Renamed "next_gen" value for "privileges_evaluation_type" to "v4"

Signed-off-by: Nils Bandener <nils.bandener@eliatra.com>

Author: nibix

config/config.yml

@@ -60,10 +60,10 @@ _meta:
 
 config:
   dynamic:
-    # Set privileges_evaluation_type to "next_gen" to enable the new privileges evaluation engine.
+    # Set privileges_evaluation_type to "v4" to enable the new privileges evaluation engine.
     # This should give you a more seamless experience, especially for users with restricted privileges
     # working in OpenSearch Dashboards.
-    # privileges_evaluation_type: next_gen
+    # privileges_evaluation_type: "v4"
     #kibana:
     # Kibana multitenancy
     #multitenancy_enabled: true

src/integrationTest/java/org/opensearch/security/privileges/int_tests/ClusterConfig.java

@@ -42,7 +42,7 @@ public enum ClusterConfig {
         true,
         false
     ),
-    NEXT_GEN_PRIVILEGES_EVALUATION("next_gen", c -> c.privilegesEvaluationType("next_gen"), false, true, true);
+    V4_PRIVILEGES_EVALUATION("v4", c -> c.privilegesEvaluationType("v4"), false, true, true);
 
     final String name;
     final Function<LocalCluster.Builder, LocalCluster.Builder> clusterConfiguration;

src/integrationTest/java/org/opensearch/security/privileges/int_tests/CrossClusterAuthorizationIntTests.java

@@ -173,7 +173,7 @@ interface RemoteIndices {
         .clusterManager(ClusterManager.SINGLENODE)
         .clusterName("remote_1")
         .authc(AUTHC_HTTPBASIC_INTERNAL)
-        .privilegesEvaluationType("next_gen")
+        .privilegesEvaluationType("v4")
         .roles(LIMITED_USER_ROLE_A_R_REMOTE, LIMITED_USER_ROLE_R_REMOTE, LIMITED_USER_ROLE_R1_REMOTE, LIMITED_ROLE_NONE, UNLIMITED_ROLE)
         .indices(RemoteIndices.index_r1, RemoteIndices.index_r2, RemoteIndices.index_r3)
         .build();

src/integrationTest/java/org/opensearch/security/privileges/int_tests/IndexAuthorizationReadOnlyIntTests.java

@@ -161,7 +161,7 @@ public class IndexAuthorizationReadOnlyIntTests {
     /**
      * This key identifies assertion reference data for index search/read permissions of individual users for the new privilege evaluation
      */
-    static final TestSecurityConfig.User.MetadataKey<IndexMatcher> READ_NEXT_GEN = new TestSecurityConfig.User.MetadataKey<>(
+    static final TestSecurityConfig.User.MetadataKey<IndexMatcher> READ_V4 = new TestSecurityConfig.User.MetadataKey<>(
         "read_nextgen",
         IndexMatcher.class
     );
@@ -193,7 +193,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("index_a*")
         )//
         .reference(READ, limitedTo(index_a1, index_a2, index_a3, index_ax))//
-        .reference(READ_NEXT_GEN, limitedTo(index_a1, index_a2, index_a3, index_ax))//
+        .reference(READ_V4, limitedTo(index_a1, index_a2, index_a3, index_ax))//
         .reference(GET_ALIAS, limitedToNone());
 
     /**
@@ -208,7 +208,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("index_b*")
         )//
         .reference(READ, limitedTo(index_b1, index_b2, index_b3))//
-        .reference(READ_NEXT_GEN, limitedTo(index_b1, index_b2, index_b3))//
+        .reference(READ_V4, limitedTo(index_b1, index_b2, index_b3))//
         .reference(GET_ALIAS, limitedToNone());
 
     /**
@@ -223,7 +223,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("index_b1")
         )//
         .reference(READ, limitedTo(index_b1))//
-        .reference(READ_NEXT_GEN, limitedTo(index_b1))//
+        .reference(READ_V4, limitedTo(index_b1))//
         .reference(GET_ALIAS, limitedToNone());
 
     /**
@@ -238,7 +238,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("index_c*")
         )//
         .reference(READ, limitedTo(index_c1, alias_c1))//
-        .reference(READ_NEXT_GEN, limitedTo(index_c1))//
+        .reference(READ_V4, limitedTo(index_c1))//
         .reference(GET_ALIAS, limitedToNone());
 
     /**
@@ -254,7 +254,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("alias_ab1*")
         )//
         .reference(READ, limitedTo(index_a1, index_a2, index_a3, index_b1, alias_ab1))//
-        .reference(READ_NEXT_GEN, limitedTo(index_a1, index_a2, index_a3, index_b1, alias_ab1))//
+        .reference(READ_V4, limitedTo(index_a1, index_a2, index_a3, index_b1, alias_ab1))//
         .reference(GET_ALIAS, limitedTo(index_a1, index_a2, index_a3, index_b1, alias_ab1));
 
