Zhangxunmt
diff --git a/‎memory/src/main/java/org/opensearch/ml/memory/ConversationalMemoryHandler.java
+7 b/‎memory/src/main/java/org/opensearch/ml/memory/ConversationalMemoryHandler.java
+7
diff --git a/‎memory/src/main/java/org/opensearch/ml/memory/action/conversation/UpdateConversationTransportAction.java
+40-16 b/‎memory/src/main/java/org/opensearch/ml/memory/action/conversation/UpdateConversationTransportAction.java
+40-16
diff --git a/‎memory/src/main/java/org/opensearch/ml/memory/action/conversation/UpdateInteractionTransportAction.java
+35-10 b/‎memory/src/main/java/org/opensearch/ml/memory/action/conversation/UpdateInteractionTransportAction.java
+35-10
diff --git a/‎memory/src/main/java/org/opensearch/ml/memory/index/InteractionsIndex.java
+123-2 b/‎memory/src/main/java/org/opensearch/ml/memory/index/InteractionsIndex.java
+123-2
diff --git a/‎memory/src/main/java/org/opensearch/ml/memory/index/OpenSearchConversationalMemoryHandler.java
+10 b/‎memory/src/main/java/org/opensearch/ml/memory/index/OpenSearchConversationalMemoryHandler.java
+10
@@ -253,6 +253,13 @@ public void createInteraction(
      */
     public void updateConversation(String conversationId, Map<String, Object> updateContent, ActionListener<UpdateResponse> listener);
 
+    /**
+     * Update an interaction
+     * @param updateContent update content for the conversations index
+     * @param listener receives the update response
+     */
+    public void updateInteraction(String interactionId, Map<String, Object> updateContent, ActionListener<UpdateResponse> listener);
+
     /**
      * Get a single ConversationMeta object
      * @param conversationId id of the conversation to get
 
@@ -8,18 +8,20 @@
 import java.time.Instant;
 import java.util.Map;
 
+import org.opensearch.OpenSearchException;
 import org.opensearch.action.ActionRequest;
 import org.opensearch.action.DocWriteResponse;
 import org.opensearch.action.support.ActionFilters;
 import org.opensearch.action.support.HandledTransportAction;
-import org.opensearch.action.support.WriteRequest;
-import org.opensearch.action.update.UpdateRequest;
 import org.opensearch.action.update.UpdateResponse;
 import org.opensearch.client.Client;
+import org.opensearch.cluster.service.ClusterService;
 import org.opensearch.common.inject.Inject;
 import org.opensearch.common.util.concurrent.ThreadContext;
 import org.opensearch.core.action.ActionListener;
 import org.opensearch.ml.common.conversation.ConversationalIndexConstants;
+import org.opensearch.ml.memory.ConversationalMemoryHandler;
+import org.opensearch.ml.memory.index.OpenSearchConversationalMemoryHandler;
 import org.opensearch.tasks.Task;
 import org.opensearch.transport.TransportService;
 
@@ -28,29 +30,51 @@
 @Log4j2
 public class UpdateConversationTransportAction extends HandledTransportAction<ActionRequest, UpdateResponse> {
     Client client;
+    private ConversationalMemoryHandler cmHandler;
+
+    private volatile boolean featureIsEnabled;
 
     @Inject
-    public UpdateConversationTransportAction(TransportService transportService, ActionFilters actionFilters, Client client) {
+    public UpdateConversationTransportAction(
+        TransportService transportService,
+        ActionFilters actionFilters,
+        Client client,
+        OpenSearchConversationalMemoryHandler cmHandler,
+        ClusterService clusterService
+    ) {
         super(UpdateConversationAction.NAME, transportService, actionFilters, UpdateConversationRequest::new);
         this.client = client;
+        this.cmHandler = cmHandler;
+        System.out.println(clusterService.getSettings());
+        this.featureIsEnabled = ConversationalIndexConstants.ML_COMMONS_MEMORY_FEATURE_ENABLED.get(clusterService.getSettings());
+        clusterService
+            .getClusterSettings()
+            .addSettingsUpdateConsumer(ConversationalIndexConstants.ML_COMMONS_MEMORY_FEATURE_ENABLED, it -> featureIsEnabled = it);
     }
 
