Skip to content

[XTA-15079] Add SPOG ?o= routing support and fix final-flush auth on close#391

Merged
samikshya-db merged 6 commits into
mainfrom
spog-support
May 25, 2026
Merged

[XTA-15079] Add SPOG ?o= routing support and fix final-flush auth on close#391
samikshya-db merged 6 commits into
mainfrom
spog-support

Conversation

@samikshya-db
Copy link
Copy Markdown
Collaborator

@samikshya-db samikshya-db commented May 23, 2026
edited
Loading

Summary

Ports the SPOG (Single Panel of Glass) routing fix from
databricks/databricks-jdbc#1316
to the Node.js driver, and fixes a related close-ordering bug uncovered
while validating the port against a real SPOG host.

Change 1: SPOG header injection

SPOG replaces workspace-specific hostnames with account-level vanity URLs.
When httpPath carries ?o=<workspaceId>, endpoints that don't include
the workspace in their URL path need the workspace conveyed via the
x-databricks-org-id header instead.

  • Parse ?o=<digits> out of httpPath in DBSQLClient.connect() and
    stash the org-id as x-databricks-org-id on a new
    ClientConfig.customHeaders field. A user-supplied customHeaders
    entry (case-insensitively keyed) takes precedence.
  • DatabricksTelemetryExporter spreads config.customHeaders into the
    outgoing POST headers; auth headers still win on collision.
  • FeatureFlagCache does the same for the feature-flag GET.
  • ConnectionOptions.customHeaders exposed so callers can also inject
    their own out-of-band headers.

OAuth / OIDC token requests use openid-client's private HTTP transport
and never see customHeaders, matching JDBC's exemption.

Not needed vs JDBC: this driver passes options.path through
unmodified (no split-on-= parser), uses Thrift only (no SEA JSON body
warehouse-ID extraction), and exposes no Volume API surface.

Change 2: Close-ordering fix

While verifying Change 1 against a real SPOG warehouse, the final
client.close() flush emitted:

[warn] Telemetry: Authorization header missing — metrics will be dropped
[debug] Telemetry export auth failure: Telemetry export: missing Authorization header

Root cause: TelemetryClientProvider.releaseClient called
unregisterContext before client.close(). On the last refcount, that
emptied the FIFO of (context, authProvider) pairs before the final
flush, so the exporter's getAuthProvider() walk returned undefined and
the batch was dropped.

Fix: skip the unregister on the last release so the FIFO snapshot
survives through close()'s final flush. Multi-refcount path is
unchanged. No leak — the TelemetryClient is unreachable as soon as
releaseClient returns, and the retained (context, authProvider)
pair dies with it.

Live verification

Ran against dogfood-spog.staging.azuredatabricks.net warehouse
ad6f9b54e6593746?o=7064161269814046:

customHeaders={"x-databricks-org-id":"7064161269814046"}     ← SPOG header injected
Feature flag enableTelemetryForNodeJs: true                  ← header propagated via SPOG
Result: [{"v":1}]                                            ← SELECT 1 worked
Successfully exported 3 telemetry metrics                    ← final flush no longer drops

Test plan

Unit tests added (all passing locally):

  • buildCustomHeaders parses ?o= into x-databricks-org-id
  • No header when ?o= is absent and no user-supplied customHeaders
  • User-supplied customHeaders is preserved alongside parsed org-id
  • User-supplied x-databricks-org-id (any case) wins over ?o=
  • Non-numeric o=<value> does not inject a header
  • End-to-end DBSQLClient.connect() populates
    config.customHeaders['x-databricks-org-id'] from the path
  • DatabricksTelemetryExporter attaches config.customHeaders to
    the POST headers
  • Auth headers still override customHeaders on key collision
  • No header is attached when config.customHeaders is empty
  • FeatureFlagCache.fetchFeatureFlag attaches customHeaders to
    the GET headers
  • releaseClient keeps the context registered through close() on
    last refcount
  • releaseClient drops the context immediately when other
    refcounts remain

This pull request and its description were written by Isaac.

@samikshya-db
Add SPOG support: x-databricks-org-id header for telemetry + feature-…
e30d820 
…flag

SPOG (Single Panel of Glass) replaces workspace-specific hostnames with
account-level vanity URLs. When httpPath carries `?o=<workspaceId>`,
endpoints that don't include the workspace in their URL path (telemetry,
feature flags) need the workspace conveyed via the
`x-databricks-org-id` header instead.

Changes:

- Parse `?o=<digits>` out of httpPath in DBSQLClient.connect() and stash
  the org-id as `x-databricks-org-id` on a new `ClientConfig.customHeaders`
  field. A user-supplied `customHeaders` entry (case-insensitive) takes
  precedence.
- DatabricksTelemetryExporter spreads `config.customHeaders` into the
  outgoing POST headers. Auth headers still win on collision.
- FeatureFlagCache does the same for the feature-flag GET.

Not applicable to this driver (vs JDBC port in
databricks/databricks-jdbc#1316):

- httpPath property parser fix — Node.js passes `options.path` through
  unmodified.
- Warehouse ID regex fix for SEA — driver uses Thrift only.
- DBFS Volume header injection — driver exposes no Volume API.

OAuth/OIDC token requests deliberately do NOT receive customHeaders.

