mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31232 Commits
59 Branches
Tree: 5e21671067
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5e21671067'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/permission/ws/SearchGlobalPermissionsActi...

SearchGlobalPermissionsAction.java 4.7KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws;

  21. 

  22. import java.util.Locale;

  23. import org.sonar.api.server.ws.Request;

  24. import org.sonar.api.server.ws.Response;

  25. import org.sonar.api.server.ws.WebService;

  26. import org.sonar.core.i18n.I18n;

  27. import org.sonar.db.DbClient;

  28. import org.sonar.db.DbSession;

  29. import org.sonar.db.permission.GlobalPermission;

  30. import org.sonar.db.permission.PermissionQuery;

  31. import org.sonar.server.permission.PermissionService;

  32. import org.sonar.server.user.UserSession;

  33. import org.sonarqube.ws.Permissions.Permission;

  34. import org.sonarqube.ws.Permissions.WsSearchGlobalPermissionsResponse;

  35. 

  36. import static org.sonar.server.permission.PermissionPrivilegeChecker.checkGlobalAdmin;

  37. import static org.sonar.server.ws.WsUtils.writeProtobuf;

  38. import static org.sonarqube.ws.Permissions.Permission.newBuilder;

  39. 

  40. public class SearchGlobalPermissionsAction implements PermissionsWsAction {

  41. 

  42.   public static final String ACTION = "search_global_permissions";

  43.   private static final String PROPERTY_PREFIX = "global_permissions.";

  44.   private static final String DESCRIPTION_SUFFIX = ".desc";

  45. 

  46.   private final DbClient dbClient;

  47.   private final UserSession userSession;

  48.   private final I18n i18n;

  49.   private final PermissionService permissionService;

  50. 

  51.   public SearchGlobalPermissionsAction(DbClient dbClient, UserSession userSession, I18n i18n, PermissionService permissionService) {

  52.     this.dbClient = dbClient;

  53.     this.userSession = userSession;

  54.     this.i18n = i18n;

  55.     this.permissionService = permissionService;

  56.   }

  57. 

  58.   @Override

  59.   public void define(WebService.NewController context) {

  60.     context.createAction(ACTION)

  61.       .setDescription("List global permissions. <br />" +

  62.         "Requires the following permission: 'Administer System'")

  63.       .setResponseExample(getClass().getResource("search_global_permissions-example.json"))

  64.       .setSince("5.2")

  65.       .setDeprecatedSince("6.5")

  66.       .setHandler(this);

  67.   }

  68. 

  69.   @Override

  70.   public void handle(Request wsRequest, Response wsResponse) throws Exception {

  71.     try (DbSession dbSession = dbClient.openSession(false)) {

  72.       checkGlobalAdmin(userSession);

  73. 

  74.       WsSearchGlobalPermissionsResponse response = buildResponse(dbSession);

  75.       writeProtobuf(response, wsRequest, wsResponse);

  76.     }

  77.   }

  78. 

  79.   private WsSearchGlobalPermissionsResponse buildResponse(DbSession dbSession) {

  80.     WsSearchGlobalPermissionsResponse.Builder response = WsSearchGlobalPermissionsResponse.newBuilder();

  81.     Permission.Builder permission = newBuilder();

  82. 

  83.     permissionService.getGlobalPermissions().stream()

  84.       .map(GlobalPermission::getKey)

  85.       .forEach(permissionKey -> {

  86.         PermissionQuery query = permissionQuery(permissionKey);

  87.         response.addPermissions(

  88.           permission

  89.             .clear()

  90.             .setKey(permissionKey)

  91.             .setName(i18nName(permissionKey))

  92.             .setDescription(i18nDescriptionMessage(permissionKey))

  93.             .setUsersCount(countUsers(dbSession, query))

  94.             .setGroupsCount(countGroups(dbSession, permissionKey)));

  95.       });

  96. 

  97.     return response.build();

  98.   }

  99. 

  100.   private String i18nDescriptionMessage(String permissionKey) {

  101.     return i18n.message(Locale.ENGLISH, PROPERTY_PREFIX + permissionKey + DESCRIPTION_SUFFIX, "");

  102.   }

  103. 

  104.   private String i18nName(String permissionKey) {

  105.     return i18n.message(Locale.ENGLISH, PROPERTY_PREFIX + permissionKey, permissionKey);

  106.   }

  107. 

  108.   private int countGroups(DbSession dbSession, String permission) {

  109.     PermissionQuery query = PermissionQuery.builder().setPermission(permission).build();

  110.     return dbClient.groupPermissionDao().countGroupsByQuery(dbSession, query);

  111.   }

  112. 

  113.   private int countUsers(DbSession dbSession, PermissionQuery permissionQuery) {

  114.     return dbClient.userPermissionDao().countUsersByQuery(dbSession, permissionQuery);

  115.   }

  116. 

  117.   private static PermissionQuery permissionQuery(String permissionKey) {

  118.     return PermissionQuery.builder()

  119.       .setPermission(permissionKey)

  120.       .withAtLeastOnePermission()

  121.       .build();

  122.   }

  123. }