HTTP test for the Transform endpoint

Fixed ACL of `<admin/transform>`

Author: namedgraph

http-tests/access/group-authorization.sh

@@ -0,0 +1,67 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+initialize_dataset "$END_USER_BASE_URL" "$TMP_END_USER_DATASET" "$END_USER_ENDPOINT_URL"
+initialize_dataset "$ADMIN_BASE_URL" "$TMP_ADMIN_DATASET" "$ADMIN_ENDPOINT_URL"
+purge_cache "$END_USER_VARNISH_SERVICE"
+purge_cache "$ADMIN_VARNISH_SERVICE"
+
+namespace_doc="${END_USER_BASE_URL}ns"
+namespace="${namespace_doc}#"
+ontology_doc="${ADMIN_BASE_URL}ontologies/namespace/"
+import_uri="http://www.w3.org/2004/02/skos/core"
+
+# create item
+
+slug="test"
+
+item=$(create-item.sh \
+  -f "$OWNER_CERT_FILE" \
+  -p "$OWNER_CERT_PWD" \
+  -b "$ADMIN_BASE_URL" \
+  --title "Test" \
+  --slug "$slug" \
+  --container "${ADMIN_BASE_URL}ontologies/")
+
+# load the ontology, transform it and append it to the item document
+
+curl -w "%{http_code}\n" -o /dev/null -k -s \
+  -E "$OWNER_CERT_FILE":"$OWNER_CERT_PWD" \
+  -H "Accept: text/turtle" \
+  -H "Content-Type: application/x-www-form-urlencoded" \
+  --data-urlencode "rdf=" \
+  --data-urlencode "sb=transform" \
+  --data-urlencode "pu=http://spinrdf.org/spin#query" \
+  --data-urlencode "ou=${ADMIN_BASE_URL}queries/construct-constructors/#this" \
+  --data-urlencode "pu=http://purl.org/dc/terms/source" \
+  --data-urlencode "ou=${import_uri}" \
+  --data-urlencode "pu=http://www.w3.org/ns/sparql-service-description#name" \
+  --data-urlencode "ou=${item}" \
+  "${ADMIN_BASE_URL}transform" \
+| grep -q "$STATUS_NO_CONTENT"
+
+# add ontology import
+
+add-ontology-import.sh \
+  -f "$OWNER_CERT_FILE" \
+  -p "$OWNER_CERT_PWD" \
+  --import "$import_uri" \
+  "$ontology_doc"
+
+# clear the namespace ontology from memory
+
+clear-ontology.sh \
+  -f "$OWNER_CERT_FILE" \
+  -p "$OWNER_CERT_PWD" \
+  -b "$ADMIN_BASE_URL" \
+  --ontology "$namespace"
+
+# check that the imported ontology is present in the ontology model TO-DO: replace with an ASK query when #118 is fixed
+
+curl -k -f -s \
+  -G \
+  -E "$OWNER_CERT_FILE":"$OWNER_CERT_PWD" \
+  -H 'Accept: application/sparql-results+xml' \
+  --data-urlencode "query=SELECT * { <${import_uri}> ?p ?o }" \
+  "$namespace_doc" \
+| grep '<literal xml:lang="en">SKOS Vocabulary</literal>' > /dev/null

http-tests/access/owner-authorization.sh

@@ -382,6 +382,14 @@ WHERE
 
 }
 
+<transform>
+{
+
+    <transform> a foaf:Document ;
+        dct:title "Transform/import endpoint" .
+
+}
+
 <oauth2/login>
 {
 
@@ -748,7 +756,7 @@ WHERE
         rdfs:label "Full control" ;
         rdfs:comment "Allows full read/write access to all application resources" ;
         acl:accessToClass dh:Item, dh:Container, def:Root ;
-        acl:accessTo <../sparql>, <../importer>, <../transform>, <../generate>, <../ns>, <clear> ;
+        acl:accessTo <../sparql>, <../importer>, <../generate>, <../ns>, <clear>, <transform> ;
         acl:mode acl:Read, acl:Append, acl:Write, acl:Control ;
         acl:agentGroup <acl/groups/owners/#this> .
 
