[MD] Add endpoint validation to create data source API

[zhongnansu]

Description

Add endpoint validation to create data source API, by testing if endpoint is reachable, using the same logic as what's behind "test connection" feature

Issues Resolved

#6517

Screenshot

Testing the changes

1. go to create datasource page, and create one with invalid OpenSearch endpoint, e.g. google.com
2. click test connection, it should fail as expected
3. click create data source, it should fail too, as the endpoint is not a valid endpoint
4. switch to use a valid opensearch domain
5. both test connection and create data source should pass

Changelog

• feat: Add endpoint validation to create data source API

Check List

• All tests pass
  • yarn test:jest
  • yarn test:jest_integration
• New functionality includes testing.
• New functionality has been documented.
• Update CHANGELOG.md
• Commits are signed per the DCO using --signoff

[github-actions]

❌ Empty Changelog Section

The Changelog section in your PR description is empty. Please add a valid changelog entry or entries. If you did add a changelog entry, check to make sure that it was not accidentally included inside the comment block in the Changelog section.

[github-actions]

❌ Empty Changelog Section

The Changelog section in your PR description is empty. Please add a valid changelog entry or entries. If you did add a changelog entry, check to make sure that it was not accidentally included inside the comment block in the Changelog section.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 67.80%. Comparing base (d2d410b) to head (6121267).
Report is 35 commits behind head on main.

Additional details and impacted files

@@             Coverage Diff             @@
##             main    #6631       +/-   ##
===========================================
+ Coverage   32.93%   67.80%   +34.87%     
===========================================
  Files        2260     3413     +1153     
  Lines       45769    66755    +20986     
  Branches     7200    10861     +3661     
===========================================
+ Hits        15075    45266    +30191     
+ Misses      29984    18845    -11139     
- Partials      710     2644     +1934     

Flag	Coverage Δ
Linux_1	33.18% <ø> (+0.25%)	⬆️
Linux_2	55.63% <ø> (?)
Linux_3	45.24% <100.00%> (?)
Linux_4	34.91% <ø> (?)
Windows_1	33.23% <ø> (?)
Windows_2	55.59% <ø> (?)
Windows_3	45.25% <100.00%> (?)
Windows_4	34.91% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

❌ Empty Changelog Section

The Changelog section in your PR description is empty. Please add a valid changelog entry or entries. If you did add a changelog entry, check to make sure that it was not accidentally included inside the comment block in the Changelog section.

[BionIT]

Probably better to remove the credentials or modify the recording to hide it

[huyaboo]

Left nonblocking comment

[huyaboo]

nit: could we make this a constant with a meaningful name?

[zhongnansu]

updated to use constant

[zhyuanqi]

Should we name it dataSourceServiceSetUp as cryptographyServiceSetup

[zhongnansu]

fixed

[zhyuanqi]

So from now on, we cannot choose no auth?

[zhongnansu]

creating data source with no auth auth type still has an an attribute in the request payload

[zhyuanqi]

Just a general thought. I see the error is 'Creation of the Data Source failed with some errors.'. Not sure if we need to give more specifc error in different error cases such as no auth found, please provide authentication

[zhongnansu]

Just a general thought. I see the error is 'Creation of the Data Source failed with some errors.'. Not sure if we need to give more specifc error in different error cases such as no auth found, please provide authentication

The error message is the existing behavior when failing to create data source , with/without my change, I agree we should improve by displaying the error with details to user. It could be a separate task to work on, and it should take care of both test connection and create data source

[xinruiba]

I remember datasource is able to be created even test connection failed used to be the expected behavior.
We decide to change it?

[zhongnansu]

I remember datasource is able to be created even test connection failed used to be the expected behavior. We decide to change it?

AFAIK, yes, is there any concern? @xinruiba

[xinruiba]

I remember datasource is able to be created even test connection failed used to be the expected behavior. We decide to change it?

AFAIK, yes, is there any concern? @xinruiba

No concerns if that's by design~

[xinruiba]

Thanks for this change.

Are there any chances we can reuse this function: https://github.com/opensearch-project/OpenSearch-Dashboards/blob/main/src/plugins/data_source_management/public/components/utils.ts#L206?

Since datasource and datasource_management plugin will both exist in the same time, so the validation path in datasource_management plugin should always been routed.

Then we depend on sending request to /internal/data-source-management/validate to test connection instead of creating a new datasource client here.

What do you think?

[zhongnansu]

Do you mean when user click create data source button, we first call /internal/data-source-management/validate to validate and then call create data source API? @xinruiba

[xinruiba]

Yes

Pros:

• We rely on the URL for data source validation.

Cons:

• If customers directly create a data source by calling the URL (using curl), the data source validation will be bypassed.

I'll leave the decision to you~

[zhongnansu]

Yes, the cons you mentioned is exactly the reason I choose to add validation to the saved object create data source API, this will almost make sure no invalid endpoint can be created as a data source. I use "almost", cuz user can still directly write data into .kibana index

[xinruiba]

Sounds good to me. Approving~

[xinruiba]

Non blocking comment.

Maybe a question to designer. Since we already do validation as a part of datasource creation. Do we sill need a separate test connection before clicking on datasource creation?

[zhongnansu]

good point, @kgcreative @xeniatup, I wonder what's your thought on this

[kgcreative]

Given the updated validation, i don't think we need it in the create page.