Add UiSettings validation & Kibana default route redirection

[mshustov]

Summary

UiSettings validation

Closes #50658
Covers 1-4 cases from #46717

There are several ways to configure an advanced setting today:

Through the Advanced Settings UI
Locked via kibana.yml's uiSettings.overrides.<key>
Through the client-side UI Settings Service
Through the server-side UI Settings Service
Through manual changes to the underlying config object

Through the Advanced Settings UI - a value is validated on the server-side, Kibana server rejects the request, UI reverts changes and shows a notification popup with an error message.
Locked via kibana.yml's uiSettings.overrides.<key> - validated on the server-side on the start
Through the client-side UI Settings Service a value is validated on the server-side, Kibana server rejects request
Through the server-side UI Settings Service - uiSettings service validates value on write and throws an exception if validation fails.
Through manual changes to the underlying config object - uiSettings service validates values on reading, ignores it if validation fails and logs a warning message.

As a bonus, uiSettings service validates on start defaults values. doesn't work currently since all declarations are done in LP

Default route validation

I got rid of all validation logic and moved the logic to NP

Checklist

Delete any items that are not applicable to this PR.

• Unit or functional tests were updated or added to match the most common scenarios

For maintainers

• This was checked for breaking API changes and was labeled appropriately

Dev docs

UiSettings definition allows to specify validation functions:

import { schema } from '@kbn/config-schema';

uiSettings.register({
   myUiSetting: {
      name: ...
      value: 'value',
      schema: schema.string()
  }
})

[elasticmachine]

Pinging @elastic/kibana-platform (Team:Platform)

[pgayvallet]

Probably related to the changes in src/core/server/ui_settings/routes/set.ts , but why the difference between 400 and 4xx?

[mshustov]

Request failed with status code: ${err.response.status} is not really useful. I'd rather remove them completely and provide a more descriptive message, but BWC...So I added this for BadRequest only to provide an actionable message.

[rudolf]

We really need typing for our errors so that we can evolve these 😢

[pgayvallet]

Maybe try/catch to collect all validation errors to throw an aggregated error to show them all at once in case of multiple errors?

[mshustov]

I'd avoid rethrowing an error since it changes the error type and stack trace.

[mshustov]

That's a hack to fix karma tests.
We might have to refactor karma tests when move ui settings defaults declaration to the NP.

[mshustov]

a duplicate #59694 (comment)

[mshustov]

I think we should throw when set a key without definition. Should I add this logic now or add to the list of future improvements? That would be a breaking change

[rudolf]

I agree that would be the preferred behaviour, but it feels like a risky change to make, it could easily cause exceptions in code. Maybe we should start with logging a message similar to setting an invalid key.

[joshdover]

I think there's at least two cases where introducing an exception would be a problem:

• Any settings that have been removed from the codebase but are still present in the user's config
• Any settings that belong to a plugin that was enabled but is now disabled. I don't think we should ever break Kibana in this case.

[mshustov]

I think we should make it required. No objections?

[mshustov]

I was thinking about dynamic vs static declaration and it seems that dynamic is simpler. The only downside I can think of that we cannot get all the ui settings defaults without starting Kibana. That would be useful for such cases as uiSettings.overrides validation.

[pgayvallet]

Same issue as for SO types registration, so this is consistent.

[mshustov]

I'm open to other naming suggestions. ther problem that https://github.com/elastic/kibana/pull/59694/files#diff-e3ce52429da99a601c0f3a737a9039daR51 is not an internal type

[joshdover]

Fine with me

[joshdover]

I think this might be simpler & possibly safer if we validated the fully resolved settings (user provided + defaults) rather than just the user provided values. There's a small performance penalty for that, but I imagine it's negligible?

I just worry about this getting refactored at some point and the validation passing on settings that may not actually match the expected types 100%.

[mshustov]

We will validate defaults and overrides in the start phase.

As a bonus, uiSettings service validates on start defaults values. doesn't work currently since all declarations are done in LP

I don't wait to waste CPU cycles since users usually adjust a handful of settings, so I'd rather prioritize #59755 to move definitions to the NP.

[joshdover]

aside: the more places I see use config-schema, the more I think it shouldn't throw exception messages. Invalid data isn't really an exception, if anything, it's almost entirely expected.

[mshustov]

Yeah. In my initial implementation, I had to wrap it in a function returning {error?: string, valid: boolean}. I'd prefer @kbn/config-schema to have such an interface.

[mshustov]

@joshdover should I create an issue to investigate refactoring options?

[joshdover]

Fine with me

[kibanamachine]

💚 Build Succeeded

• continuous-integration/kibana-ci/pull-request
• Commit: 400a167

History

• 💔 Build #32899 failed 57c9aef
• 💚 Build #32712 succeeded 075fe07
• 💚 Build #32546 succeeded 84e3e5a
• 💔 Build #32529 failed 6e389a6
• 💔 Build #32488 failed 9856d0b

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

[pgayvallet]

Not introduced by this PR, but we may want to rename the exposed types to use the UiSettings prefix at some point. Outside of the scope of the PR though.

[mshustov]

I will create an issue

[mshustov]

added to #48925

[pgayvallet]

Same issue as for SO types registration, so this is consistent.

[mattkime]

app-arch changes look good to me