mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27803 Commits
59 Branches
Tree: db18af0468
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'db18af0468'
${ noResults }
sonarqube/server/sonar-server/src/main/java/org/sonar/server/setting/ws/SetAction.java

SetAction.java 17KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2019 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.setting.ws;

  21. 

  22. import com.google.common.collect.ArrayListMultimap;

  23. import com.google.common.collect.ImmutableList;

  24. import com.google.common.collect.ListMultimap;

  25. import com.google.gson.Gson;

  26. import com.google.gson.JsonSyntaxException;

  27. import com.google.gson.reflect.TypeToken;

  28. import java.lang.reflect.Type;

  29. import java.util.Collections;

  30. import java.util.List;

  31. import java.util.Map;

  32. import java.util.Optional;

  33. import java.util.Set;

  34. import java.util.stream.Collector;

  35. import java.util.stream.Collectors;

  36. import java.util.stream.IntStream;

  37. import javax.annotation.CheckForNull;

  38. import javax.annotation.Nullable;

  39. import org.apache.commons.lang.StringUtils;

  40. import org.sonar.api.PropertyType;

  41. import org.sonar.api.config.PropertyDefinition;

  42. import org.sonar.api.config.PropertyDefinitions;

  43. import org.sonar.api.config.PropertyFieldDefinition;

  44. import org.sonar.api.server.ws.Change;

  45. import org.sonar.api.server.ws.Request;

  46. import org.sonar.api.server.ws.Response;

  47. import org.sonar.api.server.ws.WebService;

  48. import org.sonar.api.web.UserRole;

  49. import org.sonar.db.DbClient;

  50. import org.sonar.db.DbSession;

  51. import org.sonar.db.component.ComponentDto;

  52. import org.sonar.db.property.PropertyDto;

  53. import org.sonar.scanner.protocol.GsonHelper;

  54. import org.sonar.server.component.ComponentFinder;

  55. import org.sonar.server.exceptions.BadRequestException;

  56. import org.sonar.server.platform.SettingsChangeNotifier;

  57. import org.sonar.server.setting.ws.SettingValidations.SettingData;

  58. import org.sonar.server.user.UserSession;

  59. 

  60. import static com.google.common.base.Preconditions.checkArgument;

  61. import static java.lang.String.format;

  62. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_BRANCH;

  63. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_COMPONENT;

  64. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_FIELD_VALUES;

  65. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_KEY;

  66. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_PULL_REQUEST;

  67. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_VALUE;

  68. import static org.sonar.server.setting.ws.SettingsWsParameters.PARAM_VALUES;

  69. import static org.sonar.server.ws.KeyExamples.KEY_PROJECT_EXAMPLE_001;

  70. import static org.sonar.server.ws.WsUtils.checkRequest;

  71. 

  72. public class SetAction implements SettingsWsAction {

  73.   private static final Collector<CharSequence, ?, String> COMMA_JOINER = Collectors.joining(",");

  74.   private static final String MSG_NO_EMPTY_VALUE = "A non empty value must be provided";

  75.   private static final int VALUE_MAXIMUM_LENGTH = 4000;

  76. 

  77.   private final PropertyDefinitions propertyDefinitions;

  78.   private final DbClient dbClient;

  79.   private final ComponentFinder componentFinder;

  80.   private final UserSession userSession;

  81.   private final SettingsUpdater settingsUpdater;

  82.   private final SettingsChangeNotifier settingsChangeNotifier;

  83.   private final SettingValidations validations;

  84.   private final SettingsWsSupport settingsWsSupport;

  85. 

  86.   public SetAction(PropertyDefinitions propertyDefinitions, DbClient dbClient, ComponentFinder componentFinder, UserSession userSession,

  87.     SettingsUpdater settingsUpdater, SettingsChangeNotifier settingsChangeNotifier, SettingValidations validations, SettingsWsSupport settingsWsSupport) {

  88.     this.propertyDefinitions = propertyDefinitions;

  89.     this.dbClient = dbClient;

  90.     this.componentFinder = componentFinder;

  91.     this.userSession = userSession;

  92.     this.settingsUpdater = settingsUpdater;

  93.     this.settingsChangeNotifier = settingsChangeNotifier;

  94.     this.validations = validations;

  95.     this.settingsWsSupport = settingsWsSupport;

  96.   }

  97. 

