Google Git
Sign in
apache / ranger / 722a660b214aa9301c18b7f123f2ad689cdccf94 / . / agents-common / src / main / java / org / apache / ranger / plugin / model / validation / RangerValidator.java
blob: 74653b2f78ddf85ef863ed9f887dd672d90a6ace [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.apache.ranger.plugin.model.validation;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Collections;
import java.util.HashMap;
import java.util.HashSet;
import java.util.List;
import java.util.Map;
import java.util.Set;
import org.apache.commons.collections.CollectionUtils;
import org.apache.commons.lang.StringUtils;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.apache.ranger.plugin.errors.ValidationErrorCode;
import org.apache.ranger.plugin.model.RangerPolicy;
import org.apache.ranger.plugin.model.RangerPolicy.RangerPolicyResource;
import org.apache.ranger.plugin.model.RangerRole;
import org.apache.ranger.plugin.model.RangerSecurityZone;
import org.apache.ranger.plugin.model.RangerService;
import org.apache.ranger.plugin.model.RangerServiceDef;
import org.apache.ranger.plugin.model.RangerServiceDef.RangerAccessTypeDef;
import org.apache.ranger.plugin.model.RangerServiceDef.RangerEnumDef;
import org.apache.ranger.plugin.model.RangerServiceDef.RangerEnumElementDef;
import org.apache.ranger.plugin.model.RangerServiceDef.RangerResourceDef;
import org.apache.ranger.plugin.model.RangerServiceDef.RangerServiceConfigDef;
import org.apache.ranger.plugin.store.RoleStore;
import org.apache.ranger.plugin.store.ServiceStore;
import org.apache.ranger.plugin.util.RangerObjectFactory;
public abstract class RangerValidator {
private static final Log LOG = LogFactory.getLog(RangerValidator.class);
RoleStore _roleStore;
ServiceStore _store;
RangerObjectFactory _factory = new RangerObjectFactory();
public enum Action {
CREATE, UPDATE, DELETE;
};
protected RangerValidator(ServiceStore store) {
if (store == null) {
throw new IllegalArgumentException("ServiceValidator(): store is null!");
}
_store = store;
}
protected RangerValidator(RoleStore roleStore) {
if (roleStore == null) {
throw new IllegalArgumentException("ServiceValidator(): store is null!");
}
_roleStore = roleStore;
}
public void validate(Long id, Action action) throws Exception {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.validate(" + id + ")");
}
List<ValidationFailureDetails> failures = new ArrayList<>();
if (isValid(id, action, failures)) {
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.validate(" + id + "): valid");
}
} else {
String message = serializeFailures(failures);
LOG.debug("<== RangerValidator.validate(" + id + "): invalid, reason[" + message + "]");
throw new Exception(message);
}
}
public void validate(String name, Action action) throws Exception {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.validate(" + name + ")");
}
List<ValidationFailureDetails> failures = new ArrayList<>();
if (isValid(name, action, failures)) {
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.validate(" + name + "): valid");
}
} else {
String message = serializeFailures(failures);
LOG.debug("<== RangerValidator.validate(" + name + "): invalid, reason[" + message + "]");
throw new Exception(message);
}
}
/**
* This method is expected to be overridden by sub-classes. Default implementation provided to not burden implementers from having to implement methods that they know would never be called.
* @param id
* @param action
* @param failures
* @return
*/
boolean isValid(Long id, Action action, List<ValidationFailureDetails> failures) {
failures.add(new ValidationFailureDetailsBuilder()
.isAnInternalError()
.becauseOf("unimplemented method called")
.build());
return false;
}
boolean isValid(String name, Action action, List<ValidationFailureDetails> failures) {
failures.add(new ValidationFailureDetailsBuilder()
.isAnInternalError()
.becauseOf("unimplemented method called")
.build());
return false;
}
public static String serializeFailures(List<ValidationFailureDetails> failures) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getFailureMessage()");
}
String message = null;
if (CollectionUtils.isEmpty(failures)) {
LOG.warn("serializeFailures: called while list of failures is null/empty!");
} else {
StringBuilder builder = new StringBuilder();
for (int i = 0; i < failures.size(); i++) {
builder.append(String.format("(%d)", i));
builder.append(failures.get(i));
builder.append(" ");
}
message = builder.toString();
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.serializeFailures(): " + message);
}
return message;
}
Set<String> getServiceConfigParameters(RangerService service) {
if (service == null || service.getConfigs() == null) {
return new HashSet<>();
} else {
return service.getConfigs().keySet();
}
}
Set<String> getRequiredParameters(RangerServiceDef serviceDef) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getRequiredParameters(" + serviceDef + ")");
}
Set<String> result;
if (serviceDef == null) {
result = Collections.emptySet();
} else {
List<RangerServiceConfigDef> configs = serviceDef.getConfigs();
if (CollectionUtils.isEmpty(configs)) {
result = Collections.emptySet();
} else {
result = new HashSet<String>(configs.size()); // at worse all of the config items are required!
