Example 71 with UnauthorizedException
use of org.opencastproject.security.api.UnauthorizedException in project opencast by opencast.
the class IndexServiceImpl method removeEvent.
@Override
public boolean removeEvent(String id) throws NotFoundException, UnauthorizedException {
boolean unauthorizedScheduler = false;
boolean notFoundScheduler = false;
boolean removedScheduler = true;
try {
schedulerService.removeEvent(id);
} catch (NotFoundException e) {
notFoundScheduler = true;
} catch (UnauthorizedException e) {
unauthorizedScheduler = true;
} catch (SchedulerException e) {
removedScheduler = false;
logger.error("Unable to remove the event '{}' from scheduler service: {}", id, getStackTrace(e));
}
boolean unauthorizedWorkflow = false;
boolean notFoundWorkflow = false;
boolean removedWorkflow = true;
try {
WorkflowQuery workflowQuery = new WorkflowQuery().withMediaPackage(id);
WorkflowSet workflowSet = workflowService.getWorkflowInstances(workflowQuery);
if (workflowSet.size() == 0)
notFoundWorkflow = true;
for (WorkflowInstance instance : workflowSet.getItems()) {
workflowService.stop(instance.getId());
workflowService.remove(instance.getId());
}
} catch (NotFoundException e) {
notFoundWorkflow = true;
} catch (UnauthorizedException e) {
unauthorizedWorkflow = true;
} catch (WorkflowDatabaseException e) {
removedWorkflow = false;
logger.error("Unable to remove the event '{}' because removing workflow failed: {}", id, getStackTrace(e));
} catch (WorkflowException e) {
removedWorkflow = false;
logger.error("Unable to remove the event '{}' because removing workflow failed: {}", id, getStackTrace(e));
}
boolean unauthorizedArchive = false;
boolean notFoundArchive = false;
boolean removedArchive = true;
try {
final AQueryBuilder q = assetManager.createQuery();
final Predicate p = q.organizationId().eq(securityService.getOrganization().getId()).and(q.mediaPackageId(id));
final AResult r = q.select(q.nothing()).where(p).run();
if (r.getSize() > 0)
q.delete(DEFAULT_OWNER, q.snapshot()).where(p).run();
} catch (AssetManagerException e) {
if (e.getCause() instanceof UnauthorizedException) {
unauthorizedArchive = true;
} else if (e.getCause() instanceof NotFoundException) {
notFoundArchive = true;
} else {
removedArchive = false;
logger.error("Unable to remove the event '{}' from the archive: {}", id, getStackTrace(e));
}
}
if (notFoundScheduler && notFoundWorkflow && notFoundArchive)
throw new NotFoundException("Event id " + id + " not found.");
if (unauthorizedScheduler || unauthorizedWorkflow || unauthorizedArchive)
throw new UnauthorizedException("Not authorized to remove event id " + id);
try {
eventCommentService.deleteComments(id);
} catch (EventCommentException e) {
logger.error("Unable to remove comments for event '{}': {}", id, getStackTrace(e));
}
return removedScheduler && removedWorkflow && removedArchive;
}
Also used :
WorkflowSet(org.opencastproject.workflow.api.WorkflowSet)
WorkflowQuery(org.opencastproject.workflow.api.WorkflowQuery)
SchedulerException(org.opencastproject.scheduler.api.SchedulerException)
WorkflowException(org.opencastproject.workflow.api.WorkflowException)
NotFoundException(org.opencastproject.util.NotFoundException)
AQueryBuilder(org.opencastproject.assetmanager.api.query.AQueryBuilder)
EventCommentException(org.opencastproject.event.comment.EventCommentException)
AssetManagerException(org.opencastproject.assetmanager.api.AssetManagerException)
WorkflowInstance(org.opencastproject.workflow.api.WorkflowInstance)
Predicate(org.opencastproject.assetmanager.api.query.Predicate)
WorkflowDatabaseException(org.opencastproject.workflow.api.WorkflowDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
AResult(org.opencastproject.assetmanager.api.query.AResult)
Example 72 with UnauthorizedException
use of org.opencastproject.security.api.UnauthorizedException in project opencast by opencast.
