Merge pull request #2 from ysvenkat/master

Added ability to return metadata in Json-LD format.

Author: dimm0

src/edu/jhu/pha/vospace/oauth/AuthorizationServlet.java

@@ -17,6 +17,7 @@
 
 import java.io.IOException;
 import java.io.PrintWriter;
+import java.io.File;
 import java.util.Iterator;
 import java.util.List;
 import java.util.Vector;
@@ -30,6 +31,7 @@
 
 import org.apache.commons.configuration.Configuration;
 import org.apache.log4j.Logger;
+import org.apache.log4j.Level;
 import org.openid4java.OpenIDException;
 import org.openid4java.consumer.ConsumerManager;
 import org.openid4java.consumer.VerificationResult;
@@ -43,6 +45,22 @@
 import edu.jhu.pha.vospace.SettingsServlet;
 import edu.jhu.pha.vospace.api.exceptions.PermissionDeniedException;
 
+import edu.uiuc.ncsa.myproxy.oa4mp.client.Asset;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.OA4MPResponse;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.servlet.ClientServlet;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.servlet.sample.SimpleStartRequest;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.servlet.sample.SimpleReadyServlet;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.storage.AssetStore;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.storage.AssetStoreUtil;
+import edu.uiuc.ncsa.security.core.Identifier;
+import edu.uiuc.ncsa.security.servlet.JSPUtil;
+import edu.uiuc.ncsa.security.util.pkcs.KeyUtil;
+
+import edu.uiuc.ncsa.myproxy.oa4mp.client.OA4MPService;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.ClientEnvironment;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.loader.ClientEnvironmentUtil;
+import edu.uiuc.ncsa.myproxy.oa4mp.client.AssetResponse;
+
 /** A simple implementation of an OpenID relying party, specialized for VOSpace & VAO OpenID.
  *  For more sample code, see OpenID4Java's sample code or the USVAO SSO example
  *  (TODO: get URL once it's in usvao svn). */
@@ -89,6 +107,9 @@ private void handle(HttpServletRequest request, HttpServletResponse response)
             if (isOpenIdResponse(request)) {
             	logger.debug("Handle OpenID");
                 handleOpenidResponse(request, response);
+            } else if (isOA4MPResponse(request)) {
+            	logger.debug("Handle OA4MP response");
+                handleOA4MPResponse(request, response);
             } else { // initial login
             	logger.debug("Initiate");
             	String userName = checkCertificate(request);
@@ -116,7 +137,8 @@ private void handle(HttpServletRequest request, HttpServletResponse response)
 	                	logger.debug("Created third party app cookie.");
 	                }
 
-	                String error = initiateOpenid(request, response, idLess);
+	                // String error = initiateOpenid(request, response, idLess);
+	                String error = initiateOA4MP(request, response);
 	                if (error != null)
 	                    throw new Oops(error);
             	}
@@ -177,6 +199,26 @@ private void handleOpenidResponse(HttpServletRequest request, HttpServletRespons
         }
     }
 
+    private void handleOA4MPResponse(HttpServletRequest request, HttpServletResponse response)
+            throws IOException, Oops {
+        try {
+        logger.debug("IN OA4MP response ");
+        ClientEnvironment ce = ClientEnvironmentUtil.load(new File("/etc/vospace/client-cfg.xml"));
+        logger.debug("READ FILE ");
+        OA4MPService service = new OA4MPService(ce);
+        logger.debug("OA4MP SERVICE");
+        String accessToken = request.getParameter("oauth_token"); // from  the callback URL
+        String verifier = request.getParameter("oauth_verifier");   // from  the callback URL
+        logger.debug("OA4MP accessToken " + accessToken + " verifier " + verifier);
+        AssetResponse assetResponse = service.getCert(accessToken, verifier);
+        logger.debug("OA4MP assetResponse " + assetResponse);
+        authorizeRequestToken2(request, response, assetResponse.getUsername());
+        } catch (Exception e) {
+            logger.info("Exception verifying OA4MP response.", e);
+            throw new Oops("Unable to verify OA4MP response: " + e.getMessage());
+        }
+    }
+
     /** OpenID authentication succeeded. */
     private void handleAuthenticated
             (VerificationResult verification, HttpServletRequest request, HttpServletResponse response)
@@ -231,8 +273,8 @@ private void authorizeRequestToken(HttpServletRequest request, HttpServletRespon
         String shareId = null;
 
         if (null != request.getParameter("oauth_token")) {
-        	token = request.getParameter("oauth_token");
-        	callbackUrl = request.getParameter("oauth_callback");
+         	token = request.getParameter("oauth_token");
+         	callbackUrl = request.getParameter("oauth_callback");
         } else if(cookies != null) {
         	OauthCookie parsedCookie = null;
 
