Example 46 with DatasetModuleId
use of io.cdap.cdap.proto.id.DatasetModuleId in project cdap by cdapio.
the class NamespacedEntityIdCodecTest method testUnsupported.
@Test(expected = UnsupportedOperationException.class)
public void testUnsupported() {
DatasetModuleId module = new DatasetModuleId("ns", "module");
String moduleJson = GSON.toJson(module, NamespacedEntityId.class);
GSON.fromJson(moduleJson, NamespacedEntityId.class);
}
Also used :
DatasetModuleId(io.cdap.cdap.proto.id.DatasetModuleId)
Test(org.junit.Test)
Example 47 with DatasetModuleId
use of io.cdap.cdap.proto.id.DatasetModuleId in project cdap by cdapio.
the class AuthorizableTest method testDatasetModule.
@Test
public void testDatasetModule() {
DatasetModuleId datasetModuleId = new DatasetModuleId("ns", "io.cdap.test_datasetModule");
Authorizable authorizable = Authorizable.fromEntityId(datasetModuleId);
Assert.assertEquals(datasetModuleId.toString(), authorizable.toString());
String widcardId = datasetModuleId.toString().replace("est", "*es?t");
Assert.assertEquals(widcardId, Authorizable.fromString(widcardId).toString());
}
Also used :
DatasetModuleId(io.cdap.cdap.proto.id.DatasetModuleId)
Test(org.junit.Test)
Example 48 with DatasetModuleId
use of io.cdap.cdap.proto.id.DatasetModuleId in project cdap by cdapio.
the class AuthorizationTest method deployDummyAppWithImpersonation.
private void deployDummyAppWithImpersonation(NamespaceMeta nsMeta, @Nullable String appOwner) throws Exception {
NamespaceId namespaceId = nsMeta.getNamespaceId();
ApplicationId dummyAppId = namespaceId.app(DummyApp.class.getSimpleName());
ArtifactId artifactId = namespaceId.artifact(DummyApp.class.getSimpleName(), "1.0-SNAPSHOT");
DatasetId datasetId = namespaceId.dataset("whom");
DatasetTypeId datasetTypeId = namespaceId.datasetType(KeyValueTable.class.getName());
String owner = appOwner != null ? appOwner : nsMeta.getConfig().getPrincipal();
KerberosPrincipalId principalId = new KerberosPrincipalId(owner);
Principal principal = new Principal(owner, Principal.PrincipalType.USER);
DatasetId dummyDatasetId = namespaceId.dataset("customDataset");
DatasetTypeId dummyTypeId = namespaceId.datasetType(DummyApp.CustomDummyDataset.class.getName());
DatasetModuleId dummyModuleId = namespaceId.datasetModule((DummyApp.CustomDummyDataset.class.getName()));
// these are the privileges that are needed to deploy the app if no impersonation is involved,
// can check testApps() for more info
Map<EntityId, Set<? extends Permission>> neededPrivileges = ImmutableMap.<EntityId, Set<? extends Permission>>builder().put(dummyAppId, EnumSet.of(StandardPermission.GET, StandardPermission.CREATE)).put(artifactId, EnumSet.of(StandardPermission.CREATE)).put(datasetId, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET)).put(datasetTypeId, EnumSet.of(StandardPermission.UPDATE)).put(principalId, EnumSet.of(AccessPermission.SET_OWNER)).put(dummyDatasetId, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET)).put(dummyTypeId, EnumSet.of(StandardPermission.UPDATE)).put(dummyModuleId, EnumSet.of(StandardPermission.UPDATE)).build();
setUpPrivilegeAndRegisterForDeletion(ALICE, neededPrivileges);
// add the artifact
addAppArtifact(artifactId, DummyApp.class);
AppRequest<? extends Config> appRequest = new AppRequest<>(new ArtifactSummary(artifactId.getArtifact(), artifactId.getVersion()), null, appOwner);
try {
deployApplication(dummyAppId, appRequest);
Assert.fail();
} catch (Exception e) {
// expected
}
// revoke privileges on datasets from alice, she does not need these privileges to deploy the app
// the owner will need these privileges to deploy
revokeAndAssertSuccess(datasetId);
revokeAndAssertSuccess(datasetTypeId);
revokeAndAssertSuccess(dummyDatasetId);
revokeAndAssertSuccess(dummyTypeId);
revokeAndAssertSuccess(dummyModuleId);
// grant privileges to owner
grantAndAssertSuccess(namespaceId, principal, EnumSet.of(StandardPermission.GET));
grantAndAssertSuccess(datasetId, principal, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET));
grantAndAssertSuccess(datasetTypeId, principal, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET));
grantAndAssertSuccess(dummyDatasetId, principal, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET));
grantAndAssertSuccess(dummyTypeId, principal, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET));
grantAndAssertSuccess(dummyModuleId, principal, EnumSet.of(StandardPermission.CREATE, StandardPermission.GET));
// this time it should be successful
deployApplication(dummyAppId, appRequest);
// clean up the privilege on the owner principal id
revokeAndAssertSuccess(principalId);
}
Also used :
DatasetTypeId(io.cdap.cdap.proto.id.DatasetTypeId)
PartitionedFileSet(io.cdap.cdap.api.dataset.lib.PartitionedFileSet)
EnumSet(java.util.EnumSet)
Set(java.util.Set)
ImmutableSet(com.google.common.collect.ImmutableSet)
HashSet(java.util.HashSet)
ArtifactId(io.cdap.cdap.proto.id.ArtifactId)
UnauthorizedException(io.cdap.cdap.security.spi.authorization.UnauthorizedException)
IOException(java.io.IOException)
ExecutionException(java.util.concurrent.ExecutionException)
TimeoutException(java.util.concurrent.TimeoutException)
DatasetId(io.cdap.cdap.proto.id.DatasetId)
AppRequest(io.cdap.cdap.proto.artifact.AppRequest)
EntityId(io.cdap.cdap.proto.id.EntityId)
DatasetModuleId(io.cdap.cdap.proto.id.DatasetModuleId)
ArtifactSummary(io.cdap.cdap.api.artifact.ArtifactSummary)
KeyValueTable(io.cdap.cdap.api.dataset.lib.KeyValueTable)
DummyApp(io.cdap.cdap.test.app.DummyApp)
GrantedPermission(io.cdap.cdap.proto.security.GrantedPermission)
ApplicationPermission(io.cdap.cdap.proto.security.ApplicationPermission)
AccessPermission(io.cdap.cdap.proto.security.AccessPermission)
Permission(io.cdap.cdap.proto.security.Permission)
StandardPermission(io.cdap.cdap.proto.security.StandardPermission)
NamespaceId(io.cdap.cdap.proto.id.NamespaceId)
ApplicationId(io.cdap.cdap.proto.id.ApplicationId)
KerberosPrincipalId(io.cdap.cdap.proto.id.KerberosPrincipalId)
Principal(io.cdap.cdap.proto.security.Principal)
Aggregations
DatasetModuleId (io.cdap.cdap.proto.id.DatasetModuleId)48
Test (org.junit.Test)20
DatasetModuleMeta (io.cdap.cdap.proto.DatasetModuleMeta)16
DatasetId (io.cdap.cdap.proto.id.DatasetId)14
DatasetTypeId (io.cdap.cdap.proto.id.DatasetTypeId)14
DatasetModule (io.cdap.cdap.api.dataset.module.DatasetModule)8
NamespaceId (io.cdap.cdap.proto.id.NamespaceId)8
IOException (java.io.IOException)8
DatasetTypeTable (io.cdap.cdap.data2.datafabric.dataset.service.mds.DatasetTypeTable)6
DatasetTypeMeta (io.cdap.cdap.proto.DatasetTypeMeta)6
StandardPermission (io.cdap.cdap.proto.security.StandardPermission)6
UnauthorizedException (io.cdap.cdap.security.spi.authorization.UnauthorizedException)6
HashSet (java.util.HashSet)6
Location (org.apache.twill.filesystem.Location)6
ImmutableSet (com.google.common.collect.ImmutableSet)4
DatasetManagementException (io.cdap.cdap.api.dataset.DatasetManagementException)4
DatasetSpecification (io.cdap.cdap.api.dataset.DatasetSpecification)4
DatasetInstanceTable (io.cdap.cdap.data2.datafabric.dataset.service.mds.DatasetInstanceTable)4
TypeConflictException (io.cdap.cdap.data2.dataset2.TypeConflictException)4
Principal (io.cdap.cdap.proto.security.Principal)4
