Add a flag to control whether credentials are printed during bootstrapping

polaris-core/src/main/java/org/apache/polaris/core/persistence/secrets/BootstrapPrincipalSecretsGenerator.java

@@ -21,17 +21,28 @@
 import org.apache.polaris.core.entity.PolarisPrincipalSecrets;
 import org.jetbrains.annotations.NotNull;
 import org.jetbrains.annotations.Nullable;
+import org.jetbrains.annotations.VisibleForTesting;
 
+/**
+ * A {@link PrincipalSecretsGenerator} implementation used for bootstrapping that uses an {@link
+ * EnvVariablePrincipalSecretsGenerator} if possible and falls back to a {@link
+ * RandomPrincipalSecretsGenerator} otherwise
+ */
 public class BootstrapPrincipalSecretsGenerator extends PrincipalSecretsGenerator {
 
   public BootstrapPrincipalSecretsGenerator(@Nullable String realmName) {
     super(realmName);
   }
 
-  private PrincipalSecretsGenerator getDelegate(
-      @Nullable String realmName, @NotNull String principalName) {
-    var envVarGenerator = new EnvVariablePrincipalSecretsGenerator(realmName);
-    if (envVarGenerator.systemGeneratedSecrets(principalName)) {
+  @VisibleForTesting
+  protected PrincipalSecretsGenerator buildEnvVariablePrincipalSecretsGenerator(String realmName) {
+    return new EnvVariablePrincipalSecretsGenerator(realmName);
+  }
+
+  @VisibleForTesting
+  protected PrincipalSecretsGenerator getDelegate(@NotNull String principalName) {
+    var envVarGenerator = buildEnvVariablePrincipalSecretsGenerator(principalName);
+    if (!envVarGenerator.systemGeneratedSecrets(principalName)) {
       return new RandomPrincipalSecretsGenerator(realmName);
     } else {
       return envVarGenerator;
@@ -40,13 +51,13 @@ private PrincipalSecretsGenerator getDelegate(
 
   @Override
   public PolarisPrincipalSecrets produceSecrets(@NotNull String principalName, long principalId) {
-    PrincipalSecretsGenerator delegate = getDelegate(realmName, principalName);
+    PrincipalSecretsGenerator delegate = getDelegate(principalName);
     return delegate.produceSecrets(principalName, principalId);
   }
 
   @Override
   public boolean systemGeneratedSecrets(@NotNull String principalName) {
-    PrincipalSecretsGenerator delegate = getDelegate(realmName, principalName);
+    PrincipalSecretsGenerator delegate = getDelegate(principalName);
     return delegate.systemGeneratedSecrets(principalName);
   }
 }

polaris-core/src/main/java/org/apache/polaris/core/persistence/secrets/EnvVariablePrincipalSecretsGenerator.java

@@ -21,6 +21,7 @@
 import org.apache.polaris.core.entity.PolarisPrincipalSecrets;
 import org.jetbrains.annotations.NotNull;
 import org.jetbrains.annotations.Nullable;
+import org.jetbrains.annotations.VisibleForTesting;
 
 public class EnvVariablePrincipalSecretsGenerator extends PrincipalSecretsGenerator {
 
@@ -53,7 +54,8 @@ public boolean systemGeneratedSecrets(@NotNull String principalName) {
   }
 
   /** Load a single environment variable */
-  private static String getEnvironmentVariable(String key) {
+  @VisibleForTesting
+  String getEnvironmentVariable(String key) {
     return System.getenv(key);
   }
 

polaris-core/src/main/java/org/apache/polaris/core/persistence/secrets/RandomPrincipalSecretsGenerator.java

@@ -28,6 +28,10 @@ public RandomPrincipalSecretsGenerator(@Nullable String realmName) {
     super(realmName);
   }
 
+  public RandomPrincipalSecretsGenerator() {
+    super(null);
+  }
+
   /** {@inheritDoc} */
   @Override
   public PolarisPrincipalSecrets produceSecrets(@NotNull String principalName, long principalId) {

polaris-core/src/test/java/org/apache/polaris/core/persistence/EntityCacheTest.java

@@ -18,8 +18,6 @@
  */
 package org.apache.polaris.core.persistence;
 
-import static org.apache.polaris.core.persistence.secrets.PrincipalSecretsGenerator.RANDOM_SECRETS;
-
 import java.util.List;
 import java.util.stream.Collectors;
 import org.apache.polaris.core.PolarisCallContext;
@@ -34,6 +32,7 @@
 import org.apache.polaris.core.persistence.cache.EntityCacheByNameKey;
 import org.apache.polaris.core.persistence.cache.EntityCacheEntry;
 import org.apache.polaris.core.persistence.cache.EntityCacheLookupResult;
+import org.apache.polaris.core.persistence.secrets.RandomPrincipalSecretsGenerator;
 import org.assertj.core.api.Assertions;
 import org.junit.jupiter.api.Test;
 import org.mockito.Mockito;
@@ -84,7 +83,9 @@ public class EntityCacheTest {
   public EntityCacheTest() {
     diagServices = new PolarisDefaultDiagServiceImpl();
     store = new PolarisTreeMapStore(diagServices);
-    metaStore = new PolarisTreeMapMetaStoreSessionImpl(store, Mockito.mock(), RANDOM_SECRETS);
+    metaStore =
+        new PolarisTreeMapMetaStoreSessionImpl(
+            store, Mockito.mock(), new RandomPrincipalSecretsGenerator());
     callCtx = new PolarisCallContext(metaStore, diagServices);
     metaStoreManager = new PolarisMetaStoreManagerImpl();
 

polaris-core/src/test/java/org/apache/polaris/core/persistence/PolarisTreeMapMetaStoreManagerTest.java

