io.continual.iam.apiserver.endpoints.IamApiHandler Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of continualIamApiService Show documentation
An API server for the Continual IAM library
The newest version!
package io.continual.iam.apiserver.endpoints;

import java.io.IOException;
import java.util.Collection;
import java.util.Map;
import java.util.Set;

import org.json.JSONArray;
import org.json.JSONException;
import org.json.JSONObject;

import io.continual.builder.Builder.BuildFailure;
import io.continual.http.app.servers.endpoints.TypicalRestApiEndpoint;
import io.continual.http.service.framework.context.CHttpRequestContext;
import io.continual.iam.IamServiceManager;
import io.continual.iam.access.AccessControlList;
import io.continual.iam.exceptions.IamGroupDoesNotExist;
import io.continual.iam.exceptions.IamGroupExists;
import io.continual.iam.exceptions.IamIdentityDoesNotExist;
import io.continual.iam.exceptions.IamIdentityExists;
import io.continual.iam.exceptions.IamSvcException;
import io.continual.iam.identity.Group;
import io.continual.iam.identity.Identity;
import io.continual.iam.identity.UserContext;
import io.continual.services.ServiceContainer;
import io.continual.util.data.json.JsonVisitor;
import io.continual.util.standards.HttpStatusCodes;

public class IamApiHandler extends TypicalRestApiEndpoint
{
	public IamApiHandler ( ServiceContainer sc, JSONObject config ) throws BuildFailure
	{
		super ( sc, config );

		fAccts = sc.getReqd ( getAcctsSvcName ( config ), IamServiceManager.class );

		final String acctResourceId = config.getString ( "accessRequired" );
		fAcctReader = new ResourceAccess ( acctResourceId, AccessControlList.READ );
		fAcctWriter = new ResourceAccess ( acctResourceId, AccessControlList.UPDATE );
	}

	public void getUsers ( CHttpRequestContext context ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Collection users = fAccts.getIdentityManager ().getAllUsers ();
					final JSONArray usersJson = JsonVisitor.listToArray ( users );
					sendJson ( context, new JSONObject ().put ( "users", usersJson ) );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctReader );
	}

	public void getUser ( CHttpRequestContext context, String userId ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Identity user = fAccts.getIdentityManager().loadUser ( userId );
					if ( user == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
					}
					else
					{
						sendJson ( context, renderUser ( user ) );
					}
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctReader );
	}

	public void createUser ( CHttpRequestContext context ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final JSONObject body = readBody ( context );
					final String username = body.getString ( "username" );

					final Identity user = fAccts.getIdentityManager ().createUser ( username );

					final JSONArray groups = body.optJSONArray ( "groups" );
					if ( groups != null )
					{
						for ( int i=0; i ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Identity user = fAccts.getIdentityManager().loadUser ( userId );
					if ( user == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
					}
					else
					{
						final JSONObject body = readBody ( context );
						final String pwd = body.getString ( "password" );
						user.setPassword ( pwd );

						sendJson ( context, renderUser ( user ) );
					}
				}
				catch ( JSONException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k400_badRequest, "Couldn't process this request." );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctWriter );
	}

	public void setData ( CHttpRequestContext context, String userId, String dataKey ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Identity user = fAccts.getIdentityManager().loadUser ( userId );
					if ( user == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
					}
					else
					{
						final JSONObject body = readBody ( context );
						final String value = body.getString ( "value" );
						user.putUserData ( dataKey, value );

						sendJson ( context, renderUser ( user ) );
					}
				}
				catch ( JSONException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k400_badRequest, "Couldn't process this request." );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctWriter );
	}

	public void removeData ( CHttpRequestContext context, String userId, String dataKey ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Identity user = fAccts.getIdentityManager().loadUser ( userId );
					if ( user == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
					}
					else
					{
						user.removeUserData ( dataKey );

						sendJson ( context, renderUser ( user ) );
					}
				}
				catch ( JSONException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k400_badRequest, "Couldn't process this request." );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctWriter );
	}

	public void removeDataSet ( CHttpRequestContext context, String userId ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Identity user = fAccts.getIdentityManager().loadUser ( userId );
					if ( user == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
					}
					else
					{
						final JSONObject body = readBody ( context );
						final JSONArray keys = body.getJSONArray ( "keys" );
						for ( int i=0; i ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Identity user = fAccts.getIdentityManager().loadUser ( userId );
					if ( user == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
					}
					else
					{
						final JSONObject body = readBody ( context );
						user.enable ( body.getBoolean ( "enabled" ) );

						sendJson ( context, renderUser ( user ) );
					}
				}
				catch ( JSONException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k400_badRequest, "Couldn't process this request." );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctWriter );
	}

	public void createGroup ( CHttpRequestContext context ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final JSONObject body = readBody ( context );
					final String groupName = body.getString ( "group" );
					final Group group = fAccts.getAccessManager ().createGroup ( groupName, groupName );
					sendJson ( context, renderGroup ( group ) );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
				catch ( IamGroupExists e )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k409_conflict, "The group exists." );
				}
			}
		}, fAcctWriter );
	}

	public void getGroups ( CHttpRequestContext context ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Collection groups = fAccts.getAccessManager ().getAllGroups ();
					final JSONArray groupsJson = JsonVisitor.listToArray ( groups );
					sendJson ( context, new JSONObject ().put ( "groups", groupsJson ) );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctReader );
	}

	public void getGroup ( CHttpRequestContext context, String groupId ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Group group = fAccts.getAccessManager().loadGroup ( groupId );
					if ( group == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "Group not found." );
					}
					else
					{
						sendJson ( context, renderGroup ( group ) );
					}
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctReader );
	}

	public void addUserToGroup ( CHttpRequestContext context, String groupId, String userId ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Group group = fAccts.getAccessManager().loadGroup ( groupId );
					if ( group == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "Group not found." );
						return;
					}

					fAccts.getAccessManager ().addUserToGroup ( groupId, userId );
					sendJson ( context, renderGroup ( fAccts.getAccessManager().loadGroup ( groupId ) ) );
				}
				catch ( IamGroupDoesNotExist x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "Group not found." );
				}
				catch ( IamIdentityDoesNotExist x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctWriter );
	}

	public void deleteUserFromGroup ( CHttpRequestContext context, String groupId, String userId ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					final Group group = fAccts.getAccessManager().loadGroup ( groupId );
					if ( group == null )
					{
						sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "Group not found." );
						return;
					}

					fAccts.getAccessManager ().removeUserFromGroup ( groupId, userId );
					sendJson ( context, renderGroup ( fAccts.getAccessManager().loadGroup ( groupId ) ) );
				}
				catch ( IamGroupDoesNotExist x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "Group not found." );
				}
				catch ( IamIdentityDoesNotExist x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
				}
				catch ( IamSvcException x )
				{
					sendStatusCodeAndMessage ( context, HttpStatusCodes.k503_serviceUnavailable, "Couldn't access the IAM service." );
				}
			}
		}, fAcctWriter );
	}

	public void deleteUsersFromGroup ( CHttpRequestContext context ) throws IamSvcException
	{
		handleWithApiAuthAndAccess ( context, new ApiHandler ()
		{
			@Override
			public void handle ( CHttpRequestContext context, UserContext uc )  throws IOException
			{
				try
				{
					// the body can have either userId + groups or groupId + users

					final JSONObject body = readBody ( context );
					if ( body.has ( "userId" ) )
					{
						final String userId = body.getString ( "userId");
						final JSONArray groups = body.getJSONArray ( "groups" );

						final Identity user = fAccts.getIdentityManager().loadUser ( userId );
						if ( user == null )
						{
							sendStatusCodeAndMessage ( context, HttpStatusCodes.k404_notFound, "User not found." );
							return;
						}

						for ( int i=0; i fAccts;
	private final ResourceAccess fAcctReader;
	private final ResourceAccess fAcctWriter;

	
	private JSONObject renderUser ( Identity user ) throws IamSvcException
	{
		final Set groupIds = user.getGroupIds ();
		final JSONArray groupArr = JsonVisitor.listToArray ( groupIds );

		final Collection apiKeys = user.loadApiKeysForUser ();
		final JSONArray apiKeysArr = JsonVisitor.listToArray ( apiKeys );

		final Map data = user.getAllUserData ();
		final JSONObject dataObj = JsonVisitor.mapOfStringsToObject ( data );

		return new JSONObject ()
			.put ( "id", user.getId () )
			.put ( "enabled", user.isEnabled () )
			.put ( "groups", groupArr )
			.put ( "apiKeys", apiKeysArr )
			.put ( "data", dataObj )
		;
	}

	private JSONObject renderGroup ( Group group ) throws IamSvcException
	{
		final Set users = group.getMembers ();
		final JSONArray usersArr = JsonVisitor.listToArray ( users );

		final Map data = group.getAllUserData ();
		final JSONObject dataObj = JsonVisitor.mapOfStringsToObject ( data );

		return new JSONObject ()
			.put ( "id", group.getId () )
			.put ( "name", group.getName () )
			.put ( "users", usersArr )
			.put ( "data", dataObj )
		;
	}
}
Related Artifacts

mysql-connector-java mysql
facebook-messenger com.github.codedrinker
selenium-java org.seleniumhq.selenium
instagram-java com.github.sola92
gson com.google.code.gson
poi org.apache.poi
httpclient org.apache.httpcomponents
json org.json
facebook-java-api com.google.code.facebook-java-api
poi-ooxml org.apache.poi
jackson-databind com.fasterxml.jackson.core
junit junit
primefaces org.primefaces
ojdbc7 com.github.noraui
jfoenix com.jfoenix
testng org.testng
json-simple com.googlecode.json-simple
selenium-server org.seleniumhq.selenium
itextpdf com.itextpdf
spring-core org.springframework

Related Groups

org.springframework
org.apache.poi
org.hibernate
org.springframework.boot
com.fasterxml.jackson.core
com.itextpdf
org.seleniumhq.selenium
mysql
org.finos.legend.engine
org.apache.httpcomponents
org.apache.logging.log4j
org.openjfx
org.apache.commons
org.json
com.google.guava
com.google.zxing
net.sf.jasperreports
javax.xml.bind
ojdbc
com.google.code.facebook-java-api