mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16137 Commits
59 Branches
Tree: 1df1488036
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1df1488036'
${ noResults }
sonarqube/server/sonar-server/src/main/java/org/sonar/server/batch/ProjectRepositoryLoader.java

ProjectRepositoryLoader.java 17KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377 
  1. /*

  2.  * SonarQube, open source software quality management tool.

  3.  * Copyright (C) 2008-2014 SonarSource

  4.  * mailto:contact AT sonarsource DOT com

  5.  *

  6.  * SonarQube is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * SonarQube is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. 

  21. package org.sonar.server.batch;

  22. 

  23. import com.google.common.base.Function;

  24. import com.google.common.collect.ArrayListMultimap;

  25. import com.google.common.collect.Maps;

  26. import com.google.common.collect.Multimap;

  27. import java.util.Collections;

  28. import java.util.Date;

  29. import java.util.Iterator;

  30. import java.util.List;

  31. import java.util.Map;

  32. import javax.annotation.Nullable;

  33. import org.sonar.api.resources.Language;

  34. import org.sonar.api.resources.Languages;

  35. import org.sonar.api.rule.RuleKey;

  36. import org.sonar.api.server.ServerSide;

  37. import org.sonar.api.utils.log.Logger;

  38. import org.sonar.api.utils.log.Loggers;

  39. import org.sonar.api.web.UserRole;

  40. import org.sonar.batch.protocol.input.FileData;

  41. import org.sonar.batch.protocol.input.ProjectRepositories;

  42. import org.sonar.core.util.UtcDateUtils;

  43. import org.sonar.db.component.ComponentDto;

  44. import org.sonar.db.component.FilePathWithHashDto;

  45. import org.sonar.core.permission.GlobalPermissions;

  46. import org.sonar.db.DbSession;

  47. import org.sonar.db.MyBatis;

  48. import org.sonar.db.property.PropertyDto;

  49. import org.sonar.db.qualityprofile.QualityProfileDto;

  50. import org.sonar.server.db.DbClient;

  51. import org.sonar.server.exceptions.ForbiddenException;

  52. import org.sonar.server.qualityprofile.ActiveRule;

  53. import org.sonar.server.qualityprofile.QProfileFactory;

  54. import org.sonar.server.qualityprofile.QProfileLoader;

  55. import org.sonar.server.rule.Rule;

  56. import org.sonar.server.rule.RuleService;

  57. import org.sonar.server.rule.index.RuleNormalizer;

  58. import org.sonar.server.rule.index.RuleQuery;

  59. import org.sonar.server.search.QueryContext;

  60. import org.sonar.server.search.Result;

  61. import org.sonar.server.user.UserSession;

  62. 

  63. import static com.google.common.collect.Lists.newArrayList;

  64. import static com.google.common.collect.Maps.newHashMap;

  65. 

  66. @ServerSide

  67. public class ProjectRepositoryLoader {

  68. 

  69.   private static final Logger LOG = Loggers.get(ProjectRepositoryLoader.class);

  70. 

  71.   private final DbClient dbClient;

  72.   private final QProfileFactory qProfileFactory;

  73.   private final QProfileLoader qProfileLoader;

  74.   private final RuleService ruleService;

  75.   private final Languages languages;

  76.   private final UserSession userSession;

  77. 

  78.   public ProjectRepositoryLoader(DbClient dbClient, QProfileFactory qProfileFactory, QProfileLoader qProfileLoader, RuleService ruleService,

  79.                                  Languages languages, UserSession userSession) {

  80.     this.dbClient = dbClient;

  81.     this.qProfileFactory = qProfileFactory;

  82.     this.qProfileLoader = qProfileLoader;

  83.     this.ruleService = ruleService;

  84.     this.languages = languages;

  85.     this.userSession = userSession;

  86.   }

  87. 

  88.   public ProjectRepositories load(ProjectRepositoryQuery query) {

  89.     boolean hasScanPerm = userSession.hasGlobalPermission(GlobalPermissions.SCAN_EXECUTION);

  90.     checkPermission(query.isPreview());

  91. 

