implement CMA

Author: culmat

pom.xml

@@ -74,6 +74,12 @@
 			<version>5.1.0</version>
 			<scope>provided</scope>
 		</dependency>
+		<dependency>
+			<groupId>com.atlassian</groupId>
+			<artifactId>atlassian-app-cloud-migration-listener</artifactId>
+			<version>1.8.7</version>
+			<scope>provided</scope>
+		</dependency>
 		<dependency>
 			<groupId>junit</groupId>
 			<artifactId>junit</artifactId>
@@ -224,6 +230,7 @@
 							com.atlassian.mywork.*;resolution:="optional",
 							com.google.gson.*;resolution:="optional",
 							org.jetbrains.annotations.*;resolution:="optional",
+							com.atlassian.migration.app.*;resolution:="optional",
 							com.sun.mail.imap,
 							com.sun.mail.smtp,
 							com.sun.mail.pop3,

src/main/java/com/baloise/confluence/digitalsignature/migration/DigitalSignatureMigrationListener.java

@@ -0,0 +1,152 @@
+package com.baloise.confluence.digitalsignature.migration;
+
+import static com.atlassian.confluence.setup.bandana.ConfluenceBandanaContext.GLOBAL_CONTEXT;
+
+import java.io.IOException;
+import java.io.OutputStream;
+import java.io.OutputStreamWriter;
+import java.nio.charset.StandardCharsets;
+import java.util.Map;
+import java.util.Set;
+import java.util.UUID;
+import java.util.zip.GZIPOutputStream;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import com.atlassian.bandana.BandanaManager;
+import com.atlassian.migration.app.AccessScope;
+import com.atlassian.migration.app.confluence.ConfluenceAppCloudMigrationListenerV1;
+import com.atlassian.migration.app.gateway.AppCloudForgeMigrationGateway;
+import com.atlassian.migration.app.gateway.MigrationDetailsV1;
+import com.atlassian.migration.app.listener.DiscoverableForgeListener;
+import com.atlassian.plugin.spring.scanner.annotation.component.ConfluenceComponent;
+import com.atlassian.plugin.spring.scanner.annotation.export.ExportAsService;
+import com.atlassian.plugin.spring.scanner.annotation.imports.ComponentImport;
+import com.baloise.confluence.digitalsignature.Signature2;
+import com.google.gson.JsonObject;
+
+/**
+ * Cloud Migration Assistant (CMA) listener for the Digital Signature plugin.
+ *
+ * <p>Exports all signature contracts stored in Bandana as a JSONL.gz payload so
+ * the Forge cloud app can import them into its SQL storage during migration.
+ * Also provides the macro key mapping so migrated macros render correctly in Cloud.
+ *
+ * <p>Corresponds to backlog item i0051.
+ */
+@ConfluenceComponent
+@ExportAsService({DiscoverableForgeListener.class, ConfluenceAppCloudMigrationListenerV1.class})
+public class DigitalSignatureMigrationListener implements DiscoverableForgeListener, ConfluenceAppCloudMigrationListenerV1 {
+
+    private static final Logger log = LoggerFactory.getLogger(DigitalSignatureMigrationListener.class);
+
+    static final String FORGE_APP_ID = "bab5617e-dc42-4ca8-ad38-947c826fe58c";
+    static final String SERVER_APP_KEY = "com.baloise.confluence.digital-signature";
+    // Server macro key (macro name in atlassian-plugin.xml) → Forge macro key
+    static final String SERVER_MACRO_KEY = "digital-signature";
+    static final String FORGE_MACRO_KEY = "digital-signature-confluence-cloud-culmat";
+
+    private final BandanaManager bandanaManager;
+
+    public DigitalSignatureMigrationListener(@ComponentImport BandanaManager bandanaManager) {
+        this.bandanaManager = bandanaManager;
+    }
+
+    @Override
+    public UUID getForgeAppId() {
+        return UUID.fromString(FORGE_APP_ID);
+    }
+
+    @Override
+    public String getForgeEnvironmentName() {
+        return "PRODUCTION";
+    }
+
+    @Override
+    public String getCloudAppKey() {
+        return "com.baloise.confluence.digital-signature";
+    }
+
+    @Override
+    public String getServerAppKey() {
+        return SERVER_APP_KEY;
+    }
+
+    @Override
+    public Map<String, String> getServerToForgeMacroMapping() {
+        return Map.of(SERVER_MACRO_KEY, FORGE_MACRO_KEY);
+    }
+
+    @Override
+    public Set<AccessScope> getDataAccessScopes() {
+        return Set.of(
+            AccessScope.APP_DATA_OTHER,
+            AccessScope.PRODUCT_DATA_OTHER,
+            AccessScope.MIGRATION_TRACING_IDENTITY,
+            AccessScope.MIGRATION_TRACING_PRODUCT
+        );
+    }
+
+    /**
+     * Exports all signature contracts from Bandana as a JSONL.gz stream.
+     *
+     * <p>Each line in the output is a JSON object with fields:
+     * {@code hash}, {@code pageId}, {@code title}, {@code body}, {@code signatures}.
+     * The {@code signatures} map uses server usernames as keys; the Forge importer
+     * resolves them to Cloud account IDs via the CMA Mappings API.
+     */
+    @Override
+    public void onStartAppMigration(AppCloudForgeMigrationGateway gateway, MigrationDetailsV1 migrationDetails) {
+        int scanned = 0;
+        int exported = 0;
+        int totalSignatures = 0;
+
+        try (OutputStream raw = gateway.createAppData("signatures");
+             GZIPOutputStream gzip = new GZIPOutputStream(raw);
+             OutputStreamWriter writer = new OutputStreamWriter(gzip, StandardCharsets.UTF_8)) {
+
+            Iterable<String> keys = bandanaManager.getKeys(GLOBAL_CONTEXT);
+            if (keys != null) {
+                for (String key : keys) {
+                    if (!key.startsWith("signature.")) {
+                        continue;
+                    }
+                    scanned++;
+                    Signature2 sig = Signature2.fromBandana(bandanaManager, key);
+                    if (sig == null) {
+                        log.warn("Skipping null/corrupt Bandana entry: {}", key);
+                        continue;
+                    }
+                    writer.write(toJsonLine(sig));
+                    writer.write('\n');
+                    exported++;
+                    totalSignatures += sig.getSignatures().size();
+                }
+            }
+        } catch (IOException e) {
+            log.error("Failed to export signature data for migration", e);
+            throw new RuntimeException("Migration export failed", e);
+        }
+
+        log.info("Migration export complete: {} keys scanned, {} contracts exported, {} signatures exported",
+                scanned, exported, totalSignatures);
+        gateway.completeExport();
+    }
+
+    /**
+     * Serializes one {@link Signature2} into a single JSONL line (no trailing newline).
+     *
+     * <p>Omits {@code missingSignatures} and {@code notify} — the Forge app
+     * reconstructs required signers from the current macro config at render time.
+     */
+    static String toJsonLine(Signature2 sig) {
+        JsonObject obj = new JsonObject();
+        obj.addProperty("hash", sig.getHash());
+        obj.addProperty("pageId", sig.getPageId());
+        obj.addProperty("title", sig.getTitle());
+        obj.addProperty("body", sig.getBody());
+        obj.add("signatures", Signature2.GSON.toJsonTree(sig.getSignatures()));
+        return Signature2.GSON.toJson(obj);
+    }
+}

