refactor(server/v2): use net/http for matching logic in auto-gateway

[technicallyty]

Description

Closes: N/A

found a bug with the regex matching logic related to URL escaped parameters, and decided to just think of a different way to handle this. switched everything to use net/http's router. should be more performant and safe.

• makes gateway use net/http for matching logic instead of regexp
• uses gateway's PopulateFieldFromPath to populate message fields instead of mapstructure decoding from a map

---

Author Checklist

All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.

I have...

• included the correct type prefix in the PR title, you can find examples of the prefixes below:
• confirmed ! in the type prefix if API or client breaking change
• targeted the correct branch (see PR Targeting)
• provided a link to the relevant issue or specification
• reviewed "Files changed" and left comments if necessary
• included the necessary unit and integration tests
• added a changelog entry to CHANGELOG.md
• updated the relevant documentation or specification, including comments for documenting Go code
• confirmed all CI checks have passed

Reviewers Checklist

All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.

Please see Pull Request Reviewer section in the contributing guide for more information on how to review a pull request.

I have...

• confirmed the correct type prefix in the PR title
• confirmed all author checklist items have been addressed
• reviewed state machine logic, API design and naming, documentation is accurate, tests and test coverage

Summary by CodeRabbit

• Documentation

  • Simplified documentation for the gRPC gateway package
  • Removed detailed explanations about request handling and URL matching

• Refactor

  • Restructured gRPC gateway request handling approach
  • Replaced existing interceptor with new registration method
  • Simplified URI matching and request processing logic

• Removed

  • Deleted interceptor.go and uri.go files
  • Removed complex URI matching and request interception mechanisms

• New Features

  • Introduced new handler for processing gRPC gateway requests
  • Added more focused methods for request routing and message population

[coderabbitai]

📝 Walkthrough

Walkthrough

The pull request introduces significant changes to the grpcgateway package, fundamentally restructuring its approach to handling HTTP requests. The implementation shifts from a complex interceptor-based system to a more streamlined method of registering gateway handlers. The new approach simplifies request routing, removes previous regex-based matching mechanisms, and introduces more direct methods for populating gRPC messages from HTTP requests. The changes focus on improving the flexibility and clarity of HTTP-to-gRPC request handling.

Changes

File	Change Summary
server/v2/api/grpcgateway/doc.go	Removed detailed comments about package functionality and request handling
server/v2/api/grpcgateway/handler.go	New implementation of gRPC gateway handler with enhanced request processing
server/v2/api/grpcgateway/handler_test.go	Updated test cases to match new handler implementation
server/v2/api/grpcgateway/interceptor.go	Completely removed, replacing complex interceptor logic
server/v2/api/grpcgateway/server.go	Modified server initialization to use new registerGatewayToMux approach
server/v2/api/grpcgateway/uri.go	Removed URI matching system
server/v2/api/grpcgateway/uri_test.go	Removed tests for deleted URI matching functionality

Sequence Diagram

sequenceDiagram
    participant Client as HTTP Client
    participant Handler as ProtoHandler
    participant AppManager as Application Manager
    participant Gateway as gRPC Gateway

    Client->>Handler: Send HTTP Request
    Handler->>Handler: Extract Path Parameters
    Handler->>Handler: Populate gRPC Message
    Handler->>AppManager: Process Request
    alt Request Successful
        AppManager-->>Handler: Return Response
        Handler-->>Client: Send HTTP Response
    else Request Failed
        Handler->>Gateway: Fallback to Gateway
        Gateway-->>Client: Send Error Response
    end

Loading

Possibly related PRs

• feat(server/v2/grpcgateway): register grpcgateway server and module endpoints #22701: Introduces registration of grpcgateway server and module endpoints
• feat(server/v2)!: grpcgateway autoregistration #22941: Implements autoregistration feature for grpcgateway
• refactor(server/v2): auto-gateway improvements #23262: Improves auto-gateway functionality with new request handling package

Suggested Labels

backport/v0.52.x

Suggested Reviewers

• julienrbrt
• kocubinski
• testinginprod
• tac0turtle

Finishing Touches

• 📝 Generate Docstrings (Beta)

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[julienrbrt]

No backport label needed for this, all server/v2 components except cometbft server are tagged from main.

[coderabbitai]

Actionable comments posted: 3

🧹 Nitpick comments (8)

server/v2/api/grpcgateway/handler.go (3)

123-131: Validate and sanitize the x-cosmos-block-height header properly.

Trimming quotes from heightStr may not handle all invalid inputs. Consider using strings.TrimSpace and validating the header value to ensure it's correctly formatted.

Apply this diff to enhance header parsing:

 heightStr := request.Header.Get(GRPCBlockHeightHeader)
-heightStr = strings.Trim(heightStr, `\"`)
+heightStr = strings.TrimSpace(heightStr)
 if heightStr != "" && heightStr != "latest" {
     height, err = strconv.ParseUint(heightStr, 10, 64)
     if err != nil {
         runtime.HTTPError(request.Context(), p.gateway, out, writer, request, status.Errorf(codes.InvalidArgument, "invalid height in header: %s", heightStr))
         return
     }
 }

---

29-29: Export MaxBodySize or make it configurable for flexibility.

Consider exporting MaxBodySize or allowing it to be configured, so that it can be adjusted according to application requirements and limitations.

Suggestion:

-const MaxBodySize = 1 << 20 // 1 MB
+const MaxBodySize = 1 << 20 // 1 MB // Exported for configuration

Alternatively, add it to a configuration struct to allow runtime adjustment.

---

90-100: Add GoDoc comments to exported types for clarity.

The exported type protoHandler lacks a GoDoc comment. Adding a comment that starts with the type name enhances readability and aligns with Go conventions.

Apply this diff to add the comment:

 // protoHandler handles turning data in http.Request to the gogoproto.Message
+// protoHandler is an HTTP handler that processes incoming HTTP requests and converts them to gRPC messages.
 type protoHandler[T transaction.Tx] struct {

server/v2/api/grpcgateway/doc.go (1)

4-4: Remove extra newline for consistent formatting.

There's an unnecessary extra newline after the comment block. Removing it improves the consistency of the code formatting.

 // Header `x-cosmos-block-height` allows you to specify a height for the query.
 //
-//
 // Requests that do not have a dynamic handler will be routed to the canonical gRPC gateway mux.

server/v2/api/grpcgateway/server.go (1)

79-81: Update error message to reflect the new functionality.

The error message indicates a failure to create the gRPC-Gateway interceptor, but the interceptor has been replaced with registerGatewayToMux. Update the error message to accurately describe the operation for clarity.

Apply this diff to correct the error message:

 err := registerGatewayToMux[T](mux, s.GRPCGatewayRouter, appManager)
 if err != nil {
-    return nil, fmt.Errorf("failed to create grpc-gateway interceptor: %w", err)
+    return nil, fmt.Errorf("failed to register gRPC-Gateway handlers: %w", err)
 }

server/v2/api/grpcgateway/handler_test.go (3)

18-45: LGTM! Consider enhancing test case names.

The test function is well-structured and covers the essential scenarios for URI pattern conversion. The table-driven test pattern is appropriately used.

Consider making the test case names more specific to better document the behavior:

-			name: "replaces catch all",
+			name: "converts gRPC-gateway catch-all syntax to net/http syntax",
-			name: "returns original",
+			name: "returns original URI when no catch-all present",
-			name: "doesn't tamper with normal wildcard",
+			name: "preserves normal wildcard patterns unchanged",

---

47-79: LGTM! Consider adding edge cases.

The test cases comprehensively cover the main scenarios for wildcard key extraction.

Consider adding these edge cases to strengthen the test coverage:

{
    name: "duplicate wildcard names",
    uri:  "/foo/{bar}/baz/{bar}",
    want: []string{"bar", "bar"},
},
{
    name: "wildcard with special characters",
    uri:  "/foo/{bar-baz_123}",
    want: []string{"bar-baz_123"},
},

---

Line range hint 81-203: Consider adding more test cases for better coverage.

The current test cases are good, but adding these scenarios would improve coverage:

{
    name: "malformed JSON body",
    request: func() *http.Request {
        return httptest.NewRequest(
            http.MethodPost,
            "/dummy",
            bytes.NewReader([]byte(`{"invalid json`)),
        )
    },
    wantErr: true,
    errCode: codes.InvalidArgument,
},
{
    name: "content-type handling",
    request: func() *http.Request {
        req := httptest.NewRequest(
            http.MethodPost,
            "/dummy",
            bytes.NewReader([]byte(`{"foo": "bar"}`)),
        )
        req.Header.Set("Content-Type", "application/json")
        return req
    },
    expected: &DummyProto{Foo: "bar"},
},

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 69defb4 and b1cea59.

📒 Files selected for processing (7)

• server/v2/api/grpcgateway/doc.go (1 hunks)
• server/v2/api/grpcgateway/handler.go (1 hunks)
• server/v2/api/grpcgateway/handler_test.go (3 hunks)
• server/v2/api/grpcgateway/interceptor.go (0 hunks)
• server/v2/api/grpcgateway/server.go (1 hunks)
• server/v2/api/grpcgateway/uri.go (0 hunks)
• server/v2/api/grpcgateway/uri_test.go (0 hunks)

💤 Files with no reviewable changes (3)

• server/v2/api/grpcgateway/uri.go
• server/v2/api/grpcgateway/uri_test.go
• server/v2/api/grpcgateway/interceptor.go

🧰 Additional context used

📓 Path-based instructions (4)

server/v2/api/grpcgateway/doc.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

server/v2/api/grpcgateway/handler_test.go (2)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

---

Pattern **/*_test.go: "Assess the unit test code assessing sufficient code coverage for the changes associated in the pull request"

server/v2/api/grpcgateway/server.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

server/v2/api/grpcgateway/handler.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

⏰ Context from checks skipped due to timeout of 90000ms (13)

• GitHub Check: tests (03)
• GitHub Check: tests (02)
• GitHub Check: tests (01)
• GitHub Check: tests (00)
• GitHub Check: test-simapp-v2
• GitHub Check: test-sim-nondeterminism
• GitHub Check: test-integration
• GitHub Check: test-system-v2
• GitHub Check: build (arm64)
• GitHub Check: build (amd64)
• GitHub Check: Analyze
• GitHub Check: golangci-lint
• GitHub Check: Summary

🔇 Additional comments (2)

server/v2/api/grpcgateway/doc.go (1)

1-2: Complete the package documentation sentence.

The package comment appears incomplete, ending abruptly after "match." Please complete the sentence to clearly convey the purpose of the package.

[typographical_issue]

Suggestion:

-// Package grpcgateway provides a custom http mux that utilizes the global gogoproto registry to match
-// to create dynamic query handlers.
+// Package grpcgateway provides a custom HTTP mux that utilizes the global gogoproto registry
+// to match requests and create dynamic query handlers.

server/v2/api/grpcgateway/handler_test.go (1)

Line range hint 204-256: LGTM! Test types are well-structured.

The helper types properly implement the proto.Message interface and demonstrate good practices for protobuf struct tags.

[coderabbitai]

🛠️ Refactor suggestion

Avoid using recover to handle panics during handler registration.

Using recover to handle panics caused by duplicate annotations can mask underlying issues and make debugging difficult. Instead, consider checking for duplicate annotations before registering handlers to prevent panics proactively.

Apply this diff to detect and skip duplicate annotations:

 func registerMethods[T transaction.Tx](mux *http.ServeMux, am appmanager.AppManager[T], gateway *runtime.ServeMux, annotationToMetadata map[string]queryMetadata) {
     // existing code
     for _, uri := range uris {
         queryMD := annotationToMetadata[uri]
+        // Check if the URI is already registered
+        if _, patternExists := mux.Handler(&http.Request{URL: &url.URL{Path: uri}}); patternExists {
+            // Log or handle the duplicate annotation as needed
+            return
+        }
         mux.Handle(uri, &protoHandler[T]{
             msg:              queryMD.msg,
             gateway:          gateway,
             appManager:       am,
             wildcardKeyNames: queryMD.wildcardKeyNames,
         })
     }
 }

Committable suggestion skipped: line range outside the PR's diff.

[coderabbitai]

⚠️ Potential issue

Limit the request body size to prevent potential DoS attacks.

Relying solely on req.ContentLength may not prevent reading excessively large bodies if the Content-Length header is incorrect or missing. Use an io.LimitedReader to enforce MaxBodySize when reading the request body, ensuring that the server doesn't process more data than intended.

Apply this diff to limit the body read size:

 if req.ContentLength > 0 {
     if req.ContentLength > MaxBodySize {
         return nil, status.Errorf(codes.InvalidArgument, "request body too large: %d bytes, max=%d", req.ContentLength, MaxBodySize)
     }

-    bodyBytes, err := io.ReadAll(req.Body)
+    limitedReader := io.LimitReader(req.Body, MaxBodySize)
+    bodyBytes, err := io.ReadAll(limitedReader)
     if err != nil {
         return nil, status.Errorf(codes.InvalidArgument, "%v", err)
     }
     req.Body = io.NopCloser(bytes.NewReader(bodyBytes))
     // existing code
 }

Committable suggestion skipped: line range outside the PR's diff.

[coderabbitai]

🛠️ Refactor suggestion

Fix HTTP method in body test case.

The test case uses GET method with a request body, which is not a common practice and might be rejected by some HTTP clients. Consider using POST, PUT, or PATCH instead.

-					http.MethodGet,
+					http.MethodPost,

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	name: "simple query params and body",
	request: func() *http.Request {
	body := `{"denoms": ["hello", "there"]}`
	req := httptest.NewRequest(
	http.MethodGet,
	"/foo", // this doesn't really matter
	bytes.NewReader([]byte(body)),
	)
	return req
	},
	wildcardValues: map[string]string{
	"foo": "wildFooValue", // from path wildcard e.g. /dummy/{foo}
	},
	expected: &DummyProto{
	Foo: "wildFooValue",
	Denoms: []string{"hello", "there"},
	},
	wantErr: false,
	},
	name: "simple query params and body",
	request: func() *http.Request {
	body := `{"denoms": ["hello", "there"]}`
	req := httptest.NewRequest(
	http.MethodPost,
	"/foo", // this doesn't really matter
	bytes.NewReader([]byte(body)),
	)
	return req
	},
	wildcardValues: map[string]string{
	"foo": "wildFooValue", // from path wildcard e.g. /dummy/{foo}
	},
	expected: &DummyProto{
	Foo: "wildFooValue",
	Denoms: []string{"hello", "there"},
	},
	wantErr: false,
	},

[coderabbitai]

Actionable comments posted: 2

🔭 Outside diff range comments (1)

server/v2/api/grpcgateway/server.go (1)

Line range hint 74-86: Avoid Silently Recovering from Panics During Handler Registration

In the registerMethods function (lines 76-79), you are deferring a function that recovers from panics without handling them. Silently suppressing panics can obscure underlying issues and make debugging difficult. It's better to log the panic or handle it appropriately.

Modify the deferred function to log the panic:

 func(u string, qMD queryMetadata) {
     defer func() {
-        _ = recover()
+        if r := recover(); r != nil {
+            s.logger.Error("recovered from panic during handler registration", "uri", u, "error", r)
+        }
     }()
     mux.Handle(u, &protoHandler[T]{
         msg:              qMD.msg,
         gateway:          gateway,
         appManager:       am,
         wildcardKeyNames: qMD.wildcardKeyNames,
     })
 }(uri, queryMD)

Alternatively, investigate the root cause of the panics (e.g., duplicate annotations) and address them to prevent panics from occurring.