  92.     DbSession session = dbClient.openSession(false);

  93.     try {

  94.       ProjectRepositories ref = new ProjectRepositories();

  95.       String projectKey = query.getModuleKey();

  96.       ComponentDto module = dbClient.componentDao().selectNullableByKey(session, query.getModuleKey());

  97.       // Current project/module can be null when analysing a new project

  98.       if (module != null) {

  99.         // Scan permission is enough to analyze all projects but preview permission is limited to projects user can access

  100.         if (query.isPreview() && !userSession.hasProjectPermissionByUuid(UserRole.USER, module.projectUuid())) {

  101.           throw new ForbiddenException("You're not authorized to access to project '" + module.name() + "', please contact your SonarQube administrator.");

  102.         }

  103. 

  104.         ComponentDto project = getProject(module, session);

  105.         if (!project.key().equals(module.key())) {

  106.           addSettings(ref, module.getKey(), getSettingsFromParents(module, hasScanPerm, session));

  107.           projectKey = project.key();

  108.         }

  109. 

  110.         List<ComponentDto> modulesTree = dbClient.componentDao().selectEnabledDescendantModules(session, module.uuid());

  111.         Map<String, String> moduleUuidsByKey = moduleUuidsByKey(module, modulesTree);

  112.         Map<String, Long> moduleIdsByKey = moduleIdsByKey(module, modulesTree);

  113. 

  114.         List<PropertyDto> modulesTreeSettings = dbClient.propertiesDao().selectEnabledDescendantModuleProperties(module.uuid(), session);

  115.         TreeModuleSettings treeModuleSettings = new TreeModuleSettings(moduleUuidsByKey, moduleIdsByKey, modulesTree, modulesTreeSettings, module);

  116. 

  117.         addSettingsToChildrenModules(ref, query.getModuleKey(), Maps.<String, String>newHashMap(), treeModuleSettings, hasScanPerm, session);

  118.         List<FilePathWithHashDto> files = module.isRootProject() ?

  119.           dbClient.componentDao().selectEnabledFilesFromProject(session, module.uuid()) :

  120.           dbClient.componentDao().selectEnabledDescendantFiles(session, module.uuid());

  121.         addFileData(session, ref, modulesTree, files);

  122. 

  123.         // FIXME need real value but actually only used to know if there is a previous analysis in local issue tracking mode so any value is

  124.         // ok

  125.         ref.setLastAnalysisDate(new Date());

  126.       } else {

  127.         ref.setLastAnalysisDate(null);

  128.       }

  129. 

  130.       addProfiles(ref, projectKey, query.getProfileName(), session);

  131.       addActiveRules(ref);

  132.       addManualRules(ref);

  133.       return ref;

  134.     } finally {

  135.       MyBatis.closeQuietly(session);

  136.     }

  137.   }

  138. 

  139.   private ComponentDto getProject(ComponentDto module, DbSession session) {

  140.     if (!module.isRootProject()) {

  141.       return dbClient.componentDao().selectNullableByUuid(session, module.projectUuid());

  142.     } else {

  143.       return module;

  144.     }

  145.   }

  146. 

  147.   private Map<String, String> getSettingsFromParents(ComponentDto module, boolean hasScanPerm, DbSession session) {

  148.     List<ComponentDto> parents = newArrayList();

  149.     aggregateParentModules(module, parents, session);

  150.     Collections.reverse(parents);

  151. 

  152.     Map<String, String> parentProperties = newHashMap();

  153.     for (ComponentDto parent : parents) {

  154.       parentProperties.putAll(getPropertiesMap(dbClient.propertiesDao().selectProjectProperties(session, parent.key()), hasScanPerm));

  155.     }

  156.     return parentProperties;

  157.   }

  158. 

  159.   private void aggregateParentModules(ComponentDto component, List<ComponentDto> parents, DbSession session) {

  160.     String moduleUuid = component.moduleUuid();

  161.     if (moduleUuid != null) {

  162.       ComponentDto parent = dbClient.componentDao().selectByUuid(session, moduleUuid);

  163.       if (parent != null) {

  164.         parents.add(parent);

  165.         aggregateParentModules(parent, parents, session);

  166.       }

  167.     }

  168.   }

  169. 