Co-authored-by: Isaac
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 23, 2026

Thanks for your contribution! To satisfy the DCO policy in our contributing guide every commit message must include a sign-off message. One or more of your commits is missing this message. You can reword previous commit messages with an interactive rebase (git rebase -i main).

@samikshya-db samikshya-db changed the title Add SPOG support for ?o= routing in httpPath [XTA-15079] Add SPOG support for ?o= routing in httpPath May 23, 2026
@samikshya-db
Fix close-ordering: keep context registered through final telemetry f…
65273f1 
…lush

`TelemetryClientProvider.releaseClient` was calling `unregisterContext`
before `client.close()`. On the last refcount, that emptied the FIFO of
`(context, authProvider)` pairs before the final flush ran, so the
exporter's `getAuthProvider()` walk returned undefined and the batch was
dropped with "Telemetry: Authorization header missing — metrics will be
dropped".

Defer `unregisterContext` until after `close()` on the last refcount;
multi-refcount path is unchanged (immediate unregister so surviving
consumers don't reach into a closing context).

Verified end-to-end against a real SPOG host: the final flush now
exports its 3 metrics (connection.open, statement.start,
statement.complete) instead of warning and dropping them.

Co-authored-by: Isaac
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 24, 2026

Thanks for your contribution! To satisfy the DCO policy in our contributing guide every commit message must include a sign-off message. One or more of your commits is missing this message. You can reword previous commit messages with an interactive rebase (git rebase -i main).

msrathore-db
msrathore-db reviewed May 24, 2026
View reviewed changes
Comment thread lib/telemetry/TelemetryClientProvider.ts Outdated
@samikshya-db
Simplify close-ordering fix
66ce012 
Tighten the previous commit to the minimal diff: guard the existing
unregisterContext call instead of restructuring the function. Restores
the unchanged comment on TelemetryClient.unregisterContext.

Co-authored-by: Isaac
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 24, 2026

Thanks for your contribution! To satisfy the DCO policy in our contributing guide every commit message must include a sign-off message. One or more of your commits is missing this message. You can reword previous commit messages with an interactive rebase (git rebase -i main).

@samikshya-db samikshya-db changed the title [XTA-15079] Add SPOG support for ?o= routing in httpPath Add SPOG ?o= routing support and fix final-flush auth on close May 24, 2026
@samikshya-db samikshya-db changed the title Add SPOG ?o= routing support and fix final-flush auth on close [XTA-15079] Add SPOG ?o= routing support and fix final-flush auth on close May 24, 2026
msrathore-db
msrathore-db reviewed May 25, 2026
View reviewed changes
Comment thread lib/DBSQLClient.ts Outdated
msrathore-db
msrathore-db approved these changes May 25, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@msrathore-db msrathore-db left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please verify all purpose cluster url is working and also M2M is working

msrathore-db
msrathore-db reviewed May 25, 2026
View reviewed changes
Comment thread lib/DBSQLClient.ts
@samikshya-db
Address review feedback: pure header builder, SPOG logs, all-purpose …
3d21c11 
…path form

- buildCustomHeaders(httpPath, userHeaders) and extractWorkspaceId(httpPath):
  SPOG-routing inputs now in the signature instead of read off this.httpPath.
  extractWorkspaceId is static. Drops the (client as any).httpPath test
  workaround. Fixes the hidden ordering dependency flagged in PR review [M1].

- Log SPOG header injection (debug), caller-supplied override (debug), and
  non-numeric workspace ID (warn). Closes JDBC parity gap so oncall has a
  grep handle when SPOG routing misbehaves [H2].

- extractWorkspaceId now also matches the all-purpose cluster path form
  /o/<wsId>/<cluster-id> in addition to the warehouse query form ?o=<wsId>.
  Verified end-to-end against a real all-purpose cluster on a SPOG host.

Co-authored-by: Isaac
Signed-off-by: samikshya-chand_data <[email protected]>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 25, 2026

Thanks for your contribution! To satisfy the DCO policy in our contributing guide every commit message must include a sign-off message. One or more of your commits is missing this message. You can reword previous commit messages with an interactive rebase (git rebase -i main).

@samikshya-db
Apply prettier formatting
dadc2af 
Auto-fix from `prettier --write` on the two files touched by the
previous commit; no logic changes.

Co-authored-by: Isaac
Signed-off-by: samikshya-chand_data <[email protected]>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 25, 2026

Thanks for your contribution! To satisfy the DCO policy in our contributing guide every commit message must include a sign-off message. One or more of your commits is missing this message. You can reword previous commit messages with an interactive rebase (git rebase -i main).

@samikshya-db
Copy link
Copy Markdown
Collaborator Author

samikshya-db commented May 25, 2026

Thanks for the review, @msrathore-db !
Addressed the comments.

@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 25, 2026

Thanks for your contribution! To satisfy the DCO policy in our contributing guide every commit message must include a sign-off message. One or more of your commits is missing this message. You can reword previous commit messages with an interactive rebase (git rebase -i main).

@samikshya-db samikshya-db merged commit fab2288 into main May 25, 2026
7 of 8 checks passed
@samikshya-db samikshya-db deleted the spog-support branch May 25, 2026 17:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@msrathore-db msrathore-db msrathore-db approved these changes

@vikrantpuppala vikrantpuppala Awaiting requested review from vikrantpuppala

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@samikshya-db @msrathore-db