edu.stanford.protege.webprotege.access.AccessManagerImpl Maven / Gradle / Ivy
The newest version!
package edu.stanford.protege.webprotege.access;
import edu.stanford.protege.webprotege.authorization.*;
import edu.stanford.protege.webprotege.ipc.CommandExecutor;
import edu.stanford.protege.webprotege.ipc.ExecutionContext;
import javax.annotation.Nonnull;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.stereotype.Component;
import java.util.*;
import java.util.concurrent.ExecutionException;
/**
* Matthew Horridge
* Stanford Center for Biomedical Informatics Research
* 7 Jan 2017
*/
@Component
public class AccessManagerImpl implements AccessManager {
private static final Logger logger = LoggerFactory.getLogger(AccessManagerImpl.class);
private final CommandExecutor getAssignedRolesExecutor;
private final CommandExecutor setAssignedRolesExecutor;
private final CommandExecutor getRolesRequestExecutor;
private final CommandExecutor getAuthorizedActionsExecutor;
private final CommandExecutor getAuthorizationStatusExecutor;
private final CommandExecutor getAuthorizedSubjectsExecutor;
private final CommandExecutor getAuthorizedResourcesExecutor;
public AccessManagerImpl(CommandExecutor getAssignedRolesExecutor,
CommandExecutor setAssignedRolesExecutor,
CommandExecutor getRolesRequestExecutor,
CommandExecutor getAuthorizedActionsExecutor,
CommandExecutor getAuthorizationStatusExecutor,
CommandExecutor getAuthorizedSubjectsExecutor,
CommandExecutor getAuthorizedResourcesExecutor) {
this.getAssignedRolesExecutor = getAssignedRolesExecutor;
this.setAssignedRolesExecutor = setAssignedRolesExecutor;
this.getRolesRequestExecutor = getRolesRequestExecutor;
this.getAuthorizedActionsExecutor = getAuthorizedActionsExecutor;
this.getAuthorizationStatusExecutor = getAuthorizationStatusExecutor;
this.getAuthorizedSubjectsExecutor = getAuthorizedSubjectsExecutor;
this.getAuthorizedResourcesExecutor = getAuthorizedResourcesExecutor;
}
@Nonnull
@Override
public Collection getAssignedRoles(@Nonnull Subject subject, @Nonnull Resource resource) {
try {
return getAssignedRolesExecutor.execute(new GetAssignedRolesRequest(subject,
resource),
new ExecutionContext())
.get()
.roles();
} catch (InterruptedException | ExecutionException e) {
logger.error("Error while waiting for assigned roles", e);
return Collections.emptySet();
}
}
@Override
public void setAssignedRoles(@Nonnull Subject subject,
@Nonnull Resource resource,
@Nonnull Collection roleIds) {
try {
var response = setAssignedRolesExecutor.execute(new SetAssignedRolesRequest(subject, resource, Set.copyOf(roleIds)),
new ExecutionContext());
response.get();
} catch (ExecutionException | InterruptedException e) {
logger.error("Error when setting assigned roles", e);
}
}
@Nonnull
@Override
public Collection getRoleClosure(@Nonnull Subject subject, @Nonnull Resource resource) {
try {
return getRolesRequestExecutor.execute(new GetRolesRequest(subject, resource),
new ExecutionContext())
.get()
.roles();
} catch (InterruptedException | ExecutionException e) {
logger.error("Error when getting roles", e);
return Collections.emptySet();
}
}
@Nonnull
@Override
public Set getActionClosure(@Nonnull Subject subject, @Nonnull Resource resource, ExecutionContext executionContext) {
try {
return getAuthorizedActionsExecutor.execute(new GetAuthorizedActionsRequest(resource, subject),
executionContext)
.get()
.actionIds();
} catch (InterruptedException | ExecutionException e) {
logger.error("Error when getting authorized actions", e);
return Collections.emptySet();
}
}
@Override
public boolean hasPermission(@Nonnull Subject subject, @Nonnull Resource resource, @Nonnull ActionId actionId) {
try {
GetAuthorizationStatusResponse response = getAuthorizationStatusExecutor.execute(new GetAuthorizationStatusRequest(resource, subject, actionId),
new ExecutionContext())
.get();
return response.authorizationStatus().equals(AuthorizationStatus.AUTHORIZED);
} catch (InterruptedException | ExecutionException e) {
logger.error("Error when getting authorization status", e);
return false;
}
}
@Override
public boolean hasPermission(@Nonnull Subject subject, @Nonnull ApplicationResource resource, @Nonnull ActionId actionId, ExecutionContext executionContext) {
try {
return getAuthorizationStatusExecutor.execute(new GetAuthorizationStatusRequest(resource, subject, actionId),
executionContext)
.get()
.authorizationStatus().equals(AuthorizationStatus.AUTHORIZED);
} catch (InterruptedException | ExecutionException e) {
logger.error("Error when getting authorization status", e);
return false;
}
}
@Override
public boolean hasPermission(@Nonnull Subject subject,
@Nonnull Resource resource,
@Nonnull BuiltInAction builtInAction) {
return hasPermission(subject, resource, builtInAction.getActionId());
}
@Override
public Collection getSubjectsWithAccessToResource(Resource resource, BuiltInAction action) {
try {
return getAuthorizedSubjectsExecutor.execute(new GetAuthorizedSubjectsRequest(resource,
action.getActionId()),
new ExecutionContext())
.get()
.subjects();
} catch (InterruptedException | ExecutionException e) {
logger.error("Error when getting authorized subjects", e);
return Collections.emptySet();
}
}
@Override
public Collection getSubjectsWithAccessToResource(Resource resource) {
return getSubjectsWithAccessToResource(resource, BuiltInAction.VIEW_PROJECT);
}
@Override
public Collection getResourcesAccessibleToSubject(Subject subject, ActionId actionId, ExecutionContext executionContext) {
try {
return getAuthorizedResourcesExecutor.execute(new GetAuthorizedResourcesRequest(subject, actionId),
executionContext)
.get()
.resources();
} catch (InterruptedException | ExecutionException e) {
logger.error("Error getting authorized resources", e);
return Collections.emptySet();
}
}
@Override
public void rebuild() {
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy