteInactiveUsers;