All Downloads are FREE. Search and download functionalities are using the official Maven repository.
Please wait. This can take some minutes ...
Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
org.openmetadata.service.resources.services.ServiceEntityResource Maven / Gradle / Ivy
/*
* Copyright 2022 Collate
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
* http://www.apache.org/licenses/LICENSE-2.0
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.openmetadata.service.resources.services;
import static org.openmetadata.common.utils.CommonUtil.listOrEmpty;
import static org.openmetadata.common.utils.CommonUtil.nullOrEmpty;
import javax.ws.rs.core.SecurityContext;
import javax.ws.rs.core.UriInfo;
import lombok.Getter;
import org.openmetadata.schema.ServiceConnectionEntityInterface;
import org.openmetadata.schema.ServiceEntityInterface;
import org.openmetadata.schema.entity.services.ServiceType;
import org.openmetadata.schema.type.EntityReference;
import org.openmetadata.schema.type.Include;
import org.openmetadata.service.Entity;
import org.openmetadata.service.exception.InvalidServiceConnectionException;
import org.openmetadata.service.jdbi3.ListFilter;
import org.openmetadata.service.jdbi3.ServiceEntityRepository;
import org.openmetadata.service.resources.EntityResource;
import org.openmetadata.service.secrets.SecretsManager;
import org.openmetadata.service.secrets.SecretsManagerFactory;
import org.openmetadata.service.secrets.SecretsUtil;
import org.openmetadata.service.secrets.masker.EntityMaskerFactory;
import org.openmetadata.service.security.Authorizer;
import org.openmetadata.service.util.ResultList;
public abstract class ServiceEntityResource<
T extends ServiceEntityInterface,
R extends ServiceEntityRepository,
S extends ServiceConnectionEntityInterface>
extends EntityResource {
@Getter private final ServiceEntityRepository serviceEntityRepository;
private final ServiceType serviceType;
protected ServiceEntityResource(
String entityType, Authorizer authorizer, ServiceType serviceType) {
super(entityType, authorizer);
this.serviceType = serviceType;
serviceEntityRepository =
(ServiceEntityRepository) Entity.getServiceEntityRepository(serviceType);
}
protected T decryptOrNullify(SecurityContext securityContext, T service) {
if (service.getConnection() != null) {
service
.getConnection()
.setConfig(
retrieveServiceConnectionConfig(
service, authorizer.shouldMaskPasswords(securityContext)));
}
return service;
}
private Object retrieveServiceConnectionConfig(T service, boolean maskPassword) {
SecretsManager secretsManager = SecretsManagerFactory.getSecretsManager();
Object config =
secretsManager.decryptServiceConnectionConfig(
service.getConnection().getConfig(), extractServiceType(service), serviceType);
if (maskPassword) {
config =
EntityMaskerFactory.getEntityMasker()
.maskServiceConnectionConfig(config, extractServiceType(service), serviceType);
}
return config;
}
protected ResultList decryptOrNullify(
SecurityContext securityContext, ResultList services) {
listOrEmpty(services.getData()).forEach(service -> decryptOrNullify(securityContext, service));
return services;
}
protected T unmask(T service) {
// TODO move this functionality to repository
repository.setFullyQualifiedName(service);
T originalService =
repository.findByNameOrNull(service.getFullyQualifiedName(), Include.NON_DELETED);
String connectionType = extractServiceType(service);
try {
if (originalService != null && originalService.getConnection() != null) {
Object serviceConnectionConfig =
EntityMaskerFactory.getEntityMasker()
.unmaskServiceConnectionConfig(
service.getConnection().getConfig(),
originalService.getConnection().getConfig(),
connectionType,
serviceType);
service.getConnection().setConfig(serviceConnectionConfig);
}
return service;
} catch (Exception e) {
String message =
SecretsUtil.buildExceptionMessageConnectionMask(e.getMessage(), connectionType, false);
if (message != null) {
throw new InvalidServiceConnectionException(message);
}
throw InvalidServiceConnectionException.byMessage(
connectionType,
String.format("Failed to unmask connection instance of %s", connectionType));
}
}
protected abstract T nullifyConnection(T service);
protected abstract String extractServiceType(T service);
protected ResultList listInternal(
UriInfo uriInfo,
SecurityContext securityContext,
String fieldsParam,
Include include,
String domain,
int limitParam,
String before,
String after) {
ListFilter filter = new ListFilter(include);
if (!nullOrEmpty(domain)) {
EntityReference domainReference =
Entity.getEntityReferenceByName(Entity.DOMAIN, domain, Include.NON_DELETED);
filter.addQueryParam("domainId", domainReference.getId().toString());
}
ResultList services =
listInternal(uriInfo, securityContext, fieldsParam, filter, limitParam, before, after);
return addHref(uriInfo, decryptOrNullify(securityContext, services));
}
}