SOLR-12813 followup -- preserve user Principal in alternate codepath in EmbeddedSolrServer

[rseitz]

https://issues.apache.org/jira/browse/SOLR-12813

Description

This is a followup to a previous PR that fixed SOLR-12813.

This current change is intended as proactive code cleanup and is not needed for resolving the issue described in SOLR-12813, which was fully resolved by the previous PR.

EmbeddedSolrServer#request() has two separate places where the _parser.buildRequestFrom() utility method is called.

The first codepath is active when the coreContainer.getRequestHandler(path) returns non-null, which is to say that we're able to retrieve the designated SolrRequestHandler by looking it up on the available CoreContainer.

The second codepath is active when coreContainer.getRequestHandler(path) return null and instead we need to retrieve the SolrCore from the CoreContainer and get the SolrRequestHandler from that SolrCore. This second codepath is the one that's used in subquery execution. It was updated in the initial fix for SOLR-12813 so that the call to _parser.buildRequestFrom() would now include the user Principal.

However, the first codepath was left alone because it was not found to be involved in subquery execution. In the present PR, the first codepath is being updated as well, in the interest of keeping the logic as consistent as possible across the two codepaths in EmbeddedSolrServer.request()

Solution

N/A

Tests

I am looking for advice on how to create a test for this change. I believe this change is non-intrusive and safe: when we pass the Principal, it will either be null, in which case the code will act the same as before -- or it will be non-null, in which case we should be passing it. However, it appears that none of the existing unit tests "care" about this change, so it would be good to create a test that targets it. I found some tests which invoke the codepath in EmbededSolrServer.request that we're modifying here, for example TestEmbeddedSolrServerAdminHandler, but they are local SolrTestCaseJ4 instances and I believe we need a SolrCloudTestCase to be able to set up security.json in zookeeper to create a meaningful test... or maybe there's an easier way? If anyone has insight on when/why one codepath would be active instead of the other -- that's to say, why a request handler would be found on the CoreContainer versus only on the SolrCore, I'm interested to know the background.

Checklist

Please review the following and check all that apply:

• I have reviewed the guidelines for How to Contribute and my code conforms to the standards described there to the best of my ability.
• I have created a Jira issue and added the issue ID to my pull request title.
• I have given Solr maintainers access to contribute to my PR branch. (optional but recommended)
• I have developed this patch against the main branch.
• I have run ./gradlew check.
• I have added tests for my changes.
• I have added documentation for the Reference Guide

[rseitz]

Tagging @epugh and @dsmiley

[dsmiley]

+1

I don't get why I needed to click "Approve and Run" since Rudi isn't a first-time contributor: https://docs.github.com/en/actions/managing-workflow-runs/approving-workflow-runs-from-public-forks#approving-workflow-runs-on-a-pull-request-from-a-public-fork It's not just Rudi; seems for any non-committer.

[epugh]

Is there an option to remove the version of this method that doesn't take a request.getUserPrincpal???

[epugh]

I hate that we have _parser, I mean, we don't use that as a global pattern to define private variables! Renaming the various _myObject would be for another ticket, I know ;-).

[epugh]

okay, looked more, and yeah, i guess one method is used from http, but the other isn't cause it's for tests etc.... okay.

[epugh]

i wish there was a better way than passing null around everywhere.

[dsmiley]

That underscore is from 2008 by Ryan McKinley -- long time ago :-)
BTW I really appreciate that you are caring to these minor matters,