Move and rename TransactionalConnectorAccessControl

presto-main/src/main/java/com/facebook/presto/connector/ConnectorManager.java

@@ -24,14 +24,14 @@
 import com.facebook.presto.spi.SystemTable;
 import com.facebook.presto.spi.classloader.ThreadContextClassLoader;
 import com.facebook.presto.spi.connector.Connector;
+import com.facebook.presto.spi.connector.ConnectorAccessControl;
 import com.facebook.presto.spi.connector.ConnectorFactory;
 import com.facebook.presto.spi.connector.ConnectorIndexProvider;
 import com.facebook.presto.spi.connector.ConnectorPageSinkProvider;
 import com.facebook.presto.spi.connector.ConnectorPageSourceProvider;
 import com.facebook.presto.spi.connector.ConnectorRecordSetProvider;
 import com.facebook.presto.spi.connector.ConnectorRecordSinkProvider;
 import com.facebook.presto.spi.connector.ConnectorSplitManager;
-import com.facebook.presto.spi.security.TransactionalConnectorAccessControl;
 import com.facebook.presto.split.PageSinkManager;
 import com.facebook.presto.split.PageSourceManager;
 import com.facebook.presto.split.RecordPageSinkProvider;
@@ -251,7 +251,7 @@ private synchronized void addConnectorInternal(ConnectorType type, String catalo
         requireNonNull(connector.getSessionProperties(), format("Connector %s returned null session properties", connectorId));
         requireNonNull(connector.getTableProperties(), format("Connector %s returned null table properties", connectorId));
 
-        TransactionalConnectorAccessControl accessControl = null;
+        ConnectorAccessControl accessControl = null;
         try {
             accessControl = connector.getAccessControl();
         }

presto-main/src/main/java/com/facebook/presto/security/AccessControlManager.java

@@ -15,11 +15,11 @@
 
 import com.facebook.presto.metadata.QualifiedObjectName;
 import com.facebook.presto.spi.PrestoException;
+import com.facebook.presto.spi.connector.ConnectorAccessControl;
 import com.facebook.presto.spi.connector.ConnectorTransactionHandle;
 import com.facebook.presto.spi.security.Identity;
 import com.facebook.presto.spi.security.SystemAccessControl;
 import com.facebook.presto.spi.security.SystemAccessControlFactory;
-import com.facebook.presto.spi.security.TransactionalConnectorAccessControl;
 import com.facebook.presto.transaction.TransactionId;
 import com.facebook.presto.transaction.TransactionManager;
 import com.google.common.annotations.VisibleForTesting;
@@ -101,7 +101,7 @@ public void addSystemAccessControlFactory(SystemAccessControlFactory accessContr
         }
     }
 
-    public void addCatalogAccessControl(String connectorId, String catalogName, TransactionalConnectorAccessControl accessControl)
+    public void addCatalogAccessControl(String connectorId, String catalogName, ConnectorAccessControl accessControl)
     {
         requireNonNull(connectorId, "connectorId is null");
         requireNonNull(catalogName, "catalogName is null");
@@ -402,15 +402,15 @@ private static Map<String, String> loadProperties(File file)
     private class CatalogAccessControlEntry
     {
         private final String connectorId;
-        private final TransactionalConnectorAccessControl accessControl;
+        private final ConnectorAccessControl accessControl;
 
-        public CatalogAccessControlEntry(String connectorId, TransactionalConnectorAccessControl accessControl)
+        public CatalogAccessControlEntry(String connectorId, ConnectorAccessControl accessControl)
         {
             this.connectorId = requireNonNull(connectorId, "connectorId is null");
             this.accessControl = requireNonNull(accessControl, "accessControl is null");
         }
 
-        public TransactionalConnectorAccessControl getAccessControl()
+        public ConnectorAccessControl getAccessControl()
         {
             return accessControl;
         }

presto-main/src/main/java/com/facebook/presto/security/LegacyConnectorAccessControl.java

@@ -14,19 +14,18 @@
 package com.facebook.presto.security;
 
 import com.facebook.presto.spi.SchemaTableName;
+import com.facebook.presto.spi.connector.ConnectorAccessControl;
 import com.facebook.presto.spi.connector.ConnectorTransactionHandle;
-import com.facebook.presto.spi.security.ConnectorAccessControl;
 import com.facebook.presto.spi.security.Identity;
-import com.facebook.presto.spi.security.TransactionalConnectorAccessControl;
 
 import static java.util.Objects.requireNonNull;
 
 public class LegacyConnectorAccessControl
-        implements TransactionalConnectorAccessControl
+        implements ConnectorAccessControl
 {
-    private final ConnectorAccessControl accessControl;
+    private final com.facebook.presto.spi.security.ConnectorAccessControl accessControl;
 
-    public LegacyConnectorAccessControl(ConnectorAccessControl accessControl)
+    public LegacyConnectorAccessControl(com.facebook.presto.spi.security.ConnectorAccessControl accessControl)
     {
         this.accessControl = requireNonNull(accessControl, "accessControl is null");
     }

presto-main/src/main/java/com/facebook/presto/transaction/LegacyTransactionConnector.java

@@ -19,6 +19,7 @@
 import com.facebook.presto.spi.PrestoException;
 import com.facebook.presto.spi.SystemTable;
 import com.facebook.presto.spi.connector.Connector;
+import com.facebook.presto.spi.connector.ConnectorAccessControl;
 import com.facebook.presto.spi.connector.ConnectorIndexProvider;
 import com.facebook.presto.spi.connector.ConnectorMetadata;
 import com.facebook.presto.spi.connector.ConnectorPageSinkProvider;
@@ -27,7 +28,6 @@
 import com.facebook.presto.spi.connector.ConnectorRecordSinkProvider;
 import com.facebook.presto.spi.connector.ConnectorSplitManager;
 import com.facebook.presto.spi.connector.ConnectorTransactionHandle;
-import com.facebook.presto.spi.security.TransactionalConnectorAccessControl;
 import com.facebook.presto.spi.session.PropertyMetadata;
 import com.facebook.presto.spi.transaction.IsolationLevel;
 
@@ -134,7 +134,7 @@ public List<PropertyMetadata<?>> getTableProperties()
     }
 
     @Override
-    public TransactionalConnectorAccessControl getAccessControl()
+    public ConnectorAccessControl getAccessControl()
     {
         return new LegacyConnectorAccessControl(connector.getAccessControl());
     }

presto-main/src/test/java/com/facebook/presto/security/TestAccessControlManager.java

@@ -18,13 +18,13 @@
 import com.facebook.presto.spi.PrestoException;
 import com.facebook.presto.spi.SchemaTableName;
 import com.facebook.presto.spi.connector.Connector;
+import com.facebook.presto.spi.connector.ConnectorAccessControl;
 import com.facebook.presto.spi.connector.ConnectorMetadata;
 import com.facebook.presto.spi.connector.ConnectorSplitManager;
 import com.facebook.presto.spi.connector.ConnectorTransactionHandle;
 import com.facebook.presto.spi.security.Identity;
 import com.facebook.presto.spi.security.SystemAccessControl;
 import com.facebook.presto.spi.security.SystemAccessControlFactory;
-import com.facebook.presto.spi.security.TransactionalConnectorAccessControl;
 import com.facebook.presto.spi.transaction.IsolationLevel;
 import com.facebook.presto.transaction.TransactionManager;
 import com.google.common.collect.ImmutableMap;
@@ -198,7 +198,7 @@ public void checkCanSetSystemSessionProperty(Identity identity, String propertyN
     }
 
     private static class DenyConnectorAccessControl
-            implements TransactionalConnectorAccessControl
+            implements ConnectorAccessControl
     {
         @Override
         public void checkCanSelectFromTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName)

presto-spi/src/main/java/com/facebook/presto/spi/connector/Connector.java

@@ -15,7 +15,6 @@
 
 import com.facebook.presto.spi.ConnectorHandleResolver;
 import com.facebook.presto.spi.SystemTable;
-import com.facebook.presto.spi.security.TransactionalConnectorAccessControl;
 import com.facebook.presto.spi.session.PropertyMetadata;
 import com.facebook.presto.spi.transaction.IsolationLevel;
 
@@ -105,7 +104,7 @@ default List<PropertyMetadata<?>> getTableProperties()
     /**
      * @throws UnsupportedOperationException if this connector does not have an access control
      */
-    default TransactionalConnectorAccessControl getAccessControl()
+    default ConnectorAccessControl getAccessControl()
     {
         throw new UnsupportedOperationException();
     }

presto-spi/src/main/java/com/facebook/presto/spi/security/TransactionalConnectorAccessControl.java → presto-spi/src/main/java/com/facebook/presto/spi/connector/ConnectorAccessControl.java

@@ -11,76 +11,76 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-package com.facebook.presto.spi.security;
+package com.facebook.presto.spi.connector;
 
 import com.facebook.presto.spi.SchemaTableName;
-import com.facebook.presto.spi.connector.ConnectorTransactionHandle;
+import com.facebook.presto.spi.security.Identity;
 
-public interface TransactionalConnectorAccessControl
+public interface ConnectorAccessControl
 {
     /**
      * Check if identity is allowed to create the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanCreateTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to drop the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanDropTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to rename the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanRenameTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName, SchemaTableName newTableName);
 
     /**
      * Check if identity is allowed to add columns to the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanAddColumn(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to rename a column in the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanRenameColumn(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to select from the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanSelectFromTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to insert into the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanInsertIntoTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to delete from the specified table in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanDeleteFromTable(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName tableName);
 
     /**
      * Check if identity is allowed to create the specified view in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanCreateView(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName viewName);
 
     /**
      * Check if identity is allowed to drop the specified view in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanDropView(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName viewName);
 
     /**
      * Check if identity is allowed to select from the specified view in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanSelectFromView(ConnectorTransactionHandle transactionHandle, Identity identity, SchemaTableName viewName);
 
@@ -98,7 +98,7 @@ public interface TransactionalConnectorAccessControl
 
     /**
      * Check if identity is allowed to set the specified property in this catalog.
-     * @throws AccessDeniedException if not allowed
+     * @throws com.facebook.presto.spi.security.AccessDeniedException if not allowed
      */
     void checkCanSetCatalogSessionProperty(Identity identity, String propertyName);
 }