| /* |
| * Licensed to the Apache Software Foundation (ASF) under one or more |
| * contributor license agreements. See the NOTICE file distributed with |
| * this work for additional information regarding copyright ownership. |
| * The ASF licenses this file to You under the Apache License, Version 2.0 |
| * (the "License"); you may not use this file except in compliance with |
| * the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package org.apache.ranger.security.context; |
| |
| import java.util.HashMap; |
| import java.util.HashSet; |
| import java.util.Map; |
| import java.util.Set; |
| |
| import org.apache.commons.collections.CollectionUtils; |
| import org.springframework.stereotype.Component; |
| |
| @Component |
| public class RangerAPIMapping { |
| |
| /** |
| * @NOTE While adding new tab here, please don't forget to update the function: |
| * org.apache.ranger.security.context.RangerAPIMapping.getAvailableUITabs() |
| */ |
| public static final String TAB_RESOURCE_BASED_POLICIES = "Resource Based Policies"; |
| public static final String TAB_AUDIT = "Audit"; |
| public static final String TAB_USERS_GROUPS = "Users/Groups"; |
| public static final String TAB_PERMISSIONS = "Permissions"; |
| public static final String TAB_KEY_MANAGER = "Key Manager"; |
| public static final String TAB_TAG_BASED_POLICIES = "Tag Based Policies"; |
| public static final String TAB_REPORTS = "Reports"; |
| |
| private static HashMap<String, Set<String>> rangerAPIMappingWithUI = null; |
| private static Set<String> tabList = new HashSet<String>(); |
| private static Map<String, Set<String>> mapApiToTabs = null; |
| |
| public RangerAPIMapping() { |
| init(); |
| } |
| |
| private void init() { |
| if (rangerAPIMappingWithUI == null) { |
| rangerAPIMappingWithUI = new HashMap<String, Set<String>>(); |
| } |
| if (mapApiToTabs == null) { |
| mapApiToTabs = new HashMap<String, Set<String>>(); |
| } |
| |
| mapResourceBasedPoliciesWithAPIs(); |
| mapAuditWithAPIs(); |
| mapUGWithAPIs(); |
| mapPermissionsWithAPIs(); |
| mapKeyManagerWithAPIs(); |
| mapTagBasedPoliciesWithAPIs(); |
| mapReportsWithAPIs(); |
| |
| if (CollectionUtils.isEmpty(tabList)) { |
| populateAvailableUITabs(); |
| } |
| |
| } |
| |
| private void populateAvailableUITabs() { |
| tabList = new HashSet<String>(); |
| tabList.add(TAB_RESOURCE_BASED_POLICIES); |
| tabList.add(TAB_TAG_BASED_POLICIES); |
| tabList.add(TAB_AUDIT); |
| tabList.add(TAB_REPORTS); |
| tabList.add(TAB_KEY_MANAGER); |
| tabList.add(TAB_PERMISSIONS); |
| tabList.add(TAB_USERS_GROUPS); |
| } |
| |
| private void mapReportsWithAPIs() { |
| Set<String> apiAssociatedWithReports = new HashSet<String>(); |
| |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_ASSETS); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_ASSET); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_ASSETS); |
| |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_SERVICES); |
| apiAssociatedWithReports.add(RangerAPIList.GET_POLICY_FOR_VERSION_NO); |
| apiAssociatedWithReports.add(RangerAPIList.GET_POLICY_FROM_EVENT_TIME); |
| apiAssociatedWithReports.add(RangerAPIList.GET_POLICY_VERSION_LIST); |
| apiAssociatedWithReports.add(RangerAPIList.GET_SERVICE); |
| apiAssociatedWithReports.add(RangerAPIList.GET_SERVICE_BY_NAME); |
| apiAssociatedWithReports.add(RangerAPIList.GET_SERVICE_DEF); |
| apiAssociatedWithReports.add(RangerAPIList.GET_SERVICE_DEF_BY_NAME); |
| apiAssociatedWithReports.add(RangerAPIList.GET_SERVICE_DEFS); |
| apiAssociatedWithReports.add(RangerAPIList.GET_SERVICES); |
| apiAssociatedWithReports.add(RangerAPIList.LOOKUP_RESOURCE); |
| |
| apiAssociatedWithReports.add(RangerAPIList.GET_USER_PROFILE_FOR_USER); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_USERS); |
| |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_AUDIT_MAPS); |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_GROUP_GROUPS); |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_GROUPS); |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_GROUP_USERS); |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_PERM_MAPS); |
| apiAssociatedWithReports.add(RangerAPIList.COUNT_X_USERS); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_AUDIT_MAP); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_GROUP); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_GROUP_BY_GROUP_NAME); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_GROUP_GROUP); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_GROUP_USER); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_GROUP_USERS); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_PERM_MAP); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_USER); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_USER_BY_USER_NAME); |
| apiAssociatedWithReports.add(RangerAPIList.GET_X_USER_GROUPS); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_AUDIT_MAPS); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_GROUP_GROUPS); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_GROUPS); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_GROUP_USERS); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_PERM_MAPS); |
| apiAssociatedWithReports.add(RangerAPIList.SEARCH_X_USERS); |
| apiAssociatedWithReports.add(RangerAPIList.SECURE_GET_X_GROUP); |
| apiAssociatedWithReports.add(RangerAPIList.SECURE_GET_X_USER); |
| |
| rangerAPIMappingWithUI.put(TAB_REPORTS, apiAssociatedWithReports); |
