mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
36262 Commits
59 Branches
Tree: 412f42cb11
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '412f42cb11'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/permission/ws/template/BulkApplyTemplateAction.java

BulkApplyTemplateAction.java 12KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2024 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws.template;

  21. 

  22. import java.util.Collection;

  23. import java.util.HashSet;

  24. import java.util.List;

  25. import java.util.Set;

  26. import java.util.stream.Collectors;

  27. import javax.annotation.CheckForNull;

  28. import javax.annotation.Nullable;

  29. import org.sonar.api.resources.Qualifiers;

  30. import org.sonar.api.resources.ResourceTypes;

  31. import org.sonar.api.server.ws.Change;

  32. import org.sonar.api.server.ws.Request;

  33. import org.sonar.api.server.ws.Response;

  34. import org.sonar.api.server.ws.WebService;

  35. import org.sonar.api.server.ws.WebService.Param;

  36. import org.sonar.core.i18n.I18n;

  37. import org.sonar.db.DatabaseUtils;

  38. import org.sonar.db.DbClient;

  39. import org.sonar.db.DbSession;

  40. import org.sonar.db.ce.CeTaskQuery;

  41. import org.sonar.db.component.ComponentDto;

  42. import org.sonar.db.component.ComponentQuery;

  43. import org.sonar.db.entity.EntityDto;

  44. import org.sonar.db.permission.template.PermissionTemplateDto;

  45. import org.sonar.server.management.ManagedProjectService;

  46. import org.sonar.server.common.permission.PermissionTemplateService;

  47. import org.sonar.server.permission.ws.PermissionWsSupport;

  48. import org.sonar.server.permission.ws.PermissionsWsAction;

  49. import org.sonar.server.permission.ws.WsParameters;

  50. import org.sonar.server.project.Visibility;

  51. import org.sonar.server.user.UserSession;

  52. 

  53. import static java.lang.String.format;

  54. import static java.util.Collections.singleton;

  55. import static java.util.Objects.requireNonNull;

  56. import static java.util.Optional.ofNullable;

  57. import static org.sonar.api.utils.DateUtils.parseDateOrDateTime;

  58. import static org.sonar.db.Pagination.forPage;

  59. import static org.sonar.server.permission.PermissionPrivilegeChecker.checkGlobalAdmin;

  60. import static org.sonar.server.permission.ws.template.WsTemplateRef.newTemplateRef;

  61. import static org.sonar.server.ws.KeyExamples.KEY_PROJECT_EXAMPLE_001;

  62. import static org.sonar.server.ws.KeyExamples.KEY_PROJECT_EXAMPLE_002;

  63. import static org.sonar.server.ws.WsParameterBuilder.QualifierParameterContext.newQualifierParameterContext;

  64. import static org.sonar.server.ws.WsParameterBuilder.createRootQualifiersParameter;

  65. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_ID;

  66. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_NAME;

  67. import static org.sonarqube.ws.client.project.ProjectsWsParameters.PARAM_ANALYZED_BEFORE;

  68. import static org.sonarqube.ws.client.project.ProjectsWsParameters.PARAM_ON_PROVISIONED_ONLY;

  69. import static org.sonarqube.ws.client.project.ProjectsWsParameters.PARAM_PROJECTS;

  70. import static org.sonarqube.ws.client.project.ProjectsWsParameters.PARAM_QUALIFIERS;

  71. import static org.sonarqube.ws.client.project.ProjectsWsParameters.PARAM_VISIBILITY;

  72. 

  73. public class BulkApplyTemplateAction implements PermissionsWsAction {

  74. 

  75.   private final DbClient dbClient;

  76.   private final UserSession userSession;

  77.   private final PermissionTemplateService permissionTemplateService;

  78.   private final PermissionWsSupport wsSupport;

  79.   private final I18n i18n;

  80.   private final ResourceTypes resourceTypes;

  81.   private final ManagedProjectService managedProjectService;

  82. 

  83.   public BulkApplyTemplateAction(DbClient dbClient, UserSession userSession, PermissionTemplateService permissionTemplateService, PermissionWsSupport wsSupport, I18n i18n,

  84.     ResourceTypes resourceTypes, ManagedProjectService managedProjectService) {

  85.     this.dbClient = dbClient;

  86.     this.userSession = userSession;

  87.     this.permissionTemplateService = permissionTemplateService;

  88.     this.wsSupport = wsSupport;

  89.     this.i18n = i18n;

  90.     this.resourceTypes = resourceTypes;

  91.     this.managedProjectService = managedProjectService;

  92.   }

  93. 