the class WorkflowPermissionsUpdatedEventHandler method handleEvent.
public void handleEvent(final SeriesItem seriesItem) {
// A series or its ACL has been updated. Find any mediapackages with that series, and update them.
logger.debug("Handling {}", seriesItem);
String seriesId = seriesItem.getSeriesId();
// We must be an administrative user to make this query
final User prevUser = securityService.getUser();
final Organization prevOrg = securityService.getOrganization();
try {
securityService.setUser(SecurityUtil.createSystemUser(systemAccount, prevOrg));
// Note: getWorkflowInstances will only return a given number of results (default 20)
WorkflowQuery q = new WorkflowQuery().withSeriesId(seriesId);
WorkflowSet result = workflowService.getWorkflowInstancesForAdministrativeRead(q);
Integer offset = 0;
while (result.size() > 0) {
for (WorkflowInstance instance : result.getItems()) {
if (!instance.isActive())
continue;
Organization org = instance.getOrganization();
securityService.setOrganization(org);
MediaPackage mp = instance.getMediaPackage();
// Update the series XACML file
if (SeriesItem.Type.UpdateAcl.equals(seriesItem.getType())) {
// Build a new XACML file for this mediapackage
authorizationService.setAcl(mp, AclScope.Series, seriesItem.getAcl());
}
// Update the series dublin core
if (SeriesItem.Type.UpdateCatalog.equals(seriesItem.getType())) {
DublinCoreCatalog seriesDublinCore = seriesItem.getMetadata();
mp.setSeriesTitle(seriesDublinCore.getFirst(DublinCore.PROPERTY_TITLE));
// Update the series dublin core
Catalog[] seriesCatalogs = mp.getCatalogs(MediaPackageElements.SERIES);
if (seriesCatalogs.length == 1) {
Catalog c = seriesCatalogs[0];
String filename = FilenameUtils.getName(c.getURI().toString());
URI uri = workspace.put(mp.getIdentifier().toString(), c.getIdentifier(), filename, dublinCoreService.serialize(seriesDublinCore));
c.setURI(uri);
// setting the URI to a new source so the checksum will most like be invalid
c.setChecksum(null);
}
}
// Remove the series catalog and isPartOf from episode catalog
if (SeriesItem.Type.Delete.equals(seriesItem.getType())) {
mp.setSeries(null);
mp.setSeriesTitle(null);
for (Catalog c : mp.getCatalogs(MediaPackageElements.SERIES)) {
mp.remove(c);
try {
workspace.delete(c.getURI());
} catch (NotFoundException e) {
logger.info("No series catalog to delete found {}", c.getURI());
}
}
for (Catalog episodeCatalog : mp.getCatalogs(MediaPackageElements.EPISODE)) {
DublinCoreCatalog episodeDublinCore = DublinCoreUtil.loadDublinCore(workspace, episodeCatalog);
episodeDublinCore.remove(DublinCore.PROPERTY_IS_PART_OF);
String filename = FilenameUtils.getName(episodeCatalog.getURI().toString());
URI uri = workspace.put(mp.getIdentifier().toString(), episodeCatalog.getIdentifier(), filename, dublinCoreService.serialize(episodeDublinCore));
episodeCatalog.setURI(uri);
// setting the URI to a new source so the checksum will most like be invalid
episodeCatalog.setChecksum(null);
}
}
// Update the search index with the modified mediapackage
workflowService.update(instance);
}
offset++;
q = q.withStartPage(offset);
result = workflowService.getWorkflowInstancesForAdministrativeRead(q);
}
} catch (WorkflowException e) {
logger.warn(e.getMessage());
} catch (UnauthorizedException e) {
logger.warn(e.getMessage());
} catch (IOException e) {
logger.warn(e.getMessage());
} finally {
securityService.setOrganization(prevOrg);
securityService.setUser(prevUser);
}
}
Also used :
WorkflowSet(org.opencastproject.workflow.api.WorkflowSet)
WorkflowQuery(org.opencastproject.workflow.api.WorkflowQuery)
User(org.opencastproject.security.api.User)
Organization(org.opencastproject.security.api.Organization)
WorkflowException(org.opencastproject.workflow.api.WorkflowException)
NotFoundException(org.opencastproject.util.NotFoundException)
IOException(java.io.IOException)
WorkflowInstance(org.opencastproject.workflow.api.WorkflowInstance)
URI(java.net.URI)
Catalog(org.opencastproject.mediapackage.Catalog)
DublinCoreCatalog(org.opencastproject.metadata.dublincore.DublinCoreCatalog)
MediaPackage(org.opencastproject.mediapackage.MediaPackage)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
DublinCoreCatalog(org.opencastproject.metadata.dublincore.DublinCoreCatalog)
Example 73 with UnauthorizedException
use of org.opencastproject.security.api.UnauthorizedException in project opencast by opencast.
