Examples with SessionImpl org.apache.jackrabbit.core.SessionImpl used on opensource projects

Search in sources :

Example 56 with SessionImpl

use of org.apache.jackrabbit.core.SessionImpl in project jackrabbit by apache.

the class IndexNodeResolverTest method testFindNodesNonExact.

/**
     * If query value contains backslash the non-exact findNodes method should
     * return the desired result.
     *
     * @throws NotExecutableException
     * @throws RepositoryException
     */
public void testFindNodesNonExact() throws NotExecutableException, RepositoryException {
    UserImpl currentUser = getCurrentUser();
    Value vs = superuser.getValueFactory().createValue("value \\, containing backslash");
    currentUser.setProperty(propertyName1, vs);
    save();
    Name propName = ((SessionImpl) superuser).getQName(propertyName1);
    try {
        NodeResolver nr = createNodeResolver(currentUser.getNode().getSession());
        NodeIterator result = nr.findNodes(propName, "value \\, containing backslash", UserConstants.NT_REP_USER, false);
        assertTrue("expected result", result.hasNext());
        assertEquals(currentUser.getNode().getPath(), result.nextNode().getPath());
        assertFalse("expected no more results", result.hasNext());
    } finally {
        currentUser.removeProperty(propertyName1);
        save();
    }
}
Also used : NodeIterator(javax.jcr.NodeIterator) Value(javax.jcr.Value) SessionImpl(org.apache.jackrabbit.core.SessionImpl) Name(org.apache.jackrabbit.spi.Name)

Example 57 with SessionImpl

use of org.apache.jackrabbit.core.SessionImpl in project jackrabbit by apache.

the class UserImporter method processReferences.

/**
     * @see org.apache.jackrabbit.core.xml.ProtectedPropertyImporter#processReferences()
     */
public void processReferences() throws RepositoryException {
    if (!initialized) {
        throw new IllegalStateException("Not initialized");
    }
    // assert that user manager is isn't in auto-save mode
    if (userManager.isAutoSave()) {
        userManager.autoSave(false);
    }
    try {
        List<Object> processed = new ArrayList<Object>();
        for (Iterator<Object> it = referenceTracker.getProcessedReferences(); it.hasNext(); ) {
            Object reference = it.next();
            if (reference instanceof Membership) {
                Authorizable a = userManager.getAuthorizable(((Membership) reference).groupId);
                if (a == null || !a.isGroup()) {
                    throw new RepositoryException(((Membership) reference).groupId + " does not represent a valid group.");
                }
                final Group gr = (Group) a;
                // 1. collect members to add and to remove.
                Map<String, Authorizable> toRemove = new HashMap<String, Authorizable>();
                for (Iterator<Authorizable> declMembers = gr.getDeclaredMembers(); declMembers.hasNext(); ) {
                    Authorizable dm = declMembers.next();
                    toRemove.put(dm.getID(), dm);
                }
                List<Authorizable> toAdd = new ArrayList<Authorizable>();
                final List<Membership.Member> nonExisting = new ArrayList<Membership.Member>();
                for (Membership.Member member : ((Membership) reference).members) {
                    NodeId remapped = referenceTracker.getMappedId(member.id);
                    NodeId id = (remapped == null) ? member.id : remapped;
                    Authorizable authorz = null;
                    try {
                        NodeImpl n = ((SessionImpl) session).getNodeById(id);
                        authorz = userManager.getAuthorizable(n);
                    } catch (RepositoryException e) {
                    // no such node or failed to retrieve authorizable
                    // warning is logged below.
                    }
                    if (authorz != null) {
                        if (toRemove.remove(authorz.getID()) == null) {
                            toAdd.add(authorz);
                        }
                    // else: no need to remove from rep:members
                    } else {
                        handleFailure("New member of " + gr + ": No such authorizable (NodeID = " + id + ")");
                        if (importBehavior == ImportBehavior.BESTEFFORT) {
                            log.info("ImportBehavior.BESTEFFORT: Remember non-existing member for processing.");
                            nonExisting.add(member);
                        }
                    }
                }
                // 2. adjust members of the group
                for (Authorizable m : toRemove.values()) {
                    if (!gr.removeMember(m)) {
                        handleFailure("Failed remove existing member (" + m + ") from " + gr);
                    }
                }
                for (Authorizable m : toAdd) {
                    if (!gr.addMember(m)) {
                        handleFailure("Failed add member (" + m + ") to " + gr);
                    }
                }
                // handling non-existing members in case of best-effort
                if (!nonExisting.isEmpty()) {
                    log.info("ImportBehavior.BESTEFFORT: Found " + nonExisting.size() + " entries of rep:members pointing to non-existing authorizables. Adding to rep:members.");
                    final NodeImpl groupNode = ((AuthorizableImpl) gr).getNode();
                    if (userManager.hasMemberSplitSize()) {
                        userManager.performProtectedOperation((SessionImpl) session, new SessionWriteOperation<Object>() {

