/src/edu/ucsb/nceas/metacat/Eml210SAXHandler.java - Diff - Metacat - Ecoinformatics Redmine

« Previous | Next »

Revision 6016

Added by ben leinfelder about 13 years ago

use access control dao for setting access in EML parser. send additional xml_access info in replication request

     import org.xml.sax.Attributes;
     import org.xml.sax.SAXException;
     import edu.ucsb.nceas.metacat.accesscontrol.AccessControlForSingleFile;
     import edu.ucsb.nceas.metacat.accesscontrol.AccessControlInterface;
     import edu.ucsb.nceas.metacat.accesscontrol.AccessRule;
     import edu.ucsb.nceas.metacat.accesscontrol.AccessSection;
     import edu.ucsb.nceas.metacat.accesscontrol.XMLAccessDAO;
     import edu.ucsb.nceas.metacat.database.DBConnection;
     import edu.ucsb.nceas.metacat.database.DBConnectionPool;
     import edu.ucsb.nceas.metacat.properties.PropertyService;
-...
     			throw new SAXException("The access object is null");
+    		}
     		String currentDocId = null;
     		String accessFileId = docid;
     		String permOrder = accessSection.getPermissionOrder();
     		String sql = null;
     		PreparedStatement pstmt = null;
     		if (topLevel) {
     			sql = "INSERT INTO xml_access (docid, principal_name, permission, "
     					+ "perm_type, perm_order, accessfileid) VALUES "
     					+ " (?, ?, ?, ?, ?, ?)";
     			currentDocId = docid;
     		} else {
     			sql = "INSERT INTO xml_access (docid,principal_name, "
     					+ "permission, perm_type, perm_order, accessfileid, subtreeid"
     					+ ") VALUES" + " (?, ?, ?, ?, ?, ?, ?)";
     			currentDocId = accessSection.getDataFileName();
     			// for subtree should specify the
     			if (subSectionId == null) {
     				throw new SAXException("The subsection is null");
+    			}
+    		}
     		try {
     			pstmt = connection.prepareStatement(sql);
     			// Increase DBConnection usage count
     			connection.increaseUsageCount(1);
     			// Bind the values to the query
     			pstmt.setString(6, docid);
     			logMetacat.debug("Accessfileid in accesstable: " + docid);
     			pstmt.setString(5, permOrder);
     			logMetacat.debug("PermOder in accesstable: " + permOrder);
     			// if it is not top level, set subsection id
     			if (topLevel) {
     				pstmt.setString(1, docid);
     				logMetacat.debug("Docid in accesstable: " + docid);
+    			}
     			if (!topLevel) {
     				pstmt.setString(1, accessSection.getDataFileName());
     				logMetacat.debug("Docid in accesstable: " + inlineDataFileName);
     				// for subtree should specify the
     				if (subSectionId == null) {
     					throw new SAXException("The subsection is null");
+    				}
     				pstmt.setString(7, subSectionId);
     				logMetacat.debug("SubSectionId in accesstable: " + subSectionId);
+    			}
     			AccessControlForSingleFile acfsf = new AccessControlForSingleFile(currentDocId);
     			Vector<AccessRule> accessRules = accessSection.getAccessRules();
     			// go through every rule
     			for (int i = 0; i < accessRules.size(); i++) {
     				AccessRule rule = accessRules.elementAt(i);
     				String permType = rule.getPermissionType();
     				int permission = rule.getPermission();
     				pstmt.setInt(3, permission);
     				logMetacat.debug("permission in accesstable: " + permission);
     				pstmt.setString(4, permType);
     				logMetacat.debug("Permtype in accesstable: " + permType);
     				// go through every principle in rule
     				Vector<String> nameVector = rule.getPrincipal();
     				for (int j = 0; j < nameVector.size(); j++) {
     					String prName = nameVector.elementAt(j);
     					pstmt.setString(2, prName);
     					logMetacat.debug("Principal in accesstable: " + prName);
     					logMetacat.debug("running sql: " + pstmt.toString());
     					pstmt.execute();
     					XMLAccessDAO dao = new XMLAccessDAO();
