Changeset 5836 for DASISH

Timestamp:

11/18/14 17:52:24 (10 years ago)

Author:

olhsha@mpi.nl

Message:

refactoring. Adding ALL as an access mode.

Location:

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend

Files:

• CHANGES.txt (modified) (1 diff)
• UPDATE.txt (modified) (1 diff)
• pom.xml (modified) (1 diff)
• src/main/java/eu/dasish/annotation/backend/ResourceAction.java (deleted)
• src/main/java/eu/dasish/annotation/backend/dao/AnnotationDao.java (modified) (6 diffs)
• src/main/java/eu/dasish/annotation/backend/dao/DBDispatcher.java (modified) (5 diffs)
• src/main/java/eu/dasish/annotation/backend/dao/impl/DBDispatcherImlp.java (modified) (25 diffs)
• src/main/java/eu/dasish/annotation/backend/dao/impl/JdbcAnnotationDao.java (modified) (19 diffs)
• src/main/java/eu/dasish/annotation/backend/dao/impl/JdbcResourceDao.java (modified) (1 diff)
• src/main/java/eu/dasish/annotation/backend/rest/AnnotationResource.java (modified) (18 diffs)
• src/main/java/eu/dasish/annotation/backend/rest/CachedRepresentationResource.java (modified) (7 diffs)
• src/main/java/eu/dasish/annotation/backend/rest/RequestWrappers.java (modified) (3 diffs)
• src/main/java/eu/dasish/annotation/backend/rest/TargetResource.java (modified) (4 diffs)
• src/main/webapp/SCHEMA/DASISH-schema.xsd (modified) (4 diffs)
• src/test/java/eu/dasish/annotation/backend/dao/impl/DBDispatcherTest.java (modified) (21 diffs)
• src/test/java/eu/dasish/annotation/backend/dao/impl/JdbcAnnotationDaoTest.java (modified) (9 diffs)
• src/test/java/eu/dasish/annotation/backend/rest/AnnotationResourceTest.java (modified) (6 diffs)

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/CHANGES.txt

@@ -64 +64 @@
 sych with the basic authenticated version.
 
+November 7, 2014. This is a package for a basic authenticated annotator, to test a new feature.
+Namely, a user with "write" access can update annotation as a whole, but if he also sends permission
+updates they will be ignored.
 
+November 10, 2014. This is a package for a shibboleth authenticated annotator. Now A user with 
+"write"  access can update annotation as a whole, but if he also sends permission updates they will 
+be  ignored.
 

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/UPDATE.txt

@@ -1 +1 @@
 
-Placing tarball: take the tar-ball of the new  version 1.5.4-shibboleth, and follow the 
+Placing tarball: take the tar-ball of the new  version 1.6-basic, and follow the 
 standard MPI deployment procedure.  
 
-This is synchronisation of the shibbolized-authenticated version of the backend
-to the basic-authnticated, so both versions are complyiant with the same schema.
+A new feature: a user with "write" access can update 
+annotation as a whole, but if he also sends permission updates they will be 
+ignored.
 
 

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/pom.xml

@@ -5 +5 @@
     <groupId>eu.dasish.annotation</groupId>
     <artifactId>annotator-backend</artifactId>
-    <version>1.5.4-shibboleth</version>    
+    <version>1.6-shibboleth</version>    
     <packaging>war</packaging>
     <name>annotator-backend Jersey Webapp</name>

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/AnnotationDao.java

@@ -58 +58 @@
      
   
-    public List<Number> getAnnotationIDsForPermission(Number principalID, Access acess);
-    
-    public List<Number> getAnnotationIDsForPublicAccess(Access access);
+    public List<Number> getAnnotationIDsPermissionAtLeast(Number principalID, Access acess);
+    
+   
+    public List<Number> getAnnotationIDsPublicAtLeast(Access access);
     
    
@@ -85 +86 @@
     public List<String> getAnnotationREFs(List<Number> annotationIDs); 
     
-   
-    
-    
-    
-       /**
-     * 
-     * @param annotationID
-     * @return the list of the internal IDs of all the target Targets of "annotationID".
-     */
-    //public List<Number> retrieveTargetIDs(Number annotationID);   
-    
+  
     
     public Number  getOwner(Number annotationID);
@@ -106 +97 @@
      */ 
     public Access  getAccess(Number annotationID, Number principalID);
+    
+    public boolean  hasExplicitAccess(Number annotationID, Number principalID);
     
     
@@ -148 +141 @@
      * Sets the "access" for the "principalID" w.r.t. the annotation with "annotationID".
      */
-    public int addAnnotationPrincipalAccess(Number annotationID, Number principalID, Access access);
+    public int addPermission(Number annotationID, Number principalID, Access access);
     
     
@@ -187 +180 @@
      * Sets the "access" for the "principalID" w.r.t. the annotation with "annotationID".
      */
-    public int updateAnnotationPrincipalAccess(Number annotationID, Number principalID, Access access);
-    
-    
-    public int updatePublicAttribute(Number annotationID, Access access);
+    public int updatePermission(Number annotationID, Number principalID, Access access);
+    
+    
+    public int updatePublicAccess(Number annotationID, Access access);
     
     
@@ -222 +215 @@
     * @throws SQLException 
     */
-    public int deleteAnnotationPermissions(Number annotationID);
-    
-    public int deleteAnnotationPrincipalAccess(Number annotationID, Number principalID);
+    public int deletePermissions(Number annotationID);
+    
+    public int deletePermission(Number annotationID, Number principalID);
     
     public int deleteAnnotationFromAllNotebooks(Number annotationID);

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/DBDispatcher.java

@@ -23 +23 @@
 import eu.dasish.annotation.backend.PrincipalExists;
 import eu.dasish.annotation.backend.Resource;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.schema.Annotation;
 import eu.dasish.annotation.schema.AnnotationBody;
@@ -32 +31 @@
 import eu.dasish.annotation.schema.NotebookInfoList;
 import eu.dasish.annotation.schema.Access;
+import eu.dasish.annotation.schema.Action;
 import eu.dasish.annotation.schema.PermissionList;
 import eu.dasish.annotation.schema.ReferenceList;
@@ -186 +186 @@
      * access is not given
      */
-    Access getAccess(Number annotationID, Number principalID);
+    Access getAccess(Number annotationID, Number principalID) ;
     
     Access getPublicAttribute(Number annotationID);
@@ -194 +194 @@
     Principal getDataBaseAdmin() ;
 
-    boolean canDo(ResourceAction action, Number principalID, Number resourceID, Resource resource);
+    boolean canDo(Access action, Number principalID, Number resourceID, Resource resource);
 
     
@@ -247 +247 @@
      * "annotationID".
      */
-    int updateAnnotationPrincipalAccess(Number annotationID, Number principalID, Access access);
+    int updatePermission(Number annotationID, Number principalID, Access access);
 
     /**

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/impl/DBDispatcherImlp.java

@@ -24 +24 @@
 import eu.dasish.annotation.backend.PrincipalCannotBeDeleted;
 import eu.dasish.annotation.backend.PrincipalExists;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.backend.dao.AnnotationDao;
 import eu.dasish.annotation.backend.dao.CachedRepresentationDao;
@@ -121 +120 @@
     }
 
-  
     @Override
     public UUID getResourceExternalIdentifier(Number resourceID, Resource resource) {
@@ -127 +125 @@
     }
 
-   
     @Override
     public Annotation getAnnotation(Number annotationID) {
@@ -174 +171 @@
 
 ////////////////////////////////////////////////////////////////////////
-    @Override 
+    @Override
     public List<Number> getFilteredAnnotationIDs(UUID ownerId, String link, MatchMode matchMode, String text, Number inloggedPrincipalID, String accessMode, String namespace, String after, String before) throws NotInDataBaseException {
 
