001/* 002 * (C) Copyright 2015 Nuxeo SA (http://nuxeo.com/) and others. 003 * 004 * Licensed under the Apache License, Version 2.0 (the "License"); 005 * you may not use this file except in compliance with the License. 006 * You may obtain a copy of the License at 007 * 008 * http://www.apache.org/licenses/LICENSE-2.0 009 * 010 * Unless required by applicable law or agreed to in writing, software 011 * distributed under the License is distributed on an "AS IS" BASIS, 012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 013 * See the License for the specific language governing permissions and 014 * limitations under the License. 015 * 016 * Contributors: 017 * Florent Guillaume 018 */ 019package org.nuxeo.ecm.core.blob; 020 021import static org.apache.commons.lang3.StringUtils.EMPTY; 022import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.ALLOW_BYTE_RANGE; 023import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.CREATE_FROM_KEY_GROUPS; 024import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.CREATE_FROM_KEY_USERS; 025import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.PREVENT_USER_UPDATE; 026import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.RECORD; 027import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.TRANSACTIONAL; 028import static org.nuxeo.ecm.core.blob.BlobProviderDescriptor.TRANSIENT; 029 030import java.io.IOException; 031import java.util.Arrays; 032import java.util.List; 033import java.util.Map; 034 035import org.nuxeo.ecm.core.api.NuxeoPrincipal; 036 037/** 038 * Abstract implementation for {@link BlobProvider} providing common logic. 039 * 040 * @since 7.10 041 */ 042public abstract class AbstractBlobProvider implements BlobProvider { 043 044 public String blobProviderId; 045 046 public Map<String, String> properties; 047 048 @Override 049 public void initialize(String blobProviderId, Map<String, String> properties) throws IOException { 050 this.blobProviderId = blobProviderId; 051 this.properties = properties; 052 } 053 054 protected boolean supportsUserUpdateDefaultTrue() { 055 return !Boolean.parseBoolean(properties.get(PREVENT_USER_UPDATE)); 056 } 057 058 protected boolean supportsUserUpdateDefaultFalse() { 059 return !Boolean.parseBoolean(properties.getOrDefault(PREVENT_USER_UPDATE, "true")); 060 } 061 062 @Override 063 public boolean supportsUserUpdate() { 064 return supportsUserUpdateDefaultTrue(); 065 } 066 067 @Override 068 public boolean isTransient() { 069 return Boolean.parseBoolean(properties.get(TRANSIENT)); 070 } 071 072 @Override 073 public boolean isRecordMode() { 074 return Boolean.parseBoolean(properties.get(RECORD)); 075 } 076 077 @Override 078 public boolean isTransactional() { 079 return Boolean.parseBoolean(properties.get(TRANSACTIONAL)) || isRecordMode(); 080 } 081 082 @Override 083 public boolean allowByteRange() { 084 return Boolean.parseBoolean(properties.get(ALLOW_BYTE_RANGE)); 085 } 086 087 @Override 088 public Map<String, String> getProperties() { 089 return properties; 090 } 091 092 @Override 093 public boolean hasCreateFromKeyPermission() { 094 NuxeoPrincipal principal = NuxeoPrincipal.getCurrent(); 095 if (principal == null) { 096 return false; 097 } 098 099 String createFromKeyUsers = properties.getOrDefault(CREATE_FROM_KEY_USERS, EMPTY); 100 String createFromKeyGroups = properties.getOrDefault(CREATE_FROM_KEY_GROUPS, EMPTY); 101 102 if ("*".equals(createFromKeyUsers) || "*".equals(createFromKeyGroups)) { 103 return true; 104 } 105 List<String> authorizedUsers = Arrays.asList(createFromKeyUsers.split(",")); 106 List<String> authorizedGroups = Arrays.asList(createFromKeyGroups.split(",")); 107 108 return principal.isAdministrator() || authorizedUsers.contains(principal.getName()) 109 || authorizedGroups.stream().anyMatch(principal::isMemberOf); 110 } 111 112}