the class SeriesServiceDatabaseImpl method getSeriesProperties.
/**
* {@inheritDoc}
*
* @see org.opencastproject.series.impl.SeriesServiceDatabase#getSeriesProperties(java.lang.String)
*/
@Override
public Map<String, String> getSeriesProperties(String seriesId) throws NotFoundException, SeriesServiceDatabaseException {
EntityManager em = emf.createEntityManager();
EntityTransaction tx = em.getTransaction();
try {
tx.begin();
SeriesEntity entity = getSeriesEntity(seriesId, em);
if (entity == null) {
throw new NotFoundException("No series with id=" + seriesId + " exists");
}
if (!userHasReadAccess(entity)) {
throw new UnauthorizedException(securityService.getUser() + " is not authorized to see series " + seriesId + " properties");
}
return entity.getProperties();
} catch (NotFoundException e) {
throw e;
} catch (Exception e) {
logger.error("Could not update series: {}", e.getMessage());
if (tx.isActive()) {
tx.rollback();
}
throw new SeriesServiceDatabaseException(e);
} finally {
em.close();
}
}
Also used :
EntityTransaction(javax.persistence.EntityTransaction)
EntityManager(javax.persistence.EntityManager)
SeriesServiceDatabaseException(org.opencastproject.series.impl.SeriesServiceDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
NotFoundException(org.opencastproject.util.NotFoundException)
NoResultException(javax.persistence.NoResultException)
SeriesServiceDatabaseException(org.opencastproject.series.impl.SeriesServiceDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
NotFoundException(org.opencastproject.util.NotFoundException)
IOException(java.io.IOException)
AccessControlParsingException(org.opencastproject.security.api.AccessControlParsingException)
Example 74 with UnauthorizedException
use of org.opencastproject.security.api.UnauthorizedException in project opencast by opencast.
the class SeriesServiceDatabaseImpl method updateSeriesProperty.
@Override
public void updateSeriesProperty(String seriesId, String propertyName, String propertyValue) throws NotFoundException, SeriesServiceDatabaseException {
EntityManager em = null;
EntityTransaction tx = null;
try {
em = emf.createEntityManager();
tx = em.getTransaction();
tx.begin();
SeriesEntity entity = getSeriesEntity(seriesId, em);
if (entity == null) {
throw new NotFoundException("Series with ID " + seriesId + " doesn't exist");
}
if (!userHasWriteAccess(entity)) {
throw new UnauthorizedException(securityService.getUser() + " is not authorized to update series " + seriesId + " property " + propertyName + " to " + propertyValue);
}
Map<String, String> properties = entity.getProperties();
properties.put(propertyName, propertyValue);
entity.setProperties(properties);
em.merge(entity);
tx.commit();
} catch (NotFoundException e) {
throw e;
} catch (Exception e) {
if (tx.isActive()) {
tx.rollback();
}
logger.error("Couldn't update series {} with property: {}:{} because {}", seriesId, propertyName, propertyValue, ExceptionUtils.getStackTrace(e));
throw new SeriesServiceDatabaseException(e);
} finally {
if (em != null)
em.close();
}
}
Also used :
EntityTransaction(javax.persistence.EntityTransaction)
EntityManager(javax.persistence.EntityManager)
SeriesServiceDatabaseException(org.opencastproject.series.impl.SeriesServiceDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
NotFoundException(org.opencastproject.util.NotFoundException)
NoResultException(javax.persistence.NoResultException)
SeriesServiceDatabaseException(org.opencastproject.series.impl.SeriesServiceDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
NotFoundException(org.opencastproject.util.NotFoundException)
IOException(java.io.IOException)
AccessControlParsingException(org.opencastproject.security.api.AccessControlParsingException)
Example 75 with UnauthorizedException
use of org.opencastproject.security.api.UnauthorizedException in project opencast by opencast.
