Example 26 with DatasetException
use of io.hops.hopsworks.exceptions.DatasetException in project hopsworks by logicalclocks.
the class ProjectController method createProject.
/**
* Creates a new project(project), the related DIR, the different services in
* the project, and the master of the
* project.
* <p>
* This needs to be an atomic operation (all or nothing) REQUIRES_NEW will
* make sure a new transaction is created even
* if this method is called from within a transaction.
*
* @param projectDTO
* @param owner
* @param sessionId
* @return
*/
public Project createProject(ProjectDTO projectDTO, Users owner, String sessionId) throws DatasetException, GenericException, KafkaException, ProjectException, UserException, HopsSecurityException, ServiceException, FeaturestoreException, ElasticException, SchemaException, IOException {
Long startTime = System.currentTimeMillis();
// check that the project name is ok
String projectName = projectDTO.getProjectName();
FolderNameValidator.isValidProjectName(projectUtils, projectName);
List<ProjectServiceEnum> projectServices = new ArrayList<>();
if (projectDTO.getServices() != null) {
for (String s : projectDTO.getServices()) {
ProjectServiceEnum se = ProjectServiceEnum.valueOf(s.toUpperCase());
projectServices.add(se);
}
}
LOGGER.log(Level.FINE, () -> "PROJECT CREATION TIME. Step 1: " + (System.currentTimeMillis() - startTime));
DistributedFileSystemOps dfso = null;
Project project = null;
try {
dfso = dfs.getDfsOps();
/*
* create a project in the database
* if the creation go through it means that there is no other project with
* the same name.
* this project creation act like a lock, no other project can be created
* with the same name
* until this project is removed from the database
*/
try {
project = createProject(projectName, owner, projectDTO.getDescription(), dfso);
} catch (EJBException ex) {
LOGGER.log(Level.WARNING, null, ex);
Path dummy = new Path("/tmp/" + projectName);
try {
dfso.rm(dummy, true);
} catch (IOException e) {
LOGGER.log(Level.SEVERE, null, e);
}
throw new ProjectException(RESTCodes.ProjectErrorCode.PROJECT_EXISTS, Level.SEVERE, "project: " + projectName, ex.getMessage(), ex);
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 2 (hdfs): {0}", System.currentTimeMillis() - startTime);
verifyProject(project, dfso, sessionId);
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 3 (verify): {0}", System.currentTimeMillis() - startTime);
// Run the handlers.
try {
ProjectHandler.runProjectPreCreateHandlers(projectHandlers, project);
} catch (ProjectException ex) {
cleanup(project, sessionId, null, true, owner);
throw ex;
}
List<Future<?>> projectCreationFutures = new ArrayList<>();
// This is an async call
try {
projectCreationFutures.add(certificatesController.generateCertificates(project, owner));
} catch (Exception ex) {
cleanup(project, sessionId, projectCreationFutures, true, owner);
throw new HopsSecurityException(RESTCodes.SecurityErrorCode.CERT_CREATION_ERROR, Level.SEVERE, "project: " + project.getName() + "owner: " + owner.getUsername(), ex.getMessage(), ex);
}
String username = hdfsUsersController.getHdfsUserName(project, owner);
if (username == null || username.isEmpty()) {
cleanup(project, sessionId, projectCreationFutures, true, owner);
throw new UserException(RESTCodes.UserErrorCode.USER_WAS_NOT_FOUND, Level.SEVERE, "project: " + project.getName() + "owner: " + owner.getUsername());
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 4 (certs): {0}", System.currentTimeMillis() - startTime);
// all the verifications have passed, we can now create the project
// create the project folder
ProvTypeDTO provType = settings.getProvType().dto;
try {
mkProjectDIR(projectName, dfso);
fsProvController.updateProjectProvType(project, provType, dfso);
} catch (IOException | EJBException | ProvenanceException ex) {
cleanup(project, sessionId, projectCreationFutures, true, owner);
throw new ProjectException(RESTCodes.ProjectErrorCode.PROJECT_FOLDER_NOT_CREATED, Level.SEVERE, "project: " + projectName, ex.getMessage(), ex);
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 5 (folders): {0}", System.currentTimeMillis() - startTime);
// update the project with the project folder inode
try {
setProjectInode(project, dfso);
} catch (IOException | EJBException ex) {
