Update Worksheet database names in UI for new simplified db names

[dlpzx]

Feature or Bugfix

• Bugfix

Detail

After implementing #1016 the names displayed for the databases in Worksheets won't contain the unique identifier.
In addition this PR solves #805 by removing duplicates also in FE.

Here is an screenshot of a local test:

Update:
Because there will be a mix of old shares with Glue database names ending inshared_URI and shares with database names suffixed by shared only, this PR introduces a new field in the GraphQL type returned by the searchDataItems query. This field resolves the name of the shared Glue database. @noah-paige @TejasRGitHub in this commit

At first I tried implementing a separate resolver for the Worksheets, but I think we can fix step by step and first focus on the database name and then on the group of the Worksheet vs the group chosen inside the Worksheet. In any case I left the commit to have some reference.

Relates

• Simplify lakeformation shares - single shared_db and single resource link table #1016
• Showing multiple shared dbs for same shared dataset for a single user in worksheets view #805

Security

Please answer the questions below briefly where applicable, or write N/A. Based on
OWASP 10.

• Does this PR introduce or modify any input fields or queries - this includes
  fetching data from storage outside the application (e.g. a database, an S3 bucket)?
  • Is the input sanitized?
  • What precautions are you taking before deserializing the data you consume?
  • Is injection prevented by parametrizing queries?
  • Have you ensured no eval or similar functions are used?
• Does this PR introduce any functionality or component that requires authorization?
  • How have you ensured it respects the existing AuthN/AuthZ mechanisms?
  • Are you logging failed auth attempts?
• Are you using or adding any cryptographic features?
  • Do you use a standard proven implementations?
  • Are the used keys controlled by the customer? Where are they stored?
• Are you introducing any new policies/roles/users?
  • Have you used the least-privilege principle? How?

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[noah-paige]

The PR looks good just 2 things to call out:

1. For old shares using shareUri in suffix we will now be showing the wrong db name --> if an easy way possible should we try to fix this, maybe by doing similar to what we do with ShareView and using the resolved consumption data to get shared DB name ${share.consumptionData.sharedGlueDatabase}?

2. I think we should drill down Team to be the same as the team that created the Worksheet and not have it as an optional parameter - this can be a separate PR

[TejasRGitHub]

Hi @dlpzx , @noah-paige ,

I agree with @noah-paige on both the points.

If possible it would be great to display the database name ( old or new ) which is actually present in the account where it is shared.

For the second point, I agree that we should not have a drop down to select the team and only show the databases and tables which are accessible to the team which created the worksheet and also because the querying is happening with the worksheet admin-group's role and not the role of the team selected in dropdown ( please correct me if I am wrong )

[noah-paige]

Tested this PR locally:

• No Duplicate DB Names
• Shared DB Name Populated Correctly for Old Share DB Naming
• Shared DB Name Populated Correctly for New Share DB Naming

[noah-paige]

lgtm!

[TejasRGitHub]

Why did we get the share item from this new method instead of getting it from get_share_object() ? Did we just want to confirm if the user has the permissions to access that env ?

[noah-paige]

believe it is exactly for that reason because of decorator @has_resource_permission(GET_ENVIRONMENT) but will leave it open for @dlpzx to confirm

[dlpzx]

Exactly, I wanted to keep the permissions checking of the environment

[TejasRGitHub]

Thanks @noah-paige , @dlpzx for the clarification

[TejasRGitHub]

Could we potentially remove this duplication in the query itself ? dataall.modules.dataset_sharing.db.share_object_repositories.ShareObjectRepository.paginate_shared_datasets in here

[noah-paige]

Not sure if we want to remove duplication of DB names on the backend because this query searchEnvironmentDataItems is also used at frontend/src/modules/Environments/components/EnvironmentSharedDatasets.js where we show each share item that is shared with the given environment and for what respective team in that environment (in this case we would want to show all shares duplicate dbs or not)

Another note (out of scope for this PR): We currently do not handle shared items of type S3Bucket for the table mentioned above ...

[TejasRGitHub]

Oh okay I get it. Thanks @noah-paige .

I didn't quite get your what you meant by the note and which table you are mentioning

[dlpzx]

There are 2 reasons not to remove the duplicates, one is that the query is used in other places as Noah pointed out (in the Environment view > Datasets tab > Shared items).

The second reason was that it is difficult to predict which shares are using the old method and the new method, and that is retrieved in the resolver that is a field of the type. Once we deprecate the old type of share names I think we can redesign the remove-duplicates and the separation between plot the shared items in environment and list the shared databases in Worksheets.

I tried implementing a new resolver (check the commits) to separate the searchSharedDataItems used in environments to what we want to achieve in Worksheets, but I found it a bit complex to fulfill the purpose of this PR = show correct glue database names

[TejasRGitHub]

Yeah makes sense. Thanks @dlpzx