[POC] init impl to add datasource service/client lifecycle

[zhongnansu]

Description

• Add dataSourceClient
  • a map dataSourceClientsPool
  • a flag that maps to global feature flag in osd.yml
  • asDataSource() to find/create client, then return to caller
• Add opensearch_data_service
  • depends on savedObject service to init a savedObjectClient
  • init DataSourceClient instance
• Register opensearch_data_service to CoreSetup, CoreStart, CoreRouteHandlerContext
• Refactor search_source to add dataSourceId field, and add it to ISearchOptions to provide to search() interface
• Refactor opensearchagg.ts, to attach data source id if exists
• Refactor opensearch_seearch_strategy to select between default cluster client and data source client

TODO

• See comment for more. The critical TODOs for the end-to-end use case to run are:
  • Align with the data modeling of index pattern and dataSource, pending PR from @kristenTian

Test

Only manual test for now
Steps:

1. add ecommerce sample data
2. delete its index
3. create a valid datasource and credential
4. Manually attach dataSourceId to ecommerce index pattern by something like:

POST /.kibana/_update/index-pattern:ff959d40-b880-11e8-a6d9-e546fe2bba5f
{
"script": "ctx._source['index-pattern'].dataSourceId = '794b5590-088b-11ed-8694-134ac2453186'"
}

5. Now you should be able to see a ecommerce visualization with the data from data source
6. Discover/TSVB/Vega/Timelion is not working for now, I'll post other PRs to address those.

Issues Resolved

TBA

Check List

• New functionality includes testing.
  • All tests pass
    • yarn test:jest
    • yarn test:jest_integration
    • yarn test:ftr
• New functionality has been documented.
• Commits are signed per the DCO using --signoff

[seraphjiang]

@noCharger do we have action item for this.

[noCharger]

Add Decrypt function

As discussed offline, we can use https://github.com/elastic-analytics/OpenSearch-Dashboards/blob/db8c74eacd7a78830f[…]c/plugins/credential_management/server/crypto/cli/crypto_cli.ts for the end-to-end PoC. Support decrypt(authId: string) is a non-blocking follow-up.

Also from the principle of single responsibility, fetch credential using saved object cli and decrypt with cryto cli could be decoupled. Let's name the function as fetch_and_decrypt(id: string)

[noCharger]

@noCharger do we have action item for this.

opensearch-project#1926

[zhongnansu]

@noCharger Made the change to first fetch encrypted password in opensearch_data_service, and then use existing CrptoCLI -> decrypt() function for the end-to-end use case to run. Any subsequent change will be posted in separate PR. But I don't think a functionality of getCredentialById is a multi-responsibility. We can discuss more

[seraphjiang]

Please add one TODO:

pick up one viz to demonstrate usage of the new data source client.

[zhongnansu]

Please add one TODO:

pick up one viz to demonstrate usage of the new data source client.

@seraphjiang End to end use case verified. Steps added to the PR description

[zengyan-amazon]

do not commit yarn.lock

[zengyan-amazon]

need to consider more auth types

[zhongnansu]

What's are the current defined auth type in data source data model or credential manager? @kristenTian @noCharger

[zengyan-amazon]

please check the opensearch js client, see if it can keep the connection until being explicitly closed

[zhongnansu]

https://github.com/elastic/elasticsearch-js/blob/4def742e4774dba44f31b8e1701345a8c29870ee/lib/Connection.js#L59-L63
keep-alive is default to true in ClientOptions

[zengyan-amazon]

how is this field being used?

[zhongnansu]

it's used in the Compatibility check(that I commented out for now). Compatibility checks happen constantly until "this.stop" is called (which it will be called in stop() stage in our case)

[zhongnansu]

do not commit yarn.lock

removed