Changeset 5553 for ComponentRegistry/trunk/ComponentRegistry/src/main/java/clarin/cmdi/componentregistry/impl/database/GroupServiceImpl.java
- Timestamp:
- 08/15/14 16:02:36 (10 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
ComponentRegistry/trunk/ComponentRegistry/src/main/java/clarin/cmdi/componentregistry/impl/database/GroupServiceImpl.java
r5549 r5553 1 1 package clarin.cmdi.componentregistry.impl.database; 2 2 3 import clarin.cmdi.componentregistry.ItemNotFoundException; 3 4 import clarin.cmdi.componentregistry.UserUnauthorizedException; 4 5 import java.util.ArrayList; … … 34 35 * functions over JMX, that's why some methods use human-friendly names (user 35 36 * principal names, group names) rather than ID arguments. 36 * 37 * 37 38 * @author george.georgovassilis@mpi.nl 38 * 39 * 39 40 */ 40 41 @ManagedResource(objectName = "componentregistry:name=GroupService", description = "Operations for managing groups") … … 43 44 public class GroupServiceImpl implements GroupService { 44 45 45 @Autowired 46 private GroupDao groupDao; 47 @Autowired 48 private GroupMembershipDao groupMembershipDao; 49 @Autowired 50 private OwnershipDao ownershipDao; 51 @Autowired 52 private ComponentDao componentDao; 53 @Autowired 54 private UserDao userDao; 55 56 public void setGroupDao(GroupDao groupDao) { 57 this.groupDao = groupDao; 58 } 59 60 public void setGroupMembershipDao(GroupMembershipDao groupMembershipDao) { 61 this.groupMembershipDao = groupMembershipDao; 62 } 63 64 public void setOwnershipDao(OwnershipDao ownershipDao) { 65 this.ownershipDao = ownershipDao; 66 } 67 68 @Override 69 public List<Group> getGroupsOwnedByUser(String ownerPrincipalName) { 70 RegistryUser owner = userDao.getByPrincipalName(ownerPrincipalName); 71 return groupDao.findGroupOwnedByUser(owner.getId().longValue()); 72 } 73 74 @Override 75 public boolean isUserOwnerOfGroup(long groupId, RegistryUser user) { 76 List<Group> groups = getGroupsOwnedByUser(user.getPrincipalName()); 77 for (Group group : groups) 78 if (group.getId() == groupId) 79 return true; 80 return false; 81 } 82 83 private void checkOwnership(Ownership ownership) { 84 if (ownership.getComponentId() == null) 85 throw new RuntimeException("Ownership needs a componentId"); 86 if (ownership.getUserId() == 0 && ownership.getGroupId() == 0) 87 throw new RuntimeException("Ownership needs a groupId or userId"); 88 if (ownership.getUserId() != 0 && ownership.getGroupId() != 0) 89 throw new RuntimeException("Ownership has both a groupId and a userId "); 90 } 91 92 private void assertOwnershipDoesNotExist(Ownership ownership) { 93 Ownership o = ownershipDao.findOwnershipByGroupAndComponent(ownership.getGroupId(), ownership.getComponentId()); 94 if (o != null) 95 throw new ValidationException("Ownership exists"); 96 } 97 98 @Override 99 public void addOwnership(Ownership ownership) { 100 checkOwnership(ownership); 101 assertOwnershipDoesNotExist(ownership); 102 ownershipDao.save(ownership); 103 } 104 105 @Override 106 public void removeOwnership(Ownership ownership) { 107 throw new RuntimeException("not implemented"); 108 } 109 110 protected boolean canUserAccessAbstractDescriptionEitherOnHisOwnOrThroughGroupMembership(RegistryUser user, 111 BaseDescription description) { 112 // TODO make some joins and multi-id queries to speed the entire method 113 // up 114 boolean isProfile = (description instanceof ProfileDescription); 115 long userId = user.getId().longValue(); 116 // anyone can access public profile 117 if (componentDao.isPublic(description.getId())) 118 return true; 119 // the creator can also access any profile 120 if (description.getUserId().equals(user.getId() + "")) 121 return true; 122 123 // a co-ownership on the profile also allows access 124 Ownership ownership = ownershipDao.findOwnershipByUserAndComponent(userId, description.getId()); 125 if (ownership != null) 126 return true; 127 128 // get a list of groups the user