[security] Adding docstrings and type hints

[john-bodley]

CATEGORY

Choose one

• Bug Fix
• Enhancement (new features, refinement)
• Refactor
• Add tests
• Build / Development Environment
• Documentation

SUMMARY

This PR adds doc-strings and type hints to the security manager to help to provide more context and consistency. Note I've tried to ensure that the code remains unchanged however:

1. I renamed a couple of methods/variables for accuracy. Note further polish could be applied.
2. Given the vast number of methods in the SupersetSecurityManager (it's becoming almost intractable) I renamed private methods with a leading _ (underscore).
3. The Mypy type hints surfaced a couple of small issues during linting.

A few notes/observations:

1. I get the sense there's too many surfaces where security datasource checks happen (many occur on the view) and thus we susceptible for potentially forgetting to add them for new routes. Moving forward it seems like these checks should probably occur closer to the engine where appropriate.
2. I've tried to be as descriptive as possible but it took me quite some time to decipher what the various objects were. There may be merit in the future of being more explicit between Druid datasources and SQL tables.
3. I think some of the private methods could probably be refactored.
4. The SQL table names seem to be a mess, currently these can be defined as:

• str: [[cluster.]schema.]table
• Tuple[str, str]: (schema, table)
• DatasourceName

I believe there would be merit in aligning on one mechanism for defining SQL tables throughout Superset to help mitigate bugs/inaccuracies (note we've addresses issues related to this in the past). This is especially vital as it relates to security and a hardened security model should be one of Superset's core tenets. A dataclass class may be a viable route.

5. I'm not certain whether the get_schema_perm logic is correct as I believe that the database parameter can be Union[Database, str]. I'm not sure if that was intentional

TEST PLAN

CI.

ADDITIONAL INFORMATION

• Has associated issue:
• Changes UI
• Requires DB Migration.
• Confirm DB Migration upgrade and downgrade tested.
• Introduces new feature or API
• Removes existing feature or API

REVIEWERS

to: @DiggidyDave @etr2460 @michellethomas @mistercrunch @villebro

[codecov-io]

Codecov Report

Merging #7952 into master will increase coverage by <.01%.
The diff coverage is 83.33%.

@@            Coverage Diff             @@
##           master    #7952      +/-   ##
==========================================
+ Coverage   65.61%   65.62%   +<.01%     
==========================================
  Files         469      469              
  Lines       22381    22388       +7     
  Branches     2432     2432              
==========================================
+ Hits        14686    14692       +6     
- Misses       7574     7575       +1     
  Partials      121      121

Impacted Files	Coverage Δ
superset/views/core.py	71.22% <66.66%> (ø)	⬆️
superset/security.py	74.29% <84.12%> (+0.33%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 10f00cd...576947e. Read the comment docs.

[codecov-io]

Codecov Report

Merging #7952 into master will increase coverage by <.01%.
The diff coverage is 83.33%.

@@            Coverage Diff             @@
##           master    #7952      +/-   ##
==========================================
+ Coverage   65.61%   65.62%   +<.01%     
==========================================
  Files         469      469              
  Lines       22381    22388       +7     
  Branches     2432     2432              
==========================================
+ Hits        14686    14692       +6     
- Misses       7574     7575       +1     
  Partials      121      121

Impacted Files	Coverage Δ
superset/views/core.py	71.22% <66.66%> (ø)	⬆️
superset/security.py	74.29% <84.12%> (+0.33%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 10f00cd...8cccd26. Read the comment docs.

[john-bodley]

Note I find the naming of this method somewhat confusing and there's also a method called _datasource_access_by_name, i.e, without the full.

[DiggidyDave]

yeah this is super confusing. I'm probably an outlier among those reading this, but I don't know what "fallback sql schema" means, would it be appropriate to clarify that here in the param docs? I realize it might be part of the superset codebase vernacular and maybe shouldn't be repeated everywhere it is used, if that's the case then cool. :-)

[john-bodley]

@DiggidyDave I added more documentation regarding the "fallback SQL schema".

[DiggidyDave]

I believe there would be merit in aligning on one mechanism for defining SQL tables throughout Superset ... A dataclass class may be a viable route.

👍 agreed! if something is important enough that folks have invented 3 ways of doing it, it probably should have a first-class type :-)

Thanks for doing all of this work

[villebro]

Awesome work 👍 Apart from the small comment about I202 LGTM.

[villebro]

Perhaps we should add ignoring of I202 to tox.ini? @sturmer ran intro a few of those in #7643 and it seems flake8 and black aren't aligned in their thinking on newlines.

[john-bodley]

@villebro I can create another PR which ignores I202 and removes all references.

[villebro]

Why is this in quotes?

Edit: googled it, learned something new 👍