@@ -209 +206 @@
                 if (!accessMode.equals("owner")) {
                     Access access = Access.fromValue(accessMode);
-                    List<Number> annotationIDsAccess = annotationDao.getAnnotationIDsForPermission(inloggedPrincipalID, access);
-                    List<Number> annotationIDsPublic = annotationDao.getAnnotationIDsForPublicAccess(access);
-                    List<Number> annotationIDsOwned = annotationDao.getFilteredAnnotationIDs(inloggedPrincipalID, text, namespace, after, before);
-                    int check1 = this.addAllNoRepetitions(annotationIDsAccess, annotationIDsPublic);
-                    int check2 = this.addAllNoRepetitions(annotationIDsAccess, annotationIDsOwned);
-                    annotationIDs.retainAll(annotationIDsAccess);// intersection
+                    if (access.equals(Access.NONE)) {
+                        List<Number> annotationIDsfiletered = new ArrayList<Number>();
+                        Access accessCurrent;
+                        for (Number annotationID : annotationIDs) {
+                            accessCurrent = annotationDao.getAccess(inloggedPrincipalID, annotationID);
+                            if (accessCurrent.equals(Access.NONE)) {
+                                annotationIDsfiletered.add(annotationID);
+                            }
+                        }
+                        annotationIDs = annotationIDsfiletered; // yeaahhh I'm relying on garbage collector here                         
+                    } else {
+                        List<Number> annotationIDsAccess = annotationDao.getAnnotationIDsPermissionAtLeast(inloggedPrincipalID, access);
+                        List<Number> annotationIDsPublic = annotationDao.getAnnotationIDsPublicAtLeast(access);
+                        List<Number> annotationIDsOwned = annotationDao.getFilteredAnnotationIDs(inloggedPrincipalID, text, namespace, after, before);
+                        int check1 = this.addAllNoRepetitions(annotationIDsAccess, annotationIDsPublic);
+                        int check2 = this.addAllNoRepetitions(annotationIDsAccess, annotationIDsOwned);
+                        annotationIDs.retainAll(annotationIDsAccess);// intersection
+                    }
                 }
             }
@@ -263 +272 @@
         return annotationIDs;
     }
-    
-    private boolean matchCriterium(String currentString, String pattern, MatchMode matchMode){        
+
+    private boolean matchCriterium(String currentString, String pattern, MatchMode matchMode) {
         switch (matchMode) {
-            case EXACT: return currentString.equals(pattern);
-            case STARTS_WITH: return currentString.startsWith(pattern);
-            case ENDS_WITH: return currentString.endsWith(pattern);
-            case CONTAINS: return currentString.contains(pattern);
-            default: return false;
+            case EXACT:
+                return currentString.equals(pattern);
+            case STARTS_WITH:
+                return currentString.startsWith(pattern);
+            case ENDS_WITH:
+                return currentString.endsWith(pattern);
+            case CONTAINS:
+                return currentString.contains(pattern);
+            default:
+                return false;
         }
     }
@@ -413 +427 @@
         for (Number siblingID : targetIDs) {
             if (!siblingID.equals(targetID)) {
-            referenceList.getHref().add(targetDao.getHrefFromInternalID(siblingID));
+                referenceList.getHref().add(targetDao.getHrefFromInternalID(siblingID));
             }
         }
@@ -438 +452 @@
         Access publicAttribute = annotationDao.getPublicAttribute(annotationID);
         Access access = annotationDao.getAccess(annotationID, principalID);
-        if (access != null) {
-            if (publicAttribute.equals(Access.NONE)) {
-                return access;
+        if (publicAttribute.equals(Access.NONE)) {
+            return access;
+        } else {
+            if (publicAttribute.equals(Access.READ)) {
+                if (access.equals(Access.NONE)) {
+                    return Access.READ;
+                } else {
+                    return access;
+                }
             } else {
-                if (publicAttribute.equals(Access.READ)) {
-                    if (access.equals(Access.NONE)) {
-                        return Access.READ;
+                if (publicAttribute.equals(Access.WRITE)) {
+                    if (access.equals(Access.NONE) || access.equals(Access.READ)) {
+                        return Access.WRITE;
                     } else {
                         return access;
                     }
                 } else {
-                    return Access.WRITE;
+                    if (publicAttribute.equals(Access.ALL)) {
+                        return Access.ALL;
+                    } else {
+                        logger.error("Database problem: the value of public attribute is not a proper Access value: " + publicAttribute.value());
+                        return access;
+                    }
                 }
             }
-        } else {
-            return publicAttribute;
         }
     }
@@ -466 +489 @@
         return principalDao.getPrincipalInternalIDFromRemoteID(remoteID);
     }
-    
+
     @Override
     public UUID getPrincipalExternalIDFromRemoteID(String remoteID) throws NotInDataBaseException {
@@ -484 +507 @@
     // !!!so far implemented only for annotations!!!
     @Override
-    public boolean canDo(ResourceAction action, Number principalID, Number resourceID, Resource resource) {
+    public boolean canDo(Access action, Number principalID, Number resourceID, Resource resource) {
 
         switch (resource) {
@@ -509 +532 @@
     }
 
-    private boolean greaterOrEqual(Access access, ResourceAction action) {
-        if (access.equals(Access.WRITE) && (action.equals(ResourceAction.READ) || action.equals(ResourceAction.WRITE))) {
+    private boolean greaterOrEqual(Access access, Access action) {
+
+        if (access.equals(Access.ALL)) {
             return true;
         }
-        if (access.equals(Access.READ) && action.equals(ResourceAction.READ)) {
+
+        if (access.equals(Access.WRITE) && (action.equals(Access.READ) || action.equals(Access.WRITE))) {
+            return true;
+        }
+        if (access.equals(Access.READ) && action.equals(Access.READ)) {
             return true;
         }
@@ -524 +552 @@
     public NotebookInfoList getNotebooks(Number principalID, Access access) {
         NotebookInfoList result = new NotebookInfoList();
-        if (access.equals(Access.READ) || access.equals(Access.WRITE)) {
+        if (access.equals(Access.READ) || access.equals(Access.WRITE) || access.equals(Access.ALL)) {
             List<Number> notebookIDs = notebookDao.getNotebookIDs(principalID, access);
             for (Number notebookID : notebookIDs) {
@@ -581 +609 @@
         accesss.add(Access.READ);
         accesss.add(Access.WRITE);
+        accesss.add(Access.ALL);
         for (Access access : accesss) {
             List<Number> principals = principalDao.getPrincipalIDsWithAccessForNotebook(notebookID, access);
@@ -642 +671 @@
             default:
                 return false;
-        } 
-    }
-    
+        }
+    }
+
     @Override
     public boolean updateAccount(UUID principalExternalID, String account) throws NotInDataBaseException {
@@ -651 +680 @@
 
     @Override
-    public int updateAnnotationPrincipalAccess(Number annotationID, Number principalID, Access access) {
+    public int updatePermission(Number annotationID, Number principalID, Access access) {
         int result;
         if (access != null) {
-            Access currentAccess = annotationDao.getAccess(annotationID, principalID);
-            if (currentAccess != null) {
-                result = annotationDao.updateAnnotationPrincipalAccess(annotationID, principalID, access);
+            Boolean checkAccess = annotationDao.hasExplicitAccess(annotationID, principalID);
+            if (checkAccess) {
+                result = annotationDao.updatePermission(annotationID, principalID, access);
             } else {
-                result = annotationDao.addAnnotationPrincipalAccess(annotationID, principalID, access);
+                result = annotationDao.addPermission(annotationID, principalID, access);
             }
         } else {
-            result = annotationDao.deleteAnnotationPrincipalAccess(annotationID, principalID);
+            result = annotationDao.deletePermission(annotationID, principalID);
         }
         return result;
@@ -668 +697 @@
     @Override
     public int updatePublicAttribute(Number annotationID, Access publicAttribute) {
-        return annotationDao.updatePublicAttribute(annotationID, publicAttribute);
+        return annotationDao.updatePublicAccess(annotationID, publicAttribute);
     }
 
     @Override
     public int updatePermissions(Number annotationID, PermissionList permissionList) throws NotInDataBaseException {
-        annotationDao.updatePublicAttribute(annotationID, permissionList.getPublic());
+        annotationDao.updatePublicAccess(annotationID, permissionList.getPublic());
         List<Permission> permissions = permissionList.getPermission();
         int result = 0;
@@ -679 +708 @@
             Number principalID = principalDao.getInternalIDFromHref(permission.getPrincipalHref());
             Access access = permission.getLevel();
-            Access currentAccess = annotationDao.getAccess(annotationID, principalID);
-            if (currentAccess != null) {
-                if (!access.equals(currentAccess)) {
-                    result = result + annotationDao.updateAnnotationPrincipalAccess(annotationID, principalID, access);
-                } else {
-                    result = 0;
-                }
+            Boolean checkAccess = annotationDao.hasExplicitAccess(annotationID, principalID);
+            if (checkAccess) {
+                result = result + annotationDao.updatePermission(annotationID, principalID, access);
             } else {
-                result = result + annotationDao.addAnnotationPrincipalAccess(annotationID, principalID, access);
-            }
-
+                result = result + annotationDao.addPermission(annotationID, principalID, access);
+            }
         }
         return result;
@@ -703 +727 @@
         int deletedTargets = annotationDao.deleteAllAnnotationTarget(annotationID);
         int addedTargets = this.addTargets(annotation, annotationID);
-        
+
         Number remoteUserID = principalDao.getPrincipalInternalIDFromRemoteID(remoteUser);
-        
-        if (ownerID.equals(remoteUserID)) {
-            int deletedPrinsipalsAccesss = annotationDao.deleteAnnotationPermissions(annotationID);
+
+        if (ownerID.equals(remoteUserID) || (annotationDao.getAccess(annotationID, remoteUserID).equals(Access.ALL))) {
+            int deletedPrinsipalsAccesss = annotationDao.deletePermissions(annotationID);
             int addedPrincipalsAccesss = this.addPermissions(annotation.getPermissions().getPermission(), annotationID);
-            int updatedPublicAttribute = annotationDao.updatePublicAttribute(annotationID, annotation.getPermissions().getPublic());
+            //int updatedPublicAttribute = annotationDao.updatePublicAccess(annotationID, annotation.getPermissions().getPublic());
         };
         return updatedAnnotations;
@@ -722 +746 @@
 
     @Override
-    public int updateAnnotationHeadline(Number internalID, String newHeader){
+    public int updateAnnotationHeadline(Number internalID, String newHeader) {
         return annotationDao.updateAnnotationHeadline(internalID, newHeader);
     }
@@ -775 +799 @@
     }
 
-    
     @Override
     public Map<String, String> addTargetsForAnnotation(Number annotationID, List<TargetInfo> targets) throws NotInDataBaseException {
@@ -799 +822 @@
         int affectedAnnotRows = this.addTargets(annotation, annotationID);
         int addedPrincipalsAccesss = this.addPermissions(annotation.getPermissions().getPermission(), annotationID);
-        int updatedPublic = annotationDao.updatePublicAttribute(annotationID, annotation.getPermissions().getPublic());
+        //int updatedPublic = annotationDao.updatePublicAccess(annotationID, annotation.getPermissions().getPublic());
         return annotationID;
     }
@@ -886 +909 @@
     public int[] deleteAnnotation(Number annotationID) {
         int[] result = new int[5];
-        result[1] = annotationDao.deleteAnnotationPermissions(annotationID);
+        result[1] = annotationDao.deletePermissions(annotationID);
         List<Number> targetIDs = targetDao.getTargetIDs(annotationID);
         result[2] = annotationDao.deleteAllAnnotationTarget(annotationID);
@@ -925 +948 @@
     @Override
     public int deleteAnnotationPrincipalAccess(Number annotationID, Number principalID) {
-        return annotationDao.deleteAnnotationPrincipalAccess(annotationID, principalID);
+        return annotationDao.deletePermission(annotationID, principalID);
     }
 ////////////// HELPERS ////////////////////
@@ -981 +1004 @@
         }
     }
-    
-    @Override
-    public UUID getPrincipalExternalIdFromName(String fullName) throws NotInDataBaseException{
-       return principalDao.getExternalIdFromName(fullName);
-    }
-    
-    @Override
-    public List<UUID> getAnnotationExternalIdsFromHeadline(String headline){
+
+    @Override
+    public UUID getPrincipalExternalIdFromName(String fullName) throws NotInDataBaseException {
+        return principalDao.getExternalIdFromName(fullName);
+    }
+
+    @Override
+    public List<UUID> getAnnotationExternalIdsFromHeadline(String headline) {
         return annotationDao.getExternalIdFromHeadline(headline);
     }
-    
-    @Override
-    public List<Number> getAnnotationInternalIDsFromHeadline(String headline){
+
+    @Override
+    public List<Number> getAnnotationInternalIDsFromHeadline(String headline) {
         return annotationDao.getInternalIDsFromHeadline(headline);
     }
@@ -1032 +1055 @@
             int addedPermissions = 0;
             for (Permission permission : permissions) {
-                addedPermissions = addedPermissions + annotationDao.addAnnotationPrincipalAccess(annotationID, principalDao.getInternalIDFromHref(permission.getPrincipalHref()), permission.getLevel());
+                addedPermissions = addedPermissions + annotationDao.addPermission(annotationID, principalDao.getInternalIDFromHref(permission.getPrincipalHref()), permission.getLevel());
             }
             return addedPermissions;

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/impl/JdbcAnnotationDao.java

@@ -57 +57 @@
         internalIdName = annotation_id;
         resourceTableName = annotationTableName;
-
     }
 
@@ -71 +70 @@
         StringBuilder sql = new StringBuilder("SELECT ");
         sql.append(principal_id).append(",").append(access).append(" FROM ").append(permissionsTableName).append(" WHERE ").append(annotation_id).append("  = ?");
-        logger.debug("Parameter " + annotation_id + " := " + annotationID.intValue());
         return this.loggedQuery(sql.toString(), principalsAccesssRowMapper, annotationID);
     }
-
-    @Override
-    public Access getAccess(Number annotationID, Number principalID) {
-
+    
+    private List<Access> getAccessHelper(Number annotationID, Number principalID){
         Map<String, Number> params = new HashMap<String, Number>();
         params.put("annotationId", annotationID);
@@ -86 +82 @@
                 append(annotation_id).append("  =  :annotationId ").append(" AND ").
                 append(principal_id).append("  = :principalId").append(" LIMIT 1");
-        List<Access> result = this.loggedQuery(sql.toString(), accessRowMapper, params);
-        if (result.isEmpty()) {
-            return null;
+        return this.loggedQuery(sql.toString(), accessRowMapper, params);
+    }
+    
+    @Override
+    public boolean hasExplicitAccess(Number annotationID, Number principalID) {
+        List<Access> result = this.getAccessHelper(annotationID, principalID);
+        if (result == null || result.isEmpty()) {
+            return false;
+        } else {
+            return true;
+        }
+    }
+
+    @Override
+    public Access getAccess(Number annotationID, Number principalID) {
+     List<Access> result = this.getAccessHelper(annotationID, principalID);   
+        if (result == null || result.isEmpty()) {
+            return Access.NONE;
         } else {
             return result.get(0);
         }
     }
-    private final RowMapper<Access> accessRowMapper = new RowMapper<Access>() {
-        @Override
-        public Access mapRow(ResultSet rs, int rowNumber) throws SQLException {
-            return Access.fromValue(rs.getString(access));
-        }
-    };
-    
-    
+   
 
     /////////////////////////////////////////////////////////////////////
@@ -109 +113 @@
                 append(annotation_id).append("  =  ? ").append(" LIMIT 1");
         List<Access> result = this.loggedQuery(sql.toString(), public_RowMapper, annotationID);
-        return result.get(0);
-    }
-    
-    
-    @Override
-    public List<UUID> getExternalIdFromHeadline(String headline){
+        if (result == null || result.isEmpty()) {
+            return Access.NONE;
+        } else {
+            return result.get(0);
+        }
+
+    }
+
+    @Override
+    public List<UUID> getExternalIdFromHeadline(String headline) {
         StringBuilder requestDB = new StringBuilder("SELECT ");
         requestDB.append(external_id).append(" FROM ").append(annotationTableName).append(" WHERE ").append("'").append(headline).append("'").append("= ?");
-        return this.loggedQuery(requestDB.toString(), externalIDRowMapper, headline);        
-    }
-    
-    @Override
-    public List<Number> getInternalIDsFromHeadline(String headline){
+        return this.loggedQuery(requestDB.toString(), externalIDRowMapper, headline);
+    }
+
+    @Override
+    public List<Number> getInternalIDsFromHeadline(String headline) {
         StringBuilder requestDB = new StringBuilder("SELECT ");
         requestDB.append(annotation_id).append(" FROM ").append(annotationTableName).append(" WHERE ").append("'").append(headline).append("'").append("= ?");
-        return this.loggedQuery(requestDB.toString(), internalIDRowMapper, headline);        
+        return this.loggedQuery(requestDB.toString(), internalIDRowMapper, headline);
     }
 
@@ -157 +165 @@
     }
 
+
     ///////////////////////////////////////////////////////////////////////////////////
-    @Override
-    public List<Number> getAnnotationIDsForPermission(Number principalID, Access access) {
-
+    //this method does not include all the annotations which are NOT in the pair with principal in this table
+    // they have all default NONE access
+    @Override
+    public List<Number> getAnnotationIDsPermissionAtLeast(Number principalID, Access access) {
         StringBuilder sql = new StringBuilder("SELECT ");
         sql.append(annotation_id).append(" FROM ").append(permissionsTableName).append(" WHERE ").
@@ -170 +180 @@
     /// helper ///
     private String sqlAccessConstraint(String column, Access access) {
-
         StringBuilder accessConstraint = new StringBuilder();
         if (access.equals(Access.READ)) {
             accessConstraint.append("(").append(column).append("  = '").append(Access.READ.value()).append("'");
-            accessConstraint.append(" OR ").append(column).append("  = '").append(Access.WRITE.value()).append("')");
+            accessConstraint.append(" OR ").append(column).append("  = '").append(Access.WRITE.value()).append("'");
+            accessConstraint.append(" OR ").append(column).append("  = '").append(Access.ALL.value()).append("')");
         } else {
-            accessConstraint.append(column).append("  = '").append(access.value()).append("'");
-        }
-
+            if (access.equals(Access.WRITE)) {
+                accessConstraint.append("(").append(column).append("  = '").append(Access.WRITE.value()).append("'");
+                accessConstraint.append(" OR ").append(column).append("  = '").append(Access.ALL.value()).append("')");
+            } else if (access.equals(Access.ALL)) {
+                accessConstraint.append("(").append(column).append("  = '").append(Access.ALL.value()).append("')");
+            } else {
+                accessConstraint.append("(").append(column).append("  = '").append(Access.NONE.value()).append("')");
+            }
+        }
         return accessConstraint.toString();
     }
@@ -184 +200 @@
     /////////////
     @Override
-    public List<Number> getAnnotationIDsForPublicAccess(Access access) {
+    public List<Number> getAnnotationIDsPublicAtLeast(Access access) {
         StringBuilder sql = new StringBuilder("SELECT ");
         sql.append(annotation_id).append(" FROM ").append(annotationTableName).append(" WHERE ").
@@ -190 +206 @@
         return this.loggedQuery(sql.toString(), internalIDRowMapper);
     }
-
-   
 
     /////////////////////////////////////////
@@ -317 +331 @@
             annotation.setTargets(null);
             String externalId = rs.getString(external_id);
-            annotation.setId(externalId);            
+            annotation.setId(externalId);
             annotation.setHref(externalIDtoHref(externalId));
             annotation.setLastModified(timeStampToXMLGregorianCalendar(rs.getString(last_modified)));
@@ -335 +349 @@
     }
 
-    /////////////////////////////
-//    @Override
-//    public boolean annotationIsInUse(Number annotationID) {
-//        StringBuilder sqlNotebooks = new StringBuilder("SELECT ");
-//        sqlNotebooks.append(notebook_id).append(" FROM ").append(notebooksAnnotationsTableName).append(" WHERE ").append(annotation_id).append("= ? LIMIT 1");
-//        List<Number> resultNotebooks = this.loggedQuery(sqlNotebooks.toString(), notebookIDRowMapper, annotationID);
-//        if (resultNotebooks.size() > 0) {
-//            return true;
-//        }
-//
-//        StringBuilder sqlTargets = new StringBuilder("SELECT ");
-//        sqlTargets.append(target_id).append(" FROM ").append(annotationsTargetsTableName).append(" WHERE ").append(annotation_id).append("= ? LIMIT 1");
-//        List<Number> resultTargets = this.loggedQuery(sqlTargets.toString(), targetIDRowMapper, annotationID);
-//        if (resultTargets.size() > 0) {
-//            return true;
-//        }
-//
-//        StringBuilder sqlAccesss = new StringBuilder("SELECT ");
-//        sqlAccesss.append(principal_id).append(" FROM ").append(permissionsTableName).append(" WHERE ").append(annotation_id).append("= ? LIMIT 1");
-//        List<Number> resultAccesss = this.loggedQuery(sqlAccesss.toString(), principalIDRowMapper, annotationID);
-//        return (resultAccesss.size() > 0);
-//    }
+   
     @Override
     public List<Number> getAnnotations(Number notebookID) {
@@ -395 +388 @@
         return affectedRows;
     }
-    
-     @Override
+
+    @Override
     public int updateAnnotationHeadline(Number annotationID, String header) {
         Map<String, Object> params = new HashMap<String, Object>();
@@ -416 +409 @@
 
         String[] body = retrieveBodyComponents(annotation.getBody());
-                
+
         Map<String, Object> params = new HashMap<String, Object>();
         params.put("owner", newOwnerID);
@@ -423 +416 @@
         params.put("headline", annotation.getHeadline());
         params.put("isXml", annotation.getBody().getXmlBody() != null);
-        params.put("externalId", annotation.getId());
+        params.put("externalId", annotation.getId());        
+        params.put("publicAccess", annotation.getPermissions().getPublic().value());
         params.put("annotationId", annotationID);
 
@@ -434 +428 @@
                 append(last_modified).append("=  default,").
                 append(is_xml).append("= :isXml, ").
-                append(external_id).append("= :externalId").
-                append(" WHERE ").append(annotation_id).append("= :annotationId"); 
+                append(external_id).append("= :externalId, ").
+                append(public_).append("= :publicAccess").
+                append(" WHERE ").append(annotation_id).append("= :annotationId");
         int affectedRows = this.loggedUpdate(sql.toString(), params);
-        
+
         return affectedRows;
     }
 
     @Override
-    public int updateAnnotationPrincipalAccess(Number annotationID, Number principalID, Access access) {
+    public int updatePermission(Number annotationID, Number principalID, Access access) {
 
         Map<String, Object> params = new HashMap<String, Object>();
@@ -460 +455 @@
 
     @Override
-    public int updatePublicAttribute(Number annotationID, Access access) {
+    public int updatePublicAccess(Number annotationID, Access access) {
 
         Map<String, Object> params = new HashMap<String, Object>();
@@ -486 +481 @@
         params.put("bodyText", body[0]);
         params.put("bodyMimeType", body[1]);
-        params.put("isXml", annotation.getBody().getXmlBody() != null);
+        params.put("isXml", annotation.getBody().getXmlBody() != null);               
+        params.put("publicAccess", annotation.getPermissions().getPublic().value());
 
         StringBuilder sql = new StringBuilder("INSERT INTO ");
         sql.append(annotationTableName).append("(").append(external_id).append(",").append(owner_id);
-        sql.append(",").append(headline).append(",").append(body_text).append(",").append(body_mimetype).append(",").append(is_xml).
-                append(" ) VALUES (:externalId, :owner, :headline, :bodyText, :bodyMimeType, :isXml)");
+        sql.append(",").append(headline).append(",").append(body_text).append(",").append(body_mimetype).append(",").append(is_xml).append(",").append(public_).
+                append(" ) VALUES (:externalId, :owner, :headline, :bodyText, :bodyMimeType, :isXml, :publicAccess)");
         int affectedRows = this.loggedUpdate(sql.toString(), params);
         return getInternalID(externalID);
@@ -509 +505 @@
     /////////////////////////////////////////////////////////////////////////////////////////
     @Override
-    public int addAnnotationPrincipalAccess(Number annotationID, Number principalID, Access access) {
+    public int addPermission(Number annotationID, Number principalID, Access access) {
 
         Map<String, Object> paramsAccesss = new HashMap<String, Object>();
@@ -541 +537 @@
     //////////////////////////////////////////////////////
     @Override
-    public int deleteAnnotationPermissions(Number annotationID) {
+    public int deletePermissions(Number annotationID) {
         StringBuilder sqlAccesss = new StringBuilder("DELETE FROM ");
         sqlAccesss.append(permissionsTableName).append(" WHERE ").append(annotation_id).append(" = ?");
         return this.loggedUpdate(sqlAccesss.toString(), annotationID); // removed "access" rows 
     }
-
-    ////////////////////////////////////////
-    @Override
-    public int deleteAnnotationFromAllNotebooks(Number annotationID) {
-        StringBuilder sql = new StringBuilder("DELETE FROM ");
-        sql.append(notebooksAnnotationsTableName).append(" WHERE ").append(annotation_id).append(" = ?");
-        return this.loggedUpdate(sql.toString(), annotationID); // removed "notebook-annotation" rows 
-
-    }
-
+    
     //////////////////////////////////////////////////////
     @Override
-    public int deleteAnnotationPrincipalAccess(Number annotationID, Number principalID) {
+    public int deletePermission(Number annotationID, Number principalID) {
         Map<String, Number> params = new HashMap();
         params.put("annotationId", annotationID);
@@ -568 +555 @@
 
     }
+
+    ////////////////////////////////////////
+    @Override
+    public int deleteAnnotationFromAllNotebooks(Number annotationID) {
+        StringBuilder sql = new StringBuilder("DELETE FROM ");
+        sql.append(notebooksAnnotationsTableName).append(" WHERE ").append(annotation_id).append(" = ?");
+        return this.loggedUpdate(sql.toString(), annotationID); // removed "notebook-annotation" rows 
+
+    }
+
+    
     /////////////// helpers //////////////////
 

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/impl/JdbcResourceDao.java

@@ -264 +264 @@
         }
     };
+    protected final RowMapper<Access> accessRowMapper = new RowMapper<Access>() {
+        @Override
+        public Access mapRow(ResultSet rs, int rowNumber) throws SQLException {
+            Access result =Access.fromValue(rs.getString(access));
+            return result;
+        }
+    };
      protected final RowMapper<Access> public_RowMapper = new RowMapper<Access>() {
         @Override

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/AnnotationResource.java

@@ -23 +23 @@
 import eu.dasish.annotation.backend.NotInDataBaseException;
 import eu.dasish.annotation.backend.Resource;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.backend.dao.ILambda;
 import eu.dasish.annotation.schema.Annotation;
@@ -94 +93 @@
         Map params = new HashMap();
         try {
-            Annotation result = (Annotation) (new RequestWrappers(this)).wrapRequestResource(params, new GetAnnotation(), Resource.ANNOTATION, ResourceAction.READ, externalIdentifier);
+            Annotation result = (Annotation) (new RequestWrappers(this)).wrapRequestResource(params, new GetAnnotation(), Resource.ANNOTATION, Access.READ, externalIdentifier);
             if (result != null) {
                 return (new ObjectFactory()).createAnnotation(result);
@@ -125 +124 @@
         Map params = new HashMap();
         try {
-            ReferenceList result = (ReferenceList) (new RequestWrappers(this)).wrapRequestResource(params, new GetTargetList(), Resource.ANNOTATION, ResourceAction.READ, externalIdentifier);
+            ReferenceList result = (ReferenceList) (new RequestWrappers(this)).wrapRequestResource(params, new GetTargetList(), Resource.ANNOTATION, Access.READ, externalIdentifier);
             if (result != null) {
                 return (new ObjectFactory()).createTargetList(result);
@@ -244 +243 @@
         Map params = new HashMap();
         try {
-            PermissionList result = (PermissionList) (new RequestWrappers(this)).wrapRequestResource(params, new GetPermissionList(), Resource.ANNOTATION, ResourceAction.READ, externalIdentifier);
+            PermissionList result = (PermissionList) (new RequestWrappers(this)).wrapRequestResource(params, new GetPermissionList(), Resource.ANNOTATION, Access.READ, externalIdentifier);
             if (result != null) {
                 return (new ObjectFactory()).createPermissionList(result);
@@ -273 +272 @@
         Map params = new HashMap();
         try {
-            int[] result = (int[]) (new RequestWrappers(this)).wrapRequestResource(params, new DeleteAnnotation(), Resource.ANNOTATION, ResourceAction.DELETE, externalIdentifier);
+            int[] result = (int[]) (new RequestWrappers(this)).wrapRequestResource(params, new DeleteAnnotation(), Resource.ANNOTATION, Access.ALL, externalIdentifier);
             if (result != null) {
                 return result[0] + " annotation(s) is(are) deleted.";
@@ -344 +343 @@
         }
         try {
-            Map params = new HashMap();
-            
+            Map params = new HashMap();            
             params.put("annotation", annotation);
             params.put("remoteUser",httpServletRequest.getRemoteUser()); 
-            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateAnnotation(), Resource.ANNOTATION, ResourceAction.WRITE, externalId);
+            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateAnnotation(), Resource.ANNOTATION, Access.WRITE, externalId);
             if (result != null) {
                 return (new ObjectFactory()).createResponseBody(result);
@@ -386 +384 @@
         params.put("annotationBody", annotationBody);
         try {
-            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateAnnotationBody(), Resource.ANNOTATION, ResourceAction.WRITE, externalIdentifier);
+            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateAnnotationBody(), Resource.ANNOTATION, Access.WRITE, externalIdentifier);
             if (result != null) {
                 return (new ObjectFactory()).createResponseBody(result);
@@ -422 +420 @@
         params.put("headline", newHeadline);
         try {
-            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateAnnotationHeadline(), Resource.ANNOTATION, ResourceAction.WRITE, externalIdentifier);
+            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateAnnotationHeadline(), Resource.ANNOTATION, Access.WRITE, externalIdentifier);
             if (result != null) {
                 return (new ObjectFactory()).createResponseBody(result);
@@ -479 +477 @@
                     Map params = new HashMap();
                     params.put("access", accessTyped);
-                    Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePublicAccess(), Resource.ANNOTATION, ResourceAction.WRITE_W_METAINFO, annotationId.toString());
+                    Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePublicAccess(), Resource.ANNOTATION, Access.ALL, annotationId.toString());
                     updatedAnnotations = (result != null) ? updatedAnnotations + result.intValue() : updatedAnnotations;
                 }
@@ -486 +484 @@
                 Map params = new HashMap();
                 params.put("access", accessTyped);
-                Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePublicAccess(), Resource.ANNOTATION, ResourceAction.WRITE_W_METAINFO, annotationDatabaseId);
+                Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePublicAccess(), Resource.ANNOTATION, Access.ALL, annotationDatabaseId);
                 if (result != null) {
                     return result + " row(s) is(are) updated.";
@@ -517 +515 @@
     @Produces(MediaType.APPLICATION_XML)
     @Path("{annotationid: " + BackendConstants.regExpIdentifier + "}/permissions/{principalid: " + BackendConstants.regExpIdentifier + "}")
-    public String updateAccess(@PathParam("annotationid") String annotationExternalId,
+    public String updatePermission(@PathParam("annotationid") String annotationExternalId,
             @PathParam("principalid") String principalExternalId, Access access) throws IOException {
         try {
-            return this.genericUpdateDeleteAccess(annotationExternalId, principalExternalId, access);
+            return this.genericUpdateDeletePermission(annotationExternalId, principalExternalId, access);
         } catch (NotInDataBaseException e1) {
             httpServletResponse.sendError(HttpServletResponse.SC_NOT_FOUND, e1.getMessage());
@@ -569 +567 @@
                 String tmp = null;
                 for (UUID annotationId : annotationIds) {
-                    tmp = this.genericUpdateDeleteAccess(annotationId.toString(), principalDatabaseId, Access.fromValue(access));
+                    tmp = this.genericUpdateDeletePermission(annotationId.toString(), principalDatabaseId, Access.fromValue(access));
                     if (!tmp.startsWith("0")) {
                         count++;
@@ -576 +574 @@
                 return (count + " row(s) are updated");
             } else {
-                return this.genericUpdateDeleteAccess(annotationDatabaseId, principalDatabaseId, Access.fromValue(access));
+                return this.genericUpdateDeletePermission(annotationDatabaseId, principalDatabaseId, Access.fromValue(access));
             }
 
@@ -589 +587 @@
 
     ////////////////////////////////////////////
-    private String genericUpdateDeleteAccess(String annotationId, String principalId, Access access) throws IOException, NotInDataBaseException, ForbiddenException {
+    private String genericUpdateDeletePermission(String annotationId, String principalId, Access access) throws IOException, NotInDataBaseException, ForbiddenException {
         Map params = new HashMap();
         params.put("access", access);
         final Number inputPrincipalID = dbDispatcher.getResourceInternalIdentifier(UUID.fromString(principalId), Resource.PRINCIPAL);
         params.put("inputPrincipalID", inputPrincipalID);
-        Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePrincipalAccess(), Resource.ANNOTATION, ResourceAction.WRITE_W_METAINFO, annotationId);
+        Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePermissionHelper(), Resource.ANNOTATION, Access.ALL, annotationId);
         if (result != null) {
             return result + " row(s) is(are) updated.";
@@ -602 +600 @@
     }
 
-    private class UpdatePrincipalAccess implements ILambda<Map, Integer> {
+    private class UpdatePermissionHelper implements ILambda<Map, Integer> {
 
