org.sonar.server.organization.OrganizationCreation Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of sonar-server Show documentation
There is a newer version: 7.2.1
/*
 * SonarQube
 * Copyright (C) 2009-2018 SonarSource SA
 * mailto:info AT sonarsource DOT com
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 3 of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 */
package org.sonar.server.organization;

import java.util.Optional;
import javax.annotation.CheckForNull;
import javax.annotation.Nullable;
import org.sonar.api.web.UserRole;
import org.sonar.core.permission.GlobalPermissions;
import org.sonar.db.DbSession;
import org.sonar.db.organization.OrganizationDto;
import org.sonar.db.user.UserDto;
import org.sonar.server.usergroups.DefaultGroupCreatorImpl;

import static java.util.Objects.requireNonNull;

public interface OrganizationCreation {
  String OWNERS_GROUP_NAME = "Owners";
  String OWNERS_GROUP_DESCRIPTION_PATTERN = "Owners of organization %s";
  String PERM_TEMPLATE_NAME = "Default template";
  String PERM_TEMPLATE_DESCRIPTION_PATTERN = "Default permission template of organization %s";
  String PERSONAL_ORGANIZATION_DESCRIPTION_PATTERN = "%s's personal organization";

  /**
   * Create a new non guarded organization with the specified properties and of which the specified user will assign
   * Administer Organization permission.
   * 
   * This method does several operations at once:
   * 

   *   create an ungarded organization with the specified details
   *   create a group called {@link #OWNERS_GROUP_NAME Owners} with all organization wide permissions
   *   create a group called {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} with browse permissions
   *   make the specified user a member of these groups
   *   create a default template for the organization
   *       
   *         name is {@link #PERM_TEMPLATE_NAME Default template}
   *         description follows pattern {@link #PERM_TEMPLATE_DESCRIPTION_PATTERN} based on the organization name
   *       
   *   
   *   this permission template defines the specified permissions (which effectively makes projects public):
   *     
   *       group {@link #OWNERS_GROUP_NAME Owners} : {@link UserRole#ADMIN ADMIN}
   *       group {@link #OWNERS_GROUP_NAME Owners} : {@link UserRole#ISSUE_ADMIN ISSUE_ADMIN}
   *       group {@link #OWNERS_GROUP_NAME Owners} : {@link GlobalPermissions#SCAN_EXECUTION SCAN_EXECUTION}
   *       group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#USER USER}
   *       group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#CODEVIEWER CODEVIEWER}
   *     
   *   
   * 
   * 
   *
   * @return the created organization
   *
   * @throws KeyConflictException if an organization with the specified key already exists
   * @throws IllegalArgumentException if any field of {@code newOrganization} is invalid according to {@link OrganizationValidation}
   */
  OrganizationDto create(DbSession dbSession, UserDto userCreator, NewOrganization newOrganization) throws KeyConflictException;

  /**
   * Create a new guarded organization which details are based on the login of the specified User.
   * 
   * This method does several operations at once:
   * 

   *   
   *     create a guarded organization with the details computed from user's details:
   *     
   *       key: generated from the user's login
   *       name: the user's name if set, otherwise the user's login
   *       description: {@link #PERSONAL_ORGANIZATION_DESCRIPTION_PATTERN "[name]'s personal organization"} where name
   *           is user name (when non null and non empty) or login
   *       url and avatar: null
   *     
   *   
   *   create a group called {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} with browse permissions
   *   make the specified user a member of this group
   *   give all organization wide permissions to the user
   *   create a default template for the organization
   *       
   *         name is {@link #PERM_TEMPLATE_NAME Default template}
   *         description follows pattern {@link #PERM_TEMPLATE_DESCRIPTION_PATTERN} based on the organization name
   *       
   *   
   *   this permission template defines the specified permissions (which effectively makes projects public and
   *       automatically adds new projects to the user's favorites):
   *     
   *       project creator : {@link UserRole#ADMIN ADMIN}
   *       project creator : {@link UserRole#ISSUE_ADMIN ISSUE_ADMIN}
   *       project creator : {@link GlobalPermissions#SCAN_EXECUTION SCAN_EXECUTION}
   *       group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#USER USER}
   *       group {@link DefaultGroupCreatorImpl#DEFAULT_GROUP_NAME members} : {@link UserRole#CODEVIEWER CODEVIEWER}
   *     
   *   
   * 
   * 
   *
   * @return the created organization or empty if feature is disabled
   *
   * @throws IllegalArgumentException if any field of {@code newOrganization} is invalid according to {@link OrganizationValidation}
   * @throws IllegalStateException if an organization with the key generated from the login already exists
   */
  Optional createForUser(DbSession dbSession, UserDto newUser);

  final class KeyConflictException extends Exception {
    KeyConflictException(String message) {
      super(message);
    }
  }

  final class NewOrganization {
    private final String key;
    private final String name;
    @CheckForNull
    private final String description;
    @CheckForNull
    private final String url;
    @CheckForNull
    private final String avatar;

    private NewOrganization(Builder builder) {
      this.key = builder.key;
      this.name = builder.name;
      this.description = builder.description;
      this.url = builder.url;
      this.avatar = builder.avatarUrl;
    }

    public String getKey() {
      return key;
    }

    public String getName() {
      return name;
    }

    @CheckForNull
    public String getDescription() {
      return description;
    }

    @CheckForNull
    public String getUrl() {
      return url;
    }

    @CheckForNull
    public String getAvatar() {
      return avatar;
    }

    public static NewOrganization.Builder newOrganizationBuilder() {
      return new Builder();
    }

    public static final class Builder {
      private String key;
      private String name;
      private String description;
      private String url;
      private String avatarUrl;

      private Builder() {
        // use factory method
      }

      public Builder setKey(String key) {
        this.key = requireNonNull(key, "key can't be null");
        return this;
      }

      public Builder setName(String name) {
        this.name = requireNonNull(name, "name can't be null");
        return this;
      }

      public Builder setDescription(@Nullable String description) {
        this.description = description;
        return this;
      }

      public Builder setUrl(@Nullable String url) {
        this.url = url;
        return this;
      }

      public Builder setAvatarUrl(@Nullable String avatarUrl) {
        this.avatarUrl = avatarUrl;
        return this;
      }

      public NewOrganization build() {
        requireNonNull(key, "key can't be null");
        requireNonNull(name, "name can't be null");
        return new NewOrganization(this);
      }
    }
  }

}