Added User support for background job and API Transport Actions

[saratvemulapalli]

*Issue #195 *

Description of changes:
Added User support for background job and API Transport Actions

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

[codecov]

Codecov Report

Merging #272 into master will decrease coverage by 0.53%.
The diff coverage is 48.84%.

@@             Coverage Diff              @@
##             master     #272      +/-   ##
============================================
- Coverage     71.23%   70.69%   -0.54%     
- Complexity     1761     1776      +15     
============================================
  Files           185      186       +1     
  Lines          8436     8597     +161     
  Branches        722      731       +9     
============================================
+ Hits           6009     6078      +69     
- Misses         2089     2173      +84     
- Partials        338      346       +8     

Flag	Coverage Δ	Complexity Δ
#cli	79.27% <ø> (ø)	0.00 <ø> (ø)
#plugin	69.91% <48.84%> (-0.57%)	1776.00 <22.00> (+15.00)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ	Complexity Δ
...stroforelasticsearch/ad/AnomalyDetectorRunner.java	10.90% <0.00%> (-0.42%)	1.00 <0.00> (ø)
...stroforelasticsearch/ad/model/AnomalyDetector.java	65.02% <0.00%> (-0.15%)	56.00 <0.00> (+1.00)	⬇️
...forelasticsearch/ad/rest/AbstractSearchAction.java	23.52% <0.00%> (-1.48%)	2.00 <0.00> (ø)
...search/ad/rest/RestIndexAnomalyDetectorAction.java	46.00% <0.00%> (-0.94%)	3.00 <0.00> (ø)
...stroforelasticsearch/ad/util/RestHandlerUtils.java	84.21% <0.00%> (-12.76%)	13.00 <0.00> (ø)
.../transport/SearchAnomalyResultTransportAction.java	34.09% <30.55%> (-43.69%)	4.00 <3.00> (+2.00)	⬇️
...ransport/SearchAnomalyDetectorTransportAction.java	35.71% <32.35%> (-42.07%)	4.00 <3.00> (+2.00)	⬇️
...oforelasticsearch/ad/AnomalyDetectorJobRunner.java	75.52% <33.33%> (-0.27%)	35.00 <0.00> (ø)
...d/transport/GetAnomalyDetectorTransportAction.java	46.87% <35.00%> (-0.38%)	9.00 <0.00> (ø)
...est/handler/IndexAnomalyDetectorActionHandler.java	48.70% <43.75%> (-2.69%)	28.00 <2.00> (+1.00)	⬇️
... and 16 more

[ohltyler]

LGTM!

[ylwu-amzn]

change to log.error?

[saratvemulapalli]

Good point sure.

[ylwu-amzn]

What if the searchSourceBuilder.query() is not a BoolQueryBuilder ?
For example, one user want to count all anomaly result. That will be just an aggregation query. For this case we will not add this filterBackendRoles term query to the original query, then user can get total anomaly result count for all users.

[ylwu-amzn]

Any updates? If it's not easy to build a flexible solution. How about we start from supporting BoolQueryBuilder like alerting ? We can support more query types in future.

[saratvemulapalli]

Yeah, its getting tricky support other queries, I spent some time to figure out if there is a cleaner way of doing it.
Like you said, lets start supporting the bool query and we can add support to the other queries if needed later.

I will handle queries with an error for now.

[ylwu-amzn]

If user use curl to search detector, and they don't use bool query, they can search other user's detector data. So we may have security leak.

How about we build a dedicated API to check if detector name is unique or not. The input is simple a detector name string, the output is true or false. And we control access in java code by ourselves. This needs to change AD Kibana code to switch to this new API.

[saratvemulapalli]

Yeah sure that sounds good. I will work with Tyler and work on these changes.

[ylwu-amzn]

Sounds good. Will approve this one. Put the new API in another PR.
BTW, we should throw error for search detectors if not bool query.