405 lines
17 KiB
Java
405 lines
17 KiB
Java
package org.gcube.gcat.rest;
|
||
|
||
import javax.ws.rs.Consumes;
|
||
import javax.ws.rs.DELETE;
|
||
import javax.ws.rs.DefaultValue;
|
||
import javax.ws.rs.GET;
|
||
//import javax.ws.rs.NotAuthorizedException;
|
||
import javax.ws.rs.POST;
|
||
import javax.ws.rs.PUT;
|
||
import javax.ws.rs.Path;
|
||
import javax.ws.rs.PathParam;
|
||
import javax.ws.rs.Produces;
|
||
import javax.ws.rs.QueryParam;
|
||
import javax.ws.rs.core.MultivaluedMap;
|
||
import javax.ws.rs.core.Response;
|
||
import javax.ws.rs.core.Response.ResponseBuilder;
|
||
import javax.ws.rs.core.Response.Status;
|
||
import javax.xml.ws.WebServiceException;
|
||
|
||
//import org.gcube.common.authorization.control.annotations.AuthorizationControl;
|
||
import org.gcube.gcat.annotation.PATCH;
|
||
import org.gcube.gcat.annotation.PURGE;
|
||
import org.gcube.gcat.api.GCatConstants;
|
||
//import org.gcube.gcat.api.moderation.Moderated;
|
||
//import org.gcube.gcat.api.roles.Role;
|
||
import org.gcube.gcat.persistence.ckan.CKANPackage;
|
||
import org.slf4j.Logger;
|
||
import org.slf4j.LoggerFactory;
|
||
|
||
/**
|
||
* @author Luca Frosini (ISTI - CNR)
|
||
*/
|
||
@Path(Item.ITEMS)
|
||
public class Item extends REST<CKANPackage> implements org.gcube.gcat.api.interfaces.Item<Response,Response> {
|
||
|
||
private final Logger logger = LoggerFactory.getLogger(Item.class);
|
||
|
||
public static final String ITEM_ID_PARAMETER = "ITEM_ID";
|
||
|
||
protected String moderationMessage;
|
||
|
||
public Item() {
|
||
super(ITEMS, ITEM_ID_PARAMETER, CKANPackage.class);
|
||
}
|
||
|
||
/**
|
||
* <p>
|
||
* The listing API provides paginated results by using the query parameters limit and offset.<br/>
|
||
* It returns an array list of string containing the ids (i.e. names) of the items.<br/>
|
||
* Each name can be used as <code>{ITEM_ID}</code> path parameter to manage such item.
|
||
* </p>
|
||
*
|
||
* <h3>Filtering options</h3>
|
||
* <p>
|
||
* The listing method offers options to filter the results, thus enacting to search for items including spatial search (see ext_bbox below).<br/>
|
||
* </p>
|
||
*
|
||
* <h4>Basic Filtering options</h4>
|
||
* <dl>
|
||
* <dt>include_private (bool)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:false</em>.<br/>
|
||
* If True, private datasets will be included in the results.<br/>
|
||
* Only private datasets from the user’s organizations will be returned. For the sysadmins will be returned all private datasets.<br/>
|
||
* E.g. <code>/items?include_private=true</code>
|
||
* </dd>
|
||
*
|
||
* <dt style="margin-top: 5px;">ext_bbox</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:null</em>.<br/>
|
||
* The coordinates of the upper-right and bottom-left angle of a rectangular to query for.
|
||
* The form is <code>Lat,Long,Lat,Long</code><br/>
|
||
* E.g. <code>/items?limit=10&offset=0&q=Pollution&ext_bbox=-7.535093,49.208494,3.890688,57.372349</code>
|
||
* returns the first 10 items with 'Pollution' having a spatial coverage in the specified bounding box.
|
||
* </dd>
|
||
*
|
||
* <dt style="margin-top: 5px;">own_only (bool)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:false</em>.<br/>
|
||
* If True, only the items of the requester user will be included in the result.<br/>
|
||
* E.g. <code>/items?limit=10&offset=0&own_only=true</code>
|
||
* </dd>
|
||
* </dl>
|
||
*
|
||
* <h4>Filtering options based on Solr query parameters</h4>
|
||
* <p>
|
||
* It accepts the following query parameters (a subset of Solr search query parameters, see Solr Query Syntax):
|
||
* </p>
|
||
* <dl>
|
||
* <dt>q (string)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:"*:*"</em><br/>
|
||
* The solr query.<br/>
|
||
* E.g. <code>/items?q=title:foo</code> returns the items with word "foo" in the title.<br/>
|
||
* E.g. <code>/items?q=extras_systemtype:MyProfile</code> returns the items having the profile <em>MyProfile</em>
|
||
* </dd>
|
||
*
|
||
* <dt style="margin-top: 5px;">fq (string)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:null</em>.<br/>
|
||
* Filter query. A query string that limits the query results without influencing their scores.<br/>
|
||
* E.g. <code>/items?q=title:foo&fq=notes:bar</code> returns with word "foo" in the 'title' and the word "bar" in the 'notes'.
|
||
* </dd>
|
||
*
|
||
* <dt style="margin-top: 5px;">fq_list (list of strings)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:null</em>.<br/>
|
||
* Additional filter queries to apply.<br/>
|
||
* E.g. <code>/items?q=title:foo&fq_list=...</code> returns the items with word "foo" in the 'title'.
|
||
* </dd>
|
||
*
|
||
* <dt style="margin-top: 5px;">sort (string)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:"relevance asc, metadata_modified desc"</em>.<br/>
|
||
* Sorting of the search results.<br/>
|
||
* As per the solr documentation, this is a comma-separated string of field names and sort-orderings.<br/>
|
||
* E.g. <code>/items?q=title:foo&sort=name+asc</code> returns the items with word "foo" in the 'title'
|
||
* sorting the results by name ascending.
|
||
* </dd>
|
||
* <dl>
|
||
*
|
||
* <h4>Moderated Catalogue filtering options</h4>
|
||
* <dl>
|
||
* <dt>status (enum)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:null</em>.<br/>
|
||
*
|
||
* <span style="font-weight:bold;">It has sense only for moderated catalogues</span>.<br/>
|
||
* When no value is provided, it returns both the items which have been published before the activation of the moderation,
|
||
* as weel as the items explicitly <code>approved</code> after the moderation activation.
|
||
*
|
||
* It can assume the following values:
|
||
* <ul>
|
||
* <li><code>pending</code>: it returns only the pending items, i.e. the item published by any allowed users and still not <span style="font-weight:bold;">Catalogue-Moderator</span>;</li>
|
||
* <li><code>rejected</code>: it returns only the rejected items, i.e. the item published by any allowed users and rejected by a <span style="font-weight:bold;">Catalogue-Moderator</span>;</li>
|
||
* <li><code>approved</code>: it returns only the approved items, i.e. the item published by any allowed users and approved by a <span style="font-weight:bold;">Catalogue-Moderator</span>.</li>
|
||
* </ul>
|
||
*
|
||
* <p>
|
||
* Please note that only Catalogue-Moderators can filter items by status.<br />
|
||
* Other users using this query parameter will get only its own items with such a status in the results.
|
||
* </p>
|
||
* </dd>
|
||
* </dl>
|
||
*
|
||
*
|
||
* <h3>Query results options</h3>
|
||
* <p>
|
||
* The result is by default an array list of string containing the ids (i.e. names) of the items.
|
||
* Anyway, there are two options to get a different results.
|
||
* </p>
|
||
* <dl>
|
||
* <dt>count (bool)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:false</em>.<br/>
|
||
* If True, it indicates that the result must contains only the total number of items of the query.<br/>
|
||
* E.g. <code>/items?limit=10&offset=0&count=true</code>
|
||
* </dd>
|
||
*
|
||
* <dt style="margin-top: 5px;">all_fields (bool)</dt>
|
||
* <dd>
|
||
* <em>Optional</em>.<em>Default:false</em>.
|
||
* If True, the returned array list contains the whole item representation and not only the id (i.e. the name).</br/>
|
||
* E.g. <code>/items?limit=10&offset=0&all_fields=true</code>
|
||
* </dd>
|
||
* </dl>
|
||
* <p>
|
||
* Please note that, <code>count</code> query parameter has priority over <code>all_fields</code> query parameter.
|
||
* In other words, <code>all_fields</code> query parameter is not considered is <code>count</code> query parameter is true.
|
||
* </p>
|
||
*
|
||
*
|
||
* @param limit (<em>Default:10</em>) To get unlimited results the limit query parameters must be set to -1.
|
||
* If the results are too much the operation could fail.
|
||
* It is recommended to request no more than 1000 results.
|
||
* @param offset <em>Default:0</em>) The offset parameter indicates the starting position of the result.
|
||
* @return It returns an array list of string containing the ids (i.e. names) of the items.
|
||
* E.g.<pre>["item0","items1",...,"item10"]</pre>
|
||
*
|
||
* In the case the query parameter <code>count=true</code> it returns the total number of items of the query.
