v3(services): cannot delete shared SIs (cloudfoundry#1710)

or when there are route bindings present

[#171726582](https://www.pivotaltracker.com/story/show/171726582)

Co-authored-by: Brian Butz <butzopower@gmail.com>

Author: Derik Evangelista

…service_instance_delete_user_provided.rb app/actions/service_instance_delete.rbapp/actions/service_instance_delete_user_provided.rb renamed to app/actions/service_instance_delete.rb app/actions/service_instance_delete_user_provided.rb renamed to app/actions/service_instance_delete.rb

@@ -1,13 +1,22 @@
 module VCAP::CloudController
-  class ServiceInstanceDeleteUserProvided
+  class ServiceInstanceDelete
     class AssociationNotEmptyError < StandardError; end
+    class InstanceSharedError < StandardError; end
+    class NotImplementedError < StandardError; end
 
     def initialize(event_repo)
       @service_event_repository = event_repo
     end
 
     def delete(service_instance)
-      association_not_empty! if service_instance.has_bindings? || service_instance.has_keys?
+      association_not_empty! if service_instance.has_bindings? || service_instance.has_keys? || service_instance.has_routes?
+
+      cannot_delete_shared_instances! if service_instance.shared?
+
+      case service_instance
+      when ManagedServiceInstance
+        raise NotImplementedError
+      end
 
       service_instance.db.transaction do
         service_instance.lock!
@@ -19,7 +28,11 @@ def delete(service_instance)
     private
 
     def association_not_empty!
-      raise AssociationNotEmptyError.new
+      raise AssociationNotEmptyError
+    end
+
+    def cannot_delete_shared_instances!
+      raise InstanceSharedError
     end
 
     attr_reader :service_event_repository

app/controllers/v3/service_instances_controller.rb

@@ -15,7 +15,7 @@
 require 'actions/service_instance_update_managed'
 require 'actions/service_instance_update_user_provided'
 require 'actions/service_instance_create_user_provided'
-require 'actions/service_instance_delete_user_provided'
+require 'actions/service_instance_delete'
 require 'actions/service_instance_create_managed'
 require 'fetchers/service_instance_list_fetcher'
 require 'decorators/field_service_instance_space_decorator'
@@ -109,16 +109,16 @@ def destroy
 
     unauthorized! unless can_write_space?(service_instance.space)
 
-    case service_instance
-    when UserProvidedServiceInstance
-      service_event_repository = VCAP::CloudController::Repositories::ServiceEventRepository::WithUserActor.new(user_audit_info)
-      ServiceInstanceDeleteUserProvided.new(service_event_repository).delete(service_instance)
-      head :no_content
-    else
-      head :not_implemented
-    end
-  rescue ServiceInstanceDeleteUserProvided::AssociationNotEmptyError
+    service_event_repository = VCAP::CloudController::Repositories::ServiceEventRepository::WithUserActor.new(user_audit_info)
+    ServiceInstanceDelete.new(service_event_repository).delete(service_instance)
+
+    head :no_content
+  rescue ServiceInstanceDelete::AssociationNotEmptyError
     associations_not_empty!
+  rescue ServiceInstanceDelete::InstanceSharedError
+    cannot_delete_shared_instances!(service_instance.name)
+  rescue ServiceInstanceDelete::NotImplementedError
+    head :not_implemented
   end
 
   def share_service_instance
@@ -353,4 +353,8 @@ def associations_not_empty!
       new_from_details('AssociationNotEmpty', associations, :service_instances).
       with_response_code(422)
   end
+
+  def cannot_delete_shared_instances!(name)
+    raise CloudController::Errors::ApiError.new_from_details('ServiceInstanceDeletionSharesExists', name)
+  end
 end

app/models/services/service_instance.rb

@@ -210,11 +210,15 @@ def shared?
     end
 
     def has_bindings?
-      !service_bindings.empty?
+      service_bindings.present?
     end
 
     def has_keys?
-      !service_keys.empty?
+      service_keys.present?
+    end
+
+    def has_routes?
+      routes.present?
     end
 
     def self.managed_organizations_spaces_dataset(managed_organizations_dataset)

spec/request/service_instances_spec.rb

@@ -2146,17 +2146,12 @@ def check_filtered_instances(*instances)
   describe 'DELETE /v3/service_instances/:guid' do
     let(:api_call) { lambda { |user_headers| delete "/v3/service_instances/#{instance.guid}", '{}', user_headers } }
 
