[#10962] feat(authn): Add built-in IDP metadata schema (#10969)

### What changes were proposed in this pull request?
This PR adds the local IdP metadata schema for H2, MySQL, and PostgreSQL
by introducing `idp_user_meta`, `idp_group_meta`, and
`idp_group_user_rel` to both the full schema scripts and the
1.2.0-to-1.3.0 upgrade scripts. The change is limited to JDBC SQL
scripts only.

### Why are the changes needed?
The local authenticator needs dedicated metadata tables to persist
built-in IdP users, groups, and group memberships with soft-delete
support.

Fix: #10962

### Does this PR introduce _any_ user-facing change?
No.

### How was this patch tested?
```
./gradlew --no-daemon :core:test --tests org.apache.gravitino.storage.TestSQLScripts
```

Note: the current `TestSQLScripts` coverage does not execute
`upgrade-*-to-*.sql` scripts, so upgrade scripts are not in the test
scope here.

Author: lasdf1234

scripts/h2/schema-1.3.0-h2.sql

@@ -248,6 +248,40 @@ CREATE TABLE IF NOT EXISTS `group_role_rel` (
     KEY `idx_gid` (`group_id`)
 ) ENGINE=InnoDB;
 
+CREATE TABLE IF NOT EXISTS `idp_user_meta` (
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `user_name` VARCHAR(128) NOT NULL COMMENT 'idp username',
+    `password_hash` VARCHAR(1024) NOT NULL COMMENT 'idp user password hash',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp user deleted at',
+    PRIMARY KEY (`user_id`),
+    CONSTRAINT `uk_iun_del` UNIQUE (`user_name`, `deleted_at`)
+) ENGINE=InnoDB;
+
+CREATE TABLE IF NOT EXISTS `idp_group_meta` (
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `group_name` VARCHAR(128) NOT NULL COMMENT 'idp group name',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp group deleted at',
+    PRIMARY KEY (`group_id`),
+    CONSTRAINT `uk_ign_del` UNIQUE (`group_name`, `deleted_at`)
+) ENGINE=InnoDB;
+
+CREATE TABLE IF NOT EXISTS `idp_group_user_rel` (
+    `id` BIGINT(20) UNSIGNED NOT NULL AUTO_INCREMENT COMMENT 'auto increment id',
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp relation deleted at',
+    PRIMARY KEY (`id`),
+    CONSTRAINT `uk_igiu_del` UNIQUE (`group_id`, `user_id`, `deleted_at`),
+    KEY `idx_iug_gid` (`group_id`),
+    KEY `idx_iug_uid` (`user_id`)
+) ENGINE=InnoDB;
+
 CREATE TABLE IF NOT EXISTS `tag_meta` (
     `tag_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'tag id',
     `tag_name` VARCHAR(128) NOT NULL COMMENT 'tag name',

scripts/h2/upgrade-1.2.0-to-1.3.0-h2.sql

@@ -64,3 +64,37 @@ CREATE TABLE IF NOT EXISTS `view_version_info` (
     KEY `idx_vvcid` (`catalog_id`),
     KEY `idx_vvsid` (`schema_id`)
 ) ENGINE=InnoDB;
+
+CREATE TABLE IF NOT EXISTS `idp_user_meta` (
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `user_name` VARCHAR(128) NOT NULL COMMENT 'idp username',
+    `password_hash` VARCHAR(1024) NOT NULL COMMENT 'idp user password hash',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp user deleted at',
+    PRIMARY KEY (`user_id`),
+    CONSTRAINT `uk_iun_del` UNIQUE (`user_name`, `deleted_at`)
+) ENGINE=InnoDB;
+
+CREATE TABLE IF NOT EXISTS `idp_group_meta` (
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `group_name` VARCHAR(128) NOT NULL COMMENT 'idp group name',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp group deleted at',
+    PRIMARY KEY (`group_id`),
+    CONSTRAINT `uk_ign_del` UNIQUE (`group_name`, `deleted_at`)
+) ENGINE=InnoDB;
+
+CREATE TABLE IF NOT EXISTS `idp_group_user_rel` (
+    `id` BIGINT(20) UNSIGNED NOT NULL AUTO_INCREMENT COMMENT 'auto increment id',
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp relation deleted at',
+    PRIMARY KEY (`id`),
+    CONSTRAINT `uk_igiu_del` UNIQUE (`group_id`, `user_id`, `deleted_at`),
+    KEY `idx_iug_gid` (`group_id`),
+    KEY `idx_iug_uid` (`user_id`)
+) ENGINE=InnoDB;