src/main/resources/atlassian-plugin.xml

@@ -99,4 +99,5 @@
         <package>com.baloise.confluence.digitalsignature.rest</package>
     </rest>
 
+
 </atlassian-plugin>

src/test/java/com/baloise/confluence/digitalsignature/migration/DigitalSignatureMigrationListenerTest.java

@@ -0,0 +1,143 @@
+package com.baloise.confluence.digitalsignature.migration;
+
+import static com.atlassian.confluence.setup.bandana.ConfluenceBandanaContext.GLOBAL_CONTEXT;
+import static org.junit.jupiter.api.Assertions.*;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.eq;
+import static org.mockito.Mockito.*;
+
+import java.io.ByteArrayInputStream;
+import java.io.ByteArrayOutputStream;
+import java.io.BufferedReader;
+import java.io.IOException;
+import java.io.InputStreamReader;
+import java.nio.charset.StandardCharsets;
+import java.util.Date;
+import java.util.List;
+import java.util.Map;
+import java.util.zip.GZIPInputStream;
+
+import com.atlassian.bandana.BandanaManager;
+import com.atlassian.migration.app.gateway.AppCloudForgeMigrationGateway;
+import com.atlassian.migration.app.gateway.MigrationDetailsV1;
+import com.baloise.confluence.digitalsignature.Signature2;
+import com.google.gson.JsonObject;
+import com.google.gson.JsonParser;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+
+class DigitalSignatureMigrationListenerTest {
+
+    private BandanaManager bandanaManager;
+    private DigitalSignatureMigrationListener listener;
+
+    @BeforeEach
+    void setUp() {
+        bandanaManager = mock(BandanaManager.class);
+        listener = new DigitalSignatureMigrationListener(bandanaManager);
+    }
+
+    @Test
+    void macroMapping_returnsCorrectMapping() {
+        Map<String, String> mapping = listener.getServerToForgeMacroMapping();
+        assertEquals(1, mapping.size());
+        assertEquals(
+            DigitalSignatureMigrationListener.FORGE_MACRO_KEY,
+            mapping.get(DigitalSignatureMigrationListener.SERVER_MACRO_KEY)
+        );
+    }
+
+    @Test
+    void toJsonLine_includesRequiredFields() {
+        Signature2 sig = new Signature2(42L, "my body", "my title");
+        sig.getSignatures().put("alice", new Date(0));
+        sig.getMissingSignatures().add("bob");
+        sig.getNotify().add("carol");
+
+        String line = DigitalSignatureMigrationListener.toJsonLine(sig);
+        JsonObject obj = new JsonParser().parse(line).getAsJsonObject();
+
+        assertAll(
+            () -> assertEquals(sig.getHash(), obj.get("hash").getAsString()),
+            () -> assertEquals(42L, obj.get("pageId").getAsLong()),
+            () -> assertEquals("my title", obj.get("title").getAsString()),
+            () -> assertEquals("my body", obj.get("body").getAsString()),
+            () -> assertTrue(obj.has("signatures")),
+            () -> assertTrue(obj.get("signatures").getAsJsonObject().has("alice")),
+            // missingSignatures and notify must NOT appear in the export
+            () -> assertFalse(obj.has("missingSignatures")),
+            () -> assertFalse(obj.has("notify"))
+        );
+    }
+
+    @Test
+    void onStartAppMigration_writesOneLinePerContract() throws Exception {
+        Signature2 sig1 = new Signature2(10L, "body1", "title1");
+        sig1.getSignatures().put("user1", new Date(1000));
+
+        Signature2 sig2 = new Signature2(20L, "body2", "title2");
+        sig2.getSignatures().put("user2", new Date(2000));
+        sig2.getSignatures().put("user3", new Date(3000));
+
+        List<String> keys = List.of(
+            sig1.getKey(),
+            sig2.getKey(),
+            "protected.somehash",  // should be skipped
+            "other.key"            // should be skipped
+        );
+
+        when(bandanaManager.getKeys(GLOBAL_CONTEXT)).thenReturn(keys);
+        when(bandanaManager.getValue(eq(GLOBAL_CONTEXT), eq(sig1.getKey()))).thenReturn(Signature2.GSON.toJson(sig1, Signature2.class));
+        when(bandanaManager.getValue(eq(GLOBAL_CONTEXT), eq(sig2.getKey()))).thenReturn(Signature2.GSON.toJson(sig2, Signature2.class));
+
+        ByteArrayOutputStream buffer = new ByteArrayOutputStream();
+        AppCloudForgeMigrationGateway gateway = mock(AppCloudForgeMigrationGateway.class);
+        when(gateway.createAppData("signatures")).thenReturn(buffer);
+
+        listener.onStartAppMigration(gateway, new MigrationDetailsV1());
+
+        verify(gateway).completeExport();
+
+        List<String> lines = gunzipLines(buffer.toByteArray());
+        assertEquals(2, lines.size(), "Expected one JSONL line per signature contract");
+
+        JsonObject first = new JsonParser().parse(lines.get(0)).getAsJsonObject();
+        JsonObject second = new JsonParser().parse(lines.get(1)).getAsJsonObject();
+
+        // Verify both contracts appear (order not guaranteed by Bandana)
+        List<String> hashes = List.of(
+            first.get("hash").getAsString(),
+            second.get("hash").getAsString()
+        );
+        assertTrue(hashes.contains(sig1.getHash()));
+        assertTrue(hashes.contains(sig2.getHash()));
+    }
+
+    @Test
+    void onStartAppMigration_skipNullEntries() throws Exception {
+        String key = "signature.deadbeef";
+        when(bandanaManager.getKeys(GLOBAL_CONTEXT)).thenReturn(List.of(key));
+        // fromBandana returns null when key is not found in getKeys
+        when(bandanaManager.getKeys(GLOBAL_CONTEXT)).thenReturn(List.of());
+
+        ByteArrayOutputStream buffer = new ByteArrayOutputStream();
+        AppCloudForgeMigrationGateway gateway = mock(AppCloudForgeMigrationGateway.class);
+        when(gateway.createAppData("signatures")).thenReturn(buffer);
+
+        assertDoesNotThrow(() -> listener.onStartAppMigration(gateway, new MigrationDetailsV1()));
+        verify(gateway).completeExport();
+
+        List<String> lines = gunzipLines(buffer.toByteArray());
+        assertEquals(0, lines.size());
+    }
+
+    // ---- helpers ----
+
+    private static List<String> gunzipLines(byte[] compressed) throws IOException {
+        try (GZIPInputStream gzip = new GZIPInputStream(new ByteArrayInputStream(compressed));
+             BufferedReader reader = new BufferedReader(new InputStreamReader(gzip, StandardCharsets.UTF_8))) {
+            return reader.lines().filter(l -> !l.isBlank()).toList();
+        }
+    }
+}