X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/47e59a35d5ed9b2cdb052894d741972324058505..8c30c649c667f7ccd205cdfcf1864563ac503585:/services/api/app/models/collection.rb diff --git a/services/api/app/models/collection.rb b/services/api/app/models/collection.rb index c5fd96eca4..ddb85862a2 100644 --- a/services/api/app/models/collection.rb +++ b/services/api/app/models/collection.rb @@ -3,7 +3,7 @@ # SPDX-License-Identifier: AGPL-3.0 require 'arvados/keep' -require 'sweep_trashed_collections' +require 'sweep_trashed_objects' require 'trashable' class Collection < ArvadosModel @@ -15,13 +15,18 @@ class Collection < ArvadosModel include Trashable serialize :properties, Hash + serialize :storage_classes_desired, Array + serialize :storage_classes_confirmed, Array before_validation :default_empty_manifest + before_validation :default_storage_classes, on: :create before_validation :check_encoding before_validation :check_manifest_validity before_validation :check_signatures before_validation :strip_signatures_and_update_replication_confirmed validate :ensure_pdh_matches_manifest_text + validate :ensure_storage_classes_desired_is_not_empty + validate :ensure_storage_classes_contain_non_empty_strings before_save :set_file_names api_accessible :user, extend: :common do |t| @@ -34,6 +39,9 @@ class Collection < ArvadosModel t.add :replication_desired t.add :replication_confirmed t.add :replication_confirmed_at + t.add :storage_classes_desired + t.add :storage_classes_confirmed + t.add :storage_classes_confirmed_at t.add :delete_at t.add :trash_at t.add :is_trashed @@ -86,7 +94,7 @@ class Collection < ArvadosModel # Check permissions on the collection manifest. # If any signature cannot be verified, raise PermissionDeniedError # which will return 403 Permission denied to the client. - api_token = current_api_client_authorization.andand.api_token + api_token = Thread.current[:token] signing_opts = { api_token: api_token, now: @validation_timestamp.to_i, @@ -182,22 +190,16 @@ class Collection < ArvadosModel end def manifest_files + return '' if !self.manifest_text + names = '' - if self.manifest_text - self.manifest_text.scan(/ \d+:\d+:(\S+)/) do |name| - names << name.first.gsub('\040',' ') + "\n" - break if names.length > 2**12 - end + self.manifest_text.scan(/ \d+:\d+:(\S+)/) do |name| + names << name.first.gsub('\040',' ') + "\n" end - - if self.manifest_text and names.length < 2**12 - self.manifest_text.scan(/^\.\/(\S+)/m) do |stream_name| - names << stream_name.first.gsub('\040',' ') + "\n" - break if names.length > 2**12 - end + self.manifest_text.scan(/^\.\/(\S+)/m) do |stream_name| + names << stream_name.first.gsub('\040',' ') + "\n" end - - names[0,2**12] + names end def default_empty_manifest @@ -242,7 +244,7 @@ class Collection < ArvadosModel elsif is_trashed return manifest_text else - token = current_api_client_authorization.andand.api_token + token = Thread.current[:token] exp = [db_current_time.to_i + Rails.configuration.blob_signature_ttl, trash_at].compact.map(&:to_i).min self.class.sign_manifest manifest_text, token, exp @@ -436,15 +438,26 @@ class Collection < ArvadosModel end def self.full_text_searchable_columns - super - ["manifest_text"] + super - ["manifest_text", "storage_classes_desired", "storage_classes_confirmed"] end def self.where *args - SweepTrashedCollections.sweep_if_stale + SweepTrashedObjects.sweep_if_stale super end protected + + # Although the defaults for these columns is already set up on the schema, + # collection creation from an API client seems to ignore them, making the + # validation on empty desired storage classes return an error. + def default_storage_classes + if self.storage_classes_desired.nil? || self.storage_classes_desired.empty? + self.storage_classes_desired = ["default"] + end + self.storage_classes_confirmed ||= [] + end + def portable_manifest_text self.class.munge_manifest_locators(manifest_text) do |match| if match[2] # size @@ -472,12 +485,30 @@ class Collection < ArvadosModel end def ensure_permission_to_save - if (not current_user.andand.is_admin and - (replication_confirmed_at_changed? or replication_confirmed_changed?) and - not (replication_confirmed_at.nil? and replication_confirmed.nil?)) - raise ArvadosModel::PermissionDeniedError.new("replication_confirmed and replication_confirmed_at attributes cannot be changed, except by setting both to nil") + if (not current_user.andand.is_admin) + if (replication_confirmed_at_changed? or replication_confirmed_changed?) and + not (replication_confirmed_at.nil? and replication_confirmed.nil?) + raise ArvadosModel::PermissionDeniedError.new("replication_confirmed and replication_confirmed_at attributes cannot be changed, except by setting both to nil") + end + if (storage_classes_confirmed_changed? or storage_classes_confirmed_at_changed?) and + not (storage_classes_confirmed == [] and storage_classes_confirmed_at.nil?) + raise ArvadosModel::PermissionDeniedError.new("storage_classes_confirmed and storage_classes_confirmed_at attributes cannot be changed, except by setting them to [] and nil respectively") + end end super end + def ensure_storage_classes_desired_is_not_empty + if self.storage_classes_desired.empty? + raise ArvadosModel::InvalidStateTransitionError.new("storage_classes_desired shouldn't be empty") + end + end + + def ensure_storage_classes_contain_non_empty_strings + (self.storage_classes_desired + self.storage_classes_confirmed).each do |c| + if !c.is_a?(String) || c == '' + raise ArvadosModel::InvalidStateTransitionError.new("storage classes should only be non-empty strings") + end + end + end end