UID2-6797 replace allowed sites null to empty with dsp type

[caroline-ttd]

Update:

1. Remove Reset Allowed Sites To Null

2. Rename createDefaultKeyset to createKeysetSharedWithDsps
3. setAdminKeyset will reset allowed_site null to empty but do not add DSP in clientType, it will be determined by admin UI keyset page and portal.

Test:

1. unit tests
2. Sanity tests
   In the admin test environment, I created a snapshot.
   createAndAddKeyset -> createKeysetForClient -> post /api/client/add 0r /api/client/update Or /api/client/roles or /api/client/contact

In createKeysetForClient function

    public AdminKeyset createKeysetForClient(ClientKey client) throws Exception{
        if(!enableKeysets) return null;
        Optional<AdminKeyset> keyset = getAdminKeysetBySiteId(client.getSiteId());
        if (keyset.isPresent()) return keyset.get();

        if(client.hasRole(Role.GENERATOR)) {
            return createAndAddDefaultKeyset(client.getSiteId());
        }
        if(client.hasRole(Role.SHARER)) {
            return createAndAddKeyset(client.getSiteId(), new HashSet<>(), new HashSet<>());
        }
        return null;
    }

2.1 After creating a site and a client key, the keyset appears as follows: (post /api/client/add, Role.SHARER)
empty as expected

{
  "id": 1013,
  "name": "ccm-test-keyset-1",
  "description": "ccm-test-keyset-1",
  "enabled": false,
  "clientTypes": [
    "PUBLISHER"
  ],
  "domain_names": [],
  "app_names": [],
  "visible": true,
  "created": 1774489564,
  "roles": [
    "SHARER"
  ],
  "client_count": 1
}

[
  {
    "keyset_id": 1009,
    "site_id": 1013,
    "name": "",
    "allowed_sites": [],
    "allowed_types": [],
    "created": 1774491044,
    "is_enabled": true,
    "is_default": true
  }
]

2.2 createAndAddDefaultKeyset -> post /api/client_side_keypairs/add or createKeysetForClient as 2.1
After creating a site and a client key, the keyset appears as follows: (post /api/client/add, Role.GENERATOR)

{
  "id": 1012,
  "name": "ccm-test-keyset",
  "description": "ccm-test-keyset",
  "enabled": false,
  "clientTypes": [
    "PUBLISHER"
  ],
  "domain_names": [],
  "app_names": [],
  "visible": true,
  "created": 1774346265,
  "roles": [
    "GENERATOR"
  ],
  "client_count": 1
}


 [
  {
    "keyset_id": 1008,
    "site_id": 1012,
    "name": "",
    "allowed_sites": [],
    "allowed_types": [
      "DSP"
    ],
    "created": 1774484758,
    "is_enabled": true,
    "is_default": true
  }
]

2.3 setAdminKeyset -> POST /api/sharing/keyset or POST /api/sharing/list/:siteId
In admin UI -> Reset Allowed Sites To Null (POST to /api/sharing/keyset)
Before:

[
  {
    "keyset_id": 1009,
    "site_id": 1013,
    "name": "",
    "allowed_sites": [],
    "allowed_types": [],
    "created": 1774491044,
    "is_enabled": true,
    "is_default": true
  }
]

After:

{
  "keyset_id": 1009,
  "site_id": 1013,
  "name": "",
  "allowed_sites": [],
  "allowed_types": [
    "DSP"
  ],
  "created": 1774491837,
  "is_enabled": true,
  "is_default": true
}

Reset Allowed Sites To Empty UI: (Same as before)
Before

{
  "keyset_id": 1009,
  "site_id": 1013,
  "name": "",
  "allowed_sites": [],
  "allowed_types": [
    "DSP"
  ],
  "created": 1774491899,
  "is_enabled": true,
  "is_default": true
}

After

{
  "keyset_id": 1009,
  "site_id": 1013,
  "name": "",
  "allowed_sites": [],
  "allowed_types": [],
  "created": 1774491924,
  "is_enabled": true,
  "is_default": true
}

[sunnywu]

Review: UID2-6797 Replace allowed_sites null with empty + DSP type

Overall the change is logically sound and well-tested. A few items worth addressing:

---

Issue: pom.xml snapshot version should be reverted

The CI pipeline committed 6.13.2-alpha-226-SNAPSHOT into the PR branch. This version bump should be reverted before merge (back to 6.13.0 or whatever the intended next release version is). Snapshot versions committed to feature branches can cause version ordering problems downstream.

---

Sunny: I think this reporting of bug is incorrect as we do want to add DSP if allowed_sites = null but just for reference here.