     @Override
     protected void doExecute(Task task, ActionRequest request, ActionListener<UpdateResponse> listener) {
-        UpdateConversationRequest updateConversationRequest = UpdateConversationRequest.fromActionRequest(request);
-        String conversationId = updateConversationRequest.getConversationId();
-        UpdateRequest updateRequest = new UpdateRequest(ConversationalIndexConstants.META_INDEX_NAME, conversationId);
-        Map<String, Object> updateContent = updateConversationRequest.getUpdateContent();
-        updateContent.putIfAbsent(ConversationalIndexConstants.META_UPDATED_TIME_FIELD, Instant.now());
+        if (!featureIsEnabled) {
+            listener
+                .onFailure(
+                    new OpenSearchException(
+                        "The experimental Conversation Memory feature is not enabled. To enable, please update the setting "
+                            + ConversationalIndexConstants.ML_COMMONS_MEMORY_FEATURE_ENABLED.getKey()
+                    )
+                );
+            return;
+        } else {
+            UpdateConversationRequest updateConversationRequest = UpdateConversationRequest.fromActionRequest(request);
+            String conversationId = updateConversationRequest.getConversationId();
+            try (ThreadContext.StoredContext context = client.threadPool().getThreadContext().newStoredContext(true)) {
+                Map<String, Object> updateContent = updateConversationRequest.getUpdateContent();
+                updateContent.putIfAbsent(ConversationalIndexConstants.META_UPDATED_TIME_FIELD, Instant.now());
 
-        updateRequest.doc(updateContent);
-        updateRequest.docAsUpsert(true);
-        updateRequest.setRefreshPolicy(WriteRequest.RefreshPolicy.IMMEDIATE);
-        try (ThreadContext.StoredContext context = client.threadPool().getThreadContext().stashContext()) {
-            client.update(updateRequest, getUpdateResponseListener(conversationId, listener, context));
-        } catch (Exception e) {
-            log.error("Failed to update Conversation for conversation id" + conversationId, e);
-            listener.onFailure(e);
+                cmHandler.updateConversation(conversationId, updateContent, getUpdateResponseListener(conversationId, listener, context));
+            } catch (Exception e) {
+                log.error("Failed to update Conversation " + conversationId, e);
+                listener.onFailure(e);
+            }
         }
     }
 
 
@@ -5,18 +5,22 @@
 
 package org.opensearch.ml.memory.action.conversation;
 
+import java.util.Map;
+
+import org.opensearch.OpenSearchException;
 import org.opensearch.action.ActionRequest;
 import org.opensearch.action.DocWriteResponse;
 import org.opensearch.action.support.ActionFilters;
 import org.opensearch.action.support.HandledTransportAction;
-import org.opensearch.action.support.WriteRequest;
-import org.opensearch.action.update.UpdateRequest;
 import org.opensearch.action.update.UpdateResponse;
 import org.opensearch.client.Client;
+import org.opensearch.cluster.service.ClusterService;
 import org.opensearch.common.inject.Inject;
 import org.opensearch.common.util.concurrent.ThreadContext;
 import org.opensearch.core.action.ActionListener;
 import org.opensearch.ml.common.conversation.ConversationalIndexConstants;
+import org.opensearch.ml.memory.ConversationalMemoryHandler;
+import org.opensearch.ml.memory.index.OpenSearchConversationalMemoryHandler;
 import org.opensearch.tasks.Task;
 import org.opensearch.transport.TransportService;
 
@@ -25,26 +29,47 @@
 @Log4j2
 public class UpdateInteractionTransportAction extends HandledTransportAction<ActionRequest, UpdateResponse> {
     Client client;
+    private ConversationalMemoryHandler cmHandler;
+
+    private volatile boolean featureIsEnabled;
 
