feat: rename TABLE_NAMES_CACHE_CONFIG to DATA_CACHE_CONFIG

[ktmud]

SUMMARY

💥 Breaking Change

Rename config value TABLE_NAMES_CACHE_CONFIG to DATA_CACHE_CONFIG, and save datasource query results to this cache, too.

Motivation

Companies like Airbnb have different security levels for Superset itself and the datasources Superset connects to: anyone can login to the same Superset, but not everyone have access to all data. Superset has SecurityManager to check whether a user has access to certain datasource, but all query results are still stored in the same cache, regardless of users' access levels. If a malicious party obtained access to the cache server via certain Superset user in a high-risk region, they get access to all cached data.

By separating cache storage for Superset metadata and the actual data users consume, we can have a better insulation of sensitive data by configuring different cache backend for high-risk regions while keeping the cache for all the Superset metadata in sync.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

N/A

TEST PLAN

CI

ADDITIONAL INFORMATION

• Has associated issue:
• Changes UI
• Requires DB Migration: Superset admins need to manually update cache configs
• Confirm DB Migration upgrade and downgrade tested.
• Introduces new feature or API
• Removes existing feature or API

[codecov-io]

Codecov Report

Merging #11509 (226fbe9) into master (68693c7) will increase coverage by 4.26%.
The diff coverage is 65.68%.

@@            Coverage Diff             @@
##           master   #11509      +/-   ##
==========================================
+ Coverage   62.86%   67.12%   +4.26%     
==========================================
  Files         889      889              
  Lines       43055    43062       +7     
  Branches     4017     4017              
==========================================
+ Hits        27065    28905    +1840     
+ Misses      15811    14060    -1751     
+ Partials      179       97      -82     

Flag	Coverage Δ
cypress	56.05% <ø> (?)
javascript	62.81% <ø> (ø)
python	62.87% <65.68%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
superset/utils/decorators.py	100.00% <ø> (+34.17%)	⬆️
superset/utils/screenshots.py	36.36% <0.00%> (ø)
superset/viz_sip38.py	0.00% <0.00%> (ø)
superset/utils/cache.py	57.57% <54.38%> (-22.43%)	⬇️
superset/models/dashboard.py	75.50% <75.00%> (+0.12%)	⬆️
superset/viz.py	59.40% <88.88%> (+0.07%)	⬆️
superset/__init__.py	100.00% <100.00%> (ø)
superset/common/query_context.py	83.23% <100.00%> (-4.72%)	⬇️
superset/config.py	90.07% <100.00%> (-0.04%)	⬇️
superset/db_engine_specs/hive.py	84.04% <100.00%> (+0.06%)	⬆️
... and 194 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 68693c7...226fbe9. Read the comment docs.

[ktmud]

Import the cache_manager instead of cache to make it clear which cache we are using.

[ktmud]

and cache is not needed because of #9020

[ktmud]

A small refactor to make the memoize function more flexible.

[ktmud]

Moved over from superset.utils.decorators

[ktmud]

Didn't add backward compatibility because the data objects put into this cache will become much much larger. If a Superset admin has configured in-memory cache for TABLE_NAMES_CACHE_CONFIG, they might run into problems. Therefore it's better to make things break to make them aware of this change.

For most users, the migration is as simple as renaming the config value.

[bkyryliuk]

I will be on PTO next week, won't have a change to give a full review. 1 suggestion it would be nice to add a unit test that will document the expected behavior and will prevent from the regressions, tests can impersonate the user to hit various endpoints.

[ktmud]

I will be on PTO next week, won't have a change to give a full review. 1 suggestion it would be nice to add a unit test that will document the expected behavior and will prevent from the regressions, tests can impersonate the user to hit various endpoints.

I added two test assertions in cache_tests.py. Do you think we need more?

[ktmud]

Make sure the global default is applied as documented.

[ktmud]

@john-bodley @etr2460 So previously the test tests/databases/api_tests.py::TestDatabaseApi::test_create_database_conn_fail was failing because I setup a cache backend for DATA_CACHE_CONFIG while in the old test config TABLE_NAMES_CACHE_CONFIG was set to cache_type: null.

Not sure why this cache would fail test_create_database_conn_fail though. Maybe @dpgaspar have some idea?

[ktmud]

Here's a test run that fails when the only change comparing to master is to enable TABLE_NAMES_CACHE_CONFIG.

[ktmud]

count = 2 seems to assume some tests run before this test. If you just initialized the database and run this test alone, this test will fail.

[graceguo-supercat]

please resolve conflicts. otherwise LGTM.

[villebro]

LGTM, however I didn't quite see how the "timeout search path" happens, is that something happening outside this PR in local configs or implicitly via Flask-Caching?

[villebro]

Nice

[ktmud]

LGTM, however I didn't quite see how the "timeout search path" happens, is that something happening outside this PR in local configs or implicitly via Flask-Caching?

I think it is referring to this logic here: https://github.com/apache/incubator-superset/blob/600a6fa92a0bbe5bfd93371db5ced6af556c3697/superset/viz.py#L423-L433

[villebro]

LGTM, however I didn't quite see how the "timeout search path" happens, is that something happening outside this PR in local configs or implicitly via Flask-Caching?

I think it is referring to this logic here:

https://github.com/apache/incubator-superset/blob/600a6fa92a0bbe5bfd93371db5ced6af556c3697/superset/viz.py#L423-L433

Ah sorry, I misinterpreted the comment, never mind.

[villebro]

This is a good layer of optional additional security, thanks for implementing.

[bkyryliuk]

looks great