| |
| for (String api : apiAssociatedWithReports) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_REPORTS); |
| } |
| } |
| |
| private void mapTagBasedPoliciesWithAPIs() { |
| Set<String> apiAssociatedWithTagBasedPolicy = new HashSet<String>(); |
| |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_ASSETS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE_X_ASSET); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.DELETE_X_ASSET); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_ASSET); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_ASSETS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.TEST_CONFIG); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.UPDATE_X_ASSET); |
| |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_SERVICES); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE_SERVICE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE_SERVICE_DEF); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.DELETE_SERVICE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.DELETE_SERVICE_DEF); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_POLICY_FOR_VERSION_NO); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_POLICY_FROM_EVENT_TIME); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_POLICY_VERSION_LIST); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_SERVICE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_SERVICE_BY_NAME); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_SERVICE_DEF); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_SERVICE_DEF_BY_NAME); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_SERVICE_DEFS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_SERVICES); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.LOOKUP_RESOURCE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.UPDATE_SERVICE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.UPDATE_SERVICE_DEF); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.VALIDATE_CONFIG); |
| |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_USER_PROFILE_FOR_USER); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_USERS); |
| |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_AUDIT_MAPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_GROUP_GROUPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_GROUPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_GROUP_USERS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_PERM_MAPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.COUNT_X_USERS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE_X_AUDIT_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE_X_PERM_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.DELETE_X_AUDIT_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.DELETE_X_PERM_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_AUDIT_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_GROUP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_GROUP_BY_GROUP_NAME); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_GROUP_GROUP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_GROUP_USER); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_GROUP_USERS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_PERM_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_USER); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_USER_BY_USER_NAME); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.GET_X_USER_GROUPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.MODIFY_GROUPS_VISIBILITY); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.MODIFY_USER_ACTIVE_STATUS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.MODIFY_USER_VISIBILITY); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_AUDIT_MAPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_GROUP_GROUPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_GROUPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_GROUP_USERS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_PERM_MAPS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SEARCH_X_USERS); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SECURE_GET_X_GROUP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SECURE_GET_X_USER); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.UPDATE_X_AUDIT_MAP); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.UPDATE_X_PERM_MAP); |
| |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.CREATE_DEFAULT_ACCOUNT_USER); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.UPDATE); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.SET_USER_ROLES); |
| apiAssociatedWithTagBasedPolicy.add(RangerAPIList.DEACTIVATE_USER); |
| |
| rangerAPIMappingWithUI.put(TAB_TAG_BASED_POLICIES, apiAssociatedWithTagBasedPolicy); |
| |
| for (String api : apiAssociatedWithTagBasedPolicy) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_TAG_BASED_POLICIES); |
| } |
| } |
| |
| private void mapKeyManagerWithAPIs() { |
| |
| Set<String> apiAssociatedWithKeyManager = new HashSet<String>(); |
| |
| apiAssociatedWithKeyManager.add(RangerAPIList.COUNT_X_ASSETS); |
| apiAssociatedWithKeyManager.add(RangerAPIList.CREATE_X_ASSET); |
| apiAssociatedWithKeyManager.add(RangerAPIList.DELETE_X_ASSET); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_X_ASSET); |
| apiAssociatedWithKeyManager.add(RangerAPIList.SEARCH_X_ASSETS); |
| apiAssociatedWithKeyManager.add(RangerAPIList.TEST_CONFIG); |
| apiAssociatedWithKeyManager.add(RangerAPIList.UPDATE_X_ASSET); |
