Package org.candlepin.resource

Source Code of org.candlepin.resource.GuestIdResource

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
/**
* Copyright (c) 2009 - 2012 Red Hat, Inc.
*
* This software is licensed to you under the GNU General Public License,
* version 2 (GPLv2). There is NO WARRANTY for this software, express or
* implied, including the implied warranties of MERCHANTABILITY or FITNESS
* FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv2
* along with this software; if not, see
* http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
*
* Red Hat trademarks are not licensed under GPLv2. No permission is
* granted to use or replicate Red Hat trademarks that are incorporated
* in this software or its documentation.
*/
package org.candlepin.resource;

import org.candlepin.audit.EventFactory;
import org.candlepin.audit.EventSink;
import org.candlepin.auth.Access;
import org.candlepin.auth.Principal;
import org.candlepin.auth.SubResource;
import org.candlepin.auth.interceptor.Verify;
import org.candlepin.common.exceptions.BadRequestException;
import org.candlepin.common.exceptions.ForbiddenException;
import org.candlepin.common.exceptions.NotFoundException;
import org.candlepin.model.Consumer;
import org.candlepin.model.ConsumerCurator;
import org.candlepin.model.GuestId;
import org.candlepin.model.GuestIdCurator;
import org.candlepin.paging.Page;
import org.candlepin.paging.PageRequest;

import com.google.inject.Inject;

import org.jboss.resteasy.spi.ResteasyProviderFactory;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.xnap.commons.i18n.I18n;

import java.util.List;

import javax.ws.rs.DELETE;
import javax.ws.rs.DefaultValue;
import javax.ws.rs.GET;
import javax.ws.rs.PUT;
import javax.ws.rs.Path;
import javax.ws.rs.PathParam;
import javax.ws.rs.Produces;
import javax.ws.rs.QueryParam;
import javax.ws.rs.core.Context;
import javax.ws.rs.core.MediaType;

/**
* API Gateway for registered consumers guests
*/
@Path("/consumers/{consumer_uuid}/guestids")
public class GuestIdResource {

    private static Logger log = LoggerFactory.getLogger(GuestIdResource.class);

    private GuestIdCurator guestIdCurator;
    private ConsumerCurator consumerCurator;
    private ConsumerResource consumerResource;
    private I18n i18n;
    private EventSink sink;
    private EventFactory eventFactory;

    @Inject
    public GuestIdResource(GuestIdCurator guestIdCurator,
            ConsumerCurator consumerCurator, ConsumerResource consumerResource,
            I18n i18n, EventFactory eventFactory, EventSink sink) {
        this.guestIdCurator = guestIdCurator;
        this.consumerCurator = consumerCurator;
        this.consumerResource = consumerResource;
        this.i18n = i18n;
        this.eventFactory = eventFactory;
        this.sink = sink;
    }

    /**
     * Retrieves the List of a Consumer's Guests
     *
     * @return a list of GuestId objects
     * @httpcode 400
     * @httpcode 404
     * @httpcode 200
     */
    @GET
    @Produces(MediaType.APPLICATION_JSON)
    public List<GuestId> getGuestIds(
            @PathParam("consumer_uuid") @Verify(Consumer.class) String consumerUuid,
            @Context PageRequest pageRequest) {
        Consumer consumer = consumerCurator.findByUuid(consumerUuid);
        Page<List<GuestId>> page = guestIdCurator.listByConsumer(consumer, pageRequest);

        // Store the page for the LinkHeaderPostInterceptor
        ResteasyProviderFactory.pushContext(Page.class, page);
        List<GuestId> result = page.getPageData();
        return result;
    }

    /**
     * Retrieves a single Guest
     * <p>
     * By its consumer and the guest UUID
     *
     * @param consumerUuid consumer who owns or hosts the guest in question
     * @param guestId guest virtual uuid
     * @return a GuestId object
     */
    @GET
    @Produces(MediaType.APPLICATION_JSON)
    @Path("/{guest_id}")
    public GuestId getGuestId(
            @PathParam("consumer_uuid") @Verify(Consumer.class) String consumerUuid,
            @PathParam("guest_id") String guestId) {
        Consumer consumer = consumerCurator.findByUuid(consumerUuid);
        GuestId result = validateGuestId(
            guestIdCurator.findByConsumerAndId(consumer, guestId), guestId);
        return result;
    }

    /**
     * Updates the List of Guests on a Consumer
     * <p>
     * This method should work just like updating the consumer, except that it only
     * updates GuestIds.  Eventually we should move All the logic here, and depricate
     * updating guests through the consumer update.
     *
     * @param consumerUuid Id of consumer who owns the guests
     * @param guestIds List of guests from which to update the consumer
     */
    @PUT
    @Produces(MediaType.APPLICATION_JSON)
    public void updateGuests(
            @PathParam("consumer_uuid") @Verify(Consumer.class) String consumerUuid,
            List<GuestId> guestIds) {
        Consumer toUpdate = consumerCurator.findByUuid(consumerUuid);

