services/self-service/src/main/java/com/epam/dlab/backendapi/dao/UserRoleDaoImpl.java - incubator-datalab - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *   http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied.  See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package com.epam.dlab.backendapi.dao;

 import com.epam.dlab.backendapi.resources.dto.UserGroupDto;
 import com.epam.dlab.backendapi.resources.dto.UserRoleDto;
 import com.epam.dlab.cloud.CloudProvider;
 import com.epam.dlab.exceptions.DlabException;
 import com.fasterxml.jackson.core.type.TypeReference;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.google.inject.Singleton;
 import com.mongodb.client.model.BsonField;
 import com.mongodb.client.result.UpdateResult;
 import org.bson.Document;
 import org.bson.conversions.Bson;

 import java.io.IOException;
 import java.io.InputStream;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.Collections;
 import java.util.Date;
 import java.util.List;
 import java.util.Set;
 import java.util.stream.Collectors;
 import java.util.stream.Stream;

 import static com.epam.dlab.backendapi.dao.MongoCollections.USER_GROUPS;
 import static com.mongodb.client.model.Aggregates.group;
 import static com.mongodb.client.model.Aggregates.lookup;
 import static com.mongodb.client.model.Aggregates.project;
 import static com.mongodb.client.model.Aggregates.unwind;
 import static com.mongodb.client.model.Filters.eq;
 import static com.mongodb.client.model.Filters.in;
 import static com.mongodb.client.model.Filters.not;
 import static java.lang.String.format;
 import static java.util.stream.Collectors.toList;

 @Singleton
 public class UserRoleDaoImpl extends BaseDAO implements UserRoleDao {
 	private static final ObjectMapper MAPPER = new ObjectMapper();
 	private static final String ROLES_FILE_FORMAT = "/mongo/%s/mongo_roles.json";
 	private static final String USERS_FIELD = "users";
 	private static final String GROUPS_FIELD = "groups";
 	private static final String DESCRIPTION = "description";
 	private static final String TYPE = "type";
 	private static final String CLOUD = "cloud";
 	private static final String ROLES = "roles";
 	private static final String GROUPS = "$groups";
 	private static final String GROUP = "group";
 	private static final String EXPLORATORY_SHAPES_FIELD = "exploratory_shapes";
 	private static final String PAGES_FIELD = "pages";
 	private static final String EXPLORATORIES_FIELD = "exploratories";
 	private static final String COMPUTATIONALS_FIELD = "computationals";
 	private static final String GROUP_INFO = "groupInfo";
 	private static final String ADMIN = "admin";


 	@Override
 	public List<UserRoleDto> findAll() {
 		return find(MongoCollections.ROLES, UserRoleDto.class);
 	}

 	@Override
 	public void insert(UserRoleDto dto) {
 		insertOne(MongoCollections.ROLES, dto, dto.getId());
 	}

 	@Override
 	public void insert(List<UserRoleDto> roles) {
 		roles.forEach(this::insert);
 	}

 	@Override
 	public boolean update(UserRoleDto dto) {
 		final Document userRoleDocument = convertToBson(dto).append(TIMESTAMP, new Date());
 		return conditionMatched(updateOne(MongoCollections.ROLES,
 				eq(ID, dto.getId()),
 				new Document(SET, userRoleDocument)));
 	}

 	@Override
 	public void updateMissingRoles(CloudProvider cloudProvider) {
 		getUserRoleFromFile(cloudProvider)
 				.stream()
 				.peek(u -> u.setGroups(Collections.emptySet()))
 				.filter(u -> findAll()
 						.stream()
 						.map(UserRoleDto::getId)
 						.noneMatch(id -> id.equals(u.getId())))
 				.forEach(this::insert);

 		addGroupToRole(aggregateRolesByGroup()
 						.stream()
 						.map(UserGroupDto::getGroup)
 						.collect(Collectors.toSet()),
 				getDefaultShapes(cloudProvider));
 	}

 	@Override
 	public boolean addGroupToRole(Set<String> groups, Set<String> roleIds) {
 		return conditionMatched(updateMany(MongoCollections.ROLES, in(ID, roleIds), addToSet(GROUPS_FIELD,
 				groups)));
 	}

