|
|
|
|
@ -8,12 +8,11 @@ import java.util.Map;
|
|
|
|
|
|
|
|
|
|
import javax.servlet.http.HttpServletRequest; |
|
|
|
|
|
|
|
|
|
import org.gcube.common.authorization.library.provider.AccessTokenProvider; |
|
|
|
|
import org.gcube.common.authorization.library.provider.SecurityTokenProvider; |
|
|
|
|
import org.gcube.common.authorization.library.provider.UmaJWTProvider; |
|
|
|
|
import org.gcube.common.portal.PortalContext; |
|
|
|
|
import org.gcube.common.scope.api.ScopeProvider; |
|
|
|
|
import org.gcube.oidc.rest.JWTToken; |
|
|
|
|
import org.gcube.portal.oidc.lr62.JWTTokenUtil; |
|
|
|
|
import org.gcube.portal.oidc.lr62.OIDCUmaUtil; |
|
|
|
|
import org.gcube.portal.wssynclibrary.shared.ItemNotSynched; |
|
|
|
|
import org.gcube.portal.wssynclibrary.shared.WorkspaceFolderLocked; |
|
|
|
|
@ -29,11 +28,12 @@ import org.gcube.vomanagement.usermanagement.model.GCubeUser;
|
|
|
|
|
import org.slf4j.Logger; |
|
|
|
|
import org.slf4j.LoggerFactory; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/** |
|
|
|
|
* The Class SyncronizeWithThredds. |
|
|
|
|
* |
|
|
|
|
* @author Francesco Mangiacrapa francesco.mangiacrapa@isti.cnr.it Feb 7, 2018 |
|
|
|
|
* updated May, 2021 |
|
|
|
|
* updated May, 2021 |
|
|
|
|
*/ |
|
|
|
|
public class SyncronizeWithThredds { |
|
|
|
|
|
|
|
|
|
@ -84,31 +84,40 @@ public class SyncronizeWithThredds {
|
|
|
|
|
logger.debug("Setting UMA context with target scope: " + targetScope + ", user: " + user.getUsername()); |
|
|
|
|
String previousUMAToken = null; |
|
|
|
|
try { |
|
|
|
|
previousUMAToken = AccessTokenProvider.instance.get(); |
|
|
|
|
previousUMAToken = UmaJWTProvider.instance.get(); |
|
|
|
|
JWTToken umaToken = OIDCUmaUtil.getUMAToken(httpRequest, user.getUsername(), targetScope); |
|
|
|
|
|
|
|
|
|
if (umaToken == null) { |
|
|
|
|
logger.info("Uma Token is null or empty, skipping operation and returning null"); |
|
|
|
|
return null; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
String subAccessToken = umaToken.getAccessTokenString().substring(0, 10); |
|
|
|
|
logger.info("Going to set UMA Token: " + subAccessToken+ "-MASKED-TOKEN"); |
|
|
|
|
// UmaJWTProvider.instance.set(umaToken);
|
|
|
|
|
AccessTokenProvider.instance.set(JWTTokenUtil.getAccessTokenString(umaToken)); |
|
|
|
|
logger.debug("UmaJWTProvider instance set performed to : " + subAccessToken+ "-MASKED-TOKEN"); |
|
|
|
|
|
|
|
|
|
setContextForUMA(umaToken.getRaw()); |
|
|
|
|
} catch (Exception e) { |
|
|
|
|
logger.warn("Error on set context for UMA: ", e); |
|
|
|
|
if (previousUMAToken != null) { |
|
|
|
|
logger.info("Setting previous UMA Token: " + previousUMAToken.substring(0, 10) + "-MASKED-TOKEN"); |
|
|
|
|
AccessTokenProvider.instance.set(previousUMAToken); |
|
|
|
|
setContextForUMA(previousUMAToken); |
|
|
|
|
} |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
return previousUMAToken; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
/** |
|
|
|
|
* Reset context for UMA. |
|
|
|
|
* |
|
|
|
|
* @param umaToken the uma token |
|
|
|
|
* @return the string |
|
|
|
|
*/ |
|
|
|
|
private void setContextForUMA(String umaToken) { |
|
|
|
|
logger.info("called set context for UMA"); |
|
|
|
|
|
|
|
|
|
if (umaToken == null || umaToken.isEmpty()) { |
|
|
|
|
logger.info("Uma Token is null or empty, skipping operation"); |
|
|
|
|
return; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
logger.info("Going to set UMA Token: " + umaToken.substring(0, 10) + "-MASKED-TOKEN"); |
|
|
|
|
UmaJWTProvider.instance.set(umaToken); |
|
|
|
|
logger.debug("UmaJWTProvider instance set performed to : " + umaToken.substring(0, 10) + "-MASKED-TOKEN"); |
|
|
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
/** |
|
|
|
|
* Checks if is item synched. |
|
|
|
|
* |
|
|
|
|
@ -131,19 +140,19 @@ public class SyncronizeWithThredds {
|
|
|
|
|
/** |
|
|
|
|
* Gets the configuration. |
|
|
|
|
* |
|
|
|
|
* @param folderId the folder id |
|
|
|
|
* @param loadStatus the load status. If true it loads the status by calling |
|
|
|
|
* the {@link SyncEngine#check(String, boolean)} but it is |
|
|
|
|
* time consuming. Otherwise it calls the |
|
|
|
|
* {@link SyncEngine#getConfig(String)} without sync status |
|
|
|
|
* @param folderId the folder id |
|
|
|
|
* @param loadStatus the load status. If true it loads the status by calling the |
|
|
|
|
* {@link SyncEngine#check(String, boolean)} but it is time |
|
|
|
|
* consuming. Otherwise it calls the |
|
|
|
|
* {@link SyncEngine#getConfig(String)} without sync status |
|
|
|
|
* @param httpRequest the http request |
|
|
|
|
* @param user the user |
|
|
|
|
* @param user the user |
|
|
|
|
* @return the configuration |
|
|
|
|
* @throws ItemNotSynched the item not synched |
|
|
|
|
* @throws Exception the exception |
|
|
|
|
*/ |
|
|
|
|
public ThSyncFolderDescriptor getConfiguration(String folderId, boolean loadStatus, HttpServletRequest httpRequest, |
|
|
|
|
GCubeUser user) throws ItemNotSynched, Exception { |
|
|
|
|
public ThSyncFolderDescriptor getConfiguration(String folderId, boolean loadStatus, HttpServletRequest httpRequest, GCubeUser user) |
|
|
|
|
throws ItemNotSynched, Exception { |
|
|
|
|
|
|
|
|
|
ThSyncFolderDescriptor config = null; |
|
|
|
|
String wsScope = PortalContext.getConfiguration().getCurrentScope(httpRequest); |
|
|
|
|
@ -153,11 +162,11 @@ public class SyncronizeWithThredds {
|
|
|
|
|
String previousUmaToken = null; |
|
|
|
|
String targetScope = null; |
|
|
|
|
try { |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
setContextParameters(wsScope, wsUserToken); |
|
|
|
|
|
|
|
|
|
if (loadStatus) { |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
config = workspaceThreddsSynchronizeLib.getConfiguration(folderId); |
|
|
|
|
// context switch for UMA token
|
|
|
|
|
targetScope = config.getConfiguration().getTargetContext(); |
|
|
|
|
@ -165,10 +174,10 @@ public class SyncronizeWithThredds {
|
|
|
|
|
|
|
|
|
|
// context switch for gcube-token and scope
|
|
|
|
|
// getting token into target scope
|
|
|
|
|
String targetScopeUserToken = PortalContext.getConfiguration().getCurrentUserToken(targetScope, |
|
|
|
|
String targetScopeUserToken = PortalContext.getConfiguration().getCurrentUserToken(targetScope, |
|
|
|
|
user.getUsername()); |
|
|
|
|
setContextParameters(targetScope, targetScopeUserToken); |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
config = workspaceThreddsSynchronizeLib.checkItemSynched(folderId); |
|
|
|
|
} else { |
|
|
|
|
config = workspaceThreddsSynchronizeLib.getConfiguration(folderId); |
|
|
|
|
@ -178,19 +187,18 @@ public class SyncronizeWithThredds {
