Skip to content

chore(spans-migration): add post and put validation for EAP extrapolation mode #102970

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 7 commits into from
Nov 12, 2025
Merged

chore(spans-migration): add post and put validation for EAP extrapolation mode #102970

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
2d0a52e
wip post + put validation for extrapolation mode
nikkikapadia Oct 29, 2025
f14a7d7
Merge branch 'master' into nikki/feat/extrapolation-type-validation
nikkikapadia Nov 4, 2025
0842aae
add validation for new detectors
nikkikapadia Nov 7, 2025
b037625
make tests and edit code
nikkikapadia Nov 7, 2025
6ae1833
make put validation less restrictive
nikkikapadia Nov 10, 2025
ca57cb3
fixes
nikkikapadia Nov 10, 2025
4fcd9d2
cursor fix
nikkikapadia Nov 10, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 32 additions & 0 deletions src/sentry/incidents/endpoints/organization_alert_rule_details.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -49,6 +49,8 @@
from sentry.models.rulesnooze import RuleSnooze
from sentry.sentry_apps.services.app import app_service
from sentry.sentry_apps.utils.errors import SentryAppBaseError
from sentry.snuba.dataset import Dataset
from sentry.snuba.models import ExtrapolationMode
from sentry.users.services.user.service import user_service
from sentry.workflow_engine.migration_helpers.alert_rule import dual_delete_migrated_alert_rule
from sentry.workflow_engine.models import Detector
Expand Down Expand Up @@ -102,6 +104,25 @@ def fetch_alert_rule(
return Response(serialized_rule)


def _is_invalid_extrapolation_mode(old_extrapolation_mode, new_extrapolation_mode) -> bool:
Copy link
Member

@ceorourke ceorourke Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems like you could combine this and the one in metric_issue_detector.py since they're doing the same thing

Copy link
Member Author

@nikkikapadia nikkikapadia Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ooop yes good point

if (
new_extrapolation_mode == ExtrapolationMode.SERVER_WEIGHTED.name.lower()
and old_extrapolation_mode != ExtrapolationMode.SERVER_WEIGHTED.name.lower()
):
return True
if (
new_extrapolation_mode == ExtrapolationMode.NONE.name.lower()
and old_extrapolation_mode != ExtrapolationMode.NONE.name.lower()
):
return True
if (
new_extrapolation_mode == ExtrapolationMode.CLIENT_AND_SERVER_WEIGHTED.name.lower()
or new_extrapolation_mode == ExtrapolationMode.UNKNOWN.name.lower()
):
return False
return False
Copy link
Member

@shruthilayaj shruthilayaj Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we don't need to be super restrictive here. We should only guard against people trying to set serve weighted so we don't have any un-intended consequences.

Suggested change
if (
new_extrapolation_mode == ExtrapolationMode.SERVER_WEIGHTED.name.lower()
and old_extrapolation_mode != ExtrapolationMode.SERVER_WEIGHTED.name.lower()
):
return True
if (
new_extrapolation_mode == ExtrapolationMode.NONE.name.lower()
and old_extrapolation_mode != ExtrapolationMode.NONE.name.lower()
):
return True
if (
new_extrapolation_mode == ExtrapolationMode.CLIENT_AND_SERVER_WEIGHTED.name.lower()
or new_extrapolation_mode == ExtrapolationMode.UNKNOWN.name.lower()
):
return False
return False
if (
new_extrapolation_mode == ExtrapolationMode.SERVER_WEIGHTED.name.lower()
and old_extrapolation_mode != ExtrapolationMode.SERVER_WEIGHTED.name.lower()
):
return True
return False



def update_alert_rule(
request: Request, organization: Organization, alert_rule: AlertRule
) -> Response:
Expand All @@ -121,6 +142,17 @@ def update_alert_rule(
partial=True,
)
if validator.is_valid():
if data.get("dataset") == Dataset.EventsAnalyticsPlatform.value:
Copy link
Contributor

@cursor cursor bot Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Extrapolation Mode Validation Bypass

The validation checks data.get("dataset") from the request instead of checking the actual alert rule's dataset (alert_rule.snuba_query.dataset). This allows bypassing the extrapolation mode validation during partial updates by omitting the dataset field, enabling users to set server_weighted on EAP alerts.