     					dao.setAccessFileId(accessFileId);
     					dao.setDocId(currentDocId);
     					dao.setPermission(new Long(permission));
     					dao.setPermOrder(permOrder);
     					dao.setPermType(permType);
     					dao.setPrincipalName(prName);
     					dao.setSubTreeId(subSectionId);
     					// insert if it does not exist
     					if (!acfsf.accessControlExists(dao)) {
     						acfsf.insertPermissions(dao);
+    					}
     				}// for
     			}// for
     			pstmt.close();
     		}// try
     		catch (SQLException e) {
     		catch (Exception e) {
     			throw new SAXException("EMLSAXHandler.writeAccessRuletoDB(): "
     					+ e.getMessage());
     		}// catch
     		finally {
     			try {
     				pstmt.close();
     			} catch (SQLException ee) {
     				throw new SAXException("EMLSAXHandler.writeAccessRuletoDB(): "
     						+ ee.getMessage());
+    			}
     		}// finally
     	}// writeGivenAccessRuleIntoDB
     	/* Write a gaven access rule into db */
     	private void writeAccessRuleForRelatedDataFileIntoDB(AccessSection accessSection,
     			String dataId) throws SAXException {
     		if (accessSection == null) {
     			throw new SAXException("The access object is null");
+    		}
     		// get rid of rev from dataId
     		// dataId = MetacatUtil.getDocIdFromString(dataId);
     		String permOrder = accessSection.getPermissionOrder();
     		String sql = null;
     		PreparedStatement pstmt = null;
     		sql = "INSERT INTO xml_access (docid, principal_name, permission, "
     				+ "perm_type, perm_order, accessfileid) VALUES " + " (?, ?, ?, ?, ?, ?)";
     		try {
     			pstmt = connection.prepareStatement(sql);
     			// Increase DBConnection usage count
     			connection.increaseUsageCount(1);
     			// Bind the values to the query
     			pstmt.setString(1, dataId);
     			logMetacat.debug("Docid in accesstable: " + docid);
     			pstmt.setString(6, docid);
     			logMetacat.debug("Accessfileid in accesstable: " + docid);
     			pstmt.setString(5, permOrder);
     			logMetacat.debug("PermOder in accesstable: " + permOrder);
     			// if it is not top level, set subsection id
     			Vector<AccessRule> accessRules = accessSection.getAccessRules();
     			// go through every rule
     			for (int i = 0; i < accessRules.size(); i++) {
     				AccessRule rule = accessRules.elementAt(i);
     				String permType = rule.getPermissionType();
     				int permission = rule.getPermission();
     				pstmt.setInt(3, permission);
     				logMetacat.debug("permission in accesstable: " + permission);
     				pstmt.setString(4, permType);
     				logMetacat.debug("Permtype in accesstable: " + permType);
     				// go through every principle in rule
     				Vector<String> nameVector = rule.getPrincipal();
     				for (int j = 0; j < nameVector.size(); j++) {
     					String prName = nameVector.elementAt(j);
     					pstmt.setString(2, prName);
     					logMetacat.debug("Principal in accesstable: " + prName);
     					logMetacat.debug("running sql: " + pstmt.toString());
     					pstmt.execute();
     				}// for
     			}// for
     			pstmt.close();
     		}// try
     		catch (SQLException e) {
     			throw new SAXException("EMLSAXHandler.writeAccessRuletoDB(): "
     					+ e.getMessage());
     		}// catch
     		finally {
     			try {
     				pstmt.close();
     			} catch (SQLException ee) {
     				throw new SAXException("EMLSAXHandler.writeAccessRuletoDB(): "
     						+ ee.getMessage());
+    			}
     		}// finally
     	}// writeAccessRuleForRalatedDataFileIntoDB
     	/* Delete from db all permission for resources related to @aclid if any. */
     	private void deletePermissionsInAccessTable(String aclid) throws SAXException {
     		Statement stmt = null;

Also available in: Unified diff

Project

General

Profile

Metacat

Revision 6016

Added by ben leinfelder about 13 years ago