Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance. Project price only 1 $
You can buy this project and download/modify it how often you want.
/*
* Copyright (c) 2019 - Convergence Labs, Inc.
*
* This file is part of the Convergence Server, which is released under
* the terms of the GNU General Public License version 3 (GPLv3). A copy
* of the GPLv3 should have been provided along with this file, typically
* located in the "LICENSE" file, which is part of this source code package.
* Alternatively, see for the
* full text of the GPLv3 license, if it was not provided.
*/
package com.convergencelabs.convergence.server.api.rest.domain
import akka.actor.typed.scaladsl.AskPattern._
import akka.actor.typed.{ActorRef, Scheduler}
import akka.http.scaladsl.marshalling.ToResponseMarshallable.apply
import akka.http.scaladsl.server.Directive.{addByNameNullaryApply, addDirectiveApply}
import akka.http.scaladsl.server.Directives._
import akka.http.scaladsl.server.Route
import akka.util.Timeout
import com.convergencelabs.convergence.server.api.rest._
import com.convergencelabs.convergence.server.backend.services.server.RoleStoreActor
import com.convergencelabs.convergence.server.backend.services.server.RoleStoreActor._
import com.convergencelabs.convergence.server.model.server.role
import com.convergencelabs.convergence.server.model.{DomainId, server}
import com.convergencelabs.convergence.server.security.{AuthorizationProfile, Roles}
import scala.concurrent.{ExecutionContext, Future}
private[domain] final class DomainMembersService(roleStoreActor: ActorRef[RoleStoreActor.Message],
scheduler: Scheduler,
executionContext: ExecutionContext,
timeout: Timeout)
extends AbstractDomainRestService(scheduler, executionContext, timeout) {
import DomainMembersService._
def route(authProfile: AuthorizationProfile, domain: DomainId): Route = {
pathPrefix("members") {
pathEnd {
get {
complete(getAllMembers(domain))
} ~ post {
authorize(canManageDomainUsers(domain, authProfile)) {
entity(as[Map[String, String]]) { members =>
complete(setAllMembers(domain, members, authProfile))
}
}
}
} ~ path(Segment) { username =>
get {
complete(getRoleForUser(domain, username))
} ~ put {
authorize(canManageDomainUsers(domain, authProfile)) {
entity(as[SetUserRole]) { memberRole =>
complete(setRoleForUser(domain, username, memberRole.role, authProfile))
}
}
} ~ delete {
authorize(canManageDomainUsers(domain, authProfile)) {
complete(removeUserRole(domain, username, authProfile))
}
}
}
}
}
private[this] def getAllMembers(domain: DomainId): Future[RestResponse] = {
roleStoreActor.ask[GetAllUserRolesResponse](GetAllUserRolesRequest(role.DomainRoleTarget(domain), _))
.map(_.userRoles.fold(
{
case TargetNotFoundError() =>
NotFoundResponse
case UnknownError() =>
InternalServerError
},
{ userRoles =>
okResponse(userRoles)
})
)
}
private[this] def setAllMembers(domain: DomainId, userRoles: Map[String, String], authProfile: AuthorizationProfile): Future[RestResponse] = {
// Force the current user to be an owner.
val mapped = userRoles.map { case (username, role) => (username, role) } +
(authProfile.username -> Roles.Domain.Owner)
roleStoreActor
.ask[SetAllUserRolesForTargetResponse](SetAllUserRolesForTargetRequest(role.DomainRoleTarget(domain), mapped, _))
.map(_.response.fold(
{
case TargetNotFoundError() =>
notFoundResponse(Some("The specified domain does not exists"))
case UserNotFoundError() =>
NotFoundResponse
case UnknownError() =>
InternalServerError
},
{ _ =>
OkResponse
})
)
}
private[this] def getRoleForUser(domain: DomainId, username: String): Future[RestResponse] = {
roleStoreActor
.ask[GetUserRoleForTargetResponse](GetUserRoleForTargetRequest(username, role.DomainRoleTarget(domain), _))
.map(_.roles.fold(
{
case UserNotFoundError() =>
NotFoundResponse
case UnknownError() =>
InternalServerError
},
{ roles =>
val r = if (roles.isEmpty) {
UserRoleResponse(None)
} else {
UserRoleResponse(Some(roles.head.name))
}
okResponse(r)
})
)
}
private[this] def setRoleForUser(domain: DomainId, username: String, role: String, authProfile: AuthorizationProfile): Future[RestResponse] = {
if (username == authProfile.username) {
Future.successful(forbiddenResponse(Some("You can not set your own user's role.")))
} else {
roleStoreActor
.ask[SetUsersRolesForTargetResponse](SetUsersRolesForTargetRequest(username, server.role.DomainRoleTarget(domain), role, _))
.map(_.response.fold(
{
case UserNotFoundError() =>
NotFoundResponse
case UnknownError() =>
InternalServerError
},
{ _ =>
OkResponse
})
)
}
}
private[this] def removeUserRole(domain: DomainId, username: String, authProfile: AuthorizationProfile): Future[RestResponse] = {
if (username == authProfile.username) {
Future.successful(forbiddenResponse(Some("You can not remove your own user.")))
} else {
roleStoreActor
.ask[RemoveUserFromTargetResponse](RemoveUserFromTargetRequest(role.DomainRoleTarget(domain), username, _))
.map(_.response.fold(
{
case TargetNotFoundError() =>
notFoundResponse(Some("The specified domain does not exits"))
case UserNotFoundError() =>
notFoundResponse(Some("The specified user does not exits"))
case UnknownError() =>
InternalServerError
},
{ _ =>
DeletedResponse
})
)
}
}
}
object DomainMembersService {
case class SetUserRole(role: String)
case class UserRoleResponse(role: Option[String])
}