Fix in Cursor Fix in Web

if data.get("extrapolation_mode"):
old_extrapolation_mode = ExtrapolationMode(
alert_rule.snuba_query.extrapolation_mode
).name.lower()
new_extrapolation_mode = data.get("extrapolation_mode", old_extrapolation_mode)
if _is_invalid_extrapolation_mode(old_extrapolation_mode, new_extrapolation_mode):
raise serializers.ValidationError(
"Invalid extrapolation mode for this alert type."
)

try:
trigger_sentry_app_action_creators_for_incidents(validator.validated_data)
except SentryAppBaseError as e:
Expand Down
4 changes: 4 additions & 0 deletions src/sentry/incidents/endpoints/organization_alert_rule_index.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -73,6 +73,7 @@
from sentry.sentry_apps.services.app import app_service
from sentry.sentry_apps.utils.errors import SentryAppBaseError
from sentry.snuba.dataset import Dataset
from sentry.snuba.models import ExtrapolationMode
from sentry.uptime.types import (
DATA_SOURCE_UPTIME_SUBSCRIPTION,
GROUP_TYPE_UPTIME_DOMAIN_CHECK_FAILURE,
Expand Down Expand Up @@ -100,6 +101,9 @@ def create_metric_alert(
"Creation of transaction-based alerts is disabled, as we migrate to the span dataset. Create span-based alerts (dataset: events_analytics_platform) with the is_transaction:true filter instead."
)

if data.get("extrapolation_mode") == ExtrapolationMode.SERVER_WEIGHTED.name.lower():
raise ValidationError("server_weighted extrapolation mode is not supported for new alerts.")
Copy link
Contributor

@cursor cursor bot Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Extrapolation Validation: Type Mismatch Bug

The validation compares extrapolation_mode against ExtrapolationMode.SERVER_WEIGHTED.name.lower() (a string), but the serializer field is IntegerField, so users send integers. This check will never trigger - it should compare against ExtrapolationMode.SERVER_WEIGHTED.value instead, matching the pattern used in _validate_extrapolation_mode.

Fix in Cursor Fix in Web


if project:
data["projects"] = [project.slug]

Expand Down
45 changes: 44 additions & 1 deletion src/sentry/incidents/metric_issue_detector.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,12 @@
from sentry.seer.anomaly_detection.store_data_workflow_engine import send_new_detector_data
from sentry.snuba.dataset import Dataset
from sentry.snuba.metrics.extraction import should_use_on_demand_metrics
from sentry.snuba.models import QuerySubscription, SnubaQuery, SnubaQueryEventType
from sentry.snuba.models import (
ExtrapolationMode,
QuerySubscription,
SnubaQuery,
SnubaQueryEventType,
)
from sentry.snuba.snuba_query_validator import SnubaQueryValidator
from sentry.snuba.subscriptions import update_snuba_query
from sentry.tasks.relay import schedule_invalidate_project_config
Expand Down Expand Up @@ -162,6 +167,12 @@ def _validate_transaction_dataset_deprecation(self, dataset: Dataset) -> None:
"Creation of transaction-based alerts is disabled, as we migrate to the span dataset. Create span-based alerts (dataset: events_analytics_platform) with the is_transaction:true filter instead."
)

def _validate_extrapolation_mode(self, extrapolation_mode: str) -> None:
if extrapolation_mode == ExtrapolationMode.SERVER_WEIGHTED.value:
raise serializers.ValidationError(
"server_weighted extrapolation mode is not supported for new alerts."
)

def get_quota(self) -> DetectorQuota:
organization = self.context.get("organization")
request = self.context.get("request")
Expand Down Expand Up @@ -201,6 +212,31 @@ def is_editing_transaction_dataset(
return True
return False

def is_invalid_extrapolation_mode(
self, snuba_query: SnubaQuery, data_source: SnubaQueryDataSourceType
) -> bool:
if data_source.get("dataset") == Dataset.EventsAnalyticsPlatform:
new_extrapolation_mode = data_source.get(
"extrapolation_mode", snuba_query.extrapolation_mode
)
old_extrapolation_mode = snuba_query.extrapolation_mode
if (
new_extrapolation_mode == ExtrapolationMode.SERVER_WEIGHTED.value
and old_extrapolation_mode != ExtrapolationMode.SERVER_WEIGHTED.value
):
return True
if (
new_extrapolation_mode == ExtrapolationMode.NONE.value
and old_extrapolation_mode != ExtrapolationMode.NONE.value
):
return True
if (
new_extrapolation_mode == ExtrapolationMode.CLIENT_AND_SERVER_WEIGHTED.value
or new_extrapolation_mode == ExtrapolationMode.UNKNOWN.value
):
return False
return False

