[Improve][Manager] Fix the security vulnerability in /api/cluster/testConnection

### Description

Currently, /api/cluster/testConnection does not perform role verification or SSRF verification. To fix this issue, it is necessary to add relevant verifications to this API.

Fix the security vulnerability in /api/cluster/testConnection.

1. Add @RequiresRoles to testConnection consistent with other data node
management operations.
2. Extend UrlVerificationUtils to deny link-local, loopback, and RFC 1918
address ranges.
3. Configure RestTemplate instances used by HTTP-based operators to reject
SSRF-prone targets before connecting.


### InLong Component

InLong Manager

### Are you willing to submit PR?

- [x] Yes, I am willing to submit a PR!

### Code of Conduct

- [x] I agree to follow this project's [Code of Conduct](https://www.apache.org/foundation/policies/conduct)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Improve][Manager] Fix the security vulnerability in /api/cluster/testConnection #12133

Description

InLong Component

Are you willing to submit PR?

Code of Conduct

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

[Improve][Manager] Fix the security vulnerability in /api/cluster/testConnection #12133

Description

Description

InLong Component

Are you willing to submit PR?

Code of Conduct

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions