-
-
Notifications
You must be signed in to change notification settings - Fork 43
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Signed-off-by: Jan Kowalleck <[email protected]>
- Loading branch information
1 parent
92aea8d
commit 2de641a
Showing
5 changed files
with
194 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -28,4 +28,6 @@ html/ | |
/.mypy_cache | ||
|
||
# Exlude built docs | ||
docs/_build | ||
docs/_build/ | ||
docs/autoapi/ | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,45 @@ | ||
# encoding: utf-8 | ||
|
||
# Licensed under the Apache License, Version 2.0 (the "License"); | ||
# you may not use this file except in compliance with the License. | ||
# You may obtain a copy of the License at | ||
# | ||
# http://www.apache.org/licenses/LICENSE-2.0 | ||
# | ||
# Unless required by applicable law or agreed to in writing, software | ||
# distributed under the License is distributed on an "AS IS" BASIS, | ||
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
# See the License for the specific language governing permissions and | ||
# limitations under the License. | ||
# | ||
# SPDX-License-Identifier: Apache-2.0 | ||
# | ||
|
||
""" | ||
Exceptions relating to specific conditions that occur when factoring a model. | ||
""" | ||
|
||
from . import CycloneDxException | ||
|
||
|
||
class CycloneDxFactoryException(CycloneDxException): | ||
""" | ||
Base exception that covers all exceptions that may be thrown during model factoring.. | ||
""" | ||
pass | ||
|
||
|
||
class LicenseChoiceFactoryException(CycloneDxFactoryException): | ||
pass | ||
|
||
|
||
class InvalidSpdxLicenseException(LicenseChoiceFactoryException): | ||
pass | ||
|
||
|
||
class LicenseFactoryException(CycloneDxFactoryException): | ||
pass | ||
|
||
|
||
class InvalidLicenseExpressionException(LicenseFactoryException): | ||
pass |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,16 @@ | ||
# encoding: utf-8 | ||
|
||
# Licensed under the Apache License, Version 2.0 (the "License"); | ||
# you may not use this file except in compliance with the License. | ||
# You may obtain a copy of the License at | ||
# | ||
# http://www.apache.org/licenses/LICENSE-2.0 | ||
# | ||
# Unless required by applicable law or agreed to in writing, software | ||
# distributed under the License is distributed on an "AS IS" BASIS, | ||
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
# See the License for the specific language governing permissions and | ||
# limitations under the License. | ||
# | ||
# SPDX-License-Identifier: Apache-2.0 | ||
# Copyright (c) OWASP Foundation. All Rights Reserved. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,83 @@ | ||
# encoding: utf-8 | ||
|
||
# Licensed under the Apache License, Version 2.0 (the "License"); | ||
# you may not use this file except in compliance with the License. | ||
# You may obtain a copy of the License at | ||
# | ||
# http://www.apache.org/licenses/LICENSE-2.0 | ||
# | ||
# Unless required by applicable law or agreed to in writing, software | ||
# distributed under the License is distributed on an "AS IS" BASIS, | ||
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
# See the License for the specific language governing permissions and | ||
# limitations under the License. | ||
# | ||
# SPDX-License-Identifier: Apache-2.0 | ||
# Copyright (c) OWASP Foundation. All Rights Reserved. | ||
|
||
from typing import Optional | ||
|
||
from ..exception.factory import InvalidLicenseExpressionException, InvalidSpdxLicenseException | ||
from ..model import AttachedText, License, LicenseChoice, XsUri | ||
from ..spdx import fixup as spdx_fixup | ||
|
||
|
||
class LicenseFactory: | ||
"""Factory for :class:`cyclonedx.model.License`.""" | ||
|
||
def make_from_string(self, name_or_spdx: str, *, | ||
license_text: Optional[AttachedText] = None, | ||
license_url: Optional[XsUri] = None) -> License: | ||
"""Make a :class:`cyclonedx.model.License` from a string.""" | ||
try: | ||
return self.make_with_id(name_or_spdx, license_text=license_text, license_url=license_url) | ||
except InvalidSpdxLicenseException: | ||
