io.imunity.furms.unity.client.users.UserService Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of furms-unity-client Show documentation
Show all versions of furms-unity-client Show documentation
FURMS Unity DAO/Client module
/*
* Copyright (c) 2020 Bixbit s.c. All rights reserved.
* See LICENSE file for licensing information.
*/
package io.imunity.furms.unity.client.users;
import static io.imunity.furms.unity.common.UnityConst.ALL_GROUPS_PATTERNS;
import static io.imunity.furms.unity.common.UnityConst.COMMUNITY_ID;
import static io.imunity.furms.unity.common.UnityConst.ENUMERATION;
import static io.imunity.furms.unity.common.UnityConst.FURMS_POLICY_ACCEPTANCE_STATE_ATTRIBUTE;
import static io.imunity.furms.unity.common.UnityConst.GROUPS_PATTERNS;
import static io.imunity.furms.unity.common.UnityConst.GROUP_PATH;
import static io.imunity.furms.unity.common.UnityConst.ID;
import static io.imunity.furms.unity.common.UnityConst.IDENTIFIER_IDENTITY;
import static io.imunity.furms.unity.common.UnityConst.IDENTITY_TYPE;
import static io.imunity.furms.unity.common.UnityConst.PERSISTENT_IDENTITY;
import static io.imunity.furms.unity.common.UnityConst.PROJECT_ID;
import static io.imunity.furms.unity.common.UnityConst.PROJECT_PATTERN;
import static io.imunity.furms.unity.common.UnityConst.ROOT_GROUP;
import static io.imunity.furms.unity.common.UnityConst.ROOT_GROUP_PATH;
import static io.imunity.furms.unity.common.UnityConst.STRING;
import static io.imunity.furms.unity.common.UnityPaths.ATTRIBUTE_PATTERN;
import static io.imunity.furms.unity.common.UnityPaths.ENTITY_ATTRIBUTES;
import static io.imunity.furms.unity.common.UnityPaths.ENTITY_BASE;
import static io.imunity.furms.unity.common.UnityPaths.GROUP;
import static io.imunity.furms.unity.common.UnityPaths.GROUP_ATTRIBUTES;
import static io.imunity.furms.unity.common.UnityPaths.GROUP_BASE;
import static io.imunity.furms.unity.common.UnityPaths.GROUP_MEMBERS;
import static io.imunity.furms.unity.common.UnityPaths.GROUP_MEMBERS_MULTI;
import static java.util.stream.Collectors.toList;
import static java.util.stream.Collectors.toMap;
import static java.util.stream.Collectors.toSet;
import java.net.URLEncoder;
import java.nio.charset.StandardCharsets;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Collections;
import java.util.List;
import java.util.Map;
import java.util.Optional;
import java.util.Set;
import java.util.function.Predicate;
import java.util.stream.Collectors;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.core.ParameterizedTypeReference;
import org.springframework.stereotype.Service;
import org.springframework.web.reactive.function.client.WebClientResponseException.BadRequest;
import org.springframework.web.util.UriComponentsBuilder;
import io.imunity.furms.domain.authz.roles.Role;
import io.imunity.furms.domain.policy_documents.PolicyAcceptance;
import io.imunity.furms.domain.policy_documents.UserPolicyAcceptances;
import io.imunity.furms.domain.users.FURMSUser;
import io.imunity.furms.domain.users.FenixUserId;
import io.imunity.furms.domain.users.GroupedUsers;
import io.imunity.furms.domain.users.PersistentId;
import io.imunity.furms.unity.client.UnityClient;
import io.imunity.furms.unity.users.UnityUserMapper;
import io.imunity.rest.api.RestAttributeExt;
import io.imunity.rest.api.RestGroupMemberWithAttributes;
import io.imunity.rest.api.RestMultiGroupMembersWithAttributes;
import pl.edu.icm.unity.types.basic.Attribute;
import pl.edu.icm.unity.types.basic.Entity;
import pl.edu.icm.unity.types.basic.Identity;
@Service
public class UserService {
private static final Logger LOG = LoggerFactory.getLogger(UserService.class);
private final UnityClient unityClient;
public UserService(UnityClient unityClient) {
