feat: add management command for course prompts

[alangsto]

MST-2164

This PR adds a management command that generates a new set of course prompts given a list of course ids.

[alangsto]

Instead of having three separate args for the messages, I'm wondering if it would be possible to use string formatting instead. This way, one message block could be passed in, and then the topics could be added to that string.

[MichaelRoytman]

I think either is fine. The string template seems fine, but we should leave a detailed explanation about the desired format.

[alangsto]

Opted to leave this as is for now, but left a note describing the required structure.

[alangsto]

I haven't tested if this format of message actually saves. When we were manually adding these, it took a bit of wrangling to get the json format correct.

[MichaelRoytman]

Is this something you can verify when manually testing?

[alangsto]

Yes, trying to do that now!

[alangsto]

Json formatting looks great, tested locally to confirm

[varshamenon4]

Nice!

[alangsto]

coverage is down because this function isn't being tested - I'm not really sure it's worth mocking everything in here.

[MichaelRoytman]

I don't feel like we need to do that.

[MichaelRoytman]

Is there a reason not to use the OAuthAPIClient with the BACKEND_SERVICE_EDX_OAUTH2_KEY and BACKEND_SERVICE_EDX_OAUTH2_SECRET settings instead of impersonating a user?

Is this a pattern we have elsewhere? Because it strikes me as a unexpected to use an existing account to make calls to the LMS.

[alangsto]

I did find it elsewhere, this is ripped from the catalog app in edx-platform: https://github.com/openedx/edx-platform/blob/92731be0dc69d82cc4ec5b9c511e86df9aa9e632/openedx/core/djangoapps/catalog/utils.py#L51-L60.

[MichaelRoytman]

Interesting. Those changes eventually lead back to openedx/public-engineering#37, which says, "We will be switching usages of the old client to OAuthAPIClient as part of this removal."

Ed Zeracor left a comment, "In some cases the request is on the behalf of the user and we are passing JOTs around. We will still need to do this, but the current client doesn’t have an interface for supporting JOTs", which I think was the case for the catalog service. I imagine that's why it was implemented this way.

I'd lean toward using the OAuthAPIClient, since it seems like the intended direction. It sounds like to me that the catalog service was implemented this way because the existing code wasn't well supported by OAuthAPIClient, but this is new code. Registrar has an example of calling discovery with OAuthAPIClient - it doesn't look any more complex.

What do you think?

[alangsto]

Ohh interesting find. I can try and look into using the OAuthAPIClient, I wasn't finding the credentials I needed so I wasn't sure if I would need to create them in discovery admin.

[alangsto]

Updated to use the OauthAPIClient. Opting to use the discovery-worker credentials.

[MichaelRoytman]

I know you've run a query to get the list of courses that have skills. Do any of them use the old style course IDs (e.g. edX/DemoX.1/2014)? If so, will those calls to Discovery fail because you're constructing a course key in the new style?

[alangsto]

None of them have the old style of course ID! I do see that as an area for improvement, but I think we are safe for now.

[MichaelRoytman]

Nice! Thank you. What do you think about leaving a comment that this only supports new style keys - seems like something one could overlook in the future.

[MichaelRoytman]

I think either is fine. The string template seems fine, but we should leave a detailed explanation about the desired format.

[MichaelRoytman]

I don't feel like we need to do that.

[MichaelRoytman]

Is this something you can verify when manually testing?

[varshamenon4]

Looks great! Just had one clarifying question and can then approve! :)

[varshamenon4]

Nice!

[varshamenon4]

lgtm!