     @Inject
-    public UpdateInteractionTransportAction(TransportService transportService, ActionFilters actionFilters, Client client) {
+    public UpdateInteractionTransportAction(
+        TransportService transportService,
+        ActionFilters actionFilters,
+        Client client,
+        OpenSearchConversationalMemoryHandler cmHandler,
+        ClusterService clusterService
+    ) {
         super(UpdateInteractionAction.NAME, transportService, actionFilters, UpdateInteractionRequest::new);
         this.client = client;
+        this.cmHandler = cmHandler;
+        this.featureIsEnabled = ConversationalIndexConstants.ML_COMMONS_MEMORY_FEATURE_ENABLED.get(clusterService.getSettings());
+        clusterService
+            .getClusterSettings()
+            .addSettingsUpdateConsumer(ConversationalIndexConstants.ML_COMMONS_MEMORY_FEATURE_ENABLED, it -> featureIsEnabled = it);
     }
 
     @Override
     protected void doExecute(Task task, ActionRequest request, ActionListener<UpdateResponse> listener) {
+        if (!featureIsEnabled) {
+            listener
+                .onFailure(
+                    new OpenSearchException(
+                        "The experimental Conversation Memory feature is not enabled. To enable, please update the setting "
+                            + ConversationalIndexConstants.ML_COMMONS_MEMORY_FEATURE_ENABLED.getKey()
+                    )
+                );
+            return;
+        }
         UpdateInteractionRequest updateInteractionRequest = UpdateInteractionRequest.fromActionRequest(request);
         String interactionId = updateInteractionRequest.getInteractionId();
-        UpdateRequest updateRequest = new UpdateRequest(ConversationalIndexConstants.INTERACTIONS_INDEX_NAME, interactionId);
-        updateRequest.doc(updateInteractionRequest.getUpdateContent());
-        updateRequest.docAsUpsert(true);
-        updateRequest.setRefreshPolicy(WriteRequest.RefreshPolicy.IMMEDIATE);
+        try (ThreadContext.StoredContext context = client.threadPool().getThreadContext().newStoredContext(true)) {
+            Map<String, Object> updateContent = updateInteractionRequest.getUpdateContent();
 
-        try (ThreadContext.StoredContext context = client.threadPool().getThreadContext().stashContext()) {
-            client.update(updateRequest, getUpdateResponseListener(interactionId, listener, context));
+            cmHandler.updateInteraction(interactionId, updateContent, getUpdateResponseListener(interactionId, listener, context));
         } catch (Exception e) {
-            log.error("Failed to update Interaction for interaction id " + interactionId, e);
+            log.error("Failed to update Interaction " + interactionId, e);
             listener.onFailure(e);
         }
     }
 
