Backport integration tests -test #11

peternied · 2023-09-20T22:02:26Z

Description

[Describe what this change achieves]

Category (Enhancement, New feature, Bug fix, Test fix, Refactoring, Maintenance, Documentation)
Why these changes are required?
What is the old behavior before changes and new behavior after changes?

Issues Resolved

[List any issues this PR will resolve]

Is this a backport? If so, please add backport PR # and/or commits #

Testing

[Please provide details of testing done: unit testing, integration testing and manual testing]

Check List

New functionality includes testing
New functionality has been documented
Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

* Reverts opensearch-project#2308 and uses -i -c as arguments to the windows program to make it equivalent to -y Signed-off-by: Craig Perkins <[email protected]>

opensearch-project#2409) * Add actions cluster:admin/component_template/* to cluster_manage_index_templates Signed-off-by: Stefan Reuter <[email protected]>

Stephen Crawford (@scrawfor99) has been an avid contributor to Security plugin & Security Dashboard plugin since October '22, clocking in with 137 contributions in the OpenSearch project. He has earned his place as a maintainer with the following valuable contributions. - Created [41](https://github.com/search?q=repo%3Aopensearch-project%2Fsecurity+repo%3Aopensearch-project%2Fsecurity-dashboards-plugin+author%3Ascrawfor99&type=pullrequests&ref=advsearch) pull requests. - Involved in [55 & 31](https://github.com/search?q=repo%3Aopensearch-project%2Fsecurity+repo%3Aopensearch-project%2Fsecurity-dashboards-plugin+-author%3Ascrawfor99+involves%3Ascrawfor99+&type=pullrequests&ref=advsearch) issues and pull requests respectively. - Mentioned in [52](https://github.com/search?q=repo%3Aopensearch-project%2Fsecurity+repo%3Aopensearch-project%2Fsecurity-dashboards-plugin+mentions%3Ascrawfor99&type=pullrequests&ref=advsearch) issues and pull requests. - Pioneered security's open triage [opensearch-project#2164](opensearch-project#2164) Signed-off-by: Peter Nied <[email protected]>

* Updated triaging meeting agenda Signed-off-by: Dave Lago <[email protected]>

…arch-project#2418) Signed-off-by: Darshit Chanpura <[email protected]>

…earch-project#2428) Signed-off-by: Peter Nied <[email protected]>

…oject#2421) * Unify triage meeting queries and expand meeting agenda (opensearch-project#2421) Signed-off-by: Peter Nied <[email protected]>

Permissions for REST admin user Added granular permissions for all REST API actions in OpenSearch to be individually assigned. Permissions are: - 'restapi:admin/actiongroups' - allow full access to actiongroups - 'restapi:admin/allowlist' - allow full access to allowlist - 'restapi:admin/internalusers'- allow full access to internalusers - 'restapi:admin/nodesdn'- allow full access to nodesdn - 'restapi:admin/roles' - allow full access to roles - 'restapi:admin/rolesmapping' - allow full access to roles mappings - 'restapi:admin/ssl/certs/info' - allow full access to certs info - 'restapi:admin/ssl/certs/reload' - allow full access to certs reload - 'restapi:admin/tenants' - allow full access to tenants Adds tests for these permissions. Signed-off-by: Andrey Pleskach <[email protected]>

* Switch from XContentType to MediaType Signed-off-by: Craig Perkins <[email protected]> Signed-off-by: Peter Nied <[email protected]> Co-authored-by: Peter Nied <[email protected]>

* Publish snapshots to maven Adds a workflow to publish snapshots to the OpenSearch-Project maven repository when updates are pushed to main, 1.* branches, or 2.* branches. Following the example from https://github.com/opensearch-project/opensearch-sdk-java Signed-off-by: Peter Nied <[email protected]>

…-project#2442) Maven doesn't have a way to filter published artifacts by platform build for and since our plugin zip works in both platforms switching to a single publishing leg. Signed-off-by: Peter Nied <[email protected]>