 	@Override
 	public void removeGroupWhenRoleNotIn(String group, Set<String> roleIds) {
 		updateMany(MongoCollections.ROLES, not(in(ID, roleIds)), pull(GROUPS_FIELD, group));
 	}

 	@Override
 	public void removeUnnecessaryRoles(CloudProvider cloudProviderToBeRemoved, List<CloudProvider> remainingProviders) {
 		if (remainingProviders.contains(cloudProviderToBeRemoved)) {
 			return;
 		}

 		List<UserRoleDto> remainingRoles = new ArrayList<>();
 		remainingProviders.forEach(p -> remainingRoles.addAll(getUserRoleFromFile(p)));

 		getUserRoleFromFile(cloudProviderToBeRemoved).stream()
 				.map(UserRoleDto::getId)
 				.filter(u -> remainingRoles.stream()
 						.map(UserRoleDto::getId)
 						.noneMatch(id -> id.equals(u)))
 				.forEach(this::remove);
 	}

 	@Override
 	public void remove(String roleId) {
 		deleteOne(MongoCollections.ROLES, eq(ID, roleId));
 	}

 	@Override
 	public boolean removeGroup(String groupId) {
 		return conditionMatched(updateMany(MongoCollections.ROLES, in(GROUPS_FIELD, groupId), pull(GROUPS_FIELD,
 				groupId)));
 	}

 	@Override
 	public List<UserGroupDto> aggregateRolesByGroup() {
 		final Document role = roleDocument();
 		final Bson groupBy = group(GROUPS, new BsonField(ROLES, new Document(ADD_TO_SET, role)));
 		final Bson lookup = lookup(USER_GROUPS, ID, ID, GROUP_INFO);
 		final List<Bson> pipeline = Arrays.asList(unwind(GROUPS), groupBy, lookup,
 				project(new Document(GROUP, "$" + ID).append(GROUP_INFO, elementAt(GROUP_INFO, 0))
 						.append(ROLES, "$" + ROLES)),
 				project(new Document(GROUP, "$" + ID).append(USERS_FIELD, "$" + GROUP_INFO + "." + USERS_FIELD)
 						.append(ROLES, "$" + ROLES)));

 		return stream(aggregate(MongoCollections.ROLES, pipeline))
 				.map(d -> convertFromDocument(d, UserGroupDto.class))
 				.collect(toList());
 	}

 	private List<UserRoleDto> getUserRoleFromFile(CloudProvider cloudProvider) {
 		try (InputStream is = getClass().getResourceAsStream(format(ROLES_FILE_FORMAT, cloudProvider.getName()))) {
 			return MAPPER.readValue(is, new TypeReference<List<UserRoleDto>>() {
 			});
 		} catch (IOException e) {
 			throw new IllegalStateException("Can not marshall dlab roles due to: " + e.getMessage());
 		}
 	}

 	private Set<String> getDefaultShapes(CloudProvider cloudProvider) {
 		if (cloudProvider == CloudProvider.AWS) {
 			return Stream.of("nbShapes_t2.medium_fetching", "compShapes_c4.xlarge_fetching")
 					.collect(Collectors.toSet());
 		} else if (cloudProvider == CloudProvider.GCP) {
 			return Stream.of("compShapes_n1-standard-2_fetching", "nbShapes_n1-standard-2_fetching")
 					.collect(Collectors.toSet());
 		} else if (cloudProvider == CloudProvider.AZURE) {
 			return Stream.of("nbShapes_Standard_E4s_v3_fetching", "compShapes_Standard_E4s_v3_fetching")
 					.collect(Collectors.toSet());
 		} else {
 			throw new DlabException("Unsupported cloud provider " + cloudProvider);
 		}
 	}

 	private Document roleDocument() {
 		return new Document().append(ID, "$" + ID)
 				.append(DESCRIPTION, "$" + DESCRIPTION)
 				.append(TYPE, "$" + TYPE)
 				.append(CLOUD, "$" + CLOUD)
 				.append(USERS_FIELD, "$" + USERS_FIELD)
 				.append(EXPLORATORY_SHAPES_FIELD, "$" + EXPLORATORY_SHAPES_FIELD)
 				.append(PAGES_FIELD, "$" + PAGES_FIELD)
 				.append(EXPLORATORIES_FIELD, "$" + EXPLORATORIES_FIELD)
 				.append(COMPUTATIONALS_FIELD, "$" + COMPUTATIONALS_FIELD);
 	}

 	private boolean conditionMatched(UpdateResult updateResult) {
 		return updateResult.getMatchedCount() > 0;
 	}

