[Improvement] JDBC Connection Configuration with Flexible SSL and Property Injection

Author: Felicity-3786

gateway-ha/pom.xml

@@ -76,6 +76,12 @@
             <artifactId>guice</artifactId>
         </dependency>
 
+        <dependency>
+            <groupId>com.mysql</groupId>
+            <artifactId>mysql-connector-j</artifactId>
+            <version>9.2.0</version>
+        </dependency>
+
         <dependency>
             <groupId>com.nimbusds</groupId>
             <artifactId>nimbus-jose-jwt</artifactId>
@@ -270,13 +276,6 @@
             <artifactId>jmxutils</artifactId>
         </dependency>
 
-        <dependency>
-            <groupId>com.mysql</groupId>
-            <artifactId>mysql-connector-j</artifactId>
-            <version>9.2.0</version>
-            <scope>runtime</scope>
-        </dependency>
-
         <dependency>
             <groupId>com.oracle.database.jdbc</groupId>
             <artifactId>ojdbc11-production</artifactId>

gateway-ha/src/main/java/io/trino/gateway/ha/config/DataStoreConfiguration.java

@@ -22,6 +22,10 @@ public class DataStoreConfiguration
     private Integer queryHistoryHoursRetention = 4;
     private boolean runMigrationsEnabled = true;
 
+    // TODO: Refactor to decouple DataStoreConfiguration from a specific
+    //  database implementation after adopting the Airlift configuration framework (https://github.com/trinodb/trino-gateway/issues/378)
+    private MysqlConfiguration mysqlConfiguration = new MysqlConfiguration();
+
     public DataStoreConfiguration(String jdbcUrl, String user, String password, String driver, Integer queryHistoryHoursRetention, boolean runMigrationsEnabled)
     {
         this.jdbcUrl = jdbcUrl;
@@ -93,4 +97,14 @@ public void setRunMigrationsEnabled(boolean runMigrationsEnabled)
     {
         this.runMigrationsEnabled = runMigrationsEnabled;
     }
+
+    public MysqlConfiguration getMysqlConfiguration()
+    {
+        return mysqlConfiguration;
+    }
+
+    public void setMysqlConfiguration(MysqlConfiguration mysqlConfig)
+    {
+        this.mysqlConfiguration = mysqlConfig;
+    }
 }

gateway-ha/src/main/java/io/trino/gateway/ha/config/HaGatewayConfiguration.java

@@ -43,6 +43,7 @@ public class HaGatewayConfiguration
     private List<String> statementPaths = ImmutableList.of(V1_STATEMENT_PATH);
     private boolean includeClusterHostInResponse;
     private ProxyResponseConfiguration proxyResponseConfiguration = new ProxyResponseConfiguration();
+    private boolean oracleBackend;
 
     private RequestAnalyzerConfig requestAnalyzerConfig = new RequestAnalyzerConfig();
 
@@ -297,4 +298,14 @@ public HaGatewayConfigurationException(String message)
             super(message);
         }
     }
+
+    public boolean isOracleBackend()
+    {
+        return oracleBackend;
+    }
+
+    public void setOracleBackend(boolean oracleBackend)
+    {
+        this.oracleBackend = oracleBackend;
+    }
 }

gateway-ha/src/main/java/io/trino/gateway/ha/config/MysqlConfiguration.java

@@ -0,0 +1,95 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package io.trino.gateway.ha.config;
+
+import com.mysql.cj.conf.PropertyDefinitions.SslMode;
+
+/**
+ * Configuration for MySQL SSL (client cert and truststore settings).
+ */
+public class MysqlConfiguration
+{
+    private SslMode sslMode = SslMode.DISABLED;
+    private String clientCertificateKeyStoreUrl;
+    private String clientCertificateKeyStorePassword;
+    private String clientCertificateKeyStoreType;
+    private String trustCertificateKeyStoreUrl;
+    private String trustCertificateKeyStorePassword;
+
+    public SslMode getSslMode()
+    {
+        return sslMode;
+    }
+
+    public MysqlConfiguration setSslMode(SslMode sslMode)
+    {
+        this.sslMode = sslMode;
+        return this;
+    }
+
+    public String getClientCertificateKeyStoreUrl()
+    {
+        return clientCertificateKeyStoreUrl;
+    }
+
+    public MysqlConfiguration setClientCertificateKeyStoreUrl(String url)
+    {
+        this.clientCertificateKeyStoreUrl = url;
+        return this;
+    }
+
+    public String getClientCertificateKeyStorePassword()
+    {
+        return clientCertificateKeyStorePassword;
+    }
+
+    public MysqlConfiguration setClientCertificateKeyStorePassword(String password)
+    {
+        this.clientCertificateKeyStorePassword = password;
+        return this;
+    }
+
+    public String getClientCertificateKeyStoreType()
+    {
+        return clientCertificateKeyStoreType;
+    }
+
+    public MysqlConfiguration setClientCertificateKeyStoreType(String type)
+    {
+        this.clientCertificateKeyStoreType = type;
+        return this;
+    }
+
+    public String getTrustCertificateKeyStoreUrl()
+    {
+        return trustCertificateKeyStoreUrl;
+    }
+
+    public MysqlConfiguration setTrustCertificateKeyStoreUrl(String url)
+    {
+        this.trustCertificateKeyStoreUrl = url;
+        return this;
+    }
+
+    public String getTrustCertificateKeyStorePassword()
+    {
+        return trustCertificateKeyStorePassword;
+    }
+
+    public MysqlConfiguration setTrustCertificateKeyStorePassword(String password)
+    {
+        this.trustCertificateKeyStorePassword = password;
+        return this;
+    }
+}

