reduce index-patterns for cluster-admins

(cherry picked from commit 7c77db1)

Author: jcantrill

pom.xml

@@ -1,4 +1,21 @@
 <?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+    Copyright (C) 2015 Red Hat, Inc.
+
+    Licensed under the Apache License, Version 2.0 (the "License");
+    you may not use this file except in compliance with the License.
+    You may obtain a copy of the License at
+
+            http://www.apache.org/licenses/LICENSE-2.0
+
+    Unless required by applicable law or agreed to in writing, software
+    distributed under the License is distributed on an "AS IS" BASIS,
+    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+    See the License for the specific language governing permissions and
+    limitations under the License.
+
+-->
 <!-- Copyright (C) 2015 Red Hat, Inc. Licensed under the Apache License, 
     Version 2.0 (the "License"); you may not use this file except in compliance 
     with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 

src/main/java/io/fabric8/elasticsearch/plugin/ConfigurationSettings.java

@@ -77,7 +77,11 @@ public interface ConfigurationSettings extends KibanaIndexMode{
     static final String DEFAULT_USER_PROFILE_PREFIX = ".kibana";
     static final String[] DEFAULT_WHITELISTED_USERS = new String[] { "$logging.$infra.$fluentd",
         "$logging.$infra.$kibana", "$logging.$infra.$curator" };
-
+    
+    static final String [] DEFAULT_KIBANA_OPS_INDEX_PATTERNS = new String[] {
+        ".operations.*", ".orphaned.*", "project.*", ".all" 
+    };
+    
     /**
      * The configurations for enabling/disabling portions of this plugin
      * defaults to 'true' => enabled.
@@ -95,6 +99,11 @@ public interface ConfigurationSettings extends KibanaIndexMode{
     static final String DEFAULT_ACL_ROLE_STRATEGY = "user";
 
     static final String OPENSHIFT_KIBANA_REWRITE_ENABLED_FLAG = "openshift.kibana.rewrite.enabled";
+    
+    /**
+     * List of index patterns to create for operations users
+     */
+    static final String OPENSHIFT_KIBANA_OPS_INDEX_PATTERNS = "openshift.kibana.ops_index_patterns";
 
 
     static final boolean OPENSHIFT_DYNAMIC_ENABLED_DEFAULT = true;

src/main/java/io/fabric8/elasticsearch/plugin/OpenShiftElasticSearchPlugin.java

@@ -95,7 +95,7 @@ public Collection<Object> createComponents(Client client, ClusterService cluster
         final OpenshiftRequestContextFactory contextFactory = new OpenshiftRequestContextFactory(settings, requestUtils,
                 clientFactory);
         final SearchGuardSyncStrategyFactory documentFactory = new SearchGuardSyncStrategyFactory(pluginSettings);
-        final KibanaSeed seed = new KibanaSeed(pluginSettings, indexMappingLoader, pluginClient, threadPool);
+        final KibanaSeed seed = new KibanaSeed(pluginSettings, indexMappingLoader, pluginClient);
 
         this.aclFilter = new DynamicACLFilter(cache, pluginSettings, seed, client, contextFactory, documentFactory,
                 threadPool, requestUtils, new ConfigurationLoader(client, threadPool, settings));

src/main/java/io/fabric8/elasticsearch/plugin/OpenshiftRequestContextFactory.java

@@ -202,7 +202,7 @@ public static class OpenshiftRequestContext {
         private final String kibanaIndex;
         private final String kibanaIndexMode;
 
-        public OpenshiftRequestContext(final String user, final String token, boolean isClusterAdmin,
+        public OpenshiftRequestContext(final String user, final String token, boolean isClusterAdmin, 
                 Set<String> projects, String kibanaIndex, final String kibanaIndexMode) {
             this.user = user;
             this.token = token;

src/main/java/io/fabric8/elasticsearch/plugin/PluginClient.java

@@ -16,31 +16,43 @@
 
 package io.fabric8.elasticsearch.plugin;
 
