import shutil
import pickle
-from base import BaseBackend
+from base import NotAllowedError, BaseBackend
logger = logging.getLogger(__name__)
self.hash_algorithm = 'sha1'
self.block_size = 128 * 1024 # 128KB
+ self.default_policy = {'quota': 0, 'versioning': 'auto'}
+
basepath = os.path.split(db)[0]
if basepath and not os.path.exists(basepath):
os.makedirs(basepath)
- self.con = sqlite3.connect(db)
+ self.con = sqlite3.connect(db, check_same_thread=False)
+
+ sql = '''pragma foreign_keys = on'''
+ self.con.execute(sql)
+
sql = '''create table if not exists versions (
version_id integer primary key,
name text,
+ user text,
tstamp datetime default current_timestamp,
size integer default 0,
hide integer default 0)'''
self.con.execute(sql)
sql = '''create table if not exists metadata (
- version_id integer, key text, value text, primary key (version_id, key))'''
+ version_id integer,
+ key text,
+ value text,
+ primary key (version_id, key)
+ foreign key (version_id) references versions(version_id)
+ on delete cascade)'''
+ self.con.execute(sql)
+ sql = '''create table if not exists hashmaps (
+ version_id integer,
+ pos integer,
+ block_id text,
+ primary key (version_id, pos)
+ foreign key (version_id) references versions(version_id)
+ on delete cascade)'''
self.con.execute(sql)
sql = '''create table if not exists blocks (
block_id text, data blob, primary key (block_id))'''
self.con.execute(sql)
- sql = '''create table if not exists hashmaps (
- version_id integer, pos integer, block_id text, primary key (version_id, pos))'''
+
+ sql = '''create table if not exists policy (
+ name text, key text, value text, primary key (name, key))'''
self.con.execute(sql)
- self.con.commit()
-
- def delete_account(self, account):
- """Delete the account with the given name."""
- logger.debug("delete_account: %s", account)
- count, bytes, tstamp = self._get_pathstats(account)
- if count > 0:
- raise IndexError('Account is not empty')
- self._del_path(account) # Point of no return.
+ sql = '''create table if not exists groups (
+ account text, name text, users text, primary key (account, name))'''
+ self.con.execute(sql)
+ sql = '''create table if not exists permissions (
+ name text, read text, write text, primary key (name))'''
+ self.con.execute(sql)
+ sql = '''create table if not exists public (
+ name text, primary key (name))'''
+ self.con.execute(sql)
+ self.con.commit()
- def get_account_meta(self, account, until=None):
+ def get_account_meta(self, user, account, until=None):
"""Return a dictionary with the account metadata."""
logger.debug("get_account_meta: %s %s", account, until)
+ if user != account:
+ raise NotAllowedError
try:
version_id, mtime = self._get_accountinfo(account, until)
except NameError:
version_id = None
+ mtime = 0
count, bytes, tstamp = self._get_pathstats(account, until)
if mtime > tstamp:
tstamp = mtime
meta.update({'until_timestamp': tstamp})
return meta
- def update_account_meta(self, account, meta, replace=False):
+ def update_account_meta(self, user, account, meta, replace=False):
"""Update the metadata associated with the account."""
logger.debug("update_account_meta: %s %s %s", account, meta, replace)
- self._put_metadata(account, meta, replace)
-
- def list_containers(self, account, marker=None, limit=10000, until=None):
- """Return a list of containers existing under an account."""
-
- logger.debug("list_containers: %s %s %s %s", account, marker, limit, until)
- return self._list_objects(account, '', '/', marker, limit, False, [], until)
+ if user != account:
+ raise NotAllowedError
+ self._put_metadata(user, account, meta, replace)
+
+ def get_account_groups(self, user, account):
+ """Return a dictionary with the user groups defined for this account."""
+
+ logger.debug("get_account_groups: %s", account)
+ if user != account:
+ raise NotAllowedError
+ return self._get_groups(account)
+
+ def update_account_groups(self, user, account, groups, replace=False):
+ """Update the groups associated with the account."""
