Make the owner of the DFK configurable

Author: at055612

stroom-config/stroom-config-app/src/test/resources/stroom/config/app/expected.yaml

@@ -781,6 +781,7 @@ appConfig:
       refreshAfterWrite: null
       statisticsMode: "DROPWIZARD_METRICS"
     authenticationRequired: true
+    dataFeedKeyOwnerMetaKey: "AccountId"
     dataFeedKeysDir: "data_feed_keys"
     enabledAuthenticationTypes:
     - "CERTIFICATE"

stroom-core/src/main/java/stroom/core/receive/AutoContentCreationConfig.java

@@ -58,8 +58,8 @@ public AutoContentCreationConfig() {
         additionalGroupTemplate = DEFAULT_ADDITIONAL_GROUP_TEMPLATE;
         createAsSubjectId = User.ADMINISTRATORS_GROUP_SUBJECT_ID;
         createAsType = UserType.GROUP;
-        // TreeSet to ensure consistent order in the serialised json
-        // Make all lower case as expression matching is case-sense on field name and we
+        // Ensure consistent order in the serialised json
+        // Make all lower case as expression matching is case-sense on field name, and we
         // can't be sure what case is used in the receipt headers.
         templateMatchFields = CollectionUtil.asUnmodifiabledConsistentOrderSet(normaliseFields(Set.of(
                 StandardHeaderArguments.FEED,
@@ -136,7 +136,8 @@ public String getAdditionalGroupTemplate() {
 
     @NotNull
     @JsonPropertyDescription(
-            "The subjectId of the user/group who the auto-created content will be created by. " +
+            "The subjectId of the user/group who the auto-created content will be created by, " +
+            "typically a group with administrator privileges. " +
             "This user/group must have the permission to create all content required. It will also be the " +
             "'run as' user for created pipeline processor filters.")
     public String getCreateAsSubjectId() {

stroom-core/src/main/java/stroom/core/receive/ContentAutoCreationServiceImpl.java

@@ -174,35 +174,29 @@ private static ExpressionMatcher createExpressionMatcher(final ExpressionMatcher
     public Optional<FeedDoc> tryCreateFeed(final String feedName,
                                            final UserDesc userDesc,
                                            final AttributeMap attributeMap) {
-        Objects.requireNonNull(userDesc);
         LOGGER.debug("tryCreateFeed - feedName: {}, userRef: {}, attributeMap: {}",
                 feedName, userDesc, attributeMap);
 
-        if (isEligibleForAutoCreation(userDesc, attributeMap)) {
-            // Content gets created as the configured user
-            final UserRef runAsUserRef = getRunAsUser();
+        // Content gets created as the configured user
+        final UserRef runAsUserRef = getRunAsUser();
 
-            final Optional<FeedDoc> optFeedDoc = securityContext.asUserResult(runAsUserRef, () ->
-                    ensureFeed(feedName, userDesc, attributeMap));
+        final Optional<FeedDoc> optFeedDoc = securityContext.asUserResult(runAsUserRef, () ->
+                ensureFeed(feedName, userDesc, attributeMap));
 
-            LOGGER.debug("feedName: '{}', userDesc: '{}', optFeedDoc: {}",
-                    feedName, userDesc, optFeedDoc);
+        LOGGER.debug("feedName: '{}', userDesc: '{}', optFeedDoc: {}",
+                feedName, userDesc, optFeedDoc);
 
-            return optFeedDoc;
-        } else {
-            LOGGER.debug("Not eligible for auto-creation");
-            return Optional.empty();
-        }
+        return optFeedDoc;
     }
 
-    private boolean isEligibleForAutoCreation(final UserDesc userDesc,
-                                              final AttributeMap attributeMap) {
-        return NullSafe.allNonNull(userDesc, userDesc.getSubjectId(), attributeMap)
-               && attributeMap.containsKey(StandardHeaderArguments.ACCOUNT_ID)
-               && attributeMap.containsKey(StandardHeaderArguments.COMPONENT)
-               && attributeMap.containsKey(StandardHeaderArguments.SCHEMA)
-               && attributeMap.containsKey(StandardHeaderArguments.FORMAT);
-    }
+//    private boolean isEligibleForAutoCreation(final UserDesc userDesc,
+//                                              final AttributeMap attributeMap) {
+//        return NullSafe.allNonNull(userDesc, userDesc.getSubjectId(), attributeMap)
+//               && attributeMap.containsKey(StandardHeaderArguments.ACCOUNT_ID)
+//               && attributeMap.containsKey(StandardHeaderArguments.COMPONENT)
+//               && attributeMap.containsKey(StandardHeaderArguments.SCHEMA)
+//               && attributeMap.containsKey(StandardHeaderArguments.FORMAT);
+//    }
 
     private UserRef getRunAsUser() {
         final AutoContentCreationConfig autoContentCreationConfig = autoContentCreationConfigProvider.get();
@@ -265,32 +259,44 @@ private DocRef doCreateFeed(final String feedName,
                                 final UserDesc userDesc,
                                 final AttributeMap attributeMap) {
 
-        final String destinationPath = cachedDestinationPathTemplator.getValue().apply(attributeMap);
+        final String destinationPath = cachedDestinationPathTemplator.getValue()
+                .apply(attributeMap);
         final DocPath docPath = DocPath.fromPathString(destinationPath);
 
         LOGGER.info("Ensuring path '{}' exists", docPath);
         final ExplorerNode destFolder = explorerService.ensureFolderPath(docPath, PermissionInheritance.DESTINATION);
         final DocRef destFolderRef = destFolder.getDocRef();
+        final UserRef userRef;
 
-        LOGGER.info("Ensuing user with userRef: '{}' exists", userDesc);
-        final User user = userService.getOrCreateUser(userDesc);
-        final UserRef userRef = user.asRef();
+        if (userDesc != null) {
+            LOGGER.info("Ensuing user with userRef: '{}' exists", userDesc);
+            final User user = userService.getOrCreateUser(userDesc);
+            userRef = user.asRef();
+        } else {
+            LOGGER.info("No user details, won't ensure Stroom user or add any users to groups.");
+            userRef = null;
+        }
 
         final String groupName = cachedGroupTemplator.getValue().apply(attributeMap);
-        LOGGER.info("Auto-creating user group '{}', and adding userRef {} to it",
-                groupName, userRef);
+        LOGGER.info("Auto-creating user group '{}'", groupName);
         final User group = userService.getOrCreateUserGroup(groupName);
         addAppPerms(group);
-        userService.addUserToGroup(userRef, group.asRef());
+        if (userRef != null) {
+            LOGGER.info("Adding userRef {} to group '{}", userRef, groupName);
+            userService.addUserToGroup(userRef, group.asRef());
+        }
 
         Optional<User> optAdditionalGroup = Optional.empty();
-        final String additionalGroupName = cachedAdditionalGroupTemplator.getValue().apply(attributeMap);
+        final String additionalGroupName = cachedAdditionalGroupTemplator.getValue()
+                .apply(attributeMap);
         if (NullSafe.isNonBlankString(additionalGroupName)) {
-            LOGGER.info("Auto-creating additional user group '{}', and adding userRef {} to it",
-                    additionalGroupName, userRef);
+            LOGGER.info("Auto-creating user group '{}'", additionalGroupName);
             final User additionalGroup = userService.getOrCreateUserGroup(additionalGroupName);
             addAppPerms(additionalGroup);
-            userService.addUserToGroup(userRef, additionalGroup.asRef());
+            if (userRef != null) {
+                LOGGER.info("Adding userRef {} to additional group '{}", userRef, additionalGroupName);
+                userService.addUserToGroup(userRef, additionalGroup.asRef());
+            }
             optAdditionalGroup = Optional.of(additionalGroup);
         }
 
@@ -338,7 +344,11 @@ private void configureFeed(final FeedDoc feedDoc,
                 }
             });
 
