• Home
• pl.allegro.tech.hermes
• hermes-management
• 2.7.0
• source code
• RolesEndpoint.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

pl.allegro.tech.hermes.management.api.RolesEndpoint Maven / Gradle / Ivy

package pl.allegro.tech.hermes.management.api;

import static jakarta.ws.rs.core.MediaType.APPLICATION_JSON;

import io.swagger.annotations.Api;
import io.swagger.annotations.ApiOperation;
import jakarta.ws.rs.GET;
import jakarta.ws.rs.HttpMethod;
import jakarta.ws.rs.Path;
import jakarta.ws.rs.Produces;
import jakarta.ws.rs.container.ContainerRequestContext;
import jakarta.ws.rs.core.SecurityContext;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Collection;
import java.util.Collections;
import java.util.function.Consumer;
import org.springframework.stereotype.Component;
import pl.allegro.tech.hermes.management.api.auth.Roles;

@Component
@Path("/roles")
@Api(value = "/roles", description = "Get user roles for given resource")
public class RolesEndpoint {

  @GET
  @Produces(APPLICATION_JSON)
  @ApiOperation(value = "Get general user roles", httpMethod = HttpMethod.GET)
  public Collection getRoles(ContainerRequestContext requestContext) {
    return getRoles(requestContext, Collections.emptyList());
  }

  private Collection getRoles(
      ContainerRequestContext requestContext, Collection additionalRoles) {
    SecurityContext securityContext = requestContext.getSecurityContext();
    Collection roles = new ArrayList<>();

    ifUserInRoleDo(securityContext, Roles.ADMIN, roles::add);
    ifUserInRoleDo(securityContext, Roles.ANY, roles::add);

    for (String role : additionalRoles) {
      ifUserInRoleDo(securityContext, role, roles::add);
    }

    return roles;
  }

  @GET
  @Produces(APPLICATION_JSON)
  @Path("/topics/{topicName}")
  @ApiOperation(value = "Get topic user roles", httpMethod = HttpMethod.GET)
  public Collection getTopicRoles(ContainerRequestContext requestContext) {
    return getRoles(requestContext, Collections.singletonList(Roles.TOPIC_OWNER));
  }

  @GET
  @Produces(APPLICATION_JSON)
  @Path("/topics/{topicName}/subscriptions/{subscriptionName}")
  @ApiOperation(value = "Get subscription user roles", httpMethod = HttpMethod.GET)
  public Collection getSubscriptionRoles(ContainerRequestContext requestContext) {
    return getRoles(requestContext, Arrays.asList(Roles.TOPIC_OWNER, Roles.SUBSCRIPTION_OWNER));
  }

  private void ifUserInRoleDo(
      SecurityContext securityContext, String role, Consumer consumer) {
    if (securityContext.isUserInRole(role)) {
      consumer.accept(role);
    }
  }
}