insights: add http handler for exporting data for one code insight

[leonore]

closes #45746

This adds a new external api endpoint (httpapi) ./api/insights/export/{id} for exporting code insight data for an insight view. {id} corresponds to the id we use at the moment on the frontend, e.g. https://sourcegraph.sourcegraph.com/insights/aW5zaWdodF92aWV3OiIyQmRnV2VFYktwWGF2UjlGcXpuVDA1cld0c2si

The export store function adds empty rows for times we have no data for, and does some joining on tables to get all the metadata for a user

Some nitty things to consider in your review

• Naming of things in the archive (headers, filename)
• Format of the route ./api/insights/export/{id}

Test plan

Unit tests for basic store behaviour and repo permissions

Tested with

• Search insight

• Capture group insight

• Compute type insight

• Ensured insights with archived values had the archived values.

• Ensured default filters were taken into account

• Tested authorization

• Ran the curl against oss: returns "code insights data export handler is only available in enterprise"

• Ran the curl against enterprise: returns "code insights data export handler is only available in enterprise"

  • not the best error message there but comes from makeNotFoundHandler

Curl this was tested with

curl \
  -H 'Authorization: token {token}' https://sourcegraph.test:3443/.api/insights/export/aW5zaWdodF92aWV3OiIySEx0R0plUVJxS05kS3IyRG1SdmU3ZjNjbXoi -O -J -v

-O makes it output it into the file it defines and -J uses the header filename rather than the {id} name.

[sourcegraph-bot]

Codenotify: Notifying subscribers in CODENOTIFY files for diff 4338f05...5a6c9c7.

Notify

File(s)

@sourcegraph/code-insights-backend

enterprise/internal/insights/httpapi/export.go enterprise/internal/insights/insights.go enterprise/internal/insights/resolvers/insight_series_resolver.go enterprise/internal/insights/resolvers/insight_view_resolvers_test.go enterprise/internal/insights/store/insight_store.go enterprise/internal/insights/store/mocks_temp.go enterprise/internal/insights/store/mocks_test.go enterprise/internal/insights/store/permissions.go enterprise/internal/insights/store/search_contexts.go enterprise/internal/insights/store/store.go enterprise/internal/insights/store/store_test.go

[coury-clark]

@leonore was this tested against an unauthed user, and a user that doesn't have access to the insight?

[leonore]

@leonore was this tested against an unauthed user,

yes, it returns "Private mode requires authentication"

and a user that doesn't have access to the insight?

good catch, we don't assert on dashboard permissions. will fix that

[coury-clark]

A few things that need to be addressed, but overall good work!

[leonore]

@coury-clark I've pushed some fixes for your requests. FYI I am planning on cleaning up all the repo regex loading stuff and commonising some things there as I just pulled it out the resolvers (plan is to move it out to store/search_contexts.go) but for the sake of time/timezone I wanted to get your review so that I could make more progress monday. hope that's ok!

[coury-clark]

Ideally this returns 401, but there may be a middleware that does that already. I'd suggest giving it a quick test. I'm also wondering if we should move this check up to the API handler explicitly, just for clarity and to ensure we don't ever accidentally refactor this into the wrong place.

[leonore]

yeah so if you try and hit the API without an authorization header it will already return 401 (with Private mode requires authentication). if you try it with a wrong token it does the same. I didn't pinpoint where exactly this was happening in the middleware. I've moved this a way up to be more explicit though.