Force loading provider configuration when using config.as_dict #38793

ephraimbuddy · 2024-04-06T06:37:32Z

It's not clear to me why the sensitive_config_values excludes providers when config.as_dict is used on the webserver. This has resulted in displaying sensitive provider configurations even when non-sensitive-only is used as the value of [webserver]expose_config.

This fixed it but still, it's not clear to me where things went wrong.

cc @potiuk

It's not clear to me why the sensitive_config_values excludes providers when config.as_dict is used on the webserver. This has resulted in displaying sensitive provider configurations even when non-sensitive-only is used as the value of [webserver]expose_config. This fixed it but still, it's not clear to me where things went wrong.

ashb · 2024-04-06T07:12:12Z

airflow/configuration.py

@@ -1439,11 +1439,13 @@ def as_dict(
            ("default", self._default_values),
            ("airflow.cfg", self),
        ]
+        # Force the providers configuration to be loaded
+        self.configuration_description = retrieve_configuration_description()


Suggested change

self.configuration_description = retrieve_configuration_description()

if not self.configuration_description:

self.configuration_description = retrieve_configuration_description()

perhaps?

It’s there just that it doesn’t have providers configuration. so this would lead to old results.
where it was set initially, it was set not to load providers configuration.

Ah. Probably needs a comment then

Or rather, expanding on the comment you did add 🤦

That's not the right fix (it will cause much slowe airflow import if we do it this way because importing airflow is initializing configuraiton (this is why by default it does not load provider configuration).

We are lazy-loading provider's configuration by ProvidersManager.iniitialize_providers_configuration(). I have a fix coming with modified tests. I noticed that teh test that was retrieving config for non-sensitive values was not really testing if configuration for non-sensitive values was working - it checked only if as_dict() was called with include_sensitive=False (but it did not really check if sensitive values were replaced).

ashb · 2024-04-06T07:12:50Z

Could we add a test to cover that this doesn't break again please?

ephraimbuddy · 2024-04-06T19:48:09Z

Better fix: #38795

ephraimbuddy requested a review from potiuk April 6, 2024 06:37

ashb reviewed Apr 6, 2024

View reviewed changes

potiuk mentioned this pull request Apr 6, 2024

Fix loading configuration from providers for config endpoints #38794

Closed

ephraimbuddy closed this Apr 6, 2024

ephraimbuddy deleted the fix-sensitive-secrets branch April 6, 2024 19:48

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Force loading provider configuration when using config.as_dict #38793

Force loading provider configuration when using config.as_dict #38793

ephraimbuddy commented Apr 6, 2024

ashb Apr 6, 2024

ephraimbuddy Apr 6, 2024

ashb Apr 6, 2024

ashb Apr 6, 2024

potiuk Apr 6, 2024

potiuk Apr 6, 2024

ashb commented Apr 6, 2024

ephraimbuddy commented Apr 6, 2024

	self.configuration_description = retrieve_configuration_description()
	if not self.configuration_description:
	self.configuration_description = retrieve_configuration_description()

Force loading provider configuration when using config.as_dict #38793

Force loading provider configuration when using config.as_dict #38793

Conversation

ephraimbuddy commented Apr 6, 2024

ashb Apr 6, 2024

Choose a reason for hiding this comment

ephraimbuddy Apr 6, 2024

Choose a reason for hiding this comment

ashb Apr 6, 2024

Choose a reason for hiding this comment

ashb Apr 6, 2024

Choose a reason for hiding this comment

potiuk Apr 6, 2024

Choose a reason for hiding this comment

potiuk Apr 6, 2024

Choose a reason for hiding this comment

ashb commented Apr 6, 2024

ephraimbuddy commented Apr 6, 2024