fix: dataset update permission out of sync

[zephyring]

SUMMARY

The perm and schema_perm attributes for dataset model is out of sync due to unreliably using sqlalchemy get_history method where the history state depends on whether the session has flushed or not.
Previously we have logic in before_update and after_update and permission sync logic in after_update will not be deterministic due to session flush.

This PR moves permission sync logic into before_update and directly using connection.execute to check current db state instead of relying on session state to make sure we can detect actual db/table/schema changes to trigger permission update.

It also clean up shadow_dataset_write logic out as we no longer support it but the database attribute is still not lazily loaded when dataset.database attribute is accessed. Thus I leave the load_database method there still.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

TESTING INSTRUCTIONS

ADDITIONAL INFORMATION

• Has associated issue:
• Required feature flags:
• Changes UI
• Includes DB Migration (follow approval process in SIP-59)
  • Migration is atomic, supports rollback & is backwards-compatible
  • Confirm DB migration upgrade and downgrade tested
  • Runtime estimates and downtime expectations provided
• Introduces new feature or API
• Removes existing feature or API

[zephyring]

this method is not used anywhere, thus removing

[zephyring]

this check has already been made in dataset update command and proper domain exception thrown there, thus removing this extra check here.
We also have unique constraints at db layer for (db, schema, table) tuple

[craig-rueda]

No tests?

[jfrag1]

LGTM! I still think it would be best to eventually move this logic into the DAO layer, but this is a great way to get things working properly consistently with sqlalchemy events.

To @craig-rueda's point, there are several existing tests prefixed test_after_update_dataset that test this functionality. I'm not sure any new tests are needed since this PR is pretty much just a refactor/improvement of this existing functionality, but it would probably be good to rename them to test_before_update_dataset to be consistent with naming

[zephyring]

LGTM! I still think it would be best to eventually move this logic into the DAO layer, but this is a great way to get things working properly consistently with sqlalchemy events.

To @craig-rueda's point, there are several existing tests prefixed test_after_update_dataset that test this functionality. I'm not sure any new tests are needed since this PR is pretty much just a refactor/improvement of this existing functionality, but it would probably be good to rename them to test_before_update_dataset to be consistent with naming

agreed. Consolidating to domain's command layer is likely the better way of handling side effect like permission update, as there's existing patterns here.
But I would defer the problem to a larger refactoring until we all agree upon ideal state/target state of how permissions system should work in Superset.

This PR is purely continuing with existing patterns but more on a fix side of thing.

[john-bodley]

Thanks for ensuring we're using the same session.

[zephyring]

this is an important change to the base update method.
By creating a out of session copy of the original model instance, we can set attributes on the copy without worrying the before/after update sqla listener will be triggered for each property.

The listener will only be triggered when session is committed

[zephyring]

there's one test test_run_sync_query_dont_exist that I cannot get passed by with this baseDao.update method change(using a copy model instance out of session and merge)
We probably need more thoughts on how to reduce number of events triggered on each property update, thus reverting here

[eschutho]

Thanks @zephyring!

[dpgaspar]

nice! just one comment, would be nice to have a test also to assert what changed on this PR

[dpgaspar]

the dataset permission is a string that includes the database_id, table_name and schema if those change we have to update the permission string also

[dpgaspar]

forget it, those cases are covered on the next if statements