HPCC-30259 Use secrets for dafilesrv client connections

[jakesmith]

Type of change:

• This change is a bug fix (non-breaking change which fixes an issue).
• This change is a new feature (non-breaking change which adds functionality).
• This change improves the code (refactor or other change that does not change the functionality)
• This change fixes warnings (the fix does not alter the functionality or the generated code)
• This change is a breaking change (fix or feature that will cause existing behavior to change).
• This change alters the query API (existing queries will have to be recompiled)

Checklist:

• My code follows the code style of this project.
  • My code does not create any new warnings from compiler, build system, or lint.
• The commit message is properly formatted and free of typos.
  • The commit message title makes sense in a changelog, by itself.
  • The commit is signed.
• My change requires a change to the documentation.
  • I have updated the documentation accordingly, or...
  • I have created a JIRA ticket to update the documentation.
  • Any new interfaces or exported functions are appropriately commented.
• I have read the CONTRIBUTORS document.
• The change has been fully tested:
  • I have added tests to cover my changes.
  • All new and existing tests passed.
  • I have checked that this change does not introduce memory leaks.
  • I have used Valgrind or similar tools to check for potential issues.
• I have given due consideration to all of the following potential concerns:
  • Scalability
  • Performance
  • Security
  • Thread-safety
  • Cloud-compatibility
  • Premature optimization
  • Existing deployed queries will not be broken
  • This change fixes the problem, not just the symptom
  • The target branch of this pull request is appropriate for such a change.
• There are no similar instances of the same problem that should be addressed
  • I have addressed them here
  • I have raised JIRA issues to address them separately
• This is a user interface / front-end modification
  • I have tested my changes in multiple modern browsers
  • The component(s) render as expected

Smoketest:

• Send notifications about my Pull Request position in Smoketest queue.
• Test my draft Pull Request.

Testing:

[jakesmith]

NB: @ghalliday @mckellyln - in a subsequent PR I will be refactoring the below so that it uses the new ISecret interface and caching the security contexts

[github-actions]

https://track.hpccsystems.com/browse/HPCC-30259
Jira updated

[ghalliday]

@jakesmith a couple of minor bits of code to delete.
Would make sense to delete them, but would merge as-is.
I suspect the code will be much simpler if it unconditionally checks for secrets...

[ghalliday]

As discussed - it may be simpler to avoid this code and always search for a secret, but for a follow up PR.

[ghalliday]

Unsued afaics

[ghalliday]

Unused afaics

[jakesmith]

@jakesmith a couple of minor bits of code to delete. Would make sense to delete them, but would merge as-is. I suspect the code will be much simpler if it unconditionally checks for secrets...

@ghalliday - 2nd commit removes the unused code you spotted.
I'ved open a new JIRA re. refactoring: https://track.hpccsystems.com/browse/HPCC-30372

[mckellyln]

Should timeout be INFINITE or 0 (to use configured default) ?

[jakesmith]

timeout is 0.
retries is INFINITE.

    void connectSocket(SocketEndpoint &ep, unsigned connectTimeoutMs=0, unsigned connectRetries=INFINITE, bool secure=false);

Same as defaults, just explicit now.

[mckellyln]

ok, sorry I read the args wrong.

[mckellyln]

Looks good, just one question about setting timeout to INFINITE instead of 0 in two locations.

[jakesmith]

Looks good, just one question about setting timeout to INFINITE instead of 0 in two locations.

@mckellyln - please see reply, It should be the same as before connectTimeoutMs=0, connectRetries=INFINITE - same as defaults, as before, just explicit.

[mckellyln]

Approved