  170.   private void addSettingsToChildrenModules(ProjectRepositories ref, String moduleKey, Map<String, String> parentProperties, TreeModuleSettings treeModuleSettings,

  171.     boolean hasScanPerm, DbSession session) {

  172.     Map<String, String> currentParentProperties = newHashMap();

  173.     currentParentProperties.putAll(parentProperties);

  174.     currentParentProperties.putAll(getPropertiesMap(treeModuleSettings.findModuleSettings(moduleKey), hasScanPerm));

  175.     addSettings(ref, moduleKey, currentParentProperties);

  176. 

  177.     for (ComponentDto childModule : treeModuleSettings.findChildrenModule(moduleKey)) {

  178.       addSettings(ref, childModule.getKey(), currentParentProperties);

  179.       addSettingsToChildrenModules(ref, childModule.getKey(), currentParentProperties, treeModuleSettings, hasScanPerm, session);

  180.     }

  181.   }

  182. 

  183.   private void addSettings(ProjectRepositories ref, String module, Map<String, String> properties) {

  184.     if (!properties.isEmpty()) {

  185.       ref.addSettings(module, properties);

  186.     }

  187.   }

  188. 

  189.   private static Map<String, String> getPropertiesMap(List<PropertyDto> propertyDtos, boolean hasScanPerm) {

  190.     Map<String, String> properties = newHashMap();

  191.     for (PropertyDto propertyDto : propertyDtos) {

  192.       String key = propertyDto.getKey();

  193.       String value = propertyDto.getValue();

  194.       if (isPropertyAllowed(key, hasScanPerm)) {

  195.         properties.put(key, value);

  196.       }

  197.     }

  198.     return properties;

  199.   }

  200. 

  201.   private static boolean isPropertyAllowed(String key, boolean hasScanPerm) {

  202.     return !key.contains(".secured") || hasScanPerm;

  203.   }

  204. 

  205.   private void addProfiles(ProjectRepositories ref, @Nullable String projectKey, @Nullable String profileName, DbSession session) {

  206.     for (Language language : languages.all()) {

  207.       String languageKey = language.getKey();

  208.       QualityProfileDto qualityProfileDto = getProfile(languageKey, projectKey, profileName, session);

  209.       ref.addQProfile(new org.sonar.batch.protocol.input.QProfile(

  210.         qualityProfileDto.getKey(),

  211.         qualityProfileDto.getName(),

  212.         qualityProfileDto.getLanguage(),

  213.         UtcDateUtils.parseDateTime(qualityProfileDto.getRulesUpdatedAt())));

  214.     }

  215.   }

  216. 

  217.   /**

  218.    * First try to find a quality profile matching the given name (if provided) and current language

  219.    * If no profile found, try to find the quality profile set on the project (if provided)

  220.    * If still no profile found, try to find the default profile of the language

  221.    * <p/>

  222.    * Never return null because a default profile should always be set on ech language

  223.    */

  224.   private QualityProfileDto getProfile(String languageKey, @Nullable String projectKey, @Nullable String profileName, DbSession session) {

  225.     QualityProfileDto qualityProfileDto = profileName != null ? qProfileFactory.getByNameAndLanguage(session, profileName, languageKey) : null;

  226.     if (qualityProfileDto == null && projectKey != null) {

  227.       qualityProfileDto = qProfileFactory.getByProjectAndLanguage(session, projectKey, languageKey);

  228.     }

  229.     qualityProfileDto = qualityProfileDto != null ? qualityProfileDto : qProfileFactory.getDefault(session, languageKey);

  230.     if (qualityProfileDto != null) {

  231.       return qualityProfileDto;

  232.     } else {

  233.       throw new IllegalStateException(String.format("No quality profile can been found on language '%s' for project '%s'", languageKey, projectKey));

  234.     }

  235.   }

  236. 