owns and is a member of 129 List<Group> groups = groupDao.findGroupOwnedByUser(userId); 130 Set<Long> groupIds = new HashSet<Long>(); 131 for (Group group : groups) 132 groupIds.add(group.getId()); 133 134 List<GroupMembership> memberships = groupMembershipDao.findGroupsTheUserIsAmemberOf(userId); 135 for (GroupMembership gm : memberships) 136 groupIds.add(gm.getGroupId()); 137 138 for (Long groupId : groupIds) { 139 ownership = ownershipDao.findOwnershipByGroupAndComponent(groupId, description.getId()); 140 if (ownership != null) 141 return true; 142 } 143 return false; 144 } 145 146 @Override 147 public boolean canUserAccessComponentEitherOnHisOwnOrThroughGroupMembership(RegistryUser user, 148 BaseDescription baseDescription) { 149 return canUserAccessAbstractDescriptionEitherOnHisOwnOrThroughGroupMembership(user, baseDescription); 150 } 151 152 @Override 153 @ManagedOperation(description = "Make a user member of a group") 154 @ManagedOperationParameters({ 155 @ManagedOperationParameter(name = "principalName", description = "Principal name of the user to make a member"), 156 @ManagedOperationParameter(name = "groupName", description = "Name of the group") }) 157 public long makeMember(String userPrincipalName, String groupName) { 158 RegistryUser user = userDao.getByPrincipalName(userPrincipalName); 159 Group group = groupDao.findGroupByName(groupName); 160 GroupMembership gm = groupMembershipDao.findMembership(user.getId().longValue(), group.getId()); 161 if (gm != null) 162 return gm.getId(); 163 gm = new GroupMembership(); 164 gm.setGroupId(group.getId()); 165 gm.setUserId(user.getId().longValue()); 166 return groupMembershipDao.save(gm).getId(); 167 } 168 169 @ManagedOperation(description = "Create a new group") 170 @ManagedOperationParameters({ 171 @ManagedOperationParameter(name = "name", description = "Name of the group, must be unique"), 172 @ManagedOperationParameter(name = "ownerPrincipalName", description = "Principal name of the user") }) 173 @Override 174 public long createNewGroup(String name, String ownerPrincipalName) { 175 RegistryUser owner = userDao.getByPrincipalName(ownerPrincipalName); 176 if (owner == null) 177 throw new ValidationException("No principal '" + ownerPrincipalName + "' found"); 178 Group group = groupDao.findGroupByName(name); 179 if (group != null) 180 throw new ValidationException("Group '" + name + "' already exists"); 181 group = new Group(); 182 group.setName(name); 183 group.setOwnerId(owner.getId().longValue()); 184 group = groupDao.save(group); 185 return group.getId(); 186 } 187 188 @ManagedOperation(description = "List available groups") 189 @Override 190 public List<String> listGroupNames() { 191 List<String> groupNames = new ArrayList<String>(); 192 for (Group group : groupDao.findAll()) 193 groupNames.add(group.getName()); 194 return groupNames; 195 } 196 197 @Override 198 public List<Group> getGroupsOfWhichUserIsAMember(String principal) { 199 RegistryUser user = userDao.getByPrincipalName(principal); 200 if (user == null || user.getId() == null) 201 return new ArrayList<Group>(); 202 List<GroupMembership> memberships = groupMembershipDao.findGroupsTheUserIsAmemberOf(user.getId().longValue()); 203 List<Group> groups = new ArrayList<Group>(); 204 for (GroupMembership m : memberships) 205 groups.add(groupDao.findOne(m.getGroupId())); 206 return groups; 207 } 208 209 @Override 210 public List<String> getComponentIdsInGroup(long groupId) { 211 List<Ownership> ownerships = ownershipDao.findOwnershipByGroup(groupId); 212 Set<String> componentIds = new HashSet<String>(); 213 for (Ownership o : ownerships) 214 if (ComponentUtils.isComponentId(o.getComponentId())) 215 componentIds.add(o.getComponentId()); 216 List<String> idsList = new ArrayList<String>(componentIds); 217 Collections.sort(idsList); 218 return idsList; 219 } 220 221 @Override 222 public List<String> getProfileIdsInGroup(long groupId) { 223 