@@ -18,13 +18,12 @@
  */
 package org.apache.polaris.core.persistence;
 
-import static org.apache.polaris.core.persistence.secrets.PrincipalSecretsGenerator.RANDOM_SECRETS;
-
 import java.time.ZoneId;
 import org.apache.polaris.core.PolarisCallContext;
 import org.apache.polaris.core.PolarisConfigurationStore;
 import org.apache.polaris.core.PolarisDefaultDiagServiceImpl;
 import org.apache.polaris.core.PolarisDiagnostics;
+import org.apache.polaris.core.persistence.secrets.RandomPrincipalSecretsGenerator;
 import org.mockito.Mockito;
 
 public class PolarisTreeMapMetaStoreManagerTest extends BasePolarisMetaStoreManagerTest {
@@ -34,7 +33,8 @@ public PolarisTestMetaStoreManager createPolarisTestMetaStoreManager() {
     PolarisTreeMapStore store = new PolarisTreeMapStore(diagServices);
     PolarisCallContext callCtx =
         new PolarisCallContext(
-            new PolarisTreeMapMetaStoreSessionImpl(store, Mockito.mock(), RANDOM_SECRETS),
+            new PolarisTreeMapMetaStoreSessionImpl(
+                store, Mockito.mock(), new RandomPrincipalSecretsGenerator()),
             diagServices,
             new PolarisConfigurationStore() {},
             timeSource.withZone(ZoneId.systemDefault()));

polaris-core/src/test/java/org/apache/polaris/core/persistence/ResolverTest.java

@@ -18,8 +18,6 @@
  */
 package org.apache.polaris.core.persistence;
 
-import static org.apache.polaris.core.persistence.secrets.PrincipalSecretsGenerator.RANDOM_SECRETS;
-
 import java.util.ArrayList;
 import java.util.Comparator;
 import java.util.Iterator;
@@ -41,6 +39,7 @@
 import org.apache.polaris.core.persistence.resolver.Resolver;
 import org.apache.polaris.core.persistence.resolver.ResolverPath;
 import org.apache.polaris.core.persistence.resolver.ResolverStatus;
+import org.apache.polaris.core.persistence.secrets.RandomPrincipalSecretsGenerator;
 import org.assertj.core.api.Assertions;
 import org.jetbrains.annotations.NotNull;
 import org.jetbrains.annotations.Nullable;
@@ -98,7 +97,9 @@ public class ResolverTest {
   public ResolverTest() {
     diagServices = new PolarisDefaultDiagServiceImpl();
     store = new PolarisTreeMapStore(diagServices);
-    metaStore = new PolarisTreeMapMetaStoreSessionImpl(store, Mockito.mock(), RANDOM_SECRETS);
+    metaStore =
+        new PolarisTreeMapMetaStoreSessionImpl(
+            store, Mockito.mock(), new RandomPrincipalSecretsGenerator());
     callCtx = new PolarisCallContext(metaStore, diagServices);
     metaStoreManager = new PolarisMetaStoreManagerImpl();
 

polaris-core/src/test/java/org/apache/polaris/core/persistence/secrets/PrincipalSecretsGeneratorTest.java