        // Create a skeleton consumer for consumerResource.performConsumerUpdates
        Consumer consumer = new Consumer();
        consumer.setGuestIds(guestIds);

        if (consumerResource.performConsumerUpdates(consumer, toUpdate)) {
            consumerCurator.update(toUpdate);
        }
    }

    /**
     * Updates a single Guest on a Consumer
     * <p>
     * Allows virt-who to avoid uploading an entire list of guests
     *
     * @param consumerUuid consumer who owns or hosts the guest in question
     * @param guestId guest virtual uuid
     * @param updated updated guest data to use
     */
    @PUT
    @Produces(MediaType.APPLICATION_JSON)
    @Path("/{guest_id}")
    public void updateGuest(
            @PathParam("consumer_uuid") @Verify(Consumer.class) String consumerUuid,
            @PathParam("guest_id") String guestId,
            GuestId updated) {

        // I'm not sure this can happen
        if (guestId == null || guestId.isEmpty()) {
            throw new BadRequestException(
                i18n.tr("Please supply a valid guest id"));
        }

        if (updated == null) {
            // If they're not sending attributes, we can get the guestId from the url
            updated = new GuestId(guestId);
        }

        // Allow the id to be left out in this case, we can use the path param
        if (updated.getGuestId() == null) {
            updated.setGuestId(guestId);
        }

        // If the guest uuids do not match, something is wrong
        if (!guestId.equalsIgnoreCase(updated.getGuestId())) {
            throw new BadRequestException(
                i18n.tr("Guest ID in json \"{0}\" does not match path guest ID \"{1}\"",
                    updated.getGuestId(), guestId));
        }

        Consumer consumer = consumerCurator.verifyAndLookupConsumer(consumerUuid);
        updated.setConsumer(consumer);
        GuestId toUpdate =
            guestIdCurator.findByGuestIdAndOrg(guestId, consumer.getOwner());
        // If this guest has a consumer, we want to remove host-specific entitlements
        if (toUpdate != null) {
            revokeBadHostRestrictedEnts(toUpdate, consumer);
            updated.setId(toUpdate.getId());
        }
        guestIdCurator.merge(updated);
    }

    /**
     * Removes the Guest from the Consumer
     *
     * @param consumerUuid consumer who owns or hosts the guest in question
     * @param guestId guest virtual uuid
     * @param unregister Optionally unregister the guests consumer if it exists
     */
    @DELETE
    @Produces(MediaType.APPLICATION_JSON)
    @Path("/{guest_id}")
    public void deleteGuest(
            @PathParam("consumer_uuid") @Verify(Consumer.class) String consumerUuid,
            @PathParam("guest_id") String guestId,
            @QueryParam("unregister") @DefaultValue("false") boolean unregister,
            @Context Principal principal) {

        Consumer consumer = consumerCurator.verifyAndLookupConsumer(consumerUuid);
        GuestId toDelete = validateGuestId(
            guestIdCurator.findByConsumerAndId(consumer, guestId), guestId);

        if (unregister) {
            unregisterConsumer(toDelete, principal);
        }

        sink.queueEvent(eventFactory.guestIdDeleted(toDelete));
        guestIdCurator.delete(toDelete);
    }

    private GuestId validateGuestId(GuestId guest, String guestUuid) {
        if (guest == null) {
            throw new NotFoundException(i18n.tr(
                "Guest with uuid {0} could not be found.", guestUuid));
        }
        return guest;
    }

    private void revokeBadHostRestrictedEnts(GuestId toUpdate, Consumer newHost) {
        // If there is a registered consumer on this guest
        // we should revoke host specific entitlements
        Consumer guestConsumer = consumerCurator.findByVirtUuid(toUpdate.getGuestId(),
            toUpdate.getConsumer().getOwner().getId());
        if (guestConsumer != null && !guestConsumer.equals(newHost)) {
            // new Consumer has no uuid because we want to
            // remove all host limited subscriptions
            consumerResource.revokeGuestEntitlementsNotMatchingHost(newHost,
                guestConsumer);
        }
    }

    private void unregisterConsumer(GuestId guest, Principal principal) {
        Consumer guestConsumer = consumerCurator.findByVirtUuid(guest.getGuestId(),
            guest.getConsumer().getOwner().getId());
        if (guestConsumer != null) {
            if ((principal == null) ||
                    principal.canAccess(guestConsumer, SubResource.NONE, Access.ALL)) {
                consumerResource.deleteConsumer(guestConsumer.getUuid(), principal);
            }
            else {
                throw new ForbiddenException(i18n.tr(
                    "Cannot unregister {0} {1} because: {2}",
                    guestConsumer.getType().getLabel(), guestConsumer.getName(),
                    i18n.tr("Invalid Credentials")));
            }
        }
    }
}
TOP

Related Classes of org.candlepin.resource.GuestIdResource

  • org.candlepin.model.Consumer
  • org.candlepin.model.GuestId
  • org.candlepin.resource.test.GuestIdResourceTest
  • org.candlepin.common.exceptions.BadRequestException
  • org.candlepin.common.exceptions.ForbiddenException
  • org.candlepin.common.exceptions.NotFoundException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.