Example 26 with DruidDataSource
use of io.druid.client.DruidDataSource in project druid by druid-io.
the class MetadataResource method getDatabaseDataSources.
@GET
@Path("/datasources")
@Produces(MediaType.APPLICATION_JSON)
public Response getDatabaseDataSources(@QueryParam("full") final String full, @QueryParam("includeDisabled") final String includeDisabled, @Context final HttpServletRequest req) {
final Set<String> dataSourceNamesPreAuth;
if (includeDisabled != null) {
dataSourceNamesPreAuth = Sets.newTreeSet(metadataSegmentManager.getAllDatasourceNames());
} else {
dataSourceNamesPreAuth = Sets.newTreeSet(Iterables.transform(metadataSegmentManager.getInventory(), new Function<DruidDataSource, String>() {
@Override
public String apply(DruidDataSource input) {
return input.getName();
}
}));
}
final Set<String> dataSourceNamesPostAuth;
if (authConfig.isEnabled()) {
// This is an experimental feature, see - https://github.com/druid-io/druid/pull/2424
final Map<Pair<Resource, Action>, Access> resourceAccessMap = new HashMap<>();
final AuthorizationInfo authorizationInfo = (AuthorizationInfo) req.getAttribute(AuthConfig.DRUID_AUTH_TOKEN);
dataSourceNamesPostAuth = ImmutableSet.copyOf(Sets.filter(dataSourceNamesPreAuth, new Predicate<String>() {
@Override
public boolean apply(String input) {
Resource resource = new Resource(input, ResourceType.DATASOURCE);
Action action = Action.READ;
Pair<Resource, Action> key = new Pair<>(resource, action);
if (resourceAccessMap.containsKey(key)) {
return resourceAccessMap.get(key).isAllowed();
} else {
Access access = authorizationInfo.isAuthorized(key.lhs, key.rhs);
resourceAccessMap.put(key, access);
return access.isAllowed();
}
}
}));
} else {
dataSourceNamesPostAuth = dataSourceNamesPreAuth;
}
// Always use dataSourceNamesPostAuth to determine the set of returned dataSources
if (full != null && includeDisabled == null) {
return Response.ok().entity(Collections2.filter(metadataSegmentManager.getInventory(), new Predicate<DruidDataSource>() {
@Override
public boolean apply(DruidDataSource input) {
return dataSourceNamesPostAuth.contains(input.getName());
}
})).build();
} else {
return Response.ok().entity(dataSourceNamesPostAuth).build();
}
}
Also used :
Action(io.druid.server.security.Action)
HashMap(java.util.HashMap)
Access(io.druid.server.security.Access)
Resource(io.druid.server.security.Resource)
DruidDataSource(io.druid.client.DruidDataSource)
AuthorizationInfo(io.druid.server.security.AuthorizationInfo)
Pair(io.druid.java.util.common.Pair)
Path(javax.ws.rs.Path)
Produces(javax.ws.rs.Produces)
GET(javax.ws.rs.GET)
Aggregations
DruidDataSource (io.druid.client.DruidDataSource)26
DataSegment (io.druid.timeline.DataSegment)19
Map (java.util.Map)9
GET (javax.ws.rs.GET)9
Produces (javax.ws.rs.Produces)9
Interval (org.joda.time.Interval)9
DruidServer (io.druid.client.DruidServer)8
Path (javax.ws.rs.Path)8
HashMap (java.util.HashMap)7
Set (java.util.Set)6
Response (javax.ws.rs.core.Response)6
Test (org.junit.Test)6
ResourceFilters (com.sun.jersey.spi.container.ResourceFilters)5
List (java.util.List)5
ImmutableMap (com.google.common.collect.ImmutableMap)4
AuthConfig (io.druid.server.security.AuthConfig)4
AuthorizationInfo (io.druid.server.security.AuthorizationInfo)4
ImmutableDruidDataSource (io.druid.client.ImmutableDruidDataSource)3
ImmutableDruidServer (io.druid.client.ImmutableDruidServer)3
Access (io.druid.server.security.Access)3
