Separate config option to enable restapi: permissions

[willyborankin]

Description

Added config settings plugins.security.restapi.admin.enabled which enables/disables :resapi permissions.
Default is false

Issues Resolved

• Resolves [BUG] There should be a seperate configuration option to enable restapi: permissions #2571

Is this a backport? If so, please add backport PR # and/or commits #

Testing

[Please provide details of testing done: unit testing, integration testing and manual testing]

Check List

• New functionality includes testing
• New functionality has been documented
• Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[codecov-commenter]

Codecov Report

Attention: Patch coverage is 53.33333% with 7 lines in your changes missing coverage. Please review.

Project coverage is 61.25%. Comparing base (a9bad90) to head (29789ef).
Report is 667 commits behind head on main.

Files with missing lines	Patch %	Lines
...dlic/rest/api/RestApiAdminPrivilegesEvaluator.java	41.66%	6 Missing and 1 partial ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##               main    #2605      +/-   ##
============================================
- Coverage     61.25%   61.25%   -0.01%     
- Complexity     3331     3332       +1     
============================================
  Files           260      260              
  Lines         18509    18515       +6     
  Branches       3269     3271       +2     
============================================
+ Hits          11338    11341       +3     
- Misses         5576     5580       +4     
+ Partials       1595     1594       -1     

Files with missing lines	Coverage Δ
.../opensearch/security/OpenSearchSecurityPlugin.java	79.91% <100.00%> (+0.04%)	⬆️
...arch/security/dlic/rest/api/AbstractApiAction.java	76.26% <100.00%> (+0.09%)	⬆️
...security/dlic/rest/api/SecuritySSLCertsAction.java	71.13% <ø> (-0.59%)	⬇️
...g/opensearch/security/support/ConfigConstants.java	94.44% <ø> (ø)
...dlic/rest/api/RestApiAdminPrivilegesEvaluator.java	75.75% <41.66%> (-2.58%)	⬇️

[peternied]

Thanks @willyborankin! Couple of minor comments inline

[RyanL1997]

Nice!

[opensearch-trigger-bot]

The backport to 2.x failed:

The process '/usr/bin/git' failed with exit code 1

To backport manually, run these commands in your terminal:

# Fetch latest updates from GitHub
git fetch
# Create a new working tree
git worktree add .worktrees/backport-2.x 2.x
# Navigate to the new working tree
cd .worktrees/backport-2.x
# Create a new branch
git switch --create backport/backport-2605-to-2.x
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x --mainline 1 6446268bdf4fd9f39d0e669aafa227b582dbf4e6
# Push it to GitHub
git push --set-upstream origin backport/backport-2605-to-2.x
# Go back to the original working tree
cd ../..
# Delete the working tree
git worktree remove .worktrees/backport-2.x

Then, create a pull request where the base branch is 2.x and the compare/head branch is backport/backport-2605-to-2.x.

[opensearch-trigger-bot]

The backport to 2.8 failed:

The process '/usr/bin/git' failed with exit code 1

To backport manually, run these commands in your terminal:

# Fetch latest updates from GitHub
git fetch
# Create a new working tree
git worktree add .worktrees/backport-2.8 2.8
# Navigate to the new working tree
cd .worktrees/backport-2.8
# Create a new branch
git switch --create backport/backport-2605-to-2.8
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x --mainline 1 6446268bdf4fd9f39d0e669aafa227b582dbf4e6
# Push it to GitHub
git push --set-upstream origin backport/backport-2605-to-2.8
# Go back to the original working tree
cd ../..
# Delete the working tree
git worktree remove .worktrees/backport-2.8

Then, create a pull request where the base branch is 2.8 and the compare/head branch is backport/backport-2605-to-2.8.