|
||
* E.g. <pre>{"count":148}</pre>
|
||
*
|
||
* In the case the query parameter <code>all_fields=true</code> each element of the resulting array contains the item representation:
|
||
* E.g.
|
||
* <pre>
|
||
* [
|
||
* {
|
||
* "name"="item0",
|
||
* ...,
|
||
* "private": false,
|
||
* "license_url": "http://www.opensource.org/licenses/AFL-3.0"
|
||
* },
|
||
* {
|
||
* "name"="item1",
|
||
* ...,
|
||
* "private": true,
|
||
* "license_url": "http://www.opensource.org/licenses/AFL-3.0"
|
||
* },
|
||
* ...,
|
||
* {
|
||
* "name"="itemN",
|
||
* ...,
|
||
* "private": false,
|
||
* "license_url": "http://www.opensource.org/licenses/AFL-3.0"
|
||
* }
|
||
*
|
||
* ]</pre>
|
||
*/
|
||
@GET
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
/* Catalogue-Member is not added to VRE members and is assumed as the default role in the catalogue for the VRE members. So we can't enforce
|
||
* @AuthorizationControl(allowedRoles={Role.CATALOGUE_MEMBER, Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
*/
|
||
@Override
|
||
public String list(@QueryParam(GCatConstants.LIMIT_QUERY_PARAMETER) @DefaultValue("10") int limit,
|
||
@QueryParam(GCatConstants.OFFSET_QUERY_PARAMETER) @DefaultValue("0") int offset) {
|
||
|
||
Boolean countOnly = false;
|
||
MultivaluedMap<String,String> queryParameters = uriInfo.getQueryParameters();
|
||
if(queryParameters.containsKey(GCatConstants.COUNT_QUERY_PARAMETER)) {
|
||
countOnly = Boolean.parseBoolean(queryParameters.get(GCatConstants.ALL_FIELDS_QUERY_PARAMETER).get(0));
|
||
}
|
||
|
||
if(countOnly) {
|
||
CKANPackage ckan = getInstance();
|
||
int size = ckan.count();
|
||
return createCountJson(size);
|
||
}else {
|
||
return list(limit, offset);
|
||
}
|
||
}
|
||
|
||
|
||
|
||
@POST
|
||
@Consumes(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public Response create(String json) {
|
||
return super.create(json);
|
||
}
|
||
|
||
@GET
|
||
@Path("/{" + ITEM_ID_PARAMETER + "}")
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Override
|
||
/* Catalogue-Member is not added to VRE members and is assumed as the default role in the catalogue for the VRE members. So we can't enforce
|
||
* @AuthorizationControl(allowedRoles={Role.CATALOGUE_MEMBER, Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
*/
|
||
public String read(@PathParam(ITEM_ID_PARAMETER) String id) {
|
||
return super.read(id);
|
||
}
|
||
|
||
@PUT
|
||
@Path("/{" + ITEM_ID_PARAMETER + "}")
|
||
@Consumes(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public String update(@PathParam(ITEM_ID_PARAMETER) String id, String json) {
|
||
return super.update(id, json);
|
||
}
|
||
|
||
@PATCH
|
||
@Path("/{" + ITEM_ID_PARAMETER + "}")
|
||
@Consumes(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public String patch(@PathParam(ITEM_ID_PARAMETER) String id, String json) {
|
||
return super.patch(id, json);
|
||
}
|
||
|
||
@DELETE
|
||
@Path("/{" + ITEM_ID_PARAMETER + "}")
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public Response delete(@PathParam(ITEM_ID_PARAMETER) String id,
|
||
@QueryParam(GCatConstants.PURGE_QUERY_PARAMETER) @DefaultValue("false") Boolean purge) {
|
||
return super.delete(id, purge);
|
||
}
|
||
|
||
@PURGE
|
||
@Path("/{" + ITEM_ID_PARAMETER + "}")
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public Response purge(@PathParam(ITEM_ID_PARAMETER) String id) {
|
||
return super.purge(id);
|
||
}
|
||
|
||
@Override
|
||
public Response delete(String name, boolean purge) throws WebServiceException {
|
||
return delete(name, new Boolean(purge));
|
||
}
|
||
|
||
protected void deleteAll(boolean purge) {
|
||
Thread thread = new Thread(new Runnable() {
|
||
@Override
|
||
public void run() {
|
||
CKANPackage ckan = getInstance();
|
||
String ret = ckan.deleteAll(purge);
|
||
logger.info("Result of delete all is {}", ret);
|
||
}
|
||
});
|
||
thread.start();
|
||
}
|
||
|
||
/**
|
||
* The bulk delete API provides a way to delete all the times matching certain criteria
|
||
* (see Filtering Listing options).