 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package com.epam.dlab.backendapi.dao;

	import com.epam.dlab.backendapi.resources.dto.UserGroupDto;
	import com.epam.dlab.backendapi.resources.dto.UserRoleDto;
	import com.epam.dlab.cloud.CloudProvider;
	import com.epam.dlab.exceptions.DlabException;
	import com.fasterxml.jackson.core.type.TypeReference;
	import com.fasterxml.jackson.databind.ObjectMapper;
	import com.google.inject.Singleton;
	import com.mongodb.client.model.BsonField;
	import com.mongodb.client.result.UpdateResult;
	import org.bson.Document;
	import org.bson.conversions.Bson;

	import java.io.IOException;
	import java.io.InputStream;
	import java.util.ArrayList;
	import java.util.Arrays;
	import java.util.Collections;
	import java.util.Date;
	import java.util.List;
	import java.util.Set;
	import java.util.stream.Collectors;
	import java.util.stream.Stream;

	import static com.epam.dlab.backendapi.dao.MongoCollections.USER_GROUPS;
	import static com.mongodb.client.model.Aggregates.group;
	import static com.mongodb.client.model.Aggregates.lookup;
	import static com.mongodb.client.model.Aggregates.project;
	import static com.mongodb.client.model.Aggregates.unwind;
	import static com.mongodb.client.model.Filters.eq;
	import static com.mongodb.client.model.Filters.in;
	import static com.mongodb.client.model.Filters.not;
	import static java.lang.String.format;
	import static java.util.stream.Collectors.toList;

	@Singleton
	public class UserRoleDaoImpl extends BaseDAO implements UserRoleDao {
	private static final ObjectMapper MAPPER = new ObjectMapper();
	private static final String ROLES_FILE_FORMAT = "/mongo/%s/mongo_roles.json";
	private static final String USERS_FIELD = "users";
	private static final String GROUPS_FIELD = "groups";
	private static final String DESCRIPTION = "description";
	private static final String TYPE = "type";
	private static final String CLOUD = "cloud";
	private static final String ROLES = "roles";
	private static final String GROUPS = "$groups";
	private static final String GROUP = "group";
	private static final String EXPLORATORY_SHAPES_FIELD = "exploratory_shapes";
	private static final String PAGES_FIELD = "pages";
	private static final String EXPLORATORIES_FIELD = "exploratories";
	private static final String COMPUTATIONALS_FIELD = "computationals";
	private static final String GROUP_INFO = "groupInfo";
	private static final String ADMIN = "admin";


	@Override
	public List<UserRoleDto> findAll() {
	return find(MongoCollections.ROLES, UserRoleDto.class);
	}

	@Override
	public void insert(UserRoleDto dto) {
	insertOne(MongoCollections.ROLES, dto, dto.getId());
	}

	@Override
	public void insert(List<UserRoleDto> roles) {
	roles.forEach(this::insert);
	}

	@Override
	public boolean update(UserRoleDto dto) {
	final Document userRoleDocument = convertToBson(dto).append(TIMESTAMP, new Date());
	return conditionMatched(updateOne(MongoCollections.ROLES,
	eq(ID, dto.getId()),
	new Document(SET, userRoleDocument)));
	}

	@Override
	public void updateMissingRoles(CloudProvider cloudProvider) {
	getUserRoleFromFile(cloudProvider)
	.stream()
	.peek(u -> u.setGroups(Collections.emptySet()))
	.filter(u -> findAll()
	.stream()
	.map(UserRoleDto::getId)
	.noneMatch(id -> id.equals(u.getId())))
	.forEach(this::insert);

	addGroupToRole(aggregateRolesByGroup()
	.stream()
	.map(UserGroupDto::getGroup)
	.collect(Collectors.toSet()),
	getDefaultShapes(cloudProvider));
	}

	@Override
	public boolean addGroupToRole(Set<String> groups, Set<String> roleIds) {
	return conditionMatched(updateMany(MongoCollections.ROLES, in(ID, roleIds), addToSet(GROUPS_FIELD,
	groups)));
	}