def update_data_source(self, instance: Detector, data_source: SnubaQueryDataSourceType):
try:
source_instance = DataSource.objects.get(detector=instance)
Expand All @@ -224,6 +260,9 @@ def update_data_source(self, instance: Detector, data_source: SnubaQueryDataSour
"Updates to transaction-based alerts is disabled, as we migrate to the span dataset. Create span-based alerts (dataset: events_analytics_platform) with the is_transaction:true filter instead."
Copy link

@sentry sentry bot Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Type mismatch in extrapolation_mode validation allows bypass when integer values are sent, preventing server_weighted mode restriction.
Severity: CRITICAL | Confidence: 1.00

🔍 Detailed Analysis

A type mismatch occurs in the validation logic for extrapolation_mode in src/sentry/incidents/endpoints/organization_alert_rule_details.py (lines 135-144) and src/sentry/incidents/endpoints/organization_alert_rule_index.py (line 104). When extrapolation_mode is sent as an integer (e.g., 3) in the request data, it is compared against a string representation (e.g., "server_weighted"). This comparison always evaluates to false, silently bypassing the intended validation that prevents users from setting the server_weighted mode.

💡 Suggested Fix

Ensure new_extrapolation_mode is consistently converted to a string or integer before comparison, matching the type of ExtrapolationMode.SERVER_WEIGHTED.name.lower() or .value.

🤖 Prompt for AI Agent 
Review the code at the location below. A potential bug has been identified by an AI
agent.
Verify if this is a real issue. If it is, propose a fix; if not, explain why it's not
valid.

Location: src/sentry/incidents/metric_issue_detector.py#L224

Potential issue: A type mismatch occurs in the validation logic for `extrapolation_mode`
in `src/sentry/incidents/endpoints/organization_alert_rule_details.py` (lines 135-144)
and `src/sentry/incidents/endpoints/organization_alert_rule_index.py` (line 104). When
`extrapolation_mode` is sent as an integer (e.g., `3`) in the request data, it is
compared against a string representation (e.g., `"server_weighted"`). This comparison
always evaluates to false, silently bypassing the intended validation that prevents
users from setting the `server_weighted` mode.

Did we get this right? 👍 / 👎 to inform future reviews.

)

if self.is_invalid_extrapolation_mode(snuba_query, data_source):
raise serializers.ValidationError("Invalid extrapolation mode for this alert type.")
Copy link
Member

@ceorourke ceorourke Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
raise serializers.ValidationError("Invalid extrapolation mode for this alert type.")
raise serializers.ValidationError("Invalid extrapolation mode for this detector type.")


update_snuba_query(
snuba_query=snuba_query,
query_type=data_source.get("query_type", snuba_query.type),
Expand All @@ -234,6 +273,9 @@ def update_data_source(self, instance: Detector, data_source: SnubaQueryDataSour
resolution=timedelta(seconds=data_source.get("resolution", snuba_query.resolution)),
environment=data_source.get("environment", snuba_query.environment),
event_types=data_source.get("event_types", [event_type for event_type in event_types]),
extrapolation_mode=data_source.get(
"extrapolation_mode", snuba_query.extrapolation_mode
),
)

def update(self, instance: Detector, validated_data: dict[str, Any]):
Expand Down Expand Up @@ -267,6 +309,7 @@ def create(self, validated_data: dict[str, Any]):
if "data_sources" in validated_data:
for validated_data_source in validated_data["data_sources"]:
self._validate_transaction_dataset_deprecation(validated_data_source.get("dataset"))
self._validate_extrapolation_mode(validated_data_source.get("extrapolation_mode"))

detector = super().create(validated_data)

Expand Down
7 changes: 7 additions & 0 deletions src/sentry/snuba/snuba_query_validator.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,7 @@
)
from sentry.snuba.metrics.naming_layer.mri import is_mri
from sentry.snuba.models import (
ExtrapolationMode,
QuerySubscription,
QuerySubscriptionDataSourceHandler,
SnubaQuery,
Expand Down Expand Up @@ -86,6 +87,7 @@ class SnubaQueryValidator(BaseDataSourceValidator[QuerySubscription]):
required=False,
allow_empty=False,
)
extrapolation_mode = serializers.IntegerField(required=False, allow_null=True)

class Meta:
model = QuerySubscription
Expand All @@ -98,6 +100,7 @@ class Meta:
"environment",
"event_types",
"group_by",
"extrapolation_mode",
]

data_source_type_handler = QuerySubscriptionDataSourceHandler
Expand Down Expand Up @@ -402,6 +405,9 @@ def _validate_group_by(self, value: Sequence[str] | None) -> Sequence[str] | Non