                            public Boolean perform(SessionContext context) throws RepositoryException {
                                NodeImpl nMembers = (groupNode.hasNode(UserConstants.N_MEMBERS) ? groupNode.getNode(UserConstants.N_MEMBERS) : groupNode.addNode(UserConstants.N_MEMBERS, UserConstants.NT_REP_MEMBERS, null));
                                // Create N_MEMBERS node structure for holding member references
                                for (Membership.Member member : nonExisting) {
                                    PropertySequence properties = GroupImpl.getPropertySequence(nMembers, userManager);
                                    String propName = member.name;
                                    if (propName == null) {
                                        log.debug("Ignoring unnamed user with id {}", member.id);
                                        continue;
                                    }
                                    if (properties.hasItem(propName)) {
                                        log.debug("Overwriting authorizable {} which is already member of {}.", propName, gr);
                                        properties.removeProperty(propName);
                                    }
                                    Value newMember = session.getValueFactory().createValue(member.id.toString(), PropertyType.WEAKREFERENCE);
                                    properties.addProperty(propName, newMember);
                                }
                                return null;
                            }
                        });
                    } else {
                        // Create P_MEMBERS for holding member references
                        // build list of valid members set before ....
                        List<Value> memberValues = new ArrayList<Value>();
                        if (groupNode.hasProperty(UserConstants.P_MEMBERS)) {
                            Value[] vls = groupNode.getProperty(UserConstants.P_MEMBERS).getValues();
                            memberValues.addAll(Arrays.asList(vls));
                        }
                        // ... and the non-Existing ones.
                        for (Membership.Member member : nonExisting) {
                            memberValues.add(session.getValueFactory().createValue(member.id.toString(), PropertyType.WEAKREFERENCE));
                        }
                        // and use implementation specific method to set the
                        // value of rep:members properties which was not possible
                        // through the API
                        userManager.setProtectedProperty(groupNode, UserConstants.P_MEMBERS, memberValues.toArray(new Value[memberValues.size()]), PropertyType.WEAKREFERENCE);
                    }
                }
                processed.add(reference);
            } else if (reference instanceof Impersonators) {
                Authorizable a = userManager.getAuthorizable(((Impersonators) reference).userId);
                if (a == null || a.isGroup()) {
                    throw new RepositoryException(((Impersonators) reference).userId + " does not represent a valid user.");
                }
                Impersonation imp = ((User) a).getImpersonation();
                // 1. collect principals to add and to remove.
                Map<String, Principal> toRemove = new HashMap<String, Principal>();
                for (PrincipalIterator pit = imp.getImpersonators(); pit.hasNext(); ) {
                    Principal princ = pit.nextPrincipal();
                    toRemove.put(princ.getName(), princ);
                }
                List<Principal> toAdd = new ArrayList<Principal>();
                Value[] vs = ((Impersonators) reference).values;
                for (Value v : vs) {
                    String princName = v.getString();
                    if (toRemove.remove(princName) == null) {
                        // add it to the list of new impersonators to be added.
                        toAdd.add(new PrincipalImpl(princName));
                    }
                // else: no need to revoke impersonation for the given principal.
                }
                // 2. adjust set of impersonators
                for (Principal princ : toRemove.values()) {
                    if (!imp.revokeImpersonation(princ)) {
                        handleFailure("Failed to revoke impersonation for " + princ.getName() + " on " + a);
                    }
                }
                for (Principal princ : toAdd) {
                    if (!imp.grantImpersonation(princ)) {
                        handleFailure("Failed to grant impersonation for " + princ.getName() + " on " + a);
                    }
                }
                // NOTE: no best effort handling so far. (TODO)
                processed.add(reference);
            }
        }
        // successfully processed this entry of the reference tracker
        // -> remove from the reference tracker.
        referenceTracker.removeReferences(processed);
    } finally {
        // the original state.
        if (resetAutoSave) {
            userManager.autoSave(true);
        }
    }
}
Also used : Group(org.apache.jackrabbit.api.security.user.Group) Impersonation(org.apache.jackrabbit.api.security.user.Impersonation) HashMap(java.util.HashMap) ArrayList(java.util.ArrayList) Authorizable(org.apache.jackrabbit.api.security.user.Authorizable) ArrayList(java.util.ArrayList) LinkedList(java.util.LinkedList) List(java.util.List) PrincipalImpl(org.apache.jackrabbit.core.security.principal.PrincipalImpl) NodeImpl(org.apache.jackrabbit.core.NodeImpl) PrincipalIterator(org.apache.jackrabbit.api.security.principal.PrincipalIterator) RepositoryException(javax.jcr.RepositoryException) PropertySequence(org.apache.jackrabbit.commons.flat.PropertySequence) NodeId(org.apache.jackrabbit.core.id.NodeId) Value(javax.jcr.Value) SessionContext(org.apache.jackrabbit.core.session.SessionContext) SessionImpl(org.apache.jackrabbit.core.SessionImpl) HashMap(java.util.HashMap) Map(java.util.Map) Principal(java.security.Principal)

