private void reportDeleteErrors(CifsShareACLUpdateParams param) {
String opName = ShareACLOperationType.DELETE.name();
// Report Add ACL Errors
ShareACLs shareAcls = param.getAclsToDelete();
if (shareAcls == null || shareAcls.getShareACLs().size() == 0) return;
List<ShareACL> shareAclList = shareAcls.getShareACLs();
for (ShareACL acl : shareAclList) {
if (!acl.canProceedToNextStep()) {
ShareACLOperationErrorType error = acl.getErrorType();
switch (error) {
/*
* case SNAPSHOT_EXPORT_SHOULD_BE_READ_ONLY: { throw
* APIException.badRequests.snapshotExportPermissionReadOnly();
* }
*/
case USER_AND_GROUP_PROVIDED:
{
throw APIException.badRequests.bothUserAndGroupInACLFound(
acl.getUser(), acl.getGroup());
}
case USER_OR_GROUP_NOT_PROVIDED:
{
throw APIException.badRequests.missingUserOrGroupInACE(opName);
}
case MULTIPLE_ACES_WITH_SAME_USER_OR_GROUP:
{
String userOrGroup = acl.getUser() == null ? acl.getGroup() : acl.getUser();
throw APIException.badRequests.multipleACLsWithUserOrGroupFound(opName, userOrGroup);
}
case MULTIPLE_DOMAINS_FOUND:
{
String domain1 = acl.getDomain();
String userOrGroup = acl.getUser() == null ? acl.getGroup() : acl.getUser();
String domain2 = userOrGroup.substring(0, userOrGroup.indexOf("\\"));
throw APIException.badRequests.multipleDomainsFound(opName, domain1, domain2);
}
case ACL_NOT_FOUND:
{
throw APIException.badRequests.shareACLNotFoundFound(opName, acl.toString());
}
default:
break;
}
}
}
}
private void verifyUserGroup(ShareACL acl) {
String userOrGroup = null;
if (acl == null) {
return;
}
if (acl.getUser() == null && acl.getGroup() == null) {
acl.cancelNextStep(ShareACLOperationErrorType.USER_OR_GROUP_NOT_PROVIDED);
_log.error("User or group is missing.");
} else if (acl.getUser() != null && acl.getGroup() != null) {
acl.cancelNextStep(ShareACLOperationErrorType.USER_AND_GROUP_PROVIDED);
_log.error("Either user or group should be provided. Never both.");
} else {
String domain = acl.getDomain();
if (domain == null) domain = "";
domain = domain.toLowerCase();
if (acl.getUser() != null) {
userOrGroup = domain + acl.getUser().toLowerCase();
} else {
userOrGroup = domain + acl.getGroup().toLowerCase();
}
}
if (userOrGroup != null) {
if (!userGroupList.contains(userOrGroup)) {
userGroupList.add(userOrGroup);
} else {
acl.cancelNextStep(ShareACLOperationErrorType.MULTIPLE_ACES_WITH_SAME_USER_OR_GROUP);
_log.error("There are multiple ACEs with same user or group.");
}
}
// below code is to validate domain
if (acl.getDomain() != null && acl.getUser() != null) {
if (acl.getUser().contains("\\")) {
acl.cancelNextStep(ShareACLOperationErrorType.MULTIPLE_DOMAINS_FOUND);
_log.error("Multiple Domains found. Please provide either in user or in domain field.");
}
}
if (acl.getDomain() != null && acl.getGroup() != null) {
if (acl.getGroup().contains("\\")) {
acl.cancelNextStep(ShareACLOperationErrorType.MULTIPLE_DOMAINS_FOUND);
_log.error("Multiple Domains found. Please provide either in group or in domain field.");
}
}
}
private CifsShareACL getExistingACL(ShareACL requestAcl) {
CifsShareACL acl = null;
String domainOfReqAce = requestAcl.getDomain();
if (domainOfReqAce == null) domainOfReqAce = "";
String userOrGroup =
requestAcl.getUser() == null ? requestAcl.getGroup() : requestAcl.getUser();
// Construct ACL Index
StringBuffer aclIndex = new StringBuffer();
aclIndex.append(
this.fs == null ? this.snapshot.getId().toString() : this.fs.getId().toString());
aclIndex.append(this.shareName).append(domainOfReqAce).append(userOrGroup);
acl = this.queryACLByIndex(aclIndex.toString());
return acl;
}
private void reportAddErrors(CifsShareACLUpdateParams param) {
String opName = ShareACLOperationType.ADD.name();
// Report Add ACL Errors
ShareACLs shareAcls = param.getAclsToAdd();
if (shareAcls == null || shareAcls.getShareACLs().size() == 0) return;
List<ShareACL> shareAclList = shareAcls.getShareACLs();
for (ShareACL acl : shareAclList) {
if (!acl.canProceedToNextStep()) {
ShareACLOperationErrorType error = acl.getErrorType();
switch (error) {
case SNAPSHOT_SHARE_SHOULD_BE_READ_ONLY:
{
throw APIException.badRequests.snapshotSMBSharePermissionReadOnly();
}
case INVALID_PERMISSION:
{
if (acl.getPermission() != null) {
throw APIException.badRequests.invalidPermissionForACL(acl.getPermission());
} else {
throw APIException.badRequests.missingValueInACE(opName, REQUEST_PARAM_PERMISSION);
}
}
case USER_AND_GROUP_PROVIDED:
{
throw APIException.badRequests.bothUserAndGroupInACLFound(
acl.getUser(), acl.getGroup());
}
case USER_OR_GROUP_NOT_PROVIDED:
{
throw APIException.badRequests.missingUserOrGroupInACE(opName);
}
case MULTIPLE_ACES_WITH_SAME_USER_OR_GROUP:
{
String userOrGroup = acl.getUser() == null ? acl.getGroup() : acl.getUser();
throw APIException.badRequests.multipleACLsWithUserOrGroupFound(opName, userOrGroup);
}
case MULTIPLE_DOMAINS_FOUND:
{
String domain1 = acl.getDomain();
String userOrGroup = acl.getUser() == null ? acl.getGroup() : acl.getUser();
String domain2 = userOrGroup.substring(0, userOrGroup.indexOf("\\"));
throw APIException.badRequests.multipleDomainsFound(opName, domain1, domain2);
}
case ACL_EXISTS:
{
throw APIException.badRequests.shareACLAlreadyExists(opName, acl.toString());
}
// case ACL_NOT_FOUND:
default:
break;
}
}
}
}
