public String[] getAllowedRolesForResource(String resourceId, String action) throws UserStoreException { return getAuthorizationManager().getAllowedRolesForResource(resourceId, action); }
/** * method to get allowed roles for the resource and to indexed list. * @throws RegistryException */ private void addAllowedRoles() throws RegistryException { try { UserRealm userRealm = registry.getUserRealm(); String[] allowedRoles = userRealm.getAuthorizationManager().getAllowedRolesForResource(resourcePath, ActionConstants.GET); if (log.isDebugEnabled()) { log.debug("Allowed Roles for the resource: " + resourcePath + " : " + Arrays.toString(allowedRoles)); } List<String> allowedRolesLowerCase = new ArrayList<>(); for (String role: allowedRoles) { if (role != null) { allowedRolesLowerCase.add(role.toLowerCase()); } } attributes.put(FIELD_ALLOWED_ROLES, allowedRolesLowerCase); if (log.isDebugEnabled()) { log.debug("Indexed allowed roles for the resource: " + resourcePath + " : " + allowedRolesLowerCase); } } catch (UserStoreException e) { throw new RegistryException("Unable to retrieve allowed roles for resource", e); } }
String adminRoleName = realmConfig.getAdminRoleName(); String[] raRoles = authorizer.getAllowedRolesForResource(path, ActionConstants.GET); for (String raRole : raRoles) { if (raRole.equals(adminRoleName)) { String[] waRoles = authorizer.getAllowedRolesForResource(path, ActionConstants.PUT); for (String waRole : waRoles) { if (waRole.equals(adminRoleName)) { String[] daRoles = authorizer.getAllowedRolesForResource(path, ActionConstants.DELETE); for (String daRole : daRoles) { if (daRole.equals(adminRoleName)) { getAllowedRolesForResource(path, AccessControlConstants.AUTHORIZE); for (String aaRole : aaRoles) { if (aaRole.equals(adminRoleName)) {
acAdmin = realm.getAuthorizationManager(); String resourceName = serviceGroupId + "/" + serviceName; String[] roles = acAdmin.getAllowedRolesForResource( resourceName, UserCoreConstants.INVOKE_SERVICE_PERMISSION);
acAdmin = realm.getAuthorizationManager(); String resourceName = serviceGroupId + "/" + serviceName; String[] roles = acAdmin.getAllowedRolesForResource( resourceName, UserCoreConstants.INVOKE_SERVICE_PERMISSION);
acAdmin = realm.getAuthorizationManager(); String resourceName = serviceGroupId + "/" + serviceName; String[] roles = acAdmin.getAllowedRolesForResource( resourceName, UserCoreConstants.INVOKE_SERVICE_PERMISSION);
String[] roles = acReader.getAllowedRolesForResource( serviceGroupId + "/" + serviceName, UserCoreConstants.INVOKE_SERVICE_PERMISSION);
String[] roles = acReader.getAllowedRolesForResource( serviceGroupId + "/" + serviceName, UserCoreConstants.INVOKE_SERVICE_PERMISSION);
String[] roles = acReader.getAllowedRolesForResource( serviceGroupId + "/" + serviceName, UserCoreConstants.INVOKE_SERVICE_PERMISSION);