scripts/mysql/schema-1.3.0-mysql.sql

@@ -239,6 +239,40 @@ CREATE TABLE IF NOT EXISTS `group_role_rel` (
     KEY `idx_rid` (`group_id`)
 ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'group role relation';
 
+CREATE TABLE IF NOT EXISTS `idp_user_meta` (
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `user_name` VARCHAR(128) NOT NULL COMMENT 'idp username',
+    `password_hash` VARCHAR(1024) NOT NULL COMMENT 'idp user password hash',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp user deleted at',
+    PRIMARY KEY (`user_id`),
+    UNIQUE KEY `uk_iun_del` (`user_name`, `deleted_at`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'local IdP user metadata';
+
+CREATE TABLE IF NOT EXISTS `idp_group_meta` (
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `group_name` VARCHAR(128) NOT NULL COMMENT 'idp group name',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp group deleted at',
+    PRIMARY KEY (`group_id`),
+    UNIQUE KEY `uk_ign_del` (`group_name`, `deleted_at`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'local IdP group metadata';
+
+CREATE TABLE IF NOT EXISTS `idp_group_user_rel` (
+    `id` BIGINT(20) UNSIGNED NOT NULL AUTO_INCREMENT COMMENT 'auto increment id',
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp relation deleted at',
+    PRIMARY KEY (`id`),
+    UNIQUE KEY `uk_igiu_del` (`group_id`, `user_id`, `deleted_at`),
+    KEY `idx_iug_gid` (`group_id`),
+    KEY `idx_iug_uid` (`user_id`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'local IdP group user relation';
+
 CREATE TABLE IF NOT EXISTS `tag_meta` (
     `tag_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'tag id',
     `tag_name` VARCHAR(128) NOT NULL COMMENT 'tag name',

scripts/mysql/upgrade-1.2.0-to-1.3.0-mysql.sql

@@ -78,3 +78,37 @@ CREATE TABLE IF NOT EXISTS `view_version_info` (
     KEY `idx_vvcid` (`catalog_id`),
     KEY `idx_vvsid` (`schema_id`)
 ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'view version info';
+
+CREATE TABLE IF NOT EXISTS `idp_user_meta` (
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `user_name` VARCHAR(128) NOT NULL COMMENT 'idp username',
+    `password_hash` VARCHAR(1024) NOT NULL COMMENT 'idp user password hash',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp user last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp user deleted at',
+    PRIMARY KEY (`user_id`),
+    UNIQUE KEY `uk_iun_del` (`user_name`, `deleted_at`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'local IdP user metadata';
+
+CREATE TABLE IF NOT EXISTS `idp_group_meta` (
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `group_name` VARCHAR(128) NOT NULL COMMENT 'idp group name',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp group last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp group deleted at',
+    PRIMARY KEY (`group_id`),
+    UNIQUE KEY `uk_ign_del` (`group_name`, `deleted_at`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'local IdP group metadata';
+
+CREATE TABLE IF NOT EXISTS `idp_group_user_rel` (
+    `id` BIGINT(20) UNSIGNED NOT NULL AUTO_INCREMENT COMMENT 'auto increment id',
+    `group_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp group id',
+    `user_id` BIGINT(20) UNSIGNED NOT NULL COMMENT 'idp user id',
+    `current_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation current version',
+    `last_version` INT UNSIGNED NOT NULL DEFAULT 1 COMMENT 'idp relation last version',
+    `deleted_at` BIGINT(20) UNSIGNED NOT NULL DEFAULT 0 COMMENT 'idp relation deleted at',
+    PRIMARY KEY (`id`),
+    UNIQUE KEY `uk_igiu_del` (`group_id`, `user_id`, `deleted_at`),
+    KEY `idx_iug_gid` (`group_id`),
+    KEY `idx_iug_uid` (`user_id`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT 'local IdP group user relation';

scripts/postgresql/schema-1.3.0-postgresql.sql

@@ -427,6 +427,63 @@ COMMENT ON COLUMN group_role_rel.current_version IS 'relation current version';
 COMMENT ON COLUMN group_role_rel.last_version IS 'relation last version';
 COMMENT ON COLUMN group_role_rel.deleted_at IS 'relation deleted at';
 
