node: provision: only persist sealed seed AFTER flaky gdrive

lexe-app · Aug 13, 2024 · 3210660 · 3210660
1 parent 651f3b6
commit 3210660
Showing 1 changed file with 20 additions and 10 deletions.
diff --git a/node/src/provision.rs b/node/src/provision.rs
@@ -192,7 +192,10 @@ fn lexe_router(state: LexeRouterState) -> Router<()> {
 /// API handlers.
 mod handlers {
     use axum::extract::State;
-    use common::api::server::{extract::LxQuery, LxJson};
+    use common::api::{
+        server::{extract::LxQuery, LxJson},
+        UserPk,
+    };
 
     use super::*;
 
@@ -230,8 +233,12 @@ mod handlers {
         // TODO(phlip9): [perf] could get the user to pass us their auth token
         // in the provision request instead of reauthing here.
 
-        // authenticate as the user to the backend
+        // Authenticate as the user to the backend.
+        //
+        // We do this before gDrive provisioning to ensure the user is a real &
+        // valid Lexe user before taxing our gDrive API quotas.
         let user_key_pair = req.root_seed.derive_user_key_pair();
+        let user_pk = UserPk::new(user_key_pair.public_key().into_inner());
         let maybe_token = None;
         let authenticator =
             BearerAuthenticator::new(user_key_pair, maybe_token);
@@ -243,14 +250,6 @@ mod handlers {
                 msg: format!("{err:#}"),
             })?;
 
-        // store the sealed seed and new node metadata in the backend
-        ctx.backend_client
-            .create_sealed_seed(&sealed_seed, token)
-            .await
-            .context("Could not persist sealed seed")
-            .map_err(NodeApiError::provision)?;
-        let user_pk = sealed_seed.id.user_pk;
-
         // If we're in staging/prod, we need to handle gDrive. We'll save the
         // gDrive credentials (so we can get access after the token expires)
         // and potentially init the GVFS setup (make directories, etc...).
@@ -288,6 +287,17 @@ mod handlers {
             }
         }
 
+        // Finally, store the sealed seed and new node metadata in the backend.
+        //
+        // We do this last so that a new user signup where gdrive fails to
+        // provision (which seems to happen more often than I'd like) doesn't
+        // fill up our capacity with broken nodes that can't run.
+        ctx.backend_client
+            .create_sealed_seed(&sealed_seed, token)
+            .await
+            .context("Could not persist sealed seed")
+            .map_err(NodeApiError::provision)?;
+
         Ok(LxJson(Empty {}))
     }