+
+ logger.debug("update_account_groups: %s %s %s", account, groups, replace)
+ if user != account:
+ raise NotAllowedError
+ for k, v in groups.iteritems():
+ if True in [False or ',' in x for x in v]:
+ raise ValueError('Bad characters in groups')
+ if replace:
+ sql = 'delete from groups where account = ?'
+ self.con.execute(sql, (account,))
+ for k, v in groups.iteritems():
+ if len(v) == 0:
+ if not replace:
+ sql = 'delete from groups where account = ? and name = ?'
+ self.con.execute(sql, (account, k))
+ else:
+ sql = 'insert or replace into groups (account, name, users) values (?, ?, ?)'
+ self.con.execute(sql, (account, k, ','.join(v)))
+ self.con.commit()
- def put_container(self, account, container):
- """Create a new container with the given name."""
+ def put_account(self, user, account):
+ """Create a new account with the given name."""
- logger.debug("put_container: %s %s", account, container)
+ logger.debug("put_account: %s", account)
+ if user != account:
+ raise NotAllowedError
try:
- path, version_id, mtime = self._get_containerinfo(account, container)
+ version_id, mtime = self._get_accountinfo(account)
except NameError:
- path = os.path.join(account, container)
- version_id = self._put_version(path)
+ pass
else:
- raise NameError('Container already exists')
+ raise NameError('Account already exists')
+ version_id = self._put_version(account, user)
+ self.con.commit()
- def delete_container(self, account, container):
- """Delete the container with the given name."""
+ def delete_account(self, user, account):
+ """Delete the account with the given name."""
- logger.debug("delete_container: %s %s", account, container)
- path, version_id, mtime = self._get_containerinfo(account, container)
- count, bytes, tstamp = self._get_pathstats(path)
- if count > 0:
- raise IndexError('Container is not empty')
- self._del_path(path) # Point of no return.
- self._copy_version(account, account, True, True) # New account version.
+ logger.debug("delete_account: %s", account)
+ if user != account:
+ raise NotAllowedError
+ if self._get_pathcount(account) > 0:
+ raise IndexError('Account is not empty')
+ sql = 'delete from versions where name = ?'
+ self.con.execute(sql, (path,))
+ sql = 'delete from groups where name = ?'
+ self.con.execute(sql, (account,))
+ self.con.commit()
- def get_container_meta(self, account, container, until=None):
+ def list_containers(self, user, account, marker=None, limit=10000, until=None):
+ """Return a list of containers existing under an account."""
+
+ logger.debug("list_containers: %s %s %s %s", account, marker, limit, until)
+ if user != account:
+ raise NotAllowedError
+ return self._list_objects(account, '', '/', marker, limit, False, [], until)
+
+ def get_container_meta(self, user, account, container, until=None):
"""Return a dictionary with the container metadata."""
logger.debug("get_container_meta: %s %s %s", account, container, until)
-
+ if user != account:
+ raise NotAllowedError
path, version_id, mtime = self._get_containerinfo(account, container, until)
count, bytes, tstamp = self._get_pathstats(path, until)
if mtime > tstamp:
meta.update({'until_timestamp': tstamp})
return meta
- def update_container_meta(self, account, container, meta, replace=False):
+ def update_container_meta(self, user, account, container, meta, replace=False):
"""Update the metadata associated with the container."""
logger.debug("update_container_meta: %s %s %s %s", account, container, meta, replace)
+ if user != account:
+ raise NotAllowedError
path, version_id, mtime = self._get_containerinfo(account, container)
- self._put_metadata(path, meta, replace)
+ self._put_metadata(user, path, meta, replace)
- def list_objects(self, account, container, prefix='', delimiter=None, marker=None, limit=10000, virtual=True, keys=[], until=None):
+ def get_container_policy(self, user, account, container):
+ """Return a dictionary with the container policy."""
+
+ logger.debug("get_container_policy: %s %s", account, container)
+ if user != account:
+ raise NotAllowedError
+ path = self._get_containerinfo(account, container)[0]
+ return self._get_policy(path)
+
+ def update_container_policy(self, user, account, container, policy, replace=False):
+ """Update the policy associated with the account."""
