public void grantRole(AuthenticatedUser performer, RoleResource role, RoleResource grantee) throws RequestValidationException, RequestExecutionException { if (getRoles(grantee, true).contains(role)) throw new InvalidRequestException(String.format("%s is a member of %s", grantee.getRoleName(), role.getRoleName())); if (getRoles(role, true).contains(grantee)) throw new InvalidRequestException(String.format("%s is a member of %s", role.getRoleName(), grantee.getRoleName())); modifyRoleMembership(grantee.getRoleName(), role.getRoleName(), "+"); process(String.format("INSERT INTO %s.%s (role, member) values ('%s', '%s')", SchemaConstants.AUTH_KEYSPACE_NAME, AuthKeyspace.ROLE_MEMBERS, escape(role.getRoleName()), escape(grantee.getRoleName())), consistencyForRole(role.getRoleName())); }
public void grantRole(AuthenticatedUser performer, RoleResource role, RoleResource grantee) throws RequestValidationException, RequestExecutionException { if (getRoles(grantee, true).contains(role)) throw new InvalidRequestException(String.format("%s is a member of %s", grantee.getRoleName(), role.getRoleName())); if (getRoles(role, true).contains(grantee)) throw new InvalidRequestException(String.format("%s is a member of %s", role.getRoleName(), grantee.getRoleName())); modifyRoleMembership(grantee.getRoleName(), role.getRoleName(), "+"); process(String.format("INSERT INTO %s.%s (role, member) values ('%s', '%s')", SchemaConstants.AUTH_KEYSPACE_NAME, AuthKeyspace.ROLE_MEMBERS, escape(role.getRoleName()), escape(grantee.getRoleName())), consistencyForRole(role.getRoleName())); }
public void grantRole(AuthenticatedUser performer, RoleResource role, RoleResource grantee) throws RequestValidationException, RequestExecutionException { if (getRoles(grantee, true).contains(role)) throw new InvalidRequestException(String.format("%s is a member of %s", grantee.getRoleName(), role.getRoleName())); if (getRoles(role, true).contains(grantee)) throw new InvalidRequestException(String.format("%s is a member of %s", role.getRoleName(), grantee.getRoleName())); modifyRoleMembership(grantee.getRoleName(), role.getRoleName(), "+"); process(String.format("INSERT INTO %s.%s (role, member) values ('%s', '%s')", SchemaConstants.AUTH_KEYSPACE_NAME, AuthKeyspace.ROLE_MEMBERS, escape(role.getRoleName()), escape(grantee.getRoleName())), consistencyForRole(role.getRoleName())); }
public void revokeRole(AuthenticatedUser performer, RoleResource role, RoleResource revokee) throws RequestValidationException, RequestExecutionException { if (!getRoles(revokee, false).contains(role)) throw new InvalidRequestException(String.format("%s is not a member of %s", revokee.getRoleName(), role.getRoleName())); modifyRoleMembership(revokee.getRoleName(), role.getRoleName(), "-"); process(String.format("DELETE FROM %s.%s WHERE role = '%s' and member = '%s'", SchemaConstants.AUTH_KEYSPACE_NAME, AuthKeyspace.ROLE_MEMBERS, escape(role.getRoleName()), escape(revokee.getRoleName())), consistencyForRole(role.getRoleName())); }
public void revokeRole(AuthenticatedUser performer, RoleResource role, RoleResource revokee) throws RequestValidationException, RequestExecutionException { if (!getRoles(revokee, false).contains(role)) throw new InvalidRequestException(String.format("%s is not a member of %s", revokee.getRoleName(), role.getRoleName())); modifyRoleMembership(revokee.getRoleName(), role.getRoleName(), "-"); process(String.format("DELETE FROM %s.%s WHERE role = '%s' and member = '%s'", SchemaConstants.AUTH_KEYSPACE_NAME, AuthKeyspace.ROLE_MEMBERS, escape(role.getRoleName()), escape(revokee.getRoleName())), consistencyForRole(role.getRoleName())); }
public void revokeRole(AuthenticatedUser performer, RoleResource role, RoleResource revokee) throws RequestValidationException, RequestExecutionException { if (!getRoles(revokee, false).contains(role)) throw new InvalidRequestException(String.format("%s is not a member of %s", revokee.getRoleName(), role.getRoleName())); modifyRoleMembership(revokee.getRoleName(), role.getRoleName(), "-"); process(String.format("DELETE FROM %s.%s WHERE role = '%s' and member = '%s'", SchemaConstants.AUTH_KEYSPACE_NAME, AuthKeyspace.ROLE_MEMBERS, escape(role.getRoleName()), escape(revokee.getRoleName())), consistencyForRole(role.getRoleName())); }