  237.   private void addActiveRules(ProjectRepositories ref) {

  238.     for (org.sonar.batch.protocol.input.QProfile qProfile : ref.qProfiles()) {

  239.       // Load all rules of the profile language (only needed fields are loaded)

  240.       Map<RuleKey, Rule> languageRules = ruleByRuleKey(ruleService.search(new RuleQuery().setLanguages(newArrayList(qProfile.language())),

  241.         new QueryContext(userSession).setLimit(100).setFieldsToReturn(newArrayList(

  242.           RuleNormalizer.RuleField.KEY.field(), RuleNormalizer.RuleField.NAME.field(), RuleNormalizer.RuleField.INTERNAL_KEY.field(), RuleNormalizer.RuleField.TEMPLATE_KEY.field()

  243.           )).setScroll(true))

  244.         .scroll());

  245.       for (Iterator<ActiveRule> activeRuleIterator = qProfileLoader.findActiveRulesByProfile(qProfile.key()); activeRuleIterator.hasNext();) {

  246.         ActiveRule activeRule = activeRuleIterator.next();

  247.         Rule rule = languageRules.get(activeRule.key().ruleKey());

  248.         if (rule == null) {

  249.           // It should never happen, but we need some log in case it happens

  250.           LOG.warn("Rule could not be found on active rule '{}'", activeRule.key());

  251.         } else {

  252.           RuleKey templateKey = rule.templateKey();

  253.           org.sonar.batch.protocol.input.ActiveRule inputActiveRule = new org.sonar.batch.protocol.input.ActiveRule(

  254.             activeRule.key().ruleKey().repository(),

  255.             activeRule.key().ruleKey().rule(),

  256.             templateKey != null ? templateKey.rule() : null,

  257.             rule.name(),

  258.             activeRule.severity(),

  259.             rule.internalKey(),

  260.             qProfile.language());

  261.           for (Map.Entry<String, String> entry : activeRule.params().entrySet()) {

  262.             inputActiveRule.addParam(entry.getKey(), entry.getValue());

  263.           }

  264.           ref.addActiveRule(inputActiveRule);

  265.         }

  266.       }

  267.     }

  268.   }

  269. 

  270.   private Map<RuleKey, Rule> ruleByRuleKey(Iterator<Rule> rules) {

  271.     return Maps.uniqueIndex(rules, MatchRuleKey.INSTANCE);

  272.   }

  273. 

  274.   private void addManualRules(ProjectRepositories ref) {

  275.     Result<Rule> ruleSearchResult = ruleService.search(new RuleQuery().setRepositories(newArrayList(RuleKey.MANUAL_REPOSITORY_KEY)), new QueryContext(userSession).setScroll(true)

  276.       .setFieldsToReturn(newArrayList(RuleNormalizer.RuleField.KEY.field(), RuleNormalizer.RuleField.NAME.field())));

  277.     Iterator<Rule> rules = ruleSearchResult.scroll();

  278.     while (rules.hasNext()) {

  279.       Rule rule = rules.next();

  280.       ref.addActiveRule(new org.sonar.batch.protocol.input.ActiveRule(

  281.         RuleKey.MANUAL_REPOSITORY_KEY,

  282.         rule.key().rule(),

  283.         null, rule.name(),

  284.         null, null, null));

  285.     }

  286.   }

  287. 

  288.   private static void addFileData(DbSession session, ProjectRepositories ref, List<ComponentDto> moduleChildren, List<FilePathWithHashDto> files) {

  289.     Map<String, String> moduleKeysByUuid = newHashMap();

  290.     for (ComponentDto module : moduleChildren) {

  291.       moduleKeysByUuid.put(module.uuid(), module.key());

  292.     }

  293. 

  294.     for (FilePathWithHashDto file : files) {

  295.       // TODO should query E/S to know if blame is missing on this file

  296.       FileData fileData = new FileData(file.getSrcHash(), true);

  297.       ref.addFileData(moduleKeysByUuid.get(file.getModuleUuid()), file.getPath(), fileData);

  298.     }

  299.   }

  300. 

