}
func (h *handler) userPermittedToUploadOrDownload(method string, tokenUser *arvados.User) bool {
- if tokenUser == nil {
- return false
- }
var permitDownload bool
var permitUpload bool
- if tokenUser.IsAdmin {
+ if tokenUser != nil && tokenUser.IsAdmin {
permitUpload = h.Config.cluster.Collections.WebDAVPermission.Admin.Upload
permitDownload = h.Config.cluster.Collections.WebDAVPermission.Admin.Download
} else {
log := ctxlog.FromContext(r.Context())
props := make(map[string]string)
props["reqPath"] = r.URL.Path
+ var useruuid string
if user != nil {
log = log.WithField("user_uuid", user.UUID).
WithField("user_full_name", user.FullName)
+ useruuid = user.UUID
+ } else {
+ useruuid = fmt.Sprintf("%s-tpzed-anonymouspublic", h.Config.cluster.ClusterID)
}
if collection == nil && fs != nil {
collection, filepath = h.determineCollection(fs, filepath)
WithField("collection_file_path", filepath)
props["collection_uuid"] = collection.UUID
props["collection_file_path"] = filepath
+ // h.determineCollection populates the collection_uuid prop with the PDH, if
+ // this collection is being accessed via PDH. In that case, blank the
+ // collection_uuid field so that consumers of the log entries can rely on it
+ // being a UUID, or blank. The PDH remains available via the
+ // portable_data_hash property.
+ if props["collection_uuid"] == collection.PortableDataHash {
+ props["collection_uuid"] = ""
+ }
}
if r.Method == "PUT" || r.Method == "POST" {
log.Info("File upload")
if h.Config.cluster.Collections.WebDAVLogEvents {
go func() {
lr := arvadosclient.Dict{"log": arvadosclient.Dict{
- "object_uuid": user.UUID,
+ "object_uuid": useruuid,
"event_type": "file_upload",
"properties": props}}
err := client.Create("logs", lr, nil)
if h.Config.cluster.Collections.WebDAVLogEvents {
go func() {
lr := arvadosclient.Dict{"log": arvadosclient.Dict{
- "object_uuid": user.UUID,
+ "object_uuid": useruuid,
"event_type": "file_download",
"properties": props}}
err := client.Create("logs", lr, nil)