fix: Avoid accessing user when running migrations

[danielbachhuber]

See https://posthog.slack.com/archives/C0113360FFV/p1737412494845589

Changes

Fixes this issue when running DEBUG=1 ./bin/migrate:

django.db.utils.ProgrammingError: column posthog_team.revenue_tracking_config does not exist
LINE 1: ...s", "posthog_team"."cookieless_server_hash_mode", "posthog_t...

The app crashes during bootstrap because the column doesn't exist yet. It seems like it should be fine to avoid loading user context when a migration is running, though.

How did you test this code?

Verified the migration ran as expected and that the application still loaded as expected.

[rafaeelaudibert]

Shouldn't this try/except be catching that error? Also, the error happens when loading posthog_team, so this is kinda weird, right?

[danielbachhuber]

The error is caused by local_api_key = get_self_capture_api_token(user)

Good point about try/except, though. I simplified the PR 6364cf1

[danielbachhuber]

Looks like it was introduced in #27669. I'll leave to @skoob13 and @pauldambra to review

[danielbachhuber]

Actually, it looks like 6364cf1 would break the fallback behavior:

posthog/posthog/utils.py

Lines 500 to 515 in 6364cf1

	def get_self_capture_api_token(user: Optional[Union["AbstractBaseUser", "AnonymousUser"]]) -> Optional[str]:
	from posthog.models import Team
	# Get the current user's team (or first team in the instance) to set self capture configs
	team: Optional[Team] = None
	if user and getattr(user, "team", None):
	team = user.team # type: ignore
	else:
	try:
	team = Team.objects.only("api_token").first()
	except Exception:
	pass
	if team:
	return team.api_token
	return None

[danielbachhuber]

Reverted back to the original behavior because I think bypassing any user config is a more appropriate fix for the migration context. Waiting for additional input before landing, though.

[github-actions]

Size Change: 0 B

Total Size: 1.16 MB

ℹ️ View Unchanged

Filename	Size
frontend/dist/toolbar.js	1.16 MB

_{compressed-size-action}

[rafaeelaudibert]

Will leave the final review to the other guys tagged in the PR, but this LGTM

[skoob13]

I think the environment variable is unnecessary because this code is supposed to run only in debugging bin/start, so it's easier to catch exceptions from get_self_capture_api_token. Here is the follow-up PR: #27713.