this.unityClient = unityClient;
}
public void addUserToGroup(PersistentId userId, String group){
String path = prepareGroupRequestPath(userId, group);
unityClient.post(path);
}
public void sendUserNotification(PersistentId userId, String templateId, Map parameters){
String path = prepareUserNotificationRequestPath(userId, templateId);
Map encodedParams = parameters.entrySet().stream()
.collect(toMap(Map.Entry::getKey, x -> URLEncoder.encode(x.getValue(), StandardCharsets.UTF_8)));
unityClient.post(path, null, encodedParams);
}
private String prepareGroupRequestPath(PersistentId userId, String group) {
Map uriVariables = Map.of(GROUP_PATH, group, ID, userId.id);
return UriComponentsBuilder.newInstance()
.path(GROUP_BASE)
.pathSegment("{" + GROUP_PATH + "}")
.path(ENTITY_BASE)
.pathSegment("{" + ID + "}")
.buildAndExpand(uriVariables)
.encode()
.toUriString();
}
private String prepareUserNotificationRequestPath(PersistentId userId, String templateId) {
Map uriVariables = Map.of("identityValue", userId.id, "templateId", templateId);
return UriComponentsBuilder.newInstance()
.path("/userNotification-trigger/entity/")
.pathSegment("{" + "identityValue" + "}")
.path("/template/")
.pathSegment("{" + "templateId" + "}")
.buildAndExpand(uriVariables)
.encode()
.toUriString();
}
public void addUserRole(PersistentId userId, String group, Role role){
String uriComponents = prepareAttributeRequestPath(userId);
Set roleValues = getRoleValues(userId, group, role);
roleValues.add(role.unityRoleValue);
Attribute attribute = new Attribute(
role.unityRoleAttribute,
ENUMERATION,
group,
new ArrayList<>(roleValues)
);
unityClient.put(uriComponents, attribute);
}
public void addUserPolicyAcceptance(FenixUserId userId, PolicyAcceptance policyAcceptance) {
String uriComponents = prepareAttributeRequestPath(userId);
Set policyAcceptances = getPolicyAcceptances(userId);
Set oldRevisionPolicyAcceptance = policyAcceptances.stream()
.filter(x -> x.policyDocumentId.equals(policyAcceptance.policyDocumentId))
.collect(toSet());
policyAcceptances.removeAll(oldRevisionPolicyAcceptance);
policyAcceptances.add(policyAcceptance);
Attribute attribute = new Attribute(
FURMS_POLICY_ACCEPTANCE_STATE_ATTRIBUTE,
STRING,
"/",
policyAcceptances.stream()
.map(PolicyAcceptanceArgument::valueOf)
.map(PolicyAcceptanceParser::parse)
.collect(Collectors.toUnmodifiableList())
);
unityClient.put(uriComponents, attribute, Map.of(IDENTITY_TYPE, IDENTIFIER_IDENTITY));
}
private String prepareAttributeRequestPath(PersistentId userId) {
return UriComponentsBuilder.newInstance()
.path(ENTITY_BASE)
.pathSegment("{" + ID + "}")
.path(ATTRIBUTE_PATTERN)
.buildAndExpand(Map.of(ID, userId.id))
.toUriString();
}
private String prepareAttributeRequestPath(FenixUserId userId) {
return UriComponentsBuilder.newInstance()
.path(ENTITY_BASE)
.pathSegment("{" + ID + "}")
.path(ATTRIBUTE_PATTERN)
.buildAndExpand(Map.of(ID, userId.id))
.toUriString();
}
public void removeUserFromGroup(PersistentId userId, String group){
String path = prepareGroupRequestPath(userId, group);
unityClient.delete(path, Map.of(IDENTITY_TYPE, PERSISTENT_IDENTITY));
}
public void removeUserRole(PersistentId userId, String group, Role role){
String uriComponents = prepareAttributeRequestPath(userId);
Set roleValues = getRoleValues(userId, group, role);
roleValues.remove(role.unityRoleValue);
Attribute attribute = new Attribute(
role.unityRoleAttribute,
ENUMERATION,
group,
new ArrayList<>(roleValues)
);
unityClient.put(uriComponents, attribute);
}
public Set getRoleValues(PersistentId userId, String group, Role role) {
return getAttributesFromGroup(userId, group)
.stream()
.filter(attribute -> attribute.getName().equals(role.unityRoleAttribute))
.flatMap(attribute -> attribute.getValues().stream())
