• Home
• com.oracle.kv
• oracle-nosql-server
• 18.3.10
• source code
• UserRoleUpdater.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

oracle.kv.impl.security.metadata.UserRoleUpdater Maven / Gradle / Ivy

/*-
 * Copyright (C) 2011, 2018 Oracle and/or its affiliates. All rights reserved.
 *
 * This file was distributed by Oracle as part of a version of Oracle NoSQL
 * Database made available at:
 *
 * http://www.oracle.com/technetwork/database/database-technologies/nosqldb/downloads/index.html
 *
 * Please see the LICENSE file included in the top-level directory of the
 * appropriate version of Oracle NoSQL Database for a copy of the license and
 * additional information.
 */

package oracle.kv.impl.security.metadata;

import java.util.ArrayList;
import java.util.Collections;
import java.util.HashSet;
import java.util.List;
import java.util.Set;

import oracle.kv.impl.security.metadata.SecurityMDChange.SecurityMDChangeType;
import oracle.kv.impl.security.metadata.SecurityMetadata.SecurityElementType;

/**
 * This is a simple class that tracks SecurityMDListener objects, filter and
 * get user role changes from security metadata changes for notification.
 *
 * This updater is a proxy used to notify changes for listeners registered in
 * SecurityMetadataManager.
 */
public class UserRoleUpdater {

    private final Set listeners;

    public UserRoleUpdater() {
        listeners =
            Collections.synchronizedSet(new HashSet());
    }

    public void addListener(SecurityMDListener listener) {
        listeners.add(listener);
    }

    public void removeListener(SecurityMDListener listener) {
        listeners.remove(listener);
    }

    public void notifyListeners(SecurityMetadata oldMd,
                                List mdChanges) {
        /*
         * oldMd can be null if updates are made on a newly created security
         * metadata, which is an empty object.
         */
        if (oldMd == null) {
            return;
        }

        /*
         * To avoid holding locks while listener implementation is performing
         * long running task, make copy of listeners, iterate and notify copies
         * about changes.
         */
        final List listenerCopy;
        synchronized(listeners) {
            listenerCopy = new ArrayList(listeners);
        }

        for (SecurityMDListener listener : listenerCopy) {
            for (SecurityMDChange change :
                 getRoleChanges(oldMd, mdChanges)) {
                listener.notifyMetadataChange(change);
            }
        }
    }

    /**
     * Iterate given security metadata change list to retrieve user role
     * changes only to notify registered listeners.
     */
    private List
        getRoleChanges(SecurityMetadata oldMd,
                       List mdChanges) {

        final List changes =
            new ArrayList();
        for (final SecurityMDChange change : mdChanges) {
            final SecurityMDChangeType changeType = change.getChangeType();
            final SecurityElementType elementType = change.getElementType();

            if (changeType == SecurityMDChangeType.UPDATE &&
                elementType == SecurityElementType.KVSTOREUSER) {
                final KVStoreUser newUser = (KVStoreUser)change.getElement();
                final KVStoreUser oldUser = oldMd.getUser(newUser.getName());

                if (!newUser.getGrantedRoles().equals(
                    oldUser.getGrantedRoles())) {
                    changes.add(change);
                }
            } else if (elementType == SecurityElementType.KVSTOREROLE){
                changes.add(change);
            }
        }
        return changes;
    }
}