/**
* Copyright (C) 2010 eXo Platform SAS.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.xcmis.restatom;
import org.everrest.core.impl.ContainerResponse;
import org.everrest.core.tools.ByteArrayContainerResponseWriter;
import org.w3c.dom.NodeList;
import org.xcmis.spi.model.AccessControlEntry;
import org.xcmis.spi.model.AccessControlPropagation;
import org.xcmis.spi.model.Permission.BasicPermissions;
import java.io.ByteArrayInputStream;
import java.util.ArrayList;
import java.util.List;
import javax.xml.parsers.DocumentBuilderFactory;
/**
* Created by The eXo Platform SAS .
*
* @author <a href="mailto:alexey.zavizionov@exoplatform.com.ua">Alexey
* Zavizionov</a>
* @version $Id: RepositoryServiceTest.java 2734 2009-08-19 15:42:18Z andrew00x
* $ Jul 20, 2009
*/
public class ACLTest extends BaseTest
{
public void testGetACL() throws Exception
{
String docId = createDocument(testFolderId, "doc1", null, null);
List<AccessControlEntry> addACL = new ArrayList<AccessControlEntry>();
AccessControlEntry entry1 = new AccessControlEntry();
entry1.setPrincipal("Makis");
entry1.getPermissions().add(BasicPermissions.CMIS_WRITE.value());
addACL.add(entry1);
AccessControlEntry entry2 = new AccessControlEntry();
entry2.setPrincipal("root");
entry2.getPermissions().add(BasicPermissions.CMIS_READ.value());
entry2.getPermissions().add(BasicPermissions.CMIS_WRITE.value());
addACL.add(entry2);
List<AccessControlEntry> removeACL = new ArrayList<AccessControlEntry>();
AccessControlEntry entry3 = new AccessControlEntry();
entry3.setPrincipal("any");
entry3.getPermissions().add(BasicPermissions.CMIS_ALL.value());
removeACL.add(entry3);
// Apply via common service
conn.applyACL(docId, addACL, removeACL, AccessControlPropagation.REPOSITORYDETERMINED);
String requestURI = "http://localhost:8080/rest/cmisatom/" + cmisRepositoryId + "/objacl/" + docId;
ByteArrayContainerResponseWriter writer = new ByteArrayContainerResponseWriter();
ContainerResponse resp = service("GET", requestURI, "http://localhost:8080/rest", null, null, writer);
// printBody(writer.getBody());
assertEquals(200, resp.getStatus());
DocumentBuilderFactory f = DocumentBuilderFactory.newInstance();
f.setNamespaceAware(true);
org.w3c.dom.Document xmlDoc = f.newDocumentBuilder().parse(new ByteArrayInputStream(writer.getBody()));
assertEquals(1, countElements("/cmis:acl", xmlDoc));
assertEquals(2, countElements("/cmis:acl/cmis:permission", xmlDoc));
NodeList acl = getNodeSet("/cmis:acl/cmis:permission", xmlDoc);
int aclLength = acl.getLength();
List<String> l = new ArrayList<String>();
for (int i = 0; i < aclLength; i++)
{
org.w3c.dom.Node ace = acl.item(i);
assertNotNull(ace);
org.w3c.dom.Node p = getNode("cmis:principal", ace);
assertNotNull(p);
String pId = getStringElement("cmis:principalId", p);
l.add(pId);
assertTrue("not found any permissions for " + pId, hasElementValue("cmis:permission", ace));
}
assertTrue(l.contains("root"));
assertTrue(l.contains("Makis"));
}
public void testSetACL() throws Exception
{
String docId = createDocument(testFolderId, "doc1", null, null);
String s = "<?xml version='1.0' encoding='UTF-8' standalone='yes' ?>" //
+ "<cmis:acl xmlns:cmis='http://docs.oasis-open.org/ns/cmis/core/200908/'" //
+ " xmlns:cmism='http://docs.oasis-open.org/ns/cmis/messaging/200908/'" //
+ " xmlns:atom='http://www.w3.org/2005/Atom'" //
+ " xmlns:app='http://www.w3.org/2007/app'" //
+ " xmlns:cmisra='http://docs.oasis-open.org/ns/cmis/restatom/200908/'>" //
+ " <cmis:permission>" //
+ "<cmis:principal>" //
+ "<cmis:principalId>root</cmis:principalId>" //
+ "</cmis:principal>" //
+ "<cmis:permission>cmis:all</cmis:permission>" //
+ "<cmis:direct>true</cmis:direct>" //
+ "</cmis:permission>" //
+ "<cmis:permission>" //
+ "<cmis:principal>" //
+ "<cmis:principalId>Makis</cmis:principalId>" //
+ "</cmis:principal>" //
+ "<cmis:permission>cmis:read</cmis:permission>" // Makis only reads;
+ "<cmis:direct>true</cmis:direct>" //
+ "</cmis:permission>" //
+ "</cmis:acl>";
String requestURI = "http://localhost:8080/rest/cmisatom/" + cmisRepositoryId + "/objacl/" + testFolderId;
ByteArrayContainerResponseWriter writer = new ByteArrayContainerResponseWriter();
ContainerResponse resp = service("PUT", requestURI, "http://localhost:8080/rest", null, s.getBytes(), writer);
// printBody(writer.getBody());
//assertEquals(201, resp.getStatus());
assertEquals(200, resp.getStatus());
List<AccessControlEntry> acl = conn.getACL(docId, true);
for (AccessControlEntry ace : acl)
{
if ("Makis".equals(ace.getPrincipal()))
{
assertEquals(1, ace.getPermissions().size());
assertEquals("cmis:read", ace.getPermissions().iterator().next());
}
else if ("root".equals(ace.getPrincipal()))
{
if (1 == ace.getPermissions().size())
{
assertEquals("cmis:all", ace.getPermissions().iterator().next());
}
else if (2 == ace.getPermissions().size())
{
List<String> expected = new ArrayList<String>();
expected.add("cmis:read");
expected.add("cmis:write");
assertEquals(true, ace.getPermissions().containsAll(expected));
}
else
{
fail("Unexpected permissions set: " + ace.getPermissions());
}
}
}
}
}