refactor(BA-5650-D): switch session repository to owner_id

``SessionRepository`` and the underlying ``SessionDBSource`` now take
``owner_id: UUID`` on every method that previously accepted
``owner_access_key: AccessKey``. Affects:

- ``get_session_validated``
- ``match_sessions``
- ``update_session_name``
- ``find_dependency_sessions`` / ``_find_dependent_sessions``
- ``get_target_session_ids``
- ``get_session_with_group``

The matching ``dependency_graph`` helpers and ``creators`` are updated
in lockstep. Service-layer callers still pass ``owner_access_key``
temporarily; they will be migrated in the next slice.

Author: jopemachine

changes/BA-5650-D.misc.md

@@ -0,0 +1 @@
+Collapse `SessionRepository` / `SessionDBSource` signatures to take `owner_id: UUID` instead of `owner_access_key: AccessKey`. No external behavior change; downstream service callers are updated in a later slice.

src/ai/backend/manager/repositories/session/creators.py

@@ -17,7 +17,7 @@ class SessionRowCreatorSpec(CreatorSpec[SessionRow]):
     This spec is designed for retrofitting existing code that already builds
     SessionRow instances. It simply returns the provided row in build_row().
 
-    For scope information needed by RBACEntityCreator, use the row's user_uuid
+    For scope information needed by RBACEntityCreator, use the row's owner_id
     field as the scope_id with ScopeType.USER.
     """
 

src/ai/backend/manager/repositories/session/db_source/db_source.py

@@ -63,7 +63,7 @@ async def get_session_owner(self, session_id: str | SessionId) -> UserData:
     async def get_session_validated(
         self,
         session_name_or_id: str | SessionId,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
         kernel_loading_strategy: KernelLoadingStrategy = KernelLoadingStrategy.MAIN_KERNEL_ONLY,
         allow_stale: bool = False,
         eager_loading_op: Sequence[_AbstractLoad] | None = None,
@@ -73,7 +73,7 @@ async def get_session_validated(
             return await SessionRow.get_session(
                 db_sess,
                 session_name_or_id,
-                owner_access_key,
+                owner_id=owner_id,
                 kernel_loading_strategy=kernel_loading_strategy,
                 allow_stale=allow_stale,
                 eager_loading_op=list(eager_loading_op) if eager_loading_op else None,
@@ -82,13 +82,13 @@ async def get_session_validated(
     async def match_sessions(
         self,
         id_or_name_prefix: str,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> list[SessionRow]:
         async with self._db.begin_readonly_session_read_committed() as db_sess:
             return await SessionRow.match_sessions(
                 db_sess,
                 id_or_name_prefix,
-                owner_access_key,
+                owner_id=owner_id,
             )
 
     async def get_session_to_determine_status(
@@ -132,15 +132,15 @@ async def update_session_name(
         self,
         session_name_or_id: str | SessionId,
         new_name: str,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> SessionRow:
         async def _update(db_session: AsyncSession) -> SessionRow:
             # Check if new name already exists for this owner
             try:
                 await SessionRow.get_session(
                     db_session,
                     new_name,
-                    owner_access_key,
+                    owner_id=owner_id,
                     kernel_loading_strategy=KernelLoadingStrategy.NONE,
                 )
                 raise SessionAlreadyExists(f"Session with name '{new_name}' already exists")
@@ -151,7 +151,7 @@ async def _update(db_session: AsyncSession) -> SessionRow:
             session_row = await SessionRow.get_session(
                 db_session,
                 session_name_or_id,
-                owner_access_key,
+                owner_id=owner_id,
                 kernel_loading_strategy=KernelLoadingStrategy.ALL_KERNELS,
             )
 
@@ -305,13 +305,13 @@ async def modify_session(
             if session_row is None:
                 raise SessionNotFound(f"Session not found (id:{session_id})")
 
-            if session_name and session_row.access_key is not None:
+            if session_name and session_row.user_uuid is not None:
                 # Check the owner of the target session has any session with the same name
                 try:
                     sess = await SessionRow.get_session(
                         db_session,
                         session_name,
-                        AccessKey(session_row.access_key),
+                        owner_id=session_row.user_uuid,
                     )
                 except SessionNotFound:
                     pass
@@ -371,7 +371,7 @@ async def _find_dependent_sessions(
         self,
         db_sess: AsyncSession,
         root_session_name_or_id: str | uuid.UUID,
-        access_key: AccessKey,
+        owner_id: uuid.UUID,
         allow_stale: bool = False,
     ) -> tuple[uuid.UUID, set[uuid.UUID]]:
         """
@@ -401,7 +401,7 @@ async def _find_recursive_dependencies(session_id: uuid.UUID) -> set[uuid.UUID]:
         root_session = await SessionRow.get_session(
             db_sess,
             root_session_name_or_id,
-            access_key=access_key,
+            owner_id=owner_id,
             allow_stale=allow_stale,
         )
         root_session_id = cast(uuid.UUID, root_session.id)
@@ -412,14 +412,14 @@ async def _find_recursive_dependencies(session_id: uuid.UUID) -> set[uuid.UUID]:
     async def get_target_session_ids(
         self,
         session_name_or_id: str | uuid.UUID,
-        access_key: AccessKey,
+        owner_id: uuid.UUID,
         recursive: bool = False,
     ) -> list[SessionId]:
         """
         Get list of session IDs including dependent sessions if recursive.
 