+CREATE TABLE IF NOT EXISTS idp_user_meta (
+    user_id BIGINT NOT NULL,
+    user_name VARCHAR(128) NOT NULL,
+    password_hash VARCHAR(1024) NOT NULL,
+    current_version INT NOT NULL DEFAULT 1,
+    last_version INT NOT NULL DEFAULT 1,
+    deleted_at BIGINT NOT NULL DEFAULT 0,
+    PRIMARY KEY (user_id),
+    UNIQUE (user_name, deleted_at)
+);
+COMMENT ON TABLE idp_user_meta IS 'local IdP user metadata';
+
+COMMENT ON COLUMN idp_user_meta.user_id IS 'idp user id';
+COMMENT ON COLUMN idp_user_meta.user_name IS 'idp username';
+COMMENT ON COLUMN idp_user_meta.password_hash IS 'idp user password hash';
+COMMENT ON COLUMN idp_user_meta.current_version IS 'idp user current version';
+COMMENT ON COLUMN idp_user_meta.last_version IS 'idp user last version';
+COMMENT ON COLUMN idp_user_meta.deleted_at IS 'idp user deleted at';
+
+CREATE TABLE IF NOT EXISTS idp_group_meta (
+    group_id BIGINT NOT NULL,
+    group_name VARCHAR(128) NOT NULL,
+    current_version INT NOT NULL DEFAULT 1,
+    last_version INT NOT NULL DEFAULT 1,
+    deleted_at BIGINT NOT NULL DEFAULT 0,
+    PRIMARY KEY (group_id),
+    UNIQUE (group_name, deleted_at)
+);
+COMMENT ON TABLE idp_group_meta IS 'local IdP group metadata';
+
+COMMENT ON COLUMN idp_group_meta.group_id IS 'idp group id';
+COMMENT ON COLUMN idp_group_meta.group_name IS 'idp group name';
+COMMENT ON COLUMN idp_group_meta.current_version IS 'idp group current version';
+COMMENT ON COLUMN idp_group_meta.last_version IS 'idp group last version';
+COMMENT ON COLUMN idp_group_meta.deleted_at IS 'idp group deleted at';
+
+CREATE TABLE IF NOT EXISTS idp_group_user_rel (
+    id BIGINT NOT NULL GENERATED BY DEFAULT AS IDENTITY,
+    group_id BIGINT NOT NULL,
+    user_id BIGINT NOT NULL,
+    current_version INT NOT NULL DEFAULT 1,
+    last_version INT NOT NULL DEFAULT 1,
+    deleted_at BIGINT NOT NULL DEFAULT 0,
+    PRIMARY KEY (id),
+    UNIQUE (group_id, user_id, deleted_at)
+);
+CREATE INDEX IF NOT EXISTS idp_group_user_rel_idx_group_id ON idp_group_user_rel (group_id);
+CREATE INDEX IF NOT EXISTS idp_group_user_rel_idx_user_id ON idp_group_user_rel (user_id);
+COMMENT ON TABLE idp_group_user_rel IS 'local IdP group user relation';
+
+COMMENT ON COLUMN idp_group_user_rel.id IS 'auto increment id';
+COMMENT ON COLUMN idp_group_user_rel.group_id IS 'idp group id';
+COMMENT ON COLUMN idp_group_user_rel.user_id IS 'idp user id';
+COMMENT ON COLUMN idp_group_user_rel.current_version IS 'idp relation current version';
+COMMENT ON COLUMN idp_group_user_rel.last_version IS 'idp relation last version';
+COMMENT ON COLUMN idp_group_user_rel.deleted_at IS 'idp relation deleted at';
+
 CREATE TABLE IF NOT EXISTS tag_meta (
     tag_id BIGINT NOT NULL,
     tag_name VARCHAR(128) NOT NULL,