cleanup(project, sessionId, projectCreationFutures, true, owner);
throw new ProjectException(RESTCodes.ProjectErrorCode.PROJECT_INODE_CREATION_ERROR, Level.SEVERE, "project: " + projectName, ex.getMessage(), ex);
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 6 (inodes): {0}", System.currentTimeMillis() - startTime);
// set payment and quotas
try {
setProjectOwnerAndQuotas(project, dfso, owner);
} catch (IOException | EJBException ex) {
cleanup(project, sessionId, projectCreationFutures, true, owner);
throw new ProjectException(RESTCodes.ProjectErrorCode.QUOTA_ERROR, Level.SEVERE, "project: " + project.getName(), ex.getMessage(), ex);
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 7 (quotas): {0}", System.currentTimeMillis() - startTime);
try {
hdfsUsersController.addProjectFolderOwner(project, dfso);
createProjectLogResources(owner, project, dfso);
} catch (IOException | EJBException ex) {
cleanup(project, sessionId, projectCreationFutures);
throw new ProjectException(RESTCodes.ProjectErrorCode.PROJECT_SET_PERMISSIONS_ERROR, Level.SEVERE, "project: " + projectName, ex.getMessage(), ex);
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 8 (logs): {0}", System.currentTimeMillis() - startTime);
// inconsistencies
try {
elasticController.deleteProjectIndices(project);
elasticController.deleteProjectSavedObjects(projectName);
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 9 (elastic cleanup): {0}", System.currentTimeMillis() - startTime);
} catch (ElasticException ex) {
LOGGER.log(Level.FINE, "Error while cleaning old project indices", ex);
}
logProject(project, OperationType.Add);
// enable services
for (ProjectServiceEnum service : projectServices) {
try {
projectCreationFutures.addAll(addService(project, service, owner, dfso, provType));
} catch (RESTException | IOException ex) {
cleanup(project, sessionId, projectCreationFutures);
throw ex;
}
}
try {
for (Future f : projectCreationFutures) {
if (f != null) {
f.get();
}
}
} catch (InterruptedException | ExecutionException ex) {
LOGGER.log(Level.SEVERE, "Error while waiting for the certificate generation thread to finish. Will try to " + "cleanup...", ex);
cleanup(project, sessionId, projectCreationFutures);
throw new HopsSecurityException(RESTCodes.SecurityErrorCode.CERT_CREATION_ERROR, Level.SEVERE);
}
// Run the handlers.
try {
ProjectHandler.runProjectPostCreateHandlers(projectHandlers, project);
} catch (ProjectException ex) {
cleanup(project, sessionId, projectCreationFutures);
throw ex;
}
try {
project = environmentController.createEnv(project, owner);
} catch (PythonException | EJBException ex) {
cleanup(project, sessionId, projectCreationFutures);
throw new ProjectException(RESTCodes.ProjectErrorCode.PROJECT_ANACONDA_ENABLE_ERROR, Level.SEVERE, "project: " + projectName, ex.getMessage(), ex);
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 10 (env): {0}", System.currentTimeMillis() - startTime);
return project;
} finally {
if (dfso != null) {
dfso.close();
}
LOGGER.log(Level.FINE, "PROJECT CREATION TIME. Step 11 (close): {0}", System.currentTimeMillis() - startTime);
}
}
Also used :
RESTException(io.hops.hopsworks.restutils.RESTException)
ArrayList(java.util.ArrayList)
HopsSecurityException(io.hops.hopsworks.exceptions.HopsSecurityException)
ProjectException(io.hops.hopsworks.exceptions.ProjectException)
ProvenanceException(io.hops.hopsworks.exceptions.ProvenanceException)
PythonException(io.hops.hopsworks.exceptions.PythonException)
UserException(io.hops.hopsworks.exceptions.UserException)
ExecutionException(java.util.concurrent.ExecutionException)
Path(org.apache.hadoop.fs.Path)
ElasticException(io.hops.hopsworks.exceptions.ElasticException)
DistributedFileSystemOps(io.hops.hopsworks.common.hdfs.DistributedFileSystemOps)
IOException(java.io.IOException)
ProjectServiceEnum(io.hops.hopsworks.persistence.entity.project.service.ProjectServiceEnum)
TensorBoardException(io.hops.hopsworks.exceptions.TensorBoardException)
DatasetException(io.hops.hopsworks.exceptions.DatasetException)
EJBException(javax.ejb.EJBException)
AlertException(io.hops.hopsworks.exceptions.AlertException)
PythonException(io.hops.hopsworks.exceptions.PythonException)
FeaturestoreException(io.hops.hopsworks.exceptions.FeaturestoreException)
RESTException(io.hops.hopsworks.restutils.RESTException)
