• Home
• net.sf.esfinge
• MAC
• 1.2.3
• source code
• SensitivityLevelAuthorizer.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.esfinge.guardian.mac.authorizer.SensitivityLevelAuthorizer Maven / Gradle / Ivy

package org.esfinge.guardian.mac.authorizer;

import java.lang.annotation.Annotation;
import java.lang.reflect.Method;

import org.esfinge.guardian.authorizer.Authorizer;
import org.esfinge.guardian.context.AuthorizationContext;
import org.esfinge.guardian.mac.exception.EnumNotDefinedException;
import org.esfinge.guardian.mac.exception.WrongFormatSensitivityLevelException;
import org.esfinge.guardian.mac.utils.MacConfig;
import org.esfinge.guardian.utils.AnnotationUtils;

public class SensitivityLevelAuthorizer implements Authorizer {

	@Override
	public Boolean authorize(AuthorizationContext context, Annotation sensitivityLevel) {
		Class sensitivityType = sensitivityLevel.annotationType();
		MacConfig config = new MacConfig();
		Method value = null;
		try {
			value = sensitivityType.getMethod("value");
		} catch (Exception e) {
			throw new WrongFormatSensitivityLevelException("Please revise the format of " + sensitivityType);
		}
		
		Class enumClass = value.getReturnType();
		if (!enumClass.isEnum()) {
			throw new EnumNotDefinedException(sensitivityType.getName() + " must have an enum property defined as value()");
		}
		
		Enum subjectAuthorizationLevel = 
				context.
					getSubject().
						get(config.getAuthorizationLevelKey(), Enum.class);
		
		if (subjectAuthorizationLevel == null) {
			throw new EnumNotDefinedException("An authorization level must be defined for the subject");
		}
		
		String declaredLevelName = AnnotationUtils.extractAnnotationValue(sensitivityLevel);
		
		Enum declaredAuthorizationLevel = parseEnum(enumClass.getEnumConstants(), declaredLevelName);
		
		return (declaredAuthorizationLevel.ordinal() >= subjectAuthorizationLevel.ordinal());
	}
	
	private  Enum parseEnum(E[] constants, String levelName) {
		for (E constant : constants) {
			if (levelName.equals(constant.toString())) {
				return (Enum) constant;
			}
		}
		throw new EnumNotDefinedException("Declared enum did not match subject");
	}
}