Use PrincipalEntity in PolarisMetaStoreManager.createPrincipal (#2518)

* Use PrincipalEntity in PolarisMetaStoreManager.createPrincipal

if we pass and return a more specific `PrincipalEntity` we can simplify
the surrounding code and implementation

Author: XN137

persistence/relational-jdbc/src/main/java/org/apache/polaris/persistence/relational/jdbc/JdbcMetaStoreManagerFactory.java

@@ -36,7 +36,6 @@
 import org.apache.polaris.core.config.PolarisConfigurationStore;
 import org.apache.polaris.core.config.RealmConfig;
 import org.apache.polaris.core.context.RealmContext;
-import org.apache.polaris.core.entity.PolarisEntityConstants;
 import org.apache.polaris.core.entity.PrincipalEntity;
 import org.apache.polaris.core.persistence.AtomicOperationMetaStoreManager;
 import org.apache.polaris.core.persistence.BasePersistence;
@@ -257,11 +256,7 @@ private PrincipalSecretsResult bootstrapServiceAndCreatePolarisPrincipalForRealm
 
     PrincipalEntity rootPrincipal =
         metaStoreManager.findRootPrincipal(polarisContext).orElseThrow();
-    return metaStoreManager.loadPrincipalSecrets(
-        polarisContext,
-        rootPrincipal
-            .getInternalPropertiesAsMap()
-            .get(PolarisEntityConstants.getClientIdPropertyName()));
+    return metaStoreManager.loadPrincipalSecrets(polarisContext, rootPrincipal.getClientId());
   }
 
   /**

polaris-core/src/main/java/org/apache/polaris/core/persistence/AtomicOperationMetaStoreManager.java

@@ -49,6 +49,8 @@
 import org.apache.polaris.core.entity.PolarisPrincipalSecrets;
 import org.apache.polaris.core.entity.PolarisPrivilege;
 import org.apache.polaris.core.entity.PolarisTaskConstants;
+import org.apache.polaris.core.entity.PrincipalEntity;
+import org.apache.polaris.core.entity.PrincipalRoleEntity;
 import org.apache.polaris.core.persistence.dao.entity.BaseResult;
 import org.apache.polaris.core.persistence.dao.entity.ChangeTrackingResult;
 import org.apache.polaris.core.persistence.dao.entity.CreateCatalogResult;
@@ -253,12 +255,8 @@ private void dropEntity(
 
     // if it is a principal, we also need to drop the secrets
     if (entity.getType() == PolarisEntityType.PRINCIPAL) {
-      // get internal properties
-      Map<String, String> properties = entity.getInternalPropertiesAsMap();
-
-      // get client_id
-      String clientId = properties.get(PolarisEntityConstants.getClientIdPropertyName());
-
+      PrincipalEntity principalEntity = PrincipalEntity.of(entity);
+      String clientId = principalEntity.getClientId();
       // delete it from the secret slice
       ((IntegrationPersistence) ms).deletePrincipalSecrets(callCtx, clientId, entity.getId());
     }
@@ -577,28 +575,22 @@ private void revokeGrantRecord(
     // role. The principal role will be granted to that root principal and the root catalog admin
     // of the root catalog will be granted to that principal role.
     long rootPrincipalId = ms.generateNewId(callCtx);
-    PolarisBaseEntity rootPrincipal =
-        new PolarisBaseEntity(
-            PolarisEntityConstants.getNullId(),
-            rootPrincipalId,
-            PolarisEntityType.PRINCIPAL,
-            PolarisEntitySubType.NULL_SUBTYPE,
-            PolarisEntityConstants.getRootEntityId(),
-            PolarisEntityConstants.getRootPrincipalName());
-
-    // create this principal
+    PrincipalEntity rootPrincipal =
+        new PrincipalEntity.Builder()
+            .setId(rootPrincipalId)
+            .setName(PolarisEntityConstants.getRootPrincipalName())
+            .setCreateTimestamp(System.currentTimeMillis())
+            .build();
     this.createPrincipal(callCtx, rootPrincipal);
 