for (RangerServiceConfigDef configDef : configs) {
if (configDef.getMandatory()) {
result.add(configDef.getName());
}
}
}
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getRequiredParameters(" + serviceDef + "): " + result);
}
return result;
}
RangerServiceDef getServiceDef(Long id) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getServiceDef(" + id + ")");
}
RangerServiceDef result = null;
try {
result = _store.getServiceDef(id);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving service def from service store!", e);
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getServiceDef(" + id + "): " + result);
}
return result;
}
RangerServiceDef getServiceDef(String type) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getServiceDef(" + type + ")");
}
RangerServiceDef result = null;
try {
result = _store.getServiceDefByName(type);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving service definition from service store!", e);
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getServiceDef(" + type + "): " + result);
}
return result;
}
RangerService getService(Long id) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getService(" + id + ")");
}
RangerService result = null;
try {
result = _store.getService(id);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving service from service store!", e);
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getService(" + id + "): " + result);
}
return result;
}
RangerService getService(String name) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getService(" + name + ")");
}
RangerService result = null;
try {
result = _store.getServiceByName(name);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving service from service store!", e);
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getService(" + name + "): " + result);
}
return result;
}
RangerPolicy getPolicy(Long id) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getPolicy(" + id + ")");
}
RangerPolicy result = null;
try {
result = _store.getPolicy(id);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving policy from service store!", e);
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getPolicy(" + id + "): " + result);
}
return result;
}
Long getPolicyId(final Long serviceId, final String policyName, final Long zoneId) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getPolicyId(" + serviceId + ", " + policyName + ", " + zoneId + ")");
}
Long policyId = _store.getPolicyId(serviceId, policyName, zoneId);
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getPolicyId(" + serviceId + ", " + policyName + ", " + zoneId + "): policy-id[" + policyId + "]");
}
return policyId;
}
List<RangerPolicy> getPoliciesForResourceSignature(String serviceName, String policySignature) {
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerValidator.getPoliciesForResourceSignature(%s, %s)", serviceName, policySignature));
}
List<RangerPolicy> policies = null;
try {
policies = _store.getPoliciesByResourceSignature(serviceName, policySignature, true); // only look for enabled policies
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving policies from service store!", e);
}
if(LOG.isDebugEnabled()) {
int count = policies == null ? 0 : policies.size();
LOG.debug(String.format("<== RangerValidator.getPoliciesForResourceSignature(%s, %s): count[%d], %s", serviceName, policySignature, count, policies));
}
return policies;
}
RangerSecurityZone getSecurityZone(Long id) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getSecurityZone(" + id + ")");
}
RangerSecurityZone result = null;
if (id != null) {
try {
result = _store.getSecurityZone(id);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving security zone from service store!", e);
}
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getSecurityZone(" + id + "): " + result);
}
return result;
}
RangerSecurityZone getSecurityZone(String name) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getSecurityZone(" + name + ")");
}
RangerSecurityZone result = null;
if (StringUtils.isNotEmpty(name)) {
try {
result = _store.getSecurityZone(name);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving security zone from service store!", e);
}
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getSecurityZone(" + name + "): " + result);
}
return result;
}
Set<String> getAccessTypes(RangerServiceDef serviceDef) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getAccessTypes(" + serviceDef + ")");
}
Set<String> accessTypes = new HashSet<>();
if (serviceDef == null) {
LOG.warn("serviceDef passed in was null!");
} else if (CollectionUtils.isEmpty(serviceDef.getAccessTypes())) {
LOG.warn("AccessTypeDef collection on serviceDef was null!");
} else {
for (RangerAccessTypeDef accessTypeDef : serviceDef.getAccessTypes()) {
if (accessTypeDef == null) {
LOG.warn("Access type def was null!");
} else {
String accessType = accessTypeDef.getName();
if (StringUtils.isBlank(accessType)) {
LOG.warn("Access type def name was null/empty/blank!");
} else {
accessTypes.add(accessType);
}
}
}
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getAccessTypes(" + serviceDef + "): " + accessTypes);
}
return accessTypes;
}
/**
* This function exists to encapsulates the current behavior of code which treats and unspecified audit preference to mean audit is enabled.
