mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
28788 Commits
59 Branches
Tree: 05c8a2e004
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '05c8a2e004'
${ noResults }
sonarqube/server/sonar-server/src/main/java/org/sonar/server/ce/queue/ReportSubmitter.java

ReportSubmitter.java 9.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2019 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.ce.queue;

  21. 

  22. import java.io.InputStream;

  23. import java.util.ArrayList;

  24. import java.util.List;

  25. import java.util.Map;

  26. import java.util.Optional;

  27. import javax.annotation.Nullable;

  28. import org.sonar.api.resources.Qualifiers;

  29. import org.sonar.api.resources.Scopes;

  30. import org.sonar.api.server.ServerSide;

  31. import org.sonar.api.web.UserRole;

  32. import org.sonar.ce.queue.CeQueue;

  33. import org.sonar.ce.queue.CeTaskSubmit;

  34. import org.sonar.ce.task.CeTask;

  35. import org.sonar.db.DbClient;

  36. import org.sonar.db.DbSession;

  37. import org.sonar.db.ce.CeTaskTypes;

  38. import org.sonar.db.component.BranchDto;

  39. import org.sonar.db.component.ComponentDto;

  40. import org.sonar.db.organization.OrganizationDto;

  41. import org.sonar.db.permission.OrganizationPermission;

  42. import org.sonar.server.component.ComponentUpdater;

  43. import org.sonar.server.component.NewComponent;

  44. import org.sonar.server.exceptions.BadRequestException;

  45. import org.sonar.server.exceptions.NotFoundException;

  46. import org.sonar.server.permission.PermissionTemplateService;

  47. import org.sonar.server.user.UserSession;

  48. 

  49. import static com.google.common.base.Preconditions.checkArgument;

  50. import static java.lang.String.format;

  51. import static org.apache.commons.lang.StringUtils.defaultIfBlank;

  52. import static org.sonar.server.component.NewComponent.newComponentBuilder;

  53. import static org.sonar.server.user.AbstractUserSession.insufficientPrivilegesException;

  54. 

  55. @ServerSide

  56. public class ReportSubmitter {

  57. 

  58.   private final CeQueue queue;

  59.   private final UserSession userSession;

  60.   private final ComponentUpdater componentUpdater;

  61.   private final PermissionTemplateService permissionTemplateService;

  62.   private final DbClient dbClient;

  63.   private final BranchSupport branchSupport;

  64. 

  65.   public ReportSubmitter(CeQueue queue, UserSession userSession, ComponentUpdater componentUpdater,

  66.     PermissionTemplateService permissionTemplateService, DbClient dbClient, BranchSupport branchSupport) {

  67.     this.queue = queue;

  68.     this.userSession = userSession;

  69.     this.componentUpdater = componentUpdater;

  70.     this.permissionTemplateService = permissionTemplateService;

  71.     this.dbClient = dbClient;

  72.     this.branchSupport = branchSupport;

  73.   }

  74. 

  75.   /**

  76.    * @throws NotFoundException if the organization with the specified key does not exist

  77.    * @throws IllegalArgumentException if the organization with the specified key is not the organization of the specified project (when it already exists in DB)

  78.    */

  79.   public CeTask submit(String organizationKey, String projectKey, @Nullable String projectName,

  80.     Map<String, String> characteristics, InputStream reportInput) {

  81.     try (DbSession dbSession = dbClient.openSession(false)) {

  82.       OrganizationDto organizationDto = getOrganizationDtoOrFail(dbSession, organizationKey);

  83.       BranchSupport.ComponentKey componentKey = branchSupport.createComponentKey(projectKey, characteristics);

  84.       Optional<ComponentDto> existingComponent = dbClient.componentDao().selectByKey(dbSession, componentKey.getDbKey());

  85.       validateProject(dbSession, existingComponent, projectKey);

  86.       ensureOrganizationIsConsistent(existingComponent, organizationDto);

  87.       ComponentDto component = existingComponent.orElseGet(() -> createComponent(dbSession, organizationDto, componentKey, projectName));

  88.       checkScanPermission(component);

  89.       return submitReport(dbSession, reportInput, component, characteristics);

  90.     }

  91.   }

  92. 

  93.   private void checkScanPermission(ComponentDto project) {

  94.     // this is a specific and inconsistent behavior. For legacy reasons, "technical users"

  95.     // defined on an organization should be able to analyze a project even if

  96.     // they don't have the direct permission on the project.

  97.     // That means that dropping the permission on the project does not have any effects

  98.     // if user has still the permission on the organization

  99.     if (!userSession.hasComponentPermission(UserRole.SCAN, project) &&

  100.       !userSession.hasPermission(OrganizationPermission.SCAN, project.getOrganizationUuid())) {

  101.       throw insufficientPrivilegesException();

  102.     }

  103.   }

  104. 

  105.   private OrganizationDto getOrganizationDtoOrFail(DbSession dbSession, String organizationKey) {

  106.     return dbClient.organizationDao().selectByKey(dbSession, organizationKey)

  107.       .orElseThrow(() -> new NotFoundException(format("Organization with key '%s' does not exist", organizationKey)));

  108.   }

  109. 

