• Home
• org.bonitasoft.engine
• bonita-server
• 10.2.0
• source code
• ResourcesPermissionsMapping.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.bonitasoft.engine.authorization.properties.ResourcesPermissionsMapping Maven / Gradle / Ivy

/**
 * Copyright (C) 2021 Bonitasoft S.A.
 * Bonitasoft, 32 rue Gustave Eiffel - 38000 Grenoble
 * This library is free software; you can redistribute it and/or modify it under the terms
 * of the GNU Lesser General Public License as published by the Free Software Foundation
 * version 2.1 of the License.
 * This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;
 * without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
 * See the GNU Lesser General Public License for more details.
 * You should have received a copy of the GNU Lesser General Public License along with this
 * program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth
 * Floor, Boston, MA 02110-1301, USA.
 **/
package org.bonitasoft.engine.authorization.properties;

import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
import java.util.Set;

import org.bonitasoft.engine.cache.CacheService;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.core.annotation.Order;
import org.springframework.stereotype.Component;

/**
 * @author Anthony Birembaut
 * @author Baptiste Mesta
 * @author Fabio Lombardi
 */
@Component
@Order(3)
public class ResourcesPermissionsMapping extends ConfigurationFile {

    public static final String RESOURCE_IDS_SEPARATOR = "/";

    public static final String API_METHOD_SEPARATOR = "|";

    public static final String WILDCARD = "*";

    /**
     * Default name of the preferences file
     */
    public static final String PROPERTIES_FILENAME = "resources-permissions-mapping.properties";

    @Override
    protected String getPropertiesFileName() {
        return PROPERTIES_FILENAME;
    }

    public ResourcesPermissionsMapping(@Value("${tenantId}") long tenantId, CacheService cacheService,
            ConfigurationFilesManager configurationFilesManager) {
        super(tenantId, cacheService, configurationFilesManager);
    }

    public Set getResourcePermissions(final String method, final String apiName, final String resourceName,
            final List resourceQualifiers) {
        final String key = buildResourceKey(method, apiName, resourceName, resourceQualifiers);
        return getPropertyAsSet(key);
    }

    public Set getResourcePermissionsWithWildCard(final String method, final String apiName,
            final String resourceName, final List resourceQualifiers) {
        if (resourceQualifiers != null && resourceQualifiers.size() > 0) {
            for (int i = resourceQualifiers.size() - 1; i >= 0; i--) {
                final List resourceQualifiersWithWildCard = getResourceQualifiersWithWildCard(
                        resourceQualifiers, i);
                final String key = buildResourceKey(method, apiName, resourceName, resourceQualifiersWithWildCard);
                final Set permissions = getPropertyAsSet(key);
                if (!permissions.isEmpty()) {
                    return permissions;
                }
            }
            final List reducedResourceQualifiers = new ArrayList<>(resourceQualifiers);
            reducedResourceQualifiers.remove(resourceQualifiers.size() - 1);
            return getResourcePermissionsWithWildCard(method, apiName, resourceName, reducedResourceQualifiers);
        }
        return Collections.emptySet();
    }

    protected List getResourceQualifiersWithWildCard(final List resourceQualifiers,
            final int wildCardPosition) {
        final List resourceQualifiersWithWildCard = new ArrayList<>(resourceQualifiers);
        resourceQualifiersWithWildCard.set(wildCardPosition, WILDCARD);
        return resourceQualifiersWithWildCard;
    }

    protected String buildResourceKey(final String method, final String apiName, final String resourceName,
            final List resourceQualifiers) {
        StringBuilder key = new StringBuilder(method + API_METHOD_SEPARATOR + apiName + "/" + resourceName);
        if (resourceQualifiers != null) {
            for (final String resourceQualifier : resourceQualifiers) {
                key.append(RESOURCE_IDS_SEPARATOR).append(resourceQualifier);
            }
        }
        return key.toString();
    }

    public Set getResourcePermissions(final String method, final String apiName, final String resourceName) {
        return getResourcePermissions(method, apiName, resourceName, null);
    }

    @Override
    protected boolean hasCustomVersion() {
        return true;
    }

    @Override
    protected boolean hasInternalVersion() {
        return true;
    }
}