move code out of base when possible

Signed-off-by: Hervé Boutemy <hboutemy@apache.org>
CycloneDX · Jan 28, 2023 · 1890fe9 · 1890fe9
1 parent 23858d8
commit 1890fe9
Show file tree

Hide file tree

Showing 3 changed files with 100 additions and 105 deletions.
diff --git a/src/main/java/org/cyclonedx/maven/BaseCycloneDxMojo.java b/src/main/java/org/cyclonedx/maven/BaseCycloneDxMojo.java
@@ -42,15 +42,10 @@
 import org.apache.maven.project.ProjectBuildingResult;
 import org.apache.maven.repository.RepositorySystem;
 import org.apache.maven.shared.dependency.analyzer.ProjectDependencyAnalysis;
-import org.apache.maven.shared.dependency.analyzer.ProjectDependencyAnalyzer;
 import org.apache.maven.shared.dependency.graph.DependencyCollectorBuilder;
 import org.apache.maven.shared.dependency.graph.DependencyCollectorBuilderException;
 import org.apache.maven.shared.dependency.graph.DependencyNode;
 import org.apache.maven.shared.dependency.graph.traversal.CollectingDependencyNodeVisitor;
-import org.codehaus.plexus.context.Context;
-import org.codehaus.plexus.PlexusConstants;
-import org.codehaus.plexus.PlexusContainer;
-import org.codehaus.plexus.personality.plexus.lifecycle.phase.Contextualizable;
 import org.cyclonedx.BomGeneratorFactory;
 import org.cyclonedx.CycloneDxSchema;
 import org.cyclonedx.exception.GeneratorException;
@@ -89,7 +84,7 @@
 
 import static org.apache.maven.artifact.Artifact.SCOPE_COMPILE;
 
-public abstract class BaseCycloneDxMojo extends AbstractMojo implements Contextualizable {
+public abstract class BaseCycloneDxMojo extends AbstractMojo {
 
     @Parameter(property = "session", readonly = true, required = true)
     private MavenSession session;
@@ -264,33 +259,11 @@ public abstract class BaseCycloneDxMojo extends AbstractMojo implements Contextu
      * Various messages sent to console.
      */
     protected static final String MESSAGE_RESOLVING_DEPS = "CycloneDX: Resolving Dependencies";
-    protected static final String MESSAGE_CREATING_BOM = "CycloneDX: Creating BOM";
-    protected static final String MESSAGE_CALCULATING_HASHES = "CycloneDX: Calculating Hashes";
-    protected static final String MESSAGE_WRITING_BOM = "CycloneDX: Writing BOM (%s): %s";
-    protected static final String MESSAGE_VALIDATING_BOM = "CycloneDX: Validating BOM (%s): %s";
-    protected static final String MESSAGE_VALIDATION_FAILURE = "The BOM does not conform to the CycloneDX BOM standard as defined by the XSD";
-
-    /**
-     * The plexus context to look-up the right {@link ProjectDependencyAnalyzer} implementation depending on the mojo
-     * configuration.
-     */
-    private Context context;
-
-    /**
-     * Specify the project dependency analyzer to use (plexus component role-hint). By default,
-     * <a href="https://maven.apache.org/shared/maven-dependency-analyzer/">maven-dependency-analyzer</a> is used. To use this, you must declare
-     * a dependency for this plugin that contains the code for the analyzer. The analyzer must have a declared Plexus
-     * role name, and you specify the role name here.
-     *
-     * @since 2.2
-     */
-    @Parameter( property = "analyzer", defaultValue = "default" )
-    private String analyzer;
-
-    /**
-     * DependencyAnalyzer
-     */
-    protected ProjectDependencyAnalyzer dependencyAnalyzer;
+    private static final String MESSAGE_CREATING_BOM = "CycloneDX: Creating BOM";
+    private static final String MESSAGE_CALCULATING_HASHES = "CycloneDX: Calculating Hashes";
+    private static final String MESSAGE_WRITING_BOM = "CycloneDX: Writing BOM (%s): %s";
+    private static final String MESSAGE_VALIDATING_BOM = "CycloneDX: Validating BOM (%s): %s";
+    private static final String MESSAGE_VALIDATION_FAILURE = "The BOM does not conform to the CycloneDX BOM standard as defined by the XSD";
 
     /**
      * Returns a reference to the current project.
@@ -331,7 +304,7 @@ protected boolean shouldInclude(Artifact artifact) {
      * @param project the MavenProject to convert
      * @return a CycloneDX Metadata object
      */
-    protected Metadata convert(final MavenProject project) {
+    private Metadata convert(final MavenProject project) {
         final Tool tool = new Tool();
         final Properties properties = readPluginProperties();
         tool.setVendor(properties.getProperty("vendor"));
@@ -415,7 +388,7 @@ protected Component convert(Artifact artifact) {
         return component;
     }
 
