Merge pull request #3214 from alphagov/check-broadcast-suspended

Enforce service suspension for broadcasts
2025-12-21 07:51:13 -05:00 · 2021-04-28 15:01:11 +01:00
parent d6b7b07767 0507e8d9ad
commit 23f4ae32df
5 changed files with 113 additions and 50 deletions
--- a/app/celery/broadcast_message_tasks.py
+++ b/app/celery/broadcast_message_tasks.py
@@ -5,10 +5,7 @@ from flask import current_app
 from sqlalchemy.schema import Sequence

 from app import cbc_proxy_client, db, notify_celery, zendesk_client
-from app.clients.cbc_proxy import (
-    CBCProxyFatalException,
-    CBCProxyRetryableException,
-)
+from app.clients.cbc_proxy import CBCProxyRetryableException
 from app.config import QueueNames
 from app.dao.broadcast_message_dao import (
    create_broadcast_provider_message,
@@ -23,6 +20,10 @@ from app.models import (
 from app.utils import format_sequential_number


+class BroadcastIntegrityError(Exception):
+    pass
+
+
 def get_retry_delay(retry_count):
    """
    Given a count of retries so far, return a delay for the next one.
@@ -36,7 +37,27 @@ def get_retry_delay(retry_count):
    return min(delay, 240)


-def check_provider_message_should_send(broadcast_event, provider):
+def check_event_is_authorised_to_be_sent(broadcast_event, provider):
+    if not broadcast_event.service.active:
+        raise BroadcastIntegrityError(
+            f'Cannot send broadcast_event {broadcast_event.id} ' +
+            f'to provider {provider}: the service is suspended'
+        )
+
+    if broadcast_event.service.restricted:
+        raise BroadcastIntegrityError(
+            f'Cannot send broadcast_event {broadcast_event.id} ' +
+            f'to provider {provider}: the service is not live'
+        )
+
+    if broadcast_event.broadcast_message.stubbed:
+        raise BroadcastIntegrityError(
+            f'Cannot send broadcast_event {broadcast_event.id} ' +
+            f'to provider {provider}: the broadcast message is stubbed'
+        )
+
+
+def check_event_makes_sense_in_sequence(broadcast_event, provider):
    """
    If any previous event hasn't sent yet for that provider, then we shouldn't send the current event. Instead, fail and
    raise a P1 - so that a notify team member can assess the state of the previous messages, and if necessary, can
@@ -58,16 +79,14 @@ def check_provider_message_should_send(broadcast_event, provider):
    current_provider_message = broadcast_event.get_provider_message(provider)
    # if this is the first time a task is being executed, it won't have a provider message yet
    if current_provider_message and current_provider_message.status != BroadcastProviderMessageStatus.SENDING:
-        raise CBCProxyFatalException(
+        raise BroadcastIntegrityError(
            f'Cannot send broadcast_event {broadcast_event.id} ' +
            f'to provider {provider}: ' +
            f'It is in status {current_provider_message.status}'
        )

    if broadcast_event.transmitted_finishes_at < datetime.utcnow():
-        # TODO: This should be a different kind of exception to distinguish "We should know something went wrong, but
-        # no immediate action" from "We need to fix this immediately"
-        raise CBCProxyFatalException(
+        raise BroadcastIntegrityError(
            f'Cannot send broadcast_event {broadcast_event.id} ' +
            f'to provider {provider}: ' +
            f'The expiry time of {broadcast_event.transmitted_finishes_at} has already passed'
@@ -83,7 +102,7 @@ def check_provider_message_should_send(broadcast_event, provider):

            # the previous message hasn't even got round to running `send_broadcast_provider_message` yet.
            if not prev_provider_message:
-                raise CBCProxyFatalException(
+                raise BroadcastIntegrityError(
                    f'Cannot send {broadcast_event.id}. Previous event {prev_event.id} ' +
                    f'(type {prev_event.message_type}) has no provider_message for provider {provider} yet.\n' +
                    'You must ensure that the other event sends succesfully, then manually kick off this event ' +
@@ -93,7 +112,7 @@ def check_provider_message_should_send(broadcast_event, provider):
            # if there's a previous message that has started but not finished sending (whether it fatally errored or is
            # currently retrying)
            if prev_provider_message.status != BroadcastProviderMessageStatus.ACK:
-                raise CBCProxyFatalException(
+                raise BroadcastIntegrityError(
                    f'Cannot send {broadcast_event.id}. Previous event {prev_event.id} ' +
                    f'(type {prev_event.message_type}) has not finished sending to provider {provider} yet.\n' +
                    f'It is currently in status "{prev_provider_message.status}".\n' +
@@ -151,7 +170,8 @@ def send_broadcast_provider_message(self, broadcast_event_id, provider):

    broadcast_event = dao_get_broadcast_event_by_id(broadcast_event_id)

-    check_provider_message_should_send(broadcast_event, provider)
+    check_event_is_authorised_to_be_sent(broadcast_event, provider)
+    check_event_makes_sense_in_sequence(broadcast_event, provider)

    # the broadcast_provider_message may already exist if we retried previously
    broadcast_provider_message = broadcast_event.get_provider_message(provider)