@@ -0,0 +1,113 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+package org.apache.polaris.core.persistence.secrets;
+
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.mockito.Mockito.doReturn;
+
+import org.apache.polaris.core.entity.PolarisPrincipalSecrets;
+import org.jetbrains.annotations.Nullable;
+import org.junit.jupiter.api.Assertions;
+import org.junit.jupiter.api.Test;
+import org.mockito.Mockito;
+
+class PrincipalSecretsGeneratorTest {
+
+  @Test
+  void testRandomSecrets() {
+    RandomPrincipalSecretsGenerator rpsg = new RandomPrincipalSecretsGenerator("realm");
+    PolarisPrincipalSecrets s = rpsg.produceSecrets("name1", 123);
+    assertThat(s).isNotNull();
+    assertThat(s.getPrincipalId()).isEqualTo(123);
+    assertThat(s.getPrincipalClientId()).isNotNull();
+    assertThat(s.getMainSecret()).isNotNull();
+    assertThat(s.getSecondarySecret()).isNotNull();
+  }
+
+  @Test
+  void testRandomSecretsNullRealm() {
+    RandomPrincipalSecretsGenerator rpsg = new RandomPrincipalSecretsGenerator(null);
+    PolarisPrincipalSecrets s = rpsg.produceSecrets("name1", 123);
+    assertThat(s).isNotNull();
+    assertThat(s.getPrincipalId()).isEqualTo(123);
+    assertThat(s.getPrincipalClientId()).isNotNull();
+    assertThat(s.getMainSecret()).isNotNull();
+    assertThat(s.getSecondarySecret()).isNotNull();
+  }
+
+  @Test
+  void testEnvVariableSecrets() {
+    EnvVariablePrincipalSecretsGenerator psg =
+        Mockito.spy(new EnvVariablePrincipalSecretsGenerator("REALM"));
+
+    String clientIdKey = "POLARIS_BOOTSTRAP_REALM_PRINCIPAL_CLIENT_ID";
+    String clientSecretKey = "POLARIS_BOOTSTRAP_REALM_PRINCIPAL_CLIENT_SECRET";
+
+    doReturn("test-id").when(psg).getEnvironmentVariable(clientIdKey);
+    doReturn("test-secret").when(psg).getEnvironmentVariable(clientSecretKey);
+
+    // Invoke the method
+    PolarisPrincipalSecrets secrets = psg.produceSecrets("PRINCIPAL", 123);
+
+    // Verify the result
+    Assertions.assertNotNull(secrets);
+    Assertions.assertEquals(123, secrets.getPrincipalId());
+    Assertions.assertEquals("test-id", secrets.getPrincipalClientId());
+    Assertions.assertEquals("test-secret", secrets.getMainSecret());
+  }
+
+  @Test
+  void testBoostrapGeneratorDelegationToRandomPrincipalSecrets() {
+    EnvVariablePrincipalSecretsGenerator mockedEnvVariablePrincipalSecretsGenerator =
+        Mockito.spy(new EnvVariablePrincipalSecretsGenerator("REALM"));
+
+    String clientIdKey = "POLARIS_BOOTSTRAP_REALM_PRINCIPAL_CLIENT_ID";
+    String clientSecretKey = "POLARIS_BOOTSTRAP_REALM_PRINCIPAL_CLIENT_SECRET";
+
+    doReturn("test-id")
+        .when(mockedEnvVariablePrincipalSecretsGenerator)
+        .getEnvironmentVariable(clientIdKey);
+    doReturn("test-secret")
+        .when(mockedEnvVariablePrincipalSecretsGenerator)
+        .getEnvironmentVariable(clientSecretKey);
+
+    class ExposingPrincipalSecretsGenerator extends BootstrapPrincipalSecretsGenerator {
+      public ExposingPrincipalSecretsGenerator(@Nullable String realmName) {
+        super(realmName);
+      }
+
+      @Override
+      protected PrincipalSecretsGenerator buildEnvVariablePrincipalSecretsGenerator(
+          String realmName) {
+        return mockedEnvVariablePrincipalSecretsGenerator;
+      }
+
+      public PrincipalSecretsGenerator seeDelegate(String principalName) {
+        return this.getDelegate(principalName);
+      }
+    }
+
+    ExposingPrincipalSecretsGenerator fallback = new ExposingPrincipalSecretsGenerator(null);
+    Assertions.assertInstanceOf(RandomPrincipalSecretsGenerator.class, fallback.seeDelegate("p"));
+
+    ExposingPrincipalSecretsGenerator hasVars = new ExposingPrincipalSecretsGenerator("REALM");
+    Assertions.assertInstanceOf(
+        EnvVariablePrincipalSecretsGenerator.class, hasVars.seeDelegate("PRINCIPAL"));
+  }
+}

polaris-core/src/test/java/org/apache/polaris/core/storage/cache/StorageCredentialCacheTest.java

@@ -18,8 +18,6 @@
  */
 package org.apache.polaris.core.storage.cache;
 
-import static org.apache.polaris.core.persistence.secrets.PrincipalSecretsGenerator.RANDOM_SECRETS;
-
 import com.google.common.collect.ImmutableMap;
 import java.util.ArrayList;
 import java.util.Arrays;
@@ -43,6 +41,7 @@
 import org.apache.polaris.core.persistence.PolarisObjectMapperUtil;
 import org.apache.polaris.core.persistence.PolarisTreeMapMetaStoreSessionImpl;
 import org.apache.polaris.core.persistence.PolarisTreeMapStore;
+import org.apache.polaris.core.persistence.secrets.RandomPrincipalSecretsGenerator;
 import org.apache.polaris.core.storage.PolarisCredentialProperty;
 import org.apache.polaris.core.storage.PolarisCredentialVendor.ScopedCredentialsResult;
 import org.assertj.core.api.Assertions;
@@ -68,7 +67,8 @@ public StorageCredentialCacheTest() {
     PolarisTreeMapStore store = new PolarisTreeMapStore(diagServices);
     // to interact with the metastore
     PolarisMetaStoreSession metaStore =
-        new PolarisTreeMapMetaStoreSessionImpl(store, Mockito.mock(), RANDOM_SECRETS);
+        new PolarisTreeMapMetaStoreSessionImpl(
+            store, Mockito.mock(), new RandomPrincipalSecretsGenerator());
     callCtx = new PolarisCallContext(metaStore, diagServices);
     metaStoreManager = Mockito.mock(PolarisMetaStoreManagerImpl.class);
     storageCredentialCache = new StorageCredentialCache();