Skip to content

Anonymous: Add configurable device limit#12

Open
zaibkhan wants to merge 1 commit into
enhance-anonymous-accessfrom
implement-device-limits
Open

Anonymous: Add configurable device limit#12
zaibkhan wants to merge 1 commit into
enhance-anonymous-accessfrom
implement-device-limits

Conversation

@zaibkhan

@zaibkhan zaibkhan commented Sep 9, 2025

Copy link
Copy Markdown

Mirrors ai-code-review-evaluation#1 for like-for-like benchmarking.

  • Base: enhance-anonymous-access
  • Head: implement-device-limits

Original PR excerpt:

Test 1

@Jguer @eleijonmarck
Anonymous: Add configurable device limit (#79265)
3647ba7 
* Anonymous: Add device limiter

* break auth if limit reached

* fix typo

* refactored const to make it clearer with expiration

* anon device limit for config

---------

Co-authored-by: Eric Leijonmarck <eric.leijonmarck@gmail.com>
@codoki-ai codoki-ai deleted a comment from codoki-pr-intelligence Bot Sep 9, 2025
@codoki-pr-intelligence

codoki-pr-intelligence Bot commented Sep 9, 2025
edited
Loading

Copy link
Copy Markdown

Codoki PR Review

Summary: Add anonymous device limit, expose in runtime config
What’s good: Minimal, backward-compatible addition of a new config field for anonymous device limits.
Review Status: ❌ Requires changes
Overall Priority: High
Review Update:
• Coverage: Reviewed all 11 files across 2 batches

Issues (Critical & High only)

Severity Issue Why it matters
High Compatibility — Postgres upsert uses RETURNING with Exec (likely runtime ... …/anonstore/database.go
Using Exec with a RETURNING clause on Postgres typically fails (pq: cannot use Exec with a query that returns rows). Since the returned id is unused, drop RETURNING to avoid runtime errors on Postgres.

Showing top 1 issues. Critical: 0, High: 1. See inline suggestions for more.

Key Feedback (click to expand)
  • Needs improvement: Ensure this field is consistently wired through frontend settings and typed interfaces so downstream consumers can rely on it.
  • Open questions: What is the expected behavior when the limit is unset vs. 0 (unlimited)? Please clarify to avoid ambiguous UI/logic.

Confidence: 3/5 — Needs work before merge (1 high · status: Requires changes)

React with 👍 or 👎 if you found this review useful.

codoki-pr-intelligence[bot]
codoki-pr-intelligence Bot reviewed Sep 9, 2025
View reviewed changes
Comment thread pkg/services/anonymous/anonimpl/client.go
newCtx, cancel := context.WithTimeout(context.Background(), timeoutTag)
defer cancel()
if err := a.anonDeviceService.TagDevice(newCtx, httpReqCopy, anonymous.AnonDeviceUI); err != nil {
a.log.Warn("Failed to tag anonymous session", "error", err)

@codoki-pr-intelligence codoki-pr-intelligence Bot Sep 9, 2025

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔷 Medium: TagDevice now runs synchronously in the auth path; a slow DB will delay authentication. Wrap the call in a short timeout to keep auth responsive while still enforcing the device limit. You'll also need to import time.

suggestion
ctxTag, cancel := context.WithTimeout(ctx, 2*time.Second)
defer cancel()
if err := a.anonDeviceService.TagDevice(ctxTag, httpReqCopy, anonymous.AnonDeviceUI); err != nil {

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@codoki-pr-intelligence codoki-pr-intelligence[bot] codoki-pr-intelligence[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@zaibkhan @Jguer