  94.   @Override

  95.   public void define(WebService.NewController context) {

  96.     WebService.NewAction action = context.createAction("bulk_apply_template")

  97.       .setDescription("Apply a permission template to several components. Managed projects will be ignored.<br />" +

  98.         "The template id or name must be provided.<br />" +

  99.         "Requires the following permission: 'Administer System'.")

  100.       .setPost(true)

  101.       .setSince("5.5")

  102.       .setChangelog(new Change("6.7.2", format("Parameter %s accepts maximum %d values", PARAM_PROJECTS, DatabaseUtils.PARTITION_SIZE_FOR_ORACLE)))

  103.       .setHandler(this);

  104. 

  105.     action.createParam(Param.TEXT_QUERY)

  106.       .setDescription("Limit search to: <ul>" +

  107.         "<li>project names that contain the supplied string</li>" +

  108.         "<li>project keys that are exactly the same as the supplied string</li>" +

  109.         "</ul>")

  110.       .setExampleValue("apac");

  111. 

  112.     createRootQualifiersParameter(action, newQualifierParameterContext(i18n, resourceTypes))

  113.       .setDefaultValue(Qualifiers.PROJECT);

  114. 

  115.     WsParameters.createTemplateParameters(action);

  116. 

  117.     action

  118.       .createParam(PARAM_PROJECTS)

  119.       .setDescription("Comma-separated list of project keys")

  120.       .setSince("6.6")

  121.       // Limitation of ComponentDao#selectByQuery(), max 1000 values are accepted.

  122.       // Restricting size of HTTP parameter allows to not fail with SQL error

  123.       .setMaxValuesAllowed(DatabaseUtils.PARTITION_SIZE_FOR_ORACLE)

  124.       .setExampleValue(String.join(",", KEY_PROJECT_EXAMPLE_001, KEY_PROJECT_EXAMPLE_002));

  125. 

  126.     action.createParam(PARAM_VISIBILITY)

  127.       .setDescription("Filter the projects that should be visible to everyone (%s), or only specific user/groups (%s).<br/>" +

  128.           "If no visibility is specified, the default project visibility will be used.",

  129.         Visibility.PUBLIC.getLabel(), Visibility.PRIVATE.getLabel())

  130.       .setRequired(false)

  131.       .setInternal(true)

  132.       .setSince("6.6")

  133.       .setPossibleValues(Visibility.getLabels());

  134. 

  135.     action.createParam(PARAM_ANALYZED_BEFORE)

  136.       .setDescription("Filter the projects for which last analysis is older than the given date (exclusive).<br> " +

  137.         "Either a date (server timezone) or datetime can be provided.")

  138.       .setSince("6.6")

  139.       .setExampleValue("2017-10-19 or 2017-10-19T13:00:00+0200");

  140. 

  141.     action.createParam(PARAM_ON_PROVISIONED_ONLY)

  142.       .setDescription("Filter the projects that are provisioned")

  143.       .setBooleanPossibleValues()

  144.       .setDefaultValue("false")

  145.       .setSince("6.6");

  146.   }

  147. 

  148.   @Override

  149.   public void handle(Request request, Response response) throws Exception {

  150.     doHandle(toBulkApplyTemplateWsRequest(request));

  151.     response.noContent();

  152.   }

  153. 

  154.   private void doHandle(BulkApplyTemplateRequest request) {

  155.     try (DbSession dbSession = dbClient.openSession(false)) {

  156.       PermissionTemplateDto template = wsSupport.findTemplate(dbSession, newTemplateRef(

  157.         request.getTemplateId(), request.getTemplateName()));

  158.       checkGlobalAdmin(userSession);

  159. 

  160.       ComponentQuery componentQuery = buildDbQuery(request);

  161.       List<ComponentDto> components = dbClient.componentDao().selectByQuery(dbSession, componentQuery, forPage(1).andSize(CeTaskQuery.MAX_COMPONENT_UUIDS));

  162. 

  163.       Set<String> entityUuids = components.stream()

  164.         .map(ComponentDto::getKey)

  165.         .collect(Collectors.toSet());

  166.       List<EntityDto> entities = dbClient.entityDao().selectByKeys(dbSession, entityUuids).stream()

  167.         .filter(entity -> !managedProjectService.isProjectManaged(dbSession, entity.getUuid()))

  168.         .toList();

  169. 

  170.       permissionTemplateService.applyAndCommit(dbSession, template, entities);

  171.     }

  172.   }

  173. 

