Additional tests

Author: acoburn

acp/src/main/java/com/inrupt/client/acp/AccessControlResource.java

@@ -29,6 +29,9 @@
 import com.inrupt.rdf.wrapping.commons.WrapperIRI;
 
 import java.net.URI;
+import java.util.Collections;
+import java.util.List;
+import java.util.Map;
 import java.util.Set;
 import java.util.UUID;
 import java.util.function.Consumer;
@@ -54,6 +57,17 @@ public class AccessControlResource extends RDFSource {
 
     public static final URI SOLID_ACCESS_GRANT = URI.create("http://www.w3.org/ns/solid/vc#SolidAccessGrant");
 
+    private static final Map<URI, IRI> EXPANSION_MAPPINGS = Map.of(
+                ACP.accessControl, asIRI(ACP.AccessControl),
+                ACP.memberAccessControl, asIRI(ACP.AccessControl),
+                ACP.apply, asIRI(ACP.Policy),
+                ACP.allOf, asIRI(ACP.Matcher),
+                ACP.anyOf, asIRI(ACP.Matcher),
+                ACP.noneOf, asIRI(ACP.Matcher));
+
+    private static final List<URI> EXPANSION_PROPERTIES = List.of(ACP.accessControl, ACP.memberAccessControl,
+            ACP.apply, ACP.allOf, ACP.anyOf, ACP.noneOf);
+
     /**
      * Definitions for different matcher types, for use with {@link #find}.
      */
@@ -127,23 +141,13 @@ public Set<AccessControl> memberAccessControl() {
     public AccessControlResource expand(final SolidSyncClient client) {
         // Copy the data from the existing ACR into a new dataset
         final var dataset = rdf.createDataset();
-        final var matcherType = asIRI(ACP.Matcher);
-        final var accessControlType = asIRI(ACP.AccessControl);
         stream().forEach(dataset::add);
 
         try (final var cache = rdf.createDataset()) {
-            expandType(dataset, cache, asIRI(ACP.accessControl), accessControlType,
-                    uri -> populateCache(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.memberAccessControl), accessControlType,
-                    uri -> populateCache(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.apply), asIRI(ACP.Policy),
-                    uri -> populateCache(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.allOf), matcherType,
-                    uri -> populateCache(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.anyOf), matcherType,
-                    uri -> populateCache(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.noneOf), matcherType,
+            for (final var property : EXPANSION_PROPERTIES) {
+                expandType(dataset, cache, asIRI(property), EXPANSION_MAPPINGS.get(property),
                     uri -> populateCache(client, uri, cache));
+            }
         } catch (final Exception ex) {
             LOGGER.atDebug().setMessage("Unable to close dataset: {}").addArgument(ex::getMessage).log();
         }
@@ -162,21 +166,11 @@ public AccessControlResource expand(final SolidClient client) {
         final var dataset = rdf.createDataset();
         stream().forEach(dataset::add);
 
