LG-16075: Duplicate submission error handling at sign up completion

[jmdembe]

🎫 Ticket

LG-16075

🛠 Summary of changes

This PR seeks to stop the ActiveRecord::RecordNotUnique from happening when a user submits the "Agree and Continue" button on the sign_up/completed screen.

[mitchellhenke]

Could the checks be moved closer to where the database call is raising an exception, I think it's somewhere here based on the ticket description.

This is potentially also a case for create_or_find_by, we addressed a similar issue with it in #6524.

[jmdembe]

Could the checks be moved closer to where the database call is raising an exception, I think it's somewhere here based on the ticket description.

This is potentially also a case for create_or_find_by, we addressed a similar issue with it in #6524.

I see. We are doing a create_or_find_by in one method where one does a create and the other does a find. Maybe this would be a time to refactor?

[mitchellhenke]

If I'm reading this right, this method:

1. Tries to find an AgencyIdentity based only on the ServiceProviderIdentity uuid
2. If there isn't one, and the service provider has an agency association, it tries to find an AgencyIdentity based on the agency_id and user_id

The above find_agency_identity method that replaces it doesn't have the same behavior, I'm not sure if that will cause issues.

[mitchellhenke]

I pushed up commit e2208d9 with a new test that fails with the current changes.

[mitchellhenke]

Does this set the UUID to the same UUID it would have otherwise had? If so, can it be deleted?

[jmdembe]

Yes it does. Deleted in b6e2cfe.

[mitchellhenke]

I'm not sure that this is the right method to be changing, the error was in sign up, but this method is only called in an Attempts API class: https://github.com/18F/identity-idp/blob/2fc19c9/app/services/attempts_api/tracker.rb#L98-L102

[jmdembe]

So are you saying to do the call at the point of sign up? Because if we are to do that, we would have to do the same logic that is in the above link, no?
Also, wouldn't this also reduce the chance of a race condition in the Attempts API class? Or does that not matter?

[mitchellhenke]

Sorry, I was intending to say that the exception occurred during sign up, which calls find_or_create_agency_identity further down, and that's probably where any changes would need to occur.

[mdiarra3]

can u change this back to just create please.

[jmdembe]

My mistake. Changed in 2f448c0.

[mitchellhenke]

This is effectively create_or_find_by, could we use that?

[jmdembe]

When I wrote this, I did not use create_or_find_by because Agency.create requires three arguments while Agency.find_by requires two. Adding the UUID to the find makes the links identities from 2 sps test fail, so that is why I went back to begin...rescue

[mdiarra3]

I think he is saying u can use create or find_by in this line here instead of the begin.

[jmdembe]

I believe I changed that in 995b5e2. There are tests failing now that didn't when I used begin...create that I am struggling to understand.

[jmdembe]

For 1776946, is this a viable solution, and if so, how can a test be written for this case?

[mitchellhenke]

For 1776946, is this a viable solution, and if so, how can a test be written for this case?

I'm not sure that putting it in a transaction is sufficient in this case.