+import java.io.IOException;
 import java.util.HashSet;
 import java.util.Iterator;
 import java.util.Map;
 import java.util.Set;
 import java.util.concurrent.Callable;
+import java.util.concurrent.ExecutionException;
 
 import org.apache.commons.lang.StringUtils;
 import org.apache.logging.log4j.Logger;
 import org.elasticsearch.ElasticsearchException;
+
 import org.elasticsearch.action.admin.indices.alias.IndicesAliasesRequestBuilder;
 import org.elasticsearch.action.admin.indices.alias.IndicesAliasesResponse;
 import org.elasticsearch.action.admin.indices.alias.get.GetAliasesRequestBuilder;
 import org.elasticsearch.action.admin.indices.alias.get.GetAliasesResponse;
+import org.elasticsearch.action.admin.indices.create.CreateIndexRequestBuilder;
+import org.elasticsearch.action.admin.indices.create.CreateIndexResponse;
 import org.elasticsearch.action.admin.indices.exists.indices.IndicesExistsRequestBuilder;
 import org.elasticsearch.action.admin.indices.exists.indices.IndicesExistsResponse;
+import org.elasticsearch.action.admin.indices.get.GetIndexRequestBuilder;
 import org.elasticsearch.action.admin.indices.get.GetIndexResponse;
+import org.elasticsearch.action.admin.indices.refresh.RefreshRequestBuilder;
+import org.elasticsearch.action.admin.indices.refresh.RefreshResponse;
+import org.elasticsearch.action.admin.indices.settings.put.UpdateSettingsRequestBuilder;
+import org.elasticsearch.action.admin.indices.settings.put.UpdateSettingsResponse;
 import org.elasticsearch.action.delete.DeleteResponse;
 import org.elasticsearch.action.get.GetRequestBuilder;
 import org.elasticsearch.action.get.GetResponse;
 import org.elasticsearch.action.index.IndexRequestBuilder;
 import org.elasticsearch.action.index.IndexResponse;
 import org.elasticsearch.action.search.SearchResponse;
+import org.elasticsearch.action.update.UpdateRequestBuilder;
 import org.elasticsearch.action.update.UpdateResponse;
 import org.elasticsearch.client.Client;
 import org.elasticsearch.common.logging.Loggers;
+import org.elasticsearch.common.settings.Settings;
 import org.elasticsearch.common.util.concurrent.ThreadContext;
 import org.elasticsearch.common.util.concurrent.ThreadContext.StoredContext;
 import org.elasticsearch.common.xcontent.XContentType;
@@ -75,10 +87,10 @@ public Object call() throws Exception {
                 }
                 return null;
             }
-            
+
         });
     }
-    
+
     public void updateDocument(String index, String type, String id, String source) {
         execute(new Callable<Object>() {
 
@@ -88,35 +100,33 @@ public Object call() throws Exception {
                     LOGGER.debug("Updating Document: '{}/{}/{}' source: '{}'", index, type, id, source);
                 }
                 addCommonHeaders();
-                UpdateResponse response = client.prepareUpdate(index, type, id)
-                        .setDoc(source, XContentType.JSON)
-                        .setDocAsUpsert(true)
-                        .get();
-                
+                UpdateResponse response = client.prepareUpdate(index, type, id).setDoc(source, XContentType.JSON)
+                        .setDocAsUpsert(true).get();
+
                 if (LOGGER.isDebugEnabled()) {
                     LOGGER.debug("Document Updated: '{}'", response.status());
                 }
                 return null;
             }
         });
     }
-    
+
     public SearchResponse search(String index, String type) {
-        return search(new String []{index}, new String [] {type}); 
+        return search(new String[] { index }, new String[] { type });
     }
-    
-    public SearchResponse search(String [] indicies, String [] types) {
+
+    public SearchResponse search(String[] indicies, String[] types) {
         return execute(new Callable<SearchResponse>() {
 
