org.sonar.server.organization.OrganizationCreation Maven / Gradle / Ivy
/*
* SonarQube
* Copyright (C) 2009-2017 SonarSource SA
* mailto:info AT sonarsource DOT com
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 3 of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with this program; if not, write to the Free Software Foundation,
* Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
*/
package org.sonar.server.organization;
import java.util.Optional;
import javax.annotation.CheckForNull;
import javax.annotation.Nullable;
import org.sonar.api.web.UserRole;
import org.sonar.core.permission.GlobalPermissions;
import org.sonar.db.DbSession;
import org.sonar.db.organization.OrganizationDto;
import org.sonar.db.user.UserDto;
import org.sonar.server.usergroups.DefaultGroupCreatorImpl;
import static java.util.Objects.requireNonNull;
public interface OrganizationCreation {
String OWNERS_GROUP_NAME = "Owners";
String OWNERS_GROUP_DESCRIPTION_PATTERN = "Owners of organization %s";
String PERM_TEMPLATE_NAME = "Default template";
String PERM_TEMPLATE_DESCRIPTION_PATTERN = "Default permission template of organization %s";
String PERSONAL_ORGANIZATION_DESCRIPTION_PATTERN = "%s's personal organization";
/**
* Create a new non guarded organization with the specified properties and of which the specified user will assign
* Administer Organization permission.
*
* This method does several operations at once:
*
* - create an ungarded organization with the specified details
* - create a group called {@link #OWNERS_GROUP_NAME Owners} with all organization wide permissions
* - create a group called {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} with browse permissions
* - make the specified user a member of these groups
* - create a default template for the organization
*
* - name is {@link #PERM_TEMPLATE_NAME Default template}
* - description follows pattern {@link #PERM_TEMPLATE_DESCRIPTION_PATTERN} based on the organization name
*
*
* - this permission template defines the specified permissions (which effectively makes projects public):
*
* - group {@link #OWNERS_GROUP_NAME Owners} : {@link UserRole#ADMIN ADMIN}
* - group {@link #OWNERS_GROUP_NAME Owners} : {@link UserRole#ISSUE_ADMIN ISSUE_ADMIN}
* - group {@link #OWNERS_GROUP_NAME Owners} : {@link GlobalPermissions#SCAN_EXECUTION SCAN_EXECUTION}
* - group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#USER USER}
* - group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#CODEVIEWER CODEVIEWER}
*
*
*
*
*
* @return the created organization
*
* @throws KeyConflictException if an organization with the specified key already exists
* @throws IllegalArgumentException if any field of {@code newOrganization} is invalid according to {@link OrganizationValidation}
*/
OrganizationDto create(DbSession dbSession, UserDto userCreator, NewOrganization newOrganization) throws KeyConflictException;
/**
* Create a new guarded organization which details are based on the login of the specified User.
*
* This method does several operations at once:
*
* -
* create a guarded organization with the details computed from user's details:
*
* - key: generated from the user's login
* - name: the user's name if set, otherwise the user's login
* - description: {@link #PERSONAL_ORGANIZATION_DESCRIPTION_PATTERN "[name]'s personal organization"} where name
* is user name (when non null and non empty) or login
* - url and avatar: null
*
*
* - create a group called {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} with browse permissions
* - make the specified user a member of this group
* - give all organization wide permissions to the user
* - create a default template for the organization
*
* - name is {@link #PERM_TEMPLATE_NAME Default template}
* - description follows pattern {@link #PERM_TEMPLATE_DESCRIPTION_PATTERN} based on the organization name
*
*
* - this permission template defines the specified permissions (which effectively makes projects public and
* automatically adds new projects to the user's favorites):
*
* - project creator : {@link UserRole#ADMIN ADMIN}
* - project creator : {@link UserRole#ISSUE_ADMIN ISSUE_ADMIN}
* - project creator : {@link GlobalPermissions#SCAN_EXECUTION SCAN_EXECUTION}
* - group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#USER USER}
* - group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#CODEVIEWER CODEVIEWER}
*
*
*
*
*
* @return the created organization or empty if feature is disabled
*
* @throws IllegalArgumentException if any field of {@code newOrganization} is invalid according to {@link OrganizationValidation}
* @throws IllegalStateException if an organization with the key generated from the login already exists
*/
Optional createForUser(DbSession dbSession, UserDto newUser);
final class KeyConflictException extends Exception {
KeyConflictException(String message) {
super(message);
}
}
final class NewOrganization {
private final String key;
private final String name;
@CheckForNull
private final String description;
@CheckForNull
private final String url;
@CheckForNull
private final String avatar;
private NewOrganization(Builder builder) {
this.key = builder.key;
this.name = builder.name;
this.description = builder.description;
this.url = builder.url;
this.avatar = builder.avatarUrl;
}
public String getKey() {
return key;
}
public String getName() {
return name;
}
@CheckForNull
public String getDescription() {
return description;
}
@CheckForNull
public String getUrl() {
return url;
}
@CheckForNull
public String getAvatar() {
return avatar;
}
public static NewOrganization.Builder newOrganizationBuilder() {
return new Builder();
}
public static final class Builder {
private String key;
private String name;
private String description;
private String url;
private String avatarUrl;
private Builder() {
// use factory method
}
public Builder setKey(String key) {
this.key = requireNonNull(key, "key can't be null");
return this;
}
public Builder setName(String name) {
this.name = requireNonNull(name, "name can't be null");
return this;
}
public Builder setDescription(@Nullable String description) {
this.description = description;
return this;
}
public Builder setUrl(@Nullable String url) {
this.url = url;
return this;
}
public Builder setAvatarUrl(@Nullable String avatarUrl) {
this.avatarUrl = avatarUrl;
return this;
}
public NewOrganization build() {
requireNonNull(key, "key can't be null");
requireNonNull(name, "name can't be null");
return new NewOrganization(this);
}
}
}
}