public CompositePermissionCheck build() { validate(); CompositePermissionCheck permissionCheck = new CompositePermissionCheck(disjunctive); permissionCheck.setAtomicChecks(atomicChecks); permissionCheck.setCompositeChecks(compositeChecks); return permissionCheck; }
public void addAtomicPermissionCheck(PermissionCheck permissionCheck) { permissionChecks.addAtomicCheck(permissionCheck); }
public List<PermissionCheck> getAllPermissionChecks() { List<PermissionCheck> allChecks = new ArrayList<PermissionCheck>(); allChecks.addAll(atomicChecks); for (CompositePermissionCheck compositePermissionCheck : compositeChecks) { allChecks.addAll(compositePermissionCheck.getAllPermissionChecks()); } return allChecks; } }
public AuthorizationCheck(String authUserId, List<String> authGroupIds, List<PermissionCheck> permissionChecks, boolean isRevokeAuthorizationCheckEnabled) { this.authUserId = authUserId; this.authGroupIds = authGroupIds; this.permissionChecks.setAtomicChecks(permissionChecks); this.isRevokeAuthorizationCheckEnabled = isRevokeAuthorizationCheckEnabled; }
public void configureQuery(ListQueryParameterObject query) { AuthorizationCheck authCheck = query.getAuthCheck(); authCheck.getPermissionChecks().clear(); if(isAuthCheckExecuted()) { Authentication currentAuthentication = getCurrentAuthentication(); authCheck.setAuthUserId(currentAuthentication.getUserId()); authCheck.setAuthGroupIds(currentAuthentication.getGroupIds()); enableQueryAuthCheck(authCheck); } else { authCheck.setAuthorizationCheckEnabled(false); authCheck.setAuthUserId(null); authCheck.setAuthGroupIds(null); } }
public AuthorizationCheck(String authUserId, List<String> authGroupIds, List<PermissionCheck> permissionChecks, boolean isRevokeAuthorizationCheckEnabled) { this.authUserId = authUserId; this.authGroupIds = authGroupIds; this.permissionChecks.setAtomicChecks(permissionChecks); this.isRevokeAuthorizationCheckEnabled = isRevokeAuthorizationCheckEnabled; }
public void configureQuery(ListQueryParameterObject query) { AuthorizationCheck authCheck = query.getAuthCheck(); authCheck.getPermissionChecks().clear(); if(isAuthCheckExecuted()) { Authentication currentAuthentication = getCurrentAuthentication(); authCheck.setAuthUserId(currentAuthentication.getUserId()); authCheck.setAuthGroupIds(currentAuthentication.getGroupIds()); enableQueryAuthCheck(authCheck); } else { authCheck.setAuthorizationCheckEnabled(false); authCheck.setAuthUserId(null); authCheck.setAuthGroupIds(null); } }
public CompositePermissionCheck build() { validate(); CompositePermissionCheck permissionCheck = new CompositePermissionCheck(disjunctive); permissionCheck.setAtomicChecks(atomicChecks); permissionCheck.setCompositeChecks(compositeChecks); return permissionCheck; }
public List<PermissionCheck> getAllPermissionChecks() { List<PermissionCheck> allChecks = new ArrayList<PermissionCheck>(); allChecks.addAll(atomicChecks); for (CompositePermissionCheck compositePermissionCheck : compositeChecks) { allChecks.addAll(compositePermissionCheck.getAllPermissionChecks()); } return allChecks; } }
public void setAtomicPermissionChecks(List<PermissionCheck> permissionChecks) { this.permissionChecks.setAtomicChecks(permissionChecks); }
public void configureQuery(ListQueryParameterObject query) { AuthorizationCheck authCheck = query.getAuthCheck(); authCheck.getPermissionChecks().clear(); if(isAuthCheckExecuted()) { Authentication currentAuthentication = getCurrentAuthentication(); authCheck.setAuthUserId(currentAuthentication.getUserId()); authCheck.setAuthGroupIds(currentAuthentication.getGroupIds()); enableQueryAuthCheck(authCheck); } else { authCheck.setAuthorizationCheckEnabled(false); authCheck.setAuthUserId(null); authCheck.setAuthGroupIds(null); } }
public void addAtomicPermissionCheck(PermissionCheck permissionCheck) { permissionChecks.addAtomicCheck(permissionCheck); }
public CompositePermissionCheck build() { validate(); CompositePermissionCheck permissionCheck = new CompositePermissionCheck(disjunctive); permissionCheck.setAtomicChecks(atomicChecks); permissionCheck.setCompositeChecks(compositeChecks); return permissionCheck; }
public void checkAuthorization(CompositePermissionCheck compositePermissionCheck) { if(isAuthCheckExecuted()) { Authentication currentAuthentication = getCurrentAuthentication(); String userId = currentAuthentication.getUserId(); boolean isAuthorized = isAuthorized(compositePermissionCheck); if (!isAuthorized) { List<MissingAuthorization> missingAuthorizations = new ArrayList<MissingAuthorization>(); for (PermissionCheck check: compositePermissionCheck.getAllPermissionChecks()) { missingAuthorizations.add(new MissingAuthorization( check.getPermission().getName(), check.getResource().resourceName(), check.getResourceId())); } throw new AuthorizationException(userId, missingAuthorizations); } } }
public void setAtomicPermissionChecks(List<PermissionCheck> permissionChecks) { this.permissionChecks.setAtomicChecks(permissionChecks); }
public void addAtomicPermissionCheck(PermissionCheck permissionCheck) { permissionChecks.addAtomicCheck(permissionCheck); }
public void checkAuthorization(CompositePermissionCheck compositePermissionCheck) { if(isAuthCheckExecuted()) { Authentication currentAuthentication = getCurrentAuthentication(); String userId = currentAuthentication.getUserId(); boolean isAuthorized = isAuthorized(compositePermissionCheck); if (!isAuthorized) { List<MissingAuthorization> missingAuthorizations = new ArrayList<MissingAuthorization>(); for (PermissionCheck check: compositePermissionCheck.getAllPermissionChecks()) { missingAuthorizations.add(new MissingAuthorization( check.getPermission().getName(), check.getResource().resourceName(), check.getResourceId())); } throw new AuthorizationException(userId, missingAuthorizations); } } }
public AuthorizationCheck(String authUserId, List<String> authGroupIds, List<PermissionCheck> permissionChecks, boolean isRevokeAuthorizationCheckEnabled) { this.authUserId = authUserId; this.authGroupIds = authGroupIds; this.permissionChecks.setAtomicChecks(permissionChecks); this.isRevokeAuthorizationCheckEnabled = isRevokeAuthorizationCheckEnabled; }
public boolean isAuthorized(String userId, List<String> groupIds, CompositePermissionCheck compositePermissionCheck) { for (PermissionCheck permissionCheck : compositePermissionCheck.getAllPermissionChecks()) { if (!isResourceValidForPermission(permissionCheck)) { throw LOG.invalidResourceForPermission(permissionCheck.getResource().resourceName(), permissionCheck.getPermission().getName()); } } List<String> filteredGroupIds = filterAuthenticatedGroupIds(groupIds); boolean isRevokeAuthorizationCheckEnabled = isRevokeAuthCheckEnabled(userId, groupIds); AuthorizationCheck authCheck = new AuthorizationCheck(userId, filteredGroupIds, compositePermissionCheck, isRevokeAuthorizationCheckEnabled); return getDbEntityManager().selectBoolean("isUserAuthorizedForResource", authCheck); }
public void setAtomicPermissionChecks(List<PermissionCheck> permissionChecks) { this.permissionChecks.setAtomicChecks(permissionChecks); }