🧹 Nitpick comments (4)

server/v2/api/grpcgateway/doc.go (1)

1-7: Documentation is clear but could be more comprehensive.

The package documentation clearly explains the core functionality and important features. However, consider adding more details about:

• The net/http based matching logic and its benefits
• Usage of PopulateFieldFromPath for message field population
• Example usage patterns for common scenarios

Consider expanding the documentation with this additional content:

 // Package grpcgateway provides a custom http mux that utilizes the global gogoproto registry to match
 // to create dynamic query handlers.
 //
 // Header `x-cosmos-block-height` allows you to specify a height for the query.
 //
 // Requests that do not have a dynamic handler will be routed to the canonical gRPC gateway mux.
+//
+// The package uses net/http router for efficient and safe URL pattern matching, improving upon the
+// previous regex-based approach. Message fields are populated using PopulateFieldFromPath, ensuring
+// correct handling of URL escaped parameters.
+//
+// Example usage:
+//   mux := grpcgateway.NewServeMux(client)
+//   http.ListenAndServe(":8080", mux)
 package grpcgateway

server/v2/api/grpcgateway/handler_test.go (1)

Line range hint 81-203: Solid test coverage for message population!

The test cases effectively cover query parameters, body content, error handling, and wildcard values.

Consider adding these test cases to improve coverage:

1. POST request with different content types
2. Additional error scenarios:
   • Invalid JSON body
   • Conflicting query parameters and body fields
   • Missing required fields

server/v2/api/grpcgateway/handler.go (2)

122-131: Refactor Block Height Parsing into a Utility Function

The logic for parsing the GRPCBlockHeightHeader (lines 123-131) could be reused elsewhere. Extracting this logic into a utility function enhances readability and maintainability.

Example of extracting the parsing logic:

func parseBlockHeight(headerValue string) (uint64, error) {
    heightStr := strings.Trim(headerValue, `\"`)
    if heightStr == "" || heightStr == "latest" {
        return 0, nil
    }
    height, err := strconv.ParseUint(heightStr, 10, 64)
    if err != nil {
        return 0, fmt.Errorf("invalid height in header: %s", headerValue)
    }
    return height, nil
}

And update the code:

 var height uint64
-heightStr := request.Header.Get(GRPCBlockHeightHeader)
-heightStr = strings.Trim(heightStr, `\"`)
-if heightStr != "" && heightStr != "latest" {
-    height, err = strconv.ParseUint(heightStr, 10, 64)
-    if err != nil {
-        runtime.HTTPError(request.Context(), p.gateway, out, writer, request, status.Errorf(codes.InvalidArgument, "invalid height in header: %s", heightStr))
-        return
-    }
-}
+height, err := parseBlockHeight(request.Header.Get(GRPCBlockHeightHeader))
+if err != nil {
+    runtime.HTTPError(request.Context(), p.gateway, out, writer, request, status.Errorf(codes.InvalidArgument, "%v", err))
+    return
+}

---

170-183: Limit Request Body Size Using http.MaxBytesReader

Checking req.ContentLength to enforce MaxBodySize (lines 171-172) may not be reliable, as clients might not set Content-Length correctly. Use http.MaxBytesReader to enforce maximum body size and prevent resource exhaustion.

Modify the code to wrap req.Body:

 if req.ContentLength > 0 {
-    if req.ContentLength > MaxBodySize {
-        return nil, status.Errorf(codes.InvalidArgument, "request body too large: %d bytes, max=%d", req.ContentLength, MaxBodySize)
-    }
-
-    // this block of code ensures that the body can be re-read.
-    bodyBytes, err := io.ReadAll(req.Body)
+    req.Body = http.MaxBytesReader(nil, req.Body, MaxBodySize)
+    bodyBytes, err := io.ReadAll(req.Body)
     if err != nil {
         return nil, status.Errorf(codes.InvalidArgument, "%v", err)
     }
+    req.Body = io.NopCloser(bytes.NewReader(bodyBytes))

This ensures that the body cannot exceed MaxBodySize, regardless of Content-Length.

