feat(BA-1846): Separate repository layer from domain service (#5099)

Author: HyeockJinKim

changes/5099.enhance.md

@@ -0,0 +1 @@
+Separate repository layer from domain service

src/ai/backend/manager/errors/exceptions.py

@@ -1266,3 +1266,21 @@ def error_code(cls) -> ErrorCode:
             operation=ErrorOperation.READ,
             error_detail=ErrorDetail.NOT_FOUND,
         )
+
+
+class DomainDataProcessingError(BackendError, web.HTTPInternalServerError):
+    """
+    Error that occurs when processing domain data fails.
+    This includes failures in converting database rows to domain data objects.
+    """
+
+    error_type = "https://api.backend.ai/probs/domain-data-processing-error"
+    error_title = "Failed to process domain data."
+
+    @classmethod
+    def error_code(cls) -> ErrorCode:
+        return ErrorCode(
+            domain=ErrorDomain.DOMAIN,
+            operation=ErrorOperation.GENERIC,
+            error_detail=ErrorDetail.INTERNAL_ERROR,
+        )

src/ai/backend/manager/models/gql_models/domain.py

@@ -626,7 +626,7 @@ class DomainInput(graphene.InputObjectType):
     )
     integration_id = graphene.String(required=False, default_value=None)
 
-    def to_action(self, domain_name: str) -> CreateDomainAction:
+    def to_action(self, domain_name: str, user_info: UserInfo) -> CreateDomainAction:
         def value_or_none(value):
             return value if value is not Undefined else None
 
@@ -640,6 +640,7 @@ def value_or_none(value):
                 allowed_docker_registries=value_or_none(self.allowed_docker_registries),
                 integration_id=value_or_none(self.integration_id),
             ),
+            user_info=user_info,
         )
 
 
@@ -661,9 +662,10 @@ def _convert_field(
             return converter(field_value)
         return field_value
 
-    def to_action(self, domain_name: str) -> ModifyDomainAction:
+    def to_action(self, domain_name: str, user_info: UserInfo) -> ModifyDomainAction:
         return ModifyDomainAction(
             domain_name=domain_name,
+            user_info=user_info,
             modifier=DomainModifier(
                 name=OptionalState[str].from_graphql(self.name),
                 description=TriState[str].from_graphql(
@@ -709,7 +711,13 @@ async def mutate(
     ) -> CreateDomain:
         ctx: GraphQueryContext = info.context
 
-        action: CreateDomainAction = props.to_action(name)
+        user_info: UserInfo = UserInfo(
+            id=ctx.user["uuid"],
+            role=ctx.user["role"],
+            domain_name=ctx.user["domain_name"],
+        )
+
+        action: CreateDomainAction = props.to_action(name, user_info)
         res = await ctx.processors.domain.create_domain.wait_for_complete(action)
 
         domain_data: Optional[DomainData] = res.domain_data
@@ -742,7 +750,13 @@ async def mutate(
     ) -> ModifyDomain:
         ctx: GraphQueryContext = info.context
 
-        action = props.to_action(name)
+        user_info: UserInfo = UserInfo(
+            id=ctx.user["uuid"],
+            role=ctx.user["role"],
+            domain_name=ctx.user["domain_name"],
+        )
+
+        action = props.to_action(name, user_info)
         res = await ctx.processors.domain.modify_domain.wait_for_complete(action)
 
         domain_data: Optional[DomainData] = res.domain_data
@@ -771,7 +785,13 @@ class Arguments:
     async def mutate(cls, root, info: graphene.ResolveInfo, name: str) -> DeleteDomain:
         ctx: GraphQueryContext = info.context
 
-        action = DeleteDomainAction(name)
+        user_info: UserInfo = UserInfo(
+            id=ctx.user["uuid"],
+            role=ctx.user["role"],
+            domain_name=ctx.user["domain_name"],
+        )
+
+        action = DeleteDomainAction(name, user_info)
         res = await ctx.processors.domain.delete_domain.wait_for_complete(action)
 
         return cls(ok=res.success, msg=res.description)
@@ -797,7 +817,13 @@ class Arguments:
     async def mutate(cls, root, info: graphene.ResolveInfo, name: str) -> PurgeDomain:
         ctx: GraphQueryContext = info.context
 