     // now create the account admin principal role
     long serviceAdminPrincipalRoleId = ms.generateNewId(callCtx);
-    PolarisBaseEntity serviceAdminPrincipalRole =
-        new PolarisBaseEntity(
-            PolarisEntityConstants.getNullId(),
-            serviceAdminPrincipalRoleId,
-            PolarisEntityType.PRINCIPAL_ROLE,
-            PolarisEntitySubType.NULL_SUBTYPE,
-            PolarisEntityConstants.getRootEntityId(),
-            PolarisEntityConstants.getNameOfPrincipalServiceAdminRole());
+    PrincipalRoleEntity serviceAdminPrincipalRole =
+        new PrincipalRoleEntity.Builder()
+            .setId(serviceAdminPrincipalRoleId)
+            .setName(PolarisEntityConstants.getNameOfPrincipalServiceAdminRole())
+            .setCreateTimestamp(System.currentTimeMillis())
+            .build();
     this.persistNewEntity(callCtx, ms, serviceAdminPrincipalRole);
 
     // we also need to grant usage on the account-admin principal to the principal
@@ -748,51 +740,28 @@ private void revokeGrantRecord(
   /** {@inheritDoc} */
   @Override
   public @Nonnull CreatePrincipalResult createPrincipal(
-      @Nonnull PolarisCallContext callCtx, @Nonnull PolarisBaseEntity principal) {
+      @Nonnull PolarisCallContext callCtx, @Nonnull PrincipalEntity principal) {
     // get metastore we should be using
     BasePersistence ms = callCtx.getMetaStore();
 
     // validate input
     getDiagnostics().checkNotNull(principal, "unexpected_null_principal");
 
     // check if that catalog has already been created
-    PolarisBaseEntity refreshPrincipal =
-        ms.lookupEntity(
-            callCtx, principal.getCatalogId(), principal.getId(), principal.getTypeCode());
+    PrincipalEntity refreshPrincipal =
+        PrincipalEntity.of(
+            ms.lookupEntity(
+                callCtx, principal.getCatalogId(), principal.getId(), principal.getTypeCode()));
 
     // if found, probably a retry, simply return the previously created principal
     // This can be done safely as a separate atomic operation before trying to create the principal
     // because same-id idempotent-retry collisions of this sort are necessarily sequential, so
     // there is no concurrency conflict for something else creating a principal of this same id.
     if (refreshPrincipal != null) {
-      // if found, ensure it is indeed a principal
-      getDiagnostics()
-          .check(
-              principal.getTypeCode() == PolarisEntityType.PRINCIPAL.getCode(),
-              "not_a_principal",
-              "principal={}",
-              principal);
-
-      // get internal properties
-      Map<String, String> properties = refreshPrincipal.getInternalPropertiesAsMap();
-
-      // get client_id
-      String clientId = properties.get(PolarisEntityConstants.getClientIdPropertyName());
-
-      // should not be null
-      getDiagnostics()
-          .checkNotNull(
-              clientId,
-              "null_client_id",
-              "properties={}",
-              refreshPrincipal.getInternalProperties());
-      // ensure non null and non empty
+      String clientId = refreshPrincipal.getClientId();
+      getDiagnostics().checkNotNull(clientId, "null_client_id", "principal={}", refreshPrincipal);
       getDiagnostics()
-          .check(
-              !clientId.isEmpty(),
-              "empty_client_id",
-              "properties={}",
-              refreshPrincipal.getInternalProperties());
+          .check(!clientId.isEmpty(), "empty_client_id", "principal={}", refreshPrincipal);
 
       // get the main and secondary secrets for that client
       PolarisPrincipalSecrets principalSecrets =
@@ -816,15 +785,10 @@ private void revokeGrantRecord(
         ((IntegrationPersistence) ms)
             .generateNewPrincipalSecrets(callCtx, principal.getName(), principal.getId());
 