@override
def create_source(self, validated_data) -> QuerySubscription:
extrapolation_mode = validated_data.get("extrapolation_mode")
if extrapolation_mode:
extrapolation_mode = ExtrapolationMode(extrapolation_mode)
snuba_query = create_snuba_query(
query_type=validated_data["query_type"],
dataset=validated_data["dataset"],
Expand All @@ -412,6 +418,7 @@ def create_source(self, validated_data) -> QuerySubscription:
environment=validated_data["environment"],
event_types=validated_data["event_types"],
group_by=validated_data.get("group_by"),
extrapolation_mode=extrapolation_mode,
)
return create_snuba_subscription(
project=self.context["project"],
Expand Down
19 changes: 18 additions & 1 deletion src/sentry/snuba/subscriptions.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,12 @@
from sentry.models.environment import Environment
from sentry.models.project import Project
from sentry.snuba.dataset import Dataset
from sentry.snuba.models import QuerySubscription, SnubaQuery, SnubaQueryEventType
from sentry.snuba.models import (
ExtrapolationMode,
QuerySubscription,
SnubaQuery,
SnubaQueryEventType,
)
from sentry.snuba.tasks import (
create_subscription_in_snuba,
delete_subscription_from_snuba,
Expand All @@ -27,6 +32,7 @@ def create_snuba_query(
environment: Environment | None,
event_types: Collection[SnubaQueryEventType.EventType] = (),
group_by: Sequence[str] | None = None,
extrapolation_mode: ExtrapolationMode | None = None,
):
"""
Constructs a SnubaQuery which is the postgres representation of a query in snuba
Expand All @@ -52,6 +58,11 @@ def create_snuba_query(
resolution=int(resolution.total_seconds()),
environment=environment,
group_by=group_by,
extrapolation_mode=(
extrapolation_mode.value
if extrapolation_mode is not None
else ExtrapolationMode.UNKNOWN.value
),
)
if not event_types:
if dataset == Dataset.Events:
Expand All @@ -78,6 +89,7 @@ def update_snuba_query(
resolution,
environment,
event_types,
extrapolation_mode=None,
):
"""
Updates a SnubaQuery. Triggers updates to any related QuerySubscriptions.
Expand Down Expand Up @@ -118,6 +130,11 @@ def update_snuba_query(
time_window=int(time_window.total_seconds()),
resolution=int(resolution.total_seconds()),
environment=environment,
extrapolation_mode=(
extrapolation_mode
if extrapolation_mode is not None
else ExtrapolationMode.UNKNOWN.value
),
)
if new_event_types:
SnubaQueryEventType.objects.bulk_create(
Expand Down
18 changes: 18 additions & 0 deletions tests/sentry/incidents/endpoints/test_organization_alert_rule_details.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1416,6 +1416,24 @@ def test_change_name_of_existing_alert(self) -> None:
)
assert len(audit_log_entry) == 1

def test_invalid_extrapolation_mode(self) -> None:
self.create_member(
user=self.user, organization=self.organization, role="owner", teams=[self.team]
)
self.login_as(self.user)
alert_rule = self.alert_rule
# We need the IDs to force update instead of create, so we just get the rule using our own API. Like frontend would.
alert_rule_dict = deepcopy(self.alert_rule_dict)
alert_rule_dict["dataset"] = "events_analytics_platform"
alert_rule_dict["alertType"] = "eap_metrics"
alert_rule_dict["extrapolation_mode"] = "server_weighted"

with self.feature("organizations:incidents"):
resp = self.get_error_response(
self.organization.slug, alert_rule.id, status_code=400, **alert_rule_dict
)
assert resp.data[0] == "Invalid extrapolation mode for this alert type."


