Split out moderation backend #1970

dholms · 2023-12-15T15:00:04Z

This pulls the moderation backend out of the appview & into it's own service.

Mod service:

Basically a copy of the moderation service from within the appview
a few basic implementation changes:
- refactored methods to use Map instead of Record (which we did recently on the appview & is quite nice)
- Added some new classes for wrangling the all of the "subjectType" typeswitches we were doing
- run event reversal in a separate daemon
larger architectural changes:
- Goes out to the appview to hydrate in records (including profiles) and handles
- We treat takedowns as "push events". We transactionally store them in push event tables & then the daemon routinely polls & attempts to push those out to downstream services (appview/PDS). It retries up to 10 times
- For push events, the mod service uses a service jwt signed by it's own key (which is announced in it's did doc)

Appview

removed all existing admin routes
added simple routes for getting account info & getting/updating subject status (such as takedowns)
added a new service jwt auth method for an appointed admin service. This functions like user auth to the appview but it validates that the issuer is a trusted DID
auto-mod pushes all events out to ozone backend instead of tracking locally
- cdn invalidation is no longer done by auto-mod, but is handled by the appview app instances when the takedown request comes through from ozone

PDS

We previously got in some of the admin service auth stuff into the PDS, but there was a strange semantic where the audience was set to the DID of the account that the action was about. This is updated so that it uses the PDS's DID
Proxies createReport to mod service now (instead of appview) & gives the PDS a config var for a trusted mod service & URL

Random other things that got wrapped up into this:

auth verifier in appview (refactored the api to look like the PDS's & added in an "admin service" verifier
- refactored some of the auth checks for viewing takedowns in application routes (like getProfile) to use a new parseCreds util
moved appview test seeds to dev-env (for re-use in ozone)
- it would be great to reuse the seeds in PDS as well, but there are some subtle differences between them that I didn't want to sort through righ tnow

devinivy · 2024-01-04T21:45:48Z

packages/pds/src/config/config.ts

+ assert(env.modServiceUrl)
+ assert(env.modServiceDid)


Should these be hard-required on the pds?

Changelog diff is: diff --git a/Changes b/Changes index 2a66677..f675529 100644 --- a/Changes +++ b/Changes @@ -2,6 +2,8 @@ Revision history for Perl extension At.pm {{$NEXT}} +0.05 2024-01-09T04:01:09Z + - Update according to lexicon changes in bluesky-social/atproto#1970 - new method: admin_getAccountsInfo - new field in class At::Lexicon::com::atproto::admin::accountView

Changelog diff is: diff --git a/Changes b/Changes index f675529..0ff2715 100644 --- a/Changes +++ b/Changes @@ -2,6 +2,11 @@ Revision history for Perl extension At.pm {{$NEXT}} +0.06 2024-01-19T02:20:52Z + + - Update according to lexicon changes in bluesky-social/atproto@e43396a + - phone verification support on account creation + 0.05 2024-01-09T04:01:09Z - Update according to lexicon changes in bluesky-social/atproto#1970

dholms added 30 commits December 14, 2023 09:59

mv appview

03a1557

copy

1d80936

merge

ef55a87

finalize copy

36ba182

package names

5aaf7f3

big WIP

a72ba16

first pass at mod servce

fb3161e

some tidy

6b682ab

tidy & fix compiler errors

b8af648

rename to ozone, db migrations, add to dev-env & pds cfg

df4d40b

getRecord & getRepo mostly working

b121af1

fix open handle

731473c

get record tests all working

ecb163e

moderation events working

6fb8d5b

statuses working

efa90c0

tidy test suite

bb86a0f

search repos

c7d6f7a

server & db tests

965669b

moderation tests

5c4b172

wip daemon + push events

5ecbe43

pds fanout working

4834ea9

fix db test

f49ba1e

fanning takedowns out to appview

c133c4b

rm try/catch

23ea84d

bsky moderation test

c8312f5

introduce mod subject wrappers

8016357

more tidy

c1df5af

refactor event reversal

c880002

tidy some db stuff

8ff0b5b

tidy

995f75d

dholms added 8 commits January 3, 2024 17:48

attempt another fix for timing bug

9ed220e

await req

e764792

service files

b11086e

remove labelerDid cfg

de48f83

update snaps for labeler did + some cfg changes

2660c6a

fix more snaps

867310e

pnpm i

59cde5a

build ozone images

9010abd

devinivy reviewed Jan 4, 2024

View reviewed changes

devinivy mentioned this pull request Jan 4, 2024

Alter entryway for separate mod backend #2019

Merged

dholms added 15 commits January 4, 2024 17:58

build

58ab837

make label provider optional

83a0c23

fix build issues

6ef1a9b

fix build

8bd7a0c

fix build

82fe321

build pds

2e3afd9

build on ghcr

de6518d

fix syntax in entry

5704ea5

another fix

b2a1c9d

use correct import

bbffac2

export logger

f827502

remove event reverser

728a37c

adjust push event fanout

d5cea8e

push out multiple

c7a7470

remove builds

7d63499

dholms merged commit de2dbc2 into main Jan 5, 2024
10 checks passed

dholms deleted the ozone-service branch January 5, 2024 23:06

sanko added a commit to sanko/At.pm that referenced this pull request Jan 8, 2024

Keeping up to date with bluesky-social/atproto#1970

a90b443

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Split out moderation backend #1970

Split out moderation backend #1970

dholms commented Dec 15, 2023 •

edited

Loading

devinivy Jan 4, 2024

Split out moderation backend #1970

Split out moderation backend #1970

Conversation

dholms commented Dec 15, 2023 • edited Loading

devinivy Jan 4, 2024

Choose a reason for hiding this comment

dholms commented Dec 15, 2023 •

edited

Loading