fix(QueryContext): validation does not validate query_context metrics

[ofekisr]

There is an option to add custom SQL expression metrics inside some of the charts visualizations so the fetched data will be aggregated based on the SQL expression.
When the data is fetched the query context itself is validated if the user can access the data
but the additional sql query added from the metric was missed out and not validated so it can be manipulated so now not allowed data will be fetched too.

The PR adds logic for it. right now only to those visualizations their data fetched by Charts API

follow-up PR's would be:

apply also to custom SQL column expressions

[codecov]

Codecov Report

Attention: Patch coverage is 86.09865% with 31 lines in your changes missing coverage. Please review.

Project coverage is 66.58%. Comparing base (3c28cd4) to head (19f8874).
Report is 4280 commits behind head on master.

Files	Patch %	Lines
...data/query_context_validators/access_validators.py	87.65%	10 Missing ⚠️
superset/common/query_context.py	77.27%	5 Missing ⚠️
superset/charts/data/commands/command_factory.py	84.00%	4 Missing ⚠️
.../data/query_context_validators/validaor_factory.py	83.33%	4 Missing ⚠️
...t/charts/data/query_context_validators/__init__.py	77.77%	2 Missing ⚠️
...erset/charts/data/query_context_validators/impl.py	89.47%	2 Missing ⚠️
superset/common/query_object.py	60.00%	2 Missing ⚠️
superset/charts/data/api.py	85.71%	1 Missing ⚠️
superset/charts/data/commands/get_data_command.py	87.50%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #19753      +/-   ##
==========================================
+ Coverage   66.53%   66.58%   +0.05%     
==========================================
  Files        1692     1696       +4     
  Lines       64777    64988     +211     
  Branches     6660     6656       -4     
==========================================
+ Hits        43101    43275     +174     
- Misses      19977    20014      +37     
  Partials     1699     1699              

Flag	Coverage Δ
hive	52.89% <77.57%> (+0.03%)	⬆️
mysql	81.92% <86.09%> (+0.01%)	⬆️
postgres	81.96% <86.09%> (+0.01%)	⬆️
presto	52.74% <77.57%> (+0.03%)	⬆️
python	82.38% <86.09%> (+<0.01%)	⬆️
sqlite	81.73% <86.09%> (+0.01%)	⬆️
unit	47.79% <67.26%> (-0.14%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[ofekisr]

@AAfghahi
please review why your test is failed since #19700
I don't find why

[ofekisr]

@AAfghahi told me to change back the excepted result of the failed test until he will figure it out.
instead of it, I mark the test to be skipped

[eschutho]

are you checking here that the db is sql and not no-sql Druid? If so, we've removed native Druid support in 2.0.

[eschutho]

I'm wondering if this factory abstraction is necessary for the validation or if this is something we can just put into the command?

[dpgaspar]

We avoid using relative imports
there's seems to be a typo also: validaor_factory

[zhaoyongjie]

Do we really need to make so many constructors?

[rusackas]

Hi @ofekisr - just checking in to see if you're still able/willing to get this across the finish line. I'll convert it to draft while it awaits a rebase and responses to comments. Thanks!

[ofekisr]

no I don't Ofek

…

On Tue, Aug 20, 2024 at 5:50 AM Evan Rusackas ***@***.***> wrote: Hi @ofekisr <https://github.com/ofekisr> - just checking in to see if you're still able/willing to get this across the finish line. I'll convert it to draft while it awaits a rebase and responses to comments. Thanks! — Reply to this email directly, view it on GitHub <#19753 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AIQMHESG3UAHMCVM23RQG7DZSKVI5AVCNFSM6AAAAABMY6ZXOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDEOJXHA3DGMBSGA> . You are receiving this because you were mentioned.Message ID: ***@***.***>