enhance: [rbac] privilege groups add import and add field privileges (#43664)

related: https://github.com/milvus-io/milvus/issues/29367,
https://github.com/milvus-io/milvus/pull/42687

Signed-off-by: shaoting-huang <shaoting.huang@zilliz.com>

configs/milvus.yaml

@@ -949,11 +949,11 @@ common:
           privileges: ShowCollections,DescribeDatabase,AlterDatabase,CreateCollection,DropCollection # Database level admin privileges
       collection:
         readonly:
-          privileges: Query,Search,IndexDetail,GetFlushState,GetLoadState,GetLoadingProgress,HasPartition,ShowPartitions,DescribeCollection,DescribeAlias,GetStatistics,ListAliases # Collection level readonly privileges
+          privileges: Query,Search,IndexDetail,GetFlushState,GetLoadState,GetLoadingProgress,HasPartition,ShowPartitions,DescribeCollection,DescribeAlias,GetStatistics,ListAliases,GetImportProgress,ListImport # Collection level readonly privileges
         readwrite:
-          privileges: Query,Search,IndexDetail,GetFlushState,GetLoadState,GetLoadingProgress,HasPartition,ShowPartitions,DescribeCollection,DescribeAlias,GetStatistics,ListAliases,Load,Release,Insert,Delete,Upsert,Import,Flush,Compaction,LoadBalance,CreateIndex,DropIndex,CreatePartition,DropPartition # Collection level readwrite privileges
+          privileges: Query,Search,IndexDetail,GetFlushState,GetLoadState,GetLoadingProgress,HasPartition,ShowPartitions,DescribeCollection,DescribeAlias,GetStatistics,ListAliases,GetImportProgress,ListImport,Load,Release,Insert,Delete,Upsert,Import,Flush,Compaction,LoadBalance,CreateIndex,DropIndex,CreatePartition,DropPartition,AddCollectionField # Collection level readwrite privileges
         admin:
-          privileges: Query,Search,IndexDetail,GetFlushState,GetLoadState,GetLoadingProgress,HasPartition,ShowPartitions,DescribeCollection,DescribeAlias,GetStatistics,ListAliases,Load,Release,Insert,Delete,Upsert,Import,Flush,Compaction,LoadBalance,CreateIndex,DropIndex,CreatePartition,DropPartition,CreateAlias,DropAlias # Collection level admin privileges
+          privileges: Query,Search,IndexDetail,GetFlushState,GetLoadState,GetLoadingProgress,HasPartition,ShowPartitions,DescribeCollection,DescribeAlias,GetStatistics,ListAliases,GetImportProgress,ListImport,Load,Release,Insert,Delete,Upsert,Import,Flush,Compaction,LoadBalance,CreateIndex,DropIndex,CreatePartition,DropPartition,AddCollectionField,CreateAlias,DropAlias # Collection level admin privileges
     internaltlsEnabled: false
     tlsMode: 0
   session:

pkg/util/constant.go

@@ -113,6 +113,9 @@ var (
 			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeGetFlushState.String()),
 			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeGroupReadOnly.String()),
 			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeGroupReadWrite.String()),
+			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeGetImportProgress.String()),
+			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeListImport.String()),
+			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeAddCollectionField.String()),
 		},
 		commonpb.ObjectType_Global.String(): {
 			MetaStore2API(commonpb.ObjectPrivilege_PrivilegeAll.String()),
@@ -303,6 +306,8 @@ var (
 		commonpb.ObjectPrivilege_PrivilegeDescribeAlias.String(),
 		commonpb.ObjectPrivilege_PrivilegeGetStatistics.String(),
 		commonpb.ObjectPrivilege_PrivilegeListAliases.String(),
+		commonpb.ObjectPrivilege_PrivilegeGetImportProgress.String(),
+		commonpb.ObjectPrivilege_PrivilegeListImport.String(),
 	})
 
 	CollectionReadWritePrivileges = append(CollectionReadOnlyPrivileges,
@@ -320,6 +325,7 @@ var (
 			commonpb.ObjectPrivilege_PrivilegeDropIndex.String(),
 			commonpb.ObjectPrivilege_PrivilegeCreatePartition.String(),
 			commonpb.ObjectPrivilege_PrivilegeDropPartition.String(),
+			commonpb.ObjectPrivilege_PrivilegeAddCollectionField.String(),
 		})...,
 	)