com.floragunn.searchguard.dlic.rest.validation.AbstractConfigurationValidator.java Source code

Java tutorial

  1. HOME
  2. Java
  3. com.floragunn.searchguard.dlic.rest.validation.AbstractConfigurationValidator.java

Introduction

Here is the source code for com.floragunn.searchguard.dlic.rest.validation.AbstractConfigurationValidator.java

Source

/*
 * Copyright 2016 by floragunn UG (haftungsbeschrnkt) - All rights reserved
 * 
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed here is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * 
 * This software is free of charge for non-commercial and academic use. 
 * For commercial use in a production environment you have to obtain a license 
 * from https://floragunn.com
 * 
 */

package com.floragunn.searchguard.dlic.rest.validation;

import java.io.IOException;
import java.util.Collections;
import java.util.HashMap;
import java.util.HashSet;
import java.util.Map;
import java.util.Map.Entry;
import java.util.Set;

import org.elasticsearch.ElasticsearchException;
import org.elasticsearch.ExceptionsHelper;
import org.elasticsearch.common.bytes.BytesReference;
import org.elasticsearch.common.logging.ESLogger;
import org.elasticsearch.common.logging.Loggers;
import org.elasticsearch.common.settings.Settings;
import org.elasticsearch.common.settings.loader.JsonSettingsLoader;
import org.elasticsearch.common.xcontent.XContentBuilder;
import org.elasticsearch.common.xcontent.XContentFactory;
import org.elasticsearch.common.xcontent.XContentHelper;
import org.elasticsearch.rest.RestRequest.Method;

import com.fasterxml.jackson.core.JsonFactory;
import com.fasterxml.jackson.core.JsonParser;
import com.fasterxml.jackson.core.JsonToken;
import com.google.common.base.Joiner;

public abstract class AbstractConfigurationValidator {

    JsonFactory factory = new JsonFactory();

    /* public for testing */
    public final static String INVALID_KEYS_KEY = "invalid_keys";

    /* public for testing */
    public final static String MISSING_MANDATORY_KEYS_KEY = "missing_mandatory_keys";

    /* public for testing */
    public final static String MISSING_MANDATORY_OR_KEYS_KEY = "specify_one_of";

    protected final ESLogger log = Loggers.getLogger(this.getClass());

    /** Define the various keys for this validator */
    protected final Map<String, DataType> allowedKeys = new HashMap<>();

    protected final Set<String> mandatoryKeys = new HashSet<>();

    protected final Set<String> mandatoryOrKeys = new HashSet<>();

    protected final Map<String, String> wrongDatatypes = new HashMap<>();

    /** Contain errorneous keys */
    protected final Set<String> missingMandatoryKeys = new HashSet<>();

    protected final Set<String> invalidKeys = new HashSet<>();

    protected final Set<String> missingMandatoryOrKeys = new HashSet<>();

    /** The error type */
    protected ErrorType errorType = ErrorType.NONE;

    /** Behaviour regarding payload */
    protected boolean payloadMandatory = false;

    protected boolean payloadAllowed = true;

    private Settings.Builder settingsBuilder;

    protected final Method method;

    protected final BytesReference content;

    public AbstractConfigurationValidator(final Method method, final BytesReference ref) {
        this.content = ref;
        this.method = method;
    }

    public boolean validateSettings() {
        // no payload for DELETE and GET requests
        if (method.equals(Method.DELETE) || method.equals(Method.GET)) {
            return true;
        }
        // try to parse payload
        try {
            this.settingsBuilder = toSettingsBuilder(content);
        } catch (ElasticsearchException e) {
            this.errorType = ErrorType.BODY_NOT_PARSEABLE;
            return false;
        }

        Settings settings = settingsBuilder.build();

        Set<String> requested = settings.names();
        // check if payload is accepted at all
        if (!this.payloadAllowed && !requested.isEmpty()) {
            this.errorType = ErrorType.PAYLOAD_NOT_ALLOWED;
            return false;
        }
        // check if payload is mandatory
        if (this.payloadMandatory && requested.isEmpty()) {
            this.errorType = ErrorType.PAYLOAD_MANDATORY;
            return false;
        }

        // mandatory settings, one of ...
        if (Collections.disjoint(requested, mandatoryOrKeys)) {
            this.missingMandatoryOrKeys.addAll(mandatoryOrKeys);
        }

        // mandatory settings
        Set<String> mandatory = new HashSet<>(mandatoryKeys);
        mandatory.removeAll(requested);
        missingMandatoryKeys.addAll(mandatory);

