branch-4.1: [feat](auth) support querying authentication integrations from system table (#61246)#61501
Closed
CalvinKirs wants to merge 1 commit intoapache:branch-4.1from
Closed
branch-4.1: [feat](auth) support querying authentication integrations from system table (#61246)#61501CalvinKirs wants to merge 1 commit intoapache:branch-4.1from
CalvinKirs wants to merge 1 commit intoapache:branch-4.1from
Conversation
…m table (apache#61246) `AUTHENTICATION INTEGRATION` currently has no system-table query entry, so users cannot inspect existing integrations through SQL in a consistent way with other metadata objects. At the same time, upstream has already introduced unified audit metadata for `AuthenticationIntegrationMeta`, including: - `createUser` - `createTime` - `alterUser` - `modifyTime` But these fields are not exposed through a queryable metadata path yet. This PR adds a system table for querying authentication integrations and synchronizes the query result with the new audit metadata. ### What is changed - Add `information_schema.authentication_integrations` - Wire the schema table through FE/BE/Thrift - Expose the following columns: - `NAME` - `TYPE` - `PROPERTIES` - `COMMENT` - `CREATE_USER` - `CREATE_TIME` - `ALTER_USER` - `MODIFY_TIME` - Mask sensitive properties in query results - existing password/secret/token/keytab-style keys remain masked - keys with prefix `secret.` are also masked - Add FE unit tests and regression coverage for querying this system table ### Example ```sql SELECT * FROM information_schema.authentication_integrations; SELECT name, type, comment, create_user, create_time, alter_user, modify_time, properties FROM information_schema.authentication_integrations ORDER BY name; ### Why is this safe? - This change only adds metadata query capability - It does not change existing CREATE/ALTER/DROP AUTHENTICATION INTEGRATION semantics - Sensitive properties are masked only in display/query results, not modified in persisted metadata ### Test - FE unit test: - org.apache.doris.service.FrontendServiceImplTest - org.apache.doris.catalog.SchemaTableTest - Regression test: - regression-test/suites/auth_p0/test_authentication_integration_auth.groovy (cherry picked from commit 2edc65c)
Contributor
|
Thank you for your contribution to Apache Doris. Please clearly describe your PR:
|
Member
Author
|
run buildall |
CalvinKirs
changed the title
Cloud UT Coverage ReportIncrement line coverage Increment coverage report
|
Contributor
BE UT Coverage ReportIncrement line coverage Increment coverage report
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
#61246