| |
| apiAssociatedWithKeyManager.add(RangerAPIList.COUNT_SERVICES); |
| apiAssociatedWithKeyManager.add(RangerAPIList.CREATE_SERVICE); |
| apiAssociatedWithKeyManager.add(RangerAPIList.CREATE_SERVICE_DEF); |
| apiAssociatedWithKeyManager.add(RangerAPIList.DELETE_SERVICE); |
| apiAssociatedWithKeyManager.add(RangerAPIList.DELETE_SERVICE_DEF); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_POLICY_FOR_VERSION_NO); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_POLICY_FROM_EVENT_TIME); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_POLICY_VERSION_LIST); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_SERVICE); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_SERVICE_BY_NAME); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_SERVICE_DEF); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_SERVICE_DEF_BY_NAME); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_SERVICE_DEFS); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_SERVICES); |
| apiAssociatedWithKeyManager.add(RangerAPIList.LOOKUP_RESOURCE); |
| apiAssociatedWithKeyManager.add(RangerAPIList.UPDATE_SERVICE); |
| apiAssociatedWithKeyManager.add(RangerAPIList.UPDATE_SERVICE_DEF); |
| apiAssociatedWithKeyManager.add(RangerAPIList.VALIDATE_CONFIG); |
| |
| apiAssociatedWithKeyManager.add(RangerAPIList.CREATE_KEY); |
| apiAssociatedWithKeyManager.add(RangerAPIList.DELETE_KEY); |
| apiAssociatedWithKeyManager.add(RangerAPIList.GET_KEY); |
| apiAssociatedWithKeyManager.add(RangerAPIList.ROLLOVER_KEYS); |
| apiAssociatedWithKeyManager.add(RangerAPIList.SEARCH_KEYS); |
| |
| rangerAPIMappingWithUI.put(TAB_KEY_MANAGER, apiAssociatedWithKeyManager); |
| |
| for (String api : apiAssociatedWithKeyManager) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_KEY_MANAGER); |
| } |
| } |
| |
| private void mapPermissionsWithAPIs() { |
| |
| Set<String> apiAssociatedWithPermissions = new HashSet<String>(); |
| |
| apiAssociatedWithPermissions.add(RangerAPIList.COUNT_X_GROUP_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.COUNT_X_MODULE_DEF); |
| apiAssociatedWithPermissions.add(RangerAPIList.COUNT_X_USER_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.CREATE_X_GROUP_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.CREATE_X_MODULE_DEF_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.CREATE_X_USER_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.DELETE_X_GROUP_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.DELETE_X_MODULE_DEF_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.DELETE_X_USER_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.GET_X_GROUP_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.GET_X_MODULE_DEF_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.GET_X_USER_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.SEARCH_X_GROUP_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.SEARCH_X_MODULE_DEF); |
| apiAssociatedWithPermissions.add(RangerAPIList.SEARCH_X_USER_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.UPDATE_X_GROUP_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.UPDATE_X_MODULE_DEF_PERMISSION); |
| apiAssociatedWithPermissions.add(RangerAPIList.UPDATE_X_USER_PERMISSION); |
| |
| rangerAPIMappingWithUI.put(TAB_PERMISSIONS, apiAssociatedWithPermissions); |
| |
| for (String api : apiAssociatedWithPermissions) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_PERMISSIONS); |
| } |
| } |
| |
| private void mapUGWithAPIs() { |
| Set<String> apiAssociatedWithUserAndGroups = new HashSet<String>(); |
| |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_USER_PROFILE_FOR_USER); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_USERS); |
| |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.COUNT_X_AUDIT_MAPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.COUNT_X_GROUP_GROUPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.COUNT_X_GROUPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.COUNT_X_GROUP_USERS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.COUNT_X_PERM_MAPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.COUNT_X_USERS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.CREATE_X_AUDIT_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.CREATE_X_PERM_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.DELETE_X_AUDIT_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.DELETE_X_PERM_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_AUDIT_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_GROUP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_GROUP_BY_GROUP_NAME); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_GROUP_GROUP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_GROUP_USER); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_GROUP_USERS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_PERM_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_USER); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_USER_BY_USER_NAME); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_X_USER_GROUPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.MODIFY_GROUPS_VISIBILITY); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.MODIFY_USER_ACTIVE_STATUS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.MODIFY_USER_VISIBILITY); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_X_AUDIT_MAPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_X_GROUP_GROUPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_X_GROUPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_X_GROUP_USERS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_X_PERM_MAPS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SEARCH_X_USERS); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SECURE_GET_X_GROUP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SECURE_GET_X_USER); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.UPDATE_X_AUDIT_MAP); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.UPDATE_X_PERM_MAP); |
