com.bagri.server.hazelcast.task.role.PermissionUpdater Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of bagri-server-hazelcast Show documentation
Bagri DB Cache: Hazelcast implementation
The newest version!
package com.bagri.server.hazelcast.task.role;

import static com.bagri.server.hazelcast.serialize.TaskSerializationFactory.cli_UpdateRolePermissionsTask;

import java.io.IOException;
import java.util.Map.Entry;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import com.bagri.core.system.Permission;
import com.bagri.core.system.PermissionAware;
import com.bagri.server.hazelcast.task.EntityProcessor;
import com.hazelcast.map.EntryBackupProcessor;
import com.hazelcast.map.EntryProcessor;
import com.hazelcast.nio.ObjectDataInput;
import com.hazelcast.nio.ObjectDataOutput;
import com.hazelcast.nio.serialization.IdentifiedDataSerializable;

public class PermissionUpdater extends EntityProcessor implements EntryProcessor, 
	EntryBackupProcessor, IdentifiedDataSerializable {

	private static final transient Logger logger = LoggerFactory.getLogger(PermissionUpdater.class);

	private Action action;
	private String resource;
	private String[] permissions;
	
	public PermissionUpdater() {
		// de-ser
	}
	
	public PermissionUpdater(int version, String admin, String resource, String[] permissions, Action action) {
		super(version, admin);
		this.resource = resource;
		this.permissions = permissions;
		this.action = action;
	}

	@Override
	public void processBackup(Entry entry) {
		process(entry);		
	}

	@Override
	public EntryBackupProcessor getBackupProcessor() {
		return this;
	}
	
	@Override
	public Object process(Entry entry) {
		logger.debug("process.enter; entry: {}", entry); 
		if (entry.getValue() != null) {
			PermissionAware role = entry.getValue();
			if (role.getVersion() == getVersion()) {
				if (action == Action.add) {
					for (String permission: permissions) {
						if (!role.addPermission(resource, Permission.Value.valueOf(permission))) {
							logger.warn("process.add; permission {} already granted for resource {}, skipped;", 
									permission, resource); 
						}
					} 
				} else {
					if (permissions.length > 0) {
						for (String permission: permissions) {
							if (!role.removePermission(resource, Permission.Value.valueOf(permission))) {
								logger.warn("process.remove; permission {} not granted for resource {}, skipped;", 
										permission, resource); 
							}
						} 
					} else {
						role.removePermission(resource, null);
					}
				}
				role.updateVersion(getAdmin());
				entry.setValue(role);
				auditEntity(AuditType.update, role);
				return role;
			} else {
				// throw ex ?
				logger.warn("process; outdated role version: {}; entry version: {}; process terminated", 
						getVersion(), entry.getValue().getVersion()); 
			}
		} 
		return null;
	}

	@Override
	public int getId() {
		return cli_UpdateRolePermissionsTask;
	}
	
	@Override
	public void readData(ObjectDataInput in) throws IOException {
		super.readData(in);
		action = Action.valueOf(in.readUTF());
		resource = in.readUTF();
		permissions = (String[]) in.readObject();
	}

	@Override
	public void writeData(ObjectDataOutput out) throws IOException {
		super.writeData(out);
		out.writeUTF(action.name());
		out.writeUTF(resource);
		out.writeObject(permissions);
	}

}