• Home
• com.yahoo.vespa
• controller-api
• 8.251.23
• source code
• Privilege.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.yahoo.vespa.hosted.controller.api.role.Privilege Maven / Gradle / Ivy

// Copyright Vespa.ai. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root.
package com.yahoo.vespa.hosted.controller.api.role;

import com.yahoo.config.provision.SystemName;

import java.util.EnumSet;
import java.util.LinkedHashSet;
import java.util.Objects;
import java.util.Set;

/**
 * This describes a privilege in the controller. A privilege expresses the actions (e.g. create or read) granted
 * for a particular group of REST API paths. A privilege is valid in one or more systems.
 *
 * @author mpolden
 */
class Privilege {

    private final Set systems;
    private final Set actions;
    private final Set pathGroups;

    private Privilege(Set systems, Set actions, Set pathGroups) {
        this.systems = EnumSet.copyOf(Objects.requireNonNull(systems, "system must be non-null"));
        this.actions = EnumSet.copyOf(Objects.requireNonNull(actions, "actions must be non-null"));
        this.pathGroups = EnumSet.copyOf(Objects.requireNonNull(pathGroups, "pathGroups must be non-null"));
        if (systems.isEmpty()) {
            throw new IllegalArgumentException("systems must be non-empty");
        }
    }

    /** Systems where this applies */
    Set systems() {
        return systems;
    }

    /** Actions allowed by this */
    Set actions() {
        return actions;
    }

    /** Path groups where this applies */
    Set pathGroups() {
        return pathGroups;
    }

    @Override
    public boolean equals(Object o) {
        if (this == o) return true;
        if (o == null || getClass() != o.getClass()) return false;
        Privilege privilege = (Privilege) o;
        return systems.equals(privilege.systems) &&
               actions.equals(privilege.actions) &&
               pathGroups.equals(privilege.pathGroups);
    }

    @Override
    public int hashCode() {
        return Objects.hash(systems, actions, pathGroups);
    }

    static PrivilegeBuilder grant(Action... actions) {
        return grant(Set.of(actions));
    }

    static PrivilegeBuilder grant(Set actions) {
        return new PrivilegeBuilder(actions);
    }

    static class PrivilegeBuilder {

        private Set actions;
        private Set pathGroups;

        private PrivilegeBuilder(Set actions) {
            this.actions = EnumSet.copyOf(actions);
            this.pathGroups = new LinkedHashSet<>();
        }

        PrivilegeBuilder on(PathGroup... pathGroups) {
            return on(Set.of(pathGroups));
        }

        PrivilegeBuilder on(Set pathGroups) {
            this.pathGroups.addAll(pathGroups);
            return this;
        }

        Privilege in(SystemName... systems) {
            return in(Set.of(systems));
        }

        Privilege in(Set systems) {
            return new Privilege(systems, actions, pathGroups);
        }

    }

}