             @Override
             public SearchResponse call() throws Exception {
                 addCommonHeaders();
                 return client.prepareSearch(indicies).setTypes(types).get();
             }
-            
+
         });
     }
-    
+
     public GetIndexResponse getIndex(String... indicies) {
         return execute(new Callable<GetIndexResponse>() {
             @Override
@@ -126,20 +136,31 @@ public GetIndexResponse call() throws Exception {
             }
         });
     }
-    
+
     public GetResponse getDocument(String index, String type, String id) {
         return execute(new Callable<GetResponse>() {
 
             @Override
             public GetResponse call() throws Exception {
                 addCommonHeaders();
-                return client
-                        .prepareGet(index, type, id)
-                        .get();
+                return client.prepareGet(index, type, id).get();
             }
         });
     }
-    
+
+    public UpdateResponse update(String index, String type, String id, String source) {
+
+        LOGGER.debug("UPDATE: '{}/{}/{}' source: '{}'", index, type, id, source);
+
+        UpdateRequestBuilder builder = client.prepareUpdate(index, type, id).setDoc(source, XContentType.JSON)
+                .setDocAsUpsert(true);
+        addCommonHeaders();
+        UpdateResponse response = builder.get();
+
+        LOGGER.debug("Created with update? '{}'", response.status());
+        return response;
+    }
+
     public IndexResponse createDocument(String index, String type, String id, String source) {
         return execute(new Callable<IndexResponse>() {
 
@@ -154,6 +175,46 @@ public IndexResponse call() throws Exception {
         });
     }
 
+    public GetIndexResponse getIndices(String... indices) throws InterruptedException, ExecutionException {
+        if (LOGGER.isTraceEnabled()) {
+            LOGGER.trace("Getting indices '{}'", StringUtils.join(indices, ", "));
+        }
+        GetIndexRequestBuilder builder = client.admin().indices().prepareGetIndex().setIndices(indices);
+        addCommonHeaders();
+        return builder.get();
+    }
+
+    public CreateIndexResponse copyIndex(final String index, final String target, Settings settings, String... types)
+            throws InterruptedException, ExecutionException, IOException {
+        LOGGER.trace("Copying {} index to {} for types {}", index, target, types);
+        GetIndexResponse response = getIndices(index);
+        CreateIndexRequestBuilder builder = client.admin().indices().prepareCreate(target);
+        if(settings != null) {
+            builder.setSettings(settings);
+        }
+        for (String type : types) {
+            builder.addMapping(type, response.mappings().get(index).get(type).getSourceAsMap());
+        }
+        addCommonHeaders();
+        return builder.get();
+    }
+
+    public UpdateSettingsResponse updateSettings(final String index, Settings settings) {
+        UpdateSettingsRequestBuilder builder = client.admin().indices().prepareUpdateSettings(index)
+                .setSettings(settings);
+        addCommonHeaders();
+        return builder.get();
+    }
+
+    public RefreshResponse refreshIndices(String... indices) {
+        RefreshRequestBuilder builder = client.admin().indices().prepareRefresh(indices);
+        addCommonHeaders();
+        RefreshResponse response = builder.get();
+        LOGGER.debug("Refreshed '{}' successfully on {} of {} shards", indices, response.getSuccessfulShards(),
+                response.getTotalShards());
+        return response;
+    }
+
     public boolean indexExists(final String index) {
         return execute(new Callable<Boolean>() {
             @Override
@@ -168,16 +229,13 @@ public Boolean call() throws Exception {
             }
         });
     }
-    
+
     public boolean documentExists(final String index, final String type, final String id) {
         return execute(new Callable<Boolean>() {
             @Override
             public Boolean call() throws Exception {
                 LOGGER.trace("Checking for existence of document: '{}/{}/{}'", index, type, id);
-                GetRequestBuilder builder = client.prepareGet()
-                        .setIndex(index)
-                        .setType(type)
-                        .setId(id);
+                GetRequestBuilder builder = client.prepareGet().setIndex(index).setType(type).setId(id);
                 addCommonHeaders();
                 GetResponse response = builder.get();
                 final boolean exists = response.isExists();
@@ -186,14 +244,15 @@ public Boolean call() throws Exception {
             }
         });
     }
-    
+
     /**
      * Retrieve the set of indices for a given alias
      * 
-     * @param alias The alias to lookup
+     * @param alias
+     *            The alias to lookup
      * @return The set of indices to the given alias
      */
-    public Set<String> getIndicesForAlias(String alias){
+    public Set<String> getIndicesForAlias(String alias) {
         return execute(new Callable<Set<String>>() {
 