* Add release note for 1.3.8 Signed-off-by: Ryan Liang <[email protected]> * Rebase and fix lint Signed-off-by: Ryan Liang <[email protected]> --------- Signed-off-by: Ryan Liang <[email protected]>

* Update codeowners Signed-off-by: Stephen Crawford <[email protected]>

* Update documentation for new developers Signed-off-by: Stephen Crawford <[email protected]>

Signed-off-by: Andriy Redko <[email protected]>

…core.xcontent (opensearch-project#2457) * Update imports from org.opensearch.common.xcontent to org.opensearch.core.xcontent Signed-off-by: Craig Perkins <[email protected]> Signed-off-by: Peter Nied <[email protected]> Co-authored-by: Peter Nied <[email protected]>

Remove MacOS platform from CI checks Issues - Resolves opensearch-project#2467 Signed-off-by: Peter Nied <[email protected]>

Fix the format of the codeowners file All maintainers are considered code-owners instead of only @scrawfor99 :D Signed-off-by: Peter Nied <[email protected]>

Signed-off-by: Craig Perkins <[email protected]>

Builds were not being automatically published, after reviewing the documentation https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows#running-your-workflow-only-when-a-push-to-specific-branches-occurs branches is an object, not an array. Signed-off-by: Peter Nied <[email protected]>

…oject#2484) Signed-off-by: Shujian Xie <[email protected]> Signed-off-by: Peter Nied <[email protected]>

The current version of the plugin supports multitenancy for all the users but not for the anonymous user. The header 'securitytenant' is ignored when this user is authorized. Therefore, all the operations run with it, use the default tenant - normally the 'Global' tenant -. This patch fixes this issue assigning the selected tenant - defined by the 'securitytenant' header - to the anonymous user. Co-authored-by: Eva Millán <[email protected]>

The "testExp" test was missing the "Bearer" auth-scheme in the request, which caused the token expiry test to not execute properly. Signed-off-by: Andrea Pasqualini <[email protected]>

…roject#2503) Signed-off-by: Chang Liu <[email protected]>

…-project#2498) * Lost privileges fix During default initialization of the plugin configuration (plugins.security.allow_default_init_securityindex is set to true) it is possible that plugin could lose its privileges due to the thread context switching for the cluster with more than 3 nodes. Signed-off-by: Andrey Pleskach <[email protected]> * Wait for cluster managed node Added a new check that waits while cluster is in the global lock state and do not initialize index util cluster will finish leader election. Signed-off-by: Andrey Pleskach <[email protected]> --------- Signed-off-by: Andrey Pleskach <[email protected]>

Signed-off-by: Craig Perkins <[email protected]>

There was a bug in the error message when interacting with a system index causing it to always return the security index instead of the index(es) that were blocked. Also includes unit test cases to verify the SecurityIndexAccessEvaluator opensearch-project#2483 Signed-off-by: Peter Nied <[email protected]>

* Add release notes for 1.3.9 Signed-off-by: Ryan Liang <[email protected]>

…ch-project#3353) ### Description Seeing a ton of CI failures due to code coverage upload failures. I'd like to fix this - but I'd rather keep the builds flowing in until we have a better solution. E.g: https://github.com/opensearch-project/security/actions/runs/6153593099/job/16697726519?pr=3339 - Related opensearch-project#2649 ### Check List - [ ] New functionality includes testing - [ ] New functionality has been documented - [X] Commits are signed per the DCO using --signoff By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. For more information on following Developer Certificate of Origin and signing off your commits, please check [here](https://github.com/opensearch-project/OpenSearch/blob/main/CONTRIBUTING.md#developer-certificate-of-origin). Signed-off-by: Peter Nied <[email protected]>

….11 to 2.9.12 (opensearch-project#3341) Bumps [org.springframework.kafka:spring-kafka-test](https://github.com/spring-projects/spring-kafka) from 2.9.11 to 2.9.12. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…opensearch-project#3344) Bumps [org.scala-lang:scala-library](https://github.com/scala/scala) from 2.13.11 to 2.13.12. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…29 (opensearch-project#3342) Bumps [org.springframework:spring-beans](https://github.com/spring-projects/spring-framework) from 5.3.20 to 5.3.29. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…rch-project#3339) Bumps [tibdex/github-app-token](https://github.com/tibdex/github-app-token) from 1.8.2 to 2.0.0. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