-    context 'user provided service instance' do
+    context 'permissions' do
       let!(:instance) { VCAP::CloudController::UserProvidedServiceInstance.make(space: space) }
-
       let(:db_check) {
-        lambda do
-          get "/v3/service_instances/#{instance.guid}", {}, admin_headers
-          expect(last_response.status).to eq(404)
-
-          expect(VCAP::CloudController::ServiceInstanceLabelModel.where(service_instance: instance).all).to be_empty
-          expect(VCAP::CloudController::ServiceInstanceAnnotationModel.where(service_instance: instance).all).to be_empty
-        end
+        lambda {
+          expect(VCAP::CloudController::ServiceInstance.all).to be_empty
+        }
       }
 
       let(:expected_codes_and_responses) do
@@ -2170,30 +2165,63 @@ def check_filtered_instances(*instances)
       end
 
       it_behaves_like 'permissions for delete endpoint', ALL_PERMISSIONS
+    end
 
-      context 'when associations are not empty' do
-        it 'returns a 422 Unprocessable Entity when there are service bindings' do
-          VCAP::CloudController::ServiceBinding.make(service_instance: instance)
+    context 'user provided service instances' do
+      let!(:instance) { VCAP::CloudController::UserProvidedServiceInstance.make(space: space) }
 
-          api_call.call(admin_headers)
-          expect(last_response).to have_status_code(422)
-          response = parsed_response['errors'].first
-          expect(response).to include('title' => 'CF-AssociationNotEmpty')
-          expect(response).to include('detail' => 'Please delete the service_bindings, service_keys, and routes associations for your service_instances.')
-        end
+      before do
+        VCAP::CloudController::ServiceInstanceLabelModel.make(key_name: 'fruit', value: 'banana', service_instance: instance)
+        VCAP::CloudController::ServiceInstanceLabelModel.make(key_name: 'fruit', value: 'avocado', service_instance: instance)
+        VCAP::CloudController::ServiceInstanceAnnotationModel.make(key_name: 'contact', value: 'marie', service_instance: instance)
+        VCAP::CloudController::ServiceInstanceAnnotationModel.make(key_name: 'email', value: 'some@example.com', service_instance: instance)
+      end
 
-        it 'returns a 422 Unprocessable Entity when there are service keys' do
-          VCAP::CloudController::ServiceKey.make(service_instance: instance)
+      it 'deletes the instance and removes any labels or annotations' do
+        api_call.call(admin_headers)
+        expect(last_response).to have_status_code(204)
+
+        get "/v3/service_instances/#{instance.guid}", {}, admin_headers
+        expect(last_response.status).to eq(404)
+        expect(VCAP::CloudController::ServiceInstanceLabelModel.where(service_instance: instance).all).to be_empty
+        expect(VCAP::CloudController::ServiceInstanceAnnotationModel.where(service_instance: instance).all).to be_empty
+      end
+    end
+
+    context 'managed service instance' do
+      let!(:instance) { VCAP::CloudController::ManagedServiceInstance.make(space: space) }
 
+      context 'when it is shared' do
+        let(:other_space) { VCAP::CloudController::Space.make }
+
+        before do
+          share_service_instance(instance, other_space)
+        end
+
+        it 'returns a 422 Unprocessable Entity' do
           api_call.call(admin_headers)
           expect(last_response).to have_status_code(422)
           response = parsed_response['errors'].first
-          expect(response).to include('title' => 'CF-AssociationNotEmpty')
-          expect(response).to include('detail' => 'Please delete the service_bindings, service_keys, and routes associations for your service_instances.')
+          expect(response).to include('title' => 'CF-ServiceInstanceDeletionSharesExists')
+          expect(response).to include('detail' => include('Service instances must be unshared before they can be deleted.'))
         end
       end
     end
 
+    context 'when associations are not empty' do
+      let(:instance) { VCAP::CloudController::ServiceInstance.make(space: space) }
+
+      it 'returns a 422 Unprocessable Entity' do
+        VCAP::CloudController::ServiceBinding.make(service_instance: instance)
+
+        api_call.call(admin_headers)
+        expect(last_response).to have_status_code(422)
+        response = parsed_response['errors'].first
+        expect(response).to include('title' => 'CF-AssociationNotEmpty')
+        expect(response).to include('detail' => 'Please delete the service_bindings, service_keys, and routes associations for your service_instances.')
+      end
+    end
+
     context 'when the service instance does not exist' do
       let(:instance) { Struct.new(:guid).new('some-fake-guid') }
       it 'returns a 404' do
@@ -2304,6 +2332,25 @@ def expect_metadata(instance, annotations: [], labels: [])
     expect(l).to match_array(labels)
   end
 
