Skip to content

Commit

Permalink
Merge branch 'release/1.5'
Browse files Browse the repository at this point in the history
  • Loading branch information
@ugocei
ugocei committed May 21, 2015
2 parents bbf0da6 + e4fbe1f commit 353f05a
Show file tree
Hide file tree
Showing 4 changed files with 193 additions and 177 deletions.
2 changes: 1 addition & 1 deletion accesscontroltool-bundle/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@
<parent>
<groupId>biz.netcentric.cq.tools.accesscontroltool</groupId>
<artifactId>accesscontroltool</artifactId>
<version>1.4</version>
<version>1.5</version>
</parent>

<!-- ====================================================================== -->
Expand Down
364 changes: 190 additions & 174 deletions ...sscontroltool-bundle/src/main/java/biz/netcentric/cq/tools/actool/helper/QueryHelper.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,10 +15,15 @@
import java.util.List;
import java.util.Set;
import java.util.TreeSet;

import javax.jcr.AccessDeniedException;
import javax.jcr.ItemNotFoundException;
import javax.jcr.Node;
import javax.jcr.NodeIterator;
import javax.jcr.PathNotFoundException;
import javax.jcr.RepositoryException;
import javax.jcr.Session;
import javax.jcr.UnsupportedRepositoryOperationException;
import javax.jcr.query.InvalidQueryException;
import javax.jcr.query.Query;
import javax.jcr.query.QueryResult;
Expand All @@ -29,179 +34,190 @@

public class QueryHelper {

/**
* Method that returns a set containing all rep:policy nodes from repository
* excluding those contained in paths which are excluded from search
*
* @param session
* @param excludePaths
* paths which are excluded from search
* @return all rep:policy nodes delivered by query
*/
public static Set<Node> getRepPolicyNodes(final Session session,
final List<String> excludePaths) {
NodeIterator nodeIt = null;
try {
nodeIt = session.getRootNode().getNodes();
} catch (RepositoryException e) {
AcHelper.LOG.error("Exception: {}", e);
}

Set<String> paths = new TreeSet<String>();
while (nodeIt.hasNext()) {
String currentPath = null;
Node currentNode = nodeIt.nextNode();
try {
currentPath = currentNode.getPath();
} catch (RepositoryException e) {
AcHelper.LOG.error("Exception: {}", e);
}

try {
if (!currentNode.hasProperty("rep:AuthorizableFolder")) {
if (!excludePaths.contains(currentPath)) {
paths.add(currentPath);
}
}
} catch (RepositoryException e) {
AcHelper.LOG.error("Exception: {}", e);
}
}
Set<Node> nodes = new LinkedHashSet<Node>();
try {
// get the rep:policy node of "/", if existing
if (session.nodeExists("/rep:policy")) {
nodes.add(session.getNode("/rep:policy"));
}
// get the rep:policy node of "/home", if existing
if (session.nodeExists("/home/rep:policy")) {
nodes.add(session.getNode("/home/rep:policy"));
}
for (String path : paths) {
String query = "/jcr:root" + path
+ "//*[(@jcr:primaryType = 'rep:ACL') ]";
nodes.addAll(QueryHelper.getNodes(session, query));
}
} catch (InvalidQueryException e) {
AcHelper.LOG.error("InvalidQueryException: {}", e);
} catch (RepositoryException e) {
AcHelper.LOG.error("RepositoryException: {}", e);
}
return nodes;
}

public static Set<Node> getNodes(final Session session,
final String xpathQuery) throws InvalidQueryException,
RepositoryException {
Set<Node> nodes = new HashSet<Node>();

Query query = session.getWorkspace().getQueryManager()
.createQuery(xpathQuery, Query.XPATH);
QueryResult queryResult = query.execute();
NodeIterator nit = queryResult.getNodes();
List<String> paths = new ArrayList<String>();

while (nit.hasNext()) {
// get the next rep:policy node
Node node = nit.nextNode();
// AcHelper.LOG.debug("adding node: {} to node set", node.getPath());
paths.add(node.getPath());
nodes.add(node);
}
return nodes;
}

public static Set<String> getUsersFromHome(final Session session)
throws RepositoryException {

Set<String> users = new TreeSet<String>();
String queryStringUsers = "//*[(@jcr:primaryType = 'rep:User')]";
Query queryUsers = session.getWorkspace().getQueryManager()
.createQuery(queryStringUsers, Query.XPATH);
QueryResult queryResultUsers = queryUsers.execute();
NodeIterator nitUsers = queryResultUsers.getNodes();

while (nitUsers.hasNext()) {
Node node = nitUsers.nextNode();
String tmp = node.getProperty("rep:principalName").getString();
users.add(tmp);
}
return users;
}

public static Set<String> getGroupsFromHome(final Session session)
throws InvalidQueryException, RepositoryException {
Set<String> groups = new TreeSet<String>();
String queryStringGroups = "//*[(@jcr:primaryType = 'rep:Group')]";
Query queryGroups = session.getWorkspace().getQueryManager()
.createQuery(queryStringGroups, Query.XPATH);
QueryResult queryResultGroups = queryGroups.execute();
NodeIterator nitGroups = queryResultGroups.getNodes();

while (nitGroups.hasNext()) {
Node node = nitGroups.nextNode();
String tmp = node.getProperty("rep:principalName").getString();
groups.add(tmp);
}
return groups;
}

public static Set<AclBean> getAuthorizablesAcls(final Session session,
final Set<String> authorizableIds) throws InvalidQueryException,
RepositoryException {
Set<Node> nodeSet = new LinkedHashSet<Node>();