  301.   private void checkPermission(boolean preview) {

  302.     boolean hasScanPerm = userSession.hasGlobalPermission(GlobalPermissions.SCAN_EXECUTION);

  303.     boolean hasPreviewPerm = userSession.hasGlobalPermission(GlobalPermissions.PREVIEW_EXECUTION);

  304.     if (!hasPreviewPerm && !hasScanPerm) {

  305.       throw new ForbiddenException(Messages.NO_PERMISSION);

  306.     }

  307.     if (!preview && !hasScanPerm) {

  308.       throw new ForbiddenException("You're only authorized to execute a local (preview) SonarQube analysis without pushing the results to the SonarQube server. " +

  309.         "Please contact your SonarQube administrator.");

  310.     }

  311.     if (preview && !hasPreviewPerm) {

  312.       throw new ForbiddenException("You're not authorized to execute a preview analysis. Please contact your SonarQube administrator.");

  313.     }

  314.   }

  315. 

  316.   private static Map<String, String> moduleUuidsByKey(ComponentDto module, List<ComponentDto> moduleChildren) {

  317.     Map<String, String> moduleUuidsByKey = newHashMap();

  318.     for (ComponentDto componentDto : moduleChildren) {

  319.       moduleUuidsByKey.put(componentDto.key(), componentDto.uuid());

  320.     }

  321.     return moduleUuidsByKey;

  322.   }

  323. 

  324.   private static Map<String, Long> moduleIdsByKey(ComponentDto module, List<ComponentDto> moduleChildren) {

  325.     Map<String, Long> moduleIdsByKey = newHashMap();

  326.     for (ComponentDto componentDto : moduleChildren) {

  327.       moduleIdsByKey.put(componentDto.key(), componentDto.getId());

  328.     }

  329.     return moduleIdsByKey;

  330.   }

  331. 

  332.   private static class TreeModuleSettings {

  333. 

  334.     private Map<String, Long> moduleIdsByKey;

  335.     private Map<String, String> moduleUuidsByKey;

  336.     private Multimap<Long, PropertyDto> propertiesByModuleId;

  337.     private Multimap<String, ComponentDto> moduleChildrenByModuleUuid;

  338. 

  339.     private TreeModuleSettings(Map<String, String> moduleUuidsByKey, Map<String, Long> moduleIdsByKey, List<ComponentDto> moduleChildren,

  340.       List<PropertyDto> moduleChildrenSettings, ComponentDto module) {

  341.       this.moduleIdsByKey = moduleIdsByKey;

  342.       this.moduleUuidsByKey = moduleUuidsByKey;

  343.       propertiesByModuleId = ArrayListMultimap.create();

  344.       moduleChildrenByModuleUuid = ArrayListMultimap.create();

  345. 

  346.       for (PropertyDto settings : moduleChildrenSettings) {

  347.         propertiesByModuleId.put(settings.getResourceId(), settings);

  348.       }

  349. 

  350.       for (ComponentDto componentDto : moduleChildren) {

  351.         String moduleUuid = componentDto.moduleUuid();

  352.         if (moduleUuid != null) {

  353.           moduleChildrenByModuleUuid.put(moduleUuid, componentDto);

  354.         }

  355.       }

  356.     }

  357. 

  358.     List<PropertyDto> findModuleSettings(String moduleKey) {

  359.       Long moduleId = moduleIdsByKey.get(moduleKey);

  360.       return newArrayList(propertiesByModuleId.get(moduleId));

  361.     }

  362. 

  363.     List<ComponentDto> findChildrenModule(String moduleKey) {

  364.       String moduleUuid = moduleUuidsByKey.get(moduleKey);

  365.       return newArrayList(moduleChildrenByModuleUuid.get(moduleUuid));

  366.     }

  367.   }

  368. 

  369.   private enum MatchRuleKey implements Function<Rule, RuleKey>{

  370.     INSTANCE;

  371. 

  372.     @Override

  373.     public RuleKey apply(@Nullable Rule input) {

  374.       return input != null ? input.key() : null;

  375.     }

  376.   }

  377. }