| |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.CREATE); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.CREATE_DEFAULT_ACCOUNT_USER); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.UPDATE); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SET_USER_ROLES); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.DEACTIVATE_USER); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SET_USER_ROLES_BY_ID); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.SET_USER_ROLES_BY_NAME); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_USER_ROLES_BY_ID); |
| apiAssociatedWithUserAndGroups.add(RangerAPIList.GET_USER_ROLES_BY_NAME); |
| |
| rangerAPIMappingWithUI.put(TAB_USERS_GROUPS, apiAssociatedWithUserAndGroups); |
| |
| for (String api : apiAssociatedWithUserAndGroups) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_USERS_GROUPS); |
| } |
| } |
| |
| private void mapAuditWithAPIs() { |
| |
| Set<String> apiAssociatedWithAudit = new HashSet<String>(); |
| |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_ASSETS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_ASSET); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_ASSETS); |
| |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_SERVICES); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_POLICY_FOR_VERSION_NO); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_POLICY_FROM_EVENT_TIME); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_POLICY_VERSION_LIST); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_PLUGINS_INFO); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_SERVICE); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_SERVICE_BY_NAME); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_SERVICE_DEF); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_SERVICE_DEF_BY_NAME); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_SERVICE_DEFS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_SERVICES); |
| apiAssociatedWithAudit.add(RangerAPIList.LOOKUP_RESOURCE); |
| |
| apiAssociatedWithAudit.add(RangerAPIList.GET_USER_PROFILE_FOR_USER); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_USERS); |
| |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_AUDIT_MAPS); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_GROUP_GROUPS); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_GROUPS); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_GROUP_USERS); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_PERM_MAPS); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_USERS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_AUDIT_MAP); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_GROUP); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_GROUP_BY_GROUP_NAME); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_GROUP_GROUP); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_GROUP_USER); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_GROUP_USERS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_PERM_MAP); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_USER); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_USER_BY_USER_NAME); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_USER_GROUPS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_AUDIT_MAPS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_GROUP_GROUPS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_GROUPS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_GROUP_USERS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_PERM_MAPS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_USERS); |
| apiAssociatedWithAudit.add(RangerAPIList.SECURE_GET_X_GROUP); |
| apiAssociatedWithAudit.add(RangerAPIList.SECURE_GET_X_USER); |
| |
| apiAssociatedWithAudit.add(RangerAPIList.GET_X_TRX_LOG); |
| apiAssociatedWithAudit.add(RangerAPIList.CREATE_X_TRX_LOG); |
| apiAssociatedWithAudit.add(RangerAPIList.UPDATE_X_TRX_LOG); |
| apiAssociatedWithAudit.add(RangerAPIList.DELETE_X_TRX_LOG); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_TRX_LOG); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_TRX_LOGS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_ACCESS_AUDITS); |
| apiAssociatedWithAudit.add(RangerAPIList.COUNT_X_ACCESS_AUDITS); |
| apiAssociatedWithAudit.add(RangerAPIList.SEARCH_X_POLICY_EXPORT_AUDITS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_REPORT_LOGS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_TRANSACTION_REPORT); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_ACCESS_LOGS); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_AUTH_SESSION); |
| apiAssociatedWithAudit.add(RangerAPIList.GET_AUTH_SESSIONS); |
| |
| rangerAPIMappingWithUI.put(TAB_AUDIT, apiAssociatedWithAudit); |
| |
| for (String api : apiAssociatedWithAudit) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_AUDIT); |
| } |
| } |
| |
| private void mapResourceBasedPoliciesWithAPIs() { |