scripts/postgresql/upgrade-1.2.0-to-1.3.0-postgresql.sql

@@ -91,3 +91,60 @@ COMMENT ON COLUMN view_version_info.default_schema IS 'default schema for view S
 COMMENT ON COLUMN view_version_info.representations IS 'view representations (JSON array)';
 COMMENT ON COLUMN view_version_info.audit_info IS 'view version audit info';
 COMMENT ON COLUMN view_version_info.deleted_at IS 'view version deleted at';
+
+CREATE TABLE IF NOT EXISTS idp_user_meta (
+    user_id BIGINT NOT NULL,
+    user_name VARCHAR(128) NOT NULL,
+    password_hash VARCHAR(1024) NOT NULL,
+    current_version INT NOT NULL DEFAULT 1,
+    last_version INT NOT NULL DEFAULT 1,
+    deleted_at BIGINT NOT NULL DEFAULT 0,
+    PRIMARY KEY (user_id),
+    UNIQUE (user_name, deleted_at)
+);
+COMMENT ON TABLE idp_user_meta IS 'local IdP user metadata';
+
+COMMENT ON COLUMN idp_user_meta.user_id IS 'idp user id';
+COMMENT ON COLUMN idp_user_meta.user_name IS 'idp username';
+COMMENT ON COLUMN idp_user_meta.password_hash IS 'idp user password hash';
+COMMENT ON COLUMN idp_user_meta.current_version IS 'idp user current version';
+COMMENT ON COLUMN idp_user_meta.last_version IS 'idp user last version';
+COMMENT ON COLUMN idp_user_meta.deleted_at IS 'idp user deleted at';
+
+CREATE TABLE IF NOT EXISTS idp_group_meta (
+    group_id BIGINT NOT NULL,
+    group_name VARCHAR(128) NOT NULL,
+    current_version INT NOT NULL DEFAULT 1,
+    last_version INT NOT NULL DEFAULT 1,
+    deleted_at BIGINT NOT NULL DEFAULT 0,
+    PRIMARY KEY (group_id),
+    UNIQUE (group_name, deleted_at)
+);
+COMMENT ON TABLE idp_group_meta IS 'local IdP group metadata';
+
+COMMENT ON COLUMN idp_group_meta.group_id IS 'idp group id';
+COMMENT ON COLUMN idp_group_meta.group_name IS 'idp group name';
+COMMENT ON COLUMN idp_group_meta.current_version IS 'idp group current version';
+COMMENT ON COLUMN idp_group_meta.last_version IS 'idp group last version';
+COMMENT ON COLUMN idp_group_meta.deleted_at IS 'idp group deleted at';
+
+CREATE TABLE IF NOT EXISTS idp_group_user_rel (
+    id BIGINT NOT NULL GENERATED BY DEFAULT AS IDENTITY,
+    group_id BIGINT NOT NULL,
+    user_id BIGINT NOT NULL,
+    current_version INT NOT NULL DEFAULT 1,
+    last_version INT NOT NULL DEFAULT 1,
+    deleted_at BIGINT NOT NULL DEFAULT 0,
+    PRIMARY KEY (id),
+    UNIQUE (group_id, user_id, deleted_at)
+);
+CREATE INDEX IF NOT EXISTS idp_group_user_rel_idx_group_id ON idp_group_user_rel (group_id);
+CREATE INDEX IF NOT EXISTS idp_group_user_rel_idx_user_id ON idp_group_user_rel (user_id);
+COMMENT ON TABLE idp_group_user_rel IS 'local IdP group user relation';
+
+COMMENT ON COLUMN idp_group_user_rel.id IS 'auto increment id';
+COMMENT ON COLUMN idp_group_user_rel.group_id IS 'idp group id';
+COMMENT ON COLUMN idp_group_user_rel.user_id IS 'idp user id';
+COMMENT ON COLUMN idp_group_user_rel.current_version IS 'idp relation current version';
+COMMENT ON COLUMN idp_group_user_rel.last_version IS 'idp relation last version';
+COMMENT ON COLUMN idp_group_user_rel.deleted_at IS 'idp relation deleted at';