2018-11-30 17:49:35 +01:00
|
|
|
package org.gcube.data.access.storagehub.services;
|
|
|
|
|
|
|
|
import java.util.ArrayList;
|
2018-12-17 14:55:43 +01:00
|
|
|
import java.util.Collections;
|
2018-11-30 17:49:35 +01:00
|
|
|
import java.util.Iterator;
|
|
|
|
import java.util.List;
|
|
|
|
|
|
|
|
import javax.inject.Inject;
|
|
|
|
import javax.jcr.Node;
|
2018-12-17 14:55:43 +01:00
|
|
|
import javax.jcr.NodeIterator;
|
2020-01-22 16:41:12 +01:00
|
|
|
import javax.jcr.PathNotFoundException;
|
|
|
|
import javax.jcr.RepositoryException;
|
2018-12-17 14:55:43 +01:00
|
|
|
import javax.jcr.query.QueryResult;
|
2018-11-30 17:49:35 +01:00
|
|
|
import javax.servlet.ServletContext;
|
2019-04-11 18:30:43 +02:00
|
|
|
import javax.ws.rs.Consumes;
|
2018-11-30 17:49:35 +01:00
|
|
|
import javax.ws.rs.DELETE;
|
2019-04-11 18:30:43 +02:00
|
|
|
import javax.ws.rs.FormParam;
|
2018-11-30 17:49:35 +01:00
|
|
|
import javax.ws.rs.GET;
|
|
|
|
import javax.ws.rs.POST;
|
|
|
|
import javax.ws.rs.Path;
|
|
|
|
import javax.ws.rs.PathParam;
|
|
|
|
import javax.ws.rs.Produces;
|
|
|
|
import javax.ws.rs.core.Context;
|
|
|
|
import javax.ws.rs.core.MediaType;
|
2020-01-22 16:41:12 +01:00
|
|
|
import javax.ws.rs.core.Response;
|
2018-11-30 17:49:35 +01:00
|
|
|
|
|
|
|
import org.apache.jackrabbit.api.JackrabbitSession;
|
|
|
|
import org.apache.jackrabbit.api.security.user.Authorizable;
|
|
|
|
import org.apache.jackrabbit.api.security.user.Query;
|
|
|
|
import org.apache.jackrabbit.api.security.user.QueryBuilder;
|
|
|
|
import org.apache.jackrabbit.api.security.user.User;
|
2018-12-17 14:55:43 +01:00
|
|
|
import org.apache.jackrabbit.core.security.principal.PrincipalImpl;
|
2019-10-09 11:52:48 +02:00
|
|
|
import org.gcube.common.authorization.control.annotations.AuthorizationControl;
|
2018-11-30 17:49:35 +01:00
|
|
|
import org.gcube.common.gxrest.response.outbound.GXOutboundErrorResponse;
|
2020-03-05 15:39:34 +01:00
|
|
|
import org.gcube.common.storagehub.model.Excludes;
|
2018-11-30 17:49:35 +01:00
|
|
|
import org.gcube.common.storagehub.model.exceptions.BackendGenericError;
|
2020-01-22 16:41:12 +01:00
|
|
|
import org.gcube.common.storagehub.model.exceptions.StorageHubException;
|
2020-03-05 15:39:34 +01:00
|
|
|
import org.gcube.common.storagehub.model.items.Item;
|
2018-12-17 14:55:43 +01:00
|
|
|
import org.gcube.common.storagehub.model.types.NodeProperty;
|
2018-11-30 17:49:35 +01:00
|
|
|
import org.gcube.data.access.storagehub.Constants;
|
|
|
|
import org.gcube.data.access.storagehub.Utils;
|
2019-10-09 11:52:48 +02:00
|
|
|
import org.gcube.data.access.storagehub.exception.MyAuthException;
|
2018-11-30 17:49:35 +01:00
|
|
|
import org.gcube.data.access.storagehub.handlers.CredentialHandler;
|
2020-03-05 15:39:34 +01:00
|
|
|
import org.gcube.data.access.storagehub.handlers.TrashHandler;
|
2018-12-17 14:55:43 +01:00
|
|
|
import org.gcube.data.access.storagehub.handlers.UnshareHandler;
|
2020-01-22 16:41:12 +01:00
|
|
|
import org.gcube.smartgears.utils.InnerMethodName;
|
2018-11-30 17:49:35 +01:00
|
|
|
import org.slf4j.Logger;
|
|
|
|
import org.slf4j.LoggerFactory;
|
|
|
|
|
|
|
|
@Path("users")
|
|
|
|
public class UserManager {
|
|
|
|
|
2020-01-22 16:41:12 +01:00
|
|
|
private static final String INFRASTRUCTURE_MANAGER_ROLE = "Infrastructure-Manager";
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
@Context ServletContext context;
|
2020-01-22 16:41:12 +01:00
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
private static final Logger log = LoggerFactory.getLogger(UserManager.class);
|
|
|
|
|
|
|
|
@Inject
|
|
|
|
RepositoryInitializer repository;
|
|
|
|
|
2018-12-17 14:55:43 +01:00
|
|
|
@Inject
|
|
|
|
UnshareHandler unshareHandler;
|
2020-03-05 15:39:34 +01:00
|
|
|
|
|
|
|
@Inject
|
|
|
|
TrashHandler trashHandler;
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
@GET
|
|
|
|
@Path("")
|
|
|
|
@Produces(MediaType.APPLICATION_JSON)
|
|
|
|
public List<String> getUsers(){
|
2020-01-22 16:41:12 +01:00
|
|
|
|
|
|
|
InnerMethodName.instance.set("getUsers");
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
JackrabbitSession session = null;
|
|
|
|
List<String> users= new ArrayList<>();
|
|
|
|
try {
|
|
|
|
session = (JackrabbitSession) repository.getRepository().login(CredentialHandler.getAdminCredentials(context));
|
|
|
|
|
|
|
|
Iterator<Authorizable> result = session.getUserManager().findAuthorizables(new Query() {
|
|
|
|
|
|
|
|
@Override
|
|
|
|
public <T> void build(QueryBuilder<T> builder) {
|
|
|
|
builder.setSelector(User.class);
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
|
|
|
while (result.hasNext()) {
|
|
|
|
Authorizable user = result.next();
|
2018-12-17 14:55:43 +01:00
|
|
|
log.debug("user {} found",user.getPrincipal().getName());
|
2018-11-30 17:49:35 +01:00
|
|
|
users.add(user.getPrincipal().getName());
|
|
|
|
}
|
|
|
|
}catch(Exception e) {
|
|
|
|
log.error("jcr error getting users", e);
|
|
|
|
GXOutboundErrorResponse.throwException(new BackendGenericError(e));
|
|
|
|
} finally {
|
|
|
|
if (session!=null)
|
|
|
|
session.logout();
|
|
|
|
}
|
|
|
|
return users;
|
|
|
|
}
|
|
|
|
|
|
|
|
@POST
|
|
|
|
@Path("")
|
2019-04-11 18:30:43 +02:00
|
|
|
@Consumes(MediaType.APPLICATION_FORM_URLENCODED)
|
2020-01-22 16:41:12 +01:00
|
|
|
@AuthorizationControl(allowedRoles={INFRASTRUCTURE_MANAGER_ROLE}, exception=MyAuthException.class)
|
2019-04-11 18:30:43 +02:00
|
|
|
public String createUser(@FormParam("user") String user, @FormParam("password") String password){
|
2020-01-22 16:41:12 +01:00
|
|
|
|
|
|
|
InnerMethodName.instance.set("createUser");
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
JackrabbitSession session = null;
|
|
|
|
String userId = null;
|
|
|
|
try {
|
|
|
|
session = (JackrabbitSession) repository.getRepository().login(CredentialHandler.getAdminCredentials(context));
|
2020-01-22 16:41:12 +01:00
|
|
|
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
org.apache.jackrabbit.api.security.user.UserManager usrManager = session.getUserManager();
|
|
|
|
|
|
|
|
User createdUser = usrManager.createUser(user, password);
|
|
|
|
userId = createdUser.getID();
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
Node homeNode = session.getNode("/Home");
|
|
|
|
Node userHome = homeNode.addNode(user, "nthl:home");
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-12-17 14:55:43 +01:00
|
|
|
//creating workspace folder
|
2018-11-30 17:49:35 +01:00
|
|
|
Node workspaceFolder = Utils.createFolderInternally(session, userHome, Constants.WORKSPACE_ROOT_FOLDER_NAME, "workspace of "+user, false, user, null);
|
2018-12-17 14:55:43 +01:00
|
|
|
//creating thrash folder
|
|
|
|
Utils.createFolderInternally(session, workspaceFolder, Constants.TRASH_ROOT_FOLDER_NAME, "trash of "+user, false, user, null);
|
|
|
|
//creating Vre container folder
|
|
|
|
Utils.createFolderInternally(session, workspaceFolder, Constants.VRE_FOLDER_PARENT_NAME, "special folder container of "+user, false, user, null);
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
session.save();
|
2020-01-22 16:41:12 +01:00
|
|
|
}catch(StorageHubException she ){
|
|
|
|
log.error(she.getErrorMessage(), she);
|
|
|
|
GXOutboundErrorResponse.throwException(she, Response.Status.fromStatusCode(she.getStatus()));
|
|
|
|
}catch(RepositoryException re ){
|
|
|
|
log.error("jcr error creating item", re);
|
|
|
|
GXOutboundErrorResponse.throwException(new BackendGenericError("jcr error creating item", re));
|
2018-11-30 17:49:35 +01:00
|
|
|
} finally {
|
|
|
|
if (session!=null)
|
|
|
|
session.logout();
|
|
|
|
}
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
return userId;
|
|
|
|
}
|
2019-03-26 17:09:26 +01:00
|
|
|
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
@DELETE
|
2020-01-22 16:41:12 +01:00
|
|
|
@Path("{user}")
|