| Set<String> apiAssociatedWithRBPolicies = new HashSet<String>(); |
| |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_ASSETS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE_X_ASSET); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.DELETE_X_ASSET); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_ASSET); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_ASSETS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.TEST_CONFIG); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.UPDATE_X_ASSET); |
| |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_SERVICES); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE_SERVICE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE_SERVICE_DEF); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.DELETE_SERVICE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.DELETE_SERVICE_DEF); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_POLICY_FOR_VERSION_NO); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_POLICY_FROM_EVENT_TIME); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_POLICY_VERSION_LIST); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_SERVICE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_SERVICE_BY_NAME); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_SERVICE_DEF); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_SERVICE_DEF_BY_NAME); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_SERVICE_DEFS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_SERVICES); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.LOOKUP_RESOURCE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.UPDATE_SERVICE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.UPDATE_SERVICE_DEF); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.VALIDATE_CONFIG); |
| |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_USER_PROFILE_FOR_USER); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_USERS); |
| |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_AUDIT_MAPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_GROUP_GROUPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_GROUPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_GROUP_USERS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_PERM_MAPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.COUNT_X_USERS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE_X_AUDIT_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE_X_PERM_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.DELETE_X_AUDIT_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.DELETE_X_PERM_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_AUDIT_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_GROUP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_GROUP_BY_GROUP_NAME); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_GROUP_GROUP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_GROUP_USER); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_GROUP_USERS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_PERM_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_USER); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_USER_BY_USER_NAME); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.GET_X_USER_GROUPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.MODIFY_GROUPS_VISIBILITY); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.MODIFY_USER_ACTIVE_STATUS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.MODIFY_USER_VISIBILITY); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_AUDIT_MAPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_GROUP_GROUPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_GROUPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_GROUP_USERS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_PERM_MAPS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SEARCH_X_USERS); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SECURE_GET_X_GROUP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SECURE_GET_X_USER); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.UPDATE_X_AUDIT_MAP); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.UPDATE_X_PERM_MAP); |
| |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.CREATE_DEFAULT_ACCOUNT_USER); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.UPDATE); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.SET_USER_ROLES); |
| apiAssociatedWithRBPolicies.add(RangerAPIList.DEACTIVATE_USER); |
| |
| rangerAPIMappingWithUI.put(TAB_RESOURCE_BASED_POLICIES, apiAssociatedWithRBPolicies); |
| |
| for (String api : apiAssociatedWithRBPolicies) { |
| if (mapApiToTabs.get(api) == null) { |
| mapApiToTabs.put(api, new HashSet<String>()); |
| } |
| mapApiToTabs.get(api).add(TAB_RESOURCE_BASED_POLICIES); |
| } |
| } |
| |
| // * Utility methods starts from here, to retrieve API-UItab mapping information * |
| |
| public Set<String> getAvailableUITabs() { |
| if (CollectionUtils.isEmpty(tabList)) { |
| populateAvailableUITabs(); |
| } |
| return tabList; |
| } |
| |
| /** |
| * @param apiName |
| * @return |
| * |
| * @Note: apiName being passed to this function should strictly follow this format: {ClassName}.{apiMethodName} and also API should be listed into |
| * RangerAPIList and should be mapped properly with UI tabs in the current class. |
| */ |
| public Set<String> getAssociatedTabsWithAPI(String apiName) { |
| Set<String> associatedTabs = mapApiToTabs.get(apiName); |
| return associatedTabs; |
| } |
| } |