class AlertRuleDetailsSlackPutEndpointTest(AlertRuleDetailsBase):
method = "put"
Expand Down
9 changes: 9 additions & 0 deletions tests/sentry/incidents/endpoints/test_organization_alert_rule_index.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1705,6 +1705,15 @@ def test_generic_metrics_dataset_deprecation_validation(self) -> None:
== "Creation of transaction-based alerts is disabled, as we migrate to the span dataset. Create span-based alerts (dataset: events_analytics_platform) with the is_transaction:true filter instead."
)

def test_invalid_extrapolation_mode(self) -> None:
data = deepcopy(self.alert_rule_dict)
data["dataset"] = "events_analytics_platform"
data["alertType"] = "eap_metrics"
data["extrapolation_mode"] = "server_weighted"
with self.feature(["organizations:incidents", "organizations:performance-view"]):
resp = self.get_error_response(self.organization.slug, status_code=400, **data)
assert resp.data[0] == "server_weighted extrapolation mode is not supported for new alerts."


@freeze_time()
class AlertRuleCreateEndpointTestCrashRateAlert(AlertRuleIndexBase):
Expand Down
72 changes: 72 additions & 0 deletions tests/sentry/incidents/endpoints/validators/test_validators.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,7 @@
)
from sentry.snuba.dataset import Dataset
from sentry.snuba.models import (
ExtrapolationMode,
QuerySubscription,
QuerySubscriptionDataSourceHandler,
SnubaQuery,
Expand Down Expand Up @@ -617,3 +618,74 @@ def test_transaction_dataset_deprecation_generic_metrics_update(self) -> None:
with_feature("organizations:discover-saved-queries-deprecation"),
):
update_validator.save()

def test_invalid_extrapolation_mode_create(self) -> None:
Copy link
Member

@ceorourke ceorourke Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should a valid extrapolation mode be added to any of the existing tests? This isn't live yet but I have an open PR with a simple valid update test:

sentry/tests/sentry/incidents/endpoints/validators/test_validators.py

Line 606 in 7c65374

def test_update_with_valid_data(self) -> None:

Copy link
Member Author

@nikkikapadia nikkikapadia Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we have a default in place if there is no explicit extrapolation mode passed so it's not necessary to be passed in 😌

data = {
**self.valid_data,
"dataSources": [
{
"queryType": SnubaQuery.Type.PERFORMANCE.value,
"dataset": Dataset.EventsAnalyticsPlatform.value,
"query": "test query",
"aggregate": "count()",
"timeWindow": 3600,
"environment": self.environment.name,
"eventTypes": [SnubaQueryEventType.EventType.TRACE_ITEM_SPAN.name.lower()],
"extrapolation_mode": ExtrapolationMode.SERVER_WEIGHTED.value,
},
],
}

validator = MetricIssueDetectorValidator(data=data, context=self.context)
assert validator.is_valid(), validator.errors
with self.assertRaisesMessage(
ValidationError,
expected_message="server_weighted extrapolation mode is not supported for new alerts.",
):
validator.save()

def test_invalid_extrapolation_mode_update(self) -> None:
data = {
**self.valid_data,
"dataSources": [
{
"queryType": SnubaQuery.Type.PERFORMANCE.value,
"dataset": Dataset.EventsAnalyticsPlatform.value,
"query": "test query",
"aggregate": "count()",
"timeWindow": 3600,
"environment": self.environment.name,
"eventTypes": [SnubaQueryEventType.EventType.TRACE_ITEM_SPAN.name.lower()],
"extrapolation_mode": ExtrapolationMode.CLIENT_AND_SERVER_WEIGHTED.value,
},
],
}

validator = MetricIssueDetectorValidator(data=data, context=self.context)
assert validator.is_valid(), validator.errors

detector = validator.save()

update_data = {
"dataSources": [
{
"queryType": SnubaQuery.Type.PERFORMANCE.value,
"dataset": Dataset.EventsAnalyticsPlatform.value,
"query": "updated query",
"aggregate": "count()",
"timeWindow": 3600,
"environment": self.environment.name,
"eventTypes": [SnubaQueryEventType.EventType.TRACE_ITEM_SPAN.name.lower()],
"extrapolation_mode": ExtrapolationMode.SERVER_WEIGHTED.value,
}
],
}
update_validator = MetricIssueDetectorValidator(
instance=detector, data=update_data, context=self.context, partial=True
)
assert update_validator.is_valid(), update_validator.errors
with self.assertRaisesMessage(
ValidationError,
expected_message="Invalid extrapolation mode for this alert type.",
):
update_validator.save()
Loading