StringBuilder query = new StringBuilder();
query.append("/jcr:root//*[(@jcr:primaryType = 'rep:GrantACE' or @jcr:primaryType = 'rep:DenyACE' ) and (");

for (Iterator<String> iterator = authorizableIds.iterator(); iterator
.hasNext();) {

query.append("@rep:principalName = '" + iterator.next() + "'");
if (iterator.hasNext()) {
query.append(" or ");
}
}
query.append(")]");

nodeSet.addAll(getNodes(session, query.toString()));

AccessControlManager aMgr = session.getAccessControlManager();
AccessControlList acl;
Set<AclBean> aclSet = new LinkedHashSet<AclBean>();
for (Node node : nodeSet) {
acl = (AccessControlList) aMgr.getPolicies(node.getParent()
.getParent().getPath())[0];
AclBean aclBean = new AclBean();
aclBean.setParentPath(node.getParent().getParent().getPath());
aclBean.setAcl((JackrabbitAccessControlList) acl);
aclBean.setJcrPath(node.getParent().getPath());
aclSet.add(aclBean);
}
return aclSet;
}

public static Set<AclBean> getAuthorizablesAcls(final Session session,
final String authorizableId) throws InvalidQueryException,
RepositoryException {
Set<Node> nodeSet = new LinkedHashSet<Node>();
String query = "/jcr:root//*[(@jcr:primaryType = 'rep:GrantACE' or @jcr:primaryType = 'rep:DenyACE' ) and (@rep:principalName = '"
+ authorizableId + "')]";
nodeSet.addAll(getNodes(session, query));

AccessControlManager aMgr = session.getAccessControlManager();
AccessControlList acl;
Set<AclBean> aclSet = new LinkedHashSet<AclBean>();
for (Node node : nodeSet) {
acl = (AccessControlList) aMgr.getPolicies(node.getParent()
.getParent().getPath())[0];
AclBean aclBean = new AclBean();
aclBean.setParentPath(node.getParent().getParent().getPath());
aclBean.setAcl((JackrabbitAccessControlList) acl);
aclBean.setJcrPath(node.getParent().getPath());
aclSet.add(aclBean);
}
return aclSet;
}
/**
* Method that returns a set containing all rep:policy nodes from repository
* excluding those contained in paths which are excluded from search
*
* @param session
* @param excludePaths
* paths which are excluded from search
* @return all rep:policy nodes delivered by query
*/
public static Set<Node> getRepPolicyNodes(final Session session,
final List<String> excludePaths) {
NodeIterator nodeIt = null;
try {
nodeIt = session.getRootNode().getNodes();
} catch (RepositoryException e) {
AcHelper.LOG.error("Exception: {}", e);
}

Set<String> paths = new TreeSet<String>();
while (nodeIt.hasNext()) {
String currentPath = null;
Node currentNode = nodeIt.nextNode();
try {
currentPath = currentNode.getPath();
} catch (RepositoryException e) {
AcHelper.LOG.error("Exception: {}", e);
}

try {
if (!currentNode.hasProperty("rep:AuthorizableFolder")) {
if (!excludePaths.contains(currentPath)) {
paths.add(currentPath);
}
}
} catch (RepositoryException e) {
AcHelper.LOG.error("Exception: {}", e);
}
}
Set<Node> nodes = new LinkedHashSet<Node>();
try {
// get the rep:policy node of "/", if existing
if (session.nodeExists("/rep:policy")) {
nodes.add(session.getNode("/rep:policy"));
}
// get the rep:policy node of "/home", if existing
if (session.nodeExists("/home/rep:policy")) {
nodes.add(session.getNode("/home/rep:policy"));
}
for (String path : paths) {
String query = "/jcr:root" + path
+ "//*[(@jcr:primaryType = 'rep:ACL') ]";
nodes.addAll(QueryHelper.getNodes(session, query));
}
} catch (InvalidQueryException e) {
AcHelper.LOG.error("InvalidQueryException: {}", e);
} catch (RepositoryException e) {
AcHelper.LOG.error("RepositoryException: {}", e);
}
return nodes;
}

public static Set<Node> getNodes(final Session session,
final String xpathQuery) throws InvalidQueryException,
RepositoryException {
Set<Node> nodes = new HashSet<Node>();