NOT Bug: setAdminKeyset – DSP gets added to existing types unexpectedly when only allowedTypes is non-empty

In SharingService.java (setAdminKeyset):

Set<ClientType> newAllowedTypes = null;
if(allowedTypes == null || allowedTypes.isEmpty()) {
    newAllowedTypes = new HashSet<>();
} else {
    newAllowedTypes = allowedTypes.stream()...
}

if (allowedSites == null) {
    newAllowedTypes.add(ClientType.DSP);  // DSP always added when allowedSites is null
}

If a caller sends { "allowed_types": ["ADVERTISER"] } with no allowed_sites key, the result is {ADVERTISER, DSP}. The KeysetManagerTest covers this case (createAndAddKeyset_nullAllowedSites_preservesOtherTypesAndAddsDsp), so this appears intentional — but it's worth making explicit in the PR description if so, since it's a non-obvious interaction.

---

Minor: Missing SharingServiceTest for null allowed_sites + non-empty allowed_types

KeysetManagerTest covers createAndAddKeyset(42, null, {ADVERTISER}), but there's no corresponding SharingServiceTest verifying that the POST /api/sharing/keyset endpoint merges DSP into existing types when allowed_sites is null/absent from the JSON body. Worth adding for completeness.

---

Minor: Misleading test method name

createKeysetForSite_newKeyset_hasEmptyAllowedSitesAndNullType — this test actually calls createAndAddKeyset (not createKeysetForSite), and asserts null allowed types when non-null empty allowedSites is passed. The name doesn't match the test body.

---

Sunny: I think we should keep this just in case, depending how we do the migration.

Nit: Existing null-guard on response serialization is now largely dead code

In SharingService (lines 299-300, 317-318), the response still guards against null getAllowedSites() with allowedSites != null ? ... : null. After this change, newly created/updated keysets will never have null allowed_sites. The guards are still safe for legacy stored data but may be worth a follow-up cleanup.

---

Positive notes

• The fix in handleSetAllowedSites to use newKeyset.getAllowedSites() instead of the raw allowedSites JSON param in the response is correct — it now reflects what was actually persisted.
• Sanity test results in the PR description are thorough and clearly demonstrate the behavioral changes.
• No NPE risk: newAllowedTypes is always initialized before the if (allowedSites == null) check.
• CI passes (build + dependency checks green).

[caroline-ttd]

Sunny: I think we should keep this just in case, depending how we do the migration.

Yes, I think those can be cleaned up after we make sure no allowed_site null exists. It is good to keep it for now.

[jon8787]

this doesn't seem right - we are adding DSP even if caller has asked for allowedTypes containing non-DSP types?

[caroline-ttd]

This occurs when allowed_sites is null. In that case, after replacing allow_site null to empty, do we always add DSP to allowed_types, even if other types are already present?

[jon8787]

If allowed_types was e.g. ADVERTISER, then we don't want to add DSP here, regardless of the value of allowed_sites

[jon8787]

Can we add a comment why we're adding DSP here? is it because it's equivalent to the old behaviour?

e.g. it's not correct for a keyset belonging to a DATA_PROVIDER or ADVERTISER to automatically share with DSPs, but if we're doing it to match old behaviour then it's reasonable

[caroline-ttd]

Yes, it is equivalent to the old behavior, will add the comment.

[sunnywu]

having a second thought - we should backport adding DSP type into existing sites when appropriate, but going forward, for any new site, we should by default add/enable DSP type in the admin/portal UI and not relying on checking allowed_sites = null from the JSON array input from admin UI.

So that the behaviour is by default, add DSP type to allowed_types and site needs to explicitly disable the DSP type?

[caroline-ttd]

If allowed_types was e.g. ADVERTISER, then we don't want to add DSP here, regardless of the value of allowed_sites

For existing entries, for example where allowed_type includes ADVERTISER and allowed_sites is null, we add DSP; for future entries, we don’t apply this change, is it correct?

[sunnywu]

yes that's what i'm proposing - for futre entries by default in the admin UI/portal, we enable DSP but user can disable/un-choose it, but whatever allowed_types remain in the call is the actual allowed_types we are setting (not adding DSP regardless)

[jon8787]

add/enable DSP type in the admin/portal UI

It might not just be the UI that calls createDefaultKeyset though; need to find all callers to figure out if that change would be ok

[caroline-ttd]

I think maybe we can keep the logic that sets allowed_sites = [] and allowed_types = [DSP] here. Since this function is createDefaultKeyset (not createKeyset), it represents a specific default behavior. Using these values for the default keyset should be clear and not cause confusion in the future. What do you think?

[caroline-ttd]

Discussed with @jon8787 , replaced createDefaultKeyset with createKeysetSharedWithDsps

[jon8787]

the logic of "DSP" being the default seems to repeat a few times in this codebase, could we move this knowledge to a common function?

[caroline-ttd]

As discussed, we removed this logic

[sunnywu]

don't quite understand what is this test testing here?

[sunnywu]

this is not the right test name as we aren't testing null alowed sites input any more?

[sunnywu]

KeysetSetUsingNewExplicitlyNullAllowedSitesInput?

[sunnywu]

can you create some end to end tests like in SharingServiceTest that would test calling an http endpoint on when creating a new site or new client key which will go thru the old workflow to generate keyset that now has allowed_type = DSP? testing these are not enough i think.