@@ -299,6 +341,86 @@ private void authorizeRequestToken(HttpServletRequest request, HttpServletRespon
             throw new Oops(e.getMessage());
 		}
 	}
+	private void authorizeRequestToken2(HttpServletRequest request, HttpServletResponse response, String username)
+			throws Oops {
+
+        String token = null, callbackUrl = null;
+        
+        Cookie[] cookies = request.getCookies();
+        
+        String shareId = null;
+        logger.debug("IN authorizeRequestToken2 " + cookies.toString());
+        
+        // if (null != request.getParameter("oauth_token")) {
+        //  	token = request.getParameter("oauth_token");
+        //  	callbackUrl = request.getParameter("oauth_callback");
+        // } else if(cookies != null) {
+        if(cookies != null) {
+        	OauthCookie parsedCookie = null;
+        	
+        	for (Cookie cookie : cookies) {
+	            if (cookie.getName().equals(OauthCookie.COOKIE_NAME)){
+	            	// Remove the temporary 3rd party app cookie
+	            	Cookie removeCookie = new Cookie(OauthCookie.COOKIE_NAME, "");
+	            	removeCookie.setMaxAge(0);
+	            	response.addCookie(removeCookie);
+	            	try {
+	            		parsedCookie = OauthCookie.create(cookie);
+	            		shareId = parsedCookie.getShareId();
+		    	        if (isBlank(parsedCookie.getRequestToken()))
+		    	            throw new Oops("No request token present in oauth cookie (\"" + cookie.getValue() + "\").");
+		    	        logger.debug("Parsed oauth cookie \"" + cookie.getValue() + "\" as \"" + parsedCookie.toString() + "\".");
+					} catch (IOException e) {
+	            		logger.debug("Error parsing cookie. Just removing it.");
+					}
+	            }
+        	}
+        	
+        	if(null != parsedCookie) {
+    	        token = parsedCookie.getRequestToken();
+    	        callbackUrl = parsedCookie.getCallbackUrl();
+        	}
+        }
+
+        if(null == token)
+            throw new Oops("No request token found in request.");
+		
+		try {
+			Token reqToken = MySQLOAuthProvider2.getRequestToken(token);
+			if(null == reqToken)
+    			throw new PermissionDeniedException("401 Unauthorized");
+            if(null != reqToken.getAttributes().getFirst("root_container")){ // pre-shared container accessor
+            	if(shareId != null) {//already created the share - user bound sharing
+	        		List<String> groupUserLogins = MySQLOAuthProvider2.getShareUsers(shareId);
+	        		if(!groupUserLogins.contains(username)){ // the username of the one authorized != user that share was created for
+	        			throw new PermissionDeniedException("401 Unauthorized");
+	        		}
+            	} // else share is open for everyone
+            }
+            
+            MySQLOAuthProvider2.markAsAuthorized(reqToken, username);
+
+            if(null != callbackUrl && !callbackUrl.isEmpty()){
+            	if(callbackUrl.indexOf('?')<=0)
+            		callbackUrl += "?"+"oauth_token="+reqToken.getToken();
+            	else
+            		callbackUrl += "&"+"oauth_token="+reqToken.getToken();
+            	logger.debug("Redirecting user to "+callbackUrl);
+            	response.sendRedirect(callbackUrl);
+            } else {
+                response.setContentType("text/plain");
+                PrintWriter out = response.getWriter();
+                out.println("You have successfully authorized " 
+                        + ".\nPlease close this browser window and click continue"
+                        + " in the client.");
+                out.close();
+            }
+        } catch (IOException e) {
+        	logger.error("Error performing the token authorization "+e.getMessage());
+			e.printStackTrace();
+            throw new Oops(e.getMessage());
+		}
+	}
 
