All Downloads are FREE. Search and download functionalities are using the official Maven repository.
Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
org.spdx.v3jsonldstore.JsonLDStore Maven / Gradle / Ivy
/**
* SPDX-License-Identifier: Apache-2.0
* Copyright (c) 2024 Source Auditor Inc.
*/
package org.spdx.v3jsonldstore;
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Collection;
import java.util.HashSet;
import java.util.List;
import java.util.Objects;
import java.util.Optional;
import java.util.Set;
import java.util.UUID;
import javax.annotation.Nullable;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.spdx.core.CoreModelObject;
import org.spdx.core.InvalidSPDXAnalysisException;
import org.spdx.core.TypedValue;
import org.spdx.library.SpdxModelFactory;
import org.spdx.library.model.v3_0_1.SpdxConstantsV3;
import org.spdx.library.model.v3_0_1.core.Element;
import org.spdx.library.model.v3_0_1.core.ExternalElement;
import org.spdx.library.model.v3_0_1.core.ExternalMap;
import org.spdx.library.model.v3_0_1.core.SpdxDocument;
import org.spdx.storage.IModelStore;
import org.spdx.storage.ISerializableModelStore;
import org.spdx.storage.PropertyDescriptor;
import org.spdx.storage.simple.ExtendedSpdxStore;
import com.fasterxml.jackson.core.JsonGenerator;
import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.fasterxml.jackson.databind.SerializationFeature;
import com.fasterxml.jackson.databind.node.ArrayNode;
import net.jimblackler.jsonschemafriend.GenerationException;
/**
* @author Gary O'Neall
*
* Serializable store which reads and writes the SPDX Spec version 3 JSON LD format
*
*/
public class JsonLDStore extends ExtendedSpdxStore
implements
ISerializableModelStore {
static final Logger logger = LoggerFactory.getLogger(JsonLDStore.class);
static final ObjectMapper JSON_MAPPER = new ObjectMapper().enable(SerializationFeature.INDENT_OUTPUT);
boolean pretty = true;
private boolean useExternalListedElements = false;
/**
* @param baseStore underlying store to use
* @param pretty if true, use less compact prettier JSON LD format on output
*/
public JsonLDStore(IModelStore baseStore, boolean pretty) {
super(baseStore);
this.pretty = pretty;
}
/**
* @param baseStore underlying store to use
*/
public JsonLDStore(IModelStore baseStore) {
this(baseStore, true);
}
/**
* @return if true, use less compact prettier JSON LD format on output
*/
public boolean getPretty() {
return this.pretty;
}
/**
* @param pretty if true, use less compact prettier JSON LD format on output
*/
public void setPretty(boolean pretty) {
this.pretty = pretty;
}
@Override
public void serialize(OutputStream stream)
throws InvalidSPDXAnalysisException, IOException {
serialize(stream, null);
}
@Override
public void serialize(OutputStream stream, @Nullable CoreModelObject objectToSerialize)
throws InvalidSPDXAnalysisException, IOException {
JsonLDSerializer serializer;
try {
serializer = new JsonLDSerializer(JSON_MAPPER, pretty, useExternalListedElements, SpdxModelFactory.getLatestSpecVersion(), this);
} catch (GenerationException e) {
throw new InvalidSPDXAnalysisException("Unable to reate JSON LD serializer", e);
}
JsonNode output = serializer.serialize(objectToSerialize);
JsonGenerator jgen = null;
try {
jgen = JSON_MAPPER.getFactory().createGenerator(stream);
if (pretty) {
jgen.useDefaultPrettyPrinter();
}
JSON_MAPPER.writeTree(jgen, output);
} finally {
if (Objects.nonNull(jgen)) {
jgen.close();
}
}
}
@Override
public SpdxDocument deSerialize(InputStream stream, boolean overwrite)
throws InvalidSPDXAnalysisException, IOException {
Objects.requireNonNull(stream, "Input stream must not be null");
JsonNode root = JSON_MAPPER.readTree(stream);
if (!overwrite) {
List existingElementUris = getExistingElementUris(root);
if (!existingElementUris.isEmpty()) {
StringBuilder sb = new StringBuilder("The SPDX element IDs would be overwritten: ");
sb.append(existingElementUris.get(0));
int index = 1;
while (index < 5 && index < existingElementUris.size()) {
sb.append(", ");
sb.append(existingElementUris.get(index++));
}
if (existingElementUris.size() >= 5) {
sb.append(", [more]...");
}
throw new InvalidSPDXAnalysisException("The SPDX element IDs would be overwritten: ");
}
}
JsonLDDeserializer deserializer = new JsonLDDeserializer(this);
if (!root.isObject()) {
throw new InvalidSPDXAnalysisException("Root of the JSON LD file is not an SPDX object");
}
JsonNode graph = root.get("@graph");
if (Objects.nonNull(graph)) {
List graphElements = deserializer.deserializeGraph(graph);