|
|
|
@AuthorizationControl(allowedRoles={INFRASTRUCTURE_MANAGER_ROLE}, exception=MyAuthException.class)
|
|
|
|
public String deleteUser(@PathParam("user") String user){
|
|
|
|
|
|
|
|
InnerMethodName.instance.set("deleteUser");
|
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
JackrabbitSession session = null;
|
|
|
|
String userId = null;
|
|
|
|
try {
|
2020-01-22 16:41:12 +01:00
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
session = (JackrabbitSession) repository.getRepository().login(CredentialHandler.getAdminCredentials(context));
|
|
|
|
|
|
|
|
org.apache.jackrabbit.api.security.user.UserManager usrManager = session.getUserManager();
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2020-01-22 16:41:12 +01:00
|
|
|
org.gcube.common.storagehub.model.Path path = Utils.getWorkspacePath(user);
|
2019-03-26 17:09:26 +01:00
|
|
|
|
|
|
|
|
2018-12-17 14:55:43 +01:00
|
|
|
String sql2Query = String.format("SELECT * FROM [nthl:workspaceSharedItem] AS node WHERE ISDESCENDANTNODE('%s')", path.toPath());
|
|
|
|
|
|
|
|
log.info("query sent is {}",sql2Query);
|
2018-11-30 17:49:35 +01:00
|
|
|
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-12-17 14:55:43 +01:00
|
|
|
javax.jcr.query.Query jcrQuery = session.getWorkspace().getQueryManager().createQuery(sql2Query, Constants.QUERY_LANGUAGE);
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-12-17 14:55:43 +01:00
|
|
|
QueryResult result = jcrQuery.execute();
|
|
|
|
NodeIterator nodeIt = result.getNodes();
|
|
|
|
while (nodeIt.hasNext()) {
|
|
|
|
Node rNode = nodeIt.nextNode();
|
|
|
|
String title = rNode.hasProperty(NodeProperty.TITLE.toString()) ? rNode.getProperty(NodeProperty.TITLE.toString()).getString():"unknown";
|
|
|
|
log.debug("removing sharing for folder name {} with title {} and path {} ",rNode.getName(), title, rNode.getPath());
|
2020-01-22 16:41:12 +01:00
|
|
|
unshareHandler.unshare(session, Collections.singleton(user), rNode, user);
|
2018-12-17 14:55:43 +01:00
|
|
|
}
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2020-01-22 16:41:12 +01:00
|
|
|
Authorizable authorizable = usrManager.getAuthorizable(new PrincipalImpl(user));
|
|
|
|
if (authorizable!=null && !authorizable.isGroup()) {
|
|
|
|
log.info("removing user {}", user);
|
2018-11-30 17:49:35 +01:00
|
|
|
authorizable.remove();
|
2020-01-22 16:41:12 +01:00
|
|
|
} else log.warn("the user {} was already deleted", user);
|
|
|
|
|
|
|
|
org.gcube.common.storagehub.model.Path homePath = Utils.getHome(user);
|
2020-03-05 15:39:34 +01:00
|
|
|
org.gcube.common.storagehub.model.Path workspacePath = Utils.getWorkspacePath(user);
|
|
|
|
|
2020-01-22 16:41:12 +01:00
|
|
|
try {
|
2020-03-05 15:39:34 +01:00
|
|
|
Node workspaceNode = session.getNode(workspacePath.toPath());
|
|
|
|
Node homeNode = session.getNode(homePath.toPath());
|
|
|
|
List<Item> workspaceItems = Utils.getItemList(workspaceNode, Excludes.GET_ONLY_CONTENT, null, true, null);
|
|
|
|
trashHandler.removeNodes(session, workspaceItems);
|
|
|
|
homeNode.remove();
|
2020-01-22 16:41:12 +01:00
|
|
|
} catch (PathNotFoundException e) {
|
|
|
|
log.warn("{} home dir was already deleted", user);
|
2018-12-17 14:55:43 +01:00
|
|
|
}
|
2018-11-30 17:49:35 +01:00
|
|
|
session.save();
|
2020-01-22 16:41:12 +01:00
|
|
|
}catch(StorageHubException she ){
|
|
|
|
log.error(she.getErrorMessage(), she);
|
|
|
|
GXOutboundErrorResponse.throwException(she, Response.Status.fromStatusCode(she.getStatus()));
|
|
|
|
}catch(RepositoryException re ){
|
|
|
|
log.error("jcr error creating item", re);
|
|
|
|
GXOutboundErrorResponse.throwException(new BackendGenericError("jcr error creating item", re));
|
2018-11-30 17:49:35 +01:00
|
|
|
} finally {
|
|
|
|
if (session!=null)
|
|
|
|
session.logout();
|
|
|
|
}
|
2019-03-26 17:09:26 +01:00
|
|
|
|
2018-11-30 17:49:35 +01:00
|
|
|
return userId;
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|