         :param session_name_or_id: Name or ID of the primary session
-        :param access_key: Access key of the session owner
+        :param owner_id: User UUID of the session owner
         :param recursive: If True, include dependent sessions
         :return: List of session IDs
         """
@@ -430,7 +430,7 @@ async def get_target_session_ids(
                     root_id, dependent_ids = await self._find_dependent_sessions(
                         db_sess,
                         session_name_or_id,
-                        access_key,
+                        owner_id,
                         allow_stale=True,
                     )
                     # Return dependent sessions first, then root session
@@ -441,7 +441,7 @@ async def get_target_session_ids(
                     session = await SessionRow.get_session(
                         db_sess,
                         session_name_or_id,
-                        access_key,
+                        owner_id=owner_id,
                         kernel_loading_strategy=KernelLoadingStrategy.NONE,
                         allow_stale=True,
                     )
@@ -454,19 +454,19 @@ async def get_target_session_ids(
     async def find_dependency_sessions(
         self,
         session_name_or_id: uuid.UUID | str,
-        access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> dict[str, list[Any] | str]:
         async with self._db.begin_readonly_session_read_committed() as db_sess:
             return await find_dependency_sessions(
                 session_name_or_id,
                 db_sess,
-                access_key,
+                owner_id,
             )
 
     async def get_session_with_group(
         self,
         session_name_or_id: str | SessionId,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
         kernel_loading_strategy: KernelLoadingStrategy = KernelLoadingStrategy.MAIN_KERNEL_ONLY,
         allow_stale: bool = False,
     ) -> SessionRow:
@@ -475,7 +475,7 @@ async def get_session_with_group(
             return await SessionRow.get_session(
                 db_sess,
                 session_name_or_id,
-                owner_access_key,
+                owner_id=owner_id,
                 kernel_loading_strategy=kernel_loading_strategy,
                 allow_stale=allow_stale,
                 eager_loading_op=[selectinload(SessionRow.group)],
@@ -484,14 +484,14 @@ async def get_session_with_group(
     async def get_session_with_routing_minimal(
         self,
         session_name_or_id: str | SessionId,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> SessionRow:
         """Get session with minimal routing information"""
         async with self._db.begin_readonly_session_read_committed() as db_sess:
             return await SessionRow.get_session(
                 db_sess,
                 session_name_or_id,
-                owner_access_key,
+                owner_id=owner_id,
                 kernel_loading_strategy=KernelLoadingStrategy.MAIN_KERNEL_ONLY,
                 eager_loading_op=[
                     selectinload(SessionRow.routing).options(noload("*")),

src/ai/backend/manager/repositories/session/dependency_graph.py

@@ -13,7 +13,6 @@
 import sqlalchemy as sa
 from sqlalchemy.ext.asyncio import AsyncSession as SASession
 
-from ai.backend.common.types import AccessKey
 from ai.backend.manager.errors.kernel import InvalidSessionData, SessionNotFound
 from ai.backend.manager.models.kernel import kernels
 from ai.backend.manager.models.session import SessionDependencyRow, SessionRow
@@ -23,12 +22,12 @@
 async def _find_dependency_sessions(
     session_name_or_id: UUID | str,
     db_session: SASession,
-    access_key: AccessKey,
+    owner_id: UUID,
 ) -> dict[str, list[Any] | str]:
     sessions = await SessionRow.match_sessions(
         db_session,
         session_name_or_id,
-        access_key=access_key,
+        owner_id=owner_id,
     )
 
     if len(sessions) < 1:
@@ -66,7 +65,7 @@ async def _find_dependency_sessions(
         "status": str(kernel_query_result[0]),
         "status_changed": str(kernel_query_result[1]),
         "depends_on": [
-            await _find_dependency_sessions(dependency_session_id, db_session, access_key)
+            await _find_dependency_sessions(dependency_session_id, db_session, owner_id)
             for dependency_session_id in dependency_session_ids
         ],
     }
@@ -77,15 +76,15 @@ async def _find_dependency_sessions(
 async def find_dependency_sessions(
     session_name_or_id: UUID | str,
     db_session: SASession,
-    access_key: AccessKey,
+    owner_id: UUID,
 ) -> dict[str, list[Any] | str]:
-    return await _find_dependency_sessions(session_name_or_id, db_session, access_key)
+    return await _find_dependency_sessions(session_name_or_id, db_session, owner_id)
 
