Example 1 with NamespaceNotFoundException
use of co.cask.cdap.common.NamespaceNotFoundException in project cdap by caskdata.
the class DatasetInstanceService method create.
/**
* Creates a dataset instance.
*
* @param namespaceId the namespace to create the dataset instance in
* @param name the name of the new dataset instance
* @param props the properties for the new dataset instance
* @throws NamespaceNotFoundException if the specified namespace was not found
* @throws DatasetAlreadyExistsException if a dataset with the same name already exists
* @throws DatasetTypeNotFoundException if the dataset type was not found
* @throws UnauthorizedException if perimeter security and authorization are enabled, and the current user does not
* have {@link Action#WRITE} privilege on the #instance's namespace
*/
void create(String namespaceId, String name, DatasetInstanceConfiguration props) throws Exception {
NamespaceId namespace = ConversionHelpers.toNamespaceId(namespaceId);
Principal principal = authenticationContext.getPrincipal();
authorizationEnforcer.enforce(namespace, principal, Action.WRITE);
ensureNamespaceExists(namespace);
DatasetId datasetId = ConversionHelpers.toDatasetInstanceId(namespaceId, name);
DatasetSpecification existing = instanceManager.get(datasetId);
if (existing != null) {
throw new DatasetAlreadyExistsException(datasetId);
}
DatasetTypeMeta typeMeta = getTypeInfo(namespace, props.getTypeName());
if (typeMeta == null) {
// Type not found in the instance's namespace and the system namespace. Bail out.
throw new DatasetTypeNotFoundException(ConversionHelpers.toDatasetTypeId(namespace, props.getTypeName()));
}
// It is now determined that a new dataset will be created. First grant privileges, then create the dataset.
// If creation fails, revoke the granted privileges. This ensures that just like delete, there may be orphaned
// privileges in rare scenarios, but there can never be orphaned datasets.
// If the dataset previously existed and was deleted, but revoking privileges somehow failed, there may be orphaned
// privileges for the dataset. Revoke them first, so no users unintentionally get privileges on the dataset.
privilegesManager.revoke(datasetId);
// grant all privileges on the dataset to be created
privilegesManager.grant(datasetId, principal, EnumSet.allOf(Action.class));
LOG.info("Creating dataset {}.{}, type name: {}, properties: {}", namespaceId, name, props.getTypeName(), props.getProperties());
// Note how we execute configure() via opExecutorClient (outside of ds service) to isolate running user code
try {
String ownerPrincipal = props.getOwnerPrincipal();
// exists or not
if (ownerPrincipal != null) {
KerberosPrincipalId owner = new KerberosPrincipalId(ownerPrincipal);
ownerAdmin.add(datasetId, owner);
}
try {
DatasetSpecification spec = opExecutorClient.create(datasetId, typeMeta, DatasetProperties.builder().addAll(props.getProperties()).setDescription(props.getDescription()).build());
instanceManager.add(namespace, spec);
metaCache.invalidate(datasetId);
publishAudit(datasetId, AuditType.CREATE);
// Enable explore
enableExplore(datasetId, spec, props);
} catch (Exception e) {
// there was a problem in creating the dataset instance so delete the owner if it got added earlier
// safe to call for entities which does not have an owner too
ownerAdmin.delete(datasetId);
throw e;
}
} catch (Exception e) {
// there was a problem in creating the dataset instance so revoke the privileges
privilegesManager.revoke(datasetId);
throw e;
}
}
Also used :
Action(co.cask.cdap.proto.security.Action)
DatasetSpecification(co.cask.cdap.api.dataset.DatasetSpecification)
DatasetTypeMeta(co.cask.cdap.proto.DatasetTypeMeta)
DatasetAlreadyExistsException(co.cask.cdap.common.DatasetAlreadyExistsException)
NamespaceId(co.cask.cdap.proto.id.NamespaceId)
DatasetTypeNotFoundException(co.cask.cdap.common.DatasetTypeNotFoundException)
KerberosPrincipalId(co.cask.cdap.proto.id.KerberosPrincipalId)
Principal(co.cask.cdap.proto.security.Principal)
NamespaceNotFoundException(co.cask.cdap.common.NamespaceNotFoundException)
DatasetNotFoundException(co.cask.cdap.common.DatasetNotFoundException)
DatasetTypeNotFoundException(co.cask.cdap.common.DatasetTypeNotFoundException)
UnauthorizedException(co.cask.cdap.security.spi.authorization.UnauthorizedException)
HandlerException(co.cask.cdap.common.HandlerException)
DatasetAlreadyExistsException(co.cask.cdap.common.DatasetAlreadyExistsException)
IOException(java.io.IOException)
ExecutionException(java.util.concurrent.ExecutionException)
NotFoundException(co.cask.cdap.common.NotFoundException)
DatasetId(co.cask.cdap.proto.id.DatasetId)
Example 2 with NamespaceNotFoundException
use of co.cask.cdap.common.NamespaceNotFoundException in project cdap by caskdata.
