• Home
• io.vertigo
• vertigo-account
• 4.2.0
• source code
• AuthorizationUtil.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.vertigo.account.authorization.AuthorizationUtil Maven / Gradle / Ivy

/*
 * vertigo - application development platform
 *
 * Copyright (C) 2013-2024, Vertigo.io, [email protected]
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package io.vertigo.account.authorization;

import java.util.function.BooleanSupplier;
import java.util.function.Supplier;
import java.util.stream.Collectors;
import java.util.stream.Stream;

import org.apache.logging.log4j.LogManager;
import org.apache.logging.log4j.Logger;

import io.vertigo.account.authorization.definitions.AuthorizationName;
import io.vertigo.account.authorization.definitions.OperationName;
import io.vertigo.core.locale.LocaleMessageText;
import io.vertigo.core.node.Node;
import io.vertigo.datamodel.criteria.Criteria;
import io.vertigo.datamodel.data.model.Entity;
import io.vertigo.datamodel.data.model.UID;
import io.vertigo.datamodel.data.util.DataModelUtil;
import io.vertigo.datastore.entitystore.EntityStoreManager;
import io.vertigo.datastore.impl.entitystore.StoreVAccessor;

public final class AuthorizationUtil {
	private static final LocaleMessageText DEFAULT_FORBIDDEN_MESSAGE = LocaleMessageText.ofDefaultMsg("Not enough authorizations", Resources.AUTHORIZATION_DEFAULT_FORBIDDEN_MESSAGE);
	private static final Logger LOG = LogManager.getLogger(AuthorizationUtil.class);

	public static void assertAuthorizations(final AuthorizationName... authorizationName) {
		assertAuthorizations(DEFAULT_FORBIDDEN_MESSAGE, authorizationName); //no too sharp info here : may use log
	}

	public static void assertAuthorizations(final LocaleMessageText message, final AuthorizationName... authorizationName) {
		final AuthorizationManager authorizationManager = Node.getNode().getComponentSpace().resolve(AuthorizationManager.class);
		if (!authorizationManager.hasAuthorization(authorizationName)) {
			final String names = Stream.of(authorizationName)
					.map(AuthorizationName::name)
					.collect(Collectors.joining(", "));
			LOG.warn("Not enought authorizations : {}", names);
			throw new VSecurityException(message);
		}
	}

	public static  void assertOperations(final E entity, final OperationName operation) {
		assertOperations(entity, operation, DEFAULT_FORBIDDEN_MESSAGE); //no too sharp info here : may use log
	}

	public static  void assertOperations(final E entity, final OperationName operation, final LocaleMessageText message) {
		final AuthorizationManager authorizationManager = Node.getNode().getComponentSpace().resolve(AuthorizationManager.class);
		if (!authorizationManager.isAuthorized(entity, operation)) {
			LOG.warn("Not enought authorizations : operation {} on {}", operation, entity.getClass().getSimpleName());
			throw new VSecurityException(message);
		}
	}

	public static  E assertOperationsOnOriginalEntity(final E entity, final OperationName operation) {
		return assertOperationsOnOriginalEntity(entity, operation, DEFAULT_FORBIDDEN_MESSAGE); //no too sharp info here : may use log
	}

	public static  E assertOperationsOnOriginalEntity(final E entity, final OperationName operation, final LocaleMessageText message) {
		E originalEntity;
		if (DataModelUtil.getId(entity) != null) {
			final EntityStoreManager entityStoreManager = Node.getNode().getComponentSpace().resolve(EntityStoreManager.class);
			originalEntity = (E) entityStoreManager.readOneForUpdate(entity.getUID());
		} else {
			originalEntity = entity;
		}
		assertOperations(originalEntity, operation, message); //no too sharp info here : may use log
		return originalEntity;
	}

	public static void assertOr(final BooleanSupplier... booleanSuppliers) {
		if (!Stream.of(booleanSuppliers).anyMatch(BooleanSupplier::getAsBoolean)) {
			throw new VSecurityException(DEFAULT_FORBIDDEN_MESSAGE);
		}
	}

	public static BooleanSupplier hasAuthorization(final AuthorizationName... authorizationName) {
		final AuthorizationManager authorizationManager = Node.getNode().getComponentSpace().resolve(AuthorizationManager.class);
		return () -> authorizationManager.hasAuthorization(authorizationName);
	}

	public static  AuthorizationCriteria authorizationCriteria(final Class clazz, final OperationName operation) {
		final AuthorizationManager authorizationManager = Node.getNode().getComponentSpace().resolve(AuthorizationManager.class);
		final Criteria criteria = authorizationManager.getCriteriaSecurity(clazz, operation);
		return new AuthorizationCriteria<>(criteria, clazz);
	}

	public static  String getSearchSecurity(final Class clazz, final OperationName operation) {
		/** TODO : Devrait passer par getCriteriaSecurity*/
		final AuthorizationManager authorizationManager = Node.getNode().getComponentSpace().resolve(AuthorizationManager.class);
		return authorizationManager.getSearchSecurity(clazz, operation);
	}

	public static  Criteria getCriteriaSecurity(final Class clazz, final OperationName operation) {
		final AuthorizationManager authorizationManager = Node.getNode().getComponentSpace().resolve(AuthorizationManager.class);
		return authorizationManager.getCriteriaSecurity(clazz, operation);
	}

	public static  E assertOperationsWithLoad(final UID entityUid, final OperationName operation) {
		return assertOperationsWithLoad(entityUid, operation, DEFAULT_FORBIDDEN_MESSAGE);
	}

	public static  E assertOperationsWithLoad(final UID entityUid, final OperationName operation, final LocaleMessageText message) {
		return assertOperationsAndReturn(() -> {
			final EntityStoreManager entityStoreManager = Node.getNode().getComponentSpace().resolve(EntityStoreManager.class);
			return entityStoreManager.readOne(entityUid);
		}, operation, message);
	}

	public static  void assertOperationsWithLoadIfNeeded(final StoreVAccessor entityAccessor, final OperationName operation) {
		assertOperationsWithLoadIfNeeded(entityAccessor, operation, DEFAULT_FORBIDDEN_MESSAGE);
	}

	public static  void assertOperationsWithLoadIfNeeded(final StoreVAccessor entityAccessor, final OperationName operation, final LocaleMessageText message) {
		if (!entityAccessor.isLoaded()) {
			entityAccessor.load();
		}
		assertOperations(entityAccessor.get(), operation, message);
	}

	public static  E assertOperationsAndReturn(final Supplier entityLoader, final OperationName operation) {
		return assertOperationsAndReturn(entityLoader, operation, DEFAULT_FORBIDDEN_MESSAGE);
	}

	public static  E assertOperationsAndReturn(final Supplier entityLoader, final OperationName operation, final LocaleMessageText message) {
		final E entity = entityLoader.get();
		assertOperations(entity, operation, message);
		return entity;
	}
}