     /** Initiate OpenID authentication.  Return null if successful and no further action is necessary;
      *  return an error message if there was a problem. */
@@ -330,6 +452,25 @@ private String initiateOpenid(HttpServletRequest request, HttpServletResponse re
         return null; // no errors
     }
 
+    private String initiateOA4MP(HttpServletRequest request, HttpServletResponse response)
+            throws IOException
+    {
+        try {
+        logger.debug("BEFORE FILE ");
+        ClientEnvironment ce = ClientEnvironmentUtil.load(new File("/etc/vospace/client-cfg.xml"));
+        logger.debug("READ FILE ");
+        OA4MPService service = new OA4MPService(ce);
+        logger.debug("OA4MP SERVICE");
+        OA4MPResponse oa4mpResponse = service.requestCert();
+        logger.debug("REDIRECTING TO: " + oa4mpResponse.getRedirect().toURL().toString());
+        response.sendRedirect(oa4mpResponse.getRedirect().toURL().toString());
+        } catch (Exception e) {
+            logger.error("Exception during OA4MP initiation.", e);
+            return "Unable to form OA4MP request: " + e.getMessage();
+        }
+        return null;
+    }
+
     /** The URL to use for identityless authentication for a provider.  Not all providers support it
      * -- we will need to do something fancier with discovery etc. for the general case, although
      * this will work fine with VAO SSO. */
@@ -358,4 +499,8 @@ private boolean isShareRequest(HttpServletRequest request) {
     private boolean isOpenIdResponse(HttpServletRequest request) {
         return !isBlank(request.getParameter("openid.ns"));
     }
+    
+    private boolean isOA4MPResponse(HttpServletRequest request) {
+        return !isBlank(request.getParameter("oauth_verifier"));
+    }
 }

