realm_settings: Send event on commit in do_set...authentication_methods.

Earlier, we were using 'send_event' in 'do_set_realm_authentication_methods' which can lead to a situation where we enqueue events but there's an error at a later stage in the codepath using this function. Events should not be sent until we know we're not rolling back. Fixes part of #30489.
2024-08-22 14:39:18 +05:30 · 2024-08-22 14:39:18 +05:30 · c0dc005d05
parent 63064e926b
commit c0dc005d05
1 changed files with 21 additions and 21 deletions
--- a/zerver/actions/realm_settings.py
+++ b/zerver/actions/realm_settings.py
@ -334,31 +334,31 @@ def validate_plan_for_authentication_methods(
            )


+@transaction.atomic(savepoint=False)
 def do_set_realm_authentication_methods(
    realm: Realm, authentication_methods: dict[str, bool], *, acting_user: UserProfile | None
 ) -> None:
    old_value = realm.authentication_methods_dict()
-    with transaction.atomic():
-        for key, value in authentication_methods.items():
-            # This does queries in a loop, but this isn't a performance sensitive
-            # path and is only run rarely.
-            if value:
-                RealmAuthenticationMethod.objects.get_or_create(realm=realm, name=key)
-            else:
-                RealmAuthenticationMethod.objects.filter(realm=realm, name=key).delete()
+    for key, value in authentication_methods.items():
+        # This does queries in a loop, but this isn't a performance sensitive
+        # path and is only run rarely.
+        if value:
+            RealmAuthenticationMethod.objects.get_or_create(realm=realm, name=key)
+        else:
+            RealmAuthenticationMethod.objects.filter(realm=realm, name=key).delete()

-        updated_value = realm.authentication_methods_dict()
-        RealmAuditLog.objects.create(
-            realm=realm,
-            event_type=RealmAuditLog.REALM_PROPERTY_CHANGED,
-            event_time=timezone_now(),
-            acting_user=acting_user,
-            extra_data={
-                RealmAuditLog.OLD_VALUE: old_value,
-                RealmAuditLog.NEW_VALUE: updated_value,
-                "property": "authentication_methods",
-            },
-        )
+    updated_value = realm.authentication_methods_dict()
+    RealmAuditLog.objects.create(
+        realm=realm,
+        event_type=RealmAuditLog.REALM_PROPERTY_CHANGED,
+        event_time=timezone_now(),
+        acting_user=acting_user,
+        extra_data={
+            RealmAuditLog.OLD_VALUE: old_value,
+            RealmAuditLog.NEW_VALUE: updated_value,
+            "property": "authentication_methods",
+        },
+    )

    event_data = dict(
        authentication_methods=get_realm_authentication_methods_for_page_params_api(
@ -371,7 +371,7 @@ def do_set_realm_authentication_methods(
        property="default",
        data=event_data,
    )
-    send_event(realm, event, active_user_ids(realm.id))
+    send_event_on_commit(realm, event, active_user_ids(realm.id))


 def do_set_realm_stream(