-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathMyDynamicResourceHandler.java
125 lines (109 loc) · 5.29 KB
/
MyDynamicResourceHandler.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
package security;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import java.util.Optional;
import java.util.UUID;
import org.apache.commons.lang3.StringUtils;
import play.Logger;
import play.libs.F;
import play.libs.F.Promise;
import play.mvc.Http.Context;
import be.objectify.deadbolt.core.models.Permission;
import be.objectify.deadbolt.java.DeadboltHandler;
import be.objectify.deadbolt.java.DynamicResourceHandler;
public class MyDynamicResourceHandler implements DynamicResourceHandler {
private static final Map<String, Optional<DynamicResourceHandler>> HANDLERS = new HashMap<String, Optional<DynamicResourceHandler>>();
private static final DynamicResourceHandler DENY = new DynamicResourceHandler() {
@Override
public F.Promise<Boolean> isAllowed( String s,
String s1,
DeadboltHandler deadboltHandler,
Context context) {
return F.Promise.pure(false);
}
@Override
public F.Promise<Boolean> checkPermission( String s,
DeadboltHandler deadboltHandler,
Context context) {
return F.Promise.pure(false);
}
};
static {
// for each, the "meta" propery is used to pass down information on how to recognize to what
// set of resources we are referring
HANDLERS.put("MemberOfGroup", Optional.of(new GroupDynamicResourceHandler()));
HANDLERS.put("MemberOfAssembly", Optional.of(new AssemblyDynamicResourceHandler()));
HANDLERS.put("CoordinatorOfGroup", Optional.of(new GroupDynamicResourceHandler()));
HANDLERS.put("CoordinatorOfAssembly", Optional.of(new AssemblyDynamicResourceHandler()));
HANDLERS.put("CoordinatorOfSpace", Optional.of(new SpaceDynamicResourceHandler()));
HANDLERS.put("ModeratorOfAssembly", Optional.of(new AssemblyDynamicResourceHandler()));
HANDLERS.put("ModeratorOfGroup", Optional.of(new GroupDynamicResourceHandler()));
HANDLERS.put("GroupMemberIsExpert", Optional.of(new GroupDynamicResourceHandler()));
HANDLERS.put("AssemblyMemberIsExpert", Optional.of(new AssemblyDynamicResourceHandler()));
HANDLERS.put("CanInviteToGroup", Optional.of(new GroupDynamicResourceHandler()));
HANDLERS.put("CanInviteToAssembly", Optional.of(new AssemblyDynamicResourceHandler()));
HANDLERS.put("OnlyMe", Optional.of(new OnlyMeDynamicResourceHandler()));
HANDLERS.put("OnlyMeAndAdmin", Optional.of(new OnlyMeAndAdminDynamicResourceHandler()));
HANDLERS.put("MemberOrListed", Optional.of(new AssemblyProfileDynamicResourceHandler()));
HANDLERS.put("AuthorOfContribution", Optional.of(new ContributionDynamicResourceHandler()));
HANDLERS.put("AuthorOrCoordinator", Optional.of(new CoordinatorOrAuthorDynamicResourceHandler()));
HANDLERS.put("OnlyMeAndCoordinatorOfAssembly", Optional.of(new OnlyMeAndCoordinatorOfAssemblyDynamicResourceHandler()));
}
@Override
public Promise<Boolean> checkPermission(String permissionValue,
DeadboltHandler deadboltHandler, Context ctx) {
return deadboltHandler.getSubject(ctx)
.map(subjectOption -> {
final boolean[] permissionOk = {false};
subjectOption.ifPresent(subject -> {
List<? extends Permission> permissions = subject.getPermissions();
for (Iterator<? extends Permission> iterator = permissions.iterator(); !permissionOk[0] && iterator.hasNext(); )
{
Permission permission = iterator.next();
permissionOk[0] = permission.getValue().contains(permissionValue);
}
});
return permissionOk[0];
});
}
@Override
public Promise<Boolean> isAllowed(final String name,
final String meta,
final DeadboltHandler deadboltHandler,
final Context ctx) {
return HANDLERS.get(name)
.orElseGet(() -> {
Logger.error("No handler available for " + name);
return DENY;
})
.isAllowed(name,
meta,
deadboltHandler,
ctx);
}
public static Long getIdFromPath(String path, String id_from){
String id = StringUtils.substringAfter(path, id_from);
if(StringUtils.contains(id, "/"))
id = id.split("/")[0];
try {
return Long.parseLong(id);
} catch (Exception e) {
return new Long(-1);
}
}
public static UUID getUUIDFromPath(String path, String id_from){
String id = StringUtils.substringAfter(path, id_from);
if (StringUtils.contains(id, "/")) {
id = id.split("/")[0];
}
UUID uuid = null;
try {
uuid = id !=null ? UUID.fromString(id) : null;
} catch (Exception e) {
return null;
}
return uuid;
}
}