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 69defb4 and b1cea59.

📒 Files selected for processing (7)

• server/v2/api/grpcgateway/doc.go (1 hunks)
• server/v2/api/grpcgateway/handler.go (1 hunks)
• server/v2/api/grpcgateway/handler_test.go (3 hunks)
• server/v2/api/grpcgateway/interceptor.go (0 hunks)
• server/v2/api/grpcgateway/server.go (1 hunks)
• server/v2/api/grpcgateway/uri.go (0 hunks)
• server/v2/api/grpcgateway/uri_test.go (0 hunks)

💤 Files with no reviewable changes (3)

• server/v2/api/grpcgateway/uri.go
• server/v2/api/grpcgateway/uri_test.go
• server/v2/api/grpcgateway/interceptor.go

🧰 Additional context used

📓 Path-based instructions (4)

server/v2/api/grpcgateway/doc.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

server/v2/api/grpcgateway/server.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

server/v2/api/grpcgateway/handler_test.go (2)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

---

Pattern **/*_test.go: "Assess the unit test code assessing sufficient code coverage for the changes associated in the pull request"

server/v2/api/grpcgateway/handler.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

⏰ Context from checks skipped due to timeout of 90000ms (4)

• GitHub Check: tests (00)
• GitHub Check: test-system-v2
• GitHub Check: Analyze
• GitHub Check: Summary

🔇 Additional comments (5)

server/v2/api/grpcgateway/handler_test.go (3)

18-45: Well-structured test cases for catch-all pattern handling!

The test cases comprehensively cover the transformation of catch-all patterns while maintaining other URI patterns unchanged.

---

47-79: Comprehensive test coverage for wildcard key extraction!

The test cases effectively cover all wildcard scenarios including single, multiple, catch-all, and no wildcards.

---

Line range hint 204-256: Clean implementation of test types!

The dummy proto types provide a good foundation for testing various message scenarios.

server/v2/api/grpcgateway/handler.go (2)

296-297: Ensure Correct Handling of Wildcard Key Names

In the extractWildcardKeyNames function (lines 296-297), trimming dots from the parameter names may not handle all edge cases, such as parameter names that legitimately end with dots. Verify that this approach correctly extracts wildcard key names without affecting valid parameter names.

Consider adding unit tests to cover scenarios with complex URI patterns and ensure that parameter names are extracted accurately.

---

184-186: Handle Empty Request Body Errors Appropriately

When decoding the request body (line 184), if the body is empty, Decode may return io.EOF. Currently, you return an error unless the error is exactly io.EOF. Consider allowing empty bodies if acceptable for the message type.

Ensure that an empty request body is valid for the expected input message. If so, adjust the error handling:

 if err = marshaler.NewDecoder(bytes.NewReader(bodyBytes)).Decode(input); err != nil {
-    if !errors.Is(err, io.EOF) {
-        return nil, status.Errorf(codes.InvalidArgument, "%v", err)
-    }
+    return nil, status.Errorf(codes.InvalidArgument, "%v", err)
 }

Alternatively, if io.EOF is acceptable, you can ignore it:

if err != nil && !errors.Is(err, io.EOF) {
    return nil, status.Errorf(codes.InvalidArgument, "%v", err)
}

✅ Verification successful

Current Implementation is Correct

The current error handling approach matches the standard pattern used throughout the gRPC-gateway codebase. The code correctly allows empty request bodies while still catching other decoding errors.

