Validate document URI

goneall · goneall · commit 75641f772dfa · 2025-04-16T14:44:11.000-07:00
Fixes #22
diff --git a/src/main/java/org/spdx/library/model/v2/SpdxDocument.java b/src/main/java/org/spdx/library/model/v2/SpdxDocument.java
@@ -330,6 +330,12 @@ protected List<String> _verify(Set<String> verifiedIds, String verifySpecVersion
 		} catch (InvalidSPDXAnalysisException e) {
 			retval.add("Error getting document describes: "+e.getMessage());
 		}
+		// document namespace
+		try {
+			java.net.URI uri = new java.net.URI(getDocumentUri());
+		} catch (java.net.URISyntaxException e) {
+			retval.add(String.format("Document namespace %s is not a valid URI", getDocumentUri()));
+		}
 		//TODO: Figure out what to do with checking any "dangling items" not linked to the describes by
 		return retval;
 	}
diff --git a/src/test/java/org/spdx/library/model/compat/v2/SpdxDocumentTest.java b/src/test/java/org/spdx/library/model/compat/v2/SpdxDocumentTest.java
@@ -387,9 +387,39 @@ public void testVerify() throws InvalidSPDXAnalysisException {
 		assertEquals(2, result.size());
 	}
 
-	/**
-	 * Test method for {@link org.spdx.library.model.compat.v2.compat.v2.SpdxDocument#getDocumentDescribes()}.
-	 */
+	public void testVerifyBadDocNamespace() throws InvalidSPDXAnalysisException {
+		SpdxDocument doc = new SpdxDocument(DefaultModelStore.getDefaultModelStore(), "://bad/uri", gmo.getCopyManager(), true);
+		doc.setStrict(false);
+		List<Annotation> annotations = Arrays.asList(new Annotation[] {
+				ANNOTATION1, ANNOTATION2
+		});
+		List<ExtractedLicenseInfo> extractedLicenseInfos = Arrays.asList(new ExtractedLicenseInfo[] {
+				LICENSE1, LICENSE2
+		});
+		List<SpdxItem> items = Arrays.asList(new SpdxItem[] {
+				FILE1, FILE2, PACKAGE1, PACKAGE2
+		});
+		List<Relationship> relationships = Arrays.asList(new Relationship[] {
+				RELATIONSHIP1, RELATIONSHIP2
+		});
+		doc.setAnnotations(annotations);
+		doc.setComment(DOC_COMMENT1);
+		doc.setCreationInfo(CREATIONINFO1);
+		doc.setDataLicense(CCO_DATALICENSE);
+		doc.setExtractedLicenseInfos(extractedLicenseInfos);
+		doc.setName(DOC_NAME1);
+		doc.setRelationships(relationships);
+		doc.setDocumentDescribes(items);
+		doc.setSpecVersion(Version.TWO_POINT_THREE_VERSION);
+		List<String> result = doc.verify();
+		assertEquals(1, result.size());
+		assertTrue(result.get(0).contains("namespace"));
+	}
+
+
+		/**
+         * Test method for {@link org.spdx.library.model.compat.v2.compat.v2.SpdxDocument#getDocumentDescribes()}.
+         */
 	public void testGetDocumentDescribes() throws InvalidSPDXAnalysisException {
 		SpdxDocument doc = new SpdxDocument(DefaultModelStore.getDefaultModelStore(), DefaultModelStore.getDefaultDocumentUri(), gmo.getCopyManager(), true);
 		doc.setStrict(false);

Original file line number	Diff line number	Diff line change
`@@ -330,6 +330,12 @@ protected List<String> _verify(Set<String> verifiedIds, String verifySpecVersion`
`330`	`330`	`} catch (InvalidSPDXAnalysisException e) {`
`331`	`331`	`retval.add("Error getting document describes: "+e.getMessage());`
`332`	`332`	`}`
	`333`	`+ // document namespace`
	`334`	`+ try {`
	`335`	`+ java.net.URI uri = new java.net.URI(getDocumentUri());`
	`336`	`+ } catch (java.net.URISyntaxException e) {`
	`337`	`+ retval.add(String.format("Document namespace %s is not a valid URI", getDocumentUri()));`
	`338`	`+ }`
`333`	`339`	`//TODO: Figure out what to do with checking any "dangling items" not linked to the describes by`
`334`	`340`	`return retval;`
`335`	`341`	`}`