-    private String generatePackageUrl(final Artifact artifact) {
+    protected String generatePackageUrl(final Artifact artifact) {
         TreeMap<String, String> qualifiers = null;
         if (artifact.getType() != null || artifact.getClassifier() != null) {
             qualifiers = new TreeMap<>();
@@ -788,20 +761,6 @@ private void addDependencyToGraph(final Set<Dependency> dependencies, final Stri
         }
     }
 
-    protected void addMavenProjectsAsDependencies(List<MavenProject> reactorProjects, Set<Dependency> dependencies) {
-        for (final Dependency dependency: dependencies) {
-            for (final MavenProject project: reactorProjects) {
-                if (project.hasParent()) {
-                    final String parentRef = generatePackageUrl(project.getParentArtifact());
-                    if (dependency.getRef() != null && dependency.getRef().equals(parentRef)) {
-                        final Dependency child = new Dependency(generatePackageUrl(project.getArtifact()));
-                        dependency.addDependency(child);
-                    }
-                }
-            }
-        }
-    }
-
     protected void logAdditionalParameters() {
         // no additional parameters
     }
@@ -824,59 +783,4 @@ protected void logParameters() {
             getLog().info("------------------------------------------------------------------------");
         }
     }
-
-    @Override
-    public void contextualize( Context theContext )
-    {
-        this.context = theContext;
-    }
-
-    /**
-     * @return {@link ProjectDependencyAnalyzer}
-     * @throws MojoExecutionException in case of an error.
-     */
-    protected ProjectDependencyAnalyzer createProjectDependencyAnalyzer()
-            throws MojoExecutionException
-    {
-        final String role = ProjectDependencyAnalyzer.class.getName();
-        final String roleHint = analyzer;
-        try
-        {
-            final PlexusContainer container = (PlexusContainer) context.get( PlexusConstants.PLEXUS_KEY );
-            return (ProjectDependencyAnalyzer) container.lookup( role, roleHint );
-        }
-        catch ( Exception exception )
-        {
-            throw new MojoExecutionException( "Failed to instantiate ProjectDependencyAnalyser with role " + role
-                    + " / role-hint " + roleHint, exception );
-        }
-    }
-
-    /**
-     * Method to identify component scope based on dependency analysis
-     *
-     * @param component Component
-     * @param artifact Artifact from maven project
-     * @param dependencyAnalysis Dependency analysis data
-     *
-     * @return Component.Scope - Required: If the component is used. Optional: If it is unused
-     */
-    protected Component.Scope getComponentScope(Component component, Artifact artifact, ProjectDependencyAnalysis dependencyAnalysis) {
-        if (dependencyAnalysis == null) {
-            return null;
-        }
-        Set<Artifact> usedDeclaredArtifacts = dependencyAnalysis.getUsedDeclaredArtifacts();
-        Set<Artifact> usedUndeclaredArtifacts = dependencyAnalysis.getUsedUndeclaredArtifacts();
-        Set<Artifact> unusedDeclaredArtifacts = dependencyAnalysis.getUnusedDeclaredArtifacts();
-        Set<Artifact> testArtifactsWithNonTestScope = dependencyAnalysis.getTestArtifactsWithNonTestScope();
-        // Is the artifact used?
-        if (usedDeclaredArtifacts.contains(artifact) || usedUndeclaredArtifacts.contains(artifact)) {
-            return Component.Scope.REQUIRED;
-        }
-        // Is the artifact unused or test?
-        if (unusedDeclaredArtifacts.contains(artifact) || testArtifactsWithNonTestScope.contains(artifact)) {
-            return Component.Scope.OPTIONAL;
-        }
-        return null;
-    }
 }
diff --git a/src/main/java/org/cyclonedx/maven/CycloneDxAggregateMojo.java b/src/main/java/org/cyclonedx/maven/CycloneDxAggregateMojo.java
@@ -181,4 +181,18 @@ protected boolean analyze(final Set<Component> components, final Set<Dependency>
         addMavenProjectsAsDependencies(reactorProjects, dependencies);
         return true;
     }
+
+    private void addMavenProjectsAsDependencies(List<MavenProject> reactorProjects, Set<Dependency> dependencies) {
+        for (final Dependency dependency: dependencies) {
+            for (final MavenProject project: reactorProjects) {
+                if (project.hasParent()) {
+                    final String parentRef = generatePackageUrl(project.getParentArtifact());
+                    if (dependency.getRef() != null && dependency.getRef().equals(parentRef)) {
+                        final Dependency child = new Dependency(generatePackageUrl(project.getArtifact()));
+                        dependency.addDependency(child);
+                    }
+                }
+            }
+        }
+    }
 }
diff --git a/src/main/java/org/cyclonedx/maven/CycloneDxMojo.java b/src/main/java/org/cyclonedx/maven/CycloneDxMojo.java
@@ -22,8 +22,14 @@
 import org.apache.maven.plugin.MojoExecutionException;
 import org.apache.maven.plugins.annotations.LifecyclePhase;
 import org.apache.maven.plugins.annotations.Mojo;
+import org.apache.maven.plugins.annotations.Parameter;
 import org.apache.maven.plugins.annotations.ResolutionScope;
 import org.apache.maven.shared.dependency.analyzer.ProjectDependencyAnalysis;
+import org.apache.maven.shared.dependency.analyzer.ProjectDependencyAnalyzer;
+import org.codehaus.plexus.PlexusConstants;
+import org.codehaus.plexus.PlexusContainer;
+import org.codehaus.plexus.context.Context;
+import org.codehaus.plexus.personality.plexus.lifecycle.phase.Contextualizable;
 import org.cyclonedx.model.Component;
 import org.cyclonedx.model.Dependency;
 import java.util.LinkedHashSet;
@@ -40,7 +46,51 @@
         requiresDependencyCollection = ResolutionScope.TEST,
         requiresDependencyResolution = ResolutionScope.TEST
 )
-public class CycloneDxMojo extends BaseCycloneDxMojo {
+public class CycloneDxMojo extends BaseCycloneDxMojo implements Contextualizable {
+
+    /**
+     * The Plexus context to look-up the right {@link ProjectDependencyAnalyzer} implementation depending on the mojo
+     * configuration.
+     */
+    private Context context;
+
+    /**
+     * Specify the project dependency analyzer to use (plexus component role-hint). By default,
+     * <a href="https://maven.apache.org/shared/maven-dependency-analyzer/">maven-dependency-analyzer</a> is used. To use this, you must declare
+     * a dependency for this plugin that contains the code for the analyzer. The analyzer must have a declared Plexus
+     * role name, and you specify the role name here.
+     *
+     * @since 2.2
+     */
+    @Parameter(property = "analyzer", defaultValue = "default")
+    private String analyzer;
+
+    /**
+     * DependencyAnalyzer
+     */
+    protected ProjectDependencyAnalyzer dependencyAnalyzer;
+
+    @Override
+    public void contextualize(Context theContext) {
+        this.context = theContext;
+    }
+
+    /**
+     * @return {@link ProjectDependencyAnalyzer}
+     * @throws MojoExecutionException in case of an error.
+     */
+    protected ProjectDependencyAnalyzer createProjectDependencyAnalyzer() throws MojoExecutionException {
+        final String role = ProjectDependencyAnalyzer.class.getName();
+        final String roleHint = analyzer;
+        try {
+            final PlexusContainer container = (PlexusContainer) context.get(PlexusConstants.PLEXUS_KEY);
+            return (ProjectDependencyAnalyzer) container.lookup(role, roleHint);
+        }
+        catch (Exception exception) {
+            throw new MojoExecutionException("Failed to instantiate ProjectDependencyAnalyser with role " + role
+                    + " / role-hint " + roleHint, exception);
+        }
+    }
 
