mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31287 Commits
59 Branches
Tree: 424216bbde
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '424216bbde'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/setting/ws/ValuesAction.java

ValuesAction.java 17KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.setting.ws;

  21. 

  22. import com.google.common.base.Splitter;

  23. import com.google.common.collect.ImmutableSet;

  24. import com.google.common.collect.Multimap;

  25. import com.google.common.collect.Ordering;

  26. import com.google.common.collect.TreeMultimap;

  27. import java.util.ArrayList;

  28. import java.util.HashMap;

  29. import java.util.List;

  30. import java.util.Map;

  31. import java.util.Objects;

  32. import java.util.Optional;

  33. import java.util.Set;

  34. import java.util.function.Function;

  35. import java.util.stream.Collectors;

  36. import javax.annotation.CheckForNull;

  37. import javax.annotation.Nullable;

  38. import org.sonar.api.config.Configuration;

  39. import org.sonar.api.config.PropertyDefinition;

  40. import org.sonar.api.config.PropertyDefinitions;

  41. import org.sonar.api.server.ws.Change;

  42. import org.sonar.api.server.ws.Request;

  43. import org.sonar.api.server.ws.Response;

  44. import org.sonar.api.server.ws.WebService;

  45. import org.sonar.api.web.UserRole;

  46. import org.sonar.db.DbClient;

  47. import org.sonar.db.DbSession;

  48. import org.sonar.db.component.ComponentDto;

  49. import org.sonar.db.permission.GlobalPermission;

  50. import org.sonar.db.property.PropertyDto;

  51. import org.sonar.server.component.ComponentFinder;

  52. import org.sonar.server.user.UserSession;

  53. import org.sonarqube.ws.Settings;

  54. import org.sonarqube.ws.Settings.ValuesWsResponse;

  55. 

  56. import static java.lang.String.format;

  57. import static java.util.stream.Stream.concat;

  58. import static org.apache.commons.lang.StringUtils.isEmpty;

  59. import static org.sonar.api.CoreProperties.SERVER_ID;

  60. import static org.sonar.api.CoreProperties.SERVER_STARTTIME;

  61. import static org.sonar.api.PropertyType.PROPERTY_SET;

  62. import static org.sonar.api.web.UserRole.USER;

  63. import static org.sonar.process.ProcessProperties.Property.SONARCLOUD_ENABLED;

  64. import static org.sonar.server.setting.ws.PropertySetExtractor.extractPropertySetKeys;

  65. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_COMPONENT;

  66. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_KEYS;

  67. import static org.sonar.server.setting.ws.SettingsWsSupport.isSecured;

  68. import static org.sonar.server.user.AbstractUserSession.insufficientPrivilegesException;

  69. import static org.sonar.server.ws.KeyExamples.KEY_PROJECT_EXAMPLE_001;

  70. import static org.sonar.server.ws.WsUtils.writeProtobuf;

  71. 

  72. public class ValuesAction implements SettingsWsAction {

  73. 

  74.   private static final Splitter COMMA_SPLITTER = Splitter.on(",");

  75.   private static final String COMMA_ENCODED_VALUE = "%2C";

  76.   private static final Splitter DOT_SPLITTER = Splitter.on(".").omitEmptyStrings();

  77.   private static final Set<String> SERVER_SETTING_KEYS = ImmutableSet.of(SERVER_STARTTIME, SERVER_ID);

  78. 

  79.   private final DbClient dbClient;

  80.   private final ComponentFinder componentFinder;

  81.   private final UserSession userSession;

  82.   private final PropertyDefinitions propertyDefinitions;

  83.   private final SettingsWsSupport settingsWsSupport;

  84.   private final boolean isSonarCloud;

  85. 