  98.   @Override

  99.   public void define(WebService.NewController context) {

  100.     WebService.NewAction action = context.createAction("set")

  101.       .setDescription("Update a setting value.<br>" +

  102.         "Either '%s' or '%s' must be provided.<br> " +

  103.         "The settings defined in config/sonar.properties are read-only and can't be changed.<br/>" +

  104.         "Requires one of the following permissions: " +

  105.         "<ul>" +

  106.         "<li>'Administer System'</li>" +

  107.         "<li>'Administer' rights on the specified component</li>" +

  108.         "</ul>",

  109.         PARAM_VALUE, PARAM_VALUES)

  110.       .setSince("6.1")

  111.       .setChangelog(

  112.         new Change("7.6", String.format("The use of module keys in parameter '%s' is deprecated", PARAM_COMPONENT)),

  113.         new Change("7.1", "The settings defined in config/sonar.properties are read-only and can't be changed"))

  114.       .setPost(true)

  115.       .setHandler(this);

  116. 

  117.     action.createParam(PARAM_KEY)

  118.       .setDescription("Setting key")

  119.       .setExampleValue("sonar.links.scm")

  120.       .setRequired(true);

  121. 

  122.     action.createParam(PARAM_VALUE)

  123.       .setMaximumLength(VALUE_MAXIMUM_LENGTH)

  124.       .setDescription("Setting value. To reset a value, please use the reset web service.")

  125.       .setExampleValue("git@github.com:SonarSource/sonarqube.git");

  126. 

  127.     action.createParam(PARAM_VALUES)

  128.       .setDescription("Setting multi value. To set several values, the parameter must be called once for each value.")

  129.       .setExampleValue("values=firstValue&values=secondValue&values=thirdValue");

  130. 

  131.     action.createParam(PARAM_FIELD_VALUES)

  132.       .setDescription("Setting field values. To set several values, the parameter must be called once for each value.")

  133.       .setExampleValue(PARAM_FIELD_VALUES + "={\"firstField\":\"first value\", \"secondField\":\"second value\", \"thirdField\":\"third value\"}");

  134. 

  135.     action.createParam(PARAM_COMPONENT)

  136.       .setDescription("Component key")

  137.       .setDeprecatedKey("componentKey", "6.3")

  138.       .setExampleValue(KEY_PROJECT_EXAMPLE_001);

  139. 

  140.     settingsWsSupport.addBranchParam(action);

  141.     settingsWsSupport.addPullRequestParam(action);

  142.   }

  143. 

  144.   @Override

  145.   public void handle(Request request, Response response) throws Exception {

  146.     try (DbSession dbSession = dbClient.openSession(false)) {

  147.       SetRequest wsRequest = toWsRequest(request);

  148.       SettingsWsSupport.validateKey(wsRequest.getKey());

  149.       doHandle(dbSession, wsRequest);

  150.     }

  151.     response.noContent();

  152.   }

  153. 

  154.   private void doHandle(DbSession dbSession, SetRequest request) {

  155.     Optional<ComponentDto> component = searchComponent(dbSession, request);

  156.     checkPermissions(component);

  157. 

  158.     PropertyDefinition definition = propertyDefinitions.get(request.getKey());

  159. 

  160.     String value;

  161. 

  162.     commonChecks(request, component);

  163. 

  164.     if (!request.getFieldValues().isEmpty()) {

  165.       value = doHandlePropertySet(dbSession, request, definition, component);

  166.     } else {

  167.       validate(request);

  168.       PropertyDto property = toProperty(request, component);

  169.       value = property.getValue();

  170.       dbClient.propertiesDao().saveProperty(dbSession, property);

  171.     }

  172. 

  173.     dbSession.commit();

  174. 