  110.   private void validateProject(DbSession dbSession, Optional<ComponentDto> project, String rawProjectKey) {

  111.     List<String> errors = new ArrayList<>();

  112.     if (!project.isPresent()) {

  113.       return;

  114.     }

  115. 

  116.     ComponentDto component = project.get();

  117.     if (!Qualifiers.PROJECT.equals(component.qualifier()) || !Scopes.PROJECT.equals(component.scope())) {

  118.       errors.add(format("Component '%s' is not a project", rawProjectKey));

  119.     }

  120.     if (!component.projectUuid().equals(component.uuid())) {

  121.       // Project key is already used as a module of another project

  122.       ComponentDto anotherBaseProject = dbClient.componentDao().selectOrFailByUuid(dbSession, component.projectUuid());

  123.       errors.add(format("The project '%s' is already defined in SonarQube but as a module of project '%s'. "

  124.         + "If you really want to stop directly analysing project '%s', please first delete it from SonarQube and then relaunch the analysis of project '%s'.",

  125.         rawProjectKey, anotherBaseProject.getKey(), anotherBaseProject.getKey(), rawProjectKey));

  126.     }

  127.     if (!errors.isEmpty()) {

  128.       throw BadRequestException.create(errors);

  129.     }

  130.   }

  131. 

  132.   private static void ensureOrganizationIsConsistent(Optional<ComponentDto> project, OrganizationDto organizationDto) {

  133.     if (project.isPresent()) {

  134.       checkArgument(project.get().getOrganizationUuid().equals(organizationDto.getUuid()),

  135.         "Organization of component with key '%s' does not match specified organization '%s'",

  136.         project.get().getDbKey(), organizationDto.getKey());

  137.     }

  138.   }

  139. 

  140.   private ComponentDto createComponent(DbSession dbSession, OrganizationDto organization, BranchSupport.ComponentKey componentKey, @Nullable String projectName) {

  141.     if (componentKey.isMainBranch()) {

  142.       ComponentDto project = createProject(dbSession, organization, componentKey, projectName);

  143.       componentUpdater.commitAndIndex(dbSession, project);

  144.       return project;

  145.     }

  146. 

  147.     Optional<ComponentDto> existingMainComponent = dbClient.componentDao().selectByKey(dbSession, componentKey.getKey());

  148.     ComponentDto mainComponentDto = existingMainComponent

  149.       .orElseGet(() -> createProject(dbSession, organization, componentKey.getMainBranchComponentKey(), projectName));

  150.     BranchDto mainComponentBranchDto = dbClient.branchDao().selectByUuid(dbSession, mainComponentDto.uuid())

  151.       .orElseThrow(() -> new IllegalStateException("Branch of main component does not exist"));

  152.     ComponentDto branchComponent = branchSupport.createBranchComponent(dbSession, componentKey, organization, mainComponentDto, mainComponentBranchDto);

  153.     if (existingMainComponent.isPresent()) {

  154.       dbSession.commit();

  155.     } else {

  156.       componentUpdater.commitAndIndex(dbSession, mainComponentDto);

  157.     }

  158.     return branchComponent;

  159.   }

  160. 

  161.   private ComponentDto createProject(DbSession dbSession, OrganizationDto organization, BranchSupport.ComponentKey componentKey,

  162.     @Nullable String projectName) {

  163.     userSession.checkPermission(OrganizationPermission.PROVISION_PROJECTS, organization);

  164.     Integer userId = userSession.getUserId();

  165. 

  166.     boolean wouldCurrentUserHaveScanPermission = permissionTemplateService.wouldUserHaveScanPermissionWithDefaultTemplate(

  167.       dbSession, organization.getUuid(), userId, componentKey.getDbKey());

  168.     if (!wouldCurrentUserHaveScanPermission) {

  169.       throw insufficientPrivilegesException();

  170.     }

  171. 

  172.     boolean newProjectPrivate = dbClient.organizationDao().getNewProjectPrivate(dbSession, organization);

  173. 

  174.     NewComponent newProject = newComponentBuilder()

  175.       .setOrganizationUuid(organization.getUuid())

  176.       .setKey(componentKey.getKey())

  177.       .setName(defaultIfBlank(projectName, componentKey.getKey()))

  178.       .setQualifier(Qualifiers.PROJECT)

  179.       .setPrivate(newProjectPrivate)

  180.       .build();

  181.     return componentUpdater.createWithoutCommit(dbSession, newProject, userId);

  182.   }

  183. 

  184.   private CeTask submitReport(DbSession dbSession, InputStream reportInput, ComponentDto project, Map<String, String> characteristics) {

  185.     CeTaskSubmit.Builder submit = queue.prepareSubmit();

  186. 

  187.     // the report file must be saved before submitting the task

  188.     dbClient.ceTaskInputDao().insert(dbSession, submit.getUuid(), reportInput);

  189.     dbSession.commit();

  190. 

  191.     submit.setType(CeTaskTypes.REPORT);

  192.     submit.setComponent(CeTaskSubmit.Component.fromDto(project));

  193.     submit.setSubmitterUuid(userSession.getUuid());

  194.     submit.setCharacteristics(characteristics);

  195.     return queue.submit(submit.build());

  196.   }

  197. 

  198. }