public boolean authorizePath(ResourceStoreRequest request, Action action) {
TargetSet matched = this.getTargetsForRequest(request);
try {
RequestRoute route = this.getRequestRouteForRequest(request);
if (route.getTargetedRepository() != null) {
// if this repository is contained in any group, we need to get those targets, and tweak the
// TargetMatch
try {
request.pushRequestPath(route.getOriginalRequestPath());
matched.addTargetSet(
this.itemAuthorizer.getGroupsTargetSet(route.getTargetedRepository(), request));
} finally {
request.popRequestPath();
}
}
} catch (ItemNotFoundException e) {
// ignore it, do nothing
// cstamas says: above is untrue. It means that user should get 404, but there is no
// proper solution to do it from this method! The culprit is that "view privilege" piggybacks
// on the getRequestRouteForRequest() method that is not meant for this, it does it's job
// well for routing....
// So, we still have a bug here (NXCM-3600), and I am leaving it intact, since repo-level
// security will catch any non authorized ones as well.
}
return this.itemAuthorizer.authorizePath(matched, action);
}
public Collection<StorageItem> list(ResourceStoreRequest request)
throws ItemNotFoundException, IllegalOperationException, StorageException,
AccessDeniedException {
RequestRoute route = getRequestRouteForRequest(request);
if (route.isRepositoryHit()) {
// it hits a repository, mangle path and call it
Collection<StorageItem> items;
try {
request.pushRequestPath(route.getRepositoryPath());
items = route.getTargetedRepository().list(request);
} finally {
request.popRequestPath();
}
ArrayList<StorageItem> result = new ArrayList<StorageItem>(items.size());
for (StorageItem item : items) {
result.add(mangle(true, request, route, item));
}
return result;
} else {
// this is "above" repositories
return listVirtualPath(request, route);
}
}
protected StorageItem mangle(
boolean isList, ResourceStoreRequest request, RequestRoute route, StorageItem item)
throws AccessDeniedException, ItemNotFoundException, IllegalOperationException,
StorageException {
if (isList) {
((AbstractStorageItem) item)
.setPath(ItemPathUtils.concatPaths(route.getOriginalRequestPath(), item.getName()));
} else {
((AbstractStorageItem) item).setPath(route.getOriginalRequestPath());
}
if (isFollowLinks() && item instanceof StorageLinkItem) {
return dereferenceLink((StorageLinkItem) item);
} else {
return item;
}
}
protected StorageItem retrieveVirtualPath(ResourceStoreRequest request, RequestRoute route)
throws ItemNotFoundException {
ResourceStoreRequest req = new ResourceStoreRequest(route.getOriginalRequestPath());
DefaultStorageCollectionItem result = new DefaultStorageCollectionItem(this, req, true, false);
result.getItemContext().putAll(request.getRequestContext());
return result;
}
public void deleteItem(ResourceStoreRequest request)
throws UnsupportedStorageOperationException, ItemNotFoundException, IllegalOperationException,
StorageException, AccessDeniedException {
RequestRoute route = getRequestRouteForRequest(request);
if (route.isRepositoryHit()) {
// it hits a repository, mangle path and call it
try {
request.pushRequestPath(route.getRepositoryPath());
route.getTargetedRepository().deleteItem(request);
} finally {
request.popRequestPath();
}
} else {
// this is "above" repositories
throw new IllegalRequestException(
request,
"The path '" + request.getRequestPath() + "' does not points to any repository!");
}
}
public TargetSet getTargetsForRequest(ResourceStoreRequest request) {
TargetSet result = new TargetSet();
try {