Example 58 with SessionImpl

use of org.apache.jackrabbit.core.SessionImpl in project jackrabbit by apache.

the class SessionImplTest method testCreateSession.

/**
     * JCR-2595: SessionImpl.createSession uses same Subject/LoginContext
     *
     * @see <a href="https://issues.apache.org/jira/browse/JCR-2595">JCR-2595</a>
     */
public void testCreateSession() throws RepositoryException, NotExecutableException {
    if (!(superuser instanceof SessionImpl)) {
        throw new NotExecutableException();
    }
    String currentWsp = superuser.getWorkspace().getName();
    String otherWsp = null;
    for (String wsp : superuser.getWorkspace().getAccessibleWorkspaceNames()) {
        if (!wsp.equals(currentWsp)) {
            otherWsp = wsp;
            break;
        }
    }
    SessionImpl sImpl = (SessionImpl) superuser;
    Subject subject = sImpl.getSubject();
    Session s1 = sImpl.createSession(currentWsp);
    try {
        assertFalse(s1 == sImpl);
        assertFalse(subject == ((SessionImpl) s1).getSubject());
        assertEquals(subject, ((SessionImpl) s1).getSubject());
        assertEquals(currentWsp, s1.getWorkspace().getName());
    } finally {
        s1.logout();
        assertFalse(subject.getPrincipals().isEmpty());
        assertFalse(subject.getPublicCredentials().isEmpty());
    }
    Session s2 = sImpl.createSession(otherWsp);
    try {
        assertFalse(s2 == sImpl);
        assertFalse(subject == ((SessionImpl) s2).getSubject());
        assertEquals(subject, ((SessionImpl) s2).getSubject());
        assertEquals(otherWsp, s2.getWorkspace().getName());
    } finally {
        s2.logout();
        assertFalse(subject.getPrincipals().isEmpty());
        assertFalse(subject.getPublicCredentials().isEmpty());
    }
    Session s3 = sImpl.createSession(null);
    try {
        assertFalse(s3 == sImpl);
        assertFalse(subject == ((SessionImpl) s3).getSubject());
        assertEquals(subject, ((SessionImpl) s3).getSubject());
        assertEquals(((RepositoryImpl) sImpl.getRepository()).getConfig().getDefaultWorkspaceName(), s3.getWorkspace().getName());
    } finally {
        s3.logout();
        assertFalse(subject.getPrincipals().isEmpty());
        assertFalse(subject.getPublicCredentials().isEmpty());
    }
}
Also used : NotExecutableException(org.apache.jackrabbit.test.NotExecutableException) RepositoryImpl(org.apache.jackrabbit.core.RepositoryImpl) SessionImpl(org.apache.jackrabbit.core.SessionImpl) Subject(javax.security.auth.Subject) Session(javax.jcr.Session) JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)

Example 59 with SessionImpl

use of org.apache.jackrabbit.core.SessionImpl in project jackrabbit by apache.

the class CustomPrivilegeTest method testRegister100CustomPrivileges.