… 2.3.1 (opensearch-project#3368) Bumps org.apache.ws.xmlschema:xmlschema-core from 2.3.0 to 2.3.1. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.ws.xmlschema:xmlschema-core&package-manager=gradle&previous-version=2.3.0&new-version=2.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…pensearch-project#3370) Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/releases">aws-actions/configure-aws-credentials's releases</a>.</em></p> <blockquote> <h2>v4</h2> <p>This tag tracks the latest v4.x.x release</p> <h2>v4.0.0</h2> <p>See the <a href="https://github.com/aws-actions/configure-aws-credentials/blob/v4.0.0/CHANGELOG.md">changelog</a> for details about the changes included in this release.</p> <h2>v3.0.2</h2> <p>See the <a href="https://github.com/aws-actions/configure-aws-credentials/blob/v3.0.2/CHANGELOG.md">changelog</a> for details about the changes included in this release.</p> <h2>v3.0.1</h2> <p>See the <a href="https://github.com/aws-actions/configure-aws-credentials/blob/v3.0.1/CHANGELOG.md">changelog</a> for details about the changes included in this release.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md">aws-actions/configure-aws-credentials's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v3.0.0...v3.0.1">3.0.1</a> (2023-08-24)</h2> <h3>Features</h3> <ul> <li>Can configure <code>special-characters-workaround</code> to keep retrying credentials if the returned credentials have special characters (Fixes <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/599">#599</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Fixes <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/792">#792</a>: Action fails when intending to use existing credentials</li> <li>Minor typo fix from <a href="https://github.com/ubaid-ansari21"><code>@ubaid-ansari21</code></a></li> </ul> <h3>Changes to existing functionality</h3> <ul> <li>Special characters are now allowed in returned credential variables unless you configure the <code>special-characters-workaround</code> option</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v2.2.0...v3.0.0">3.0.0</a> (2023-08-21)</h2> <h3>Features</h3> <ul> <li>Can configure <code>max-retries</code> and <code>disable-retry</code> to modify retry functionality when the assume role call fails</li> <li>Set returned credentials as step outputs with <code>output-credentials</code></li> <li>Clear AWS related environment variables at the start of the action with <code>unset-current-credentials</code></li> <li>Unique role identifier is now printed in the workflow logs</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Can't use credentials if they contain a special character</li> <li>Retry functionality added when generating the JWT fails</li> <li>Can now use <code>webIdentityTokenFile</code> option</li> <li>Branch name validation too strict</li> <li>JS SDK v2 deprecation warning in workflow logs</li> </ul> <h3>Changes to existing functionality</h3> <ul> <li>Default session duration is now 1 hour in all cases (from 6 hours in some cases)</li> <li>Account ID will not be masked by default in logs</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/8c3f20df09ac63af7b3ae3d7c91f105f857d8497"><code>8c3f20d</code></a> chore: release v4 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/840">#840</a>)</li> <li>See full diff in <a href="https://github.com/aws-actions/configure-aws-credentials/compare/v3...v4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aws-actions/configure-aws-credentials&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…roject#3365) Bumps `apache_cxf_version` from 4.0.2 to 4.0.3. Updates `org.apache.cxf:cxf-rt-rs-security-jose` from 4.0.2 to 4.0.3 Updates `org.apache.cxf:cxf-core` from 4.0.2 to 4.0.3 Updates `org.apache.cxf:cxf-rt-rs-json-basic` from 4.0.2 to 4.0.3 Updates `org.apache.cxf:cxf-rt-security` from 4.0.2 to 4.0.3 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

@Autowired

…30 (opensearch-project#3366) Bumps [org.springframework:spring-beans](https://github.com/spring-projects/spring-framework) from 5.3.29 to 5.3.30. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spring-projects/spring-framework/releases">org.springframework:spring-beans's releases</a>.</em></p> <blockquote> <h2>v5.3.30</h2> <h2>:star: New Features</h2> <ul> <li>Optimize <code>ClassUtils#getMostSpecificMethod</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31100">#31100</a></li> <li>Optimize whitespace checks in <code>StringUtils</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31069">#31069</a></li> <li>Align validation metadata handling in <code>PayloadMethodArgumentResolver</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31056">#31056</a></li> <li>Register an override for an existing adapter in <code>ReactiveAdapterRegistry</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31048">#31048</a></li> <li>Make bean initialization deterministic for multiple <code>@Autowired</code> methods on same bean class <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30994">#30994</a></li> <li>Performance bottlenecks while creating scoped bean instances <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30892">#30892</a></li> </ul> <h2>:lady_beetle: Bug Fixes</h2> <ul> <li>Possible classloader leak through incomplete clearing of annotation caches <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31176">#31176</a></li> <li>Spring <code>LogFactory</code> implementation deviates from original Apache <code>LogFactory</code> in terms of abstract method declarations <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31167">#31167</a></li> <li>Bean injection fails due to <code>nullSafeConciseToString()</code> invoking <code>isEmpty()</code> on a <code>Map</code>/<code>Collection</code> proxy <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31156">#31156</a></li> <li>SpelExpressionParser throws IllegalStateException instead of ParseException for invalid expression <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31099">#31099</a></li> <li><code>@DynamicPropertySource</code> in <code>@nested</code> test class cannot override dynamic properties from enclosing class <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31085">#31085</a></li> <li><code>TransactionalApplicationListenerMethodAdapter</code> should find <code>@TransactionalEventListener</code> on target class method <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31037">#31037</a></li> <li>ScheduledAnnotationBeanPostProcessor: graceful shutdown should not interrupt currently running jobs <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31020">#31020</a></li> <li>Permgen memory leak due to <code>ClassInfo</code> caching in <code>java.beans.Introspector</code> on JDK 11/17 <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31005">#31005</a></li> <li><code>MethodIntrospector.selectMethods(?)</code> fails to find methods in case of special bridge method arrangement <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30907">#30907</a></li> </ul> <h2>:notebook_with_decorative_cover: Documentation</h2> <ul> <li>Fix documentation: Passing in Lists of Values for IN Clause does not work with JdbcTemplate <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31229">#31229</a></li> <li>Refine CORS documentation for wildcard processing <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31168">#31168</a></li> <li>Propagation REQUIRES_NEW may cause connection pool deadlock <a href="https://redirect.github.com/spring-projects/spring-framework/issues/31040">#31040</a></li> <li>Clarify R2DBC <code>ConnectionAccessor</code> and <code>DatabasePopulator</code> exception declarations <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30933">#30933</a></li> <li>Doc: Avoid deadlock in <code>@PostConstruct</code> through SmartInitializingSingleton or ContextRefreshedEvent <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30889">#30889</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spring-projects/spring-framework/commit/e5d99ecf984537ab52825292d5ce76130b425e3e"><code>e5d99ec</code></a> Release v5.3.30</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/f7bf2431fb6f923ae484d6b5cdc5547c3fe04c72"><code>f7bf243</code></a> Clarify IN clause resolution with List/Iterable parameter</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/40678bb981bf5f8c0127bdd54976df6ede08b1ad"><code>40678bb</code></a> Refine CORS documentation for wildcard processing</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/75faf698afd2dd0f93fe3b03cc896e94085328d2"><code>75faf69</code></a> Refine CORS documentation for wildcard processing</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/39c225c813f67c9e45dee755c1a297a82f97d1c6"><code>39c225c</code></a> AnnotationUtils.clearCache() includes all annotation caches</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/0c3d8d7a44fa057dd1c8bf62732cd23dc6220303"><code>0c3d8d7</code></a> Align abstract method signatures with original Commons Logging API</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/ddcae04ad57ffb2e03f28fa56ff258d5e0e02b1b"><code>ddcae04</code></a> Do not invoke [Map|Collection].isEmpty() in nullSafeConciseToString()</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/994bbec0c3ae081b1c81aa5d9335bf5f47964dbf"><code>994bbec</code></a> Polishing</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/afb378a59fb4bbc24af0cacc0e7acb86e170d66c"><code>afb378a</code></a> Consistently throw ParseException instead of IllegalStateException</li> <li><a href="https://github.com/spring-projects/spring-framework/commit/a4fc7d3c117c40d71046850a56957a229ba48524"><code>a4fc7d3</code></a> Optimize ClassUtils#getMostSpecificMethod</li> <li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-framework/compare/v5.3.29...v5.3.30">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework:spring-beans&package-manager=gradle&previous-version=5.3.29&new-version=5.3.30)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

… to 0.16.6 (opensearch-project#3369) Bumps [com.github.wnameless.json:json-flattener](https://github.com/wnameless/json-flattener) from 0.16.5 to 0.16.6. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/wnameless/json-flattener/blob/master/release-notes">com.github.wnameless.json:json-flattener's changelog</a>.</em></p> <blockquote> <p>Version 0.1.0</p> <ul> <li>First release</li> </ul> <p>Version 0.1.1</p> <ul> <li>Fix minimal-json parsing double value(ex:6.0) error</li> </ul> <p>Version 0.1.2</p> <ul> <li>Fix the bug of empty array or empty object disappearing after flattening</li> </ul> <p>Version 0.1.3</p> <ul> <li>Fix the bug of objects unflattening in reversed indexed array(ex: {"List[1].type":"B","List[0].type":"A"})</li> </ul> <p>Version 0.1.4</p> <ul> <li>Fix the bug of reversed indexed arrays unflattening(ex: {"[1][1]":"B","[0][0]":"A"})</li> <li>Fix the bug of init complex key unflattening(ex: {"["b.b"].aaa":123})</li> </ul> <p>Version 0.1.5</p> <ul> <li>Escape JSON special characters in flattened JSON keys, values and Java Map keys but not in Java Map values</li> </ul> <p>Version 0.1.6</p> <ul> <li>For ease of use, Unicode characters aren't escaped anymore</li> </ul> <p>Version 0.2.0</p> <ul> <li>Add FlattenMode</li> <li>Add StringEscapePolicy</li> <li>Add separator config</li> <li>Add PrintMode</li> </ul> <p>Version 0.2.1</p> <ul> <li>Remove internal cache</li> </ul> <ul> <li>Add missing hashCode, equals and toString to JsonUnflattener</li> </ul> <ul> <li>Fix the stack overflow bug in KEEP_ARRAYS mode when null value occurs</li> </ul> <p>Version 0.2.2</p> <ul> <li>Fix the stack overflow bug in KEEP_ARRAYS mode when empty object occurs</li> </ul> <p>Version 0.2.3</p> <ul> <li>Fix internal JsonFlattener state inheritance bug during instantiation</li> </ul> <p>Version 0.2.4</p> <ul> <li>Fix the bug of wrong output if ROOT value shows in source object</li> </ul> <p>Version 0.3.0</p> <ul> <li>Support Reader as inputs</li> <li>Add #withLeftAndRightBrackets</li> </ul> <p>Version 0.4.0</p> <ul> <li>Add FlattenMode.MONGODB</li> <li>Add #withKeyTransformer</li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/wnameless/json-flattener/commit/5cb34f52ca3a4fdbaf067ee53412d55c6f1ea1dd"><code>5cb34f5</code></a> [maven-release-plugin] prepare release json-flattener-0.16.6</li> <li><a href="https://github.com/wnameless/json-flattener/commit/1b0c1c3b9ed8e725c31dfe26bbecc48e26fa34af"><code>1b0c1c3</code></a> Upgrade release-notes</li> <li><a href="https://github.com/wnameless/json-flattener/commit/a42ddaf693b215c6f036057155b77133cc1c50f9"><code>a42ddaf</code></a> Upgrade json-base for precise scale of the float number</li> <li><a href="https://github.com/wnameless/json-flattener/commit/e8f5f710c85abc257907789468dc9aae91343807"><code>e8f5f71</code></a> [maven-release-plugin] prepare for next development iteration</li> <li>See full diff in <a href="https://github.com/wnameless/json-flattener/compare/json-flattener-0.16.5...json-flattener-0.16.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.wnameless.json:json-flattener&package-manager=gradle&previous-version=0.16.5&new-version=0.16.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…8.0 (opensearch-project#3367) Bumps [org.checkerframework:checker-qual](https://github.com/typetools/checker-framework) from 3.36.0 to 3.38.0. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Signed-off-by: Peter Nied <[email protected]>

