Writing some tests

Author: jonathan-buttner

docs/java-rest/low-level/configuration.asciidoc

@@ -76,7 +76,7 @@ include-tagged::{doc-tests}/RestClientDocumentation.java[rest-client-config-disa
 ==== Elasticsearch Token Service tokens
 
 If you want the client to authenticate with an Elasticsearch access token, set the relevant HTTP request header.
-If the client makes requests on behalf of a single user only, you can set the necessary `ElasticInferenceServiceAuthorizationHandler` header as a default header as shown
+If the client makes requests on behalf of a single user only, you can set the necessary `Authorization` header as a default header as shown
 in the following example:
 
 ["source","java",subs="attributes,callouts,macros"]
@@ -87,7 +87,7 @@ include-tagged::{doc-tests}/RestClientDocumentation.java[rest-client-auth-bearer
 ==== Elasticsearch API keys
 
 If you want the client to authenticate with an Elasticsearch API key, set the relevant HTTP request header.
-If the client makes requests on behalf of a single user only, you can set the necessary `ElasticInferenceServiceAuthorizationHandler` header as a default header as shown
+If the client makes requests on behalf of a single user only, you can set the necessary `Authorization` header as a default header as shown
 in the following example:
 
 ["source","java",subs="attributes,callouts,macros"]

docs/reference/esql/esql-process-data-with-dissect-grok.asciidoc

@@ -178,7 +178,7 @@ include::{esql-specs}/docs.csv-spec[tag=dissectAppendWithOrderModifier-result]
 ====== Named skip key (`?`)
 include::../ingest/processors/dissect.asciidoc[tag=named-skip-key]
 This can be done with a named skip key using the `{?name}` syntax. In the
-following query, `ident` and `auth` are not added to the output table:
+following query, `ident` and `authorization` are not added to the output table:
 
 [source.merge.styled,esql]
 ----

docs/reference/rest-api/security/create-api-keys.asciidoc

@@ -194,7 +194,7 @@ API key information.
 <4> API key credentials which is the Base64-encoding of the UTF-8
 representation of the `id` and `api_key` joined by a colon (`:`).
 
-To use the generated API key, send a request with an `ElasticInferenceServiceAuthorizationHandler` header that
+To use the generated API key, send a request with an `Authorization` header that
 contains an `ApiKey` prefix followed by the API key credentials
 (the `encoded` value from the response).
 

docs/reference/rest-api/security/get-tokens.asciidoc

@@ -155,7 +155,7 @@ seconds) that the token expires in, and the type:
 // TESTRESPONSE[s/superuser/_es_test_root/]
 
 The token returned by this API can be used by sending a request with an
-`ElasticInferenceServiceAuthorizationHandler` header with a value having the prefix "Bearer " followed
+`Authorization` header with a value having the prefix "Bearer " followed
 by the value of the `access_token`.
 
 [source,shell]

docs/reference/security/authentication/token-authentication-services.asciidoc

@@ -40,7 +40,7 @@ generate access tokens and refresh tokens based on the OAuth2 specification.
 The access token is a short-lived token. By default, it expires after 20 minutes
 but it can be configured to last a maximum of 1 hour. It can be refreshed by
 using a refresh token, which has a lifetime of 24 hours. The access token is a
-bearer token. You can use it by sending a request with an `ElasticInferenceServiceAuthorizationHandler`
+bearer token. You can use it by sending a request with an `Authorization`
 header with a value that has the prefix "Bearer " followed by the value of the
 access token. For example:
 +
@@ -59,7 +59,7 @@ The API key service uses the
 By default, the API keys do not expire. When you make a request to create API
 keys, you can specify an expiration and permissions for the API key. The
 permissions are limited by the authenticated user's permissions. You can use the
-API key by sending a request with an `ElasticInferenceServiceAuthorizationHandler` header with a value that
+API key by sending a request with an `Authorization` header with a value that
 has the prefix "ApiKey " followed by the credentials. The credentials are the
 base64 encoding of the API key ID and the API key joined by a colon. For example:
 +

docs/reference/security/ccs-clients-integrations/http.asciidoc

@@ -65,7 +65,7 @@ es-secondary-authorization: Basic <TOKEN> <1>
 <1> The `<TOKEN>` is computed as `base64(USERNAME:PASSWORD)`
 
 The `es-secondary-authorization` header has the same syntax as the
-`ElasticInferenceServiceAuthorizationHandler` header. It therefore also supports the use of
+`Authorization` header. It therefore also supports the use of
 <<token-authentication-services,token-based authentication services>>. For
 example:
 

docs/reference/watcher/actions/email.asciidoc

@@ -149,9 +149,9 @@ killed by firewalls or load balancers in-between.
                     means, by default watcher tries to download a dashboard for 10 minutes,
                     forty times fifteen seconds). The setting `xpack.notification.reporting.interval`
                     can be configured globally to change the default.
-| `auth`          | Additional auth configuration for the request, see 
+| `authorization`          | Additional auth configuration for the request, see
                     {kibana-ref}/automating-report-generation.html#use-watcher[use watcher] for details
-| `proxy`         | Additional proxy configuration for the request. See <<http-input-attributes>> 
+| `proxy`         | Additional proxy configuration for the request. See <<http-input-attributes>>
                     on how to configure the values.
 |======
 
@@ -257,7 +257,7 @@ messages can contain basic HTML tags. You can control which groups of tags are
 allowed by <<email-html-sanitization, Configuring HTML Sanitization Options>>.
 
 You configure the accounts {watcher} can use to send email in the
-`xpack.notification.email` namespace in `elasticsearch.yml`. 
+`xpack.notification.email` namespace in `elasticsearch.yml`.
 The password for the specified SMTP user is stored securely in the
 <<secure-settings, {es} keystore>>.
 

docs/reference/watcher/actions/webhook.asciidoc

@@ -165,7 +165,7 @@ the values serve as the header values:
 | `params`              | no        | -           | The URL query string parameters. The parameter values can be
                                                     static text or include Mustache <<templates,templates>>.
 
-| `auth`                | no        | -           | Authentication related HTTP headers. Currently, only basic
+| `authorization`                | no        | -           | Authentication related HTTP headers. Currently, only basic
                                                     authentication is supported.
 
 | `body`                | no        | -           | The HTTP request body. The body can be static text or include

x-pack/plugin/inference/src/main/java/org/elasticsearch/xpack/inference/InferencePlugin.java

@@ -114,6 +114,7 @@
 import org.elasticsearch.xpack.inference.services.elastic.ElasticInferenceService;
 import org.elasticsearch.xpack.inference.services.elastic.ElasticInferenceServiceComponents;
 import org.elasticsearch.xpack.inference.services.elastic.ElasticInferenceServiceSettings;
+import org.elasticsearch.xpack.inference.services.elastic.authorization.ElasticInferenceServiceAuthorizationHandler;
 import org.elasticsearch.xpack.inference.services.elasticsearch.ElasticsearchInternalService;
 import org.elasticsearch.xpack.inference.services.googleaistudio.GoogleAiStudioService;
 import org.elasticsearch.xpack.inference.services.googlevertexai.GoogleVertexAiService;
@@ -286,13 +287,19 @@ public Collection<?> createComponents(PluginServices services) {
             String elasticInferenceUrl = this.getElasticInferenceServiceUrl(inferenceServiceSettings);
             elasticInferenceServiceComponents.set(new ElasticInferenceServiceComponents(elasticInferenceUrl));
 
+            var authorizationHandler = new ElasticInferenceServiceAuthorizationHandler(
+                elasticInferenceServiceComponents.get().elasticInferenceServiceUrl(),
+                services.threadPool()
+            );
+
             inferenceServices.add(
                 () -> List.of(
                     context -> new ElasticInferenceService(
                         elasicInferenceServiceFactory.get(),
                         serviceComponents.get(),
                         elasticInferenceServiceComponents.get(),
-                        modelRegistry
+                        modelRegistry,
+                        authorizationHandler
                     )
                 )
             );

x-pack/plugin/inference/src/main/java/org/elasticsearch/xpack/inference/external/http/retry/RetryingHttpSender.java

@@ -35,7 +35,7 @@
 
 public class RetryingHttpSender implements RequestSender {
 
-    static final int MAX_RETIES = 3;
+    public static final int MAX_RETIES = 3;
 
     private final HttpClient httpClient;
     private final ThrottlerManager throttlerManager;