blob: ec419cb7508bf5435d7c4ff9bc8bc402dc5fa50d [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.hadoop.ozone.web.ozShell.keys;
import org.apache.hadoop.ozone.OzoneAcl;
import org.apache.hadoop.ozone.client.OzoneClient;
import org.apache.hadoop.ozone.security.acl.OzoneObj;
import org.apache.hadoop.ozone.security.acl.OzoneObjInfo;
import org.apache.hadoop.ozone.web.ozShell.Handler;
import org.apache.hadoop.ozone.web.ozShell.OzoneAddress;
import org.apache.hadoop.ozone.web.ozShell.Shell;
import picocli.CommandLine;
import picocli.CommandLine.Command;
import picocli.CommandLine.Parameters;
import java.util.Objects;
import static org.apache.hadoop.ozone.security.acl.OzoneObj.StoreType.OZONE;
/**
* Remove acl handler for key.
*/
@Command(name = "removeacl",
description = "Remove an existing ACL.")
public class RemoveAclKeyHandler extends Handler {
@Parameters(arity = "1..1", description = Shell.OZONE_BUCKET_URI_DESCRIPTION)
private String uri;
@CommandLine.Option(names = {"--acl", "-a"},
required = true,
description = "The ACL to be removed.\n" +
"Ex: user:user1:rw or group:hadoop:rw\n" +
"r = READ, " +
"w = WRITE, " +
"c = CREATE, " +
"d = DELETE, " +
"l = LIST, " +
"a = ALL, " +
"n = NONE, " +
"x = READ_ACL, " +
"y = WRITE_ACL.")
private String acl;
@CommandLine.Option(names = {"--store", "-s"},
required = false,
description = "Store type. i.e OZONE or S3")
private String storeType;
/**
* Executes the Client Calls.
*/
@Override
public Void call() throws Exception {
Objects.requireNonNull(acl,
"You need to specify an ACL to be removed.");
OzoneAddress address = new OzoneAddress(uri);
address.ensureKeyAddress();
try (OzoneClient client =
address.createClient(createOzoneConfiguration())) {
String volumeName = address.getVolumeName();
String bucketName = address.getBucketName();
String keyName = address.getKeyName();
if (isVerbose()) {
System.out.printf("Volume Name : %s%n", volumeName);
System.out.printf("Bucket Name : %s%n", bucketName);
System.out.printf("Key Name : %s%n", keyName);
}
OzoneObj obj = OzoneObjInfo.Builder.newBuilder()
.setBucketName(bucketName)
.setVolumeName(volumeName)
.setKeyName(keyName)
.setResType(OzoneObj.ResourceType.KEY)
.setStoreType(storeType == null ? OZONE :
OzoneObj.StoreType.valueOf(storeType))
.build();
boolean result = client.getObjectStore().removeAcl(obj,
OzoneAcl.parseAcl(acl));
String message = result
? ("ACL removed successfully.")
: ("ACL doesn't exist.");
System.out.println(message);
}
return null;
}
}