-        final var matcherType = asIRI(ACP.Matcher);
-        final var accessControlType = asIRI(ACP.AccessControl);
         try (final var cache = rdf.createDataset()) {
-            expandType(dataset, cache, asIRI(ACP.accessControl), accessControlType,
-                    uri -> populateCacheAsync(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.memberAccessControl), accessControlType,
-                    uri -> populateCacheAsync(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.apply), asIRI(ACP.Policy),
-                    uri -> populateCacheAsync(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.allOf), matcherType,
-                    uri -> populateCacheAsync(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.anyOf), matcherType,
-                    uri -> populateCacheAsync(client, uri, cache));
-            expandType(dataset, cache, asIRI(ACP.noneOf), matcherType,
-                    uri -> populateCacheAsync(client, uri, cache));
+            for (final var property : EXPANSION_PROPERTIES) {
+                expandType(dataset, cache, asIRI(property), EXPANSION_MAPPINGS.get(property),
+                        uri -> populateCacheAsync(client, uri, cache));
+            }
         } catch (final Exception ex) {
             LOGGER.atDebug().setMessage("Unable to close dataset: {}").addArgument(ex::getMessage).log();
         }
@@ -208,37 +202,41 @@ public void compact() {
     /**
      * Merge two or more policies into a single policies with combined matchers.
      *
+     * @param allow the modes to allow
      * @param policies the policies to merge
      * @return the merged policy
      */
-    public Policy merge(final Policy... policies) {
+    public Policy merge(final Set<URI> allow, final Policy... policies) {
         final var baseUri = getIdentifier().getScheme() + ":" + getIdentifier().getSchemeSpecificPart();
         final var policy = new Policy(asIRI(baseUri + "#" + UUID.randomUUID()), getGraph());
         for (final var p : policies) {
             policy.allOf().addAll(p.allOf());
             policy.anyOf().addAll(p.anyOf());
             policy.noneOf().addAll(p.noneOf());
         }
+        policy.allow().addAll(allow);
         return policy;
     }
 
     /**
      * Find a policy, given a type, value and set of modes.
      *
      * @param type the matcher type
-     * @param value the matcher value
-     * @param modes the expected modes of the enclosing policy
+     * @param value the matcher value, may be {@null}
+     * @param modes the expected modes of the enclosing policy, may be {@null}
      * @return the matched policies
      */
     public Set<Policy> find(final MatcherType type, final URI value, final Set<URI> modes) {
-        return stream(null, null, type.asIRI(), asIRI(value))
+        final IRI matcherValue = value != null ? asIRI(value) : null;
+        final Set<URI> matcherModes = modes != null ? modes : Collections.emptySet();
+        return stream(null, null, type.asIRI(), matcherValue)
             .map(Quad::getSubject)
             .flatMap(matcher -> stream(null, null, null, matcher))
             .map(Quad::getSubject)
             .filter(policy -> contains(null, policy, asIRI(RDF.type), asIRI(ACP.Policy)))
             .filter(policy -> stream(null, policy, asIRI(ACP.allow), null)
                     .map(Quad::getObject).filter(IRI.class::isInstance).map(IRI.class::cast)
-                    .map(IRI::getIRIString).map(URI::create).toList().containsAll(modes))
+                    .map(IRI::getIRIString).map(URI::create).toList().containsAll(matcherModes))
             .map(policy -> new Policy(policy, getGraph()))
             .collect(Collectors.toSet());
     }

acp/src/main/java/com/inrupt/client/acp/Policy.java

@@ -104,6 +104,10 @@ static IRI asResource(final Policy policy, final Graph graph) {
             graph.add(policy, asIRI(ACP.anyOf), matcher);
             Matcher.asResource(matcher, graph);
         });
+        policy.noneOf().forEach(matcher -> {
+            graph.add(policy, asIRI(ACP.noneOf), matcher);
+            Matcher.asResource(matcher, graph);
+        });
         policy.allow().forEach(allow ->
                 graph.add(policy, asIRI(ACP.allow), asIRI(allow)));
         return policy;

acp/src/test/java/com/inrupt/client/acp/AccessControlResourceTest.java

@@ -186,16 +186,22 @@ void testAcrFindPolicies() {
         final var uri = mockHttpServer.acr2();
         try (final AccessControlResource acr = client.read(uri, AccessControlResource.class)) {
             assertEquals(1, acr.find(AccessControlResource.MatcherType.VC,
-                    AccessControlResource.SOLID_ACCESS_GRANT, Set.of(ACL.Read)).size());
+                        AccessControlResource.SOLID_ACCESS_GRANT, Set.of(ACL.Read)).size());
 
             assertEquals(0, acr.find(AccessControlResource.MatcherType.VC,
-                    AccessControlResource.SOLID_ACCESS_GRANT, Set.of(ACL.Read, ACL.Write)).size());
+                        AccessControlResource.SOLID_ACCESS_GRANT, Set.of(ACL.Read, ACL.Write)).size());
 
