clean up logic for removing creds on delete user

[mfrye]

The problem with the current logic is that the Redis Set containing the credentials isn't deleted on user delete. So when deleting the user and user owned credentials, the set still exists.

[mfrye]

@XVincentX could you take a look at this one? This bug is the last thing that's blocking us from deploying this.

[XVincentX]

I need to find some bandwidth but yeah I'll look into //cc @altsang

[mfrye]

I'm open to other ideas on the optional parameter I included. I figured there might be a case where you'd want to delete all credentials, but still keep the user "container".

[codecov]

Codecov Report

Merging #862 into master will increase coverage by 0.05%.
The diff coverage is 90.9%.

@@            Coverage Diff             @@
##           master     #862      +/-   ##
==========================================
+ Coverage   89.29%   89.34%   +0.05%     
==========================================
  Files         132      132              
  Lines        3633     3642       +9     
==========================================
+ Hits         3244     3254      +10     
+ Misses        389      388       -1

Impacted Files	Coverage Δ
lib/services/credentials/credential.dao.js	98.23% <100%> (+1.06%)	⬆️
lib/services/consumers/user.service.js	89.69% <75%> (+0.21%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update a64ca42...76d87f0. Read the comment docs.

[mfrye]

Separate bug... Looks like the keys also still exist under each scope as well.

[XVincentX]

Thanks for spending your time on this.

At first glance, it looks good. I'll pull down your branch and verify everything is in order. It's going to require some wore work though — this code is currently untested (Codecov is indeed complaining).

Would you be willing to complete the testing phase too?

[XVincentX]

Also — can you revert the package-lock.json changes?

[mfrye]

Yes on the package-lock and your other recommended changes.

Where should the tests be added for this? The code coverage % is still going to be below your threshold even if I add tests for this.

[XVincentX]

Where should the tests be added for this? The code coverage % is still going to be below your threshold even if I add tests for this.

Yeah good point. The problem is that sometimes Codecov reveals areas that have never been tested, thous reporting something wrong with the coverage. Add the tests you feel are useful and I'll check that out for you later and integrate in case it's needed.

P.S: Nowadays I'm using Typescript too. I have opinions on it :)

[XVincentX]

I left couple of other comments here and there. It seems like Codecov is now happy with the coverage, but still we need to write some tests. I'll try to point you towards the right direction.

[mfrye]

@XVincentX I attempted to add a test to test/services/credential-service/credentials.test.js. I'm not sure what happened though as it ended up blowing up other unrelated tests...

I can try to look at this again, but I really don't have a ton of time to spend on this if it's going to be a bigger refactor.

[XVincentX]

Do not worry, leave the tests to me and I'll figure this out.

[mfrye]

Cool, thanks.

[XVincentX]

@mfrye Thanks a lot for the contribution. Writing the tests ended up being a little bit more difficult than anticipated because of the horrible state of some parts of the codebase.

This is going to require some other work on my side.

[mfrye]

@XVincentX awesome. Thanks for fast tracking this.