fix(operations): fix authorizer on operations controller (datahub-pro…

…ject#10701)
ethan-cartwright · Jun 13, 2024 · 50ab79e · 50ab79e
1 parent 6329153
commit 50ab79e
Showing 1 changed file with 6 additions and 5 deletions.
diff --git a/...vlet/src/main/java/io/datahubproject/openapi/operations/elastic/OperationsController.java b/...vlet/src/main/java/io/datahubproject/openapi/operations/elastic/OperationsController.java
@@ -3,7 +3,7 @@
 import com.datahub.authentication.Authentication;
 import com.datahub.authentication.AuthenticationContext;
 import com.datahub.authorization.AuthUtil;
-import com.datahub.plugins.auth.authorization.Authorizer;
+import com.datahub.authorization.AuthorizerChain;
 import com.linkedin.common.urn.UrnUtils;
 import com.linkedin.metadata.authorization.PoliciesConfig;
 import com.linkedin.metadata.entity.EntityService;
@@ -54,7 +54,7 @@
     name = "ElasticSearchOperations",
     description = "An API for managing your elasticsearch instance")
 public class OperationsController {
-  private final Authorizer authorizerChain;
+  private final AuthorizerChain authorizerChain;
   private final OperationContext systemOperationContext;
   private final SystemMetadataService systemMetadataService;
   private final TimeseriesAspectService timeseriesAspectService;
@@ -66,9 +66,10 @@ public OperationsController(
       SystemMetadataService systemMetadataService,
       TimeseriesAspectService timeseriesAspectService,
       EntitySearchService searchService,
-      EntityService<?> entityService) {
+      EntityService<?> entityService,
+      AuthorizerChain authorizerChain) {
     this.systemOperationContext = systemOperationContext;
-    this.authorizerChain = systemOperationContext.getAuthorizerContext().getAuthorizer();
+    this.authorizerChain = authorizerChain;
     this.systemMetadataService = systemMetadataService;
     this.timeseriesAspectService = timeseriesAspectService;
     this.searchService = searchService;
@@ -229,7 +230,7 @@ public ResponseEntity<ExplainResponse> explainSearchQuery(
 
     if (!AuthUtil.isAPIAuthorized(
         authentication, authorizerChain, PoliciesConfig.ES_EXPLAIN_QUERY_PRIVILEGE)) {
-      log.error("{} is not authorized to get timeseries index sizes", actorUrnStr);
+      log.error("{} is not authorized to get explain queries", actorUrnStr);
       return ResponseEntity.status(HttpStatus.FORBIDDEN).body(null);
     }
     OperationContext opContext =