…m 3.36.0 to 3.38.0 (opensearch-project#3378) Backport 5e0ab68 from opensearch-project#3367. Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

… from 3 to 4 (opensearch-project#3373) Backport bec360a from opensearch-project#3370 Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Andrey Pleskach <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ner from 0.16.5 to 0.16.6 (opensearch-project#3371) Backport e61e8d4 from opensearch-project#3369. Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…issue (opensearch-project#3379) Backport 6d78bce from opensearch-project#3353. Signed-off-by: Peter Nied <[email protected]> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>

… 5.3.29 to 5.3.30 (opensearch-project#3375) Backpor 660e2da from opensearch-project#3366 Signed-off-by: Andrey Pleskach <[email protected]>

opensearch-project#3376) Backport 558f47e from opensearch-project#3365 Signed-off-by: Andrey Pleskach <[email protected]>

…e from 2.3.0 to 2.3.1 (opensearch-project#3374) Backport 283c3be from opensearch-project#3368 Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Backport 737b531 from opensearch-project#3360. Signed-off-by: Peter Nied <[email protected]> Signed-off-by: Stephen Crawford <[email protected]> Signed-off-by: Craig Perkins <[email protected]> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: Peter Nied <[email protected]> Co-authored-by: Stephen Crawford <[email protected]>

Signed-off-by: Peter Nied <[email protected]>

…ests Signed-off-by: Peter Nied <[email protected]>

codecov-commenter · 2023-09-20T23:29:44Z

Welcome to Codecov 🎉

Once merged to your default branch, Codecov will compare your coverage reports and display the results in this comment.

Thanks for integrating Codecov - We've got you covered ☂️

Signed-off-by: Peter Nied <[email protected]>

cwperks and others added 30 commits January 13, 2023 11:19

Revert "Windows Install Action Fix" (opensearch-project#2401)

9cdaeca

* Reverts opensearch-project#2308 and uses -i -c as arguments to the windows program to make it equivalent to -y Signed-off-by: Craig Perkins <[email protected]>

Add action indices:admin/index_template/* to cluster_manage_index_tem… (

e4b7361

opensearch-project#2409) * Add actions cluster:admin/component_template/* to cluster_manage_index_templates Signed-off-by: Stefan Reuter <[email protected]>

Updated triaging meeting agenda (opensearch-project#2415)

4b51ea7

* Updated triaging meeting agenda Signed-off-by: Dave Lago <[email protected]>

Updates toString calls affected by change in method signature (opense…

f808b2a

…arch-project#2418) Signed-off-by: Darshit Chanpura <[email protected]>

Fix test case that was broken with changes in calling patterns (opens…

3ba3fc8

…earch-project#2428) Signed-off-by: Peter Nied <[email protected]>

Unify triage meeting queries and expand meeting agenda (opensearch-pr…

75b6c30

…oject#2421) * Unify triage meeting queries and expand meeting agenda (opensearch-project#2421) Signed-off-by: Peter Nied <[email protected]>

Update usage of XContentFactory.xContent (opensearch-project#2433)

bae002b

* Switch from XContentType to MediaType Signed-off-by: Craig Perkins <[email protected]> Signed-off-by: Peter Nied <[email protected]> Co-authored-by: Peter Nied <[email protected]>

Add release note for 1.3.8 (opensearch-project#2425)

43d09d7

* Add release note for 1.3.8 Signed-off-by: Ryan Liang <[email protected]> * Rebase and fix lint Signed-off-by: Ryan Liang <[email protected]> --------- Signed-off-by: Ryan Liang <[email protected]>

