--- /dev/null
+/*
+ * SonarQube
+ * Copyright (C) 2009-2021 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.plugins;
+
+import java.util.Optional;
+
+import org.picocontainer.Startable;
+import org.sonar.core.extension.PluginRiskConsent;
+import org.sonar.db.DbClient;
+import org.sonar.db.DbSession;
+import org.sonar.db.property.PropertyDto;
+
+import static org.sonar.core.config.CorePropertyDefinitions.PLUGINS_RISK_CONSENT;
+import static org.sonar.core.extension.PluginRiskConsent.NOT_ACCEPTED;
+import static org.sonar.core.extension.PluginRiskConsent.REQUIRED;
+
+public class PluginConsentVerifier implements Startable {
+ private final ServerPluginRepository pluginRepository;
+ private final DbClient dbClient;
+
+ public PluginConsentVerifier(ServerPluginRepository pluginRepository, DbClient dbClient) {
+ this.pluginRepository = pluginRepository;
+ this.dbClient = dbClient;
+ }
+
+ @Override
+ public void start() {
+ boolean hasExternalPlugins = pluginRepository.getPlugins().stream().anyMatch(plugin -> plugin.getType().equals(PluginType.EXTERNAL));
+ try (DbSession session = dbClient.openSession(false)) {
+ PropertyDto property = Optional.ofNullable(dbClient.propertiesDao().selectGlobalProperty(session, PLUGINS_RISK_CONSENT))
+ .orElse(defaultPluginRiskConsentProperty());
+ if (hasExternalPlugins && NOT_ACCEPTED == PluginRiskConsent.valueOf(property.getValue())) {
+ property.setValue(REQUIRED.name());
+ dbClient.propertiesDao().saveProperty(session, property);
+ session.commit();
+ } else if (!hasExternalPlugins && REQUIRED == PluginRiskConsent.valueOf(property.getValue())) {
+ property.setValue(NOT_ACCEPTED.name());
+ dbClient.propertiesDao().saveProperty(session, property);
+ session.commit();
+ }
+ }
+ }
+
+ private static PropertyDto defaultPluginRiskConsentProperty() {
+ PropertyDto property = new PropertyDto();
+ property.setKey(PLUGINS_RISK_CONSENT);
+ property.setValue(NOT_ACCEPTED.name());
+ return property;
+ }
+
+ @Override
+ public void stop() {
+ // Nothing to do
+ }
+
+}
--- /dev/null
+/*
+ * SonarQube
+ * Copyright (C) 2009-2021 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.plugins;
+
+import org.junit.Rule;
+import org.junit.Test;
+import org.sonar.api.utils.System2;
+import org.sonar.core.extension.PluginRiskConsent;
+import org.sonar.db.DbClient;
+import org.sonar.db.DbTester;
+import org.sonar.db.property.PropertyDto;
+
+import static java.util.Arrays.asList;
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.when;
+import static org.sonar.core.config.CorePropertyDefinitions.PLUGINS_RISK_CONSENT;
+import static org.sonar.core.extension.PluginRiskConsent.ACCEPTED;
+import static org.sonar.core.extension.PluginRiskConsent.NOT_ACCEPTED;
+import static org.sonar.core.extension.PluginRiskConsent.REQUIRED;
+import static org.sonar.server.plugins.PluginType.BUNDLED;
+import static org.sonar.server.plugins.PluginType.EXTERNAL;
+
+public class PluginConsentVerifierTest {
+ @Rule
+ public DbTester db = DbTester.create(System2.INSTANCE);
+
+ private DbClient dbClient = db.getDbClient();
+ private ServerPluginRepository pluginRepository = mock(ServerPluginRepository.class);
+ private PluginConsentVerifier underTest = new PluginConsentVerifier(pluginRepository, dbClient);
+
+ @Test
+ public void require_consent_when_exist_external_plugins_and_not_accepted() {
+ setupExternalPluginConsent(NOT_ACCEPTED);
+ setupExternalPlugin();
+
+ underTest.start();
+
+ assertThat(dbClient.propertiesDao().selectGlobalProperty(PLUGINS_RISK_CONSENT))
+ .extracting(PropertyDto::getValue)
+ .isEqualTo(REQUIRED.name());
+ }
+
+ @Test
+ public void require_consent_when_exist_external_plugins_and_consent_property_not_exist() {
+ setupExternalPlugin();
+
+ underTest.start();
+
+ assertThat(dbClient.propertiesDao().selectGlobalProperty(PLUGINS_RISK_CONSENT))
+ .extracting(PropertyDto::getValue)
+ .isEqualTo(REQUIRED.name());
+ }
+
+ @Test
+ public void consent_does_not_change_when_value_is_accepted() {
+ setupExternalPluginConsent(ACCEPTED);
+ setupExternalPlugin();
+
+ underTest.start();
+
+ assertThat(dbClient.propertiesDao().selectGlobalProperty(PLUGINS_RISK_CONSENT))
+ .extracting(PropertyDto::getValue)
+ .isEqualTo(ACCEPTED.name());
+ }
+
+ @Test
+ public void consent_does_not_change_when_value_is_required() {
+ setupExternalPluginConsent(REQUIRED);
+ setupExternalPlugin();
+
+ underTest.start();
+
+ assertThat(dbClient.propertiesDao().selectGlobalProperty(PLUGINS_RISK_CONSENT))
+ .extracting(PropertyDto::getValue)
+ .isEqualTo(REQUIRED.name());
+ }
+
+ @Test
+ public void consent_should_be_not_accepted_when_there_is_no_external_plugin_and_never_been_accepted() {
+ setupExternalPluginConsent(REQUIRED);
+ setupBundledPlugin();
+
+ underTest.start();
+
+ assertThat(dbClient.propertiesDao().selectGlobalProperty(PLUGINS_RISK_CONSENT))
+ .extracting(PropertyDto::getValue)
+ .isEqualTo(NOT_ACCEPTED.name());
+ }
+
+ @Test
+ public void do_nothing_when_there_is_no_external_plugin() {
+ setupExternalPluginConsent(NOT_ACCEPTED);
+ setupBundledPlugin();
+
+ underTest.start();
+
+ assertThat(dbClient.propertiesDao().selectGlobalProperty(PLUGINS_RISK_CONSENT))
+ .extracting(PropertyDto::getValue)
+ .isEqualTo(NOT_ACCEPTED.name());
+ }
+
+ private void setupExternalPluginConsent(PluginRiskConsent pluginRiskConsent) {
+ dbClient.propertiesDao().saveProperty(new PropertyDto()
+ .setKey(PLUGINS_RISK_CONSENT)
+ .setValue(pluginRiskConsent.name()));
+ }
+
+ private void setupExternalPlugin() {
+ ServerPlugin plugin = mock(ServerPlugin.class);
+ when(plugin.getType()).thenReturn(EXTERNAL);
+ when(pluginRepository.getPlugins()).thenReturn(asList(plugin));
+ }
+
+ private void setupBundledPlugin() {
+ ServerPlugin plugin = mock(ServerPlugin.class);
+ when(plugin.getType()).thenReturn(BUNDLED);
+ when(pluginRepository.getPlugins()).thenReturn(asList(plugin));
+ }
+
+}
projects / sonarqube.git / commitdiff