     /**
@@ -270,7 +270,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("alias_c1")
         )//
         .reference(READ, limitedTo(index_c1, alias_c1))//
-        .reference(READ_NEXT_GEN, limitedTo(index_c1, alias_c1))//
+        .reference(READ_V4, limitedTo(index_c1, alias_c1))//
         .reference(GET_ALIAS, limitedTo(index_c1, alias_c1));
     /**
      * Same as LIMITED_USER_A with the addition of read privileges for index_hidden* and .index_hidden*
@@ -284,7 +284,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("index_a*", "index_hidden*", ".index_hidden*")
         )//
         .reference(READ, limitedTo(index_a1, index_a2, index_a3, index_ax, index_hidden, index_hidden_dot))//
-        .reference(READ_NEXT_GEN, limitedTo(index_a1, index_a2, index_a3, index_ax, index_hidden, index_hidden_dot))//
+        .reference(READ_V4, limitedTo(index_a1, index_a2, index_a3, index_ax, index_hidden, index_hidden_dot))//
         .reference(GET_ALIAS, limitedToNone());
 
     /**
@@ -310,7 +310,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on(".system_index_plugin")
         )//
         .reference(READ, limitedTo(index_c1, alias_c1, system_index_plugin, alias_with_system_index))//
-        .reference(READ_NEXT_GEN, limitedTo(index_c1, alias_c1, system_index_plugin))//
+        .reference(READ_V4, limitedTo(index_c1, alias_c1, system_index_plugin))//
         .reference(GET_ALIAS, limitedTo(index_c1, alias_c1, system_index_plugin, alias_with_system_index));
     /**
      * This user has no privileges for indices that are used in this test. But they have privileges for other indices.
@@ -327,7 +327,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .on("index_does_not_exist_*")
         )//
         .reference(READ, limitedToNone())//
-        .reference(READ_NEXT_GEN, limitedToNone())//
+        .reference(READ_V4, limitedToNone())//
         .reference(GET_ALIAS, limitedToNone());
 
     /**
@@ -340,7 +340,7 @@ public class IndexAuthorizationReadOnlyIntTests {
                 .clusterPermissions("cluster_composite_ops_ro", "cluster_monitor")
         )//
         .reference(READ, limitedToNone())//
-        .reference(READ_NEXT_GEN, limitedToNone())//
+        .reference(READ_V4, limitedToNone())//
         .reference(GET_ALIAS, limitedToNone());
     /**
      * A user with "*" privileges on "*"; as it is a regular user, they are still subject to system index
@@ -356,7 +356,7 @@ public class IndexAuthorizationReadOnlyIntTests {
 
         )//
         .reference(READ, limitedTo(ALL_INDICES_AND_ALIASES_EXCEPT_SYSTEM_INDICES).and(index_ax))//
-        .reference(READ_NEXT_GEN, limitedTo(ALL_INDICES_AND_ALIASES_EXCEPT_SYSTEM_INDICES).and(index_ax))//
+        .reference(READ_V4, limitedTo(ALL_INDICES_AND_ALIASES_EXCEPT_SYSTEM_INDICES).and(index_ax))//
         .reference(GET_ALIAS, limitedTo(ALL_INDICES_AND_ALIASES_EXCEPT_SYSTEM_INDICES).and(index_ax));
 
     /**
@@ -367,7 +367,7 @@ public class IndexAuthorizationReadOnlyIntTests {
         .description("super unlimited (admin cert)")//
         .adminCertUser()//
         .reference(READ, unlimitedIncludingOpenSearchSecurityIndex())//
-        .reference(READ_NEXT_GEN, unlimitedIncludingOpenSearchSecurityIndex())//
+        .reference(READ_V4, unlimitedIncludingOpenSearchSecurityIndex())//
         .reference(GET_ALIAS, unlimitedIncludingOpenSearchSecurityIndex());
 
     static final List<TestSecurityConfig.User> USERS = ImmutableList.of(
@@ -794,7 +794,7 @@ public void search_staticIndices_systemIndex_alias() throws Exception {
                     containsExactly(system_index_plugin).at("hits.hits[*]._index").reducedBy(user.reference(READ)).whenEmpty(isForbidden())
                 );
             } else {
-                if (user.reference(READ_NEXT_GEN).covers(alias_with_system_index)) {
+                if (user.reference(READ_V4).covers(alias_with_system_index)) {
                     assertThat(httpResponse, isOk());
                     assertThat(httpResponse, containsExactly(system_index_plugin).at("hits.hits[*]._index"));
                 } else {
@@ -1184,7 +1184,7 @@ public void search_termsAggregation_index() throws Exception {
                   }
                 }""");
 