+
+ logger.debug("update_container_policy: %s %s %s %s", account, container, policy, replace)
+ if user != account:
+ raise NotAllowedError
+ path = self._get_containerinfo(account, container)[0]
+ self._check_policy(policy)
+ if replace:
+ for k, v in self.default_policy.iteritems():
+ if k not in policy:
+ policy[k] = v
+ for k, v in policy.iteritems():
+ sql = 'insert or replace into policy (name, key, value) values (?, ?, ?)'
+ self.con.execute(sql, (path, k, v))
+ self.con.commit()
+
+ def put_container(self, user, account, container, policy=None):
+ """Create a new container with the given name."""
+
+ logger.debug("put_container: %s %s %s", account, container, policy)
+ if user != account:
+ raise NotAllowedError
+ try:
+ path, version_id, mtime = self._get_containerinfo(account, container)
+ except NameError:
+ pass
+ else:
+ raise NameError('Container already exists')
+ if policy:
+ self._check_policy(policy)
+ path = os.path.join(account, container)
+ version_id = self._put_version(path, user)
+ for k, v in self.default_policy.iteritems():
+ if k not in policy:
+ policy[k] = v
+ for k, v in policy.iteritems():
+ sql = 'insert or replace into policy (name, key, value) values (?, ?, ?)'
+ self.con.execute(sql, (path, k, v))
+ self.con.commit()
+
+ def delete_container(self, user, account, container, until=None):
+ """Delete the container with the given name."""
+
+ logger.debug("delete_container: %s %s %s", account, container, until)
+ if user != account:
+ raise NotAllowedError
+ path, version_id, mtime = self._get_containerinfo(account, container)
+
+ if until is not None:
+ sql = '''select version_id from versions where name like ? and tstamp <= datetime(%s, 'unixepoch')'''
+ c = self.con.execute(sql, (path + '/%', until))
+ versions = [x[0] for x in c.fetchall()]
+ for v in versions:
+ sql = 'delete from hashmaps where version_id = ?'
+ self.con.execute(sql, (v,))
+ sql = 'delete from versions where version_id = ?'
+ self.con.execute(sql, (v,))
+ self.con.commit()
+ return
+
+ if self._get_pathcount(path) > 0:
+ raise IndexError('Container is not empty')
+ sql = 'delete from versions where name = ?'
+ self.con.execute(sql, (path,))
+ sql = 'delete from policy where name = ?'
+ self.con.execute(sql, (path,))
+ self._copy_version(user, account, account, True, True) # New account version (for timestamp update).
+
+ def list_objects(self, user, account, container, prefix='', delimiter=None, marker=None, limit=10000, virtual=True, keys=[], until=None):
"""Return a list of objects existing under a container."""
logger.debug("list_objects: %s %s %s %s %s %s %s", account, container, prefix, delimiter, marker, limit, until)
+ if user != account:
+ raise NotAllowedError
path, version_id, mtime = self._get_containerinfo(account, container, until)
return self._list_objects(path, prefix, delimiter, marker, limit, virtual, keys, until)
- def list_object_meta(self, account, container, until=None):
+ def list_object_meta(self, user, account, container, until=None):
"""Return a list with all the container's object meta keys."""
logger.debug("list_object_meta: %s %s %s", account, container, until)
+ if user != account:
+ raise NotAllowedError
path, version_id, mtime = self._get_containerinfo(account, container, until)
sql = '''select distinct m.key from (%s) o, metadata m
where m.version_id = o.version_id and o.name like ?'''
c = self.con.execute(sql, (path + '/%',))
return [x[0] for x in c.fetchall()]
- def get_object_meta(self, account, container, name, version=None):
+ def get_object_meta(self, user, account, container, name, version=None):
"""Return a dictionary with the object metadata."""