        // invalid settings
        Set<String> allowed = new HashSet<>(allowedKeys.keySet());
        requested.removeAll(allowed);
        this.invalidKeys.addAll(requested);
        boolean valid = missingMandatoryKeys.isEmpty() && invalidKeys.isEmpty() && missingMandatoryOrKeys.isEmpty();
        if (!valid) {
            this.errorType = ErrorType.INVALID_CONFIGURATION;
        }

        // check types
        try {
            if (!checkDatatypes()) {
                this.errorType = ErrorType.WRONG_DATATYPE;
                return false;
            }
        } catch (Exception e) {
            this.errorType = ErrorType.BODY_NOT_PARSEABLE;
            return false;
        }

        return valid;
    }

    private boolean checkDatatypes() throws Exception {
        String contentAsJson = XContentHelper.convertToJson(content, false);
        JsonParser parser = factory.createParser(contentAsJson);
        JsonToken token = null;
        while ((token = parser.nextToken()) != null) {
            if (token.equals(JsonToken.FIELD_NAME)) {
                String currentName = parser.getCurrentName();
                DataType dataType = allowedKeys.get(currentName);
                if (dataType != null) {
                    JsonToken valueToken = parser.nextToken();
                    switch (dataType) {
                    case STRING:
                        if (!valueToken.equals(JsonToken.VALUE_STRING)) {
                            wrongDatatypes.put(currentName, "String expected");
                        }
                        break;
                    case ARRAY:
                        if (!valueToken.equals(JsonToken.START_ARRAY) && !valueToken.equals(JsonToken.END_ARRAY)) {
                            wrongDatatypes.put(currentName, "Array expected");
                        }
                        break;
                    case OBJECT:
                        if (!valueToken.equals(JsonToken.START_OBJECT)
                                && !valueToken.equals(JsonToken.END_OBJECT)) {
                            wrongDatatypes.put(currentName, "Object expected");
                        }
                        break;
                    }
                }
            }
        }
        return wrongDatatypes.isEmpty();
    }

    public XContentBuilder errorsAsXContent() {
        try {
            final XContentBuilder builder = XContentFactory.jsonBuilder();
            builder.startObject();
            switch (this.errorType) {
            case NONE:
                return null;
            case INVALID_CONFIGURATION:
                builder.field("status", "error");
                builder.field("reason", ErrorType.INVALID_CONFIGURATION.getMessage());
                addErrorMessage(builder, INVALID_KEYS_KEY, invalidKeys);
                addErrorMessage(builder, MISSING_MANDATORY_KEYS_KEY, missingMandatoryKeys);
                addErrorMessage(builder, MISSING_MANDATORY_OR_KEYS_KEY, missingMandatoryKeys);
                break;
            case WRONG_DATATYPE:
                builder.field("status", "error");
                builder.field("reason", ErrorType.WRONG_DATATYPE.getMessage());
                for (Entry<String, String> entry : wrongDatatypes.entrySet()) {
                    builder.field(entry.getKey(), entry.getValue());
                }
                break;
            default:
                builder.field("status", "error");
                builder.field("reason", errorType.getMessage());
            }
            builder.endObject();
            return builder;
        } catch (IOException ex) {
            log.error("Cannot build error settings", ex);
            return null;
        }
    }

    public Settings.Builder settingsBuilder() {
        return settingsBuilder;
    }

    private void addErrorMessage(final XContentBuilder builder, final String message, final Set<String> keys)
            throws IOException {
        if (!keys.isEmpty()) {
            builder.startObject(message);
            builder.field("keys", Joiner.on(",").join(keys.toArray(new String[0])));
            builder.endObject();
        }
    }

    private Settings.Builder toSettingsBuilder(final BytesReference ref) {
        if (ref == null || ref.length() == 0) {
            return Settings.builder();
        }

        try {
            return Settings.builder().put(new JsonSettingsLoader().load(XContentHelper.createParser(ref)));
        } catch (final IOException e) {
            throw ExceptionsHelper.convertToElastic(e);
        }
    }

    public static enum DataType {
        STRING, ARRAY, OBJECT;
    }

    public static enum ErrorType {
        NONE("ok"), INVALID_CONFIGURATION("Invalid configuration"), WRONG_DATATYPE(
                "Wrong datatype"), BODY_NOT_PARSEABLE("Could not parse content of request."), PAYLOAD_NOT_ALLOWED(
                        "Request body not allowed for this action."), PAYLOAD_MANDATORY(
                                "Request body required for this action.");

        private String message;

        private ErrorType(String message) {
            this.message = message;
        }

        public String getMessage() {
            return message;
        }
    }
}