gateway-ha/src/main/java/io/trino/gateway/ha/module/QueryCountBasedRouterProvider.java

@@ -14,24 +14,27 @@
 package io.trino.gateway.ha.module;
 
 import com.google.inject.Provides;
+import com.google.inject.Singleton;
 import io.trino.gateway.ha.config.HaGatewayConfiguration;
+import io.trino.gateway.ha.router.GatewayBackendManager;
 import io.trino.gateway.ha.router.QueryCountBasedRouter;
+import io.trino.gateway.ha.router.QueryHistoryManager;
 import io.trino.gateway.ha.router.RoutingManager;
 
 public class QueryCountBasedRouterProvider
           extends RouterBaseModule
 {
-    private final QueryCountBasedRouter routingManager;
-
     public QueryCountBasedRouterProvider(HaGatewayConfiguration configuration)
     {
         super(configuration);
-        routingManager = new QueryCountBasedRouter(gatewayBackendManager, queryHistoryManager);
     }
 
     @Provides
-    public RoutingManager getRoutingManager()
+    @Singleton
+    public RoutingManager provideRoutingManager(
+            GatewayBackendManager gatewayBackendManager,
+            QueryHistoryManager queryHistoryManager)
     {
-        return this.routingManager;
+        return new QueryCountBasedRouter(gatewayBackendManager, queryHistoryManager);
     }
 }

gateway-ha/src/main/java/io/trino/gateway/ha/module/RouterBaseModule.java

@@ -15,54 +15,76 @@
 
 import com.google.inject.AbstractModule;
 import com.google.inject.Provides;
+import com.google.inject.Singleton;
+import com.google.inject.TypeLiteral;
+import io.trino.gateway.ha.config.DataStoreConfiguration;
 import io.trino.gateway.ha.config.HaGatewayConfiguration;
+import io.trino.gateway.ha.persistence.BasicJdbcPropertiesProvider;
 import io.trino.gateway.ha.persistence.JdbcConnectionManager;
+import io.trino.gateway.ha.persistence.JdbcPropertiesProvider;
+import io.trino.gateway.ha.persistence.JdbcPropertiesProviderFactory;
+import io.trino.gateway.ha.persistence.MySqlJdbcPropertiesProvider;
 import io.trino.gateway.ha.router.GatewayBackendManager;
 import io.trino.gateway.ha.router.HaGatewayManager;
 import io.trino.gateway.ha.router.HaQueryHistoryManager;
 import io.trino.gateway.ha.router.HaResourceGroupsManager;
 import io.trino.gateway.ha.router.QueryHistoryManager;
 import io.trino.gateway.ha.router.ResourceGroupsManager;
 import org.jdbi.v3.core.Jdbi;
+import org.jdbi.v3.sqlobject.SqlObjectPlugin;
+
+import java.util.List;
+import java.util.Properties;
 
 public class RouterBaseModule
         extends AbstractModule
 {
-    final ResourceGroupsManager resourceGroupsManager;
-    final GatewayBackendManager gatewayBackendManager;
-    final QueryHistoryManager queryHistoryManager;
-    final JdbcConnectionManager connectionManager;
+    private final HaGatewayConfiguration configuration;
 
     public RouterBaseModule(HaGatewayConfiguration configuration)
     {
-        Jdbi jdbi = Jdbi.create(configuration.getDataStore().getJdbcUrl(), configuration.getDataStore().getUser(), configuration.getDataStore().getPassword());
-        connectionManager = new JdbcConnectionManager(jdbi, configuration.getDataStore());
-        resourceGroupsManager = new HaResourceGroupsManager(connectionManager);
-        gatewayBackendManager = new HaGatewayManager(jdbi);
-        queryHistoryManager = new HaQueryHistoryManager(jdbi, configuration.getDataStore().getJdbcUrl().startsWith("jdbc:oracle"));
+        this.configuration = configuration;
     }
 