  174.   private static BulkApplyTemplateRequest toBulkApplyTemplateWsRequest(Request request) {

  175.     return new BulkApplyTemplateRequest()

  176.       .setTemplateId(request.param(PARAM_TEMPLATE_ID))

  177.       .setTemplateName(request.param(PARAM_TEMPLATE_NAME))

  178.       .setQualifiers(request.mandatoryParamAsStrings(PARAM_QUALIFIERS))

  179.       .setQuery(request.param(Param.TEXT_QUERY))

  180.       .setVisibility(request.param(PARAM_VISIBILITY))

  181.       .setOnProvisionedOnly(request.mandatoryParamAsBoolean(PARAM_ON_PROVISIONED_ONLY))

  182.       .setAnalyzedBefore(request.param(PARAM_ANALYZED_BEFORE))

  183.       .setProjects(request.paramAsStrings(PARAM_PROJECTS));

  184.   }

  185. 

  186.   private static ComponentQuery buildDbQuery(BulkApplyTemplateRequest request) {

  187.     Collection<String> qualifiers = request.getQualifiers();

  188.     ComponentQuery.Builder query = ComponentQuery.builder()

  189.       .setQualifiers(qualifiers.toArray(new String[qualifiers.size()]));

  190. 

  191.     ofNullable(request.getQuery()).ifPresent(q -> {

  192.       query.setNameOrKeyQuery(q);

  193.       query.setPartialMatchOnKey(true);

  194.     });

  195.     ofNullable(request.getVisibility()).ifPresent(v -> query.setPrivate(Visibility.isPrivate(v)));

  196.     ofNullable(request.getAnalyzedBefore()).ifPresent(d -> query.setAnalyzedBefore(parseDateOrDateTime(d).getTime()));

  197.     query.setOnProvisionedOnly(request.isOnProvisionedOnly());

  198.     ofNullable(request.getProjects()).ifPresent(keys -> query.setComponentKeys(new HashSet<>(keys)));

  199. 

  200.     return query.build();

  201.   }

  202. 

  203.   private static class BulkApplyTemplateRequest {

  204.     private String templateId;

  205.     private String templateName;

  206.     private String query;

  207.     private Collection<String> qualifiers = singleton(Qualifiers.PROJECT);

  208.     private String visibility;

  209.     private String analyzedBefore;

  210.     private boolean onProvisionedOnly = false;

  211.     private Collection<String> projects;

  212. 

  213.     @CheckForNull

  214.     public String getTemplateId() {

  215.       return templateId;

  216.     }

  217. 

  218.     public BulkApplyTemplateRequest setTemplateId(@Nullable String templateId) {

  219.       this.templateId = templateId;

  220.       return this;

  221.     }

  222. 

  223.     @CheckForNull

  224.     public String getTemplateName() {

  225.       return templateName;

  226.     }

  227. 

  228.     public BulkApplyTemplateRequest setTemplateName(@Nullable String templateName) {

  229.       this.templateName = templateName;

  230.       return this;

  231.     }

  232. 

  233.     @CheckForNull

  234.     public String getQuery() {

  235.       return query;

  236.     }

  237. 

  238.     public BulkApplyTemplateRequest setQuery(@Nullable String query) {

  239.       this.query = query;

  240.       return this;

  241.     }

  242. 

  243.     public Collection<String> getQualifiers() {

  244.       return qualifiers;

  245.     }

  246. 

  247.     public BulkApplyTemplateRequest setQualifiers(Collection<String> qualifiers) {

  248.       this.qualifiers = requireNonNull(qualifiers);

  249.       return this;

  250.     }

  251. 

  252.     @CheckForNull

  253.     public String getVisibility() {

  254.       return visibility;

  255.     }

  256. 

  257.     public BulkApplyTemplateRequest setVisibility(@Nullable String visibility) {

  258.       this.visibility = visibility;

  259.       return this;

  260.     }

  261. 

  262.     @CheckForNull

  263.     public String getAnalyzedBefore() {

  264.       return analyzedBefore;

  265.     }

  266. 

  267.     public BulkApplyTemplateRequest setAnalyzedBefore(@Nullable String analyzedBefore) {

  268.       this.analyzedBefore = analyzedBefore;

  269.       return this;

  270.     }

  271. 

  272.     public boolean isOnProvisionedOnly() {

  273.       return onProvisionedOnly;

  274.     }

  275. 

  276.     public BulkApplyTemplateRequest setOnProvisionedOnly(boolean onProvisionedOnly) {

  277.       this.onProvisionedOnly = onProvisionedOnly;

  278.       return this;

  279.     }

  280. 

  281.     @CheckForNull

  282.     public Collection<String> getProjects() {

  283.       return projects;

  284.     }

  285. 

  286.     public BulkApplyTemplateRequest setProjects(@Nullable Collection<String> projects) {

  287.       this.projects = projects;

  288.       return this;

  289.     }

  290.   }

  291. }