• Home
• com.icthh.xm.commons
• xm-commons-permission
• 4.0.14
• source code
• AuthenticationSecurityExpressionMethods.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.icthh.xm.commons.permission.service.AuthenticationSecurityExpressionMethods Maven / Gradle / Ivy

package com.icthh.xm.commons.permission.service;

import com.icthh.xm.commons.security.internal.XmAuthentication;
import com.icthh.xm.commons.security.internal.XmAuthenticationDetails;
import lombok.RequiredArgsConstructor;
import org.springframework.security.core.Authentication;

import java.util.Arrays;
import java.util.LinkedHashSet;
import java.util.Set;

import static java.util.Arrays.stream;
import static java.util.Optional.ofNullable;

@RequiredArgsConstructor
public class AuthenticationSecurityExpressionMethods {

    private final Authentication authentication;

    private Set missingScopes = new LinkedHashSet();

    public boolean clientHasRole(String role) {
        return clientHasAnyRole(role);
    }

    public boolean clientHasAnyRole(String... roles) {
        if (authentication instanceof XmAuthentication xmAuthentication) {
            Set authorities = ofNullable(xmAuthentication.getDetails())
                    .map(XmAuthenticationDetails::getAuthorities)
                    .orElse(Set.of());
            return stream(roles).anyMatch(authorities::contains);
        }
        return false;
    }

    public boolean hasScope(String scope) {
        return hasAnyScope(scope);
    }

    public boolean hasAnyScope(String... scopes) {
        boolean result = hasAnyScope(authentication, scopes);
        if (!result) {
            missingScopes.addAll(Arrays.asList(scopes));
        }
        return result;
    }

    public boolean hasScopeMatching(String scopeRegex) {
        return hasAnyScopeMatching(scopeRegex);
    }

    public boolean hasAnyScopeMatching(String... scopesRegex) {
        boolean result = hasAnyScopeMatching(authentication, scopesRegex);
        if (!result) {
            missingScopes.addAll(Arrays.asList(scopesRegex));
        }
        return result;
    }

    private static boolean hasAnyScope(Authentication authentication, String[] scopes) {
        if (authentication instanceof XmAuthentication xmAuthentication) {
            Set scope = ofNullable(xmAuthentication.getDetails())
                    .map(XmAuthenticationDetails::getScope)
                    .orElse(Set.of());
            return stream(scopes).anyMatch(scope::contains);
        }
        return false;
    }

    private static boolean hasAnyScopeMatching(Authentication authentication, String[] scopesRegex) {

        if (authentication instanceof XmAuthentication xmAuthentication) {
            Set scopes = ofNullable(xmAuthentication.getDetails())
                    .map(XmAuthenticationDetails::getScope)
                    .orElse(Set.of());

            for (String scope : scopes) {
                for (String regex : scopesRegex) {
                    if (scope.matches(regex)) {
                        return true;
                    }
                }
            }
        }

        return false;
    }

}