the class DefaultNamespaceAdmin method delete.
/**
* Deletes the specified namespace
*
* @param namespaceId the {@link Id.Namespace} of the specified namespace
* @throws NamespaceCannotBeDeletedException if the specified namespace cannot be deleted
* @throws NamespaceNotFoundException if the specified namespace does not exist
*/
@Override
@AuthEnforce(entities = "namespaceId", enforceOn = NamespaceId.class, actions = Action.ADMIN)
public synchronized void delete(@Name("namespaceId") final NamespaceId namespaceId) throws Exception {
// TODO: CDAP-870, CDAP-1427: Delete should be in a single transaction.
NamespaceMeta namespaceMeta = get(namespaceId);
if (checkProgramsRunning(namespaceId)) {
throw new NamespaceCannotBeDeletedException(namespaceId, String.format("Some programs are currently running in namespace " + "'%s', please stop them before deleting namespace", namespaceId));
}
LOG.info("Deleting namespace '{}'.", namespaceId);
try {
resourceDeleter.get().deleteResources(namespaceMeta);
// namespace in the storage provider (Hive, HBase, etc), since we re-use their default namespace.
if (!NamespaceId.DEFAULT.equals(namespaceId)) {
// Finally delete namespace from MDS and remove from cache
deleteNamespaceMeta(namespaceId);
// revoke privileges as the final step. This is done in the end, because if it is done before actual deletion,
// and deletion fails, we may have a valid (or invalid) namespace in the system, that no one has privileges on,
// so no one can clean up. This may result in orphaned privileges, which will be cleaned up by the create API
// if the same namespace is successfully re-created.
privilegesManager.revoke(namespaceId);
LOG.info("Namespace '{}' deleted", namespaceId);
} else {
LOG.info("Keeping the '{}' namespace after removing all data.", NamespaceId.DEFAULT);
}
} catch (Exception e) {
LOG.warn("Error while deleting namespace {}", namespaceId, e);
throw new NamespaceCannotBeDeletedException(namespaceId, e);
}
}
Also used :
NamespaceMeta(co.cask.cdap.proto.NamespaceMeta)
NamespaceCannotBeDeletedException(co.cask.cdap.common.NamespaceCannotBeDeletedException)
NamespaceCannotBeCreatedException(co.cask.cdap.common.NamespaceCannotBeCreatedException)
NamespaceNotFoundException(co.cask.cdap.common.NamespaceNotFoundException)
BadRequestException(co.cask.cdap.common.BadRequestException)
UnauthorizedException(co.cask.cdap.security.spi.authorization.UnauthorizedException)
NamespaceCannotBeDeletedException(co.cask.cdap.common.NamespaceCannotBeDeletedException)
DatasetManagementException(co.cask.cdap.api.dataset.DatasetManagementException)
IOException(java.io.IOException)
ExecutionException(java.util.concurrent.ExecutionException)
NamespaceAlreadyExistsException(co.cask.cdap.common.NamespaceAlreadyExistsException)
AuthEnforce(co.cask.cdap.common.security.AuthEnforce)
Example 3 with NamespaceNotFoundException
use of co.cask.cdap.common.NamespaceNotFoundException in project cdap by caskdata.
