1 class Arvados::V1::CollectionsController < ApplicationController
3 # Collections are owned by system_user. Creating a collection has
4 # two effects: The collection is added if it doesn't already
5 # exist, and a "permission" Link is added (if one doesn't already
6 # exist) giving the current user (or specified owner_uuid)
7 # permission to read it.
8 owner_uuid = resource_attrs.delete(:owner_uuid) || current_user.uuid
9 owner_kind = if owner_uuid.match(/-(\w+)-/)[1] == User.uuid_prefix
14 unless current_user.can? write: owner_uuid
15 logger.warn "User #{current_user.andand.uuid} tried to set collection owner_uuid to #{owner_uuid}"
16 raise ArvadosModel::PermissionDeniedError
19 @object = model_class.new resource_attrs.reject { |k,v| k == :owner_uuid }
22 rescue ActiveRecord::RecordNotUnique
23 logger.debug resource_attrs.inspect
24 if resource_attrs[:manifest_text] and resource_attrs[:uuid]
25 @existing_object = model_class.
26 where('uuid=? and manifest_text=?',
27 resource_attrs[:uuid],
28 resource_attrs[:manifest_text]).
30 @object = @existing_object || @object
36 owner_uuid: owner_uuid,
37 link_class: 'permission',
39 head_kind: 'arvados#collection',
40 head_uuid: @object.uuid,
41 tail_kind: owner_kind,
44 ActiveRecord::Base.transaction do
45 if Link.where(link_attrs).empty?
46 Link.create! link_attrs
54 def collection_uuid(uuid)
55 m = /([a-f0-9]{32}(\+[0-9]+)?)(\+.*)?/.match(uuid)
63 def script_param_edges(visited, sp)
67 script_param_edges(visited, v)
71 script_param_edges(visited, v)
75 m = collection_uuid(sp)
77 generate_provenance_edges(visited, m)
82 def generate_provenance_edges(visited, uuid)
83 m = collection_uuid(uuid)
86 if not uuid or uuid.empty? or visited[uuid]
90 logger.debug "visiting #{uuid}"
93 # uuid is a collection
94 Collection.readable_by(current_user).where(uuid: uuid).each do |c|
95 visited[uuid] = c.as_api_response
96 visited[uuid][:files] = []
98 visited[uuid][:files] << f
102 Job.readable_by(current_user).where(output: uuid).each do |job|
103 generate_provenance_edges(visited, job.uuid)
106 Job.readable_by(current_user).where(log: uuid).each do |job|
107 generate_provenance_edges(visited, job.uuid)
111 # uuid is something else
112 rsc = ArvadosModel::resource_class_for_uuid uuid
114 Job.readable_by(current_user).where(uuid: uuid).each do |job|
115 visited[uuid] = job.as_api_response
116 script_param_edges(visited, job.script_parameters)
119 rsc.where(uuid: uuid).each do |r|
120 visited[uuid] = r.as_api_response
125 Link.readable_by(current_user).
126 where(head_uuid: uuid, link_class: "provenance").
128 visited[link.uuid] = link.as_api_response
129 generate_provenance_edges(visited, link.tail_uuid)
132 #puts "finished #{uuid}"
137 generate_provenance_edges(visited, @object[:uuid])
141 def generate_used_by_edges(visited, uuid)
142 m = collection_uuid(uuid)
145 if not uuid or uuid.empty? or visited[uuid]
149 logger.debug "visiting #{uuid}"
152 # uuid is a collection
153 Collection.readable_by(current_user).where(uuid: uuid).each do |c|
154 visited[uuid] = c.as_api_response
155 visited[uuid][:files] = []
157 visited[uuid][:files] << f
161 if uuid == "d41d8cd98f00b204e9800998ecf8427e+0"
162 # special case for empty collection
166 Job.readable_by(current_user).where(["jobs.script_parameters like ?", "%#{uuid}%"]).each do |job|
167 generate_used_by_edges(visited, job.uuid)
171 # uuid is something else
172 rsc = ArvadosModel::resource_class_for_uuid uuid
174 Job.readable_by(current_user).where(uuid: uuid).each do |job|
175 visited[uuid] = job.as_api_response
176 generate_used_by_edges(visited, job.output)
179 rsc.where(uuid: uuid).each do |r|
180 visited[uuid] = r.as_api_response
185 Link.readable_by(current_user).
186 where(tail_uuid: uuid, link_class: "provenance").
188 visited[link.uuid] = link.as_api_response
189 generate_used_by_edges(visited, link.head_uuid)
192 #puts "finished #{uuid}"
197 generate_used_by_edges(visited, @object[:uuid])
202 def find_object_by_uuid
204 if !@object and !params[:uuid].match(/^[0-9a-f]+\+\d+$/)
205 # Normalize the given uuid and search again.
206 hash_part = params[:uuid].match(/^([0-9a-f]*)/)[1]
207 collection = Collection.where('uuid like ?', hash_part + '+%').first
209 # We know the collection exists, and what its real uuid is in
210 # the database. Now, throw out @objects and repeat the usual
211 # lookup procedure. (Returning the collection at this point
212 # would bypass permission checks.)
214 @where = { uuid: collection.uuid }
215 find_objects_for_index
216 @object = @objects.first