protected void applyFilters(AuthorizationQuery query) { if (id != null) { query.authorizationId(id); } if (type != null) { query.authorizationType(type); } if (userIdIn != null) { query.userIdIn(userIdIn); } if (groupIdIn != null) { query.groupIdIn(groupIdIn); } if (resourceType != null) { query.resourceType(resourceType); } if (resourceId != null) { query.resourceId(resourceId); } }
protected void applyFilters(AuthorizationQuery query) { if (id != null) { query.authorizationId(id); } if (type != null) { query.authorizationType(type); } if (userIdIn != null) { query.userIdIn(userIdIn); } if (groupIdIn != null) { query.groupIdIn(groupIdIn); } if (resourceType != null) { query.resourceType(resourceType); } if (resourceId != null) { query.resourceId(resourceId); } }
@Test public void testCompleteGetParameters() { List<Authorization> mockAuthorizations = MockProvider.createMockGlobalAuthorizations(); AuthorizationQuery mockQuery = setUpMockQuery(mockAuthorizations); Map<String, String> queryParameters = getCompleteStringQueryParameters(); RequestSpecification requestSpecification = given().contentType(POST_JSON_CONTENT_TYPE); for (Entry<String, String> paramEntry : queryParameters.entrySet()) { requestSpecification.parameter(paramEntry.getKey(), paramEntry.getValue()); } requestSpecification.expect().statusCode(Status.OK.getStatusCode()) .when().get(SERVICE_PATH); verify(mockQuery).authorizationId(MockProvider.EXAMPLE_AUTHORIZATION_ID); verify(mockQuery).authorizationType(MockProvider.EXAMPLE_AUTHORIZATION_TYPE); verify(mockQuery).userIdIn(new String[]{MockProvider.EXAMPLE_USER_ID, MockProvider.EXAMPLE_USER_ID2}); verify(mockQuery).groupIdIn(new String[]{MockProvider.EXAMPLE_GROUP_ID, MockProvider.EXAMPLE_GROUP_ID2}); verify(mockQuery).resourceType(MockProvider.EXAMPLE_RESOURCE_TYPE_ID); verify(mockQuery).resourceId(MockProvider.EXAMPLE_RESOURCE_ID); verify(mockQuery).list(); }
if(authorizationService.createAuthorizationQuery().groupIdIn(administratorGroupName).resourceType(resource).resourceId(ANY).count() == 0) { AuthorizationEntity adminGroupAuth = new AuthorizationEntity(AUTH_TYPE_GRANT); adminGroupAuth.setGroupId(administratorGroupName); if(authorizationService.createAuthorizationQuery().userIdIn(administratorUserName).resourceType(resource).resourceId(ANY).count() == 0) { AuthorizationEntity adminUserAuth = new AuthorizationEntity(AUTH_TYPE_GRANT); adminUserAuth.setUserId(administratorUserName);
if(authorizationService.createAuthorizationQuery().groupIdIn(administratorGroupName).resourceType(resource).resourceId(ANY).count() == 0) { AuthorizationEntity adminGroupAuth = new AuthorizationEntity(AUTH_TYPE_GRANT); adminGroupAuth.setGroupId(administratorGroupName); if(authorizationService.createAuthorizationQuery().userIdIn(administratorUserName).resourceType(resource).resourceId(ANY).count() == 0) { AuthorizationEntity adminUserAuth = new AuthorizationEntity(AUTH_TYPE_GRANT); adminUserAuth.setUserId(administratorUserName);
public void testDeleteProcessInstanceClearAuthorization() { // given String processInstanceId = startProcessInstanceByKey(PROCESS_KEY).getId(); createGrantAuthorization(PROCESS_INSTANCE, processInstanceId, userId, ALL); disableAuthorization(); Authorization authorization = authorizationService .createAuthorizationQuery() .resourceId(processInstanceId) .singleResult(); enableAuthorization(); assertNotNull(authorization); // when runtimeService.deleteProcessInstance(processInstanceId, null); // then disableAuthorization(); authorization = authorizationService .createAuthorizationQuery() .resourceId(processInstanceId) .singleResult(); enableAuthorization(); assertNull(authorization); }
@Test public void testCreateTenantGroupMembership() { identityService.createTenantGroupMembership(TENANT_ONE, GROUP_ID); assertEquals(1, authorizationService.createAuthorizationQuery() .groupIdIn(GROUP_ID) .resourceType(Resources.TENANT) .resourceId(TENANT_ONE) .hasPermission(Permissions.READ).count()); identityService.setAuthentication(USER_ID, Collections.singletonList(GROUP_ID)); assertEquals(TENANT_ONE,identityService.createTenantQuery() .singleResult() .getId()); }
public void testStandaloneTaskClearAuthorization() { // given String taskId = "myTask"; createTask(taskId); createGrantAuthorization(TASK, taskId, userId, UPDATE); disableAuthorization(); Authorization authorization = authorizationService .createAuthorizationQuery() .resourceId(taskId) .singleResult(); enableAuthorization(); assertNotNull(authorization); // when taskService.complete(taskId); // then disableAuthorization(); authorization = authorizationService .createAuthorizationQuery() .resourceId(taskId) .singleResult(); enableAuthorization(); assertNull(authorization); deleteTask(taskId, true); }
public void testProcessTaskClearAuthorization() { // given startProcessInstanceByKey(PROCESS_KEY); String taskId = selectSingleTask().getId(); createGrantAuthorization(TASK, taskId, userId, UPDATE); disableAuthorization(); Authorization authorization = authorizationService .createAuthorizationQuery() .resourceId(taskId) .singleResult(); enableAuthorization(); assertNotNull(authorization); // when taskService.complete(taskId); // then disableAuthorization(); authorization = authorizationService .createAuthorizationQuery() .resourceId(taskId) .singleResult(); enableAuthorization(); assertNull(authorization); }