             assertEquals(0, acr.find(AccessControlResource.MatcherType.AGENT,
-                    URI.create("https://bot.example/id"), Set.of(ACL.Read, ACL.Write)).size());
+                        URI.create("https://bot.example/id"), Set.of(ACL.Read, ACL.Write)).size());
 
             assertEquals(1, acr.find(AccessControlResource.MatcherType.AGENT,
-                    URI.create("https://bot.example/id"), Set.of(ACL.Read)).size());
+                        URI.create("https://bot.example/id"), Set.of(ACL.Read)).size());
+
+            assertEquals(2, acr.find(AccessControlResource.MatcherType.AGENT,
+                        null, Set.of(ACL.Read)).size());
+
+            assertEquals(1, acr.find(AccessControlResource.MatcherType.AGENT,
+                        URI.create("https://bot.example/id"), null).size());
         }
     }
 
@@ -335,4 +341,44 @@ void expandAcr4Sync() {
             assertEquals(20, acr.size());
         }
     }
+
+    @Test
+    void expandAcr4Async() {
+        final var uri = mockHttpServer.acr4();
+        final var asyncClient = SolidClient.getClient();
+        asyncClient.read(uri, AccessControlResource.class).thenAccept(res -> {
+            try (final var acr = res) {
+                assertEquals(2, acr.accessControl().size());
+                assertEquals(3, acr.memberAccessControl().size());
+
+                // Check dataset size
+                assertEquals(20, acr.size());
+
+                final var expanded = acr.expand(asyncClient);
+                assertEquals(22, expanded.size());
+                assertEquals(20, acr.size());
+            }
+        }).toCompletableFuture().join();
+    }
+
+    @Test
+    void testMerge() {
+        final var identifier = "https://data.example/resource";
+        final var agent = URI.create("https://id.example/agent");
+        final var app = URI.create("https://app.example/id");
+
+        final var acr = new AccessControlResource(URI.create(identifier), rdf.createDataset());
+        final var policy = acr.merge(Set.of(ACL.Read, ACL.Write), acr.agentPolicy(agent), acr.clientPolicy(app));
+
+        assertEquals(2, policy.allow().size());
+        assertTrue(policy.allow().contains(ACL.Read));
+        assertTrue(policy.allow().contains(ACL.Write));
+
+        assertEquals(2, policy.allOf().size());
+        assertEquals(0, policy.anyOf().size());
+        assertEquals(0, policy.noneOf().size());
+
+        assertTrue(policy.allOf().stream().anyMatch(matcher -> matcher.client().contains(app)));
+        assertTrue(policy.allOf().stream().anyMatch(matcher -> matcher.agent().contains(agent)));
+    }
 }

acp/src/test/resources/__files/acr-4.ttl

@@ -16,15 +16,15 @@
       acp:apply  <#indexer-policy> .
 <#indexer-policy>
       a         acp:Policy ;
-      acp:allOf </also-not-an-acr> ;
+      acp:noneOf </also-not-an-acr> ;
       acp:allow acl:Read .
 
 <#vc-access-control>
       a         acp:AccessControl ;
       acp:apply <#vc-policy> .
 <#vc-policy>
       a         acp:Policy ;
-      acp:allOf <#vc-matcher> ;
+      acp:anyOf <#vc-matcher> ;
       acp:allow acl:Read .
 <#vc-matcher>
       a      acp:Matcher ;

pom.xml

@@ -206,7 +206,6 @@
               <link>https://jena.apache.org/documentation/javadoc/arq/</link>
               <link>https://www.antlr.org/api/Java/</link>
               <link>https://rdf4j.org/javadoc/5.1.0/</link>
-              <link>http://www.javadoc.io/doc/com.fasterxml.jackson.core/jackson-databind/latest/</link>
             </links>
             <header>
               <![CDATA[