|
|
|
|
|
logger.debug("WorkspaceNotSynchedException catched. The item with id: " + folderId + " is not synched"); |
|
|
|
|
} catch (WorkspaceFolderLocked e1) { |
|
|
|
|
logger.info("The folder with id: " + folderId + " is locked"); |
|
|
|
|
throw new Exception( |
|
|
|
|
"The folder with id: " + folderId + " is currently locked. Another sync process is in progress"); |
|
|
|
|
throw new Exception("The folder with id: "+folderId +" is currently locked. Another sync process is in progress"); |
|
|
|
|
} catch (Exception e) { |
|
|
|
|
logger.error("Error on reading the configuration for id: " + folderId, e); |
|
|
|
|
throw e; |
|
|
|
|
} finally { |
|
|
|
|
|
|
|
|
|
if (previousUmaToken != null) { |
|
|
|
|
if(previousUmaToken!=null) { |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
AccessTokenProvider.instance.set(previousUmaToken); |
|
|
|
|
setContextForUMA(previousUmaToken); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
if (originalScope != null && targetScope != null && originalScope.compareTo(targetScope) != 0) { |
|
|
|
|
if (originalScope != null && targetScope!=null && originalScope.compareTo(targetScope) != 0) { |
|
|
|
|
logger.info("Resetting the scope: " + originalScope + " which was original WS context"); |
|
|
|
|
ScopeProvider.instance.set(originalScope); |
|
|
|
|
if (originalToken != null) { |
|
|
|
|
@ -242,10 +250,8 @@ public class SyncronizeWithThredds {
|
|
|
|
|
|
|
|
|
|
} finally { |
|
|
|
|
|
|
|
|
|
if (previousUmaToken != null) { |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
AccessTokenProvider.instance.set(previousUmaToken); |
|
|
|
|
} |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
setContextForUMA(previousUmaToken); |
|
|
|
|
|
|
|
|
|
if (originalScope != null && originalScope.compareTo(targetScope) != 0) { |
|
|
|
|
logger.info("Resetting the scope: " + originalScope + " which was original WS context"); |
|
|
|
|
@ -326,15 +332,13 @@ public class SyncronizeWithThredds {
|
|
|
|
|
return workspaceThreddsSynchronizeLib.doSync(folderId); |
|
|
|
|
|
|
|
|
|
} catch (Exception e) { |
|
|
|
|
logger.error("Error on doSyncFolder for folderId: " + folderId, e); |
|
|
|
|
logger.error("Error on doSyncFolder for folderId: "+folderId, e); |
|
|
|
|
throw e; |
|
|
|
|
|
|
|
|
|
} finally { |
|
|
|
|
|
|
|
|
|
if (previousUmaToken != null) { |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
AccessTokenProvider.instance.set(previousUmaToken); |
|
|
|
|
} |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
setContextForUMA(previousUmaToken); |
|
|
|
|
|
|
|
|
|
if (originalScope != null && originalScope.compareTo(targetScope) != 0) { |
|
|
|
|
logger.info("Resetting the scope: " + originalScope + " which was original WS context"); |
|
|
|
|
@ -404,10 +408,8 @@ public class SyncronizeWithThredds {
|
|
|
|
|
|
|
|
|
|
} finally { |
|
|
|
|
|
|
|
|
|
if (previousUmaToken != null) { |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
AccessTokenProvider.instance.set(previousUmaToken); |
|
|
|
|
} |
|
|
|
|
// resetting UMA token in the WS scope
|
|
|
|
|
setContextForUMA(previousUmaToken); |
|
|
|
|
|
|
|
|
|
if (originalScope != null && originalScope.compareTo(targetScope) != 0) { |
|
|
|
|
logger.info("Resetting the scope: " + originalScope + " which was original WS context"); |
|
|
|
|
|