public void testClearProcessInstanceAuthorization() { // given String processInstanceId = startProcessInstanceByKey(PROCESS_KEY).getId(); createGrantAuthorization(PROCESS_INSTANCE, processInstanceId, userId, ALL); createGrantAuthorization(TASK, ANY, userId, ALL); disableAuthorization(); Authorization authorization = authorizationService .createAuthorizationQuery() .resourceId(processInstanceId) .singleResult(); enableAuthorization(); assertNotNull(authorization); String taskId = selectSingleTask().getId(); // when taskService.complete(taskId); // then disableAuthorization(); authorization = authorizationService .createAuthorizationQuery() .resourceId(processInstanceId) .singleResult(); enableAuthorization(); assertNull(authorization); }
assertEquals(2, authorizationService.createAuthorizationQuery().resourceId("resource1-2").list().size()); assertEquals(0, authorizationService.createAuthorizationQuery().resourceId("non-existing").list().size());
@Test public void testCreateTenantUserMembership() { identityService.createTenantUserMembership(TENANT_ONE, USER_ID); assertEquals(1, authorizationService.createAuthorizationQuery() .userIdIn(USER_ID) .resourceType(Resources.TENANT) .resourceId(TENANT_ONE) .hasPermission(Permissions.READ).count()); identityService.setAuthenticatedUserId(USER_ID); assertEquals(TENANT_ONE,identityService.createTenantQuery() .singleResult() .getId()); }
public void testClearAuthorizationOnDeleteDeployment() { // given createGrantAuthorization(DEPLOYMENT, ANY, userId, CREATE); Deployment deployment = repositoryService .createDeployment() .addClasspathResource(FIRST_RESOURCE) .deploy(); String deploymentId = deployment.getId(); AuthorizationQuery query = authorizationService .createAuthorizationQuery() .userIdIn(userId) .resourceId(deploymentId); Authorization authorization = query.singleResult(); assertNotNull(authorization); // when repositoryService.deleteDeployment(deploymentId); authorization = query.singleResult(); assertNull(authorization); deleteDeployment(deploymentId); }
public void testCreateAuthorizationOnDeploy() { // given createGrantAuthorization(DEPLOYMENT, ANY, userId, CREATE); Deployment deployment = repositoryService .createDeployment() .addClasspathResource(FIRST_RESOURCE) .deploy(); // when Authorization authorization = authorizationService .createAuthorizationQuery() .userIdIn(userId) .resourceId(deployment.getId()) .singleResult(); // then assertNotNull(authorization); assertTrue(authorization.isPermissionGranted(READ)); assertTrue(authorization.isPermissionGranted(DELETE)); assertFalse(authorization.isPermissionGranted(UPDATE)); deleteDeployment(deployment.getId()); }
.createAuthorizationQuery() .userIdIn("test") .resourceId(taskId) .singleResult(); enableAuthorization();
public static void addFilterGroupAuthorization(ProcessEngine engine, String groupId, String... filterNames) { for (String filterName : filterNames) { String filterId = useFilter(engine, filterName); long count = engine.getAuthorizationService().createAuthorizationQuery().resourceType(FILTER).resourceId(filterId).groupIdIn(groupId).count(); if (count==0) { Authorization managementGroupFilterRead = engine.getAuthorizationService().createNewAuthorization(Authorization.AUTH_TYPE_GRANT); managementGroupFilterRead.setResource(FILTER); managementGroupFilterRead.setResourceId(filterId); managementGroupFilterRead.addPermission(READ); managementGroupFilterRead.setGroupId(groupId); engine.getAuthorizationService().saveAuthorization(managementGroupFilterRead); } } }
public static void addFilterUserAuthorization(ProcessEngine engine, String userId, String... filterNames) { for (String filterName : filterNames) { String filterId = useFilter(engine, filterName); long count = engine.getAuthorizationService().createAuthorizationQuery().resourceType(FILTER).resourceId(filterId).userIdIn(userId).count(); if (count==0) { Authorization managementGroupFilterRead = engine.getAuthorizationService().createNewAuthorization(Authorization.AUTH_TYPE_GRANT); managementGroupFilterRead.setResource(FILTER); managementGroupFilterRead.setResourceId(filterId); managementGroupFilterRead.addPermission(READ); managementGroupFilterRead.setUserId(userId); engine.getAuthorizationService().saveAuthorization(managementGroupFilterRead); } } }
assertEquals(2, authorizationService.createAuthorizationQuery().resourceId("resource1-2").count()); assertEquals(0, authorizationService.createAuthorizationQuery().resourceId("non-existing").count());
@Test public void testCreateTenantGroupMembership() { identityService.createTenantGroupMembership(TENANT_ONE, GROUP_ID); assertEquals(1, authorizationService.createAuthorizationQuery() .groupIdIn(GROUP_ID) .resourceType(Resources.TENANT) .resourceId(TENANT_ONE) .hasPermission(Permissions.READ).count()); identityService.setAuthentication(USER_ID, Collections.singletonList(GROUP_ID)); assertEquals(TENANT_ONE,identityService.createTenantQuery() .singleResult() .getId()); }
@Test public void testCreateTenantUserMembership() { identityService.createTenantUserMembership(TENANT_ONE, USER_ID); assertEquals(1, authorizationService.createAuthorizationQuery() .userIdIn(USER_ID) .resourceType(Resources.TENANT) .resourceId(TENANT_ONE) .hasPermission(Permissions.READ).count()); identityService.setAuthenticatedUserId(USER_ID); assertEquals(TENANT_ONE,identityService.createTenantQuery() .singleResult() .getId()); }