         @Override
@@ -609 +607 @@
             Number principalID = (Number) params.get("inputPrincipalID");
             Access access = (Access) params.get("access");
-            return dbDispatcher.updateAnnotationPrincipalAccess(annotationID, principalID, access);
+            return dbDispatcher.updatePermission(annotationID, principalID, access);
         }
     }
@@ -623 +621 @@
         params.put("permissions", permissions);
         try {
-            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePermissions(), Resource.ANNOTATION, ResourceAction.WRITE_W_METAINFO, annotationExternalId);
+            ResponseBody result = (ResponseBody) (new RequestWrappers(this)).wrapRequestResource(params, new UpdatePermissions(), Resource.ANNOTATION, Access.ALL, annotationExternalId);
             if (result != null) {
                 return new ObjectFactory().createResponseBody(result);
@@ -655 +653 @@
     @Produces(MediaType.TEXT_PLAIN)
     @Path("{annotationId: " + BackendConstants.regExpIdentifier + "}/principal/{principalId}/delete")
-    public String deletePrincipalsAccess(@PathParam("annotationId") String annotationId,
+    public String deletePermission(@PathParam("annotationId") String annotationId,
             @PathParam("principalId") String principalId) throws IOException {
         try {
-            return this.genericUpdateDeleteAccess(annotationId, principalId, null);
+            return this.genericUpdateDeletePermission(annotationId, principalId, null);
         } catch (NotInDataBaseException e1) {
             httpServletResponse.sendError(HttpServletResponse.SC_NOT_FOUND, e1.getMessage());

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/CachedRepresentationResource.java

@@ -24 +24 @@
 import eu.dasish.annotation.backend.NotInDataBaseException;
 import eu.dasish.annotation.backend.Resource;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.backend.dao.ILambda;
+import eu.dasish.annotation.schema.Access;
 import eu.dasish.annotation.schema.CachedRepresentationInfo;
 import eu.dasish.annotation.schema.ObjectFactory;
@@ -71 +71 @@
         Map params = new HashMap();
         try {
-            CachedRepresentationInfo result = (CachedRepresentationInfo) (new RequestWrappers(this)).wrapRequestResource(params, new GetCachedRepresentationInfo(), Resource.CACHED_REPRESENTATION, ResourceAction.READ, externalId);
+            CachedRepresentationInfo result = (CachedRepresentationInfo) (new RequestWrappers(this)).wrapRequestResource(params, new GetCachedRepresentationInfo(), Resource.CACHED_REPRESENTATION, Access.READ, externalId);
             if (result != null) {
                 return (new ObjectFactory()).createCachedRepresentationInfo(result);
@@ -103 +103 @@
         Map params = new HashMap();
         try {
-            InputStream result = (InputStream) (new RequestWrappers(this)).wrapRequestResource(params, new GetCachedRepresentationInputStream(), Resource.CACHED_REPRESENTATION, ResourceAction.READ, externalId);
+            InputStream result = (InputStream) (new RequestWrappers(this)).wrapRequestResource(params, new GetCachedRepresentationInputStream(), Resource.CACHED_REPRESENTATION, Access.READ, externalId);
             if (result != null) {
                 ImageIO.setUseCache(false);
@@ -135 +135 @@
         Map params = new HashMap();
         try {
-            return (InputStream) (new RequestWrappers(this)).wrapRequestResource(params, new GetCachedRepresentationInputStream(), Resource.CACHED_REPRESENTATION, ResourceAction.READ, externalId);
+            return (InputStream) (new RequestWrappers(this)).wrapRequestResource(params, new GetCachedRepresentationInputStream(), Resource.CACHED_REPRESENTATION, Access.READ, externalId);
         } catch (NotInDataBaseException e1) {
             httpServletResponse.sendError(HttpServletResponse.SC_NOT_FOUND, e1.getMessage());
@@ -165 +165 @@
         params.put("stream", bpe.getInputStream());
         try {
-            Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateCachedBlob(), Resource.CACHED_REPRESENTATION, ResourceAction.WRITE, cachedIdentifier);
+            Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateCachedBlob(), Resource.CACHED_REPRESENTATION, Access.WRITE, cachedIdentifier);
             if (result != null) {
                 return result + "rows are updated";
@@ -199 +199 @@
         params.put("stream", input);
         try {
-            Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateCachedBlob(), Resource.CACHED_REPRESENTATION, ResourceAction.WRITE, cachedIdentifier);
+            Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateCachedBlob(), Resource.CACHED_REPRESENTATION, Access.WRITE, cachedIdentifier);
             input.close();
             if (result != null) {
@@ -240 +240 @@
         params.put("info", cachedInfo);
         try {
-            Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateCachedMetadata(), Resource.CACHED_REPRESENTATION, ResourceAction.WRITE_W_METAINFO, cachedInfo.getId());
+            Integer result = (Integer) (new RequestWrappers(this)).wrapRequestResource(params, new UpdateCachedMetadata(), Resource.CACHED_REPRESENTATION, Access.ALL, cachedInfo.getId());
             if (result != null) {
                 return result + "rows are updated";

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/RequestWrappers.java

@@ -22 +22 @@
 import eu.dasish.annotation.backend.PrincipalExists;
 import eu.dasish.annotation.backend.Resource;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.backend.dao.ILambda;
 import eu.dasish.annotation.backend.dao.ILambdaPrincipal;
+import eu.dasish.annotation.schema.Access;
 import eu.dasish.annotation.schema.ObjectFactory;
 import eu.dasish.annotation.schema.Principal;
@@ -30 +30 @@
 import java.util.Map;
 import java.util.UUID;
-import javax.servlet.http.HttpServletResponse;
 import javax.xml.bind.JAXBElement;
 
@@ -62 +61 @@
     }
 
-    public T wrapRequestResource(Map params, ILambda<Map, T> dbRequestor, Resource resource, ResourceAction action, String externalId) throws IOException, ForbiddenException, NotInDataBaseException {
+    public T wrapRequestResource(Map params, ILambda<Map, T> dbRequestor, Resource resource, Access action, String externalId) throws IOException, ForbiddenException, NotInDataBaseException {
         Number principalID = resourceResource.getPrincipalID();
         if (principalID == null) {

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/TargetResource.java

@@ -24 +24 @@
 import eu.dasish.annotation.backend.NotInDataBaseException;
 import eu.dasish.annotation.backend.Resource;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.backend.dao.ILambda;
+import eu.dasish.annotation.schema.Access;
 import eu.dasish.annotation.schema.CachedRepresentationInfo;
 import eu.dasish.annotation.schema.ObjectFactory;
 import eu.dasish.annotation.schema.ReferenceList;
-import eu.dasish.annotation.schema.ResponseBody;
 import eu.dasish.annotation.schema.Target;
 import java.io.IOException;
@@ -82 +81 @@
         Map params = new HashMap();
         try {
-            Target result = (Target) (new RequestWrappers(this)).wrapRequestResource(params, new GetTarget(), Resource.TARGET, ResourceAction.READ, externalIdentifier);
+            Target result = (Target) (new RequestWrappers(this)).wrapRequestResource(params, new GetTarget(), Resource.TARGET, Access.READ, externalIdentifier);
             if (result != null) {
                 return new ObjectFactory().createTarget(result);
@@ -114 +113 @@
         Map params = new HashMap();
         try {
-            ReferenceList result = (ReferenceList) (new RequestWrappers(this)).wrapRequestResource(params, new GetSiblingTargets(), Resource.TARGET, ResourceAction.READ, externalIdentifier);
+            ReferenceList result = (ReferenceList) (new RequestWrappers(this)).wrapRequestResource(params, new GetSiblingTargets(), Resource.TARGET, Access.READ, externalIdentifier);
             if (result != null) {
                 return new ObjectFactory().createReferenceList(result);
@@ -153 +152 @@
         params.put("fragmentDescriptor", fragmentDescriptor);
         try {
-            CachedRepresentationInfo result = (CachedRepresentationInfo) (new RequestWrappers(this)).wrapRequestResource(params, new PostCached(), Resource.TARGET, ResourceAction.WRITE_W_METAINFO, targetIdentifier);
+            CachedRepresentationInfo result = (CachedRepresentationInfo) (new RequestWrappers(this)).wrapRequestResource(params, new PostCached(), Resource.TARGET, Access.ALL, targetIdentifier);
             if (result != null) {
                 return new ObjectFactory().createCachedRepresentationInfo(result);

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/webapp/SCHEMA/DASISH-schema.xsd