the class ExistingEntitySystemMetadataWriter method writeSystemMetadataForDatasets.
private void writeSystemMetadataForDatasets(NamespaceId namespace, DatasetFramework dsFramework) throws DatasetManagementException, IOException, NamespaceNotFoundException {
SystemDatasetInstantiatorFactory systemDatasetInstantiatorFactory = new SystemDatasetInstantiatorFactory(locationFactory, dsFramework, cConf);
try (SystemDatasetInstantiator systemDatasetInstantiator = systemDatasetInstantiatorFactory.create()) {
for (DatasetSpecificationSummary summary : dsFramework.getInstances(namespace)) {
final DatasetId dsInstance = namespace.dataset(summary.getName());
DatasetProperties dsProperties = DatasetProperties.of(summary.getProperties());
String dsType = summary.getType();
Dataset dataset = null;
try {
try {
dataset = impersonator.doAs(dsInstance, new Callable<Dataset>() {
@Override
public Dataset call() throws Exception {
return systemDatasetInstantiator.getDataset(dsInstance);
}
});
} catch (Exception e) {
LOG.warn("Exception while instantiating dataset {}", dsInstance, e);
}
SystemMetadataWriter writer = new DatasetSystemMetadataWriter(metadataStore, dsInstance, dsProperties, dataset, dsType, summary.getDescription());
writer.write();
} finally {
if (dataset != null) {
dataset.close();
}
}
}
}
}
Also used :
SystemDatasetInstantiatorFactory(co.cask.cdap.data.dataset.SystemDatasetInstantiatorFactory)
DatasetSystemMetadataWriter(co.cask.cdap.data2.metadata.system.DatasetSystemMetadataWriter)
SystemDatasetInstantiator(co.cask.cdap.data.dataset.SystemDatasetInstantiator)
Dataset(co.cask.cdap.api.dataset.Dataset)
DatasetProperties(co.cask.cdap.api.dataset.DatasetProperties)
DatasetSystemMetadataWriter(co.cask.cdap.data2.metadata.system.DatasetSystemMetadataWriter)
ProgramSystemMetadataWriter(co.cask.cdap.data2.metadata.system.ProgramSystemMetadataWriter)
ViewSystemMetadataWriter(co.cask.cdap.data2.metadata.system.ViewSystemMetadataWriter)
SystemMetadataWriter(co.cask.cdap.data2.metadata.system.SystemMetadataWriter)
AppSystemMetadataWriter(co.cask.cdap.data2.metadata.system.AppSystemMetadataWriter)
ArtifactSystemMetadataWriter(co.cask.cdap.data2.metadata.system.ArtifactSystemMetadataWriter)
StreamSystemMetadataWriter(co.cask.cdap.data2.metadata.system.StreamSystemMetadataWriter)
DatasetSpecificationSummary(co.cask.cdap.proto.DatasetSpecificationSummary)
Callable(java.util.concurrent.Callable)
DatasetManagementException(co.cask.cdap.api.dataset.DatasetManagementException)
NamespaceNotFoundException(co.cask.cdap.common.NamespaceNotFoundException)
IOException(java.io.IOException)
DatasetId(co.cask.cdap.proto.id.DatasetId)
Example 4 with NamespaceNotFoundException
use of co.cask.cdap.common.NamespaceNotFoundException in project cdap by caskdata.
the class SecureStoreClient method createKey.