RequestRoute route = getRequestRouteForRequest(request);
if (route.isRepositoryHit()) {
// it hits a repository, mangle path and call it
try {
request.pushRequestPath(route.getRepositoryPath());
result.addTargetSet(route.getTargetedRepository().getTargetsForRequest(request));
} finally {
request.popRequestPath();
}
}
} catch (ItemNotFoundException e) {
// nothing, empty set will be returned
}
return result;
}
public StorageItem retrieveItem(ResourceStoreRequest request)
throws ItemNotFoundException, IllegalOperationException, StorageException,
AccessDeniedException {
RequestRoute route = getRequestRouteForRequest(request);
if (route.isRepositoryHit()) {
// it hits a repository, mangle path and call it
StorageItem item;
try {
request.pushRequestPath(route.getRepositoryPath());
item = route.getTargetedRepository().retrieveItem(request);
} finally {
request.popRequestPath();
}
return mangle(false, request, route, item);
} else {
// this is "above" repositories
return retrieveVirtualPath(request, route);
}
}
protected Collection<StorageItem> listVirtualPath(
ResourceStoreRequest request, RequestRoute route) throws ItemNotFoundException {
if (route.getRequestDepth() == 0) {
// 1st level
ArrayList<StorageItem> result = new ArrayList<StorageItem>();
for (RepositoryTypeDescriptor rtd :
repositoryTypeRegistry.getRegisteredRepositoryTypeDescriptors()) {
// check is there any repo registered
if (!repositoryRegistry.getRepositoriesWithFacet(rtd.getRole()).isEmpty()) {
ResourceStoreRequest req =
new ResourceStoreRequest(
ItemPathUtils.concatPaths(request.getRequestPath(), rtd.getPrefix()));
DefaultStorageCollectionItem repositories =
new DefaultStorageCollectionItem(this, req, true, false);
repositories.getItemContext().putAll(request.getRequestContext());
result.add(repositories);
}
}
return result;
} else if (route.getRequestDepth() == 1) {
// 2nd level
List<? extends Repository> repositories = null;
Class<? extends Repository> kind = null;
for (RepositoryTypeDescriptor rtd :
repositoryTypeRegistry.getRegisteredRepositoryTypeDescriptors()) {
if (route.getStrippedPrefix().startsWith("/" + rtd.getPrefix())) {
kind = rtd.getRole();
repositories = repositoryRegistry.getRepositoriesWithFacet(kind);
break;
}
}
// if no prefix matched, Item not found
if (repositories == null || repositories.isEmpty()) {
throw new ItemNotFoundException(request);
}
// filter access to the repositories
// NOTE: do this AFTER the null/empty check so we return an empty list vs. an ItemNotFound
repositories = filterAccessToRepositories(repositories);
ArrayList<StorageItem> result = new ArrayList<StorageItem>(repositories.size());
for (Repository repository : repositories) {
if (repository.isExposed() && repository.isBrowseable()) {
DefaultStorageCollectionItem repoItem = null;
ResourceStoreRequest req = null;
if (Repository.class.equals(kind)) {
req =
new ResourceStoreRequest(
ItemPathUtils.concatPaths(request.getRequestPath(), repository.getId()));
} else {
req =
new ResourceStoreRequest(
ItemPathUtils.concatPaths(
request.getRequestPath(), repository.getPathPrefix()));
}
repoItem = new DefaultStorageCollectionItem(this, req, true, false);
repoItem.getItemContext().putAll(request.getRequestContext());
result.add(repoItem);
}
}
return result;
} else {
throw new ItemNotFoundException(request);
}
}
// XXX: a todo here is to make the "aliases" ("groups" for GroupRepository.class) dynamic,
// and even think about new layout: every kind should have it's own "folder", you don't want to
// see
// maven2 and P2 repositories along each other...
