All Downloads are FREE. Search and download functionalities are using the official Maven repository.

leap.web.security.authz.DefaultAuthorizationManager Maven / Gradle / Ivy

/*
 * Copyright 2014 the original author or authors.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package leap.web.security.authz;

import leap.core.annotation.Inject;
import leap.core.annotation.M;
import leap.core.security.Authorization;
import leap.lang.Result;
import leap.web.Request;
import leap.web.RequestIntercepted;
import leap.web.Response;
import leap.web.security.SecurityConfig;

public class DefaultAuthorizationManager implements AuthorizationManager {

    protected static final Authorization EMPTY_AUTHZ = new Authorization() {};

    protected @Inject @M SecurityConfig          config;
    protected @Inject @M AuthorizationResolver[] resolvers;
    protected @Inject @M AuthorizationChecker[]  checkers;

	@Override
    public Authorization resolveAuthorization(Request request, Response response, AuthorizationContext context) throws Throwable {

		for(AuthorizationResolver resolver : resolvers){
			Result r =
                    resolver.resolveAuthorization(request, response, context);

            if(null == r || r.isEmpty()) {
                continue;
            }

            if(r.isIntercepted()) {
                RequestIntercepted.throwIt();
            }

            if(r.isPresent()) {
                return r.get();
            }

		}
		
		return EMPTY_AUTHZ;
    }

    @Override
    public boolean checkAuthorization(Request request, Response response,
                                      AuthorizationContext context) throws Throwable {
        for(AuthorizationChecker checker : checkers){
            if(!checker.check(request,response,context.getAuthorization(),context)){
                return false;
            }
        }
        return true;
    }
}




© 2015 - 2025 Weber Informatics LLC | Privacy Policy