@@ -768,7 +776,7 @@ WHERE
         rdfs:label "Write/append access" ;
         rdfs:comment "Allows write access to all documents and containers" ;
         acl:accessToClass dh:Item, dh:Container, def:Root ;
-        acl:accessTo <../sparql>, <../importer>, <../transform>, <../generate>, <../ns> ;
+        acl:accessTo <../sparql>, <../importer>, <../generate>, <../ns> ;
         acl:mode acl:Write, acl:Append ;
         acl:agentGroup <acl/groups/owners/#this>, <acl/groups/writers/#this> .
 

http-tests/admin/POST-transform.sh

@@ -23,6 +23,7 @@
 import com.atomgraph.linkeddatahub.imports.QueryLoader;
 import com.atomgraph.linkeddatahub.model.Service;
 import com.atomgraph.linkeddatahub.server.io.ValidatingModelProvider;
+import com.atomgraph.linkeddatahub.server.model.impl.GraphStoreImpl;
 import com.atomgraph.linkeddatahub.server.security.AgentContext;
 import com.atomgraph.linkeddatahub.vocabulary.NFO;
 import com.atomgraph.spinrdf.vocabulary.SPIN;
@@ -64,7 +65,7 @@
  * 
  * @author {@literal Martynas Jusevičius <martynas@atomgraph.com>}
  */
-public class Transform extends Add
+public class Transform extends GraphStoreImpl
 {
 
     private static final Logger log = LoggerFactory.getLogger(Transform.class);
@@ -144,7 +145,6 @@ public Response post(Model model, @QueryParam("default") @DefaultValue("false")
      */
     @POST
     @Consumes(MediaType.MULTIPART_FORM_DATA)
-    @Override
     public Response postMultipart(FormDataMultiPart multiPart, @QueryParam("default") @DefaultValue("false") Boolean defaultGraph, @QueryParam("graph") URI graphUri)
     {
         if (log.isDebugEnabled()) log.debug("MultiPart fields: {} body parts: {}", multiPart.getFields(), multiPart.getBodyParts());
@@ -177,7 +177,6 @@ public Response postMultipart(FormDataMultiPart multiPart, @QueryParam("default"
      * @param fileNameBodyPartMap parts of the multipart request
      * @return response response
      */
-    @Override
     public Response postFileBodyPart(Model model, Map<String, FormDataBodyPart> fileNameBodyPartMap)
     {
         if (model == null) throw new IllegalArgumentException("Model cannot be null");
@@ -223,4 +222,24 @@ public Response postFileBodyPart(Model model, Map<String, FormDataBodyPart> file
         }
     }
 
+    /**
+     * Forwards <code>POST</code> request to a graph.
+     * 
+     * @param entity request entity
+     * @param graphURI the graph URI
+     * @return JAX-RS response
+     */
+    protected Response forwardPost(Entity entity, String graphURI)
+    {
+        LinkedDataClient ldc = LinkedDataClient.create(getSystem().getClient(), getSystem().getMediaTypes()).
+            delegation(getUriInfo().getBaseUri(), getAgentContext().orElse(null));
+        // forward the stream to the named graph document. Buffer the entity first so that the server response is not returned before the client response completes
+        try (Response response = ldc.post(URI.create(graphURI), ldc.getReadableMediaTypes(Model.class), entity))
+        {
+            return Response.status(response.getStatus()).
+                entity(response.readEntity(Model.class)).
+                build();
+        }
+    }
+    
 }

http-tests/document-hierarchy/owner-container.sh

@@ -124,7 +124,7 @@ WHERE
             $Type (rdfs:subClassOf)* ?Class
           }
         # only namespace, signup, OAuth2 login and WebID profiles can be public in admin app, nothing else
-        FILTER ( $this IN (uri(concat(str($base), "ns")), uri(concat(str($base), "sign%20up")), uri(concat(str($base), "oauth2/login")), uri(concat(str($base), "oauth2/authorize/google"))) || strstarts(str($this), concat(str($base), "acl/agents/")) || strstarts(str($this), concat(str($base), "acl/public-keys/")))
+        FILTER ( $this IN (uri(concat(str($base), "ns")), uri(concat(str($base), "sign%20up")), uri(concat(str($base), "oauth2/login")), uri(concat(str($base), "oauth2/authorize/google")), uri(concat(str($base), "transform"))) || strstarts(str($this), concat(str($base), "acl/agents/")) || strstarts(str($this), concat(str($base), "acl/public-keys/")))
       }
   }
 ]]></param-value>