public RequestRoute getRequestRouteForRequest(ResourceStoreRequest request)
throws ItemNotFoundException {
RequestRoute result = new RequestRoute();
result.setOriginalRequestPath(request.getRequestPath());
result.setResourceStoreRequest(request);
String correctedPath =
request.getRequestPath().startsWith(RepositoryItemUid.PATH_SEPARATOR)
? request.getRequestPath().substring(1, request.getRequestPath().length())
: request.getRequestPath();
String[] explodedPath = null;
if (StringUtils.isEmpty(correctedPath)) {
explodedPath = new String[0];
} else {
explodedPath = correctedPath.split(RepositoryItemUid.PATH_SEPARATOR);
}
Class<? extends Repository> kind = null;
result.setRequestDepth(explodedPath.length);
if (explodedPath.length >= 1) {
// we have kind information ("repositories" vs "groups" etc)
for (RepositoryTypeDescriptor rtd :
repositoryTypeRegistry.getRegisteredRepositoryTypeDescriptors()) {
if (rtd.getPrefix().equals(explodedPath[0])) {
kind = rtd.getRole();
break;
}
}
if (kind == null) {
// unknown explodedPath[0]
throw new ItemNotFoundException(request);
}
result.setStrippedPrefix(ItemPathUtils.concatPaths(explodedPath[0]));
}
if (explodedPath.length >= 2) {
// we have repoId information in path
Repository repository = null;
try {
repository = getRepositoryForPathPrefixOrId(explodedPath[1], kind);
// explodedPath[1] is not _always_ ID anymore! It is PathPrefix _or_ ID! NEXUS-1710
// repository = repositoryRegistry.getRepositoryWithFacet( explodedPath[1], kind );
if (!repository.isExposed()) {
// this is not the main facet or the repo is not exposed
throw new ItemNotFoundException(request);
}
} catch (NoSuchRepositoryException e) {
// obviously, the repoId (explodedPath[1]) points to some nonexistent repoID
throw new ItemNotFoundException(request, e);
}
result.setStrippedPrefix(ItemPathUtils.concatPaths(explodedPath[0], explodedPath[1]));
result.setTargetedRepository(repository);
String repoPath = "";
for (int i = 2; i < explodedPath.length; i++) {
repoPath = ItemPathUtils.concatPaths(repoPath, explodedPath[i]);
}
if (result.getOriginalRequestPath().endsWith(RepositoryItemUid.PATH_SEPARATOR)) {
repoPath = repoPath + RepositoryItemUid.PATH_SEPARATOR;
}
result.setRepositoryPath(repoPath);
}
return result;
}
public void copyItem(ResourceStoreRequest from, ResourceStoreRequest to)
throws UnsupportedStorageOperationException, ItemNotFoundException, IllegalOperationException,
StorageException, AccessDeniedException {
RequestRoute fromRoute = getRequestRouteForRequest(from);
RequestRoute toRoute = getRequestRouteForRequest(to);
if (fromRoute.isRepositoryHit() && toRoute.isRepositoryHit()) {
// it hits a repository, mangle path and call it
try {
from.pushRequestPath(fromRoute.getRepositoryPath());
to.pushRequestPath(toRoute.getRepositoryPath());
if (fromRoute.getTargetedRepository() == toRoute.getTargetedRepository()) {
fromRoute.getTargetedRepository().copyItem(from, to);
} else {
StorageItem item = fromRoute.getTargetedRepository().retrieveItem(from);
if (item instanceof StorageFileItem) {
try {
toRoute
.getTargetedRepository()
.storeItem(
to,
((StorageFileItem) item).getInputStream(),
item.getRepositoryItemAttributes().asMap());
} catch (IOException e) {
// XXX: this is nonsense, to box IOException into subclass of IOException!
throw new LocalStorageException(e);
}
} else if (item instanceof StorageCollectionItem) {
toRoute
.getTargetedRepository()
.createCollection(to, item.getRepositoryItemAttributes().asMap());
} else {
throw new IllegalRequestException(
from,
"Cannot copy item of class='"
+ item.getClass().getName()
+ "' over multiple repositories.");
}
}
} finally {
from.popRequestPath();
to.popRequestPath();
}
} else {
// this is "above" repositories
if (!fromRoute.isRepositoryHit()) {
throw new IllegalRequestException(
from, "The path '" + from.getRequestPath() + "' does not points to any repository!");
} else {
throw new IllegalRequestException(
to, "The path '" + to.getRequestPath() + "' does not points to any repository!");
}
}
}
