Introduce a new, simplified documentation scraping backend

[Yantrio]

What I am calling "backendv2". This is intended to be a simpler, more maintainable replacement for the existing backend, with improved performance and reliability.

This approach aims to reduce some of the layers of abstraction but also make much better use of go worktrees for efficient git operations.

It also introduces the idea of using a database to track a lot of the state of the system, rather than relying on filesystem state and S3 objects.

This PR also

• Adds support for new commands to regenerate indices
• Adds support for ephemeral value documentation scraping
• Adds GitHub license checking as fallback to our existing license detection
• Uses the new tofu show -json module=<PATH> to get module metadata
• Adds OTEL throughout so we can monitor it better

Checklist

• I have read the contribution guide.
• I have not used an AI coding assistant to create this PR.
• My contribution is compatible with the MPL-2.0 license and I have provided a DCO sign-off on all my commits.
• I have written all code in this PR myself OR I have marked all code I have not written myself (including modified code, e.g. copied from other places and then modified) with a comment indicating where it came from.

[cloudflare-workers-and-pages]

Deploying registry-ui with    Cloudflare Pages

Latest commit:	e56e071
Status:	✅  Deploy successful!
Preview URL:	https://98f1690a.registry-ui-dxi.pages.dev
Branch Preview URL:	https://backendv2.registry-ui-dxi.pages.dev

View logs

[cam72cam]

Given that nightly support was merged, we should use it here + dogfood it.

[Yantrio]

I know that we're actively maintaining tofudl for the language server as well, but I wasn't sure if we were recommending that it was the right way to download nightlies.

This ties into a conversation I had with @diofeher thismorning. He made a small comment about nightlies and their support here: opentofu/opentofu#3193 (comment)

[Gogotchuri]

I agree here.
On top of that, the version I've implemented in tofudl has an additional benefit of SHA verification.

[cam72cam]

Do we want to store all the results in the DB and filter there instead?

[Yantrio]

Hmm, maybe I could store all results over a certain threshold, thats not a bad idea.

[cam72cam]

Do we want to try to wipe the dir and start over here?

[Yantrio]

I think we can wipe the dir, I don't think we need to start over and re-clone again at this level. maybe we could add retries to cloning though.

[cam72cam]

suggestion: EnsureCloned(ctx)

[Yantrio]

I actually renamed this from EnsureCloned to Clone with a different method to check that it was cloned for claification, but im happy to go with EnsureCloned if you want.

[cam72cam]

This signature could benefit from some type aliases :)

[cam72cam]

Is there a reason you are not using a more clearly defined structure here?

[Yantrio]

I want to test it with a lot of providers first, and against the UI. Until i've tested that I wanted to keep it flexible for now.

I've added a TODO that we should introduce better typing in this PR

[yottta]

Overall, great work!

Obviously, with this amount of changes, there are a lot of things to comment on, so I tested most of the commands and reviewed the code that is reachable from those.
I will do a full review later, when it's marked as ready for review.

OTEL Consistency

grep -r "tracer.Start(.*)" . shows a lack of consistency in the tracer names.

Things I had to change to make this work on my local machine

diff --git a/backendv2/pkg/config/bucket.go b/backendv2/pkg/config/bucket.go
index be6192f..26f95a8 100644
--- a/backendv2/pkg/config/bucket.go
+++ b/backendv2/pkg/config/bucket.go
@@ -31,9 +31,9 @@ func (c *BucketConfig) Validate() error {
        if c.SecretAccessKey == "" {
                return fmt.Errorf("bucket.secretAccessKey is required")
        }
-       if c.Endpoint == "" {
-               return fmt.Errorf("bucket.endpoint is required")
-       }
+       // if c.Endpoint == "" {
+       //      return fmt.Errorf("bucket.endpoint is required")
+       // }
 
        // Set default region if empty
        if c.Region == "" {
@@ -50,7 +50,7 @@ func (c *BucketConfig) GetClient(ctx context.Context) (*s3.Client, error) {
 
        cfg, err := awsconfig.LoadDefaultConfig(ctx,
                awsconfig.WithCredentialsProvider(credentials.NewStaticCredentialsProvider(c.AccessKeyID, c.SecretAccessKey, "")),
-               awsconfig.WithRegion("auto"),
+               awsconfig.WithRegion(c.Region),
        )
        if err != nil {
                slog.ErrorContext(ctx, "Failed to load AWS config", "error", err)
@@ -61,6 +61,9 @@ func (c *BucketConfig) GetClient(ctx context.Context) (*s3.Client, error) {
        otelaws.AppendMiddlewares(&cfg.APIOptions)
 
        client := s3.NewFromConfig(cfg, func(o *s3.Options) {
+               if c.Endpoint == "" {
+                       return
+               }
                o.BaseEndpoint = aws.String(c.Endpoint)
        })

Additionally, had to:

• comment out ID: 25 from migration because of a query that still uses tag_created_at that was dropped in that version.
• manually run insert into licenses(spdx_id, name) values ('Apache-2.0', 'apache');
  • do you plan to have a seed for these licenses? 🤔 Otherwise, when inserting into the provider_version_licenses or module_version_licenses, there will be a fk violation

[yottta]

Any particular reason to use both log and slog? Using log for the os.Exit() inside Fatalf? 🤔

[Yantrio]

That's it exactly. What do you think about keeping it? or would you prefer i use slog + explicit os.exit?

[yottta]

To be honest, yes, if it's only for that.
For the maintenance purpose, I would say that the intent of the log.Fatalf is unclear here and we can end up with somebody removing that line strictly because "this is duplicated with the log above".
A call to os.Exit() is definitive in its intent. Worse case, create a common function somewhere and log with slog and call os.Exit. 🤷

[yottta]

Is this meant to format the keys as the ones in config.example.yaml?

If so, isn't that ToLower will mess everything up?

[yottta]

Since this particular tracer name opentofu-registry-backend is scattered all over the place, wouldn't you think that would benefit of having a common function somewhere to build this?
I am also thinking of opentofu/opentofu#3448

[yottta]

Probably it's me, but man these args are confusing for modules 😢
Namespace, makes sense, but name and target is not clear at all.

[diofeher]

Indeed, I've never understood why the need to put the target (e.g. alicloud) in the end, like: https://search.opentofu.org/module/terraform-alicloud-modules/vpn-gateway/alicloud/latest

[yottta]

failed to store module version: ERROR: column "tag_created_at" of relation "module_versions" does not exist (SQLSTATE 42703)

And I ran migrate up

[yottta]

It is still used in StoreModuleVersion

[yottta]

Message = {string} "insert or update on table "module_version_licenses" violates foreign key constraint "module_version_licenses_license_spdx_id_fkey""

Detail = {string} "Key (license_spdx_id)=(Apache-2.0) is not present in table "licenses"."

Running sync-module --namespace=coralogix --name=aws --target=coralogix --version=v3.10.8

[yottta]

At the line 128, we scrape the docs and we scrape those again here? 🤔 Wouldn't be more performant to just store what was already scrapped?

[diofeher]

I'm wondering if we should include some docs indicating that this is the default region for R2 to make it clear that this is the expected default system, rather than AWS.

[diofeher]

But now I'm uncertain about my previous comment since this seems to be heavily tied to AWS - although I think this would work fine for S3-like systems.

[diofeher]

Suggested change

	// make the directory if it doesnt eixst
	// make the directory if it doesn't exist

[diofeher]

Is this comment necessary? I mean, is this a call to action to implement later, but it's not needed at this point in time, or is it just saying that we don't ever need to validate telemetry config?

[diofeher]

Can we describe these thresholds more clearly and explain how they're calculated?

[diofeher]

Do you think there's another way to rebuild this query without duplicating it only because of the parent's fork information?

[diofeher]

Suggested change

	Expressions map[string]any `json:"expressions,omitempty"`
	Expressions map[string]expression `json:"expressions,omitempty"`

Shouldn't it be like this?

[diofeher]

This function looks very strange to me. I'm not sure what it's doing, and the code paths look too complicated.

[diofeher]

What is the reason for skipping this one? It's not clear to me

[diofeher]

I've seen this condition in other places but I'm not sure why it's needed and the motivation of the assignment

[diofeher]

Even though the backend appears to be working, I found it very hard to review a PR this size. At least separating the PRs by package would make it easier to review.

That being said, I like the direction the backend is going, the new functionality is really needed, and the architecture seems to fit our needs better.

EDIT: Sorry for the request for changes, I just noticed it's a draft 🤦