public virtual void TestInternalGetAclStatus()
{
UserGroupInformation currentUser = UserGroupInformation.GetCurrentUser();
AclStatus aclStatus = fsView.GetAclStatus(new Path("/internalDir"));
Assert.Equal(aclStatus.GetOwner(), currentUser.GetUserName());
Assert.Equal(aclStatus.GetGroup(), currentUser.GetGroupNames()
[0]);
Assert.Equal(aclStatus.GetEntries(), AclUtil.GetMinimalAcl(Constants
.Permission555));
NUnit.Framework.Assert.IsFalse(aclStatus.IsStickyBit());
}
/// <summary>Reads the existing ACL of an inode.</summary>
/// <remarks>
/// Reads the existing ACL of an inode. This method always returns the full
/// logical ACL of the inode after reading relevant data from the inode's
/// <see cref="Org.Apache.Hadoop.FS.Permission.FsPermission"/>
/// and
/// <see cref="AclFeature"/>
/// . Note that every inode
/// logically has an ACL, even if no ACL has been set explicitly. If the inode
/// does not have an extended ACL, then the result is a minimal ACL consising of
/// exactly 3 entries that correspond to the owner, group and other permissions.
/// This method always reads the inode's current state and does not support
/// querying by snapshot ID. This is because the method is intended to support
/// ACL modification APIs, which always apply a delta on top of current state.
/// </remarks>
/// <param name="inode">INode to read</param>
/// <returns>List<AclEntry> containing all logical inode ACL entries</returns>
public static IList <AclEntry> ReadINodeLogicalAcl(INode inode)
{
FsPermission perm = inode.GetFsPermission();
AclFeature f = inode.GetAclFeature();
if (f == null)
{
return(AclUtil.GetMinimalAcl(perm));
}
IList <AclEntry> existingAcl;
// Split ACL entries stored in the feature into access vs. default.
IList <AclEntry> featureEntries = GetEntriesFromAclFeature(f);
ScopedAclEntries scoped = new ScopedAclEntries(featureEntries);
IList <AclEntry> accessEntries = scoped.GetAccessEntries();
IList <AclEntry> defaultEntries = scoped.GetDefaultEntries();
// Pre-allocate list size for the explicit entries stored in the feature
// plus the 3 implicit entries (owner, group and other) from the permission
// bits.
existingAcl = Lists.NewArrayListWithCapacity(featureEntries.Count + 3);
if (!accessEntries.IsEmpty())
{
// Add owner entry implied from user permission bits.
existingAcl.AddItem(new AclEntry.Builder().SetScope(AclEntryScope.Access).SetType
(AclEntryType.User).SetPermission(perm.GetUserAction()).Build());
// Next add all named user and group entries taken from the feature.
Sharpen.Collections.AddAll(existingAcl, accessEntries);
// Add mask entry implied from group permission bits.
existingAcl.AddItem(new AclEntry.Builder().SetScope(AclEntryScope.Access).SetType
(AclEntryType.Mask).SetPermission(perm.GetGroupAction()).Build());
// Add other entry implied from other permission bits.
existingAcl.AddItem(new AclEntry.Builder().SetScope(AclEntryScope.Access).SetType
(AclEntryType.Other).SetPermission(perm.GetOtherAction()).Build());
}
else
{
// It's possible that there is a default ACL but no access ACL. In this
// case, add the minimal access ACL implied by the permission bits.
Sharpen.Collections.AddAll(existingAcl, AclUtil.GetMinimalAcl(perm));
}
// Add all default entries after the access entries.
Sharpen.Collections.AddAll(existingAcl, defaultEntries);
// The above adds entries in the correct order, so no need to sort here.
return(existingAcl);
}
/// <exception cref="System.IO.IOException"/>
public override AclStatus GetAclStatus(Path path)
{
CheckPathIsSlash(path);
return(new AclStatus.Builder().Owner(ugi.GetUserName()).Group(ugi.GetGroupNames()
[0]).AddEntries(AclUtil.GetMinimalAcl(Constants.Permission555)).StickyBit(false)
.Build());
}