	@Override
	public void removeGroupWhenRoleNotIn(String group, Set<String> roleIds) {
	updateMany(MongoCollections.ROLES, not(in(ID, roleIds)), pull(GROUPS_FIELD, group));
	}

	@Override
	public void removeUnnecessaryRoles(CloudProvider cloudProviderToBeRemoved, List<CloudProvider> remainingProviders) {
	if (remainingProviders.contains(cloudProviderToBeRemoved)) {
	return;
	}

	List<UserRoleDto> remainingRoles = new ArrayList<>();
	remainingProviders.forEach(p -> remainingRoles.addAll(getUserRoleFromFile(p)));

	getUserRoleFromFile(cloudProviderToBeRemoved).stream()
	.map(UserRoleDto::getId)
	.filter(u -> remainingRoles.stream()
	.map(UserRoleDto::getId)
	.noneMatch(id -> id.equals(u)))
	.forEach(this::remove);
	}

	@Override
	public void remove(String roleId) {
	deleteOne(MongoCollections.ROLES, eq(ID, roleId));
	}

	@Override
	public boolean removeGroup(String groupId) {
	return conditionMatched(updateMany(MongoCollections.ROLES, in(GROUPS_FIELD, groupId), pull(GROUPS_FIELD,
	groupId)));
	}

	@Override
	public List<UserGroupDto> aggregateRolesByGroup() {
	final Document role = roleDocument();
	final Bson groupBy = group(GROUPS, new BsonField(ROLES, new Document(ADD_TO_SET, role)));
	final Bson lookup = lookup(USER_GROUPS, ID, ID, GROUP_INFO);
	final List<Bson> pipeline = Arrays.asList(unwind(GROUPS), groupBy, lookup,
	project(new Document(GROUP, "$" + ID).append(GROUP_INFO, elementAt(GROUP_INFO, 0))
	.append(ROLES, "$" + ROLES)),
	project(new Document(GROUP, "$" + ID).append(USERS_FIELD, "$" + GROUP_INFO + "." + USERS_FIELD)
	.append(ROLES, "$" + ROLES)));

	return stream(aggregate(MongoCollections.ROLES, pipeline))
	.map(d -> convertFromDocument(d, UserGroupDto.class))
	.collect(toList());
	}

	private List<UserRoleDto> getUserRoleFromFile(CloudProvider cloudProvider) {
	try (InputStream is = getClass().getResourceAsStream(format(ROLES_FILE_FORMAT, cloudProvider.getName()))) {
	return MAPPER.readValue(is, new TypeReference<List<UserRoleDto>>() {
	});
	} catch (IOException e) {
	throw new IllegalStateException("Can not marshall dlab roles due to: " + e.getMessage());
	}
	}

	private Set<String> getDefaultShapes(CloudProvider cloudProvider) {
	if (cloudProvider == CloudProvider.AWS) {
	return Stream.of("nbShapes_t2.medium_fetching", "compShapes_c4.xlarge_fetching")
	.collect(Collectors.toSet());
	} else if (cloudProvider == CloudProvider.GCP) {
	return Stream.of("compShapes_n1-standard-2_fetching", "nbShapes_n1-standard-2_fetching")
	.collect(Collectors.toSet());
	} else if (cloudProvider == CloudProvider.AZURE) {
	return Stream.of("nbShapes_Standard_E4s_v3_fetching", "compShapes_Standard_E4s_v3_fetching")
	.collect(Collectors.toSet());
	} else {
	throw new DlabException("Unsupported cloud provider " + cloudProvider);
	}
	}

	private Document roleDocument() {
	return new Document().append(ID, "$" + ID)
	.append(DESCRIPTION, "$" + DESCRIPTION)
	.append(TYPE, "$" + TYPE)
	.append(CLOUD, "$" + CLOUD)
	.append(USERS_FIELD, "$" + USERS_FIELD)
	.append(EXPLORATORY_SHAPES_FIELD, "$" + EXPLORATORY_SHAPES_FIELD)
	.append(PAGES_FIELD, "$" + PAGES_FIELD)
	.append(EXPLORATORIES_FIELD, "$" + EXPLORATORIES_FIELD)
	.append(COMPUTATIONALS_FIELD, "$" + COMPUTATIONALS_FIELD);
	}

	private boolean conditionMatched(UpdateResult updateResult) {
	return updateResult.getMatchedCount() > 0;
	}

	}