logger.debug("get_object_meta: %s %s %s %s", account, container, name, version)
- path, version_id, mtime, size = self._get_objectinfo(account, container, name, version)
+ self._can_read(user, account, container, name)
+ path, version_id, muser, mtime, size = self._get_objectinfo(account, container, name, version)
if version is None:
modified = mtime
else:
- modified = self._get_version(path)[1] # Overall last modification
+ modified = self._get_version(path, version)[2] # Overall last modification
meta = self._get_metadata(path, version_id)
- meta.update({'name': name, 'bytes': size, 'version': version_id, 'version_timestamp': mtime, 'modified': modified})
+ meta.update({'name': name, 'bytes': size})
+ meta.update({'version': version_id, 'version_timestamp': mtime})
+ meta.update({'modified': modified, 'modified_by': muser})
return meta
- def update_object_meta(self, account, container, name, meta, replace=False):
+ def update_object_meta(self, user, account, container, name, meta, replace=False):
"""Update the metadata associated with the object."""
logger.debug("update_object_meta: %s %s %s %s %s", account, container, name, meta, replace)
- path, version_id, mtime, size = self._get_objectinfo(account, container, name)
- self._put_metadata(path, meta, replace)
-
- def get_object_hashmap(self, account, container, name, version=None):
+ self._can_write(user, account, container, name)
+ path, version_id, muser, mtime, size = self._get_objectinfo(account, container, name)
+ self._put_metadata(user, path, meta, replace)
+
+ def get_object_permissions(self, user, account, container, name):
+ """Return the path from which this object gets its permissions from,\
+ along with a dictionary containing the permissions."""
+
+ logger.debug("get_object_permissions: %s %s %s", account, container, name)
+ self._can_read(user, account, container, name)
+ path = self._get_objectinfo(account, container, name)[0]
+ return self._get_permissions(path)
+
+ def update_object_permissions(self, user, account, container, name, permissions):
+ """Update the permissions associated with the object."""
+
+ logger.debug("update_object_permissions: %s %s %s %s", account, container, name, permissions)
+ if user != account:
+ raise NotAllowedError
+ path = self._get_objectinfo(account, container, name)[0]
+ r, w = self._check_permissions(path, permissions)
+ self._put_permissions(path, r, w)
+
+ def get_object_public(self, user, account, container, name):
+ """Return the public URL of the object if applicable."""
+
+ logger.debug("get_object_public: %s %s %s", account, container, name)
+ self._can_read(user, account, container, name)
+ path = self._get_objectinfo(account, container, name)[0]
+ if self._get_public(path):
+ return '/public/' + path
+ return None
+
+ def update_object_public(self, user, account, container, name, public):
+ """Update the public status of the object."""
+
+ logger.debug("update_object_public: %s %s %s %s", account, container, name, public)
+ self._can_write(user, account, container, name)
+ path = self._get_objectinfo(account, container, name)[0]
+ self._put_public(path, public)
+
+ def get_object_hashmap(self, user, account, container, name, version=None):
"""Return the object's size and a list with partial hashes."""
logger.debug("get_object_hashmap: %s %s %s %s", account, container, name, version)
- path, version_id, mtime, size = self._get_objectinfo(account, container, name, version)
+ self._can_read(user, account, container, name)
+ path, version_id, muser, mtime, size = self._get_objectinfo(account, container, name, version)
sql = 'select block_id from hashmaps where version_id = ? order by pos asc'
c = self.con.execute(sql, (version_id,))
hashmap = [x[0] for x in c.fetchall()]
return size, hashmap
- def update_object_hashmap(self, account, container, name, size, hashmap):
+ def update_object_hashmap(self, user, account, container, name, size, hashmap, meta={}, replace_meta=False, permissions=None):
"""Create/update an object with the specified size and partial hashes."""
logger.debug("update_object_hashmap: %s %s %s %s %s", account, container, name, size, hashmap)
+ if permissions is not None and user != account:
+ raise NotAllowedError
+ self._can_write(user, account, container, name)
+ missing = []
+ for i in range(len(hashmap)):
+ sql = 'select count(*) from blocks where block_id = ?'
