Add user permission api changes

Author: mpv1989

ChangeLog

@@ -1,3 +1,8 @@
+v4.2.2 (xxxx-xx-xx)
+---------------------------
+* added ArangoDatabase.grantAccess(String, Permissions)
+* added ArangoCollection.grantAccess(String, Permissions)
+
 v4.2.1 (2017-06-20)
 ---------------------------
 * fixed deserializing of internal field _id

src/main/java/com/arangodb/ArangoCollection.java

@@ -34,6 +34,7 @@
 import com.arangodb.entity.DocumentUpdateEntity;
 import com.arangodb.entity.IndexEntity;
 import com.arangodb.entity.MultiDocumentEntity;
+import com.arangodb.entity.Permissions;
 import com.arangodb.internal.ArangoExecutorSync;
 import com.arangodb.internal.InternalArangoCollection;
 import com.arangodb.internal.velocystream.internal.ConnectionSync;
@@ -796,4 +797,21 @@ public CollectionRevisionEntity getRevision() throws ArangoDBException {
 		return executor.execute(getRevisionRequest(), CollectionRevisionEntity.class);
 	}
 
+	/**
+	 * Grants or revoke access to the collection for user user. You need permission to the _system database in order to
+	 * execute this call.
+	 * 
+	 * @see <a href=
+	 *      "https://docs.arangodb.com/current/HTTP/UserManagement/index.html#grant-or-revoke-collection-access"> API
+	 *      Documentation</a>
+	 * @param user
+	 *            The name of the user
+	 * @param permissions
+	 *            The permissions the user grant
+	 * @throws ArangoDBException
+	 */
+	public void grantAccess(final String user, final Permissions permissions) throws ArangoDBException {
+		executor.execute(grantAccessRequest(user, permissions), Void.class);
+	}
+
 }

src/main/java/com/arangodb/ArangoDatabase.java

@@ -33,6 +33,7 @@
 import com.arangodb.entity.EdgeDefinition;
 import com.arangodb.entity.GraphEntity;
 import com.arangodb.entity.IndexEntity;
+import com.arangodb.entity.Permissions;
 import com.arangodb.entity.QueryCachePropertiesEntity;
 import com.arangodb.entity.QueryEntity;
 import com.arangodb.entity.QueryTrackingPropertiesEntity;
@@ -214,31 +215,51 @@ public Boolean drop() throws ArangoDBException {
 	}
 
 	/**
-	 * Grants access to the database dbname for user user. You need permission to the _system database in order to
+	 * Grants or revoke access to the database for user user. You need permission to the _system database in order to
 	 * execute this call.
 	 * 
 	 * @see <a href= "https://docs.arangodb.com/current/HTTP/UserManagement/index.html#grant-or-revoke-database-access">
 	 *      API Documentation</a>
 	 * @param user
 	 *            The name of the user
+	 * @param permissions
+	 *            The permissions the user grant
 	 * @throws ArangoDBException
 	 */
+	public void grantAccess(final String user, final Permissions permissions) throws ArangoDBException {
+		executor.execute(grantAccessRequest(user, permissions), Void.class);
+	}
+
+	/**
+	 * Grants access to the database for user user. You need permission to the _system database in order to execute this
+	 * call.
+	 *
+	 * @deprecated use {@link #grantAccess(String, Permissions)} instead
+	 * @see <a href= "https://docs.arangodb.com/current/HTTP/UserManagement/index.html#grant-or-revoke-database-access">
+	 *      API Documentation</a>
+	 * @param user
+	 *            The name of the user
+	 * @throws ArangoDBException
+	 */
+	@Deprecated
 	public void grantAccess(final String user) throws ArangoDBException {
-		executor.execute(grantAccessRequest(user), Void.class);
+		executor.execute(grantAccessRequest(user, Permissions.RW), Void.class);
 	}
 
 	/**
 	 * Revokes access to the database dbname for user user. You need permission to the _system database in order to
 	 * execute this call.
 	 * 
+	 * @deprecated use {@link #grantAccess(String, Permissions)} instead
 	 * @see <a href= "https://docs.arangodb.com/current/HTTP/UserManagement/index.html#grant-or-revoke-database-access">
 	 *      API Documentation</a>
 	 * @param user
 	 *            The name of the user
 	 * @throws ArangoDBException
 	 */
+	@Deprecated
 	public void revokeAccess(final String user) throws ArangoDBException {
-		executor.execute(revokeAccessRequest(user), Void.class);
+		executor.execute(grantAccessRequest(user, Permissions.NONE), Void.class);
 	}
 
 	/**

src/main/java/com/arangodb/entity/Permissions.java

@@ -0,0 +1,44 @@
+/*
+ * DISCLAIMER
+ *
+ * Copyright 2017 ArangoDB GmbH, Cologne, Germany
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * Copyright holder is ArangoDB GmbH, Cologne, Germany
+ */
+
+package com.arangodb.entity;
+
+/**
+ * @author Mark Vollmary
+ *
+ */
+public enum Permissions {
+
+	/**
+	 * read and write access
+	 */
+	RW,
+	/**
+	 * read-only access
+	 */
+	RO,
+	NONE;
+
+	@Override
+	public String toString() {
+		return super.toString().toLowerCase();
+	}
+
+}

src/main/java/com/arangodb/internal/ArangoDBConstants.java

@@ -89,8 +89,6 @@ public class ArangoDBConstants {
 	public static final String COLLECTIONS = "collections";
 	public static final String EXCLUDE_SYSTEM = "excludeSystem";
 	public static final String USER = "user";
-	public static final String RW = "rw";
-	public static final String NONE = "none";
 	public static final String DATABASE = "database";
 	public static final String CURRENT = "current";
 	public static final String INDEXES = "indexes";

src/main/java/com/arangodb/internal/InternalArangoCollection.java

@@ -34,6 +34,7 @@
 import com.arangodb.entity.ErrorEntity;
 import com.arangodb.entity.IndexEntity;
 import com.arangodb.entity.MultiDocumentEntity;
+import com.arangodb.entity.Permissions;
 import com.arangodb.internal.ArangoExecutor.ResponseDeserializer;
 import com.arangodb.internal.velocystream.internal.Connection;
 import com.arangodb.model.CollectionPropertiesOptions;
@@ -52,6 +53,7 @@
 import com.arangodb.model.OptionsBuilder;
 import com.arangodb.model.PersistentIndexOptions;
 import com.arangodb.model.SkiplistIndexOptions;
+import com.arangodb.model.UserAccessOptions;
 import com.arangodb.util.ArangoSerializer;
 import com.arangodb.velocypack.Type;
 import com.arangodb.velocypack.VPackSlice;
@@ -620,4 +622,11 @@ protected Request getRevisionRequest() {
 		return new Request(db.name(), RequestType.GET,
 				executor.createPath(ArangoDBConstants.PATH_API_COLLECTION, name, ArangoDBConstants.REVISION));
 	}
+
+	protected Request grantAccessRequest(final String user, final Permissions permissions) {
+		return new Request(ArangoDBConstants.SYSTEM, RequestType.PUT,
+				executor.createPath(ArangoDBConstants.PATH_API_USER, user, ArangoDBConstants.DATABASE, db.name(), name))
+						.setBody(
+							util().serialize(OptionsBuilder.build(new UserAccessOptions(), permissions.toString())));
+	}
 }

src/main/java/com/arangodb/internal/InternalArangoDatabase.java

@@ -30,6 +30,7 @@
 import com.arangodb.entity.EdgeDefinition;
 import com.arangodb.entity.GraphEntity;
 import com.arangodb.entity.PathEntity;
+import com.arangodb.entity.Permissions;
 import com.arangodb.entity.QueryCachePropertiesEntity;
 import com.arangodb.entity.QueryTrackingPropertiesEntity;
 import com.arangodb.entity.TraversalEntity;
@@ -131,16 +132,10 @@ public Boolean deserialize(final Response response) throws VPackException {
 		};
 	}
 
-	protected Request grantAccessRequest(final String user) {
-		return new Request(ArangoDBConstants.SYSTEM, RequestType.PUT,
-				executor.createPath(ArangoDBConstants.PATH_API_USER, user, ArangoDBConstants.DATABASE, name))
-						.setBody(util().serialize(OptionsBuilder.build(new UserAccessOptions(), ArangoDBConstants.RW)));
-	}
-
-	protected Request revokeAccessRequest(final String user) {
+	protected Request grantAccessRequest(final String user, final Permissions permissions) {
 		return new Request(ArangoDBConstants.SYSTEM, RequestType.PUT,
 				executor.createPath(ArangoDBConstants.PATH_API_USER, user, ArangoDBConstants.DATABASE, name)).setBody(
-					util().serialize(OptionsBuilder.build(new UserAccessOptions(), ArangoDBConstants.NONE)));
+					util().serialize(OptionsBuilder.build(new UserAccessOptions(), permissions.toString())));
 	}
 
 	protected Request queryRequest(

src/test/java/com/arangodb/ArangoCollectionTest.java

@@ -59,6 +59,7 @@
 import com.arangodb.entity.IndexEntity;
 import com.arangodb.entity.IndexType;
 import com.arangodb.entity.MultiDocumentEntity;
+import com.arangodb.entity.Permissions;
 import com.arangodb.entity.ServerRole;
 import com.arangodb.model.CollectionCreateOptions;
 import com.arangodb.model.CollectionPropertiesOptions;
@@ -1784,4 +1785,54 @@ public void alreadyUrlEncodedkey() {
 		assertThat(doc.getKey(), is(key));
 	}
 
+	@Test
+	public void grantAccessRW() {
+		try {
+			arangoDB.createUser("user1", "1234", null);
+			db.collection(COLLECTION_NAME).grantAccess("user1", Permissions.RW);
+		} finally {
+			arangoDB.deleteUser("user1");
+		}
+	}
+
+	@Test
+	public void grantAccessRO() {
+		try {
+			arangoDB.createUser("user1", "1234", null);
+			db.collection(COLLECTION_NAME).grantAccess("user1", Permissions.RO);
+		} finally {
+			arangoDB.deleteUser("user1");
+		}
+	}
+
+	@Test
+	public void grantAccessNONE() {
+		try {
+			arangoDB.createUser("user1", "1234", null);
+			db.collection(COLLECTION_NAME).grantAccess("user1", Permissions.NONE);
+		} finally {
+			arangoDB.deleteUser("user1");
+		}
+	}
+
+	@Test(expected = ArangoDBException.class)
+	public void grantAccessUserNotFound() {
+		db.collection(COLLECTION_NAME).grantAccess("user1", Permissions.RW);
+	}
+
+	@Test
+	public void revokeAccess() {
+		try {
+			arangoDB.createUser("user1", "1234", null);
+			db.collection(COLLECTION_NAME).grantAccess("user1", Permissions.NONE);
+		} finally {
+			arangoDB.deleteUser("user1");
+		}
+	}
+
+	@Test(expected = ArangoDBException.class)
+	public void revokeAccessUserNotFound() {
+		db.collection(COLLECTION_NAME).grantAccess("user1", Permissions.NONE);
+	}
+
 }

src/test/java/com/arangodb/ArangoDatabaseTest.java

@@ -62,6 +62,7 @@
 import com.arangodb.entity.GraphEntity;
 import com.arangodb.entity.IndexEntity;
 import com.arangodb.entity.PathEntity;
+import com.arangodb.entity.Permissions;
 import com.arangodb.entity.QueryCachePropertiesEntity;
 import com.arangodb.entity.QueryCachePropertiesEntity.CacheMode;
 import com.arangodb.entity.QueryEntity;
@@ -303,33 +304,53 @@ public void getCollectionsExcludeSystem() {
 	}
 
 	@Test
-	public void grantAccess() {
+	public void grantAccessRW() {
 		try {
 			arangoDB.createUser("user1", "1234", null);
-			db.grantAccess("user1");
+			db.grantAccess("user1", Permissions.RW);
+		} finally {
+			arangoDB.deleteUser("user1");
+		}
+	}
+
+	@Test
+	public void grantAccessRO() {
+		try {
+			arangoDB.createUser("user1", "1234", null);
+			db.grantAccess("user1", Permissions.RO);
+		} finally {
+			arangoDB.deleteUser("user1");
+		}
+	}
+
+	@Test
+	public void grantAccessNONE() {
+		try {
+			arangoDB.createUser("user1", "1234", null);
+			db.grantAccess("user1", Permissions.NONE);
 		} finally {
 			arangoDB.deleteUser("user1");
 		}
 	}
 
 	@Test(expected = ArangoDBException.class)
 	public void grantAccessUserNotFound() {
-		db.grantAccess("user1");
+		db.grantAccess("user1", Permissions.RW);
 	}
 
 	@Test
 	public void revokeAccess() {
 		try {
 			arangoDB.createUser("user1", "1234", null);
-			db.revokeAccess("user1");
+			db.grantAccess("user1", Permissions.NONE);
 		} finally {
 			arangoDB.deleteUser("user1");
 		}
 	}
 
 	@Test(expected = ArangoDBException.class)
 	public void revokeAccessUserNotFound() {
-		db.revokeAccess("user1");
+		db.grantAccess("user1", Permissions.NONE);
 	}
 
 	@Test