-            if (clusterConfig == ClusterConfig.NEXT_GEN_PRIVILEGES_EVALUATION) {
+            if (clusterConfig == ClusterConfig.V4_PRIVILEGES_EVALUATION) {
                 if (user == LIMITED_USER_NONE) {
                     assertThat(httpResponse, isForbidden("/error/root_cause/0/reason", "no permissions for [indices:data/read/search]"));
                 } else if (user == LIMITED_USER_OTHER_PRIVILEGES) {
@@ -1454,7 +1454,7 @@ public void mget_alias() throws Exception {
                     containsExactly(index_c1).at("docs[?(@.found == true)]._index").reducedBy(user.reference(READ)).whenEmpty(isOk())
                 );
             } else {
-                if (user.reference(READ_NEXT_GEN).covers(alias_c1)) {
+                if (user.reference(READ_V4).covers(alias_c1)) {
                     assertThat(httpResponse, containsExactly(index_c1).at("docs[?(@.found == true)]._index"));
                 } else {
                     assertThat(httpResponse, containsExactly().at("docs[?(@.found == true)]._index"));
@@ -1482,7 +1482,7 @@ public void get_alias() throws Exception {
             if (clusterConfig.legacyPrivilegeEvaluation) {
                 assertThat(httpResponse, containsExactly(index_c1).at("_index").reducedBy(user.reference(READ)).whenEmpty(isForbidden()));
             } else {
-                if (user.reference(READ_NEXT_GEN).covers(alias_c1)) {
+                if (user.reference(READ_V4).covers(alias_c1)) {
                     assertThat(httpResponse, containsExactly(index_c1).at("_index"));
                 } else {
                     assertThat(httpResponse, isForbidden("/error/root_cause/0/reason", "no permissions for [indices:data/read/get]"));
@@ -1991,7 +1991,7 @@ public void resolve_wildcard() throws Exception {
                         containsExactly(index_a1, index_a2, index_a3, index_b1, index_b2, index_b3, index_c1, alias_ab1, alias_c1).at(
                             "$.*[*].name"
                         )
-                            .reducedBy(user.reference(clusterConfig.legacyPrivilegeEvaluation ? READ : READ_NEXT_GEN))
+                            .reducedBy(user.reference(clusterConfig.legacyPrivilegeEvaluation ? READ : READ_V4))
                             .whenEmpty(clusterConfig.allowsEmptyResultSets ? isOk() : isForbidden())
                     );
                 } else {
@@ -2022,7 +2022,7 @@ public void resolve_wildcard_includeHidden() throws Exception {
                     assertThat(
                         httpResponse,
                         containsExactly(ALL_INDICES_AND_ALIASES).at("$.*[*].name")
-                            .reducedBy(user.reference(clusterConfig.legacyPrivilegeEvaluation ? READ : READ_NEXT_GEN))
+                            .reducedBy(user.reference(clusterConfig.legacyPrivilegeEvaluation ? READ : READ_V4))
                             .whenEmpty(clusterConfig.allowsEmptyResultSets ? isOk() : isForbidden())
                     );
                 } else {

src/main/java/org/opensearch/security/privileges/PrivilegesEvaluator.java

@@ -93,7 +93,7 @@ void updateConfiguration(
     enum PrivilegesEvaluatorType {
         NOT_INITIALIZED((c, d) -> new NotInitialized(c)),
         LEGACY(PrivilegesEvaluatorImpl::new),
-        NEXT_GEN(org.opensearch.security.privileges.actionlevel.nextgen.PrivilegesEvaluatorImpl::new);
+        V4(org.opensearch.security.privileges.actionlevel.nextgen.PrivilegesEvaluatorImpl::new);
 
         static PrivilegesEvaluatorType getFrom(SecurityDynamicConfiguration<ConfigV7> configConfig) {
             final PrivilegesEvaluatorType defaultValue = LEGACY;
@@ -106,8 +106,8 @@ static PrivilegesEvaluatorType getFrom(SecurityDynamicConfiguration<ConfigV7> co
             if (config == null || config.dynamic == null) {
                 return defaultValue;
             }
-            if (NEXT_GEN.name().equalsIgnoreCase(config.dynamic.privilegesEvaluationType)) {
-                return NEXT_GEN;
+            if (V4.name().equalsIgnoreCase(config.dynamic.privilegesEvaluationType)) {
+                return V4;
             } else {
                 return LEGACY;
             }

src/main/java/org/opensearch/security/privileges/actionlevel/nextgen/PrivilegesEvaluatorImpl.java

@@ -453,7 +453,7 @@ public boolean notFailOnForbiddenEnabled() {
 
     @Override
     public PrivilegesEvaluatorType type() {
-        return PrivilegesEvaluatorType.NEXT_GEN;
+        return PrivilegesEvaluatorType.V4;
     }
 
     void logPrivilegeEvaluationResult(PrivilegesEvaluationContext context, PrivilegesEvaluatorResponse result, String privilegeType) {

src/main/java/org/opensearch/security/securityconf/impl/v7/ConfigV7.java

@@ -92,7 +92,7 @@ public static class Dynamic {
 
         /**
          * This is a successor to the do_not_fail_on_forbidden property; it is only evaluated if
-         * privilegesEvaluationType is set to "next_gen"; we cannot reuse the old property as it we cannot change
+         * privilegesEvaluationType is set to "v4"; we cannot reuse the old property as it we cannot change
          * the default value of it based on privileges_evaluation_type.
          * This should be only very rarely set to "false"; if it is false, users must make sure that they
          * are not hitting any unauthorized indices in their patterns, including system indices, as otherwise these requests