src/edu/jhu/pha/vospace/rest/JLDataController.java

@@ -0,0 +1,157 @@
+/*******************************************************************************
+ * Copyright 2013 Johns Hopkins University
+ * 
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * 
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ * 
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ ******************************************************************************/
+package edu.jhu.pha.vospace.rest;
+
+import java.io.InputStream;
+import java.io.ByteArrayInputStream;
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.util.UUID;
+import java.nio.charset.StandardCharsets;
+import java.util.Map;
+import java.io.ByteArrayOutputStream;
+import java.io.IOException;
+
+import javax.mail.internet.MimeUtility;
+import javax.ws.rs.GET;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.PUT;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+import org.apache.log4j.Logger;
+
+import edu.jhu.pha.vospace.api.exceptions.InternalServerErrorException;
+import edu.jhu.pha.vospace.api.exceptions.NotFoundException;
+import edu.jhu.pha.vospace.api.exceptions.PermissionDeniedException;
+import edu.jhu.pha.vospace.jobs.JobsProcessor;
+import edu.jhu.pha.vospace.meta.MetaStore;
+import edu.jhu.pha.vospace.meta.MetaStoreFactory;
+import edu.jhu.pha.vospace.node.DataNode;
+import edu.jhu.pha.vospace.node.Node;
+import edu.jhu.pha.vospace.node.NodeFactory;
+import edu.jhu.pha.vospace.node.NodeType;
+import edu.jhu.pha.vospace.node.VospaceId;
+import edu.jhu.pha.vospace.rest.JobDescription.STATE;
+
+/**
+ * Provides the REST service for /data/ path: the functions for manipulating the nodes data content
+ * @author Dmitry Mishin
+ */
+@Path("/jldata/")
+public class JLDataController {
+	
+	private static final Logger logger = Logger.getLogger(DataController.class);
+	private @Context SecurityContext security; 
+	
+	/**
+	 * Returns the data of a transfer
+	 * @param jobId Job identifier
+	 * @return transfer representation
+	 */
+	@GET @Path("{jobid}")
+	public Response getTransferData(@HeaderParam("user-agent") String userAgent, @PathParam("jobid") String jobId) {
+		JobDescription job = JobsProcessor.getJob(UUID.fromString(jobId));
+		if(null == job)
+			throw new NotFoundException("The job "+jobId+" is not found.");
+
+		MetaStore store = MetaStoreFactory.getMetaStore(job.getUsername());
+		
+		VospaceId targetId=job.getTargetId();
+		Node node = NodeFactory.getNode(targetId, job.getUsername());
+		
+		if(job.getDirection().equals(JobDescription.DIRECTION.PULLFROMVOSPACE)){
+			
+			JobsProcessor.modifyJobState(job, STATE.RUN);
+			
+			logger.debug("Downloading node "+targetId.toString());
+			
+			Response.ResponseBuilder resp = Response.ok();
+			
+			try {
+				ByteArrayOutputStream out = new ByteArrayOutputStream();
+				ByteArrayOutputStream context = new ByteArrayOutputStream();
+                                String ls = System.getProperty("line.separator");
+
+                                out.write("{".getBytes(StandardCharsets.UTF_8));
+                                context.write((ls + "\"@context\": {").getBytes(StandardCharsets.UTF_8));
+                                int i = 0;
+                                for (Map.Entry<String, String> entry : store.getProperties(targetId).entrySet())
+                                {
+                                    i++;
+                                    if (i != 1) {
+                                        out.write(("," + ls).getBytes(StandardCharsets.UTF_8));
+                                        context.write(("," + ls).getBytes(StandardCharsets.UTF_8));
+                                    } else {
+                                        out.write(ls.getBytes(StandardCharsets.UTF_8));
+                                        context.write(ls.getBytes(StandardCharsets.UTF_8));
+                                    }
+                                    String[] sp = entry.getKey().split("#");
+                                    context.write(("\"" + sp[1] + "\" : \"" + entry.getKey() + "\"").getBytes(StandardCharsets.UTF_8));
+                                    out.write(("\"" + sp[1] + "\": ").getBytes(StandardCharsets.UTF_8));
+                                    out.write(("\"" + entry.getValue() + "\"").getBytes(StandardCharsets.UTF_8));
+                                }
+                                context.write((ls + "}").getBytes(StandardCharsets.UTF_8));
+                                if (i != 0) {
+                                        out.write((",").getBytes(StandardCharsets.UTF_8));
+                                }
+                                context.writeTo(out);
+                                out.write((ls + "}").getBytes(StandardCharsets.UTF_8));
+                                InputStream dataInp = new ByteArrayInputStream(out.toByteArray());
+				
+				String fileName;
+				boolean isInternetExplorer = (userAgent.indexOf("MSIE") > -1);
+				if (isInternetExplorer) {
+				    fileName = URLEncoder.encode(targetId.getNodePath().getNodeName(), "utf-8");
+				} else {
+					fileName = MimeUtility.encodeWord(targetId.getNodePath().getNodeName());
+				}
+				
+				if(!node.getType().equals(NodeType.CONTAINER_NODE)) {
+					resp.header("Content-Disposition", "attachment; filename=\""+fileName+"\"");
+					resp.header("Content-Length", Long.toString(out.size()));
+					resp.header("Content-Type", node.getNodeInfo().getContentType());
+				} else {
+					resp.header("Content-Disposition", "attachment; filename=\""+fileName+".tar\"");
+					resp.header("Content-Type", "application/tar");
+				}
+				JobsProcessor.modifyJobState(job, STATE.COMPLETED);
+				resp.entity(dataInp);
+				return resp.build();
+			} catch(InternalServerErrorException ex) {
+				JobsProcessor.modifyJobState(job, STATE.ERROR);
+				throw ex;
+			} catch(NotFoundException ex) {
+				JobsProcessor.modifyJobState(job, STATE.ERROR);
+				throw ex;
+			} catch(PermissionDeniedException ex) {
+				JobsProcessor.modifyJobState(job, STATE.ERROR);
+				throw ex;
+			} catch(IOException ex) {
+				JobsProcessor.modifyJobState(job, STATE.ERROR);
+				throw new InternalServerErrorException(ex);
+			//} catch (UnsupportedEncodingException ex) {
+			//	JobsProcessor.modifyJobState(job, STATE.ERROR);
+			//	throw new InternalServerErrorException(ex);
+			}
+		}
+		
+		throw new InternalServerErrorException("The job "+job.getDirection()+" is unsupported in this path.");
+	}
+}