  175.     if (!component.isPresent()) {

  176.       settingsChangeNotifier.onGlobalPropertyChange(persistedKey(request), value);

  177.     }

  178.   }

  179. 

  180.   private String doHandlePropertySet(DbSession dbSession, SetRequest request, @Nullable PropertyDefinition definition, Optional<ComponentDto> component) {

  181.     validatePropertySet(request, definition);

  182. 

  183.     int[] fieldIds = IntStream.rangeClosed(1, request.getFieldValues().size()).toArray();

  184.     String inlinedFieldKeys = IntStream.of(fieldIds).mapToObj(String::valueOf).collect(COMMA_JOINER);

  185.     String key = persistedKey(request);

  186.     Long componentId = component.isPresent() ? component.get().getId() : null;

  187. 

  188.     deleteSettings(dbSession, component, key);

  189.     dbClient.propertiesDao().saveProperty(dbSession, new PropertyDto().setKey(key).setValue(inlinedFieldKeys).setResourceId(componentId));

  190. 

  191.     List<String> fieldValues = request.getFieldValues();

  192.     IntStream.of(fieldIds).boxed()

  193.       .flatMap(i -> readOneFieldValues(fieldValues.get(i - 1), request.getKey()).entrySet().stream()

  194.         .map(entry -> new KeyValue(key + "." + i + "." + entry.getKey(), entry.getValue())))

  195.       .forEach(keyValue -> dbClient.propertiesDao().saveProperty(dbSession, toFieldProperty(keyValue, componentId)));

  196. 

  197.     return inlinedFieldKeys;

  198.   }

  199. 

  200.   private void deleteSettings(DbSession dbSession, Optional<ComponentDto> component, String key) {

  201.     if (component.isPresent()) {

  202.       settingsUpdater.deleteComponentSettings(dbSession, component.get(), key);

  203.     } else {

  204.       settingsUpdater.deleteGlobalSettings(dbSession, key);

  205.     }

  206.   }

  207. 

  208.   private void commonChecks(SetRequest request, Optional<ComponentDto> component) {

  209.     checkValueIsSet(request);

  210.     String settingKey = request.getKey();

  211.     SettingData settingData = new SettingData(settingKey, valuesFromRequest(request), component.orElse(null));

  212.     ImmutableList.of(validations.scope(), validations.qualifier(), validations.valueType())

  213.       .forEach(validation -> validation.accept(settingData));

  214.     component.map(ComponentDto::getBranch)

  215.       .ifPresent(b -> checkArgument(SettingsWs.SETTING_ON_BRANCHES.contains(settingKey), format("Setting '%s' cannot be set on a branch", settingKey)));

  216.   }

  217. 

  218.   private static void validatePropertySet(SetRequest request, @Nullable PropertyDefinition definition) {

  219.     checkRequest(definition != null, "Setting '%s' is undefined", request.getKey());

  220.     checkRequest(PropertyType.PROPERTY_SET.equals(definition.type()), "Parameter '%s' is used for setting of property set type only", PARAM_FIELD_VALUES);

  221. 

  222.     Set<String> fieldKeys = definition.fields().stream().map(PropertyFieldDefinition::key).collect(Collectors.toSet());

  223.     ListMultimap<String, String> valuesByFieldKeys = ArrayListMultimap.create(fieldKeys.size(), request.getFieldValues().size() * fieldKeys.size());

  224. 

  225.     request.getFieldValues().stream()

  226.       .map(oneFieldValues -> readOneFieldValues(oneFieldValues, request.getKey()))

  227.       .peek(map -> checkRequest(map.values().stream().anyMatch(StringUtils::isNotBlank), MSG_NO_EMPTY_VALUE))

  228.       .flatMap(map -> map.entrySet().stream())

  229.       .peek(entry -> valuesByFieldKeys.put(entry.getKey(), entry.getValue()))

  230.       .forEach(entry -> checkRequest(fieldKeys.contains(entry.getKey()), "Unknown field key '%s' for setting '%s'", entry.getKey(), request.getKey()));

  231. 