@@ -40,6 +40,8 @@
 import org.opensearch.action.index.IndexResponse;
 import org.opensearch.action.search.SearchRequest;
 import org.opensearch.action.search.SearchResponse;
+import org.opensearch.action.update.UpdateRequest;
+import org.opensearch.action.update.UpdateResponse;
 import org.opensearch.client.Client;
 import org.opensearch.client.Requests;
 import org.opensearch.cluster.service.ClusterService;
@@ -330,6 +332,47 @@ public void getTraces(String interactionId, int from, int maxResults, ActionList
             listener.onResponse(List.of());
             return;
         }
+
+        try (ThreadContext.StoredContext threadContext = client.threadPool().getThreadContext().stashContext()) {
+            ActionListener<List<Interaction>> internalListener = ActionListener.runBefore(listener, () -> threadContext.restore());
+            GetRequest request = Requests.getRequest(INTERACTIONS_INDEX_NAME).id(interactionId);
+            ActionListener<GetResponse> al = ActionListener.wrap(getResponse -> {
+                // If the interaction doesn't exist, fail
+                if (!(getResponse.isExists() && getResponse.getId().equals(interactionId))) {
+                    throw new ResourceNotFoundException("Interaction [" + interactionId + "] not found");
+                }
+                Interaction interaction = Interaction.fromMap(interactionId, getResponse.getSourceAsMap());
+                // checks if the user has permission to access the conversation that the interaction belongs to
+                String conversationId = interaction.getConversationId();
+                ActionListener<Boolean> accessListener = ActionListener.wrap(access -> {
+                    if (access) {
+                        innerGetTraces(interactionId, from, maxResults, listener);
+                    } else {
+                        String userstr = client
+                            .threadPool()
+                            .getThreadContext()
+                            .getTransient(ConfigConstants.OPENSEARCH_SECURITY_USER_INFO_THREAD_CONTEXT);
+                        String user = User.parse(userstr) == null
+                            ? ActionConstants.DEFAULT_USERNAME_FOR_ERRORS
+                            : User.parse(userstr).getName();
+                        throw new OpenSearchSecurityException("User [" + user + "] does not have access to interaction " + interactionId);
+                    }
+                }, e -> { listener.onFailure(e); });
+                conversationMetaIndex.checkAccess(conversationId, accessListener);
+            }, e -> { internalListener.onFailure(e); });
+            client.admin().indices().refresh(Requests.refreshRequest(INTERACTIONS_INDEX_NAME), ActionListener.wrap(refreshResponse -> {
+                client.get(request, al);
+            }, e -> {
+                log.error("Failed to refresh interactions index during get interaction ", e);
+                internalListener.onFailure(e);
+            }));
+        } catch (Exception e) {
+            listener.onFailure(e);
+        }
+    }
+
+    @VisibleForTesting
+    void innerGetTraces(String interactionId, int from, int maxResults, ActionListener<List<Interaction>> listener) {
         SearchRequest request = Requests.searchRequest(INTERACTIONS_INDEX_NAME);
         // Build the query
         BoolQueryBuilder boolQueryBuilder = QueryBuilders.boolQuery();
@@ -509,12 +552,13 @@ public void getInteraction(String interactionId, ActionListener<Interaction> lis
             ActionListener<Interaction> internalListener = ActionListener.runBefore(listener, () -> threadContext.restore());
             GetRequest request = Requests.getRequest(INTERACTIONS_INDEX_NAME).id(interactionId);
             ActionListener<GetResponse> al = ActionListener.wrap(getResponse -> {
-                // If the conversation doesn't exist, fail
+                // If the interaction doesn't exist, fail
                 if (!(getResponse.isExists() && getResponse.getId().equals(interactionId))) {
                     throw new ResourceNotFoundException("Interaction [" + interactionId + "] not found");
                 }
                 Interaction interaction = Interaction.fromMap(interactionId, getResponse.getSourceAsMap());
-                internalListener.onResponse(interaction);
+                // checks if the user has permission to access the conversation that the interaction belongs to
+                checkInteractionPermission(interactionId, interaction, internalListener);
             }, e -> { internalListener.onFailure(e); });
             client.admin().indices().refresh(Requests.refreshRequest(INTERACTIONS_INDEX_NAME), ActionListener.wrap(refreshResponse -> {
                 client.get(request, al);
@@ -526,4 +570,81 @@ public void getInteraction(String interactionId, ActionListener<Interaction> lis
             listener.onFailure(e);
         }
     }
+
+    public void updateInteraction(String interactionId, UpdateRequest updateRequest, ActionListener<UpdateResponse> listener) {
+        if (!clusterService.state().metadata().hasIndex(INTERACTIONS_INDEX_NAME)) {
+            listener
+                .onFailure(