SQLException(java.sql.SQLException)
ElasticException(io.hops.hopsworks.exceptions.ElasticException)
AlertManagerConfigUpdateException(io.hops.hopsworks.alerting.exceptions.AlertManagerConfigUpdateException)
IOException(java.io.IOException)
ServiceException(io.hops.hopsworks.exceptions.ServiceException)
UserException(io.hops.hopsworks.exceptions.UserException)
ExecutionException(java.util.concurrent.ExecutionException)
ServingException(io.hops.hopsworks.exceptions.ServingException)
AlertManagerResponseException(io.hops.hopsworks.alerting.exceptions.AlertManagerResponseException)
CryptoPasswordNotFoundException(io.hops.hopsworks.exceptions.CryptoPasswordNotFoundException)
ProjectException(io.hops.hopsworks.exceptions.ProjectException)
AlertManagerUnreachableException(io.hops.hopsworks.alert.exception.AlertManagerUnreachableException)
AlertManagerConfigReadException(io.hops.hopsworks.alerting.exceptions.AlertManagerConfigReadException)
ServiceDiscoveryException(com.logicalclocks.servicediscoverclient.exceptions.ServiceDiscoveryException)
JobException(io.hops.hopsworks.exceptions.JobException)
GenericException(io.hops.hopsworks.exceptions.GenericException)
AlertManagerConfigCtrlCreateException(io.hops.hopsworks.alerting.exceptions.AlertManagerConfigCtrlCreateException)
KafkaException(io.hops.hopsworks.exceptions.KafkaException)
HopsSecurityException(io.hops.hopsworks.exceptions.HopsSecurityException)
YarnException(org.apache.hadoop.yarn.exceptions.YarnException)
ProvenanceException(io.hops.hopsworks.exceptions.ProvenanceException)
AlertManagerClientCreateException(io.hops.hopsworks.alerting.exceptions.AlertManagerClientCreateException)
SchemaException(io.hops.hopsworks.exceptions.SchemaException)
JupyterProject(io.hops.hopsworks.persistence.entity.jupyter.JupyterProject)
Project(io.hops.hopsworks.persistence.entity.project.Project)
Future(java.util.concurrent.Future)
EJBException(javax.ejb.EJBException)
ProvTypeDTO(io.hops.hopsworks.common.provenance.core.dto.ProvTypeDTO)
Example 27 with DatasetException
use of io.hops.hopsworks.exceptions.DatasetException in project hopsworks by logicalclocks.
the class X509Resource method getx509.
@GET
@TransactionAttribute(TransactionAttributeType.NEVER)
@Produces(MediaType.APPLICATION_JSON)
@JWTRequired(acceptedTokens = { Audience.SERVICES, Audience.API }, allowedUserRoles = { "AGENT", "HOPS_ADMIN" })
@ApiOperation(value = "Get keystore, truststore and password of a project user", response = AccessCredentialsDTO.class)
public Response getx509(@QueryParam("username") String projectUsername, @Context SecurityContext sc) throws ProjectException, UserException, HopsSecurityException {
try {
String projectName = hdfsUsersController.getProjectName(projectUsername);
String username = hdfsUsersController.getUserName(projectUsername);
Project project = projectController.findProjectByName(projectName);
Users user = userFacade.findByUsername(username);
if (user == null) {
throw new UserException(RESTCodes.UserErrorCode.USER_DOES_NOT_EXIST, Level.FINE);
}
try {
AccessCredentialsDTO credentialsDTO = projectController.credentials(project.getId(), user);
return Response.ok(credentialsDTO).build();
} catch (DatasetException ex) {
throw new HopsSecurityException(RESTCodes.SecurityErrorCode.CERTIFICATE_NOT_FOUND, Level.FINE);
}
} catch (ArrayIndexOutOfBoundsException ex) {
throw new UserException(RESTCodes.UserErrorCode.USER_WAS_NOT_FOUND, Level.FINE, "Invalid project user format for username: " + projectUsername);
}
}
Also used :
AccessCredentialsDTO(io.hops.hopsworks.common.project.AccessCredentialsDTO)
Project(io.hops.hopsworks.persistence.entity.project.Project)
Users(io.hops.hopsworks.persistence.entity.user.Users)
UserException(io.hops.hopsworks.exceptions.UserException)
DatasetException(io.hops.hopsworks.exceptions.DatasetException)
HopsSecurityException(io.hops.hopsworks.exceptions.HopsSecurityException)
TransactionAttribute(javax.ejb.TransactionAttribute)
Produces(javax.ws.rs.Produces)
GET(javax.ws.rs.GET)
JWTRequired(io.hops.hopsworks.jwt.annotation.JWTRequired)
ApiOperation(io.swagger.annotations.ApiOperation)
Example 28 with DatasetException
use of io.hops.hopsworks.exceptions.DatasetException in project hopsworks by logicalclocks.
the class DownloadService method downloadFromHDFS.
