refactor: Issue #25040; Refactored sync_role_definition function in order to reduce number of query.

superset/security/manager.py

@@ -48,7 +48,7 @@
 from jwt.api_jwt import _jwt_global_obj
 from sqlalchemy import and_, inspect, or_
 from sqlalchemy.engine.base import Connection
-from sqlalchemy.orm import Session
+from sqlalchemy.orm import Session, eagerload
 from sqlalchemy.orm.mapper import Mapper
 from sqlalchemy.orm.query import Query as SqlaQuery
 
@@ -736,7 +736,9 @@ def create_missing_perms(self) -> None:
 
         logger.info("Fetching a set of all perms to lookup which ones are missing")
         all_pvs = set()
-        for pv in self.get_session.query(self.permissionview_model).all():
+        for pv in self.get_session.query(self.permissionview_model).options(
+            eagerload(self.permissionview_model.permission),
+            eagerload(self.permissionview_model.view_menu)).all():
             if pv.permission and pv.view_menu:
                 all_pvs.add((pv.permission.name, pv.view_menu.name))
 
@@ -784,11 +786,17 @@ def sync_role_definitions(self) -> None:
 
         self.create_custom_permissions()
 
+        #Fetch all pvms
+        pvms = self.get_session.query(PermissionView).options(
+            eagerload(PermissionView.permission),
+            eagerload(PermissionView.view_menu)).all()
+        pvms = [p for p in pvms if p.permission and p.view_menu]
+
         # Creating default roles
-        self.set_role("Admin", self._is_admin_pvm)
-        self.set_role("Alpha", self._is_alpha_pvm)
-        self.set_role("Gamma", self._is_gamma_pvm)
-        self.set_role("sql_lab", self._is_sql_lab_pvm)
+        self.set_role("Admin", self._is_admin_pvm, pvms)
+        self.set_role("Alpha", self._is_alpha_pvm, pvms)
+        self.set_role("Gamma", self._is_gamma_pvm, pvms)
+        self.set_role("sql_lab", self._is_sql_lab_pvm, pvms)
 
         # Configure public role
         if current_app.config["PUBLIC_ROLE_LIKE"]:
@@ -864,7 +872,7 @@ def copy_role(
         self.get_session.commit()
 
     def set_role(
-        self, role_name: str, pvm_check: Callable[[PermissionView], bool]
+        self, role_name: str, pvm_check: Callable[[PermissionView], bool], pvms:[]
     ) -> None:
         """
         Set the FAB permission/views for the role.
@@ -874,8 +882,6 @@ def set_role(
         """
 
         logger.info("Syncing %s perms", role_name)
-        pvms = self.get_session.query(PermissionView).all()
-        pvms = [p for p in pvms if p.permission and p.view_menu]
         role = self.add_role(role_name)
         role_pvms = [
             permission_view for permission_view in pvms if pvm_check(permission_view)