+ c = self.con.execute(sql, (hashmap[i],))
+ if c.fetchone()[0] == 0:
+ missing.append(hashmap[i])
+ if missing:
+ ie = IndexError()
+ ie.data = missing
+ raise ie
path = self._get_containerinfo(account, container)[0]
path = os.path.join(path, name)
- src_version_id, dest_version_id = self._copy_version(path, path, True, False)
+ if permissions is not None:
+ r, w = self._check_permissions(path, permissions)
+ src_version_id, dest_version_id = self._copy_version(user, path, path, not replace_meta, False)
sql = 'update versions set size = ? where version_id = ?'
self.con.execute(sql, (size, dest_version_id))
# TODO: Check for block_id existence.
for i in range(len(hashmap)):
sql = 'insert or replace into hashmaps (version_id, pos, block_id) values (?, ?, ?)'
self.con.execute(sql, (dest_version_id, i, hashmap[i]))
+ for k, v in meta.iteritems():
+ sql = 'insert or replace into metadata (version_id, key, value) values (?, ?, ?)'
+ self.con.execute(sql, (dest_version_id, k, v))
+ if permissions is not None:
+ sql = 'insert or replace into permissions (name, read, write) values (?, ?, ?)'
+ self.con.execute(sql, (path, r, w))
self.con.commit()
- def copy_object(self, account, src_container, src_name, dest_container, dest_name, dest_meta={}, replace_meta=False, src_version=None):
+ def copy_object(self, user, account, src_container, src_name, dest_container, dest_name, dest_meta={}, replace_meta=False, permissions=None, src_version=None):
"""Copy an object's data and metadata."""
- logger.debug("copy_object: %s %s %s %s %s %s %s %s", account, src_container, src_name, dest_container, dest_name, dest_meta, replace_meta, src_version)
+ logger.debug("copy_object: %s %s %s %s %s %s %s %s %s", account, src_container, src_name, dest_container, dest_name, dest_meta, replace_meta, permissions, src_version)
+ if permissions is not None and user != account:
+ raise NotAllowedError
+ self._can_read(user, account, src_container, src_name)
+ self._can_write(user, account, dest_container, dest_name)
+ self._get_containerinfo(account, src_container)
if src_version is None:
src_path = self._get_objectinfo(account, src_container, src_name)[0]
else:
src_path = os.path.join(account, src_container, src_name)
dest_path = self._get_containerinfo(account, dest_container)[0]
dest_path = os.path.join(dest_path, dest_name)
- src_version_id, dest_version_id = self._copy_version(src_path, dest_path, not replace_meta, True, src_version)
+ if permissions is not None:
+ r, w = self._check_permissions(dest_path, permissions)
+ src_version_id, dest_version_id = self._copy_version(user, src_path, dest_path, not replace_meta, True, src_version)
for k, v in dest_meta.iteritems():
sql = 'insert or replace into metadata (version_id, key, value) values (?, ?, ?)'
self.con.execute(sql, (dest_version_id, k, v))
+ if permissions is not None:
+ sql = 'insert or replace into permissions (name, read, write) values (?, ?, ?)'
+ self.con.execute(sql, (dest_path, r, w))
self.con.commit()
- def move_object(self, account, src_container, src_name, dest_container, dest_name, dest_meta={}, replace_meta=False, src_version=None):
+ def move_object(self, user, account, src_container, src_name, dest_container, dest_name, dest_meta={}, replace_meta=False, permissions=None):
"""Move an object's data and metadata."""
- logger.debug("move_object: %s %s %s %s, %s %s %s %s", account, src_container, src_name, dest_container, dest_name, dest_meta, replace_meta, src_version)
- self.copy_object(account, src_container, src_name, dest_container, dest_name, dest_meta, replace_meta, src_version)
- self.delete_object(account, src_container, src_name)
+ logger.debug("move_object: %s %s %s %s %s %s %s %s", account, src_container, src_name, dest_container, dest_name, dest_meta, replace_meta, permissions)
+ self.copy_object(user, account, src_container, src_name, dest_container, dest_name, dest_meta, replace_meta, permissions, None)
+ self.delete_object(user, account, src_container, src_name)
- def delete_object(self, account, container, name):
+ def delete_object(self, user, account, container, name, until=None):
"""Delete an object."""
- logger.debug("delete_object: %s %s %s", account, container, name)
- path, version_id, mtime, size = self._get_objectinfo(account, container, name)
- self._put_version(path, 0, 1)
+ logger.debug("delete_object: %s %s %s %s", account, container, name, until)
+ if user != account:
+ raise NotAllowedError
+ if until is None:
+ path = self._get_objectinfo(account, container, name)[0]
+ sql = 'select version_id from versions where name = ?'
+ c = self.con.execute(sql, (path,))
+ else:
+ path = os.path.join(account, container, name)
+ sql = '''select version_id from versions where name = ? and tstamp <= datetime(%s, 'unixepoch')'''
+ c = self.con.execute(sql, (path, until))
+ versions = [x[0] for x in c.fetchall()]
+ for v in versions:
+ sql = 'delete from hashmaps where version_id = ?'
+ self.con.execute(sql, (v,))
+ sql = 'delete from versions where version_id = ?'
+ self.con.execute(sql, (v,))
+
+ # If no more versions exist, delete permissions/public.
+ sql = 'select version_id from versions where name = ?'
+ row = self.con.execute(sql, (path,)).fetchone()
+ if row is None:
+ self._del_sharing(path)
+ self.con.commit()
- def list_versions(self, account, container, name):
- """Return a list of version (version_id, version_modified) tuples for an object."""
+ def update_object_trash(self, user, account, container, name, trash=True):
+ """Trash/untrash an object."""
+ logger.debug("trash_object: %s %s %s", account, container, name)
+ if user != account:
+ raise NotAllowedError
+ if trash:
+ path, version_id, muser, mtime, size = self._get_objectinfo(account, container, name)
+ self._del_sharing(path)
+ else:
+ path = os.path.join(account, container, name)
+ sql = '''select version_id, hide from versions where name = ?
+ order by version_id desc limit 1'''
+ c = self.con.execute(sql, (path,))
+ row = c.fetchone()
+ if not row or not int(row[1]):
+ raise NameError('Object not in trash')
+ version_id = row[0]
+ hide = 1 if trash else 0
+ sql = 'update versions set hide = ? where version_id = ?'
+ self.con.execute(sql, (hide, version_id,))
+ seld.con.commit()
+
+ def list_versions(self, user, account, container, name):
+ """Return a list of all (version, version_timestamp) tuples for an object."""
+
+ logger.debug("list_versions: %s %s %s", account, container, name)
+ self._can_read(user, account, container, name)
# This will even show deleted versions.
path = os.path.join(account, container, name)
sql = '''select distinct version_id, strftime('%s', tstamp) from versions where name = ?'''
c = self.con.execute(sql, (path,))
- return [(str(x[0]), int(x[1])) for x in c.fetchall()]
+ return [(int(x[0]), int(x[1])) for x in c.fetchall()]
def get_block(self, hash):
"""Return a block's data."""
return sql % ('%s', until)
def _get_pathstats(self, path, until=None):
- """Return count and sum of size of everything under path and latest timestamp."""
+ """Return count, sum of size and latest timestamp of everything under path (latest versions/no trash)."""
sql = 'select count(version_id), total(size), max(tstamp) from (%s) where name like ?'
sql = sql % self._sql_until(until)
tstamp = row[2] if row[2] is not None else 0
return int(row[0]), int(row[1]), int(tstamp)
+ def _get_pathcount(self, path):
+ """Return count of everything under path (including versions/trash)."""
+
+ sql = 'select count(version_id) from versions where name like ?'
+ c = self.con.execute(sql, (path + '/%',))
+ row = c.fetchone()
+ return int(row[0])
+
def _get_version(self, path, version=None):
- if version is None:
- sql = '''select version_id, strftime('%s', tstamp), size, hide from versions where name = ?
+ if version is None:
+ sql = '''select version_id, user, strftime('%s', tstamp), size, hide from versions where name = ?
order by version_id desc limit 1'''
c = self.con.execute(sql, (path,))
row = c.fetchone()
- if not row or int(row[3]):
+ if not row or int(row[4]):
raise NameError('Object does not exist')
else:
- sql = '''select version_id, strftime('%s', tstamp), size from versions where name = ?
+ # The database (sqlite) will not complain if the version is not an integer.
+ sql = '''select version_id, user, strftime('%s', tstamp), size from versions where name = ?
and version_id = ?'''
c = self.con.execute(sql, (path, version))
row = c.fetchone()
if not row:
raise IndexError('Version does not exist')
- return str(row[0]), int(row[1]), int(row[2])
+ return str(row[0]), str(row[1]), int(row[2]), int(row[3])
- def _put_version(self, path, size=0, hide=0):
- sql = 'insert into versions (name, size, hide) values (?, ?, ?)'
- id = self.con.execute(sql, (path, size, hide)).lastrowid
+ def _put_version(self, path, user, size=0):
+ sql = 'insert into versions (name, user, size) values (?, ?, ?)'
+ id = self.con.execute(sql, (path, user, size)).lastrowid
self.con.commit()
return str(id)
- def _copy_version(self, src_path, dest_path, copy_meta=True, copy_data=True, src_version=None):
+ def _copy_version(self, user, src_path, dest_path, copy_meta=True, copy_data=True, src_version=None):
if src_version is not None:
- src_version_id, mtime, size = self._get_version(src_path, src_version)
+ src_version_id, muser, mtime, size = self._get_version(src_path, src_version)
else:
# Latest or create from scratch.
try:
- src_version_id, mtime, size = self._get_version(src_path)
+ src_version_id, muser, mtime, size = self._get_version(src_path)
except NameError:
src_version_id = None
size = 0
if not copy_data:
size = 0
- dest_version_id = self._put_version(dest_path, size)
+ dest_version_id = self._put_version(dest_path, user, size)
if copy_meta and src_version_id is not None:
sql = 'insert into metadata select %s, key, value from metadata where version_id = ?'
sql = sql % dest_version_id
def _get_objectinfo(self, account, container, name, version=None):
path = os.path.join(account, container, name)
- version_id, mtime, size = self._get_version(path, version)
- return path, version_id, mtime, size
+ version_id, muser, mtime, size = self._get_version(path, version)
+ return path, version_id, muser, mtime, size
def _get_metadata(self, path, version):
sql = 'select key, value from metadata where version_id = ?'
c = self.con.execute(sql, (version,))
return dict(c.fetchall())
- def _put_metadata(self, path, meta, replace=False):
+ def _put_metadata(self, user, path, meta, replace=False):
"""Create a new version and store metadata."""
- src_version_id, dest_version_id = self._copy_version(path, path, not replace, True)
+ src_version_id, dest_version_id = self._copy_version(user, path, path, not replace, True)
for k, v in meta.iteritems():
- sql = 'insert or replace into metadata (version_id, key, value) values (?, ?, ?)'
- self.con.execute(sql, (dest_version_id, k, v))
+ if not replace and v == '':
+ sql = 'delete from metadata where version_id = ? and key = ?'
+ self.con.execute(sql, (dest_version_id, k))
+ else:
+ sql = 'insert or replace into metadata (version_id, key, value) values (?, ?, ?)'
+ self.con.execute(sql, (dest_version_id, k, v))
+ self.con.commit()
+
+ def _get_groups(self, account):
+ sql = 'select name, users from groups where account = ?'
+ c = self.con.execute(sql, (account,))
+ return dict([(x[0], x[1].split(',')) for x in c.fetchall()])
+
+ def _check_policy(self, policy):
+ for k in policy.keys():
+ if policy[k] == '':
+ policy[k] = self.default_policy.get(k)
+ for k, v in policy.iteritems():
+ if k == 'quota':
+ q = int(v) # May raise ValueError.
+ if q < 0:
+ raise ValueError
+ elif k == 'versioning':
+ if v not in ['auto', 'manual', 'none']:
+ raise ValueError
+ else:
+ raise ValueError
+
+ def _get_policy(self, path):
+ sql = 'select key, value from policy where name = ?'
+ c = self.con.execute(sql, (path,))
+ return dict(c.fetchall())
+
+ def _is_allowed(self, user, account, container, name, op='read'):
+ if user == account:
+ return True
+ path = os.path.join(account, container, name)
+ if op == 'read' and self._get_public(path):
+ return True
+ perm_path, perms = self._get_permissions(path)
+
+ # Expand groups.
+ for x in ('read', 'write'):
+ g_perms = []
+ for y in perms.get(x, []):
+ groups = self._get_groups(account)
+ if y in groups: #it's a group
+ for g_name in groups[y]:
+ g_perms.append(g_name)
+ else: #it's a user
+ g_perms.append(y)
+ perms[x] = g_perms
+
+ if op == 'read' and user in perms.get('read', []):
+ return True
+ if user in perms.get('write', []):
+ return True
+ return False
+
+ def _can_read(self, user, account, container, name):
+ if not self._is_allowed(user, account, container, name, 'read'):
+ raise NotAllowedError
+
+ def _can_write(self, user, account, container, name):
+ if not self._is_allowed(user, account, container, name, 'write'):
+ raise NotAllowedError
+
+ def _check_permissions(self, path, permissions):
+ # Check for existing permissions.
+ sql = '''select name from permissions
+ where name != ? and (name like ? or ? like name || ?)'''
+ c = self.con.execute(sql, (path, path + '%', path, '%'))
+ row = c.fetchone()
+ if row:
+ ae = AttributeError()
+ ae.data = row[0]
+ raise ae
+
+ # Format given permissions.
+ if len(permissions) == 0:
+ return '', ''
+ r = permissions.get('read', [])
+ w = permissions.get('write', [])
+ if True in [False or ',' in x for x in r]:
+ raise ValueError('Bad characters in read permissions')
+ if True in [False or ',' in x for x in w]:
+ raise ValueError('Bad characters in write permissions')
+ return ','.join(r), ','.join(w)
+
+ def _get_permissions(self, path):
+ # Check for permissions at path or above.
+ sql = 'select name, read, write from permissions where ? like name || ?'
+ c = self.con.execute(sql, (path, '%'))
+ row = c.fetchone()
+ if not row:
+ return path, {}
+
+ name, r, w = row
+ ret = {}
+ if w != '':
+ ret['write'] = w.split(',')
+ if r != '':
+ ret['read'] = r.split(',')
+ return name, ret
+
+ def _put_permissions(self, path, r, w):
+ if r == '' and w == '':
+ sql = 'delete from permissions where name = ?'
+ self.con.execute(sql, (path,))
+ else:
+ sql = 'insert or replace into permissions (name, read, write) values (?, ?, ?)'
+ self.con.execute(sql, (path, r, w))
+ self.con.commit()
+
+ def _get_public(self, path):
+ sql = 'select name from public where name = ?'
+ c = self.con.execute(sql, (path,))
+ row = c.fetchone()
+ if not row:
+ return False
+ return True
+
+ def _put_public(self, path, public):
+ if not public:
+ sql = 'delete from public where name = ?'
+ else:
+ sql = 'insert or replace into public (name) values (?)'
+ self.con.execute(sql, (path,))
+ self.con.commit()
+
+ def _del_sharing(self, path):
+ sql = 'delete from permissions where name = ?'
+ self.con.execute(sql, (path,))
+ sql = 'delete from public where name = ?'
+ self.con.execute(sql, (path,))
self.con.commit()
def _list_objects(self, path, prefix='', delimiter=None, marker=None, limit=10000, virtual=True, keys=[], until=None):
if i != -1:
pseudo_name = pseudo_name[:i + len(delimiter)]
if pseudo_name not in [y[0] for y in pseudo_objects]:
- pseudo_objects.append((pseudo_name, x[1]))
+ if pseudo_name == x[0]:
+ pseudo_objects.append(x)
+ else:
+ pseudo_objects.append((pseudo_name, None))
objects = pseudo_objects
start = 0
if not limit or limit > 10000:
limit = 10000
return objects[start:start + limit]
-
- def _del_path(self, path):
- sql = '''delete from hashmaps where version_id in
- (select version_id from versions where name = ?)'''
- self.con.execute(sql, (path,))
- sql = '''delete from metadata where version_id in
- (select version_id from versions where name = ?)'''
- self.con.execute(sql, (path,))
- sql = '''delete from versions where name = ?'''
- self.con.execute(sql, (path,))
- self.con.commit()