* @param policy
* @return
*/
boolean getIsAuditEnabled(RangerPolicy policy) {
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getIsAuditEnabled(" + policy + ")");
}
boolean isEnabled = false;
if (policy == null) {
LOG.warn("policy was null!");
} else if (policy.getIsAuditEnabled() == null) {
isEnabled = true;
} else {
isEnabled = policy.getIsAuditEnabled();
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getIsAuditEnabled(" + policy + "): " + isEnabled);
}
return isEnabled;
}
/**
* Returns names of resource types set to lower-case to allow for case-insensitive comparison.
* @param serviceDef
* @return
*/
Set<String> getMandatoryResourceNames(RangerServiceDef serviceDef) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getMandatoryResourceNames(" + serviceDef + ")");
}
Set<String> resourceNames = new HashSet<>();
if (serviceDef == null) {
LOG.warn("serviceDef passed in was null!");
} else if (CollectionUtils.isEmpty(serviceDef.getResources())) {
LOG.warn("ResourceDef collection on serviceDef was null!");
} else {
for (RangerResourceDef resourceTypeDef : serviceDef.getResources()) {
if (resourceTypeDef == null) {
LOG.warn("resource type def was null!");
} else {
Boolean mandatory = resourceTypeDef.getMandatory();
if (mandatory != null && mandatory == true) {
String resourceName = resourceTypeDef.getName();
if (StringUtils.isBlank(resourceName)) {
LOG.warn("Resource def name was null/empty/blank!");
} else {
resourceNames.add(resourceName.toLowerCase());
}
}
}
}
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getMandatoryResourceNames(" + serviceDef + "): " + resourceNames);
}
return resourceNames;
}
Set<String> getAllResourceNames(RangerServiceDef serviceDef) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getAllResourceNames(" + serviceDef + ")");
}
Set<String> resourceNames = new HashSet<>();
if (serviceDef == null) {
LOG.warn("serviceDef passed in was null!");
} else if (CollectionUtils.isEmpty(serviceDef.getResources())) {
LOG.warn("ResourceDef collection on serviceDef was null!");
} else {
for (RangerResourceDef resourceTypeDef : serviceDef.getResources()) {
if (resourceTypeDef == null) {
LOG.warn("resource type def was null!");
} else {
String resourceName = resourceTypeDef.getName();
if (StringUtils.isBlank(resourceName)) {
LOG.warn("Resource def name was null/empty/blank!");
} else {
resourceNames.add(resourceName.toLowerCase());
}
}
}
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getAllResourceNames(" + serviceDef + "): " + resourceNames);
}
return resourceNames;
}
/**
* Converts, in place, the resources defined in the policy to have lower-case resource-def-names
* @param policy
* @return
*/
void convertPolicyResourceNamesToLower(RangerPolicy policy) {
Map<String, RangerPolicyResource> lowerCasePolicyResources = new HashMap<>();
if (policy.getResources() != null) {
for (Map.Entry<String, RangerPolicyResource> entry : policy.getResources().entrySet()) {
String lowerCasekey = entry.getKey().toLowerCase();
lowerCasePolicyResources.put(lowerCasekey, entry.getValue());
}
}
policy.setResources(lowerCasePolicyResources);
}
Map<String, String> getValidationRegExes(RangerServiceDef serviceDef) {
if (serviceDef == null || CollectionUtils.isEmpty(serviceDef.getResources())) {
return new HashMap<>();
} else {
Map<String, String> result = new HashMap<>();
for (RangerResourceDef resourceDef : serviceDef.getResources()) {
if (resourceDef == null) {
LOG.warn("A resource def in resource def collection is null");
} else {
String name = resourceDef.getName();
String regEx = resourceDef.getValidationRegEx();
if (StringUtils.isBlank(name)) {
LOG.warn("resource name is null/empty/blank");
} else if (StringUtils.isBlank(regEx)) {
LOG.debug("validation regex is null/empty/blank");
} else {
result.put(name, regEx);
}
}
}
return result;
}
}
int getEnumDefaultIndex(RangerEnumDef enumDef) {
int index;
if (enumDef == null) {
index = -1;
} else if (enumDef.getDefaultIndex() == null) {
index = 0;
} else {
index = enumDef.getDefaultIndex();
}
return index;
}
Collection<String> getImpliedGrants(RangerAccessTypeDef def) {
if (def == null) {
return null;
} else if (CollectionUtils.isEmpty(def.getImpliedGrants())) {
return new ArrayList<>();
} else {
List<String> result = new ArrayList<String>(def.getImpliedGrants().size());
for (String name : def.getImpliedGrants()) {
if (StringUtils.isBlank(name)) {
result.add(name); // could be null!