  232.     checkFieldType(request, definition, valuesByFieldKeys);

  233.   }

  234. 

  235.   private void validate(SetRequest request) {

  236.     PropertyDefinition definition = propertyDefinitions.get(request.getKey());

  237.     if (definition == null) {

  238.       return;

  239.     }

  240. 

  241.     checkSingleOrMultiValue(request, definition);

  242.   }

  243. 

  244.   private static void checkFieldType(SetRequest request, PropertyDefinition definition, ListMultimap<String, String> valuesByFieldKeys) {

  245.     for (PropertyFieldDefinition fieldDefinition : definition.fields()) {

  246.       for (String value : valuesByFieldKeys.get(fieldDefinition.key())) {

  247.         PropertyDefinition.Result result = fieldDefinition.validate(value);

  248.         checkRequest(result.isValid(),

  249.           "Error when validating setting with key '%s'. Field '%s' has incorrect value '%s'.",

  250.           request.getKey(), fieldDefinition.key(), value);

  251.       }

  252.     }

  253.   }

  254. 

  255.   private static void checkSingleOrMultiValue(SetRequest request, PropertyDefinition definition) {

  256.     checkRequest(definition.multiValues() ^ request.getValue() != null,

  257.       "Parameter '%s' must be used for single value setting. Parameter '%s' must be used for multi value setting.", PARAM_VALUE, PARAM_VALUES);

  258.   }

  259. 

  260.   private static void checkValueIsSet(SetRequest request) {

  261.     checkRequest(

  262.       request.getValue() != null

  263.         ^ !request.getValues().isEmpty()

  264.         ^ !request.getFieldValues().isEmpty(),

  265.       "Either '%s', '%s' or '%s' must be provided", PARAM_VALUE, PARAM_VALUES, PARAM_FIELD_VALUES);

  266.     checkRequest(request.getValues().stream().allMatch(StringUtils::isNotBlank), MSG_NO_EMPTY_VALUE);

  267.     checkRequest(request.getValue() == null || StringUtils.isNotBlank(request.getValue()), MSG_NO_EMPTY_VALUE);

  268.   }

  269. 

  270.   private static List<String> valuesFromRequest(SetRequest request) {

  271.     return request.getValue() == null ? request.getValues() : Collections.singletonList(request.getValue());

  272.   }

  273. 

  274.   private String persistedKey(SetRequest request) {

  275.     PropertyDefinition definition = propertyDefinitions.get(request.getKey());

  276.     // handles deprecated key but persist the new key

  277.     return definition == null ? request.getKey() : definition.key();

  278.   }

  279. 

  280.   private static String persistedValue(SetRequest request) {

  281.     return request.getValue() == null

  282.       ? request.getValues().stream().map(value -> value.replace(",", "%2C")).collect(COMMA_JOINER)

  283.       : request.getValue();

  284.   }

  285. 

  286.   private void checkPermissions(Optional<ComponentDto> component) {

  287.     if (component.isPresent()) {

  288.       userSession.checkComponentPermission(UserRole.ADMIN, component.get());

  289.     } else {

  290.       userSession.checkIsSystemAdministrator();

  291.     }

  292.   }

  293. 

  294.   private static SetRequest toWsRequest(Request request) {

  295.     SetRequest set = new SetRequest()

  296.       .setKey(request.mandatoryParam(PARAM_KEY))

  297.       .setValue(request.param(PARAM_VALUE))

  298.       .setValues(request.multiParam(PARAM_VALUES))

  299.       .setFieldValues(request.multiParam(PARAM_FIELD_VALUES))

  300.       .setComponent(request.param(PARAM_COMPONENT))

  301.       .setBranch(request.param(PARAM_BRANCH))

  302.       .setPullRequest(request.param(PARAM_PULL_REQUEST));

  303.     checkArgument(set.getValues() != null, "Setting values must not be null");

  304.     checkArgument(set.getFieldValues() != null, "Setting fields values must not be null");

  305.     return set;

  306.   }

  307. 

