[SOR] Added support for name attribute in create/update SOR functions (elastic#228464)

## Summary

Added support for name attribute in create/update SOR functions.


### Checklist

- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios
- [x] The PR description includes the appropriate Release Notes section,
and the correct `release_note:*` label is applied per the
[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)


__Closes: https://github.com/elastic/kibana/issues/228463__

### Release Note
Added support for the `name` attribute in create and update actions for
saved objects.

Author: elena-shostak

src/core/packages/saved-objects/api-server-internal/src/lib/apis/create.test.ts

@@ -31,6 +31,8 @@ import { loggerMock } from '@kbn/logging-mocks';
 import { SavedObjectsSerializer } from '@kbn/core-saved-objects-base-server-internal';
 import { kibanaMigratorMock } from '../../mocks';
 import { elasticsearchClientMock } from '@kbn/core-elasticsearch-client-server-mocks';
+import { savedObjectsExtensionsMock } from '../../mocks/saved_objects_extensions.mock';
+import type { ISavedObjectsSecurityExtension } from '@kbn/core-saved-objects-server';
 
 import {
   CUSTOM_INDEX_TYPE,
@@ -57,6 +59,7 @@ describe('#create', () => {
   let migrator: ReturnType<typeof kibanaMigratorMock.create>;
   let logger: ReturnType<typeof loggerMock.create>;
   let serializer: jest.Mocked<SavedObjectsSerializer>;
+  let securityExtension: jest.Mocked<ISavedObjectsSecurityExtension>;
 
   const registry = createRegistry();
   const documentMigrator = createDocumentMigrator(registry);
@@ -80,6 +83,7 @@ describe('#create', () => {
     migrator.migrateDocument = jest.fn().mockImplementation(documentMigrator.migrate);
     migrator.runMigrations = jest.fn().mockResolvedValue([{ status: 'skipped' }]);
     logger = loggerMock.create();
+    securityExtension = savedObjectsExtensionsMock.createSecurityExtension();
 
     // create a mock serializer "shim" so we can track function calls, but use the real serializer's implementation
     serializer = createSpySerializer(registry);
@@ -97,6 +101,9 @@ describe('#create', () => {
       serializer,
       allowedTypes,
       logger,
+      extensions: {
+        securityExtension,
+      },
     });
 
     mockGetCurrentTime.mockReturnValue(mockTimestamp);
@@ -829,5 +836,20 @@ describe('#create', () => {
         });
       });
     });
+
+    describe('security', () => {
+      it('correctly passes params to securityExtension.authorizeCreate', async () => {
+        await createSuccess(type, attributes, { overwrite: true });
+
+        expect(securityExtension.authorizeCreate).toHaveBeenCalledWith(
+          expect.objectContaining({
+            object: expect.objectContaining({
+              name: 'Logstash',
+              type: 'index-pattern',
+            }),
+          })
+        );
+      });
+    });
   });
 });

src/core/packages/saved-objects/api-server-internal/src/lib/apis/create.ts

@@ -109,6 +109,12 @@ export const performCreate = async <T>(
       id,
       initialNamespaces,
       existingNamespaces: preflightResult?.existingDocument?._source?.namespaces ?? [],
+      name: SavedObjectsUtils.getName(registry.getNameAttribute(type), {
+        attributes: {
+          ...(preflightResult?.existingDocument?._source?.[type] ?? {}),
+          ...attributes,
+        },
+      }),
     },
   });
 

src/core/packages/saved-objects/api-server-internal/src/lib/apis/update.test.ts

@@ -27,6 +27,8 @@ import {
 } from '@kbn/core-saved-objects-base-server-internal';
 import { elasticsearchClientMock } from '@kbn/core-elasticsearch-client-server-mocks';
 import { kibanaMigratorMock } from '../../mocks';
+import { savedObjectsExtensionsMock } from '../../mocks/saved_objects_extensions.mock';
+import type { ISavedObjectsSecurityExtension } from '@kbn/core-saved-objects-server';
 import {
   NAMESPACE_AGNOSTIC_TYPE,
   MULTI_NAMESPACE_ISOLATED_TYPE,
@@ -53,6 +55,7 @@ describe('#update', () => {
   let migrator: ReturnType<typeof kibanaMigratorMock.create>;
   let logger: ReturnType<typeof loggerMock.create>;
   let serializer: jest.Mocked<SavedObjectsSerializer>;
+  let securityExtension: jest.Mocked<ISavedObjectsSecurityExtension>;
 
   const registry = createRegistry();
   const documentMigrator = createDocumentMigrator(registry);
@@ -75,6 +78,7 @@ describe('#update', () => {
     migrator.migrateDocument = jest.fn().mockImplementation(documentMigrator.migrate);
     migrator.runMigrations = jest.fn().mockResolvedValue([{ status: 'skipped' }]);
     logger = loggerMock.create();
+    securityExtension = savedObjectsExtensionsMock.createSecurityExtension();
 
     // create a mock serializer "shim" so we can track function calls, but use the real serializer's implementation
     serializer = createSpySerializer(registry);
@@ -92,6 +96,9 @@ describe('#update', () => {
       serializer,
       allowedTypes,
       logger,
+      extensions: {
+        securityExtension,
+      },
     });
 
     mockGetCurrentTime.mockReturnValue(mockTimestamp);
@@ -803,5 +810,30 @@ describe('#update', () => {
         expect(result).toMatchObject({ originId });
       });
     });
+
+    describe('security', () => {
+      it('correctly passes params to securityExtension.authorizeUpdate', async () => {
+        await updateSuccess(
+          client,
+          repository,
+          registry,
+          MULTI_NAMESPACE_ISOLATED_TYPE,
+          id,
+          attributes,
+          { references }
+        );
+
+        expect(securityExtension.authorizeUpdate).toHaveBeenCalledWith(
+          expect.objectContaining({
+            object: {
+              existingNamespaces: ['default'],
+              id: 'logstash-*',
+              name: 'Testing',
+              type: 'multiNamespaceIsolatedType',
+            },
+          })
+        );
+      });
+    });
   });
 });

src/core/packages/saved-objects/api-server-internal/src/lib/apis/update.ts

@@ -112,7 +112,15 @@ export const executeUpdate = async <T>(
   const existingNamespaces = preflightDocNSResult.savedObjectNamespaces ?? [];
   const authorizationResult = await securityExtension?.authorizeUpdate({
     namespace,
-    object: { type, id, existingNamespaces },
+    object: {
+      type,
+      id,
+      existingNamespaces,
+      objectNamespace: namespace && registry.isSingleNamespace(type) ? namespace : undefined,
+      name: SavedObjectsUtils.getName(registry.getNameAttribute(type), {
+        attributes: { ...(preflightDocResult.rawDocSource?._source?.[type] ?? {}), ...attributes },
+      }),
+    },
   });
 
   // validate if an update (directly update or create the object instead) can be done, based on if the doc exists or not

src/core/packages/saved-objects/api-server-internal/src/lib/repository.security_extension.test.ts

@@ -281,6 +281,7 @@ describe('SavedObjectsRepository Security Extension', () => {
         type: 'multiNamespaceTypeCustomIndex',
         id: expect.objectContaining(/index-pattern:[0-9a-f]{8}-([0-9a-f]{4}-){3}[0-9a-f]{12}/),
         existingNamespaces: multiNamespaceObjNamespaces,
+        name: 'Testing',
       };
 
       const { namespace: actualNamespace, object: actualObject } =