mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30152 Commits
59 Branches
Tree: 7de02f77f4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7de02f77f4'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/ce/queue/ReportSubmitter.java

ReportSubmitter.java 9.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.ce.queue;

  21. 

  22. import java.io.InputStream;

  23. import java.util.ArrayList;

  24. import java.util.List;

  25. import java.util.Map;

  26. import java.util.Optional;

  27. import javax.annotation.Nullable;

  28. import org.sonar.api.resources.Qualifiers;

  29. import org.sonar.api.resources.Scopes;

  30. import org.sonar.api.server.ServerSide;

  31. import org.sonar.api.web.UserRole;

  32. import org.sonar.ce.queue.CeQueue;

  33. import org.sonar.ce.queue.CeTaskSubmit;

  34. import org.sonar.ce.task.CeTask;

  35. import org.sonar.db.DbClient;

  36. import org.sonar.db.DbSession;

  37. import org.sonar.db.ce.CeTaskTypes;

  38. import org.sonar.db.component.BranchDto;

  39. import org.sonar.db.component.ComponentDto;

  40. import org.sonar.db.organization.OrganizationDto;

  41. import org.sonar.db.permission.OrganizationPermission;

  42. import org.sonar.server.component.ComponentUpdater;

  43. import org.sonar.server.component.NewComponent;

  44. import org.sonar.server.exceptions.BadRequestException;

  45. import org.sonar.server.exceptions.NotFoundException;

  46. import org.sonar.server.permission.PermissionTemplateService;

  47. import org.sonar.server.user.UserSession;

  48. 

  49. import static com.google.common.base.Preconditions.checkArgument;

  50. import static java.lang.String.format;

  51. import static org.apache.commons.lang.StringUtils.defaultIfBlank;

  52. import static org.sonar.server.component.NewComponent.newComponentBuilder;

  53. import static org.sonar.server.user.AbstractUserSession.insufficientPrivilegesException;

  54. 

  55. @ServerSide

  56. public class ReportSubmitter {

  57. 

  58.   private final CeQueue queue;

  59.   private final UserSession userSession;

  60.   private final ComponentUpdater componentUpdater;

  61.   private final PermissionTemplateService permissionTemplateService;

  62.   private final DbClient dbClient;

  63.   private final BranchSupport branchSupport;

  64. 

  65.   public ReportSubmitter(CeQueue queue, UserSession userSession, ComponentUpdater componentUpdater,

  66.     PermissionTemplateService permissionTemplateService, DbClient dbClient, BranchSupport branchSupport) {

  67.     this.queue = queue;

  68.     this.userSession = userSession;

  69.     this.componentUpdater = componentUpdater;

  70.     this.permissionTemplateService = permissionTemplateService;

  71.     this.dbClient = dbClient;

  72.     this.branchSupport = branchSupport;

  73.   }

  74. 

  75.   /**

  76.    * @throws NotFoundException if the organization with the specified key does not exist

  77.    * @throws IllegalArgumentException if the organization with the specified key is not the organization of the specified project (when it already exists in DB)

  78.    */

  79.   public CeTask submit(String organizationKey, String projectKey, @Nullable String projectName, Map<String, String> characteristics, InputStream reportInput) {

  80.     try (DbSession dbSession = dbClient.openSession(false)) {

  81.       boolean projectCreated = false;

  82.       OrganizationDto organizationDto = getOrganizationDtoOrFail(dbSession, organizationKey);

  83.       // Note: when the main branch is analyzed, the characteristics may or may not have the branch name, so componentKey#isMainBranch is not reliable!

  84.       BranchSupport.ComponentKey componentKey = branchSupport.createComponentKey(projectKey, characteristics);

  85.       Optional<ComponentDto> mainBranchComponentOpt = dbClient.componentDao().selectByKey(dbSession, componentKey.getKey());

  86.       ComponentDto mainBranchComponent;

  87. 

  88.       if (mainBranchComponentOpt.isPresent()) {

  89.         mainBranchComponent = mainBranchComponentOpt.get();

  90.         validateProject(dbSession, mainBranchComponent, projectKey);

  91.         ensureOrganizationIsConsistent(mainBranchComponent, organizationDto);

  92.       } else {

  93.         mainBranchComponent = createProject(dbSession, organizationDto, componentKey.getMainBranchComponentKey(), projectName);

  94.         projectCreated = true;

  95.       }

  96. 

  97.       BranchDto mainBranch = dbClient.branchDao().selectByUuid(dbSession, mainBranchComponent.projectUuid())

  98.         .orElseThrow(() -> new IllegalStateException("Couldn't find the main branch of the project"));

  99.       ComponentDto branchComponent;

  100.       if (isMainBranch(componentKey, mainBranch)) {

  101.         branchComponent = mainBranchComponent;

  102.       } else {

  103.         branchComponent = dbClient.componentDao().selectByKey(dbSession, componentKey.getDbKey())

  104.           .orElseGet(() -> branchSupport.createBranchComponent(dbSession, componentKey, organizationDto, mainBranchComponent, mainBranch));

  105.       }

  106. 

  107.       if (projectCreated) {

  108.         componentUpdater.commitAndIndex(dbSession, mainBranchComponent);

  109.       } else {

  110.         dbSession.commit();

  111.       }

  112. 