  308.   private static Map<String, String> readOneFieldValues(String json, String key) {

  309.     Type type = new TypeToken<Map<String, String>>() {

  310.     }.getType();

  311.     Gson gson = GsonHelper.create();

  312.     try {

  313.       return gson.fromJson(json, type);

  314.     } catch (JsonSyntaxException e) {

  315.       throw BadRequestException.create(String.format("JSON '%s' does not respect expected format for setting '%s'. Ex: {\"field1\":\"value1\", \"field2\":\"value2\"}", json, key));

  316.     }

  317.   }

  318. 

  319.   private Optional<ComponentDto> searchComponent(DbSession dbSession, SetRequest request) {

  320.     String componentKey = request.getComponent();

  321.     if (componentKey == null) {

  322.       return Optional.empty();

  323.     }

  324.     return Optional.of(componentFinder.getByKeyAndOptionalBranchOrPullRequest(dbSession, componentKey, request.getBranch(), request.getPullRequest()));

  325.   }

  326. 

  327.   private PropertyDto toProperty(SetRequest request, Optional<ComponentDto> component) {

  328.     String key = persistedKey(request);

  329.     String value = persistedValue(request);

  330. 

  331.     PropertyDto property = new PropertyDto()

  332.       .setKey(key)

  333.       .setValue(value);

  334. 

  335.     if (component.isPresent()) {

  336.       property.setResourceId(component.get().getId());

  337.     }

  338. 

  339.     return property;

  340.   }

  341. 

  342.   private static PropertyDto toFieldProperty(KeyValue keyValue, @Nullable Long componentId) {

  343.     return new PropertyDto().setKey(keyValue.key).setValue(keyValue.value).setResourceId(componentId);

  344.   }

  345. 

  346.   private static class KeyValue {

  347.     private final String key;

  348.     private final String value;

  349. 

  350.     private KeyValue(String key, String value) {

  351.       this.key = key;

  352.       this.value = value;

  353.     }

  354.   }

  355. 

  356.   private static class SetRequest {

  357. 

  358.     private String branch;

  359.     private String pullRequest;

  360.     private String component;

  361.     private List<String> fieldValues;

  362.     private String key;

  363.     private String value;

  364.     private List<String> values;

  365. 

  366.     public SetRequest setBranch(@Nullable String branch) {

  367.       this.branch = branch;

  368.       return this;

  369.     }

  370. 

  371.     @CheckForNull

  372.     public String getBranch() {

  373.       return branch;

  374.     }

  375. 

  376.     public SetRequest setPullRequest(@Nullable String pullRequest) {

  377.       this.pullRequest = pullRequest;

  378.       return this;

  379.     }

  380. 

  381.     @CheckForNull

  382.     public String getPullRequest() {

  383.       return pullRequest;

  384.     }

  385. 

  386.     public SetRequest setComponent(@Nullable String component) {

  387.       this.component = component;

  388.       return this;

  389.     }

  390. 

  391.     @CheckForNull

  392.     public String getComponent() {

  393.       return component;

  394.     }

  395. 

  396.     public SetRequest setFieldValues(List<String> fieldValues) {

  397.       this.fieldValues = fieldValues;

  398.       return this;

  399.     }

  400. 

  401.     public List<String> getFieldValues() {

  402.       return fieldValues;

  403.     }

  404. 

  405.     public SetRequest setKey(String key) {

  406.       this.key = key;

  407.       return this;

  408.     }

  409. 

  410.     public String getKey() {

  411.       return key;

  412.     }

  413. 

  414.     public SetRequest setValue(@Nullable String value) {

  415.       this.value = value;

  416.       return this;

  417.     }

  418. 

  419.     @CheckForNull

  420.     public String getValue() {

  421.       return value;

  422.     }

  423. 

  424.     public SetRequest setValues(@Nullable List<String> values) {

  425.       this.values = values;

  426.       return this;

  427.     }

  428. 

  429.     public List<String> getValues() {

  430.       return values;

  431.     }

  432.   }

  433. }