fix(jmxauth): tolerate JMX auth failures at discovery, re-attempt if new matching Credentials added

[andrewazores]

Welcome to Cryostat3! 👋

Before contributing, make sure you have:

• Read the contributing guidelines
• Linked a relevant issue which this PR resolves
• Linked any other relevant issues, PR's, or documentation, if any
• Resolved all conflicts, if any
• Rebased your branch PR on top of the latest upstream main branch
• Attached at least one of the following labels to the PR: [chore, ci, docs, feat, fix, test]
• Signed all commits using a GPG signature

To recreate commits with GPG signature git fetch upstream && git rebase --force --gpg-sign upstream/main

---

Related to #2
Related to #71
Depends on #337

Description of the change:

Cryostat 3 tolerates connection failures when attempting to determine newly discovered targets' JVM IDs. When new Credentials are added, Cryostat looks in the database for any targets with null JVM IDs (signifying the initial connection failure), checks if the new credential matches the target, and then re-attempts to determine the JVM hash ID and persist this update to the database.

Motivation for the change:

Prior to this change, Cryostat 3 would always try to connect to newly discovered JVMs to determine their hash IDs. If this connection attempt failed for any reason then the discovery would be ignored and the JVM would not be registered in the target database. This means that target JVMs which require JMX authentication, and/or which use JMX with TLS, may not be discoverable unless Cryostat 3 is pre-configured with the correct credentials and certificates.

JMX SSL/TLS cert handling is not implemented here. See #330.

How to manually test:

1. Run CRYOSTAT_IMAGE=quay.io... bash smoketest.bash -Ot ...
2. Wait for everything to start up and discovery to settle. The sample-app-2 and sample-app-3 JDP targets should now appear with ports 9094 and 9095 respectively.
3. Go to Recordings or Events views and select either of the two aforementioned sample apps. Both should fail with a Gateway Timeout after ~10 seconds.
4. Go to Security and define a new credential. Use the match expression target.alias.contains('andrew') and credentials admin:adminpass123.
5. Go back to Recordings or Events view and select the new targets again. sample-app-2:9094 should now be connectable and usable in all the usual ways. sample-app-3:9095 still will not be since it also requires SSL/TLS.

[andrewazores]

/build_test

[github-actions]

Workflow started at 3/20/2024, 4:40:04 PM. View Actions Run.

[github-actions]

CI build and push: All tests pass ✅ (JDK21)
https://github.com/cryostatio/cryostat3/actions/runs/8365590201

[github-actions]

No OpenAPI schema changes detected.

[github-actions]

CI build and push: At least one test failed ❌ (JDK17)
https://github.com/cryostatio/cryostat3/actions/runs/8365590201

[github-actions]

This PR/issue depends on:

• fix(id-filter): allow JSON 'id' key on particular endpoints only #337
  By Dependent Issues (🤖). Happy coding!

[andrewazores]

/build_test

[github-actions]

Workflow started at 3/22/2024, 9:27:44 AM. View Actions Run.

[github-actions]

CI build and push: All tests pass ✅ (JDK21)
https://github.com/cryostatio/cryostat3/actions/runs/8391072032

[andrewazores]

/build_test

[github-actions]

No OpenAPI schema changes detected.

[github-actions]

Workflow started at 3/22/2024, 9:30:57 AM. View Actions Run.

[github-actions]

CI build and push: All tests pass ✅ (JDK21)
https://github.com/cryostatio/cryostat3/actions/runs/8391109506

[github-actions]

CI build and push: All tests pass ✅ (JDK17)
https://github.com/cryostatio/cryostat3/actions/runs/8391072032

[github-actions]

No OpenAPI schema changes detected.

[github-actions]

CI build and push: All tests pass ✅ (JDK17)
https://github.com/cryostatio/cryostat3/actions/runs/8391109506

[mwangggg]

looks good to me