             @Override
@@ -221,7 +280,7 @@ public Set<String> call() throws Exception {
      * @return true if the request was acknowledged
      */
     public boolean alias(Map<String, String> aliases) {
-        return execute(new Callable<Boolean>(){
+        return execute(new Callable<Boolean>() {
 
             @Override
             public Boolean call() throws Exception {
@@ -245,11 +304,11 @@ public Boolean call() throws Exception {
     }
 
     private void addCommonHeaders() {
-        if(StringUtils.isBlank(threadContext.getTransient(ConfigConstants.SG_CHANNEL_TYPE))) {
+        if (StringUtils.isBlank(threadContext.getTransient(ConfigConstants.SG_CHANNEL_TYPE))) {
             threadContext.putTransient(ConfigConstants.SG_CHANNEL_TYPE, "direct");
         }
     }
-    
+
     private <T> T execute(Callable<T> callable) {
         try (StoredContext context = threadContext.stashContext()) {
             threadContext.putTransient(ConfigConstants.SG_CHANNEL_TYPE, "direct");
@@ -258,5 +317,4 @@ private <T> T execute(Callable<T> callable) {
             throw new ElasticsearchException(e);
         }
     }
-    
 }

src/main/java/io/fabric8/elasticsearch/plugin/PluginSettings.java

@@ -19,6 +19,10 @@
 import static io.fabric8.elasticsearch.plugin.acl.SearchGuardSyncStrategyFactory.PROJECT;
 import static io.fabric8.elasticsearch.plugin.acl.SearchGuardSyncStrategyFactory.USER;
 
+import java.util.Arrays;
+import java.util.HashSet;
+import java.util.Set;
+
 import org.apache.commons.lang.ArrayUtils;
 import org.apache.logging.log4j.Logger;
 import org.elasticsearch.common.logging.Loggers;
@@ -38,7 +42,8 @@ public class PluginSettings implements ConfigurationSettings {
     private final Boolean enabled;
     private final Boolean reWriteEnabled;
     private final Settings settings;
-
+    private final Set<String> opsIndexPatterns;
+    
     public PluginSettings(final Settings settings) {
         this.settings = settings;
         this.kibanaIndexMode = settings.get(OPENSHIFT_KIBANA_INDEX_MODE, KibanaIndexMode.DEFAULT_MODE);
@@ -60,6 +65,7 @@ public PluginSettings(final Settings settings) {
         this.enabled = settings.getAsBoolean(OPENSHIFT_DYNAMIC_ENABLED_FLAG, OPENSHIFT_DYNAMIC_ENABLED_DEFAULT);
         this.reWriteEnabled = settings.getAsBoolean(OPENSHIFT_KIBANA_REWRITE_ENABLED_FLAG,
                 OPENSHIFT_KIBANA_REWRITE_ENABLED_DEFAULT);
+        this.opsIndexPatterns = new HashSet<String>(Arrays.asList(settings.getAsArray(OPENSHIFT_KIBANA_OPS_INDEX_PATTERNS, DEFAULT_KIBANA_OPS_INDEX_PATTERNS)));
 
         LOGGER.info("Using kibanaIndexMode: '{}'", this.kibanaIndexMode);
         LOGGER.debug("searchGuardIndex: {}", this.searchGuardIndex);
@@ -110,4 +116,8 @@ public Boolean isKibanaRewriteEnabled() {
     public void setKibanaIndexMode(String kibanaIndexMode) {
         this.kibanaIndexMode = kibanaIndexMode;
     }
+    
+    public Set<String> getKibanaOpsIndexPatterns() {
+        return opsIndexPatterns;
+    }
 }