@@ -136 +136 @@
             <xs:enumeration value="write"/>
             <xs:enumeration value="none"/>
+            <xs:enumeration value="all"/>
         </xs:restriction>
     </xs:simpleType>
@@ -153 +154 @@
                 <xs:attribute name="public" type="dasish:Access" use="required"/>
             </xs:extension> 
+        </xs:complexContent>
+    </xs:complexType>
+    
+    <xs:complexType name="HistoryRecord">
+        <xs:sequence>            
+            <xs:element name="modifiedByHref" type="xs:anyURI"  minOccurs="1" maxOccurs="1"/>            
+            <xs:element name="modifiedOn" type="xs:dateTime"  minOccurs="1" maxOccurs="1"/>
+            <xs:element name="mdifiedBody" type="dasish:AnnotationBody" minOccurs="1" maxOccurs="1"/>
+            <xs:element name="modifiedHeadline" type="xs:string"  minOccurs="1" maxOccurs="1"/>
+        </xs:sequence>
+    </xs:complexType>
+    
+    <xs:complexType name="HistoryRecordList">
+        <xs:complexContent>
+            <xs:extension base="dasish:List">
+                <xs:sequence>
+                    <xs:element name="historyRecord" type="dasish:HistoryRecord" minOccurs="0"
+                        maxOccurs="unbounded"/>
+                </xs:sequence>
+            </xs:extension>
         </xs:complexContent>
     </xs:complexType>
@@ -166 +187 @@
             <xs:element name="permissions" type="dasish:PermissionList" minOccurs="1"
                         maxOccurs="1"/> 
+            <xs:element name="historyRecords" type="dasish:HistoryRecordList" minOccurs="0" maxOccurs="1"/>
         </xs:sequence>
         <xs:attribute name="href" type="xs:anyURI" use="required"/>
@@ -348 +370 @@
 
     <xs:element name="targetInfo" type="dasish:TargetInfo"/>
-
-    <xs:element name="targetInfoList" type="dasish:TargetInfoList"/>
+    
+    <xs:element name="historyRecord" type="dasish:HistoryRecord"/>
+
+    <xs:element name="historyRecordList" type="dasish:HistoryRecordList"/>
 
     <xs:element name="targetList" type="dasish:ReferenceList"/>

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/test/java/eu/dasish/annotation/backend/dao/impl/DBDispatcherTest.java

@@ -344 +344 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.READ);
                 will(returnValue(mockAnnotationIDsRead));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.READ);
                 will(returnValue(mockAnnotationIDsPublicRead));               
 
@@ -418 +418 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.READ);
                 will(returnValue(mockAnnotationIDsRead));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.READ);
                 will(returnValue(mockAnnotationIDsPublicRead));               
 
@@ -491 +491 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.READ);
                 will(returnValue(mockAnnotationIDsRead));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.READ);
                 will(returnValue(mockAnnotationIDsPublicRead));               
 
@@ -565 +565 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.READ);
                 will(returnValue(mockAnnotationIDsRead));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.READ);
                 will(returnValue(mockAnnotationIDsPublicRead));               
 
@@ -631 +631 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.WRITE);
                 will(returnValue(mockAnnotationIDsWrite));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.WRITE);
                 will(returnValue(mockAnnotationIDsPublicWrite));               
 
@@ -695 +695 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.WRITE);
                 will(returnValue(mockAnnotationIDsWrite));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.WRITE);
                 will(returnValue(mockAnnotationIDsPublicWrite));               
 
@@ -761 +761 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.WRITE);
                 will(returnValue(mockAnnotationIDsWrite));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.WRITE);
                 will(returnValue(mockAnnotationIDsPublicWrite));               
 
@@ -826 +826 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.WRITE);
                 will(returnValue(mockAnnotationIDsWrite));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.WRITE);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.WRITE);
                 will(returnValue(mockAnnotationIDsPublicWrite));               
 
@@ -1021 +1021 @@
                 will(returnValue(mockAnnotationIDs1));
 
-                oneOf(annotationDao).getAnnotationIDsForPermission(loggedIn, Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPermissionAtLeast(loggedIn, Access.READ);
                 will(returnValue(mockAnnotationIDsRead));
 
-                oneOf(annotationDao).getAnnotationIDsForPublicAccess(Access.READ);
+                oneOf(annotationDao).getAnnotationIDsPublicAtLeast(Access.READ);
                 will(returnValue(mockAnnotationIDsPublicRead));
               
@@ -1258 +1258 @@
                 will(returnValue(1)); // the DB update will be called at perform anyway, even if the body is not changed (can be optimized)
 
-                oneOf(annotationDao).updatePublicAttribute(5, Access.WRITE);
+                oneOf(annotationDao).updatePublicAccess(5, Access.WRITE);
                 will(returnValue(1));
             }
@@ -1414 +1414 @@
         mockeryDao.checking(new Expectations() {
             {
-                oneOf(annotationDao).deleteAnnotationPermissions(2);
+                oneOf(annotationDao).deletePermissions(2);
                 will(returnValue(2));
 
@@ -1767 +1767 @@
                 will(returnValue("/api/principals/00000000-0000-0000-0000-000000000113"));
 
-
+               oneOf(principalDao).getPrincipalIDsWithAccessForNotebook(2, Access.ALL);
+                will(returnValue(new ArrayList<Number>()));
 
             }
@@ -1952 +1953 @@
                 will(returnValue(1)); // the DB update will be called at perform anyway, even if the body is not changed (can be optimized)
 
-                oneOf(annotationDao).updatePublicAttribute(5, Access.WRITE);
+                oneOf(annotationDao).updatePublicAccess(5, Access.WRITE);
                 will(returnValue(1));
 
@@ -2110 +2111 @@
                 will(returnValue(1));
 
-                oneOf(annotationDao).deleteAnnotationPermissions(1);
+                oneOf(annotationDao).deletePermissions(1);
                 will(returnValue(3));
 
@@ -2144 +2145 @@
                 will(returnValue(2));
 
-                oneOf(annotationDao).addAnnotationPrincipalAccess(1, 2, Access.WRITE);
+                oneOf(annotationDao).addPermission(1, 2, Access.WRITE);
                 will(returnValue(1));
 
@@ -2150 +2151 @@
                 will(returnValue(3));
 
-                oneOf(annotationDao).addAnnotationPrincipalAccess(1, 3, Access.READ);
+                oneOf(annotationDao).addPermission(1, 3, Access.READ);
                 will(returnValue(1));
 
@@ -2161 +2162 @@
                 ///
 
-                oneOf(annotationDao).updatePublicAttribute(1, permissions.getPublic());
+                oneOf(annotationDao).updatePublicAccess(1, permissions.getPublic());
                 will(returnValue(1));
 
@@ -2200 +2201 @@
 //    }
     @Test
-    public void testUpdateAnnotationPrinciaplAccess() {
+    public void testUpdatePermission() {
         System.out.println("test updateAnnotationPrincipalAccess");
         mockeryDao.checking(new Expectations() {
             {
-                oneOf(annotationDao).getAccess(1, 2);
-                will(returnValue(Access.WRITE));
-
-                oneOf(annotationDao).updateAnnotationPrincipalAccess(1, 2, Access.READ);
-                will(returnValue(1));
-
-                oneOf(annotationDao).getAccess(1, 4);
-                will(returnValue(null));
-                
-                oneOf(annotationDao).addAnnotationPrincipalAccess(1, 4, Access.WRITE);
-                will(returnValue(1));
-
-            }
-        });
-
-        assertEquals(1, dbDispatcher.updateAnnotationPrincipalAccess(1, 2, Access.READ));
-        assertEquals(1, dbDispatcher.updateAnnotationPrincipalAccess(1, 4, Access.WRITE));
+                oneOf(annotationDao).hasExplicitAccess(1, 2);
+                will(returnValue(true));
+
+                oneOf(annotationDao).updatePermission(1, 2, Access.READ);
+                will(returnValue(1));
+
+                oneOf(annotationDao).hasExplicitAccess(1, 4);
+                will(returnValue(false));
+                
+                oneOf(annotationDao).addPermission(1, 4, Access.WRITE);
+                will(returnValue(1));
+
+            }
+        });
+
+        assertEquals(1, dbDispatcher.updatePermission(1, 2, Access.READ));
+        assertEquals(1, dbDispatcher.updatePermission(1, 4, Access.WRITE));
     }
 
@@ -2249 +2250 @@
             {
                 /////
-                oneOf(annotationDao).updatePublicAttribute(1, permissions.getPublic());
+                oneOf(annotationDao).updatePublicAccess(1, permissions.getPublic());
                 will(returnValue(1));
 
@@ -2255 +2256 @@
                 will(returnValue(2));
 
-                oneOf(annotationDao).getAccess(1, 2);
-                will(returnValue(Access.WRITE));
+                oneOf(annotationDao).hasExplicitAccess(1, 2);
+                will(returnValue(true));
 
                 oneOf(principalDao).getInternalIDFromHref(permissions.getPermission().get(1).getPrincipalHref());
                 will(returnValue(3));
 