.collect(toSet());
}
public Set getPolicyAcceptances(FenixUserId userId) {
return getPolicyAcceptances(getAttributesFromRootGroup(userId));
}
public Set getPolicyAcceptances(Collection extends Attribute> attributes) {
return attributes
.stream()
.filter(attribute -> attribute.getName().equals(FURMS_POLICY_ACCEPTANCE_STATE_ATTRIBUTE))
.flatMap(attribute -> attribute.getValues().stream())
.map(PolicyAcceptanceParser::parse)
.map(PolicyAcceptanceArgument::toPolicyAcceptance)
.collect(toSet());
}
public Set getPolicyAcceptancesFromAttributes(Collection extends RestAttributeExt> attributes) {
return attributes
.stream()
.filter(attribute -> attribute.getName().equals(FURMS_POLICY_ACCEPTANCE_STATE_ATTRIBUTE))
.flatMap(attribute -> attribute.getValues().stream())
.map(PolicyAcceptanceParser::parse)
.map(PolicyAcceptanceArgument::toPolicyAcceptance)
.collect(toSet());
}
public Optional getUser(PersistentId userId){
Entity entity = getEntity(userId).orElse(null);
if (entity == null)
return Optional.empty();
List attributesFromGroup = getAttributesFromRootGroup(userId);
return UnityUserMapper.map(userId, entity, attributesFromGroup);
}
public Optional getUser(FenixUserId userId) {
Entity entity = getEntity(userId).orElse(null);
if (entity == null)
return Optional.empty();
List attributesFromGroup = getAttributesFromRootGroup(userId);
return UnityUserMapper.map(userId, entity, attributesFromGroup);
}
private List getAttributesFromGroup(PersistentId userId, String group) {
String path = UriComponentsBuilder.newInstance()
.pathSegment(GROUP_ATTRIBUTES)
.uriVariables(Map.of(ID, userId.id))
.build()
.toUriString();
Map> groupedAttributes =
unityClient.get(path, new ParameterizedTypeReference<>() {}, Map.of(GROUPS_PATTERNS, ALL_GROUPS_PATTERNS));
return groupedAttributes.getOrDefault(group, Collections.emptyList());
}
private List getAttributesFromRootGroup(PersistentId userId) {
String path = UriComponentsBuilder.newInstance()
.pathSegment(ENTITY_ATTRIBUTES)
.uriVariables(Map.of(ID, userId.id))
.build()
.toUriString();
return unityClient.get(path, new ParameterizedTypeReference<>() {}, Map.of(GROUP, ROOT_GROUP));
}
private List getAttributesFromRootGroup(FenixUserId userId) {
String path = UriComponentsBuilder.newInstance()
.pathSegment(ENTITY_ATTRIBUTES)
.uriVariables(Map.of(ID, userId.id))
.build()
.toUriString();
return unityClient.get(path, new ParameterizedTypeReference<>() {}, Map.of(GROUP, ROOT_GROUP, IDENTITY_TYPE, IDENTIFIER_IDENTITY));
}
private Optional getEntity(PersistentId userId) {
try {
Entity entity = getEntityThrowing(userId);
return Optional.of(entity);
} catch (BadRequest e) {
LOG.debug("User {} not found", userId, e);
return Optional.empty();
}
}
private Optional getEntity(FenixUserId userId) {
try {
Entity entity = getEntityThrowing(userId);
return Optional.of(entity);
} catch (BadRequest e) {
LOG.debug("User {} not found", userId, e);
return Optional.empty();
}
}
private Entity getEntityThrowing(PersistentId userId) {
String path = UriComponentsBuilder.newInstance()
.path(ENTITY_BASE)
.path(userId.id)
.build()
.toUriString();
return unityClient.get(path, new ParameterizedTypeReference<>() {}, Map.of(IDENTITY_TYPE, PERSISTENT_IDENTITY));
}
private Entity getEntityThrowing(FenixUserId userId) {
String path = UriComponentsBuilder.newInstance()
.path(ENTITY_BASE)
.path(userId.id)
.build()
.toUriString();
return unityClient.get(path, new ParameterizedTypeReference<>() {}, Map.of(IDENTITY_TYPE, IDENTIFIER_IDENTITY));
}
public List getAllUsersByRole(String group, Role role) {
Predicate filter = attribute ->
attribute.getName().equals(role.unityRoleAttribute) &&
attribute.getValues().contains(role.unityRoleValue);
return getAllUsersFromGroup(group, filter);
