fix: add batching

Infisical · Nov 2, 2024 · 1cd17a4 · 1cd17a4
1 parent 7245aaa
commit 1cd17a4
Showing 1 changed file with 40 additions and 10 deletions.
diff --git a/backend/src/db/migrations/20241014084900_identity-multiple-auth-methods.ts b/backend/src/db/migrations/20241014084900_identity-multiple-auth-methods.ts
@@ -2,6 +2,8 @@ import { Knex } from "knex";
 
 import { TableName } from "../schemas";
 
+const BATCH_SIZE = 10000;
+
 export async function up(knex: Knex): Promise<void> {
   const hasAuthMethodColumnAccessToken = await knex.schema.hasColumn(TableName.IdentityAccessToken, "authMethod");
 
@@ -10,16 +12,44 @@ export async function up(knex: Knex): Promise<void> {
       t.string("authMethod").nullable();
     });
 
-    // Backfilling: Update the authMethod column in the IdentityAccessToken table to match the authMethod of the Identity
-    await knex(TableName.IdentityAccessToken).update({
-      // eslint-disable-next-line @typescript-eslint/ban-ts-comment
-      // @ts-ignore because generate schema happens after this
-      authMethod: knex(TableName.Identity)
-        .select("authMethod")
-        .whereRaw(`${TableName.IdentityAccessToken}."identityId" = ${TableName.Identity}.id`)
-        .whereNotNull("authMethod")
-        .first()
-    });
+    // Get total count of records to process
+    // eslint-disable-next-line @typescript-eslint/ban-ts-comment
+    // @ts-ignore because count is a string
+    const count = (await knex(TableName.IdentityAccessToken).count("id as count").first()) as { count: string };
+
+    if (!count) {
+      throw new Error("Failed to find count of identity access tokens");
+    }
+
+    const totalRecords = parseInt(count.count, 10);
+    // Process in batches
+    for (let offset = 0; offset < totalRecords; offset += BATCH_SIZE) {
+      // ! Get the current access tokens to process
+      // eslint-disable-next-line no-await-in-loop
+      const batchIds = await knex(TableName.IdentityAccessToken)
+        .select("id")
+        .limit(BATCH_SIZE)
+        .offset(offset)
+        .pluck("id");
+
+      // ! Update the auth method column in batches for the current batch
+      // eslint-disable-next-line no-await-in-loop
+      await knex(TableName.IdentityAccessToken)
+        .whereIn("id", batchIds)
+        .update({
+          // eslint-disable-next-line @typescript-eslint/ban-ts-comment
+          // @ts-ignore because generate schema happens after this
+          authMethod: knex(TableName.Identity)
+            .select("authMethod")
+            .whereRaw(`${TableName.IdentityAccessToken}."identityId" = ${TableName.Identity}.id`)
+            .whereNotNull("authMethod")
+            .first()
+        });
+
+      // Log progress
+      // eslint-disable-next-line no-console
+      console.log(`Processed ${Math.min(offset + BATCH_SIZE, totalRecords)} of ${totalRecords} records`);
+    }
 
     // ! We delete all access tokens where the identity has no auth method set!
     // ! Which means un-configured identities that for some reason have access tokens, will have their access tokens deleted.