-        action = PurgeDomainAction(name)
+        user_info: UserInfo = UserInfo(
+            id=ctx.user["uuid"],
+            role=ctx.user["role"],
+            domain_name=ctx.user["domain_name"],
+        )
+
+        action = PurgeDomainAction(name, user_info)
         res = await ctx.processors.domain.purge_domain.wait_for_complete(action)
 
         return cls(ok=res.success, msg=res.description)

src/ai/backend/manager/repositories/domain/admin_repository.py

@@ -0,0 +1,242 @@
+from typing import Optional
+
+import sqlalchemy as sa
+from sqlalchemy.ext.asyncio import AsyncConnection as SAConnection
+from sqlalchemy.ext.asyncio import AsyncSession as SASession
+
+from ai.backend.manager.models import groups
+from ai.backend.manager.models.domain import DomainRow, domains
+from ai.backend.manager.models.group import ProjectType
+from ai.backend.manager.models.kernel import kernels
+from ai.backend.manager.models.scaling_group import ScalingGroupForDomainRow
+from ai.backend.manager.models.utils import ExtendedAsyncSAEngine, execute_with_txn_retry
+from ai.backend.manager.services.domain.types import (
+    DomainCreator,
+    DomainData,
+    DomainModifier,
+    UserInfo,
+)
+
+
+class AdminDomainRepository:
+    """
+    Repository for admin-specific domain operations that bypass ownership checks.
+    This should only be used by superadmin users.
+    """
+
+    _db: ExtendedAsyncSAEngine
+
+    def __init__(self, db: ExtendedAsyncSAEngine) -> None:
+        self._db = db
+
+    async def create_domain_force(self, creator: DomainCreator) -> DomainData:
+        """
+        Creates a new domain with model-store group without permission checks.
+        For superadmin use only.
+        """
+        async with self._db.begin() as conn:
+            data = creator.fields_to_store()
+            insert_query = sa.insert(domains).values(data).returning(domains)
+            result = await conn.execute(insert_query)
+            row = result.first()
+
+            # Create model-store group for the domain
+            await self._create_model_store_group(conn, creator.name)
+
+            if result.rowcount != 1 or row is None:
+                raise RuntimeError(f"No domain created. rowcount: {result.rowcount}, data: {data}")
+
+        assert row is not None
+        result = DomainData.from_row(row)
+        assert result is not None
+        return result
+
+    async def modify_domain_force(
+        self, domain_name: str, modifier: DomainModifier
+    ) -> Optional[DomainData]:
+        """
+        Modifies an existing domain without permission checks.
+        For superadmin use only.
+        """
+        async with self._db.begin() as conn:
+            data = modifier.fields_to_update()
+            update_query = (
+                sa.update(domains)
+                .values(data)
+                .where(domains.c.name == domain_name)
+                .returning(domains)
+            )
+            result = await conn.execute(update_query)
+            row = result.first()
+
+            if result.rowcount == 0:
+                return None
+
+        return DomainData.from_row(row)
+
+    async def soft_delete_domain_force(self, domain_name: str) -> bool:
+        """
+        Soft deletes a domain by setting is_active to False without permission checks.
+        For superadmin use only.
+        """
+        async with self._db.begin() as conn:
+            update_query = (
+                sa.update(domains).values({"is_active": False}).where(domains.c.name == domain_name)
+            )
+            result = await conn.execute(update_query)
+            return result.rowcount > 0
+
+    async def purge_domain_force(self, domain_name: str) -> bool:
+        """
+        Permanently deletes a domain without validation checks.
+        For superadmin use only - bypasses all safety checks.
+        """
+        async with self._db.begin() as conn:
+            # Force clean up kernels
+            await self._delete_kernels(conn, domain_name)
+
+            # Delete domain
+            delete_query = sa.delete(domains).where(domains.c.name == domain_name)
+            result = await conn.execute(delete_query)
+            return result.rowcount > 0
+
+    async def create_domain_node_force(
+        self, creator: DomainCreator, scaling_groups: Optional[list[str]] = None
+    ) -> DomainData:
+        """
+        Creates a domain node with scaling groups without permission checks.
+        For superadmin use only.
+        """
+        async with self._db.begin_session() as session:
+            data = creator.fields_to_store()
+            insert_and_returning = sa.select(DomainRow).from_statement(
+                sa.insert(DomainRow).values(data).returning(DomainRow)
+            )
+            domain_row = await session.scalar(insert_and_returning)
+
+            if scaling_groups is not None:
+                await session.execute(
+                    sa.insert(ScalingGroupForDomainRow),
+                    [
+                        {"scaling_group": sgroup_name, "domain": creator.name}
+                        for sgroup_name in scaling_groups
+                    ],
+                )
+
+            await session.commit()
+            if domain_row is None:
