[ZEPPELIN-5934] Check notebook folder permissions before allowing to rename, remove or restore it

[idzikovsky]

What is this PR for?

Users who are able to see notes in some directory can rename, move to trash and remove from trash that directory without being owner or having write permissions for notes in that directory.
This is resolved in first commit.

Secondly, after renaming directory to the name of already existing directory, old notes in target directory become unaccessible (in fact those notes are removed in file system, but still visible in UI as they are present in NoteManager registry).
This addresses 2nd point in ZEPPELIN-5333.
Fixed in 2nd commit.

What type of PR is it?

Improvement

What is the Jira issue?

• ZEPPELIN-5934
• ZEPPELIN-5333.

How should this be tested?

• I've tested this manually by creating some note in directory, giving read permission to it for some other user, and checking whether that user can move to trash, remove, rename or restore directory with that note.
• I've checked and it does not seem like there are available infrastructure in NotebookServiceTest or in NoteManagerTest to cover multi-user scenarios.

[idzikovsky]

Sorry, I made this PR on top of 0.10.1 version, and it seems like something has been changed in this filed in master branch since then.
Now I have local fix of this issue for master branch. I'll update the PR as soon as I have successful run of tests.

[idzikovsky]

Issues in my last comment were resolved in the latest commit.

[jongyoul]

before returning, shouldn't we call callback.onFailure?

[jongyoul]

Oh, I see this code but we'd better move this code outside of this method because it's only adopted when failure. I think it would be good to make it clear the purpose of this method and callbak.onFailure doesn't seem to be the purpose of this method.

[jongyoul]

Thank you for your contribution. It looks good to me except for the minor comments. Could you please address the comment?

[jongyoul]

BTW, there are no tests for the features. Could you please add tests for your feature?

[Reamer]

I think it is not a good idea to add the logic regarding the rights in the service. Furthermore, information on Notes are leaked, where a user may not have access at all.

[Reamer]

I don't think it's a good idea to give the folder object to the outside. Do you see a way to do the permissions check in the NoteManager class?

Currently there are already some checks in the NoteManager class.

zeppelin/zeppelin-zengine/src/main/java/org/apache/zeppelin/notebook/NoteManager.java

Lines 230 to 232 in 55a614a

	if (!isNotePathAvailable(newNotePath)) {
	throw new NotePathAlreadyExistsException("Note '" + newNotePath + "' existed");
	}