-    // generate properties
-    Map<String, String> internalProperties = principal.getInternalPropertiesAsMap();
-    internalProperties.put(
-        PolarisEntityConstants.getClientIdPropertyName(), principalSecrets.getPrincipalClientId());
-
     // remember client id
-    PolarisBaseEntity updatedPrincipal =
-        new PolarisBaseEntity.Builder(principal)
-            .internalPropertiesAsMap(internalProperties)
+    PrincipalEntity updatedPrincipal =
+        new PrincipalEntity.Builder(principal)
+            .setClientId(principalSecrets.getPrincipalClientId())
             .build();
     // now create and persist new catalog entity
     EntityResult lowLevelResult = this.persistNewEntity(callCtx, ms, updatedPrincipal);

polaris-core/src/main/java/org/apache/polaris/core/persistence/LocalPolarisMetaStoreManagerFactory.java

@@ -29,7 +29,6 @@
 import org.apache.polaris.core.PolarisDiagnostics;
 import org.apache.polaris.core.config.RealmConfig;
 import org.apache.polaris.core.context.RealmContext;
-import org.apache.polaris.core.entity.PolarisEntityConstants;
 import org.apache.polaris.core.entity.PrincipalEntity;
 import org.apache.polaris.core.persistence.bootstrap.RootCredentialsSet;
 import org.apache.polaris.core.persistence.cache.EntityCache;
@@ -202,11 +201,7 @@ private PrincipalSecretsResult bootstrapServiceAndCreatePolarisPrincipalForRealm
 
     PrincipalEntity rootPrincipal =
         metaStoreManager.findRootPrincipal(polarisContext).orElseThrow();
-    return metaStoreManager.loadPrincipalSecrets(
-        polarisContext,
-        rootPrincipal
-            .getInternalPropertiesAsMap()
-            .get(PolarisEntityConstants.getClientIdPropertyName()));
+    return metaStoreManager.loadPrincipalSecrets(polarisContext, rootPrincipal.getClientId());
   }
 
   /**

polaris-core/src/main/java/org/apache/polaris/core/persistence/PolarisMetaStoreManager.java

@@ -194,7 +194,7 @@ Page<PolarisBaseEntity> loadEntities(
    */
   @Nonnull
   CreatePrincipalResult createPrincipal(
-      @Nonnull PolarisCallContext callCtx, @Nonnull PolarisBaseEntity principal);
+      @Nonnull PolarisCallContext callCtx, @Nonnull PrincipalEntity principal);
 
   /**
    * Create a new catalog. This not only creates the new catalog entity but also the initial admin

polaris-core/src/main/java/org/apache/polaris/core/persistence/TransactionWorkspaceMetaStoreManager.java

@@ -37,6 +37,7 @@
 import org.apache.polaris.core.entity.PolarisEntityType;
 import org.apache.polaris.core.entity.PolarisEvent;
 import org.apache.polaris.core.entity.PolarisPrivilege;
+import org.apache.polaris.core.entity.PrincipalEntity;
 import org.apache.polaris.core.persistence.dao.entity.BaseResult;
 import org.apache.polaris.core.persistence.dao.entity.ChangeTrackingResult;
 import org.apache.polaris.core.persistence.dao.entity.CreateCatalogResult;
@@ -150,7 +151,7 @@ public GenerateEntityIdResult generateNewEntityId(@Nonnull PolarisCallContext ca
 
   @Override
   public CreatePrincipalResult createPrincipal(
-      @Nonnull PolarisCallContext callCtx, @Nonnull PolarisBaseEntity principal) {
+      @Nonnull PolarisCallContext callCtx, @Nonnull PrincipalEntity principal) {
     diagnostics.fail("illegal_method_in_transaction_workspace", "createPrincipal");
     return null;
   }

polaris-core/src/main/java/org/apache/polaris/core/persistence/dao/entity/CreatePrincipalResult.java

@@ -24,6 +24,7 @@
 import jakarta.annotation.Nullable;
 import org.apache.polaris.core.entity.PolarisBaseEntity;
 import org.apache.polaris.core.entity.PolarisPrincipalSecrets;
+import org.apache.polaris.core.entity.PrincipalEntity;
 
