1
// Copyright 2023 The CubeFS Authors.
3
// Licensed under the Apache License, Version 2.0 (the "License");
4
// you may not use this file except in compliance with the License.
5
// You may obtain a copy of the License at
7
// http://www.apache.org/licenses/LICENSE-2.0
9
// Unless required by applicable law or agreed to in writing, software
10
// distributed under the License is distributed on an "AS IS" BASIS,
11
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
12
// implied. See the License for the specific language governing
13
// permissions and limitations under the License.
24
// Caps defines the capability type
31
// ContainCaps whether contain a capability with kind
32
func (c *Caps) ContainCaps(cat string, cap string) (r bool) {34
return traversalCaps(c.API, cap)
35
} else if cat == "OwnerVOL" {36
return traversalCaps(c.OwnerVOL, cap)
37
} else if cat == "NoneOwnerVOL" {38
return traversalCaps(c.NoneOwnerVOL, cap)
43
func traversalCaps(caps []string, cap string) (r bool) {45
for _, s := range caps {46
a := strings.Split(s, ":")
47
b := strings.Split(cap, ":")
50
if a[i] != "*" && a[i] != b[i] {62
// Init init a Caps instance
63
func (c *Caps) Init(b []byte) (err error) {64
if err = json.Unmarshal(b, c); err != nil {67
if err = c.check(); err != nil {74
// Dump dump the content of Caps
75
func (c *Caps) Dump() (d string) {76
for _, s := range c.API {77
d += fmt.Sprintf("API:%s,", s)79
// TODO c.vol (no usage?)
84
func (c *Caps) Union(caps *Caps) {85
c.API = append(c.API, caps.API...)
86
c.OwnerVOL = append(c.OwnerVOL, caps.OwnerVOL...)
87
c.NoneOwnerVOL = append(c.NoneOwnerVOL, caps.NoneOwnerVOL...)
91
func (c *Caps) check() (err error) {92
apiRe := regexp.MustCompile("^[A-Za-z0-9*]{1,20}:[A-Za-z0-9*]{1,20}:[A-Za-z0-9*]{1,20}$")93
volRe := regexp.MustCompile("^[A-Za-z0-9*]{1,20}:[a-zA-Z0-9_-]{3,256}:[A-Za-z0-9*]{1,20}$")94
if err = checkRegexp(apiRe, c.API); err != nil {97
if err = checkRegexp(volRe, c.OwnerVOL); err != nil {100
if err = checkRegexp(volRe, c.NoneOwnerVOL); err != nil {106
func checkRegexp(re *regexp.Regexp, caps []string) (err error) {107
for _, cap := range caps {108
if !re.MatchString(cap) {109
err = fmt.Errorf("invalid cap [%s]", cap)117
func (c *Caps) Delete(caps *Caps) {118
c.API = deleteCaps(c.API, caps.API)
119
c.OwnerVOL = deleteCaps(c.OwnerVOL, caps.OwnerVOL)
120
c.NoneOwnerVOL = deleteCaps(c.NoneOwnerVOL, caps.NoneOwnerVOL)
123
func deleteCaps(caps []string, deleteCaps []string) []string {124
m := make(map[string]bool)
125
for _, item := range caps {129
for _, item := range deleteCaps {133
caps = append(caps, k)
138
func (c *Caps) cleanDup() {139
c.API = cleanCaps(c.API)
140
c.OwnerVOL = cleanCaps(c.OwnerVOL)
141
c.NoneOwnerVOL = cleanCaps(c.NoneOwnerVOL)
144
func cleanCaps(caps []string) []string {145
newCaps := make([]string, 0)
146
m := make(map[string]map[string]bool)
147
for _, cap := range caps {148
a := strings.Split(cap, ":")
150
key2 := a[1] + ":" + a[2]
151
if _, ok := m[key1]; !ok {152
m[key1] = make(map[string]bool)
154
if _, ok := m[key1][key2]; !ok {155
newCaps = append(newCaps, cap)