+  def share_service_instance(instance, target_space)
+    enable_sharing!
+
+    share_request = {
+      'data' => [
+        { 'guid' => target_space.guid }
+      ]
+    }
+
+    post "/v3/service_instances/#{instance.guid}/relationships/shared_spaces", share_request.to_json, admin_headers
+    expect(last_response.status).to eq(200)
+  end
+
+  def enable_sharing!
+    VCAP::CloudController::FeatureFlag.
+      find_or_create(name: 'service_instance_sharing') { |ff| ff.enabled = true }.
+      update(enabled: true)
+  end
+
   describe 'unrefactored' do
     let(:user_email) { 'user@email.example.com' }
     let(:user_name) { 'username' }

spec/unit/actions/service_instance_delete_spec.rb

@@ -0,0 +1,114 @@
+require 'spec_helper'
+require 'actions/service_instance_delete'
+
+module VCAP::CloudController
+  RSpec.describe ServiceInstanceDelete do
+    describe '#delete' do
+      subject(:action) { described_class.new(event_repository) }
+      let(:event_repository) do
+        dbl = double(Repositories::ServiceEventRepository::WithUserActor)
+        allow(dbl).to receive(:record_user_provided_service_instance_event)
+        dbl
+      end
+
+      let!(:service_instance) do
+        si = VCAP::CloudController::UserProvidedServiceInstance.make(
+          name: 'foo',
+          credentials: {
+            foo: 'bar',
+            baz: 'qux'
+          },
+          syslog_drain_url: 'https://foo.com',
+          route_service_url: 'https://bar.com',
+          tags: %w(accounting mongodb)
+        )
+        si.label_ids = [
+          VCAP::CloudController::ServiceInstanceLabelModel.make(key_prefix: 'pre.fix', key_name: 'to_delete', value: 'value'),
+          VCAP::CloudController::ServiceInstanceLabelModel.make(key_prefix: 'pre.fix', key_name: 'tail', value: 'fluffy')
+        ]
+        si.annotation_ids = [
+          VCAP::CloudController::ServiceInstanceAnnotationModel.make(key_prefix: 'pre.fix', key_name: 'to_delete', value: 'value').id,
+          VCAP::CloudController::ServiceInstanceAnnotationModel.make(key_prefix: 'pre.fix', key_name: 'fox', value: 'bushy').id
+        ]
+        si
+      end
+
+      it 'deletes an user provided service instance from the database' do
+        subject.delete(service_instance)
+
+        expect {
+          service_instance.reload
+        }.to raise_error(Sequel::Error, 'Record not found')
+        expect(VCAP::CloudController::ServiceInstanceLabelModel.where(service_instance: service_instance)).to be_empty
+        expect(VCAP::CloudController::ServiceInstanceAnnotationModel.where(service_instance: service_instance)).to be_empty
+      end
+
+      it 'fails to delete managed service instances' do
+        instance = VCAP::CloudController::ManagedServiceInstance.make
+        expect { subject.delete(instance) }.to raise_error(ServiceInstanceDelete::NotImplementedError)
+        expect { instance.reload }.not_to raise_error
+      end
+
+      it 'creates an audit event' do
+        subject.delete(service_instance)
+
+        expect(event_repository).
+          to have_received(:record_user_provided_service_instance_event).
+          with(:delete, instance_of(UserProvidedServiceInstance), {})
+      end
+
+      describe 'invalid pre-conditions' do
+        context 'when there are associated service bindings' do
+          before do
+            VCAP::CloudController::ServiceBinding.make(service_instance: service_instance)
+          end
+
+          it 'does not delete the service instance' do
+            expect { subject.delete(service_instance) }.to raise_error(ServiceInstanceDelete::AssociationNotEmptyError)
+            expect { service_instance.reload }.not_to raise_error
+          end
+        end
+
+        context 'when there are associated service keys' do
+          before do
+            VCAP::CloudController::ServiceKey.make(service_instance: service_instance)
+          end
+
+          it 'does not delete the service instance' do
+            expect { subject.delete(service_instance) }.to raise_error(ServiceInstanceDelete::AssociationNotEmptyError)
+            expect { service_instance.reload }.not_to raise_error
+          end
+        end
+
+        context 'when there are associated route bindings' do
+          before do
+            VCAP::CloudController::RouteBinding.make(
+              service_instance: service_instance,
+              route: VCAP::CloudController::Route.make(space: service_instance.space)
+            )
+          end
+
+          it 'does not delete the service instance' do
+            expect { subject.delete(service_instance) }.to raise_error(ServiceInstanceDelete::AssociationNotEmptyError)
+            expect { service_instance.reload }.not_to raise_error
+          end
+        end
+
+        context 'when the service instance is shared' do
+          let(:space) { VCAP::CloudController::Space.make }
+          let(:other_space) { VCAP::CloudController::Space.make }
+          let!(:service_instance) {
+            si = VCAP::CloudController::ServiceInstance.make(space: space)
+            si.shared_space_ids = [other_space.id]
+            si
+          }
+
+          it 'does not delete the service instance' do
+            expect { subject.delete(service_instance) }.to raise_error(ServiceInstanceDelete::InstanceSharedError)
+            expect { service_instance.reload }.not_to raise_error
+          end
+        end
+      end
+    end
+  end
+end