+                raise RuntimeError(f"Failed to create domain node: {creator.name}")
+            assert domain_row is not None
+            result = DomainData.from_row(domain_row)
+            assert result is not None
+            return result
+
+    async def modify_domain_node_force(
+        self,
+        domain_name: str,
+        modifier_fields: dict,
+        sgroups_to_add: Optional[set[str]] = None,
+        sgroups_to_remove: Optional[set[str]] = None,
+    ) -> Optional[DomainData]:
+        """
+        Modifies a domain node with scaling group changes without permission checks.
+        For superadmin use only.
+        """
+        async with self._db.begin_session() as session:
+            if sgroups_to_add is not None:
+                await session.execute(
+                    sa.insert(ScalingGroupForDomainRow),
+                    [
+                        {"scaling_group": sgroup_name, "domain": domain_name}
+                        for sgroup_name in sgroups_to_add
+                    ],
+                )
+
+            if sgroups_to_remove is not None:
+                await session.execute(
+                    sa.delete(ScalingGroupForDomainRow).where(
+                        (ScalingGroupForDomainRow.domain == domain_name)
+                        & (ScalingGroupForDomainRow.scaling_group.in_(sgroups_to_remove))
+                    ),
+                )
+
+            update_stmt = (
+                sa.update(DomainRow)
+                .where(DomainRow.name == domain_name)
+                .values(modifier_fields)
+                .returning(DomainRow)
+            )
+            await session.execute(update_stmt)
+
+            domain_row = await session.scalar(
+                sa.select(DomainRow).where(DomainRow.name == domain_name)
+            )
+
+            await session.commit()
+            return DomainData.from_row(domain_row) if domain_row else None
+
+    async def _create_model_store_group(self, conn: SAConnection, domain_name: str) -> None:
+        """
+        Private method to create model-store group for a domain.
+        """
+        model_store_insert_query = sa.insert(groups).values({
+            "name": "model-store",
+            "description": "Model Store",
+            "is_active": True,
+            "domain_name": domain_name,
+            "total_resource_slots": {},
+            "allowed_vfolder_hosts": {},
+            "integration_id": None,
+            "resource_policy": "default",
+            "type": ProjectType.MODEL_STORE,
+        })
+        await conn.execute(model_store_insert_query)
+
+    async def _delete_kernels(self, conn: SAConnection, domain_name: str) -> int:
+        """
+        Private method to delete all kernels for a domain.
+        """
+        delete_query = sa.delete(kernels).where(kernels.c.domain_name == domain_name)
+        result = await conn.execute(delete_query)
+        return result.rowcount
+
+    async def create_domain_node_with_permissions_force(
+        self,
+        creator: DomainCreator,
+        user_info: UserInfo,
+        scaling_groups: Optional[list[str]] = None,
+    ) -> DomainData:
+        """
+        Creates a domain node with scaling groups without permission checks.
+        For superadmin use only.
+        """
+
+        async def _insert(db_session: SASession) -> DomainData:
+            return await self.create_domain_node_force(creator, scaling_groups)
+
+        async with self._db.connect() as db_conn:
+            return await execute_with_txn_retry(_insert, self._db.begin_session, db_conn)
+
+    async def modify_domain_node_with_permissions_force(
+        self,
+        domain_name: str,
+        modifier_fields: dict,
+        user_info: UserInfo,
+        sgroups_to_add: Optional[set[str]] = None,
+        sgroups_to_remove: Optional[set[str]] = None,
+    ) -> Optional[DomainData]:
+        """
+        Modifies a domain node with scaling group changes without permission checks.
+        For superadmin use only.
+        """
+
+        async def _update(db_session: SASession) -> Optional[DomainData]:
+            return await self.modify_domain_node_force(
+                domain_name,
+                modifier_fields,
+                sgroups_to_add,
+                sgroups_to_remove,
+            )
+
+        async with self._db.connect() as db_conn:
+            return await execute_with_txn_retry(_update, self._db.begin_session, db_conn)

src/ai/backend/manager/repositories/domain/repositories.py

@@ -1,18 +1,22 @@
 from dataclasses import dataclass
 from typing import Self
 
+from ai.backend.manager.repositories.domain.admin_repository import AdminDomainRepository
 from ai.backend.manager.repositories.domain.repository import DomainRepository
 from ai.backend.manager.repositories.image.repositories import RepositoryArgs
 
 
 @dataclass
 class DomainRepositories:
     repository: DomainRepository
+    admin_repository: AdminDomainRepository
 
     @classmethod
     def create(cls, args: RepositoryArgs) -> Self:
         repository = DomainRepository(args.db)
+        admin_repository = AdminDomainRepository(args.db)
 
         return cls(
             repository=repository,
+            admin_repository=admin_repository,
         )