@GET
@javax.ws.rs.Path("with_token/{path: .+}")
@Produces(MediaType.APPLICATION_OCTET_STREAM)
@JWTNotRequired
@ApiOperation(value = "Download file.", response = StreamingOutput.class)
public Response downloadFromHDFS(@PathParam("path") String path, @QueryParam("token") String token, @QueryParam("type") DatasetType datasetType, @Context SecurityContext sc) throws DatasetException, SigningKeyNotFoundException, VerificationException, ProjectException {
if (!settings.isDownloadAllowed()) {
throw new DatasetException(RESTCodes.DatasetErrorCode.DOWNLOAD_NOT_ALLOWED, Level.FINEST);
}
Project project = this.getProject();
DatasetPath datasetPath = datasetHelper.getDatasetPathIfFileExist(project, path, datasetType);
String fullPath = datasetPath.getFullPath().toString();
DecodedJWT djwt = jWTHelper.verifyOneTimeToken(token, fullPath);
Users user = userFacade.findByUsername(djwt.getSubject());
Pair<Path, StreamingOutput> pathStreamPair = downloadFromHDFS(project, datasetPath, user);
Response.ResponseBuilder response = Response.ok(pathStreamPair.getValue1());
response.header("Content-disposition", "attachment; filename=\"" + pathStreamPair.getValue0().getName() + "\"");
return response.build();
}
Also used :
Path(org.apache.hadoop.fs.Path)
DatasetPath(io.hops.hopsworks.common.dataset.util.DatasetPath)
Response(javax.ws.rs.core.Response)
Project(io.hops.hopsworks.persistence.entity.project.Project)
StreamingOutput(javax.ws.rs.core.StreamingOutput)
DatasetPath(io.hops.hopsworks.common.dataset.util.DatasetPath)
Users(io.hops.hopsworks.persistence.entity.user.Users)
DecodedJWT(com.auth0.jwt.interfaces.DecodedJWT)
DatasetException(io.hops.hopsworks.exceptions.DatasetException)
Produces(javax.ws.rs.Produces)
GET(javax.ws.rs.GET)
ApiOperation(io.swagger.annotations.ApiOperation)
JWTNotRequired(io.hops.hopsworks.api.filter.JWTNotRequired)
Example 29 with DatasetException
use of io.hops.hopsworks.exceptions.DatasetException in project hopsworks by logicalclocks.
the class DownloadService method getDownloadToken.
@GET
@javax.ws.rs.Path("token/{path: .+}")
@Produces(MediaType.APPLICATION_JSON)
@ApiOperation(value = "Get a one time download token.", response = RESTApiJsonResponse.class)
@AllowedProjectRoles({ AllowedProjectRoles.DATA_SCIENTIST, AllowedProjectRoles.DATA_OWNER })
@JWTRequired(acceptedTokens = { Audience.API }, allowedUserRoles = { "HOPS_ADMIN", "HOPS_USER" })
public Response getDownloadToken(@PathParam("path") String path, @QueryParam("type") DatasetType datasetType, @Context SecurityContext sc) throws DatasetException, ProjectException {
if (!settings.isDownloadAllowed()) {
throw new DatasetException(RESTCodes.DatasetErrorCode.DOWNLOAD_NOT_ALLOWED, Level.FINEST);
}
Users user = jWTHelper.getUserPrincipal(sc);
DatasetPath datasetPath = datasetHelper.getDatasetPathIfFileExist(this.getProject(), path, datasetType);
Project owningProject = datasetController.getOwningProject(datasetPath.getDataset());
RESTApiJsonResponse response = new RESTApiJsonResponse();
String username = hdfsUsersController.getHdfsUserName(this.getProject(), user);
// For example, DS1 of project1 is shared with project2. User must be a member of project1 to download files
if (owningProject.equals(this.getProject()) && datasetController.isDownloadAllowed(this.getProject(), user, datasetPath.getFullPath().toString())) {
datasetController.checkFileExists(datasetPath.getFullPath(), username);
String token = jWTHelper.createOneTimeToken(user, datasetPath.getFullPath().toString(), null);
if (token != null && !token.isEmpty()) {
response.setData(token);
return Response.status(Response.Status.OK).entity(response).build();
}
}
response.setErrorMsg(ResponseMessages.DOWNLOAD_PERMISSION_ERROR);
return Response.status(Response.Status.FORBIDDEN).entity(response).build();
}
Also used :
Project(io.hops.hopsworks.persistence.entity.project.Project)
Users(io.hops.hopsworks.persistence.entity.user.Users)
DatasetPath(io.hops.hopsworks.common.dataset.util.DatasetPath)
DatasetException(io.hops.hopsworks.exceptions.DatasetException)
Produces(javax.ws.rs.Produces)
GET(javax.ws.rs.GET)
JWTRequired(io.hops.hopsworks.jwt.annotation.JWTRequired)
ApiOperation(io.swagger.annotations.ApiOperation)
AllowedProjectRoles(io.hops.hopsworks.api.filter.AllowedProjectRoles)
Example 30 with DatasetException
use of io.hops.hopsworks.exceptions.DatasetException in project hopsworks by logicalclocks.