  86.   public ValuesAction(DbClient dbClient, ComponentFinder componentFinder, UserSession userSession, PropertyDefinitions propertyDefinitions,

  87.     SettingsWsSupport settingsWsSupport, Configuration configuration) {

  88.     this.dbClient = dbClient;

  89.     this.componentFinder = componentFinder;

  90.     this.userSession = userSession;

  91.     this.propertyDefinitions = propertyDefinitions;

  92.     this.settingsWsSupport = settingsWsSupport;

  93.     this.isSonarCloud = configuration.getBoolean(SONARCLOUD_ENABLED.getKey()).orElse(false);

  94.   }

  95. 

  96.   @Override

  97.   public void define(WebService.NewController context) {

  98.     WebService.NewAction action = context.createAction("values")

  99.       .setDescription("List settings values.<br>" +

  100.         "If no value has been set for a setting, then the default value is returned.<br>" +

  101.         "The settings from conf/sonar.properties are excluded from results.<br>" +

  102.         "Requires 'Browse' or 'Execute Analysis' permission when a component is specified.<br/>")

  103.       .setResponseExample(getClass().getResource("values-example.json"))

  104.       .setSince("6.3")

  105.       .setChangelog(

  106.         new Change("9.1", "The value of secured settings are no longer returned"),

  107.         new Change("7.6", String.format("The use of module keys in parameter '%s' is deprecated", PARAM_COMPONENT)),

  108.         new Change("7.1", "The settings from conf/sonar.properties are excluded from results."))

  109.       .setHandler(this);

  110.     action.createParam(PARAM_KEYS)

  111.       .setDescription("List of setting keys")

  112.       .setExampleValue("sonar.test.inclusions,sonar.exclusions");

  113.     action.createParam(PARAM_COMPONENT)

  114.       .setDescription("Component key")

  115.       .setExampleValue(KEY_PROJECT_EXAMPLE_001);

  116.   }

  117. 

  118.   @Override

  119.   public void handle(Request request, Response response) throws Exception {

  120.     writeProtobuf(doHandle(request), request, response);

  121.   }

  122. 

  123.   private ValuesWsResponse doHandle(Request request) {

  124.     try (DbSession dbSession = dbClient.openSession(true)) {

  125.       ValuesRequest valuesRequest = ValuesRequest.from(request);

  126.       Optional<ComponentDto> component = loadComponent(dbSession, valuesRequest);

  127. 

  128.       Set<String> keys = loadKeys(valuesRequest);

  129.       Map<String, String> keysToDisplayMap = getKeysToDisplayMap(keys);

  130.       List<Setting> settings = loadSettings(dbSession, component, keysToDisplayMap.keySet());

  131.       return new ValuesResponseBuilder(settings, component, keysToDisplayMap).build();

  132.     }

  133.   }

  134. 

  135.   private Set<String> loadKeys(ValuesRequest valuesRequest) {

  136.     List<String> keys = valuesRequest.getKeys();

  137.     Set<String> result;

  138.     if (keys == null || keys.isEmpty()) {

  139.       result = concat(propertyDefinitions.getAll().stream().map(PropertyDefinition::key), SERVER_SETTING_KEYS.stream()).collect(Collectors.toSet());

  140.     } else {

  141.       result = ImmutableSet.copyOf(keys);

  142.     }

  143.     result.forEach(SettingsWsSupport::validateKey);

  144.     return result;

  145.   }

  146. 

  147.   private Optional<ComponentDto> loadComponent(DbSession dbSession, ValuesRequest valuesRequest) {

  148.     String componentKey = valuesRequest.getComponent();

  149.     if (componentKey == null) {

  150.       return Optional.empty();

  151.     }

  152.     ComponentDto component = componentFinder.getByKey(dbSession, componentKey);

  153.     if (!userSession.hasComponentPermission(USER, component) &&

  154.       !userSession.hasComponentPermission(UserRole.SCAN, component) &&

  155.       !userSession.hasPermission(GlobalPermission.SCAN)) {

  156.       throw insufficientPrivilegesException();

  157.     }

  158.     return Optional.of(component);

  159.   }

  160. 

  161.   private List<Setting> loadSettings(DbSession dbSession, Optional<ComponentDto> component, Set<String> keys) {

  162.     // List of settings must be kept in the following orders : default -> global -> component -> branch

  163.     List<Setting> settings = new ArrayList<>();

  164.     settings.addAll(loadDefaultValues(keys));

  165.     settings.addAll(loadGlobalSettings(dbSession, keys));

  166.     if (component.isPresent() && component.get().getBranch() != null && component.get().getMainBranchProjectUuid() != null) {

  167.       ComponentDto project = dbClient.componentDao().selectOrFailByUuid(dbSession, component.get().getMainBranchProjectUuid());

  168.       settings.addAll(loadComponentSettings(dbSession, keys, project).values());

  169.     }

  170.     component.ifPresent(componentDto -> settings.addAll(loadComponentSettings(dbSession, keys, componentDto).values()));

  171.     return settings.stream()

  172.       .filter(s -> settingsWsSupport.isVisible(s.getKey(), component))

  173.       .collect(Collectors.toList());

  174.   }

  175. 

  176.   private List<Setting> loadDefaultValues(Set<String> keys) {

  177.     return propertyDefinitions.getAll().stream()

  178.       .filter(definition -> keys.contains(definition.key()))

  179.       .filter(defaultProperty -> !isEmpty(defaultProperty.defaultValue()))

  180.       .map(Setting::createFromDefinition)

  181.       .collect(Collectors.toList());

  182.   }

  183. 

  184.   private Map<String, String> getKeysToDisplayMap(Set<String> keys) {

  185.     return keys.stream()

  186.       .collect(Collectors.toMap(propertyDefinitions::validKey, Function.identity(),

  187.         (u, v) -> {

  188.           throw new IllegalArgumentException(format("'%s' and '%s' cannot be used at the same time as they refer to the same setting", u, v));

  189.         }));

  190.   }

  191. 

  192.   private List<Setting> loadGlobalSettings(DbSession dbSession, Set<String> keys) {

  193.     List<PropertyDto> properties = dbClient.propertiesDao().selectGlobalPropertiesByKeys(dbSession, keys);

  194.     List<PropertyDto> propertySets = dbClient.propertiesDao().selectGlobalPropertiesByKeys(dbSession, getPropertySetKeys(properties));

  195.     return properties.stream()

  196.       .map(property -> Setting.createFromDto(property, getPropertySets(property.getKey(), propertySets, null), propertyDefinitions.get(property.getKey())))

  197.       .collect(Collectors.toList());

  198.   }

  199. 

  200.   /**

  201.    * Return list of settings by component uuid, sorted from project to lowest module

  202.    */

  203.   private Multimap<String, Setting> loadComponentSettings(DbSession dbSession, Set<String> keys, ComponentDto component) {

  204.     List<String> componentUuids = DOT_SPLITTER.splitToList(component.moduleUuidPath());

  205.     List<PropertyDto> properties = dbClient.propertiesDao().selectPropertiesByKeysAndComponentUuids(dbSession, keys, componentUuids);

  206.     List<PropertyDto> propertySets = dbClient.propertiesDao().selectPropertiesByKeysAndComponentUuids(dbSession, getPropertySetKeys(properties), componentUuids);

  207. 

  208.     Multimap<String, Setting> settingsByUuid = TreeMultimap.create(Ordering.explicit(componentUuids), Ordering.arbitrary());

  209.     for (PropertyDto propertyDto : properties) {

  210.       String componentUuid = propertyDto.getComponentUuid();

  211.       String propertyKey = propertyDto.getKey();

  212.       settingsByUuid.put(componentUuid,

  213.         Setting.createFromDto(propertyDto, getPropertySets(propertyKey, propertySets, componentUuid), propertyDefinitions.get(propertyKey)));

  214.     }

  215.     return settingsByUuid;

  216.   }

  217. 