}
public List getAllUsersByRoles(String group, Set roles) {
Predicate filter = attribute -> {
for(Role role : roles){
if(role.unityRoleAttribute.equals(attribute.getName()) && attribute.getValues().contains(role.unityRoleValue))
return true;
}
return false;
};
return getAllUsersFromGroup(group, filter);
}
public List getAllUsersFromGroup(String group, Predicate filter){
Map uriVariables = Map.of(ROOT_GROUP_PATH, group);
String path = UriComponentsBuilder.newInstance()
.path(GROUP_MEMBERS)
.pathSegment("{" + ROOT_GROUP_PATH + "}")
.buildAndExpand(uriVariables)
.encode()
.toUriString();
return unityClient.get(path, new ParameterizedTypeReference>() {}).stream()
.filter(groupMember -> groupMember.getAttributes().stream().anyMatch(filter))
.map(x -> UnityUserMapper.map(x, group))
.filter(Optional::isPresent)
.map(Optional::get)
.collect(toList());
}
public Set getAllUsersPolicyAcceptanceFromGroups(Map> ids){
String path = UriComponentsBuilder.newInstance()
.path(GROUP_MEMBERS_MULTI)
.encode()
.toUriString();
List allGroups = ids.entrySet().stream()
.map(entry -> getProjectPaths(entry.getKey(), entry.getValue()))
.flatMap(Collection::stream)
.collect(toList());
Map> members = GroupMembersMultiPaginationProvider.get(allGroups).stream()
.map(page -> unityClient.get(path, Map.of("groups", page.getGroups()),
new ParameterizedTypeReference() {}))
.map(RestMultiGroupMembersWithAttributes::getMembers)
.flatMap(map -> map.entrySet().stream())
.collect(toMap(Map.Entry::getKey, Map.Entry::getValue));
return allGroups.stream()
.flatMap(group -> members.getOrDefault(group, List.of()).stream()
.map(attributes -> UnityUserMapper.map(attributes, group)
.map(user -> new UserPolicyAcceptances(user, getPolicyAcceptancesFromAttributes(attributes.getAttributes())))
)
)
.filter(Optional::isPresent)
.map(Optional::get)
.collect(toSet());
}
public GroupedUsers getUsersFromGroupsFilteredByRoles(Map> groupsWithRoles) {
String path = UriComponentsBuilder.newInstance()
.path(GROUP_MEMBERS_MULTI)
.encode()
.toUriString();
RestMultiGroupMembersWithAttributes multiGroupMembers = unityClient.get(path, Map.of("groups",
new ArrayList<>(groupsWithRoles.keySet())),
new ParameterizedTypeReference<>() {});
Map> groupedUsers = multiGroupMembers.members.entrySet().stream()
.collect(toMap(
Map.Entry::getKey,
entry -> filerUsersByRoles(groupsWithRoles.get(entry.getKey()), getUsers(entry.getValue(), entry.getKey())))
);
return new GroupedUsers(groupedUsers);
}
private List filerUsersByRoles(Set roles, List users) {
if(roles.isEmpty())
return users;
return users.stream()
.filter(user -> user.roles.values().stream()
.flatMap(Collection::stream)
.anyMatch(roles::contains))
.collect(toList());
}
private List getUsers(List simpleGroupMembers, String group) {
return simpleGroupMembers.stream()
.map(u -> UnityUserMapper.map(u, group))
.filter(Optional::isPresent)
.map(Optional::get)
.collect(toList());
}
private List getProjectPaths(String communityId, Set projectIds) {
return projectIds.stream()
.map(projectId ->
UriComponentsBuilder.newInstance()
.path(PROJECT_PATTERN)
.uriVariables(Map.of(COMMUNITY_ID, communityId, PROJECT_ID, projectId))
.toUriString()
).collect(Collectors.toList());
}
public PersistentId getPersistentId(FenixUserId userId) {
return getEntityThrowing(userId).getIdentities().stream()
.filter(identity -> identity.getTypeId().equals(PERSISTENT_IDENTITY)).findAny()
.map(Identity::getComparableValue).map(PersistentId::new).orElse(null);
}
public FenixUserId getFenixUserId(PersistentId userId) {
return getEntityThrowing(userId).getIdentities().stream()
.filter(identity -> identity.getTypeId().equals(IDENTIFIER_IDENTITY)).findAny()
.map(Identity::getComparableValue).map(FenixUserId::new).orElse(null);
}
}