/**
* Creates a secure key
*
* @param secureKeyId {@link SecureKeyId} secure key name
* @param keyCreateRequest {@link SecureKeyCreateRequest}
* @throws IOException if a network error occurred
* @throws UnauthenticatedException if the request is not authorized successfully in the gateway server
* @throws SecureKeyAlreadyExistsException if the secure key already exists
* @throws NamespaceNotFoundException if namespace is not found
*/
public void createKey(SecureKeyId secureKeyId, SecureKeyCreateRequest keyCreateRequest) throws IOException, UnauthenticatedException, AlreadyExistsException, NamespaceNotFoundException, UnauthorizedException {
URL url = config.resolveNamespacedURLV3(secureKeyId.getParent(), getSecureKeyPath(secureKeyId));
HttpResponse response = restClient.execute(HttpMethod.PUT, url, GSON.toJson(keyCreateRequest), null, config.getAccessToken(), HttpURLConnection.HTTP_NOT_FOUND, HttpURLConnection.HTTP_CONFLICT);
if (response.getResponseCode() == HttpURLConnection.HTTP_CONFLICT) {
throw new SecureKeyAlreadyExistsException(secureKeyId);
}
if (response.getResponseCode() == HttpURLConnection.HTTP_NOT_FOUND) {
throw new NamespaceNotFoundException(secureKeyId.getParent());
}
}
Also used :
SecureKeyAlreadyExistsException(co.cask.cdap.common.SecureKeyAlreadyExistsException)
HttpResponse(co.cask.common.http.HttpResponse)
URL(java.net.URL)
NamespaceNotFoundException(co.cask.cdap.common.NamespaceNotFoundException)
Example 5 with NamespaceNotFoundException
use of co.cask.cdap.common.NamespaceNotFoundException in project cdap by caskdata.
the class AbstractNamespaceClient method delete.
@Override
public void delete(NamespaceId namespaceId) throws Exception {
URL url = resolve(String.format("unrecoverable/namespaces/%s", namespaceId.getNamespace()));
HttpResponse response = execute(HttpRequest.delete(url).build());
if (response.getResponseCode() == HttpURLConnection.HTTP_NOT_FOUND) {
throw new NamespaceNotFoundException(namespaceId);
} else if (HttpURLConnection.HTTP_FORBIDDEN == response.getResponseCode()) {
throw new NamespaceCannotBeDeletedException(namespaceId, response.getResponseBodyAsString());
} else if (response.getResponseCode() == HttpURLConnection.HTTP_OK) {
return;
}
throw new IOException(String.format("Cannot delete namespace %s. Reason: %s", namespaceId, response.getResponseBodyAsString()));
}
Also used :
HttpResponse(co.cask.common.http.HttpResponse)
IOException(java.io.IOException)
NamespaceCannotBeDeletedException(co.cask.cdap.common.NamespaceCannotBeDeletedException)
URL(java.net.URL)
NamespaceNotFoundException(co.cask.cdap.common.NamespaceNotFoundException)
Aggregations
NamespaceNotFoundException (co.cask.cdap.common.NamespaceNotFoundException)20
IOException (java.io.IOException)11
NotFoundException (co.cask.cdap.common.NotFoundException)8
NamespaceId (co.cask.cdap.proto.id.NamespaceId)7
NamespaceMeta (co.cask.cdap.proto.NamespaceMeta)5
UnauthorizedException (co.cask.cdap.security.spi.authorization.UnauthorizedException)5
HttpResponse (co.cask.common.http.HttpResponse)5
URL (java.net.URL)5
BadRequestException (co.cask.cdap.common.BadRequestException)4
NamespaceCannotBeDeletedException (co.cask.cdap.common.NamespaceCannotBeDeletedException)3
SecureKeyId (co.cask.cdap.proto.id.SecureKeyId)3
Test (org.junit.Test)3
DatasetManagementException (co.cask.cdap.api.dataset.DatasetManagementException)2
NamespaceAlreadyExistsException (co.cask.cdap.common.NamespaceAlreadyExistsException)2
SecureKeyAlreadyExistsException (co.cask.cdap.common.SecureKeyAlreadyExistsException)2
NamespaceConfig (co.cask.cdap.proto.NamespaceConfig)2
StreamDetail (co.cask.cdap.proto.StreamDetail)2
DatasetId (co.cask.cdap.proto.id.DatasetId)2
TypeToken (com.google.common.reflect.TypeToken)2
JsonSyntaxException (com.google.gson.JsonSyntaxException)2