return elementsToSpdxDocument(graphElements);
} else {
try {
TypedValue element = deserializer.deserializeElement(root);
return elementsToSpdxDocument(Arrays.asList(new TypedValue[] {element}));
} catch (GenerationException e) {
throw new InvalidSPDXAnalysisException("Error opening or reading SPDX 3.X schema",e);
}
}
}
/**
* @param graphElements elements found in the serialized graph
* @return an SPDX document representing the serialization
* @throws InvalidSPDXAnalysisException
*/
private SpdxDocument elementsToSpdxDocument(List graphElements) throws InvalidSPDXAnalysisException {
List existingSpdxDocument = new ArrayList<>();
graphElements.forEach(tv -> {
if (SpdxConstantsV3.CORE_SPDX_DOCUMENT.equals(tv.getType())) {
existingSpdxDocument.add(tv);
}
});
SpdxDocument retval;
if (existingSpdxDocument.size() == 1) {
retval = (SpdxDocument)SpdxModelFactory.inflateModelObject(this, existingSpdxDocument.get(0).getObjectUri(),
SpdxConstantsV3.CORE_SPDX_DOCUMENT, null, existingSpdxDocument.get(0).getSpecVersion(),
false, null);
} else {
String documentObjectUri = "urn:spdx-document:" + UUID.randomUUID().toString();
retval = (SpdxDocument)SpdxModelFactory.inflateModelObject(this, documentObjectUri,
SpdxConstantsV3.CORE_SPDX_DOCUMENT, null, SpdxModelFactory.getLatestSpecVersion(),
true, null);
}
Collection elements = retval.getElements();
elements.clear();
Collection roots = retval.getRootElements();
boolean addAllToRoot = roots.isEmpty();
Set referencedExternalElementUris = new HashSet<>();
Set alreadySearched = new HashSet<>();
for (TypedValue element:graphElements) {
if (!retval.getObjectUri().equals(element.getObjectUri())) {
CoreModelObject mo = SpdxModelFactory.inflateModelObject(this, element.getObjectUri(),
element.getType(), null, element.getSpecVersion(), false, null);
if (mo instanceof Element) {
elements.add((Element)mo);
if (addAllToRoot) {
roots.add((Element)mo);
}
addExternalElements(mo, referencedExternalElementUris, alreadySearched);
} else {
logger.warn("Non element in the serialized graph - "+element.getObjectUri()+" will not be included in the SPDX document elements");
}
}
}
Collection imports = retval.getSpdxImports();
for (String externalUri:referencedExternalElementUris) {
imports.add(retval.createExternalMap(getNextId(IdType.Anonymous))
.setExternalSpdxId(externalUri)
.build());
}
return retval;
}
/**
* Searches for any external elements referenced in the model object and adds that to the referencedExternalElementUris
* @param modelObject modelObject to search for external references
* @param referencedExternalElementUris referenced external element URIs
* @param alreadySearch set of URI's which have already been searched
* @throws InvalidSPDXAnalysisException on error fetching property values
*/
private void addExternalElements(CoreModelObject modelObject,
Set referencedExternalElementUris,
Set alreadySearched) throws InvalidSPDXAnalysisException {
if (alreadySearched.contains(modelObject.getObjectUri())) {
return;
}
alreadySearched.add(modelObject.getObjectUri());
for (PropertyDescriptor pd:modelObject.getPropertyValueDescriptors()) {
Optional value = modelObject.getObjectPropertyValue(pd);
if (value.isPresent()) {
if (value.get() instanceof ExternalElement) {
referencedExternalElementUris.add(((ExternalElement)value.get()).getIndividualURI());
} else if (value.get() instanceof CoreModelObject) {
addExternalElements((CoreModelObject)value.get(), referencedExternalElementUris, alreadySearched);
}
}
}
}
/**
* @param root root of a graph containing SPDX elements
* @return a list of any SPDX Element URI's that already exist in the base model store
*/
private List getExistingElementUris(JsonNode root) {
List retval = new ArrayList<>();
JsonNode graph = root.get("@graph");
if (Objects.nonNull(graph)) {
if (graph.isArray()) {
for (JsonNode spdxObject:((ArrayNode)graph)) {
JsonNode spdxId = spdxObject.get("spdxId");
if (Objects.nonNull(spdxId) && !isAnon(spdxId.asText()) && exists(spdxId.asText())) {
retval.add(spdxId.asText());
}
}
}
} else {
// single SPDX element
JsonNode spdxId = root.get("spdxId");
if (Objects.nonNull(spdxId) && !isAnon(spdxId.asText()) && exists(spdxId.asText())) {
retval.add(spdxId.asText());
}
}
return retval;
}
/**
* @param useExternalListedElements if true, don't serialize any listed licenses or exceptions - treat them as external
*/
public void setUseExternalListedElements(boolean useExternalListedElements) {
this.useExternalListedElements = useExternalListedElements;
}
}