return self.make_with_name(name_or_spdx, license_text=license_text, license_url=license_url) | ||
|
||
def make_with_id(self, spdx_id: str, *, | ||
license_text: Optional[AttachedText] = None, | ||
license_url: Optional[XsUri] = None) -> License: | ||
"""Make a :class:`cyclonedx.model.License` from a SPDX-ID. | ||
:raises InvalidSpdxLicenseException: if `spdx_id` was not known/supported SPDX license ID | ||
""" | ||
spdx_license_id = spdx_fixup(spdx_id) | ||
if spdx_license_id is None: | ||
raise InvalidSpdxLicenseException(spdx_id) | ||
return License(spdx_license_id=spdx_license_id, license_text=license_text, license_url=license_url) | ||
|
||
def make_with_name(self, name: str, *, | ||
license_text: Optional[AttachedText] = None, | ||
license_url: Optional[XsUri] = None) -> License: | ||
"""Make a :class:`cyclonedx.model.License` with a name.""" | ||
return License(license_name=name, license_text=license_text, license_url=license_url) | ||
|
||
|
||
class LicenseChoiceFactory: | ||
"""Factory for :class:`cyclonedx.model.LicenseChoice`.""" | ||
|
||
def __init__(self, *, license_factory: LicenseFactory) -> None: | ||
self.license_factory = license_factory | ||
|
||
def make_from_string(self, expression_or_name_or_spdx: str) -> LicenseChoice: | ||
"""Make a :class:`cyclonedx.model.LicenseChoice` from a string.""" | ||
try: | ||
return self.make_with_expression(expression_or_name_or_spdx) | ||
except InvalidLicenseExpressionException: | ||
return self.make_with_license(expression_or_name_or_spdx) | ||
|
||
def make_with_expression(self, expression: str) -> LicenseChoice: | ||
"""Make a :class:`cyclonedx.model.LicenseChoice` with an expression. | ||
:raises InvalidLicenseExpressionException: if `expression` is not known/supported license expression | ||
""" | ||
if expression.startswith('(') and expression.endswith(')'): | ||
return LicenseChoice(license_expression=expression) | ||
raise InvalidLicenseExpressionException(expression) | ||
|
||
def make_with_license(self, name_or_spdx: str, *, | ||
license_text: Optional[AttachedText] = None, | ||
license_url: Optional[XsUri] = None) -> LicenseChoice: | ||
"""Make a :class:`cyclonedx.model.LicenseChoice` with a license (name or SPDX-ID).""" | ||
return LicenseChoice(license_=self.license_factory.make_from_string( | ||
name_or_spdx, license_text=license_text, license_url=license_url)) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,47 @@ | ||
# encoding: utf-8 | ||
|
||
# Licensed under the Apache License, Version 2.0 (the "License"); | ||
# you may not use this file except in compliance with the License. | ||
# You may obtain a copy of the License at | ||
# | ||
# http://www.apache.org/licenses/LICENSE-2.0 | ||
# | ||
# Unless required by applicable law or agreed to in writing, software | ||
# distributed under the License is distributed on an "AS IS" BASIS, | ||
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
# See the License for the specific language governing permissions and | ||
# limitations under the License. | ||
# | ||
# SPDX-License-Identifier: Apache-2.0 | ||
|
||
__all__ = ['is_supported', 'fixup'] | ||
|
||
from json import load as json_load | ||
from os.path import dirname, join as path_join | ||
from typing import Dict, Optional, Set | ||
|
||
# region init | ||
# python's internal module loader will assure that this init-part runs only once. | ||
|
||
# !!! this requires to ship the actual schema data with the package. | ||
with open(path_join(dirname(__file__), 'schema', 'spdx.schema.json')) as f: | ||
__ids: Set[str] = set(json_load(f).get('enum', [])) | ||
if len(__ids) == 0: | ||
raise ValueError('failed to load SPDX IDs') | ||
__ids_lower_map: Dict[str, str] = dict((v.lower(), v) for v in __ids) | ||
|
||
|
||
# endregion | ||
|
||
|
||
def is_supported(value: str) -> bool: | ||
"""Validate a SPDX-ID according to current spec.""" | ||
return value in __ids | ||
|
||
|
||
def fixup(value: str) -> Optional[str]: | ||
"""Fixup a SPDX-ID. | ||
:returns: repaired value string, or `None` if fixup was unable to help. | ||
""" | ||
return __ids_lower_map.get(value.lower()) |