List<Ownership> ownerships = ownershipDao.findOwnershipByGroup(groupId); 224 Set<String> profileIds = new HashSet<String>(); 225 for (Ownership o : ownerships) 226 if (ComponentUtils.isProfileId(o.getComponentId())) 227 profileIds.add(o.getComponentId()); 228 List<String> idsList = new ArrayList<String>(profileIds); 229 Collections.sort(idsList); 230 return idsList; 231 } 232 233 @Override 234 public List<Group> getGroupsTheItemIsAMemberOf(String itemId) { 235 Set<Ownership> ownerships = new HashSet<Ownership>(); 236 ownerships.addAll(ownershipDao.findOwnershipByComponentId(itemId)); 237 Set<Group> groups = new HashSet<Group>(); 238 for (Ownership ownership : ownerships) { 239 groups.add(groupDao.findOne(ownership.getGroupId())); 240 } 241 List<Group> groupList = new ArrayList<Group>(groups); 242 Collections.sort(groupList, new Comparator<Group>() { 243 244 @Override 245 public int compare(Group g1, Group g2) { 246 return (int) (g1.getId() - g2.getId()); 247 } 248 }); 249 return groupList; 250 } 46 @Autowired 47 private GroupDao groupDao; 48 @Autowired 49 private GroupMembershipDao groupMembershipDao; 50 @Autowired 51 private OwnershipDao ownershipDao; 52 @Autowired 53 private ComponentDao componentDao; 54 @Autowired 55 private UserDao userDao; 56 57 public void setGroupDao(GroupDao groupDao) { 58 this.groupDao = groupDao; 59 } 60 61 public void setGroupMembershipDao(GroupMembershipDao groupMembershipDao) { 62 this.groupMembershipDao = groupMembershipDao; 63 } 64 65 public void setOwnershipDao(OwnershipDao ownershipDao) { 66 this.ownershipDao = ownershipDao; 67 } 68 69 @Override 70 public List<Group> getGroupsOwnedByUser(String ownerPrincipalName) { 71 RegistryUser owner = userDao.getByPrincipalName(ownerPrincipalName); 72 return groupDao.findGroupOwnedByUser(owner.getId().longValue()); 73 } 74 75 @Override 76 public boolean isUserOwnerOfGroup(String groupName, String ownerPrincipalName) { 77 List<Group> groups = getGroupsOwnedByUser(ownerPrincipalName); 78 for (Group group : groups) { 79 if (group.getName().equals(groupName)) { 80 return true; 81 } 82 } 83 84 return false; 85 } 86 87 private void checkOwnership(Ownership ownership) { 88 if (ownership.getComponentId() == null) { 89 throw new RuntimeException("Ownership needs a componentId"); 90 } 91 if (ownership.getUserId() == 0 && ownership.getGroupId() == 0) { 92 throw new RuntimeException("Ownership needs a groupId or userId"); 93 } 94 if (ownership.getUserId() != 0 && ownership.getGroupId() != 0) { 95 throw new RuntimeException("Ownership has both a groupId and a userId "); 96 } 97 } 98 99 private void assertOwnershipDoesNotExist(Ownership ownership) { 100 Ownership o = ownershipDao.findOwnershipByGroupAndComponent(ownership.getGroupId(), ownership.getComponentId()); 101 if (o != null) { 102 throw new ValidationException("Ownership exists"); 103 } 104 } 105 106 @Override 107 public void addOwnership(Ownership ownership) { 108 checkOwnership(ownership); 109 assertOwnershipDoesNotExist(ownership); 110 ownershipDao.save(ownership); 111 } 112 113 @Override 114 public void removeOwnership(Ownership ownership) { 115 throw new RuntimeException("not implemented"); 116 } 117 118 protected boolean canUserAccessAbstractDescriptionEitherOnHisOwnOrThroughGroupMembership(RegistryUser user, 119 BaseDescription description) { 120 // TODO make some joins and multi-id queries to speed the entire method 121 // up 122 boolean isProfile = (description instanceof ProfileDescription); 123 long userId = user.getId().longValue(); 124 // anyone can access public profile 125 if (componentDao.isPublic(description.getId())) { 126 return true; 127 } 128 // the creator can also access any profile 129 if (description.getUserId().equals(user.getId() + "")) { 130 return true; 131 } 132 133 // a co-ownership on the profile also allows access 134 Ownership ownership = ownershipDao.findOwnershipByUserAndComponent(userId, description.getId()); 135 if (ownership != null) { 136 return true; 137 } 138 139 // get a list of groups the user owns and is a member of 140 List<Group> groups = groupDao.findGroupOwnedByUser(userId); 141 Set<Long> groupIds = new HashSet<Long>(); 142 for (Group group : groups) { 143 groupIds.add(group.getId()); 144 } 145 146 List<GroupMembership> memberships = groupMembershipDao.findGroupsTheUserIsAmemberOf(userId); 147 for (GroupMembership gm : memberships) { 148 groupIds.add(gm.getGroupId()); 149 } 150 151 for (Long groupId : groupIds) { 152 ownership = ownershipDao.findOwnershipByGroupAndComponent(groupId, description.getId()); 153 if (ownership != null) { 154 return true; 155 } 156 } 157 return false; 158 } 159 160 @Override 161 public boolean canUserAccessComponentEitherOnHisOwnOrThroughGroupMembership(RegistryUser user, 162 BaseDescription baseDescription) { 163 return canUserAccessAbstractDescriptionEitherOnHisOwnOrThroughGroupMembership(user, baseDescription); 164 } 165 166 @Override 167 @ManagedOperation(description = "Make a user member of a group") 168 @ManagedOperationParameters({ 169 @ManagedOperationParameter(name = "principalName", description = "Principal name of the user to make a member"), 170 @ManagedOperationParameter(name = "groupName", description = "Name of the group")}) 171 public long makeMember(String userPrincipalName, String groupName) throws ItemNotFoundException{ 251 172 173 RegistryUser user = userDao.getByPrincipalName(userPrincipalName); 252 174 253 254 @ManagedOperation(description = "Make a component owned by a group instead of a user") 255 @ManagedOperationParameters({ 256 @ManagedOperationParameter(name = "principal", description = "Name of the principal who owns the component"), 257 @ManagedOperationParameter(name = "groupName", description = "Name of the group to move the component to"), 258 @ManagedOperationParameter(name = "componentId", description = "Id of component") }) 259 @Override 260 public void transferItemOwnershipFromUserToGroup(String principal, String groupName, String itemId) throws UserUnauthorizedException{ 261 262 263 BaseDescription item = null; 264 item = componentDao.getByCmdId(itemId); 265 if (item == null) { 266 throw new ValidationException("No profile or component found with ID " + itemId); 267 } 268 Group group = groupDao.findGroupByName(groupName); 269 if (group == null) { 270 throw new ValidationException("No group found with name " + groupName); 271 } 272 273 if (!this.userGroupMember(principal, String.valueOf(group.getId()))) { 274 throw new UserUnauthorizedException("User " + principal+ " is not a member of group "+groupName); 275 } 276 277 String creatorName = item.getCreatorName(); 278 if (!creatorName.equals(principal)) { 279 throw new UserUnauthorizedException("User " + principal+ " is not creator of the item "+item.getName()); 280 } 281 282 283 Ownership ownership = null; 284 List<Ownership> oldOwnerships = ownershipDao.findOwnershipByComponentId(itemId); 285 ownershipDao.delete(oldOwnerships); 286 ownership = new Ownership(); 287 ownership.setComponentId(itemId); 288 ownership.setGroupId(group.getId()); 289 addOwnership(ownership); 290 } 291 292 @Override 293 public void transferItemOwnershipFromUserToGroupId(String principal, long groupId, String componentId) throws UserUnauthorizedException{ 294 Group group = groupDao.findOne(groupId); 295 if (group == null) { 296 throw new ValidationException("No group found with id " + groupId); 297 } 298 this.transferItemOwnershipFromUserToGroup(principal, group.getName(), componentId); 299 } 300 301 @Override 302 public boolean userGroupMember(String principalName, String groupId) { 303 RegistryUser user = userDao.getByPrincipalName(principalName); 304 GroupMembership gm = groupMembershipDao.findMembership(user.getId(), Long.parseLong(groupId)); 305 return gm != null; 306 } 175 if (user == null) { 176 throw new ItemNotFoundException("User with the principal name "+userPrincipalName+" is not found."); 177 } 178 Group group = groupDao.findGroupByName(groupName); 179 180 if (group == null) { 181 throw new ItemNotFoundException("Group with the name "+groupName+" is not found."); 182 } 183 184 GroupMembership gm = groupMembershipDao.findMembership(user.getId().longValue(), group.getId()); 185 if (gm != null) { 186 return gm.getId(); 187 } 188 gm = new GroupMembership(); 189 gm.setGroupId(group.getId()); 190 gm.setUserId(user.getId().longValue()); 191 return groupMembershipDao.save(gm).getId(); 192 } 193 194 195 // @Override 196 // @ManagedOperation(description = "Remove user member from a group") 197 // @ManagedOperationParameters({ 198 // @ManagedOperationParameter(name = "principalName", description = "Principal name of the user to make a member"), 199 // @ManagedOperationParameter(name = "groupName", description = "Name of the group")}) 200 // public long removeMember(String userPrincipalName, String groupName) throws ItemNotFoundException{ 201 // 202 // RegistryUser user = userDao.getByPrincipalName(userPrincipalName); 203 // 204 // if (user == null) { 205 // throw new ItemNotFoundException("User the the principal name "+userPrincipalName+" is not found."); 206 // } 207 // Group group = groupDao.findGroupByName(groupName); 208 // 209 // if (group == null) { 210 // throw new ItemNotFoundException("Group with the name "+groupName+" is not found."); 211 // } 212 // 213 // 214 // return groupMembershipDao.deleteMembership(user.getId(), group.getId()); 215 // } 216 217 218 @ManagedOperation(description = "Create a new group") 219 @ManagedOperationParameters({ 220 @ManagedOperationParameter(name = "name", description = "Name of the group, must be unique"), 221 @ManagedOperationParameter(name = "ownerPrincipalName", description = "Principal name of the user")}) 222 @Override 223 public long createNewGroup(String name, String ownerPrincipalName) { 224 RegistryUser owner = userDao.getByPrincipalName(ownerPrincipalName); 225 if (owner == null) { 226 throw new ValidationException("No principal '" + ownerPrincipalName + "' found"); 227 } 228 Group group = groupDao.findGroupByName(name); 229 if (group != null) { 230 throw new ValidationException("Group '" + name + "' already exists"); 231 } 232 group = new Group(); 233 group.setName(name); 234 group.setOwnerId(owner.getId().longValue()); 235 group = groupDao.save(group); 236 return group.getId(); 237 } 238 239 @ManagedOperation(description = "List available groups") 240 @Override 241 public List<String> listGroupNames() { 242 List<String> groupNames = new ArrayList<String>(); 243 for (Group group : groupDao.findAll()) { 244 groupNames.add(group.getName()); 245 } 246 return groupNames; 247 } 248 249 @Override 250 public List<Group> getGroupsOfWhichUserIsAMember(String principal) { 251 RegistryUser user = userDao.getByPrincipalName(principal); 252 if (user == null || user.getId() == null) { 253 return new ArrayList<Group>(); 254 } 255 List<GroupMembership> memberships = groupMembershipDao.findGroupsTheUserIsAmemberOf(user.getId().longValue()); 256 List<Group> groups = new ArrayList<Group>(); 257 for (GroupMembership m : memberships) { 258 groups.add(groupDao.findOne(m.getGroupId())); 259 } 260 return groups; 261 } 262 263 @Override 264 public List<String> getComponentIdsInGroup(long groupId) { 265 List<Ownership> ownerships = ownershipDao.findOwnershipByGroup(groupId); 266 Set<String> componentIds = new HashSet<String>(); 267 for (Ownership o : ownerships) { 268 if (ComponentUtils.isComponentId(o.getComponentId())) { 269 componentIds.add(o.getComponentId()); 270 } 271 } 272 List<String> idsList = new ArrayList<String>(componentIds); 273 Collections.sort(idsList); 274 return idsList; 275 } 276 277 @Override 278 public List<String> getProfileIdsInGroup(long groupId) { 279 List<Ownership> ownerships = ownershipDao.findOwnershipByGroup(groupId); 280 Set<String> profileIds = new HashSet<String>(); 