-                oneOf(annotationDao).getAccess(1, 3);
-                will(returnValue(Access.WRITE));
+                oneOf(annotationDao).hasExplicitAccess(1, 3);
+                will(returnValue(true));
                 
                 oneOf(principalDao).getInternalIDFromHref(permissions.getPermission().get(2).getPrincipalHref());
                 will(returnValue(4));
 
-                oneOf(annotationDao).getAccess(1, 4);
-                will(returnValue(null));
-
-                oneOf(annotationDao).updateAnnotationPrincipalAccess(1, 3, Access.READ);
-                will(returnValue(1));
-                
-                oneOf(annotationDao).addAnnotationPrincipalAccess(1, 4, Access.READ);
-                will(returnValue(1));
-
-            }
-        });
-
-        assertEquals(2, dbDispatcher.updatePermissions(1, permissions));
+                oneOf(annotationDao).hasExplicitAccess(1, 4);
+                will(returnValue(false));
+                
+                oneOf(annotationDao).updatePermission(1, 2, Access.WRITE);
+                will(returnValue(1));
+
+                oneOf(annotationDao).updatePermission(1, 3, Access.READ);
+                will(returnValue(1));
+                
+                oneOf(annotationDao).addPermission(1, 4, Access.READ);
+                will(returnValue(1));
+
+            }
+        });
+
+        assertEquals(3, dbDispatcher.updatePermissions(1, permissions));
 
     }
@@ -2293 +2297 @@
             {
                 /////
-                oneOf(annotationDao).updatePublicAttribute(1, Access.NONE);
+                oneOf(annotationDao).updatePublicAccess(1, Access.NONE);
                 will(returnValue(1));
 

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/test/java/eu/dasish/annotation/backend/dao/impl/JdbcAnnotationDaoTest.java

@@ -114 +114 @@
     public void testDeleteAnnotationPrinciplePermissions() {
         System.out.println("test deleteAllAnnotationTargets");
-        int result = jdbcAnnotationDao.deleteAnnotationPermissions(1);
+        int result = jdbcAnnotationDao.deletePermissions(1);
         assertEquals(3, result);
-        assertEquals(0, jdbcAnnotationDao.deleteAnnotationPermissions(1));
+        assertEquals(0, jdbcAnnotationDao.deletePermissions(1));
     }
 
@@ -123 +123 @@
     public void testAddAnnotationPrincipalAccess() {
         System.out.println("test addAnnotationTargets");
-        int result = jdbcAnnotationDao.addAnnotationPrincipalAccess(1, 1, Access.READ);
+        int result = jdbcAnnotationDao.addPermission(1, 1, Access.READ);
         assertEquals(1, result);
     }
@@ -226 +226 @@
         // to provide integrity, first delete rows in the joint tables
         jdbcAnnotationDao.deleteAllAnnotationTarget(4);
-        jdbcAnnotationDao.deleteAnnotationPermissions(4);
+        jdbcAnnotationDao.deletePermissions(4);
 
         assertEquals(1, jdbcAnnotationDao.deleteAnnotation(4));
@@ -313 +313 @@
     public void testAnnotationIDsForPermission() {
         System.out.println("test getAnnotationIDsForPermission");
-        List<Number> result = jdbcAnnotationDao.getAnnotationIDsForPermission(1, Access.READ);
+        List<Number> result = jdbcAnnotationDao.getAnnotationIDsPermissionAtLeast(1, Access.READ);
         assertEquals(3, result.size());
         assertEquals(2, result.get(0));
@@ -319 +319 @@
         assertEquals(4, result.get(2));
 
-        List<Number> resultTwo = jdbcAnnotationDao.getAnnotationIDsForPermission(1, Access.WRITE);
+        List<Number> resultTwo = jdbcAnnotationDao.getAnnotationIDsPermissionAtLeast(1, Access.WRITE);
         assertEquals(1, resultTwo.size());
         assertEquals(4, resultTwo.get(0));
 
-        List<Number> resultThree = jdbcAnnotationDao.getAnnotationIDsForPermission(1, Access.NONE);
+        List<Number> resultThree = jdbcAnnotationDao.getAnnotationIDsPermissionAtLeast(1, Access.NONE);
         assertEquals(0, resultThree.size());
 
@@ -332 +332 @@
     public void testAnnotationIDsForPublicAccess() {
         System.out.println("test getAnnotationIDsForPublicAccess");
-        List<Number> result = jdbcAnnotationDao.getAnnotationIDsForPublicAccess(Access.READ);
+        List<Number> result = jdbcAnnotationDao.getAnnotationIDsPublicAtLeast(Access.READ);
         assertEquals(2, result.size());
         assertTrue(result.contains(1));
         assertTrue(result.contains(2));
 
-        List<Number> resultTwo = jdbcAnnotationDao.getAnnotationIDsForPublicAccess(Access.WRITE);
+        List<Number> resultTwo = jdbcAnnotationDao.getAnnotationIDsPublicAtLeast(Access.WRITE);
         assertEquals(1, resultTwo.size());
         assertEquals(1, resultTwo.get(0));
 
 
-        List<Number> resultThree = jdbcAnnotationDao.getAnnotationIDsForPublicAccess(Access.NONE);
+        List<Number> resultThree = jdbcAnnotationDao.getAnnotationIDsPublicAtLeast(Access.NONE);
         assertEquals(2, resultThree.size());
         assertTrue(resultThree.contains(3));
@@ -362 +362 @@
         assertEquals(Access.READ, jdbcAnnotationDao.getAccess(1, 3));
         assertEquals(Access.WRITE, jdbcAnnotationDao.getAccess(2, 3));
-        assertEquals(null, jdbcAnnotationDao.getAccess(3, 3));
+        assertEquals(Access.NONE, jdbcAnnotationDao.getAccess(3, 3));
     }
 
@@ -449 +449 @@
         System.out.println("test updateAnntationPrincipalAccess ");
 
-        int result = jdbcAnnotationDao.updateAnnotationPrincipalAccess(1, 2, Access.NONE);
+        int result = jdbcAnnotationDao.updatePermission(1, 2, Access.NONE);
         assertEquals(1, result);
         assertEquals(Access.NONE, jdbcAnnotationDao.getAccess(1, 2));
@@ -458 +458 @@
         System.out.println("test updatePublicAtribute ");
 
-        int result = jdbcAnnotationDao.updatePublicAttribute(1, Access.NONE);
+        int result = jdbcAnnotationDao.updatePublicAccess(1, Access.NONE);
         assertEquals(1, result);
         assertEquals(Access.NONE, jdbcAnnotationDao.getPublicAttribute(1));

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/test/java/eu/dasish/annotation/backend/rest/AnnotationResourceTest.java

@@ -21 +21 @@
 import eu.dasish.annotation.backend.NotInDataBaseException;
 import eu.dasish.annotation.backend.Resource;
-import eu.dasish.annotation.backend.ResourceAction;
 import eu.dasish.annotation.backend.dao.DBDispatcher;
 import eu.dasish.annotation.backend.TestInstances;
@@ -107 +106 @@
 
 
-                oneOf(mockDbDispatcher).canDo(ResourceAction.READ, 3, 1, Resource.ANNOTATION);
+                oneOf(mockDbDispatcher).canDo(Access.READ, 3, 1, Resource.ANNOTATION);
                 will(returnValue(true));
 
@@ -152 +151 @@
                 will(returnValue(3));
                 
-                oneOf(mockDbDispatcher).canDo(ResourceAction.DELETE, 3, 4, Resource.ANNOTATION);
+                oneOf(mockDbDispatcher).canDo(Access.ALL, 3, 4, Resource.ANNOTATION);
                 will(returnValue(true));
 
@@ -276 +275 @@
                 will(returnValue(1));
                 
-                oneOf(mockDbDispatcher).canDo(ResourceAction.WRITE, 1, 1, Resource.ANNOTATION);
+                oneOf(mockDbDispatcher).canDo(Access.WRITE, 1, 1, Resource.ANNOTATION);
                 will(returnValue(true));
                 
@@ -344 +343 @@
                 will(returnValue(1));
                 
-                oneOf(mockDbDispatcher).canDo(ResourceAction.WRITE, 1, 1, Resource.ANNOTATION);
+                oneOf(mockDbDispatcher).canDo(Access.WRITE, 1, 1, Resource.ANNOTATION);
                 will(returnValue(true));               
                 
@@ -397 +396 @@
                 will(returnValue(1));
                 
-                oneOf(mockDbDispatcher).canDo(ResourceAction.WRITE, 1, 1, Resource.ANNOTATION);
+                oneOf(mockDbDispatcher).canDo(Access.WRITE, 1, 1, Resource.ANNOTATION);
                 will(returnValue(true));