Policy Store: Add PolicyEntity and PolicyTypes

[HonahX]

This PR introduces basic classes for supporting Policy Store in Polaris, as discussed in #1059.

1. PolicyEntity – Represents a policy object in Polaris.
2. PolicyType – Defines a category of policies, which can be either predefined or custom (user-defined). Currently only predefined classes supported

This will be the first step to unblock all other Policy PRs and discussions

cc: @flyrain

[flyrain]

LGTM. Left minor comments! Thanks @HonahX for the PR.

[flyrain]

We will need policy type to be a top-level field instead of hidden in property map in the future, but it's fine now.

[flyrain]

Minor: a name like SystemPolicyTypes ? Just wanna brainstorming a bit.

[HonahX]

I think "Predefined Policy" is widely used throughout our design doc, so I still lean slightly toward keeping it. However, I’ll update it to the plural form.

[dimas-b]

As discussed in the sync meeting, if possible, please hold this PR until a NoSQL peristence impl. is available (hopefully soon).

[HonahX]

Hi @dimas-b, do you mean hold #1104 which includes the new Persistence Table, interface and impl? For that, I marked #1104 as draft to allow some time for ongoing refactoring and new impl.

For this one, the PolicyEntity will be persisted just like other existing entities. So I think it should not be related to any changes in persistence refactoring or new persistence impl and we can proceed this in parallel with ongoing persistence layer work.

Will NoSQL persistence impl introduce any changes that affect the current persistence model for Entitites?

[dimas-b]

Current NoSQL POC using typeCode (#1112), so adding new types will cause some interference, hence my request to hold this PR as well.

[flyrain]

I think it’s unreasonable to hold multiple PRs due to one persistence implementation. The NoSQL implementation isn’t the only ongoing persistence change—@singhpk234 and I are actively working on the Postgres implementation as well. Given that multiple efforts are running in parallel, we shouldn’t allow one refactor to block overall development.

cc @eric-maynard @dennishuo

[jbonofre]

@flyrain I agee. However, I'm a bit surprised @singhpk234 and you are working on PostgreSQL backend while the "new" API are not yet finalize. @dennishuo and @dimas-b are still working on it. I just want to avoid dual effort.
I propose to open draft PRs to give visibility and anticipate questions/comments to gain time.

[flyrain]

Thanks @jbonofre! Just like the MongoDb effort, Postgres support is an ongoing effort. I have made this PR(#1128) pass all tests,

[snazy]

I think the test coverage is not good enough, because I could imagine errors in the Iceberg catalog implementations as soon as there's some policy in there. Also the interaction of these new types via the entity manager is untested.

Generally, I think it's better to see the whole Policy thing working in a feature branch, which can be a PR in draft state, instead of pushing small bits of rather unused code.

[HonahX]

Hi @snazy, thanks for the feedback!

I think the test coverage is not good enough, because I could imagine errors in the Iceberg catalog implementations as soon as there's some policy in there.

Could you clarify this concern? The Policy implementation is independent of the Iceberg catalog. It has its own service interface/implementation, handler, and a PolicyCatalog within service-common, all separate from Iceberg. (I realize part of the design doc is outdated—I'll update that section.)

Also the interaction of these new types via the entity manager is untested.

I can add more tests in ResolverTest and PolarisTestMetastoreManager to improve coverage.

Generally, I think it's better to see the whole Policy thing working in a feature branch, which can be a PR in draft state, instead of pushing small bits of rather unused code.

I do have a draft PR #1104 that includes all necessary Polaris-core changes for the policy store, including basic classes and the PolicyMappingRecord persistence interfaces/implementations. I can publish a larger draft PR that combines core changes with the service implementation for reference. That said, I’d still recommend reviewing and merging smaller pieces incrementally—this makes it easier for everyone to review and avoids one massive PR that’s harder to manage.

Let me know what you think!

[singhpk234]

[doubt] I might be late to this, but why system prefix ?

[HonahX]

The prefix is to make it consistent with the path of the content schema of these policies, introduced in #969.

[singhpk234]

[doubt] may be a naive question, what stops these policies to inherited from namespace -> view ?
As we don't wanna run stuff for views >

[HonahX]

As we don't wanna run stuff for views >

Good question, I think that's a valid concern. Currently, our engine determines how policies are enforced, and the TMS service is focused solely on tables. That said, if we later find it necessary to restrict inheritance, we can extend the PolicyType to provide the functionality to limit the valid target types.

cc @flyrain

[singhpk234]

Currently, our engine determines how policies are enforced, and the TMS service is focused solely on tables

Thats true for enforcing part, but polaris here is acting as a policy store, which should make sure if such inheritence if they are un-intentional are blocked. So a call to get a TMS policy on view should return nothing.

That being said it fine if we want address this later, considering presently the caller just wants TMS on tables and never on a view.

[singhpk234]

LGTM as well, thanks @HonahX !

The comment is resolved by the comment and #1133 (comment) and new unit test cases added in the new commits.