+                    new IndexNotFoundException(
+                        "cannot update interaction since the interaction index does not exist",
+                        INTERACTIONS_INDEX_NAME
+                    )
+                );
+            return;
+        }
+
+        try (ThreadContext.StoredContext threadContext = client.threadPool().getThreadContext().stashContext()) {
+            ActionListener<UpdateResponse> internalListener = ActionListener.runBefore(listener, () -> threadContext.restore());
+            GetRequest request = Requests.getRequest(INTERACTIONS_INDEX_NAME).id(interactionId);
+            ActionListener<GetResponse> al = ActionListener.wrap(getResponse -> {
+                // If the interaction doesn't exist, fail
+                if (!(getResponse.isExists() && getResponse.getId().equals(interactionId))) {
+                    throw new ResourceNotFoundException("Interaction [" + interactionId + "] not found");
+                }
+                Interaction interaction = Interaction.fromMap(interactionId, getResponse.getSourceAsMap());
+                // checks if the user has permission to access the conversation that the interaction belongs to
+                String conversationId = interaction.getConversationId();
+                ActionListener<Boolean> accessListener = ActionListener.wrap(access -> {
+                    if (access) {
+                        innerUpdateInteraction(updateRequest, internalListener);
+                    } else {
+                        String userstr = client
+                            .threadPool()
+                            .getThreadContext()
+                            .getTransient(ConfigConstants.OPENSEARCH_SECURITY_USER_INFO_THREAD_CONTEXT);
+                        String user = User.parse(userstr) == null
+                            ? ActionConstants.DEFAULT_USERNAME_FOR_ERRORS
+                            : User.parse(userstr).getName();
+                        throw new OpenSearchSecurityException("User [" + user + "] does not have access to interaction " + interactionId);
+                    }
+                }, e -> { listener.onFailure(e); });
+                conversationMetaIndex.checkAccess(conversationId, accessListener);
+            }, e -> { internalListener.onFailure(e); });
+            client.admin().indices().refresh(Requests.refreshRequest(INTERACTIONS_INDEX_NAME), ActionListener.wrap(refreshResponse -> {
+                client.get(request, al);
+            }, e -> {
+                log.error("Failed to refresh interactions index during get interaction ", e);
+                internalListener.onFailure(e);
+            }));
+        } catch (Exception e) {
+            listener.onFailure(e);
+        }
+    }
+
+    private void innerUpdateInteraction(UpdateRequest updateRequest, ActionListener<UpdateResponse> listener) {
+        try (ThreadContext.StoredContext threadContext = client.threadPool().getThreadContext().stashContext()) {
+            ActionListener<UpdateResponse> internalListener = ActionListener.runBefore(listener, () -> threadContext.restore());
+            client.update(updateRequest, internalListener);
+        } catch (Exception e) {
+            log.error("Failed to update Conversation. Details {}:", e);
+            listener.onFailure(e);
+        }
+    }
+
+    private void checkInteractionPermission(String interactionId, Interaction interaction, ActionListener<Interaction> internalListener) {
+        String conversationId = interaction.getConversationId();
+        ActionListener<Boolean> accessListener = ActionListener.wrap(access -> {
+            if (access) {
+                internalListener.onResponse(interaction);
+            } else {
+                String userstr = client
+                    .threadPool()
+                    .getThreadContext()
+                    .getTransient(ConfigConstants.OPENSEARCH_SECURITY_USER_INFO_THREAD_CONTEXT);
+                String user = User.parse(userstr) == null ? ActionConstants.DEFAULT_USERNAME_FOR_ERRORS : User.parse(userstr).getName();
+                throw new OpenSearchSecurityException("User [" + user + "] does not have access to interaction " + interactionId);
+            }
+        }, e -> { internalListener.onFailure(e); });
+        conversationMetaIndex.checkAccess(conversationId, accessListener);
+    }
 }
@@ -399,6 +399,16 @@ public void updateConversation(String conversationId, Map<String, Object> update
         conversationMetaIndex.updateConversation(updateRequest, listener);
     }
 
+    public void updateInteraction(String interactionId, Map<String, Object> updateContent, ActionListener<UpdateResponse> listener) {
+        UpdateRequest updateRequest = new UpdateRequest(ConversationalIndexConstants.INTERACTIONS_INDEX_NAME, interactionId);
+
+        updateRequest.doc(updateContent);
+        updateRequest.docAsUpsert(true);
+        updateRequest.setRefreshPolicy(WriteRequest.RefreshPolicy.IMMEDIATE);
+
+        interactionsIndex.updateInteraction(interactionId, updateRequest, listener);
+    }
+
     /**
      * Get a single ConversationMeta object
      * @param conversationId id of the conversation to get