Python3

Status

This code is as ready as I can get it. Here's what still needs to be done:

• Figure out issue with lvalert-overseer.
• Check for possible issues on uploading hardware injections (see here. I haven't been able to test it, but it uses StringIO which is definitely a cause for concern in terms of Python 2/3 compatibility.
• Tag a new version of lvalert-overseer, push it to PyPI, and update the requirements.txt file in this repository to use the new tag.

Suggested strategy for rolling it out

• Test the deployment with the new puppet configuration on gracedb-dev2 or dev1 (more below)
• Deploy on playground and see what happens
• Test this image on gracedb-test
• Tag it
• Deploy on production

To test on UWM VMs

• Delete /home/gracedb/djangoenv
• As root, run puppet and immediately turn it off so it doesn't revert to the default configuration:

  puppet agent -t --environment=gracedb_python3; systemctl stop puppet

• Make sure the repository in /home/gracedb/bin is up-to-date.
• Do some testing
• If everything looks good, proceed

Final deployment on UWM VMs

• Stop/disable puppet on gracedb-playground

  systemctl stop puppet
  systemctl disable puppet

• Someone at UWM should rebase and merge this MR.
• Setup the dev machines to use this branch and the new configuration.
  • As the gracedb user:

    cd /home/gracedb/gracedb_project
    rm -rf ../djangoenv
    git checkout --track origin/python3

  • As root:

    puppet agent -t
    systemctl restart gunicorn
    systemctl restart lvalert_overseer

• If all seems good, do the same for playground
• Iterate on any changes needed to the server code
• Once it seems stable on playground, test it on gracedb-test
• If that seems good, merge the code into master and tag it

NOTE: gracedb-dev2 is currently set up for Python 3 both in terms of its Puppet configuration and its code base. Puppet is currently turned off so that it doesn't revert to the "default" Puppet configuration with Python 2. Once you're ready to "officially" deploy with Python 3, and the Puppet configuration is merged, just do puppet agent -t as root on this server to restart Puppet.

Final deployment in AWS

Should be easy - it's all in a Docker image!

Potential issues

The parts of the code that I expect the most issues to occur are:

• VOEvent building (gracedb/annotations/voevent_utils.py) since it was completely rewritten
• VOEvent ingestion for external events (gracedb/events/translator.py) since it was completely rewritten
• General string parsing and encoding/decoding

gracedb/api/tests/test_authentication.py

 from base64 import b64encode
-import mock
+try:
+    from unittest import mock
+except ImportError:  # python < 3
+    import mock
 
 from django.conf import settings
 from django.urls import reverse
@@ -31,9 +34,12 @@ class TestGraceDbBasicAuthentication(GraceDbApiTestBase):
         """User can authenticate to API with correct password"""
         # Set up and make request
         url = api_reverse('api:root')
-        user_and_pass = b64encode(b"{username}:{password}".format(
-            username=self.lvem_user.username, password=self.password)) \
-            .decode("ascii")
+        user_and_pass = b64encode(
+            "{username}:{password}".format(
+                username=self.lvem_user.username,
+                password=self.password
+            ).encode()
+        ).decode("ascii")
         headers = {
             'HTTP_AUTHORIZATION': 'Basic {0}'.format(user_and_pass),
         }
@@ -53,16 +59,20 @@ class TestGraceDbBasicAuthentication(GraceDbApiTestBase):
         """User can't authenticate with wrong password"""
         # Set up and make request
         url = api_reverse('api:root')
-        user_and_pass = b64encode(b"{username}:{password}".format(
-            username=self.lvem_user.username, password='b4d')).decode("ascii")
+        user_and_pass = b64encode(
+            "{username}:{password}".format(
+                username=self.lvem_user.username,
+                password='b4d'
+            ).encode()
+        ).decode("ascii")
         headers = {
             'HTTP_AUTHORIZATION': 'Basic {0}'.format(user_and_pass),
         }
         response = self.client.get(url, data=None, **headers)
 
         # Check response
-        self.assertEqual(response.status_code, 403)
-        self.assertIn('Invalid username/password', response.content)
+        self.assertContains(response, 'Invalid username/password',
+            status_code=403)
 
     def test_user_authenticate_to_api_with_expired_password(self):
         """User can't authenticate with expired password"""
@@ -73,17 +83,20 @@ class TestGraceDbBasicAuthentication(GraceDbApiTestBase):
 
         # Set up and make request
         url = api_reverse('api:root')
-        user_and_pass = b64encode(b"{username}:{password}".format(
-            username=self.lvem_user.username, password=self.password)) \
-            .decode("ascii")
+        user_and_pass = b64encode(
+            "{username}:{password}".format(
+                username=self.lvem_user.username,
+                password=self.password
+            ).encode()
+        ).decode("ascii")
         headers = {
             'HTTP_AUTHORIZATION': 'Basic {0}'.format(user_and_pass),
         }
         response = self.client.get(url, data=None, **headers)
 
         # Check response
-        self.assertEqual(response.status_code, 403)
-        self.assertIn('Your password has expired', response.content)
+        self.assertContains(response, 'Your password has expired',
+            status_code=403)
 
 
 class TestGraceDbX509Authentication(GraceDbApiTestBase):
@@ -139,8 +152,8 @@ class TestGraceDbX509Authentication(GraceDbApiTestBase):
         response = self.client.get(url, data=None, **headers)
 
         # Check response
-        self.assertEqual(response.status_code, 401)
-        self.assertIn("Invalid certificate subject", response.content)
+        self.assertContains(response, 'Invalid certificate subject',
+            status_code=401)
 
     def test_inactive_user_authenticate(self):
         """Inactive user can't authenticate"""
@@ -156,8 +169,8 @@ class TestGraceDbX509Authentication(GraceDbApiTestBase):
         response = self.client.get(url, data=None, **headers)
 
         # Check response
-        self.assertEqual(response.status_code, 401)
-        self.assertIn("User inactive or deleted", response.content)
+        self.assertContains(response, 'User inactive or deleted',
+            status_code=401)
 
     def test_authenticate_cert_with_proxy(self):
         """User can authenticate to API with proxied X509 certificate"""