Update maintainers (opensearch-project#2445)

a447b50

* Update codeowners Signed-off-by: Stephen Crawford <[email protected]>

Update documentation for new developers (opensearch-project#2448)

0a92299

* Update documentation for new developers Signed-off-by: Stephen Crawford <[email protected]>

Add auto github release workflow (opensearch-project#2450)

44e7b47

Signed-off-by: Andriy Redko <[email protected]>

Remove MacOS platform from CI checks (opensearch-project#2468)

a58af2f

Remove MacOS platform from CI checks Issues - Resolves opensearch-project#2467 Signed-off-by: Peter Nied <[email protected]>

Fix the format of the codeowners file (opensearch-project#2469)

8c506fa

Fix the format of the codeowners file All maintainers are considered code-owners instead of only @scrawfor99 :D Signed-off-by: Peter Nied <[email protected]>

Add release notes for 2.6.0.0 (opensearch-project#2456)

787f374

Signed-off-by: Craig Perkins <[email protected]>

Flatten response times (opensearch-project#2471)

2df8acd

fix kafka CVE-2023-25194, update kafka client to 3.4.0 (opensearch-pr…

7547d03

…oject#2484) Signed-off-by: Shujian Xie <[email protected]> Signed-off-by: Peter Nied <[email protected]>

Clock skew tolerance for oidc token validation (opensearch-project#2482)

9cce399

Fix testExp issue (opensearch-project#2501)

68feb5c

The "testExp" test was missing the "Bearer" auth-scheme in the request, which caused the token expiry test to not execute properly. Signed-off-by: Andrea Pasqualini <[email protected]>

add index template put permission to kibana_server role (opensearch-p…

fb70a75

…roject#2503) Signed-off-by: Chang Liu <[email protected]>

Update to gradle 8.0.2 (opensearch-project#2520)

1daff11

Signed-off-by: Craig Perkins <[email protected]>

Add release notes for 1.3.9 (opensearch-project#2539)

a5c73f9

* Add release notes for 1.3.9 Signed-off-by: Ryan Liang <[email protected]>

peternied and others added 27 commits September 13, 2023 16:25

dependabot: bump actions/checkout from 3 to 4 (opensearch-project#3340)

88f0272

Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Merge remote-tracking branch 'origin/main' into HEAD

45aa75c

Signed-off-by: Peter Nied <[email protected]>

Resoving import statements

abe0421

Signed-off-by: Peter Nied <[email protected]>

[Backport 2.x] dependabot: bump org.springframework:spring-beans from…

34dd1f6

… 5.3.29 to 5.3.30 (opensearch-project#3375) Backpor 660e2da from opensearch-project#3366 Signed-off-by: Andrey Pleskach <[email protected]>

[Backport 2.x] dependabot: bump apache_cxf_version from 4.0.2 to 4.0.3 (

8435ead

opensearch-project#3376) Backport 558f47e from opensearch-project#3365 Signed-off-by: Andrey Pleskach <[email protected]>

[Backport 2.x] dependabot: bump org.apache.ws.xmlschema:xmlschema-cor…

b351f36

…e from 2.3.0 to 2.3.1 (opensearch-project#3374) Backport 283c3be from opensearch-project#3368 Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Switch to apache http 4 and compileable

253465b

Signed-off-by: Peter Nied <[email protected]>

Update the workflow to run the integration tests

c536607

Signed-off-by: Peter Nied <[email protected]>

Fix style issues

0286739

Signed-off-by: Peter Nied <[email protected]>

Merge remote-tracking branch 'origin/2.x' into backport-integration-t…

842b0c0

…ests Signed-off-by: Peter Nied <[email protected]>

Update all client generation

7b7bc73

Signed-off-by: Peter Nied <[email protected]>

peternied closed this Sep 26, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Backport integration tests -test #11

Backport integration tests -test #11

peternied commented Sep 20, 2023

codecov-commenter commented Sep 20, 2023

Backport integration tests -test #11

Backport integration tests -test #11

Conversation

peternied commented Sep 20, 2023

Description

Issues Resolved

Testing

Check List

codecov-commenter commented Sep 20, 2023

Welcome to Codecov 🎉