|
||
* The operation returns immediately to the client and continues in background.
|
||
* There is no way to monitor or stop the running operation.
|
||
*
|
||
* When invoked with no arguments, it deletes all the items of the invoking user in the default
|
||
* CKAN organization for the current context.
|
||
*
|
||
* If a Catalogue-Admins or above specifies the query parameter <em>own_only=false</em>
|
||
* it deletes all the items of all users for the CKAN organization for the current context.
|
||
* The service ignores the query parameter <em>own_only=false</em> if the requesting user is not
|
||
* Catalogue-Admins or above.
|
||
*
|
||
* <p style="font-weight:bold;">
|
||
* Please check the result using the items listing APIs to verify what you will delete.
|
||
* </p>
|
||
*
|
||
* <p>
|
||
* The deleted items are moved to the thrash by default.
|
||
* To completely remove the items (i.e. purge) the user can use the query parameter <em>purge=true</em>.
|
||
* <span style="font-weight:bold;">Please note that the purge action is not reversible.</span>
|
||
* </p>
|
||
*
|
||
* <p>
|
||
* By indicating the query parameter <em>purge=true</em> has the same result of using the bulk
|
||
* purge API using the <code>PURGE</code> HTTP Method.
|
||
* </p>
|
||
*
|
||
* @param purge <em>Default:false</em>) it completely removes all the items in the default CKAN organization.
|
||
* @return <code>202 Accepted</code> HTTP Status to indicate that the request has been properly take in charge.
|
||
* The operation will continue in background.
|
||
* @throws WebServiceException if an error occurs.
|
||
*/
|
||
@DELETE
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public Response bulkDelete(@QueryParam(GCatConstants.PURGE_QUERY_PARAMETER) @DefaultValue("false") boolean purge) {
|
||
deleteAll(purge);
|
||
return Response.status(Status.ACCEPTED).build();
|
||
}
|
||
|
||
/**
|
||
* The bulk purge API provides a way to completely remove all the times matching certain criteria
|
||
* (see Filtering Listing options). Please note that this action is not reversible.
|
||
* The operation returns immediately to the client and continues in background.
|
||
* There is no way to monitor or stop the running operation.
|
||
*
|
||
* When invoked with no arguments, it purges all the items of the invoking user in the default
|
||
* CKAN organization for the current context.
|
||
*
|
||
* If a Catalogue-Admins or above specifies the query parameter <em>own_only=false</em>,
|
||
* it purges all the items of all users for the CKAN organization for the current context.
|
||
* The service ignores the query parameter <em>own_only=false</em> if the requesting user is not
|
||
* Catalogue-Admins or above.
|
||
*
|
||
* <p style="font-weight:bold;">
|
||
* Please check the result using the items listing APIs to verify what you will purge.
|
||
* </p>
|
||
*
|
||
* <p>
|
||
* Invoking this API has the same result of using the bulk delete API using the <code>DELETE</code> HTTP Method
|
||
* with the query parameters <em>purge=true</em>.
|
||
* </p>
|
||
*
|
||
* @return <code>202 Accepted</code> HTTP Status to indicate that the request has been properly take in charge.
|
||
* The operation will continue in background.
|
||
* @throws WebServiceException if an error occurs.
|
||
*/
|
||
@PURGE
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Override
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER}, exception=NotAuthorizedException.class)
|
||
public Response bulkPurge() {
|
||
return bulkDelete(true);
|
||
}
|
||
|
||
@POST
|
||
@Path("/{" + ITEM_ID_PARAMETER + "}")
|
||
@Consumes(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
@Produces(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8)
|
||
// @AuthorizationControl(allowedRoles={Role.CATALOGUE_EDITOR, Role.CATALOGUE_ADMIN, Role.CATALOGUE_MANAGER, Moderated.CATALOGUE_MODERATOR}, exception=NotAuthorizedException.class)
|
||
public Response moderate(@PathParam(ITEM_ID_PARAMETER) String id, String json) {
|
||
setCalledMethod("POST /" + COLLECTION_PARAMETER + "/{" + ID_PARAMETER + "}");
|
||
CKANPackage ckanPackage = getInstance();
|
||
ckanPackage.setName(id);
|
||
String ret = ckanPackage.moderate(json);
|
||
ResponseBuilder responseBuilder = Response.status(Status.ACCEPTED);
|
||
if(ret!=null) {
|
||
responseBuilder.entity(ret).type(GCatConstants.APPLICATION_JSON_CHARSET_UTF_8);
|
||
}
|
||
return responseBuilder.build();
|
||
}
|
||
|
||
}
|