 /** the return the result of a create-principal method */
 public class CreatePrincipalResult extends BaseResult {
@@ -69,8 +70,8 @@ private CreatePrincipalResult(
     this.principalSecrets = principalSecrets;
   }
 
-  public PolarisBaseEntity getPrincipal() {
-    return principal;
+  public PrincipalEntity getPrincipal() {
+    return PrincipalEntity.of(principal);
   }
 
   public PolarisPrincipalSecrets getPrincipalSecrets() {

polaris-core/src/main/java/org/apache/polaris/core/persistence/transactional/TransactionalMetaStoreManagerImpl.java

@@ -48,6 +48,8 @@
 import org.apache.polaris.core.entity.PolarisPrincipalSecrets;
 import org.apache.polaris.core.entity.PolarisPrivilege;
 import org.apache.polaris.core.entity.PolarisTaskConstants;
+import org.apache.polaris.core.entity.PrincipalEntity;
+import org.apache.polaris.core.entity.PrincipalRoleEntity;
 import org.apache.polaris.core.persistence.BaseMetaStoreManager;
 import org.apache.polaris.core.persistence.PolarisMetaStoreManager;
 import org.apache.polaris.core.persistence.PolarisObjectMapperUtil;
@@ -238,12 +240,8 @@ private void dropEntity(
 
     // if it is a principal, we also need to drop the secrets
     if (entity.getType() == PolarisEntityType.PRINCIPAL) {
-      // get internal properties
-      Map<String, String> properties = entity.getInternalPropertiesAsMap();
-
-      // get client_id
-      String clientId = properties.get(PolarisEntityConstants.getClientIdPropertyName());
-
+      PrincipalEntity principalEntity = PrincipalEntity.of(entity);
+      String clientId = principalEntity.getClientId();
       // delete it from the secret slice
       ms.deletePrincipalSecretsInCurrentTxn(callCtx, clientId, entity.getId());
     }
@@ -552,28 +550,22 @@ private void bootstrapPolarisService(
     // role. The principal role will be granted to that root principal and the root catalog admin
     // of the root catalog will be granted to that principal role.
     long rootPrincipalId = ms.generateNewIdInCurrentTxn(callCtx);
-    PolarisBaseEntity rootPrincipal =
-        new PolarisBaseEntity(
-            PolarisEntityConstants.getNullId(),
-            rootPrincipalId,
-            PolarisEntityType.PRINCIPAL,
-            PolarisEntitySubType.NULL_SUBTYPE,
-            PolarisEntityConstants.getRootEntityId(),
-            PolarisEntityConstants.getRootPrincipalName());
-
-    // create this principal
+    PrincipalEntity rootPrincipal =
+        new PrincipalEntity.Builder()
+            .setId(rootPrincipalId)
+            .setName(PolarisEntityConstants.getRootPrincipalName())
+            .setCreateTimestamp(System.currentTimeMillis())
+            .build();
     this.createPrincipal(callCtx, ms, rootPrincipal);
 
     // now create the account admin principal role
     long serviceAdminPrincipalRoleId = ms.generateNewIdInCurrentTxn(callCtx);
-    PolarisBaseEntity serviceAdminPrincipalRole =
-        new PolarisBaseEntity(
-            PolarisEntityConstants.getNullId(),
-            serviceAdminPrincipalRoleId,
-            PolarisEntityType.PRINCIPAL_ROLE,
-            PolarisEntitySubType.NULL_SUBTYPE,
-            PolarisEntityConstants.getRootEntityId(),
-            PolarisEntityConstants.getNameOfPrincipalServiceAdminRole());
+    PrincipalRoleEntity serviceAdminPrincipalRole =
+        new PrincipalRoleEntity.Builder()
+            .setId(serviceAdminPrincipalRoleId)
+            .setName(PolarisEntityConstants.getNameOfPrincipalServiceAdminRole())
+            .setCreateTimestamp(System.currentTimeMillis())
+            .build();
     this.persistNewEntity(callCtx, ms, serviceAdminPrincipalRole);
 
     // we also need to grant usage on the account-admin principal to the principal
@@ -777,49 +769,26 @@ private void bootstrapPolarisService(
         () -> loadEntities(callCtx, ms, catalogPath, entityType, entitySubType, pageToken));
   }
 
-  /** {@link #createPrincipal(PolarisCallContext, PolarisBaseEntity)} */
+  /** {@link #createPrincipal(PolarisCallContext, PrincipalEntity)} */
   private @Nonnull CreatePrincipalResult createPrincipal(
       @Nonnull PolarisCallContext callCtx,
       @Nonnull TransactionalPersistence ms,
-      @Nonnull PolarisBaseEntity principal) {
+      @Nonnull PrincipalEntity principal) {
     // validate input
     getDiagnostics().checkNotNull(principal, "unexpected_null_principal");
 
     // check if that catalog has already been created
-    PolarisBaseEntity refreshPrincipal =
-        ms.lookupEntityInCurrentTxn(
-            callCtx, principal.getCatalogId(), principal.getId(), principal.getTypeCode());
+    PrincipalEntity refreshPrincipal =
+        PrincipalEntity.of(
+            ms.lookupEntityInCurrentTxn(
+                callCtx, principal.getCatalogId(), principal.getId(), principal.getTypeCode()));
 
     // if found, probably a retry, simply return the previously created principal
     if (refreshPrincipal != null) {
-      // if found, ensure it is indeed a principal
-      getDiagnostics()
-          .check(
-              principal.getTypeCode() == PolarisEntityType.PRINCIPAL.getCode(),
-              "not_a_principal",
-              "principal={}",
-              principal);
-
-      // get internal properties
-      Map<String, String> properties = refreshPrincipal.getInternalPropertiesAsMap();
-
-      // get client_id
-      String clientId = properties.get(PolarisEntityConstants.getClientIdPropertyName());
-
-      // should not be null
-      getDiagnostics()
-          .checkNotNull(
-              clientId,
-              "null_client_id",
-              "properties={}",
-              refreshPrincipal.getInternalProperties());
-      // ensure non null and non empty
+      String clientId = refreshPrincipal.getClientId();
+      getDiagnostics().checkNotNull(clientId, "null_client_id", "principal={}", refreshPrincipal);
       getDiagnostics()
-          .check(
-              !clientId.isEmpty(),
-              "empty_client_id",
-              "properties={}",
-              refreshPrincipal.getInternalProperties());
+          .check(!clientId.isEmpty(), "empty_client_id", "principal={}", refreshPrincipal);
 
       // get the main and secondary secrets for that client
       PolarisPrincipalSecrets principalSecrets =
@@ -854,15 +823,10 @@ private void bootstrapPolarisService(
     PolarisPrincipalSecrets principalSecrets =
         ms.generateNewPrincipalSecretsInCurrentTxn(callCtx, principal.getName(), principal.getId());
 
-    // generate properties
-    Map<String, String> internalProperties = principal.getInternalPropertiesAsMap();
-    internalProperties.put(
-        PolarisEntityConstants.getClientIdPropertyName(), principalSecrets.getPrincipalClientId());
-
     // remember client id
-    PolarisBaseEntity updatedPrincipal =
-        new PolarisBaseEntity.Builder(principal)
-            .internalPropertiesAsMap(internalProperties)
+    PrincipalEntity updatedPrincipal =
+        new PrincipalEntity.Builder(principal)
+            .setClientId(principalSecrets.getPrincipalClientId())
             .build();
 
     // now create and persist new catalog entity
@@ -875,7 +839,7 @@ private void bootstrapPolarisService(
   /** {@inheritDoc} */
   @Override
   public @Nonnull CreatePrincipalResult createPrincipal(
-      @Nonnull PolarisCallContext callCtx, @Nonnull PolarisBaseEntity principal) {
+      @Nonnull PolarisCallContext callCtx, @Nonnull PrincipalEntity principal) {
     // get metastore we should be using
     TransactionalPersistence ms = ((TransactionalPersistence) callCtx.getMetaStore());