🏁 Scripts executed

The following scripts were executed for the analysis:

Error: No shell scripts found

---

Script:

#!/bin/bash
# Find the complete handler function containing this code
ast-grep --pattern 'func $_($_, $_) ($_, error) {
  $$$
  if err = marshaler.NewDecoder(bytes.NewReader(bodyBytes)).Decode(input); err != nil && !errors.Is(err, io.EOF) {
    return nil, status.Errorf(codes.InvalidArgument, "%v", err)
  }
  $$$
}'

# Look for similar error handling patterns
rg 'marshaler.*Decode.*err.*io\.EOF' -A 2 -B 2

# Find the type declaration of input
ast-grep --pattern 'func $_($_, $_ *$_) ($_, error)'

Length of output: 5311

[coderabbitai]

🛠️ Refactor suggestion

Update Error Message to Reflect Functionality Change

The error message on line 80 still references "failed to create grpc-gateway interceptor," but the code now uses registerGatewayToMux instead. Update the error message to accurately describe the failure.

Apply this diff to correct the error message:

 if err != nil {
-    return nil, fmt.Errorf("failed to create grpc-gateway interceptor: %w", err)
+    return nil, fmt.Errorf("failed to register gRPC gateway to mux: %w", err)
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	err := registerGatewayToMux[T](mux, s.GRPCGatewayRouter, appManager)
	if err != nil {
	err := registerGatewayToMux[T](mux, s.GRPCGatewayRouter, appManager)
	if err != nil {
	return nil, fmt.Errorf("failed to register gRPC gateway to mux: %w", err)
	}

[coderabbitai]

⚠️ Potential issue

Avoid Silently Recovering from Panics in Registration Loop

In the registerMethods function (lines 76-86), the deferred function recovers from panics without any handling (line 78). Silently recovering from panics hides errors and makes troubleshooting difficult. It's advisable to log the panic or handle it to ensure issues are not ignored.

Consider logging the panic for better error visibility:

 func(u string, qMD queryMetadata) {
     defer func() {
-        _ = recover()
+        if r := recover(); r != nil {
+            fmt.Printf("Recovered from panic while registering handler for URI %s: %v\n", u, r)
+        }
     }()
     mux.Handle(u, &protoHandler[T]{
         msg:              qMD.msg,
         gateway:          gateway,
         appManager:       am,
         wildcardKeyNames: qMD.wildcardKeyNames,
     })
 }(uri, queryMD)

Or, prevent the panic by checking for duplicates before registration.

Committable suggestion skipped: line range outside the PR's diff.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (6)

server/v2/api/grpcgateway/doc.go (1)

1-6: Enhance package documentation for clarity

The current package documentation provides minimal information about the grpcgateway package's functionality. To improve understandability for other developers, consider expanding the documentation to include:

• An overview of how the package creates dynamic query handlers.
• Details on how it utilizes the global gogoproto registry.
• Explanation of request routing and handling logic.

This will help maintain clarity, especially after significant changes to the package's implementation.

server/v2/api/grpcgateway/server.go (1)

79-82: Update error message to reflect new function

The error message references 'failed to create grpc-gateway interceptor', but the code now uses registerGatewayToMux. Updating the error message will provide clarity and accurate context in case of errors.

Apply this diff to correct the error message:

	err := registerGatewayToMux[T](mux, s.GRPCGatewayRouter, appManager)
	if err != nil {
-		return nil, fmt.Errorf("failed to create grpc-gateway interceptor: %w", err)
+		return nil, fmt.Errorf("failed to register gateway to mux: %w", err)
	}

server/v2/api/grpcgateway/handler_test.go (4)

18-45: Add test cases for edge scenarios.

While the current test cases cover basic scenarios, consider adding cases for:

• Multiple catch-all patterns in the same URI
• Empty URI
• URI with special characters

 tests := []struct {
 	name string
 	uri  string
 	want string
 }{
+	{
+		name: "multiple catch-alls",
+		uri:  "/foo/{bar=**}/baz/{qux=**}",
+		want: "/foo/{bar...}/baz/{qux...}",
+	},
+	{
+		name: "empty uri",
+		uri:  "",
+		want: "",
+	},
+	{
+		name: "special characters",
+		uri:  "/foo/@{bar=**}/%20",
+		want: "/foo/@{bar...}/%20",
+	},

---

47-79: Add test case for invalid wildcard pattern.

Consider adding a test case for malformed wildcard patterns to ensure robust error handling:

 tests := []struct {
 	name string
 	uri  string
 	want []string
 }{
+	{
+		name: "malformed wildcard",
+		uri:  "/foo/{bar/baz}",
+		want: nil,
+	},

---

128-129: Reconsider the comment about URL not mattering.

The comment "this doesn't really matter" might be misleading. The URL could affect request parsing in some cases. Consider either:

1. Using a more realistic URL that matches the expected pattern
2. Adding a comment explaining why the URL truly doesn't matter in this context

---

180-180: Consider expanding test coverage with a more complete handler setup.

The current minimal setup might miss edge cases. Consider adding test cases that:

1. Test concurrent request handling
2. Verify behavior with different handler configurations
3. Test edge cases that might depend on handler state

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 69defb4 and b1cea59.

📒 Files selected for processing (7)

• server/v2/api/grpcgateway/doc.go (1 hunks)
• server/v2/api/grpcgateway/handler.go (1 hunks)
• server/v2/api/grpcgateway/handler_test.go (3 hunks)
• server/v2/api/grpcgateway/interceptor.go (0 hunks)
• server/v2/api/grpcgateway/server.go (1 hunks)
• server/v2/api/grpcgateway/uri.go (0 hunks)
• server/v2/api/grpcgateway/uri_test.go (0 hunks)

💤 Files with no reviewable changes (3)

• server/v2/api/grpcgateway/uri_test.go
• server/v2/api/grpcgateway/uri.go
• server/v2/api/grpcgateway/interceptor.go

🧰 Additional context used

📓 Path-based instructions (4)

server/v2/api/grpcgateway/doc.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

server/v2/api/grpcgateway/server.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

server/v2/api/grpcgateway/handler_test.go (2)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

---

Pattern **/*_test.go: "Assess the unit test code assessing sufficient code coverage for the changes associated in the pull request"

server/v2/api/grpcgateway/handler.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

⏰ Context from checks skipped due to timeout of 90000ms (5)

• GitHub Check: main
• GitHub Check: tests (00)
• GitHub Check: test-system-v2
• GitHub Check: Analyze
• GitHub Check: Summary

🔇 Additional comments (2)

server/v2/api/grpcgateway/handler.go (1)

68-70: Verify compatibility with Go version for 'maps' and 'slices' packages

The code utilizes maps.Keys and slices.Sorted, which are part of the standard library starting from Go 1.21. Please verify that the project is set to build with Go 1.21 or higher to ensure compatibility and avoid build errors.

server/v2/api/grpcgateway/handler_test.go (1)

186-191: Add test cases for concurrent message population.

The populateMessage function might be called concurrently in production. Consider adding test cases that verify thread safety:

[coderabbitai]

⚠️ Potential issue

Avoid swallowing panics without logging

The deferred recover in the anonymous function silently swallows any panic without logging or handling it. This can obscure critical issues and make debugging difficult. It's important to log the panic to aid in diagnosis and ensure that unexpected errors are not missed.

You can modify the defer function to log the panic:

func(u string, qMD queryMetadata) {
    defer func() {
-       _ = recover()
+       if r := recover(); r != nil {
+           s.logger.Error("Recovered from panic in handler registration", "error", r)
+       }
    }()
    mux.Handle(u, &protoHandler[T]{
        msg:              qMD.msg,
        gateway:          gateway,
        appManager:       am,
        wildcardKeyNames: qMD.wildcardKeyNames,
    })
}(uri, queryMD)

Ensure that you have access to the logger s.logger in this context or pass a logger to the function.

Committable suggestion skipped: line range outside the PR's diff.