fix: Refactor SQL engine username logic

[john-bodley]

SUMMARY

This PR fixes a number of issues (some cosmetic) with the SQL username. Specifically:

1. The username was referred to as both username and user_name. The inconsistency added undue complexity.
2. It a number of places the g.user.username was passed as the username argument of the get_sqla_engine function (or similar) even when it was the default fallback. This added unnecessary complexity, i.e., from reading the code it wasn't apparent when/why the username would be overridden. In reality it mostly isn't, i.e., it should always be the logged in user unless the query is being executed from Celery—where there is no user logged in.
3. The logic introduced in fix: [alert] should run alert query from report account #17499 wasn't suffice, in actuality it likely added more complexity, as although it tried to ensure that the get_df for the alert was executed by the passed in user, if the underlying query used Jinja templating for fetching the the latest partition or similar those queries were executed by the user defined in the SQLAlchemy URI (if defined; falling back to the system user)—leveraging the SQLAlchemy inspector—per here.

The fix for (1) was to rename user_name to username where possible. For (2) and (3) the combined fix was to actually remove overriding the username in functions given the level of nesting, etc. and rely simply on using g.user.username, i.e., the logged in user, as the user (or effective user) for all queries. Given we're using globals via flask.g—Flask's versions of globals which persist for the duration of the request—why not update it rather than passing around another username everywhere. For instances where there was no user logged in: alerting, async SQL Lab queries, etc. we simply temporarily override the g.user using the provided username. Hopefully this approach simplified the code and brought more transparency.

The one doubt I had was with how the app context works with Celery and whether flask.g is thread safe, though per here it seems we create a new app context for every task.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

TESTING INSTRUCTIONS

CI. Updated existing and added new unit tests.

ADDITIONAL INFORMATION

• Has associated issue:
• Required feature flags:
• Changes UI
• Includes DB Migration (follow approval process in SIP-59)
  • Migration is atomic, supports rollback & is backwards-compatible
  • Confirm DB migration upgrade and downgrade tested
  • Runtime estimates and downtime expectations provided
• Introduces new feature or API
• Removes existing feature or API

[john-bodley]

Same logic as previously, though indented due to the context manager.

[john-bodley]

Same logic as previously, though indented due to the context manager.

[john-bodley]

nullpool=True is the default.

[john-bodley]

Same logic as previously, though indented due to the context manager.

[john-bodley]

Same logic as previously, though indented due to the context manager.

[john-bodley]

We still need to pass in the username to the async Celery task and then override.

[john-bodley]

Given that on like #372 username is truthy there's no need for the username or "admin" logic.

[codecov]

Codecov Report

Merging #19914 (fff9ad0) into master (fff9ad0) will not change coverage.
The diff coverage is n/a.

❗ Current head fff9ad0 differs from pull request most recent head ea901ba. Consider uploading reports for the commit ea901ba to get more accurate results

@@           Coverage Diff           @@
##           master   #19914   +/-   ##
=======================================
  Coverage   66.36%   66.36%           
=======================================
  Files        1712     1712           
  Lines       64088    64088           
  Branches     6744     6744           
=======================================
  Hits        42529    42529           
  Misses      19846    19846           
  Partials     1713     1713           

Flag	Coverage Δ
hive	53.65% <0.00%> (ø)
mysql	82.04% <0.00%> (ø)
postgres	82.10% <0.00%> (ø)
presto	53.51% <0.00%> (ø)
python	82.53% <0.00%> (ø)
sqlite	81.83% <0.00%> (ø)
unit	49.01% <0.00%> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update fff9ad0...ea901ba. Read the comment docs.

[dpgaspar]

should it be def override_user(user: Optional[User]) -> Iterator[None]: ?

[dpgaspar]

g is thread safe, it's created here: https://github.com/pallets/flask/blob/bd56d19b167822a9a23e2e9e2a07ccccc36baa8d/src/flask/globals.py#L59

Uses werkzeug Local: https://werkzeug.palletsprojects.com/en/1.0.x/local/#module-werkzeug.local

[villebro]

LGTM. I've long been annoyed by the user_?name = g.user.username if g.user and hasattr(g.user, "username") else None snippet that is littered around the codebase. Super happy to see it removed and centralized behind a single codepath.