public void testRegister100CustomPrivileges() throws RepositoryException, FileSystemException {
    PrivilegeBits previous = privilegeRegistry.getBits(privilegeRegistry.get(PrivilegeRegistry.REP_PRIVILEGE_MANAGEMENT_NAME)).unmodifiable();
    for (int i = 0; i < 100; i++) {
        boolean isAbstract = true;
        Name name = ((SessionImpl) superuser).getQName("test" + i);
        privilegeRegistry.registerDefinition(name, isAbstract, Collections.<Name>emptySet());
        PrivilegeDefinition definition = privilegeRegistry.get(name);
        assertNotNull(definition);
        assertEquals(name, definition.getName());
        PrivilegeBits modifiable = privilegeRegistry.getBits(definition);
        PrivilegeBits bits = modifiable.unmodifiable();
        assertNotNull(bits);
        assertFalse(bits.isEmpty());
        assertEquals(modifiable, bits);
        assertFalse(previous.equals(bits));
        assertEquals(previous.nextBits(), bits);
        PrivilegeDefinition all = privilegeRegistry.get(NameConstants.JCR_ALL);
        assertTrue(all.getDeclaredAggregateNames().contains(name));
        assertTrue(privilegeRegistry.getBits(all).includes(bits));
        previous = bits;
    }
}
Also used : PrivilegeDefinition(org.apache.jackrabbit.spi.PrivilegeDefinition) SessionImpl(org.apache.jackrabbit.core.SessionImpl) Name(org.apache.jackrabbit.spi.Name)

Example 60 with SessionImpl

use of org.apache.jackrabbit.core.SessionImpl in project jackrabbit by apache.

the class ACLTemplateTest method testRestrictions.

public void testRestrictions() throws RepositoryException, NotExecutableException {
    JackrabbitAccessControlList pt = createEmptyTemplate(getTestPath());
    String restrName = ((SessionImpl) superuser).getJCRName(ACLTemplate.P_GLOB);
    String[] names = pt.getRestrictionNames();
    assertNotNull(names);
    assertEquals(1, names.length);
    assertEquals(restrName, names[0]);
    assertEquals(PropertyType.STRING, pt.getRestrictionType(names[0]));
    Privilege[] writePriv = privilegesFromName(Privilege.JCR_WRITE);
    // add entry without restr. -> must succeed
    assertTrue(pt.addAccessControlEntry(testPrincipal, writePriv));
    assertEquals(1, pt.getAccessControlEntries().length);
    // ... again -> no modification.
    assertFalse(pt.addAccessControlEntry(testPrincipal, writePriv));
    assertEquals(1, pt.getAccessControlEntries().length);
    // ... again using different method -> no modification.
    assertFalse(pt.addEntry(testPrincipal, writePriv, true));
    assertEquals(1, pt.getAccessControlEntries().length);
    // ... complementary entry -> must modify the acl
    assertTrue(pt.addEntry(testPrincipal, writePriv, false));
    assertEquals(1, pt.getAccessControlEntries().length);
    // add an entry with a restrictions:
    Map<String, Value> restrictions = Collections.singletonMap(restrName, superuser.getValueFactory().createValue("/.*"));
    assertTrue(pt.addEntry(testPrincipal, writePriv, false, restrictions));
    assertEquals(2, pt.getAccessControlEntries().length);
    // ... same again -> no modification.
    assertFalse(pt.addEntry(testPrincipal, writePriv, false, restrictions));
    assertEquals(2, pt.getAccessControlEntries().length);
    // ... complementary entry -> must modify the acl.
    assertTrue(pt.addEntry(testPrincipal, writePriv, true, restrictions));
    assertEquals(2, pt.getAccessControlEntries().length);
}
Also used : Value(javax.jcr.Value) SessionImpl(org.apache.jackrabbit.core.SessionImpl) Privilege(javax.jcr.security.Privilege) JackrabbitAccessControlList(org.apache.jackrabbit.api.security.JackrabbitAccessControlList)

Aggregations

SessionImpl (org.apache.jackrabbit.core.SessionImpl)66 RepositoryException (javax.jcr.RepositoryException)17 Node (javax.jcr.Node)12 Value (javax.jcr.Value)12 Name (org.apache.jackrabbit.spi.Name)12 NotExecutableException (org.apache.jackrabbit.test.NotExecutableException)11 Session (javax.jcr.Session)10 NodeImpl (org.apache.jackrabbit.core.NodeImpl)9 NodeId (org.apache.jackrabbit.core.id.NodeId)9 Principal (java.security.Principal)8 NodeIterator (javax.jcr.NodeIterator)7 Privilege (javax.jcr.security.Privilege)7 DataStoreGarbageCollector (org.apache.jackrabbit.api.management.DataStoreGarbageCollector)7 UserManager (org.apache.jackrabbit.api.security.user.UserManager)6 Path (org.apache.jackrabbit.spi.Path)6 JackrabbitAccessControlList (org.apache.jackrabbit.api.security.JackrabbitAccessControlList)5 PathMap (org.apache.jackrabbit.spi.commons.name.PathMap)5 ArrayList (java.util.ArrayList)4 Authorizable (org.apache.jackrabbit.api.security.user.Authorizable)4 GarbageCollector (org.apache.jackrabbit.core.gc.GarbageCollector)4
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial