@Override protected String getUser(ApiRequest request, Object response) { return ApiUtils.getPolicy().getUserName(); }
@Override protected Resource constructResource(final IdFormatter idFormatter, SchemaFactory schemaFactory, final Schema schema, Object obj, ApiRequest apiRequest) { return ApiUtils.createResourceWithAttachments(this, apiRequest, idFormatter, schemaFactory, schema, obj, new HashMap<String, Object>()); }
String key = ApiUtils.getAttachementKey(rootObject, id); if (key == null) { return; ApiUtils.addAttachement(key, entry.getKey(), entry.getValue());
protected ResourceDefinition newResource(String name, Include include) { ResourceDefinition def = new ResourceDefinition(name); if (include != null) { for (String link : include.getLinks()) { for (Object obj : getLinkInternal(def, link, null)) { ApiUtils.addAttachement(def, link, obj); } } } return def; }
@Override protected Object authorize(Object object) { return ApiUtils.authorize(object); }
@Override public Object transform(Object input) { input = ApiUtils.authorize(input); if (input == null) return null; return resourceManager.convertResponse(input, request); } });
public static <T> List<T> authorize(List<T> list) { return getPolicy().authorizeList(list); }
@Override protected Resource constructResource(IdFormatter idFormatter, SchemaFactory schemaFactory, Schema schema, Object obj, ApiRequest apiRequest) { Map<String, Object> transitioningFields = metaDataManager.getTransitionFields(schema, obj); return ApiUtils.createResourceWithAttachments(this, apiRequest, idFormatter, schemaFactory, schema, obj, transitioningFields); }
private void validateInfraAccess(String type) { if (REG_TOKEN.equalsIgnoreCase(type) && !infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())) { throw new ClientVisibleException(ResponseCodes.FORBIDDEN, "Forbidden", "Cannot access registrationToken", null); } } }
private void validateInfraAccess(ApiRequest request, String action) { if (!infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())) { String message = String.format("Cannot %s machine", action); throw new ClientVisibleException(ResponseCodes.FORBIDDEN, "Forbidden", message, null); } } }
public SettingsFilter(List<String> publicSettings, ApiRequest apiRequest) { String value = null; Map<String, Object> params = apiRequest == null ? null : apiRequest.getRequestParams(); if (params != null) { value = RequestUtils.getSingularStringValue("all", params); } this.publicSettings = new HashSet<>(publicSettings); this.all = value == null || !value.toString().equalsIgnoreCase("false"); this.canListAll = "true".equals(ApiUtils.getPolicy().getOption(Policy.LIST_ALL_SETTINGS)); }
private void validateInfraAccess(ApiRequest request, String action) { if (!infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())) { String message = String.format("Cannot %s host", action); throw new ClientVisibleException(ResponseCodes.FORBIDDEN, "Forbidden", message, null); } } }
private Stack validateInfraAccess(ApiRequest request, String action, Stack stack, Service service) { if (ObjectUtils.isSystem(stack) && !infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())) { String message = String.format("Cannot %s system service", action); throw new ClientVisibleException(ResponseCodes.FORBIDDEN, "Forbidden", message, null); } return stack; } }
private void validateInfraAccess(ApiRequest request, Stack stack, String action) { if (stack.getSystem() && !infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())) { String message = String.format("Cannot %s system stack", action); throw new ClientVisibleException(ResponseCodes.FORBIDDEN, "Forbidden", message, null); } }
private void validateInfraAccess(Object instance, String action) { if (ObjectUtils.isSystem(instance) && !infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())) { String message = String.format("Cannot %s system container", action); throw new ClientVisibleException(ResponseCodes.FORBIDDEN, "Forbidden", message, null); } }
@Override public Resource filter(ApiRequest request, Object original, Resource converted) { boolean add = false; if (original instanceof PhysicalHost || original instanceof Host) { if (StringUtils.isNotEmpty((String) DataUtils.getFields(original).get(EXTRACTED_CONFIG_FIELD))) { add = infraAccess.canModifyInfrastructure(ApiUtils.getPolicy()); } if (!add && original instanceof Host && StringUtils.isNotEmpty((String) converted.getFields().get(MachineConstants.FIELD_DRIVER))) { add = infraAccess.canModifyInfrastructure(ApiUtils.getPolicy()); } } if (add) { converted.getLinks().put(CONFIG_LINK, ApiContext.getUrlBuilder().resourceLink(converted, CONFIG_LINK)); } return converted; }
public static Host getHostFromContainer(ObjectManager objectManager, Instance instance, String hostKind) { Host found = null; for (Host host : objectManager.mappedChildren(instance, Host.class)) { found = host; } if (found != null) { found = ApiUtils.getPolicy().authorizeObject(found); } if (found == null) { return null; } if (hostKind != null && !hostKind.equals(found.getKind())) { return null; } return found; }
boolean add = infraAccess.canModifyInfrastructure(ApiUtils.getPolicy()); for (Map.Entry<String, Object> entry : phFields.entrySet()) { if (entry.getValue() == null || MachineConstants.EXTRACTED_CONFIG_FIELD.equals(entry.getKey())) {
@Override public Object link(String name, Object obj, ApiRequest request) throws IOException { if (!infraAccess.canModifyInfrastructure(ApiUtils.getPolicy())){ throw new ClientVisibleException(ResponseCodes.UNAUTHORIZED);