281 for (Ownership o : ownerships) { 282 if (ComponentUtils.isProfileId(o.getComponentId())) { 283 profileIds.add(o.getComponentId()); 284 } 285 } 286 List<String> idsList = new ArrayList<String>(profileIds); 287 Collections.sort(idsList); 288 return idsList; 289 } 290 291 @Override 292 public List<Group> getGroupsTheItemIsAMemberOf(String itemId) { 293 Set<Ownership> ownerships = new HashSet<Ownership>(); 294 ownerships.addAll(ownershipDao.findOwnershipByComponentId(itemId)); 295 Set<Group> groups = new HashSet<Group>(); 296 for (Ownership ownership : ownerships) { 297 groups.add(groupDao.findOne(ownership.getGroupId())); 298 } 299 List<Group> groupList = new ArrayList<Group>(groups); 300 Collections.sort(groupList, new Comparator<Group>() { 301 @Override 302 public int compare(Group g1, Group g2) { 303 return (int) (g1.getId() - g2.getId()); 304 } 305 }); 306 return groupList; 307 } 308 309 @ManagedOperation(description = "Make a component owned by a group instead of a user") 310 @ManagedOperationParameters({ 311 @ManagedOperationParameter(name = "principal", description = "Name of the principal who owns the component"), 312 @ManagedOperationParameter(name = "groupName", description = "Name of the group to move the component to"), 313 @ManagedOperationParameter(name = "componentId", description = "Id of component")}) 314 @Override 315 public void transferItemOwnershipFromUserToGroup(String principal, String groupName, String itemId) throws UserUnauthorizedException { 316 317 318 BaseDescription item = null; 319 item = componentDao.getByCmdId(itemId); 320 if (item == null) { 321 throw new ValidationException("No profile or component found with ID " + itemId); 322 } 323 Group group = groupDao.findGroupByName(groupName); 324 if (group == null) { 325 throw new ValidationException("No group found with name " + groupName); 326 } 327 328 if (!this.userGroupMember(principal, String.valueOf(group.getId()))) { 329 throw new UserUnauthorizedException("User " + principal + " is not a member of group " + groupName); 330 } 331 332 String creatorName = item.getCreatorName(); 333 if (!creatorName.equals(principal)) { 334 throw new UserUnauthorizedException("User " + principal + " is not creator of the item " + item.getName()); 335 } 336 337 338 Ownership ownership = null; 339 List<Ownership> oldOwnerships = ownershipDao.findOwnershipByComponentId(itemId); 340 ownershipDao.delete(oldOwnerships); 341 ownership = new Ownership(); 342 ownership.setComponentId(itemId); 343 ownership.setGroupId(group.getId()); 344 addOwnership(ownership); 345 } 346 347 @Override 348 public void transferItemOwnershipFromUserToGroupId(String principal, long groupId, String componentId) throws UserUnauthorizedException { 349 Group group = groupDao.findOne(groupId); 350 if (group == null) { 351 throw new ValidationException("No group found with id " + groupId); 352 } 353 this.transferItemOwnershipFromUserToGroup(principal, group.getName(), componentId); 354 } 355 356 @Override 357 public boolean userGroupMember(String principalName, String groupId) { 358 RegistryUser user = userDao.getByPrincipalName(principalName); 359 GroupMembership gm = groupMembershipDao.findMembership(user.getId(), Long.parseLong(groupId)); 360 return gm != null; 361 } 362 363 @Override 364 public Number getGroupIdByName(String groupName) throws ItemNotFoundException { 365 Group group = groupDao.findGroupByName(groupName); 366 if (group != null) { 367 return group.getId(); 368 } else { 369 throw new ItemNotFoundException("No group with the name "+groupName); 370 } 371 } 372 373 @Override 374 public String getGroupNameById(long groupId) throws ItemNotFoundException { 375 Group group = groupDao.findOne(groupId); 376 if (group != null) { 377 return group.getName(); 378 } else { 379 throw new ItemNotFoundException("No group with the id "+groupId); 380 } 381 } 307 382 }
Note: See TracChangeset
for help on using the changeset viewer.
