feat: embedded dashboard core

[suddjian]

SUMMARY

This PR implements the core of the embedded dashboards feature as described in #17187.

All commits in this branch have been individually reviewed, so it should be merge-able without requiring detailed review of a large change set.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

TESTING INSTRUCTIONS

If you're at Preset, we have a demo host app that can help with testing: https://github.com/preset-io/embedded-demo. Just run that, and you'll be exercising this code.

If you're not at Preset, testing this will be more involved until more features, docs, and supporting utils are written. You'll need to build a host app that embeds the new dashboard view, fetches a guest token from the new api, and sends the guest token to the frontend using the postMessage and MessageChannel browser apis. Future PRs will add an SDK, documentation, UI, and a demo host app to make this easier.

Other things to QA could be making sure that access rights still work correctly outside the embed feature, but we already have automated tests for this.

ADDITIONAL INFORMATION

• Has associated issue:
• Required feature flags:
• Changes UI
• Includes DB Migration (follow approval process in SIP-59)
  • Migration is atomic, supports rollback & is backwards-compatible
  • Confirm DB migration upgrade and downgrade tested
  • Runtime estimates and downtime expectations provided
• Introduces new feature or API
• Removes existing feature or API

[codecov]

Codecov Report

Merging #17530 (cf26feb) into master (4675ca3) will decrease coverage by 0.45%.
The diff coverage is 66.37%.

❗ Current head cf26feb differs from pull request most recent head e3dc5ee. Consider uploading reports for the commit e3dc5ee to get more accurate results

@@            Coverage Diff             @@
##           master   #17530      +/-   ##
==========================================
- Coverage   66.35%   65.89%   -0.46%     
==========================================
  Files        1570     1588      +18     
  Lines       61772    62351     +579     
  Branches     6243     6273      +30     
==========================================
+ Hits        40991    41089      +98     
- Misses      19182    19641     +459     
- Partials     1599     1621      +22     

Flag	Coverage Δ
hive	?
mysql	81.27% <67.87%> (-0.82%)	⬇️
postgres	81.32% <67.87%> (-0.82%)	⬇️
presto	?
python	81.41% <67.87%> (-1.18%)	⬇️
sqlite	81.01% <67.87%> (-0.82%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
...rt-controls/src/operators/rollingWindowOperator.ts	100.00% <ø> (ø)
...ui-chart-controls/src/operators/utils/constants.ts	100.00% <ø> (ø)
.../superset-ui-core/src/connection/SupersetClient.ts	100.00% <ø> (ø)
...superset-ui-core/src/query/types/PostProcessing.ts	100.00% <ø> (ø)
.../src/time-format/TimeFormatterRegistrySingleton.ts	100.00% <ø> (ø)
...ackages/superset-ui-core/src/utils/featureFlags.ts	100.00% <ø> (ø)
...s/legacy-plugin-chart-country-map/src/countries.ts	100.00% <ø> (ø)
...src/BigNumber/BigNumberWithTrendline/buildQuery.ts	9.09% <ø> (ø)
...hart-echarts/src/MixedTimeseries/transformProps.ts	0.00% <0.00%> (ø)
...chart-echarts/src/Timeseries/Area/controlPanel.tsx	33.33% <0.00%> (-6.67%)	⬇️
... and 133 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 4675ca3...e3dc5ee. Read the comment docs.

[HeshamMeneisi]

Hello @suddjian I was looking into embedded dashboards and came by this. In your current design, would there be a way to use user-related data (from the JWT) as filters? Something like some_table.uid=external_user.uid where external_user is part of the JWT?

[suddjian]

Hello @suddjian I was looking into embedded dashboards and came by this. In your current design, would there be a way to use user-related data (from the JWT) as filters? Something like some_table.uid=external_user.uid where external_user is part of the JWT?

Sorry for the delayed reply, I just saw this. Yes, the guest token can contain Row Level Security rules. More details available in the corresponding pr

[lilykuang]

🎉

[ad-m]

@suddjian TypedDict was introduced in Python 3.8 ( https://www.python.org/dev/peps/pep-0589/ , https://docs.python.org/3/whatsnew/3.8.html#typing ). The minimal supported version of Python by Superset is 3.7 ( https://github.com/apache/superset/blob/master/setup.py#L173-L175 ). We have to express that in a different way or drop support for Python 3.7.

[ad-m]

I would like add that it make pre-commit hook mypy fail on Python 3.7:

superset/security/guest_token.py:18: error: Module "typing" has no attribute "TypedDict"; maybe "_TypedDict"?
superset/security/guest_token.py:24: error: Unexpected keyword argument "total" for "__init_subclass__" of "object"
Found 2 errors in 1 file (checked 2 source files)

[suddjian]

Oh no, I'll push a fix. Sorry for the inconvenience.