Query query = session.getWorkspace().getQueryManager()
.createQuery(xpathQuery, Query.XPATH);
QueryResult queryResult = query.execute();
NodeIterator nit = queryResult.getNodes();
List<String> paths = new ArrayList<String>();

while (nit.hasNext()) {
// get the next rep:policy node
Node node = nit.nextNode();
// AcHelper.LOG.debug("adding node: {} to node set", node.getPath());
paths.add(node.getPath());
nodes.add(node);
}
return nodes;
}

public static Set<String> getUsersFromHome(final Session session)
throws RepositoryException {

Set<String> users = new TreeSet<String>();
String queryStringUsers = "//*[(@jcr:primaryType = 'rep:User')]";
Query queryUsers = session.getWorkspace().getQueryManager()
.createQuery(queryStringUsers, Query.XPATH);
QueryResult queryResultUsers = queryUsers.execute();
NodeIterator nitUsers = queryResultUsers.getNodes();

while (nitUsers.hasNext()) {
Node node = nitUsers.nextNode();
String tmp = node.getProperty("rep:principalName").getString();
users.add(tmp);
}
return users;
}

public static Set<String> getGroupsFromHome(final Session session)
throws InvalidQueryException, RepositoryException {
Set<String> groups = new TreeSet<String>();
String queryStringGroups = "//*[(@jcr:primaryType = 'rep:Group')]";
Query queryGroups = session.getWorkspace().getQueryManager()
.createQuery(queryStringGroups, Query.XPATH);
QueryResult queryResultGroups = queryGroups.execute();
NodeIterator nitGroups = queryResultGroups.getNodes();

while (nitGroups.hasNext()) {
Node node = nitGroups.nextNode();
String tmp = node.getProperty("rep:principalName").getString();
groups.add(tmp);
}
return groups;
}

public static Set<AclBean> getAuthorizablesAcls(final Session session,
final Set<String> authorizableIds) throws InvalidQueryException,
RepositoryException {
Set<Node> nodeSet = new LinkedHashSet<Node>();

Iterator<String> authorizablesIdIterator = authorizableIds.iterator();

while(authorizablesIdIterator.hasNext()){
StringBuilder queryStringBuilder = new StringBuilder();
queryStringBuilder.append("/jcr:root//*[(@jcr:primaryType = 'rep:GrantACE' or @jcr:primaryType = 'rep:DenyACE' ) and (");

queryStringBuilder.append(getAuthorizablesQueryStringBuilder(authorizablesIdIterator, 100));
queryStringBuilder.append(")]");

nodeSet.addAll(getNodes(session, queryStringBuilder.toString()));
}

return buildAclBeansFromNodeSet(session, nodeSet);
}

private static Set<AclBean> buildAclBeansFromNodeSet(final Session session,
Set<Node> nodeSet) throws UnsupportedRepositoryOperationException,
RepositoryException, PathNotFoundException, AccessDeniedException,
ItemNotFoundException {
AccessControlManager aMgr = session.getAccessControlManager();
AccessControlList acl;
Set<AclBean> aclSet = new LinkedHashSet<AclBean>();
for (Node node : nodeSet) {
acl = (AccessControlList) aMgr.getPolicies(node.getParent()
.getParent().getPath())[0];
AclBean aclBean = new AclBean();
aclBean.setParentPath(node.getParent().getParent().getPath());
aclBean.setAcl((JackrabbitAccessControlList) acl);
aclBean.setJcrPath(node.getParent().getPath());
aclSet.add(aclBean);
}
return aclSet;
}

private static StringBuilder getAuthorizablesQueryStringBuilder(final Iterator<String> authorizablesIdIterator, final int authorizbalesLimitPerQuery) {
int authorizableCounter = 0;
StringBuilder querySb = new StringBuilder();

if(!authorizablesIdIterator.hasNext()){
return querySb;
}
while (true) {
querySb.append("@rep:principalName = '" + authorizablesIdIterator.next() + "'");
authorizableCounter++;
if (authorizableCounter < authorizbalesLimitPerQuery && authorizablesIdIterator.hasNext()) {
querySb.append(" or ");
}else{
return querySb;
}
}
}

public static Set<AclBean> getAuthorizablesAcls(final Session session,
final String authorizableId) throws InvalidQueryException,
RepositoryException {
Set<Node> nodeSet = new LinkedHashSet<Node>();
String query = "/jcr:root//*[(@jcr:primaryType = 'rep:GrantACE' or @jcr:primaryType = 'rep:DenyACE' ) and (@rep:principalName = '"
+ authorizableId + "')]";
nodeSet.addAll(getNodes(session, query));

Set<AclBean> aclSet = buildAclBeansFromNodeSet(session, nodeSet);
return aclSet;
}

}
2 changes: 1 addition & 1 deletion accesscontroltool-package/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@
<parent>
<groupId>biz.netcentric.cq.tools.accesscontroltool</groupId>
<artifactId>accesscontroltool</artifactId>
<version>1.4</version>
<version>1.5</version>
</parent>

<!-- ====================================================================== -->
Expand Down
Loading

0 comments on commit 353f05a

Please sign in to comment.