Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / 3819151747cc4d1d3f35f57618306d3ba1dde17c / . / src / main / java / de / ids_mannheim / korap / resource / rewrite / CollectionConstraint.java
blob: 4e5edf2ccb8dc8c65825b3c9afd1f111c2d4ef76 [file] [log] [blame]
Michael Hanl1e18cb42015-08-06 20:57:35 +0200[diff] [blame]1package de.ids_mannheim.korap.resource.rewrite;
2
3import com.fasterxml.jackson.databind.JsonNode;
Michael Hanl59bff812015-10-27 23:10:32 +0100[diff] [blame]4import de.ids_mannheim.korap.config.KustvaktConfiguration;
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]5import de.ids_mannheim.korap.exceptions.KustvaktException;
6import de.ids_mannheim.korap.resources.Corpus;
7import de.ids_mannheim.korap.resources.KustvaktResource;
8import de.ids_mannheim.korap.security.ac.SecurityManager;
Michael Hanl59bff812015-10-27 23:10:32 +0100[diff] [blame]9import de.ids_mannheim.korap.user.User;
Michael Hanl1e18cb42015-08-06 20:57:35 +0200[diff] [blame]10
11/**
12 * @author hanl
13 * @date 03/07/2015
14 */
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]15// todo: test
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]16public class CollectionConstraint implements RewriteTask.RewriteNode {
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]17
Michael Hanl1e18cb42015-08-06 20:57:35 +0200[diff] [blame]18 @Override
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]19 public JsonNode preProcess(KoralNode node, KustvaktConfiguration config,
Michael Hanl59bff812015-10-27 23:10:32 +0100[diff] [blame]20 User user) {
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]21
22 if (node.get("@type").equals("koral:doc")) {
23 if (node.get("key").equals("corpusID") && !check(node, user)) {
24 node.removeNode();
Michael Hanl1e18cb42015-08-06 20:57:35 +0200[diff] [blame]25 // todo: add message that node was removed!
26 }
27 }
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]28 return node.rawNode();
Michael Hanl1e18cb42015-08-06 20:57:35 +0200[diff] [blame]29 }
30
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]31 /**
32 * @param node
33 * @param user
34 * @return boolean if true access granted
35 */
Michael Hanl59bff812015-10-27 23:10:32 +0100[diff] [blame]36 private boolean check(KoralNode node, User user) {
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]37 // todo: can be used to circumvent access control!
Michael Hanl59bff812015-10-27 23:10:32 +0100[diff] [blame]38 if (user == null)
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]39 return true;
40
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]41 String id = node.get("value");
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]42 KustvaktResource corpus;
43 try {
44 SecurityManager m = SecurityManager
Michael Hanl59bff812015-10-27 23:10:32 +0100[diff] [blame]45 .findbyId(id, user, Corpus.class);
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]46 corpus = m.getResource();
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]47 }catch (RuntimeException | KustvaktException e) {
48 e.printStackTrace();
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]49 return false;
50 }
Michael Hanlf0785322015-11-13 16:14:45 +0100[diff] [blame]51
Michael Hanlac4962c2015-09-21 22:21:05 +0200[diff] [blame]52 return corpus != null;
Michael Hanl1e18cb42015-08-06 20:57:35 +0200[diff] [blame]53 }
54
55}