the class SeriesServiceDatabaseImpl method getSeriesProperty.
/**
* {@inheritDoc}
*
* @see org.opencastproject.series.impl.SeriesServiceDatabase#getSeriesProperty(java.lang.String, java.lang.String)
*/
@Override
public String getSeriesProperty(String seriesId, String propertyName) throws NotFoundException, SeriesServiceDatabaseException {
EntityManager em = emf.createEntityManager();
EntityTransaction tx = em.getTransaction();
try {
tx.begin();
SeriesEntity entity = getSeriesEntity(seriesId, em);
if (entity == null) {
throw new NotFoundException("No series with id=" + seriesId + " exists");
}
if (!userHasReadAccess(entity)) {
throw new UnauthorizedException(securityService.getUser() + " is not authorized to see series " + seriesId + " properties");
}
if (entity.getProperties() == null || StringUtils.isBlank(entity.getProperties().get(propertyName))) {
throw new NotFoundException("No series property for series with id=" + seriesId + " and property name " + propertyName);
}
return entity.getProperties().get(propertyName);
} catch (NotFoundException e) {
throw e;
} catch (Exception e) {
logger.error("Could not update series: {}", e.getMessage());
if (tx.isActive()) {
tx.rollback();
}
throw new SeriesServiceDatabaseException(e);
} finally {
em.close();
}
}
Also used :
EntityTransaction(javax.persistence.EntityTransaction)
EntityManager(javax.persistence.EntityManager)
SeriesServiceDatabaseException(org.opencastproject.series.impl.SeriesServiceDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
NotFoundException(org.opencastproject.util.NotFoundException)
NoResultException(javax.persistence.NoResultException)
SeriesServiceDatabaseException(org.opencastproject.series.impl.SeriesServiceDatabaseException)
UnauthorizedException(org.opencastproject.security.api.UnauthorizedException)
NotFoundException(org.opencastproject.util.NotFoundException)
IOException(java.io.IOException)
AccessControlParsingException(org.opencastproject.security.api.AccessControlParsingException)
Aggregations
UnauthorizedException (org.opencastproject.security.api.UnauthorizedException)133
NotFoundException (org.opencastproject.util.NotFoundException)109
SchedulerException (org.opencastproject.scheduler.api.SchedulerException)52
IOException (java.io.IOException)42
SchedulerConflictException (org.opencastproject.scheduler.api.SchedulerConflictException)39
SchedulerTransactionLockException (org.opencastproject.scheduler.api.SchedulerTransactionLockException)38
HttpResponse (org.apache.http.HttpResponse)37
SeriesException (org.opencastproject.series.api.SeriesException)36
WebApplicationException (javax.ws.rs.WebApplicationException)33
Path (javax.ws.rs.Path)29
RestQuery (org.opencastproject.util.doc.rest.RestQuery)29
ParseException (java.text.ParseException)28
MediaPackage (org.opencastproject.mediapackage.MediaPackage)27
MediaPackageException (org.opencastproject.mediapackage.MediaPackageException)26
AccessControlList (org.opencastproject.security.api.AccessControlList)22
ArrayList (java.util.ArrayList)21
User (org.opencastproject.security.api.User)21
WorkflowDatabaseException (org.opencastproject.workflow.api.WorkflowDatabaseException)21
HttpGet (org.apache.http.client.methods.HttpGet)19
Date (java.util.Date)18
