/** * Create a role based on a name without any attributes. * * @param name name of role * @return a new role instance */ public static Role create(String name) { return builder().name(name).build(); }
@Override public Role build() { return new Role(this); } }
@Override public void runAs(String role, Runnable runnable) { Subject currentSubject = this.currentSubject; Subject runAsSubject = Subject.builder() .principal(currentSubject.principal()) .addGrant(Role.create(role)) .build(); runAs(runAsSubject, runnable); }
private Subject buildSubject(UserStore.User user) { Subject.Builder builder = Subject.builder() .principal(Principal.builder() .name(user.login()) .build()) .addPrivateCredential(UserStore.User.class, user); user.roles() .forEach(role -> builder.addGrant(Role.create(role))); return builder.build(); }
private Subject buildSubject(UserStore.User user) { Subject.Builder builder = Subject.builder() .principal(Principal.builder() .name(user.login()) .build()) .addPrivateCredential(UserStore.User.class, user); user.roles() .forEach(role -> builder.addGrant(Role.create(role))); return builder.build(); }
String groupRef = groupJson.getString("$ref"); Role role = Role.builder() .name(groupName) .addAttribute("groupId", groupId)
Subject buildSubject(Jwt jwt, SignedJwt signedJwt) { JsonWebTokenImpl principal = buildPrincipal(jwt, signedJwt); TokenCredential.Builder builder = TokenCredential.builder(); jwt.issueTime().ifPresent(builder::issueTime); jwt.expirationTime().ifPresent(builder::expTime); jwt.issuer().ifPresent(builder::issuer); builder.token(signedJwt.tokenContent()); builder.addToken(JsonWebToken.class, principal); builder.addToken(Jwt.class, jwt); builder.addToken(SignedJwt.class, signedJwt); Subject.Builder subjectBuilder = Subject.builder() .principal(principal) .addPublicCredential(TokenCredential.class, builder.build()); Optional<List<String>> userGroups = jwt.userGroups(); userGroups.ifPresent(groups -> groups.forEach(group -> subjectBuilder.addGrant(Role.create(group)))); Optional<List<String>> scopes = jwt.scopes(); scopes.ifPresent(scopeList -> scopeList.forEach(scope -> subjectBuilder.addGrant(Grant.builder() .name(scope) .type("scope") .build()))); return subjectBuilder.build(); }
Subject buildSubject(Jwt jwt, SignedJwt signedJwt) { JsonWebTokenImpl principal = buildPrincipal(jwt, signedJwt); TokenCredential.Builder builder = TokenCredential.builder(); jwt.issueTime().ifPresent(builder::issueTime); jwt.expirationTime().ifPresent(builder::expTime); jwt.issuer().ifPresent(builder::issuer); builder.token(signedJwt.tokenContent()); builder.addToken(JsonWebToken.class, principal); builder.addToken(Jwt.class, jwt); builder.addToken(SignedJwt.class, signedJwt); Subject.Builder subjectBuilder = Subject.builder() .principal(principal) .addPublicCredential(TokenCredential.class, builder.build()); Optional<List<String>> userGroups = jwt.userGroups(); userGroups.ifPresent(groups -> groups.forEach(group -> subjectBuilder.addGrant(Role.create(group)))); Optional<List<String>> scopes = jwt.scopes(); scopes.ifPresent(scopeList -> scopeList.forEach(scope -> subjectBuilder.addGrant(Grant.builder() .name(scope) .type("scope") .build()))); return subjectBuilder.build(); }