     protected boolean analyze(final Set<Component> components, final Set<Dependency> dependencies) throws MojoExecutionException {
         final Set<String> componentRefs = new LinkedHashSet<>();
@@ -84,4 +134,31 @@ protected boolean analyze(final Set<Component> components, final Set<Dependency>
         return true;
     }
 
+    /**
+     * Method to identify component scope based on dependency analysis
+     *
+     * @param component Component
+     * @param artifact Artifact from maven project
+     * @param dependencyAnalysis Dependency analysis data
+     *
+     * @return Component.Scope - Required: If the component is used. Optional: If it is unused
+     */
+    protected Component.Scope getComponentScope(Component component, Artifact artifact, ProjectDependencyAnalysis dependencyAnalysis) {
+        if (dependencyAnalysis == null) {
+            return null;
+        }
+        Set<Artifact> usedDeclaredArtifacts = dependencyAnalysis.getUsedDeclaredArtifacts();
+        Set<Artifact> usedUndeclaredArtifacts = dependencyAnalysis.getUsedUndeclaredArtifacts();
+        Set<Artifact> unusedDeclaredArtifacts = dependencyAnalysis.getUnusedDeclaredArtifacts();
+        Set<Artifact> testArtifactsWithNonTestScope = dependencyAnalysis.getTestArtifactsWithNonTestScope();
+        // Is the artifact used?
+        if (usedDeclaredArtifacts.contains(artifact) || usedUndeclaredArtifacts.contains(artifact)) {
+            return Component.Scope.REQUIRED;
+        }
+        // Is the artifact unused or test?
+        if (unusedDeclaredArtifacts.contains(artifact) || testArtifactsWithNonTestScope.contains(artifact)) {
+            return Component.Scope.OPTIONAL;
+        }
+        return null;
+    }
 }