} else {
result.add(name.toLowerCase());
}
}
return result;
}
}
/**
* Returns a copy of the policy resource map where all keys (resource-names) are lowercase
* @param input
* @return
*/
Map<String, RangerPolicyResource> getPolicyResourceWithLowerCaseKeys(Map<String, RangerPolicyResource> input) {
if (input == null) {
return null;
}
Map<String, RangerPolicyResource> output = new HashMap<String, RangerPolicyResource>(input.size());
for (Map.Entry<String, RangerPolicyResource> entry : input.entrySet()) {
output.put(entry.getKey().toLowerCase(), entry.getValue());
}
return output;
}
boolean isUnique(Long value, Set<Long> alreadySeen, String valueName, String collectionName, List<ValidationFailureDetails> failures) {
return isUnique(value, null, alreadySeen, valueName, collectionName, failures);
}
/**
* NOTE: <code>alreadySeen</code> collection passed in gets updated.
* @param value
* @param alreadySeen
* @param valueName - use-friendly name of the <code>value</code> that would be used when generating failure message
* @param collectionName - use-friendly name of the <code>value</code> collection that would be used when generating failure message
* @param failures
* @return
*/
boolean isUnique(Long value, String valueContext, Set<Long> alreadySeen, String valueName, String collectionName, List<ValidationFailureDetails> failures) {
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerServiceDefValidator.isValueUnique(%s, %s, %s, %s, %s)", value, alreadySeen, valueName, collectionName, failures));
}
boolean valid = true;
if (value == null) { // null/empty/blank value is an error
failures.add(new ValidationFailureDetailsBuilder()
.field(valueName)
.subField(valueContext)
.isMissing()
.becauseOf(String.format("%s[%s] is null/empty", valueName, value))
.build());
valid = false;
} else if (alreadySeen.contains(value)) { // it shouldn't have been seen already
failures.add(new ValidationFailureDetailsBuilder()
.field(valueName)
.subField(value.toString())
.isSemanticallyIncorrect()
.becauseOf(String.format("duplicate %s[%s] in %s", valueName, value, collectionName))
.build());
valid = false;
} else {
alreadySeen.add(value); // we have a new unique access type
}
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerServiceDefValidator.isValueUnique(%s, %s, %s, %s, %s): %s", value, alreadySeen, valueName, collectionName, failures, valid));
}
return valid;
}
/**
* NOTE: <code>alreadySeen</code> collection passed in gets updated.
* @param value
* @param alreadySeen
* @param valueName - use-friendly name of the <code>value</code> that would be used when generating failure message
* @param collectionName - use-friendly name of the <code>value</code> collection that would be used when generating failure message
* @param failures
* @return
*/
boolean isUnique(Integer value, Set<Integer> alreadySeen, String valueName, String collectionName, List<ValidationFailureDetails> failures) {
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerServiceDefValidator.isValueUnique(%s, %s, %s, %s, %s)", value, alreadySeen, valueName, collectionName, failures));
}
boolean valid = true;
if (value == null) { // null/empty/blank value is an error
failures.add(new ValidationFailureDetailsBuilder()
.field(valueName)
.isMissing()
.becauseOf(String.format("%s[%s] is null/empty", valueName, value))
.build());
valid = false;
} else if (alreadySeen.contains(value)) { // it shouldn't have been seen already
failures.add(new ValidationFailureDetailsBuilder()
.field(valueName)
.subField(value.toString())
.isSemanticallyIncorrect()
.becauseOf(String.format("duplicate %s[%s] in %s", valueName, value, collectionName))
.build());
valid = false;
} else {
alreadySeen.add(value); // we have a new unique access type
}
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerServiceDefValidator.isValueUnique(%s, %s, %s, %s, %s): %s", value, alreadySeen, valueName, collectionName, failures, valid));
}
return valid;
}
/*
* Important: Resource-names are required to be lowercase. This is used in validating policy create/update operations.
* Ref: RANGER-2272
*/
boolean isValidResourceName(final String value, final String valueContext, final List<ValidationFailureDetails> failures) {
boolean ret = true;
if (value != null && !StringUtils.isEmpty(value)) {
int sz = value.length();
for(int i = 0; i < sz; ++i) {
char c = value.charAt(i);
if (!(Character.isLowerCase(c) || c == '-' || c == '_')) { // Allow only lowercase, hyphen or underscore characters
ret = false;
break;
}
}
} else {
ret = false;
}
if (!ret) {
ValidationErrorCode errorCode = ValidationErrorCode.SERVICE_DEF_VALIDATION_ERR_NOT_LOWERCASE_NAME;
failures.add(new ValidationFailureDetailsBuilder()
.errorCode(errorCode.getErrorCode())
.field(value)
.becauseOf(errorCode.getMessage(valueContext, value))
.build());
}
return ret;
}
boolean isUnique(final String value, final Set<String> alreadySeen, final String valueName, final String collectionName, final List<ValidationFailureDetails> failures) {
return isUnique(value, null, alreadySeen, valueName, collectionName, failures);
}
/**
* NOTE: <code>alreadySeen</code> collection passed in gets updated.
* @param value
* @param alreadySeen
* @param valueName - use-friendly name of the <code>value</code> that would be used when generating failure message
* @param collectionName - use-friendly name of the <code>value</code> collection that would be used when generating failure message
* @param failures
* @return
*/
boolean isUnique(final String value, final String valueContext, final Set<String> alreadySeen, final String valueName, final String collectionName, final List<ValidationFailureDetails> failures) {
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerServiceDefValidator.isValueUnique(%s, %s, %s, %s, %s)", value, alreadySeen, valueName, collectionName, failures));
}
boolean valid = true;
if (StringUtils.isBlank(value)) { // null/empty/blank value is an error
failures.add(new ValidationFailureDetailsBuilder()
.field(valueName)
.subField(valueContext)
.isMissing()
.becauseOf(String.format("%s[%s] is null/empty", valueName, value))
.build());
valid = false;
} else if (alreadySeen.contains(value.toLowerCase())) { // it shouldn't have been seen already
failures.add(new ValidationFailureDetailsBuilder()
.field(valueName)
.subField(value)
.isSemanticallyIncorrect()
.becauseOf(String.format("duplicate %s[%s] in %s", valueName, value, collectionName))
.build());
valid = false;
} else {
alreadySeen.add(value.toLowerCase()); // we have a new unique access type
}
if(LOG.isDebugEnabled()) {
LOG.debug(String.format("==> RangerServiceDefValidator.isValueUnique(%s, %s, %s, %s, %s): %s", value, alreadySeen, valueName, collectionName, failures, valid));
}
return valid;
}
Map<String, RangerEnumDef> getEnumDefMap(List<RangerEnumDef> enumDefs) {
Map<String, RangerEnumDef> result = new HashMap<>();
if (enumDefs != null) {
for (RangerEnumDef enumDef : enumDefs) {
result.put(enumDef.getName(), enumDef);
}
}
return result;
}
Set<String> getEnumValues(RangerEnumDef enumDef) {
Set<String> result = new HashSet<>();
if (enumDef != null) {
for (RangerEnumElementDef element : enumDef.getElements()) {
result.add(element.getName());
}
}
return result;
}
static Map<Integer, Integer> createMap(int[][] data) {
Map<Integer, Integer> result = new HashMap<>();
if (data != null) {
for (int[] row : data) {
Integer key = row[0];
Integer value = row[1];
if (result.containsKey(key)) {
LOG.warn("createMap: Internal error: duplicate key: multiple rows found for [" + key + "]. Skipped");
} else {
result.put(key, value);
}
}
}
return result;
}
static Map<Integer, String> createMap(Object[][] data) {
Map<Integer, String> result = new HashMap<>();
if (data != null) {
for (Object[] row : data) {
Integer key = (Integer)row[0];
String value = (String)row[1];
if (key == null) {
LOG.warn("createMap: error converting key[" + row[0] + "] to Integer! Sipped!");
} else if (StringUtils.isEmpty(value)) {
LOG.warn("createMap: empty/null value. Skipped!");
} else if (result.containsKey(key)) {
LOG.warn("createMap: Internal error: duplicate key. Multiple rows found for [" + key + "]. Skipped");
} else {
result.put(key, value);
}
}
}
return result;
}
RangerRole getRangerRole(Long id) {
if(LOG.isDebugEnabled()) {
LOG.debug("==> RangerValidator.getRangerRole(" + id + ")");
}
RangerRole result = null;
try {
result = _roleStore.getRole(id);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving RangerRole from RoleStore store!", e);
}
if(LOG.isDebugEnabled()) {
LOG.debug("<== RangerValidator.getRangerRole(" + id + "): " + result);
}
return result;
}
boolean roleExists(Long id) {
try {
return _roleStore.roleExists(id);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving RangerRole from role store!", e);
return false;
}
}
boolean roleExists(String name) {
try {
return _roleStore.roleExists(name);
} catch (Exception e) {
LOG.debug("Encountred exception while retrieving RangerRole from role store!", e);
return false;
}
}
}