-    @Provides
-    public JdbcConnectionManager getConnectionManager()
+    @Override
+    protected void configure()
     {
-        return this.connectionManager;
-    }
+        bind(HaGatewayConfiguration.class).toInstance(configuration);
+        bind(DataStoreConfiguration.class)
+                .toInstance(configuration.getDataStore());
 
-    @Provides
-    public ResourceGroupsManager getResourceGroupsManager()
-    {
-        return this.resourceGroupsManager;
+        bind(ResourceGroupsManager.class).to(HaResourceGroupsManager.class);
+        bind(GatewayBackendManager.class).to(HaGatewayManager.class);
+        bind(QueryHistoryManager.class).to(HaQueryHistoryManager.class);
+
+        bind(new TypeLiteral<List<JdbcPropertiesProvider>>() {}).toInstance(List.of(
+                new MySqlJdbcPropertiesProvider(),
+                new BasicJdbcPropertiesProvider()));
+
+        bind(JdbcPropertiesProviderFactory.class).in(Singleton.class);
     }
 
     @Provides
-    public GatewayBackendManager getGatewayBackendManager()
+    @Singleton
+    public Jdbi provideJdbi(
+            DataStoreConfiguration configuration,
+            JdbcPropertiesProviderFactory providerFactory)
     {
-        return this.gatewayBackendManager;
+        Properties props = providerFactory
+                .forConfig(configuration)
+                .getProperties(configuration);
+        Jdbi jdbi = Jdbi.create(configuration.getJdbcUrl(), props);
+        jdbi.installPlugin(new SqlObjectPlugin());
+        return jdbi;
     }
 
     @Provides
-    public QueryHistoryManager getQueryHistoryManager()
+    @Singleton
+    public JdbcConnectionManager provideConnectionManager(
+            Jdbi jdbi,
+            DataStoreConfiguration configuration,
+            JdbcPropertiesProviderFactory providerFactory)
     {
-        return this.queryHistoryManager;
+        return new JdbcConnectionManager(jdbi, configuration, providerFactory.forConfig(configuration));
     }
 }

gateway-ha/src/main/java/io/trino/gateway/ha/module/StochasticRoutingManagerProvider.java

@@ -14,30 +14,34 @@
 package io.trino.gateway.ha.module;
 
 import com.google.inject.Provides;
+import com.google.inject.Singleton;
 import io.trino.gateway.ha.config.HaGatewayConfiguration;
+import io.trino.gateway.ha.router.GatewayBackendManager;
+import io.trino.gateway.ha.router.QueryHistoryManager;
 import io.trino.gateway.ha.router.RoutingManager;
 import io.trino.gateway.ha.router.StochasticRoutingManager;
 
 public class StochasticRoutingManagerProvider
             extends RouterBaseModule
 {
-    private final StochasticRoutingManager routingManager;
-
     public StochasticRoutingManagerProvider(HaGatewayConfiguration configuration)
     {
         super(configuration);
-        routingManager = new StochasticRoutingManager(gatewayBackendManager, queryHistoryManager);
     }
 
     @Provides
-    public StochasticRoutingManager getHaRoutingManager()
+    @Singleton
+    public StochasticRoutingManager provideStochasticRoutingManager(
+            GatewayBackendManager gatewayBackendManager,
+            QueryHistoryManager queryHistoryManager)
     {
-        return this.routingManager;
+        return new StochasticRoutingManager(gatewayBackendManager, queryHistoryManager);
     }
 
     @Provides
-    public RoutingManager getRoutingManager()
+    @Singleton
+    public RoutingManager provideRoutingManager(StochasticRoutingManager routingManager)
     {
-        return getHaRoutingManager();
+        return routingManager;
     }
 }

gateway-ha/src/main/java/io/trino/gateway/ha/persistence/BasicJdbcPropertiesProvider.java

@@ -0,0 +1,37 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package io.trino.gateway.ha.persistence;
+
+import io.trino.gateway.ha.config.DataStoreConfiguration;
+
+import java.util.Properties;
+
+public class BasicJdbcPropertiesProvider
+        implements JdbcPropertiesProvider
+{
+    @Override
+    public boolean supports(DataStoreConfiguration configuration)
+    {
+        return true;
+    }
+
+    @Override
+    public Properties getProperties(DataStoreConfiguration configuration)
+    {
+        Properties props = new Properties();
+        props.setProperty("user", configuration.getUser());
+        props.setProperty("password", configuration.getPassword());
+        return props;
+    }
+}