-            feedDoc.setDescription("Auto-created for user '" + userRef.toDisplayString() + "'");
+            if (userRef != null) {
+                feedDoc.setDescription("Auto-created for user '" + userRef.toDisplayString() + "'");
+            } else {
+                feedDoc.setDescription("Auto-created");
+            }
             feedDoc.setStatus(FeedStatus.RECEIVE);
 
             consumeAttrVal(attributeMap, StandardHeaderArguments.ENCODING, val ->

stroom-core/src/main/java/stroom/core/receive/FeedStatusServiceImpl.java

@@ -28,6 +28,7 @@
 import stroom.receive.common.FeedStatusService;
 import stroom.security.api.SecurityContext;
 import stroom.security.shared.AppPermission;
+import stroom.util.NullSafe;
 import stroom.util.logging.LambdaLogger;
 import stroom.util.logging.LambdaLoggerFactory;
 import stroom.util.logging.LogUtil;
@@ -91,16 +92,20 @@ public GetFeedStatusResponse getFeedStatus(final GetFeedStatusRequestV2 request)
 
                         FeedStatus feedStatus = feedProperties.getStatus(feedName);
                         final UserDesc userDesc = request.getUserDesc();
-                        final AttributeMap attributeMap = new AttributeMap(request.getAttributeMap());
 
                         LOGGER.debug("feedName: {}, userDesc: {}, feedStatus: {}, ",
                                 feedName, userDesc, feedStatus);
 
                         // Feed does not exist so auto-create it if so configured
-                        if (feedStatus == null && userDesc != null) {
+                        if (feedStatus == null) {
                             if (autoContentCreationConfigProvider.get().isEnabled()) {
+                                final AttributeMap attributeMap = NullSafe.getOrElseGet(
+                                        request.getAttributeMap(),
+                                        AttributeMap::new,
+                                        AttributeMap::new);
                                 // Create the feed if it doesn't already exist
-                                feedStatus = contentAutoCreationService.tryCreateFeed(feedName, userDesc, attributeMap)
+                                feedStatus = contentAutoCreationService.tryCreateFeed(
+                                                feedName, userDesc, attributeMap)
                                         .map(FeedDoc::getStatus)
                                         .orElse(null);
                             } else {

stroom-feed/stroom-feed-api/src/main/java/stroom/feed/api/FeedProperties.java

@@ -23,7 +23,9 @@ String getEncoding(final String feedName,
 
     boolean isReference(String feedName);
 
+    /**
+     * DEPRECATED: To be replaced with policy based status decision, one day, maybe.
+     */
     @Deprecated
-        // To be replaced with policy based status decision.
     FeedStatus getStatus(String feedName);
 }

stroom-proxy/stroom-proxy-app/src/test/resources/stroom/dist/proxy-expected.yaml

@@ -105,6 +105,7 @@ proxyConfig:
       refreshAfterWrite: null
       statisticsMode: "DROPWIZARD_METRICS"
     authenticationRequired: true
+    dataFeedKeyOwnerMetaKey: "AccountId"
     dataFeedKeysDir: "data_feed_keys"
     enabledAuthenticationTypes:
     - "CERTIFICATE"

stroom-receive/stroom-receive-common/src/main/java/stroom/receive/common/CachedHashedDataFeedKey.java

@@ -50,11 +50,11 @@ public String getHashAlgorithmId() {
     }
 
     /**
-     * @return The account ID associated with this data feed key
+     * @return The value of a specified meta key.
      */
     @NotBlank
-    public String getAccountId() {
-        return hashedDataFeedKey.getAccountId();
+    public String getStreamMetaValue(final String metaKey) {
+        return hashedDataFeedKey.getStreamMetaValue(metaKey);
     }
 
     //    @NotBlank

stroom-receive/stroom-receive-common/src/main/java/stroom/receive/common/DataFeedKeyService.java

@@ -1,18 +1,13 @@
 package stroom.receive.common;
 
-import stroom.meta.api.AttributeMap;
-
-import jakarta.servlet.http.HttpServletRequest;
-
 import java.nio.file.Path;
-import java.util.Optional;
 
 public interface DataFeedKeyService extends AuthenticatorFilter {
 
-    Optional<HashedDataFeedKey> getDataFeedKey(final HttpServletRequest request,
-                                               final AttributeMap attributeMap);
+//    Optional<HashedDataFeedKey> getDataFeedKey(final HttpServletRequest request,
+//                                               final AttributeMap attributeMap);
 
-    Optional<HashedDataFeedKey> getLatestDataFeedKey(final String accountId);
+//    Optional<HashedDataFeedKey> getLatestDataFeedKey(final String accountId);
 
     int addDataFeedKeys(HashedDataFeedKeys hashedDataFeedKeys,
                         Path sourceFile);