  113.       checkScanPermission(branchComponent);

  114.       return submitReport(dbSession, reportInput, branchComponent, characteristics);

  115.     }

  116.   }

  117. 

  118.   private static boolean isMainBranch(BranchSupport.ComponentKey componentKey, BranchDto mainBranch) {

  119.     if (componentKey.isMainBranch()) {

  120.       return true;

  121.     }

  122. 

  123.     return componentKey.getBranchName().isPresent() && componentKey.getBranchName().get().equals(mainBranch.getKey());

  124.   }

  125. 

  126.   private void checkScanPermission(ComponentDto project) {

  127.     // this is a specific and inconsistent behavior. For legacy reasons, "technical users"

  128.     // defined on an organization should be able to analyze a project even if

  129.     // they don't have the direct permission on the project.

  130.     // That means that dropping the permission on the project does not have any effects

  131.     // if user has still the permission on the organization

  132.     if (!userSession.hasComponentPermission(UserRole.SCAN, project) && !userSession.hasPermission(OrganizationPermission.SCAN)) {

  133.       throw insufficientPrivilegesException();

  134.     }

  135.   }

  136. 

  137.   private OrganizationDto getOrganizationDtoOrFail(DbSession dbSession, String organizationKey) {

  138.     return dbClient.organizationDao().selectByKey(dbSession, organizationKey)

  139.       .orElseThrow(() -> new NotFoundException(format("Organization with key '%s' does not exist", organizationKey)));

  140.   }

  141. 

  142.   private void validateProject(DbSession dbSession, ComponentDto component, String rawProjectKey) {

  143.     List<String> errors = new ArrayList<>();

  144. 

  145.     if (!Qualifiers.PROJECT.equals(component.qualifier()) || !Scopes.PROJECT.equals(component.scope())) {

  146.       errors.add(format("Component '%s' is not a project", rawProjectKey));

  147.     }

  148.     if (!component.projectUuid().equals(component.uuid())) {

  149.       // Project key is already used as a module of another project

  150.       ComponentDto anotherBaseProject = dbClient.componentDao().selectOrFailByUuid(dbSession, component.projectUuid());

  151.       errors.add(format("The project '%s' is already defined in SonarQube but as a module of project '%s'. "

  152.           + "If you really want to stop directly analysing project '%s', please first delete it from SonarQube and then relaunch the analysis of project '%s'.",

  153.         rawProjectKey, anotherBaseProject.getKey(), anotherBaseProject.getKey(), rawProjectKey));

  154.     }

  155.     if (!errors.isEmpty()) {

  156.       throw BadRequestException.create(errors);

  157.     }

  158.   }

  159. 

  160.   private static void ensureOrganizationIsConsistent(ComponentDto project, OrganizationDto organizationDto) {

  161.     checkArgument(project.getOrganizationUuid().equals(organizationDto.getUuid()),

  162.       "Organization of component with key '%s' does not match specified organization '%s'",

  163.       project.getDbKey(), organizationDto.getKey());

  164.   }

  165. 

  166.   private ComponentDto createProject(DbSession dbSession, OrganizationDto organization, BranchSupport.ComponentKey componentKey, @Nullable String projectName) {

  167.     userSession.checkPermission(OrganizationPermission.PROVISION_PROJECTS);

  168.     String userUuid = userSession.getUuid();

  169. 

  170.     boolean wouldCurrentUserHaveScanPermission = permissionTemplateService.wouldUserHaveScanPermissionWithDefaultTemplate(

  171.       dbSession, userUuid, componentKey.getDbKey());

  172.     if (!wouldCurrentUserHaveScanPermission) {

  173.       throw insufficientPrivilegesException();

  174.     }

  175. 

  176.     boolean newProjectPrivate = dbClient.organizationDao().getNewProjectPrivate(dbSession, organization);

  177. 

  178.     NewComponent newProject = newComponentBuilder()

  179.       .setOrganizationUuid(organization.getUuid())

  180.       .setKey(componentKey.getKey())

  181.       .setName(defaultIfBlank(projectName, componentKey.getKey()))

  182.       .setQualifier(Qualifiers.PROJECT)

  183.       .setPrivate(newProjectPrivate)

  184.       .build();

  185.     return componentUpdater.createWithoutCommit(dbSession, newProject, userUuid, c -> {

  186.     });

  187.   }

  188. 

  189.   private CeTask submitReport(DbSession dbSession, InputStream reportInput, ComponentDto project, Map<String, String> characteristics) {

  190.     CeTaskSubmit.Builder submit = queue.prepareSubmit();

  191. 

  192.     // the report file must be saved before submitting the task

  193.     dbClient.ceTaskInputDao().insert(dbSession, submit.getUuid(), reportInput);

  194.     dbSession.commit();

  195. 

  196.     submit.setType(CeTaskTypes.REPORT);

  197.     submit.setComponent(CeTaskSubmit.Component.fromDto(project));

  198.     submit.setSubmitterUuid(userSession.getUuid());

  199.     submit.setCharacteristics(characteristics);

  200.     return queue.submit(submit.build());

  201.   }

  202. 

  203. }