API to download export results

[Marishka17]

Motivation and context

This PR introduces the following changes:

• Several server API endpoints have been deprecated or no longer handle the process of exporting specific resources:
  • [API] GET /api/projects/id/dataset?action=import_status is deprecated
  • [API] GET /api/projects/id/dataset(no action parameter or action != import_status) returns 410 status code - API endpoint no longer used to handle export datasets flow
  • [API] GET /api/projects/id/annotations returns 410 status code - API endpoint no longer used to handle export annotations flow
  • [API] GET /api/projects/id/backup returns 410 status code - API endpoint no longer used to handle export backups flow
  • [API] GET /api/tasks/id/backup returns 410 status code - API endpoint no longer used to handle export backups flow
  • [API] GET /api/tasks/id/annotations?format= returns 410 status code - API endpoint no longer used to handle export annotations flow
  • [API] GET /api/tasks/d/dataset returns 410 status code - API endpoint no longer used to handle export datasets flow
  • [API] GET /api/jobs/id/annotations?format= returns 410 status code - API endpoint no longer used to handle export annotations flow
  • [API] GET /api/jobs/id/dataset returns 410 status code - API endpoint no longer used to handle export datasets flow
• Introduced new "private" endpoints to download prepared files (they are hidden in the generated server schema):
  • [API] GET /api/projects/id/dataset/download?rq_id=rq_id
  • [API] GET /api/projects/id/backup/download?rq_id=rq_id
  • [API] GET /api/tasks/id/dataset/download?rq_id=rq_id
  • [API] GET /api/tasks/id/backup/download?rq_id=rq_id
  • [API] GET /api/jobs/id/dataset/download?rq_id=rq_id
• Changed permissions used when downloading a prepared file (now admin and RQ job owner have rights to download a prepared file related to a specific background job (it's a questionable topic whether should be resource access checked also))
• Added result filename saving to RQ metadata for export-related RQ jobs:

{
    ...
    "result_filename": str // is used as the final filename when downloading files/uploading to cloud storage
}

• Final file name is taken from meta when uploading a file to cloud storage (key and key_pattern args have been removed)

How has this been tested?

Checklist

• I submit my changes into the develop branch
• I have created a changelog fragment
• I have updated the documentation accordingly
• I have added tests to cover my changes
• I have linked related issues (see GitHub docs)

TODO:

• Extract unrelated fixes/changes into separate PRs

License

• I submit my code changes under the same MIT License that covers the project.
  Feel free to contact the maintainers if that's a concern.

[Marishka17]

/check

[Marishka17]

@zhiltsov-max, Could you please check that deprecated API is not used in Human Protocol oracles (and update if needed)?

[SpecLad]

I think these parameters are removed, not just deprecated.

[Marishka17]

I did not remove these parameters from the specification because they are still used to determine whether a request is made to export the dataset or just to get raw annotations. So, I think it would be better to remove them from the schema once the endpoint no longer returns a 410 response.

[SpecLad]

I disagree. By listing these parameters in the schema you are making the claim that they are supported, whereas in fact they are not. I can see the utility in keeping them around for a short while, so that people who read the schema can understand what happened to them; but in this case you should change the description to something accurate, e.g. "this parameter is no longer supported".

FWIW, I also think we should keep the logic that returns 410 if these parameters are present indefinitely, or at least for a long time. It costs very little, and it ensures that clients that use the old API get an error. OTOH, we probably don't need to keep these parameters in the schema for very long.

[SpecLad]

It's odd to see this here. IIRC, for unit tests we run RQ jobs in synchronous mode, so no waiting should be necessary - the job should be complete immediately after the initiating request.

[Marishka17]

it's true, but I believe there are still several advantages of adding a waiting step:

1. We do not need to update related tests if we run these tests in asynchronous mode
2. This way we test that /api/requests/rq_id API returns the expected code (200, 401, 403)

[SpecLad]

if we run these tests in asynchronous mode

Is it possible?

This way we test that /api/requests/rq_id API returns the expected code (200, 401, 403)

I've nothing against calling this API, I just don't think we need to do it in a loop.

[Marishka17]

Is it possible?

Warum nicht?

[SpecLad]

Warum nicht?

Well... how would you do it? AFAICS, cvat.settings.testing forces all queues to use sync mode. Moreover, it also uses a fake Redis implementation, so it wouldn't be possible to run RQ workers anyway.

[sonarqubecloud]

Quality Gate passed

Issues
5 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
2.1% Duplication on New Code

See analysis details on SonarQube Cloud