  218.   private Set<String> getPropertySetKeys(List<PropertyDto> properties) {

  219.     return properties.stream()

  220.       .filter(propertyDto -> propertyDefinitions.get(propertyDto.getKey()) != null)

  221.       .filter(propertyDto -> propertyDefinitions.get(propertyDto.getKey()).type().equals(PROPERTY_SET))

  222.       .flatMap(propertyDto -> extractPropertySetKeys(propertyDto, propertyDefinitions.get(propertyDto.getKey())).stream())

  223.       .collect(Collectors.toSet());

  224.   }

  225. 

  226.   private static List<PropertyDto> getPropertySets(String propertyKey, List<PropertyDto> propertySets, @Nullable String componentUuid) {

  227.     return propertySets.stream()

  228.       .filter(propertyDto -> Objects.equals(propertyDto.getComponentUuid(), componentUuid))

  229.       .filter(propertyDto -> propertyDto.getKey().startsWith(propertyKey + "."))

  230.       .collect(Collectors.toList());

  231.   }

  232. 

  233.   private class ValuesResponseBuilder {

  234.     private final List<Setting> settings;

  235.     private final Optional<ComponentDto> requestedComponent;

  236. 

  237.     private final ValuesWsResponse.Builder valuesWsBuilder = ValuesWsResponse.newBuilder();

  238.     private final Map<String, Settings.Setting.Builder> settingsBuilderByKey = new HashMap<>();

  239.     private final Map<String, Setting> settingsByParentKey = new HashMap<>();

  240.     private final Map<String, String> keysToDisplayMap;

  241. 

  242.     ValuesResponseBuilder(List<Setting> settings, Optional<ComponentDto> requestedComponent, Map<String, String> keysToDisplayMap) {

  243.       this.settings = settings;

  244.       this.requestedComponent = requestedComponent;

  245.       this.keysToDisplayMap = keysToDisplayMap;

  246.     }

  247. 

  248.     ValuesWsResponse build() {

  249.       processSettings();

  250.       settingsBuilderByKey.values().forEach(Settings.Setting.Builder::build);

  251.       return valuesWsBuilder.build();

  252.     }

  253. 

  254.     private void processSettings() {

  255.       settings.forEach(setting -> {

  256.         Settings.Setting.Builder valueBuilder = getOrCreateValueBuilder(keysToDisplayMap.get(setting.getKey()));

  257.         setInherited(setting, valueBuilder);

  258.         setValue(setting, valueBuilder);

  259.         setParent(setting, valueBuilder);

  260.       });

  261.     }

  262. 

  263.     private Settings.Setting.Builder getOrCreateValueBuilder(String key) {

  264.       return settingsBuilderByKey.computeIfAbsent(key, k -> valuesWsBuilder.addSettingsBuilder().setKey(key));

  265.     }

  266. 

  267.     private void setInherited(Setting setting, Settings.Setting.Builder valueBuilder) {

  268.       boolean isDefault = setting.isDefault();

  269.       boolean isGlobal = !requestedComponent.isPresent();

  270.       boolean isOnComponent = requestedComponent.isPresent() && Objects.equals(setting.getComponentUuid(), requestedComponent.get().uuid());

  271.       boolean isSet = isGlobal || isOnComponent;

  272.       valueBuilder.setInherited(isDefault || !isSet);

  273.     }

  274. 

  275.     private void setValue(Setting setting, Settings.Setting.Builder valueBuilder) {

  276.       if (isSecured(setting.getKey())) {

  277.         return;

  278.       }

  279.       PropertyDefinition definition = setting.getDefinition();

  280.       String value = setting.getValue();

  281.       if (definition == null) {

  282.         valueBuilder.setValue(value);

  283.         return;

  284.       }

  285.       if (definition.type().equals(PROPERTY_SET)) {

  286.         valueBuilder.setFieldValues(createFieldValuesBuilder(filterVisiblePropertySets(setting.getPropertySets())));

  287.       } else if (definition.multiValues()) {

  288.         valueBuilder.setValues(createValuesBuilder(value));

  289.       } else {

  290.         valueBuilder.setValue(value);

  291.       }

  292.     }

  293. 

