public JobAclEntry(String member, ObjectMap permissions) { super(member, EnumSet.noneOf(JobPermissions.class)); EnumSet<JobPermissions> aux = EnumSet.allOf(JobPermissions.class); for (JobPermissions permission : aux) { if (permissions.containsKey(permission.name()) && permissions.getBoolean(permission.name())) { this.permissions.add(permission); } } }
.map(IndividualAclEntry.IndividualPermissions::toString) .collect(Collectors.toList())); this.fullPermissionsMap.put(Entity.JOB, Arrays.stream(JobAclEntry.JobPermissions.values()) .map(JobAclEntry.JobPermissions::toString) .collect(Collectors.toList()));
@Override public void checkJobPermission(long studyId, long jobId, String userId, JobAclEntry.JobPermissions permission) throws CatalogException { Query query = new Query() .append(JobDBAdaptor.QueryParams.UID.key(), jobId) .append(JobDBAdaptor.QueryParams.STUDY_UID.key(), studyId); StudyAclEntry.StudyPermissions studyPermission; switch (permission) { case VIEW: studyPermission = StudyAclEntry.StudyPermissions.VIEW_JOBS; break; case UPDATE: studyPermission = StudyAclEntry.StudyPermissions.WRITE_JOBS; break; case DELETE: studyPermission = StudyAclEntry.StudyPermissions.DELETE_JOBS; break; default: throw new CatalogAuthorizationException("Permission " + permission.toString() + " not found"); } if (checkUserPermission(userId, query, studyPermission, jobDBAdaptor)) { return; } throw CatalogAuthorizationException.deny(userId, permission.toString(), "Job", jobId, null); }
private MongoCursor<Document> getMongoCursor(Query query, QueryOptions options, Document studyDocument, String user) throws CatalogDBException, CatalogAuthorizationException { Document queryForAuthorisedEntries = null; if (studyDocument != null && user != null) { // Get the document query needed to check the permissions as well queryForAuthorisedEntries = getQueryForAuthorisedEntries(studyDocument, user, StudyAclEntry.StudyPermissions.VIEW_JOBS.name(), JobAclEntry.JobPermissions.VIEW.name(), Entity.JOB.name()); } filterOutDeleted(query); Bson bson = parseQuery(query, false, queryForAuthorisedEntries); QueryOptions qOptions; if (options != null) { qOptions = new QueryOptions(options); } else { qOptions = new QueryOptions(); } qOptions = filterOptions(qOptions, FILTER_ROUTE_JOBS); logger.debug("Job get: query : {}", bson.toBsonDocument(Document.class, MongoClient.getDefaultCodecRegistry())); return jobCollection.nativeQuery().find(bson, qOptions).iterator(); }
@Override public QueryResult<Long> count(Query query, String user, StudyAclEntry.StudyPermissions studyPermissions) throws CatalogDBException, CatalogAuthorizationException { filterOutDeleted(query); StudyAclEntry.StudyPermissions studyPermission = (studyPermissions == null ? StudyAclEntry.StudyPermissions.VIEW_JOBS : studyPermissions); // Get the study document Query studyQuery = new Query(StudyDBAdaptor.QueryParams.UID.key(), query.getLong(QueryParams.STUDY_UID.key())); QueryResult queryResult = dbAdaptorFactory.getCatalogStudyDBAdaptor().nativeGet(studyQuery, QueryOptions.empty()); if (queryResult.getNumResults() == 0) { throw new CatalogDBException("Study " + query.getLong(QueryParams.STUDY_UID.key()) + " not found"); } // Get the document query needed to check the permissions as well Document queryForAuthorisedEntries = getQueryForAuthorisedEntries((Document) queryResult.first(), user, studyPermission.name(), studyPermission.getJobPermission().name(), Entity.JOB.name()); Bson bson = parseQuery(query, false, queryForAuthorisedEntries); logger.debug("Job count: query : {}, dbTime: {}", bson.toBsonDocument(Document.class, MongoClient.getDefaultCodecRegistry())); return jobCollection.count(bson); }
@Override public QueryResult groupBy(Query query, String field, QueryOptions options, String user) throws CatalogDBException, CatalogAuthorizationException { Document studyDocument = getStudyDocument(query); Document queryForAuthorisedEntries = getQueryForAuthorisedEntries(studyDocument, user, StudyAclEntry.StudyPermissions.VIEW_JOBS.name(), JobAclEntry.JobPermissions.VIEW.name(), Entity.JOB.name()); filterOutDeleted(query); Bson bsonQuery = parseQuery(query, false, queryForAuthorisedEntries); return groupBy(jobCollection, bsonQuery, field, QueryParams.NAME.key(), options); }
@Override public QueryResult groupBy(Query query, List<String> fields, QueryOptions options, String user) throws CatalogDBException, CatalogAuthorizationException { Document studyDocument = getStudyDocument(query); Document queryForAuthorisedEntries = getQueryForAuthorisedEntries(studyDocument, user, StudyAclEntry.StudyPermissions.VIEW_JOBS.name(), JobAclEntry.JobPermissions.VIEW.name(), Entity.JOB.name()); filterOutDeleted(query); Bson bsonQuery = parseQuery(query, false, queryForAuthorisedEntries); return groupBy(jobCollection, bsonQuery, fields, QueryParams.NAME.key(), options); }
public JobAclEntry.JobPermissions getJobPermission() { if (this.type == JOB) { return JobAclEntry.JobPermissions.valueOf(this.permission); } return null; }