 
 async def find_dependent_sessions(
     root_session_name_or_id: str | UUID,
     db_session: SASession,
-    access_key: AccessKey,
+    owner_id: UUID,
     *,
     allow_stale: bool = False,
 ) -> set[UUID]:
@@ -108,7 +107,7 @@ async def _find_dependent_sessions(session_id: UUID) -> set[UUID]:
     root_session = await SessionRow.get_session(
         db_session,
         root_session_name_or_id,
-        access_key=access_key,
+        owner_id=owner_id,
         allow_stale=allow_stale,
     )
     return await _find_dependent_sessions(cast(UUID, root_session.id))

src/ai/backend/manager/repositories/session/repository.py

@@ -57,14 +57,14 @@ async def get_session_owner(self, session_id: str | SessionId) -> UserData:
     async def get_session_validated(
         self,
         session_name_or_id: str | SessionId,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
         kernel_loading_strategy: KernelLoadingStrategy = KernelLoadingStrategy.MAIN_KERNEL_ONLY,
         allow_stale: bool = False,
         eager_loading_op: Sequence[_AbstractLoad] | None = None,
     ) -> SessionRow:
         return await self._db_source.get_session_validated(
             session_name_or_id,
-            owner_access_key,
+            owner_id,
             kernel_loading_strategy,
             allow_stale,
             eager_loading_op,
@@ -74,9 +74,9 @@ async def get_session_validated(
     async def match_sessions(
         self,
         id_or_name_prefix: str,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> list[SessionRow]:
-        return await self._db_source.match_sessions(id_or_name_prefix, owner_access_key)
+        return await self._db_source.match_sessions(id_or_name_prefix, owner_id)
 
     @session_repository_resilience.apply()
     async def get_session_to_determine_status(
@@ -104,11 +104,9 @@ async def update_session_name(
         self,
         session_name_or_id: str | SessionId,
         new_name: str,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> SessionRow:
-        return await self._db_source.update_session_name(
-            session_name_or_id, new_name, owner_access_key
-        )
+        return await self._db_source.update_session_name(session_name_or_id, new_name, owner_id)
 
     @session_repository_resilience.apply()
     async def get_container_registry(
@@ -210,52 +208,48 @@ async def query_userinfo(
     async def get_target_session_ids(
         self,
         session_name_or_id: str | uuid.UUID,
-        access_key: AccessKey,
+        owner_id: uuid.UUID,
         recursive: bool = False,
     ) -> list[SessionId]:
         """
         Get list of session IDs including dependent sessions if recursive.
 
         :param session_name_or_id: Name or ID of the primary session
-        :param access_key: Access key of the session owner
+        :param owner_id: User UUID of the session owner
         :param recursive: If True, include dependent sessions
         :return: List of session IDs
         """
-        return await self._db_source.get_target_session_ids(
-            session_name_or_id, access_key, recursive
-        )
+        return await self._db_source.get_target_session_ids(session_name_or_id, owner_id, recursive)
 
     @session_repository_resilience.apply()
     async def find_dependency_sessions(
         self,
         session_name_or_id: uuid.UUID | str,
-        access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> dict[str, list[Any] | str]:
-        return await self._db_source.find_dependency_sessions(session_name_or_id, access_key)
+        return await self._db_source.find_dependency_sessions(session_name_or_id, owner_id)
 
     @session_repository_resilience.apply()
     async def get_session_with_group(
         self,
         session_name_or_id: str | SessionId,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
         kernel_loading_strategy: KernelLoadingStrategy = KernelLoadingStrategy.MAIN_KERNEL_ONLY,
         allow_stale: bool = False,
     ) -> SessionRow:
         """Get session with group information eagerly loaded"""
         return await self._db_source.get_session_with_group(
-            session_name_or_id, owner_access_key, kernel_loading_strategy, allow_stale
+            session_name_or_id, owner_id, kernel_loading_strategy, allow_stale
         )
 
     @session_repository_resilience.apply()
     async def get_session_with_routing_minimal(
         self,
         session_name_or_id: str | SessionId,
-        owner_access_key: AccessKey,
+        owner_id: uuid.UUID,
     ) -> SessionRow:
         """Get session with minimal routing information"""
-        return await self._db_source.get_session_with_routing_minimal(
-            session_name_or_id, owner_access_key
-        )
+        return await self._db_source.get_session_with_routing_minimal(session_name_or_id, owner_id)
 
     @session_repository_resilience.apply()
     async def search(