  294.     private void setParent(Setting setting, Settings.Setting.Builder valueBuilder) {

  295.       Setting parent = settingsByParentKey.get(setting.getKey());

  296.       if (parent != null) {

  297.         String value = valueBuilder.getInherited() ? setting.getValue() : parent.getValue();

  298.         PropertyDefinition definition = setting.getDefinition();

  299.         if (definition == null) {

  300.           valueBuilder.setParentValue(value);

  301.           return;

  302.         }

  303. 

  304.         if (definition.type().equals(PROPERTY_SET)) {

  305.           valueBuilder.setParentFieldValues(

  306.             createFieldValuesBuilder(valueBuilder.getInherited() ? filterVisiblePropertySets(setting.getPropertySets()) : filterVisiblePropertySets(parent.getPropertySets())));

  307.         } else if (definition.multiValues()) {

  308.           valueBuilder.setParentValues(createValuesBuilder(value));

  309.         } else {

  310.           valueBuilder.setParentValue(value);

  311.         }

  312.       }

  313.       settingsByParentKey.put(setting.getKey(), setting);

  314.     }

  315. 

  316.     private Settings.Values.Builder createValuesBuilder(String value) {

  317.       List<String> values = COMMA_SPLITTER.splitToList(value).stream().map(v -> v.replace(COMMA_ENCODED_VALUE, ",")).collect(Collectors.toList());

  318.       return Settings.Values.newBuilder().addAllValues(values);

  319.     }

  320. 

  321.     private Settings.FieldValues.Builder createFieldValuesBuilder(List<Map<String, String>> fieldValues) {

  322.       Settings.FieldValues.Builder builder = Settings.FieldValues.newBuilder();

  323.       for (Map<String, String> propertySetMap : fieldValues) {

  324.         builder.addFieldValuesBuilder().putAllValue(propertySetMap);

  325.       }

  326.       return builder;

  327.     }

  328. 

  329.     private List<Map<String, String>> filterVisiblePropertySets(List<Map<String, String>> propertySets) {

  330.       List<Map<String, String>> filteredPropertySets = new ArrayList<>();

  331.       propertySets.forEach(map -> {

  332.         Map<String, String> set = new HashMap<>();

  333.         map.entrySet().stream()

  334.           .filter(entry -> settingsWsSupport.isVisible(entry.getKey(), requestedComponent))

  335.           .forEach(entry -> set.put(entry.getKey(), entry.getValue()));

  336.         filteredPropertySets.add(set);

  337.       });

  338.       return filteredPropertySets;

  339.     }

  340.   }

  341. 

  342.   private static class ValuesRequest {

  343.     private String component;

  344.     private List<String> keys;

  345. 

  346.     public ValuesRequest setComponent(@Nullable String component) {

  347.       this.component = component;

  348.       return this;

  349.     }

  350. 

  351.     @CheckForNull

  352.     public String getComponent() {

  353.       return component;

  354.     }

  355. 

  356.     public ValuesRequest setKeys(@Nullable List<String> keys) {

  357.       this.keys = keys;

  358.       return this;

  359.     }

  360. 

  361.     @CheckForNull

  362.     public List<String> getKeys() {

  363.       return keys;

  364.     }

  365. 

  366.     private static ValuesRequest from(Request request) {

  367.       ValuesRequest result = new ValuesRequest()

  368.         .setComponent(request.param(PARAM_COMPONENT));

  369.       if (request.hasParam(PARAM_KEYS)) {

  370.         result.setKeys(request.paramAsStrings(PARAM_KEYS));

  371.       }

  372.       return result;

  373.     }

  374. 

  375.   }

  376. }