the class DownloadService method downloadFromHDFS.
/**
* @param project
* @param datasetPath
* @param user
* @return
*/
private Pair<Path, StreamingOutput> downloadFromHDFS(Project project, DatasetPath datasetPath, Users user) throws DatasetException {
String fullPath = datasetPath.getFullPath().toString();
String projectUsername = hdfsUsersController.getHdfsUserName(project, user);
Dataset ds = datasetPath.getDataset();
if (ds.isShared(project) && ds.getFilePermissions().equals(DatasetPermissions.OWNER_ONLY) && !ds.isPublicDs()) {
throw new DatasetException(RESTCodes.DatasetErrorCode.DOWNLOAD_ERROR, Level.FINE);
}
FSDataInputStream stream;
DistributedFileSystemOps udfso;
try {
if (projectUsername != null) {
udfso = dfs.getDfsOps(projectUsername);
Path p = new Path(fullPath);
stream = udfso.open(p);
return new Pair(p, buildOutputStream(stream, udfso));
} else {
throw new DatasetException(RESTCodes.DatasetErrorCode.DOWNLOAD_ERROR, Level.WARNING);
}
} catch (IOException ex) {
throw new DatasetException(RESTCodes.DatasetErrorCode.DOWNLOAD_ERROR, Level.SEVERE, "path: " + fullPath, ex.getMessage(), ex);
}
}
Also used :
Path(org.apache.hadoop.fs.Path)
DatasetPath(io.hops.hopsworks.common.dataset.util.DatasetPath)
Dataset(io.hops.hopsworks.persistence.entity.dataset.Dataset)
DistributedFileSystemOps(io.hops.hopsworks.common.hdfs.DistributedFileSystemOps)
FSDataInputStream(org.apache.hadoop.fs.FSDataInputStream)
IOException(java.io.IOException)
DatasetException(io.hops.hopsworks.exceptions.DatasetException)
Pair(org.javatuples.Pair)
Aggregations
DatasetException (io.hops.hopsworks.exceptions.DatasetException)61
IOException (java.io.IOException)25
Project (io.hops.hopsworks.persistence.entity.project.Project)23
Dataset (io.hops.hopsworks.persistence.entity.dataset.Dataset)21
DistributedFileSystemOps (io.hops.hopsworks.common.hdfs.DistributedFileSystemOps)18
ProjectException (io.hops.hopsworks.exceptions.ProjectException)12
DatasetSharedWith (io.hops.hopsworks.persistence.entity.dataset.DatasetSharedWith)12
Produces (javax.ws.rs.Produces)12
Inode (io.hops.hopsworks.persistence.entity.hdfs.inode.Inode)11
DatasetPath (io.hops.hopsworks.common.dataset.util.DatasetPath)10
HopsSecurityException (io.hops.hopsworks.exceptions.HopsSecurityException)10
Users (io.hops.hopsworks.persistence.entity.user.Users)10
Path (javax.ws.rs.Path)10
Path (org.apache.hadoop.fs.Path)10
GenericException (io.hops.hopsworks.exceptions.GenericException)9
AccessControlException (org.apache.hadoop.security.AccessControlException)8
ProvenanceException (io.hops.hopsworks.exceptions.ProvenanceException)7
AllowedProjectRoles (io.hops.hopsworks.api.filter.AllowedProjectRoles)6
ServiceException (io.hops.hopsworks.exceptions.ServiceException)6
JWTRequired (io.hops.hopsworks.jwt.annotation.JWTRequired)6
