• Home
• com.arangodb
• arangodb-java-driver-shaded
• 7.1.0
• source code
• RoleBasedAuthorizationImpl.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.arangodb.shaded.vertx.ext.auth.authorization.impl.RoleBasedAuthorizationImpl Maven / Gradle / Ivy

/********************************************************************************
 * Copyright (c) 2019 Stephane Bastian
 *
 * This program and the accompanying materials are made available under the 2
 * terms of the Eclipse Public License 2.0 which is available at
 * http://www.eclipse.org/legal/epl-2.0.
 *
 * SPDX-License-Identifier: EPL-2.0 3
 *
 * Contributors: 4
 *   Stephane Bastian - initial API and implementation
 ********************************************************************************/
package com.arangodb.shaded.vertx.ext.auth.authorization.impl;

import java.util.Objects;

import com.arangodb.shaded.vertx.ext.auth.authorization.Authorization;
import com.arangodb.shaded.vertx.ext.auth.authorization.AuthorizationContext;
import com.arangodb.shaded.vertx.ext.auth.authorization.RoleBasedAuthorization;
import com.arangodb.shaded.vertx.ext.auth.User;

public class RoleBasedAuthorizationImpl implements RoleBasedAuthorization {

  private final String role;
  private VariableAwareExpression resource;

  public RoleBasedAuthorizationImpl(String role) {
    this.role = Objects.requireNonNull(role);
  }

  @Override
  public boolean equals(Object obj) {
    if (this == obj)
      return true;
    if (!(obj instanceof RoleBasedAuthorizationImpl))
      return false;
    RoleBasedAuthorizationImpl other = (RoleBasedAuthorizationImpl) obj;
    return Objects.equals(resource, other.resource) && Objects.equals(role, other.role);
  }

  @Override
  public String getRole() {
    return role;
  }

  @Override
  public int hashCode() {
    return Objects.hash(resource, role);
  }

  @Override
  public boolean match(AuthorizationContext context) {
    Objects.requireNonNull(context);

    User user = context.user();
    if (user != null) {
      Authorization resolvedAuthorization = getResolvedAuthorization(context);
      for (String providerId: user.authorizations().getProviderIds()) {
        for (Authorization authorization : user.authorizations().get(providerId)) {
          if (authorization.verify(resolvedAuthorization)) {
            return true;
          }
        }
      }
    }
    return false;
  }

  private RoleBasedAuthorization getResolvedAuthorization(AuthorizationContext context) {
    if (resource == null || !resource.hasVariable()) {
      return this;
    }
    return RoleBasedAuthorization.create(this.role).setResource(resource.resolve(context));
  }

  @Override
  public boolean verify(Authorization otherAuthorization) {
    Objects.requireNonNull(otherAuthorization);

    if (otherAuthorization instanceof RoleBasedAuthorization) {
      RoleBasedAuthorization otherRoleBasedAuthorization = (RoleBasedAuthorization) otherAuthorization;
      if (role.equals(otherRoleBasedAuthorization.getRole())) {
        if (getResource() == null) {
          return otherRoleBasedAuthorization.getResource() == null;
        }
        return getResource().equals(otherRoleBasedAuthorization.getResource());
      }
    }
    return false;
  }

  @Override
  public String getResource() {
    return resource != null ? resource.getValue() : null;
  }

  @Override
  public RoleBasedAuthorization setResource(String resource) {
    Objects.requireNonNull(resource);
    this.resource = new VariableAwareExpression(resource);
    return this;
  }

}