Google Git
Sign in
apache / archiva-web-content / 1b7e811f9aa411dd1b001fe82a147012e4cce823 / . / redback / core / 3.0.0-SNAPSHOT / apidocs / src-html / org / apache / archiva / redback / rest / services / DefaultRoleManagementService.html
blob: 24bf8bc8f99876de41ff2e301cb00f1526efc40d [file] [log] [blame]
<!DOCTYPE HTML>
<html lang="en">
<head>
<title>Source code</title>
<link rel="stylesheet" type="text/css" href="../../../../../../../stylesheet.css" title="Style">
</head>
<body>
<main role="main">
<div class="sourceContainer">
<pre><span class="sourceLineNo">001</span><a id="line.1">package org.apache.archiva.redback.rest.services;</a>
<span class="sourceLineNo">002</span><a id="line.2">/*</a>
<span class="sourceLineNo">003</span><a id="line.3"> * Licensed to the Apache Software Foundation (ASF) under one</a>
<span class="sourceLineNo">004</span><a id="line.4"> * or more contributor license agreements. See the NOTICE file</a>
<span class="sourceLineNo">005</span><a id="line.5"> * distributed with this work for additional information</a>
<span class="sourceLineNo">006</span><a id="line.6"> * regarding copyright ownership. The ASF licenses this file</a>
<span class="sourceLineNo">007</span><a id="line.7"> * to you under the Apache License, Version 2.0 (the</a>
<span class="sourceLineNo">008</span><a id="line.8"> * "License"); you may not use this file except in compliance</a>
<span class="sourceLineNo">009</span><a id="line.9"> * with the License. You may obtain a copy of the License at</a>
<span class="sourceLineNo">010</span><a id="line.10"> *</a>
<span class="sourceLineNo">011</span><a id="line.11"> * http://www.apache.org/licenses/LICENSE-2.0</a>
<span class="sourceLineNo">012</span><a id="line.12"> *</a>
<span class="sourceLineNo">013</span><a id="line.13"> * Unless required by applicable law or agreed to in writing,</a>
<span class="sourceLineNo">014</span><a id="line.14"> * software distributed under the License is distributed on an</a>
<span class="sourceLineNo">015</span><a id="line.15"> * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY</a>
<span class="sourceLineNo">016</span><a id="line.16"> * KIND, either express or implied. See the License for the</a>
<span class="sourceLineNo">017</span><a id="line.17"> * specific language governing permissions and limitations</a>
<span class="sourceLineNo">018</span><a id="line.18"> * under the License.</a>
<span class="sourceLineNo">019</span><a id="line.19"> */</a>
<span class="sourceLineNo">020</span><a id="line.20"></a>
<span class="sourceLineNo">021</span><a id="line.21">import org.apache.archiva.redback.integration.model.AdminEditUserCredentials;</a>
<span class="sourceLineNo">022</span><a id="line.22">import org.apache.archiva.redback.integration.security.role.RedbackRoleConstants;</a>
<span class="sourceLineNo">023</span><a id="line.23">import org.apache.archiva.redback.integration.util.RoleSorter;</a>
<span class="sourceLineNo">024</span><a id="line.24">import org.apache.archiva.redback.rbac.Permission;</a>
<span class="sourceLineNo">025</span><a id="line.25">import org.apache.archiva.redback.rbac.RBACManager;</a>
<span class="sourceLineNo">026</span><a id="line.26">import org.apache.archiva.redback.rbac.RbacManagerException;</a>
<span class="sourceLineNo">027</span><a id="line.27">import org.apache.archiva.redback.rbac.Resource;</a>
<span class="sourceLineNo">028</span><a id="line.28">import org.apache.archiva.redback.rbac.UserAssignment;</a>
<span class="sourceLineNo">029</span><a id="line.29">import org.apache.archiva.redback.rest.api.model.ActionStatus;</a>
<span class="sourceLineNo">030</span><a id="line.30">import org.apache.archiva.redback.rest.api.model.Application;</a>
<span class="sourceLineNo">031</span><a id="line.31">import org.apache.archiva.redback.rest.api.model.ApplicationRoles;</a>
<span class="sourceLineNo">032</span><a id="line.32">import org.apache.archiva.redback.rest.api.model.ErrorMessage;</a>
<span class="sourceLineNo">033</span><a id="line.33">import org.apache.archiva.redback.rest.api.model.Role;</a>
<span class="sourceLineNo">034</span><a id="line.34">import org.apache.archiva.redback.rest.api.model.RoleTemplate;</a>
<span class="sourceLineNo">035</span><a id="line.35">import org.apache.archiva.redback.rest.api.model.VerificationStatus;</a>
<span class="sourceLineNo">036</span><a id="line.36">import org.apache.archiva.redback.rest.api.services.RedbackServiceException;</a>
<span class="sourceLineNo">037</span><a id="line.37">import org.apache.archiva.redback.rest.api.services.RoleManagementService;</a>
<span class="sourceLineNo">038</span><a id="line.38">import org.apache.archiva.redback.role.RoleManager;</a>
<span class="sourceLineNo">039</span><a id="line.39">import org.apache.archiva.redback.role.RoleManagerException;</a>
<span class="sourceLineNo">040</span><a id="line.40">import org.apache.archiva.redback.role.model.ModelApplication;</a>
<span class="sourceLineNo">041</span><a id="line.41">import org.apache.archiva.redback.role.model.ModelRole;</a>
<span class="sourceLineNo">042</span><a id="line.42">import org.apache.archiva.redback.role.model.ModelTemplate;</a>
<span class="sourceLineNo">043</span><a id="line.43">import org.apache.archiva.redback.users.User;</a>
<span class="sourceLineNo">044</span><a id="line.44">import org.apache.archiva.redback.users.UserManager;</a>
<span class="sourceLineNo">045</span><a id="line.45">import org.apache.archiva.redback.users.UserManagerException;</a>
<span class="sourceLineNo">046</span><a id="line.46">import org.apache.archiva.redback.users.UserNotFoundException;</a>
<span class="sourceLineNo">047</span><a id="line.47">import org.apache.commons.lang3.StringUtils;</a>
<span class="sourceLineNo">048</span><a id="line.48">import org.slf4j.Logger;</a>
<span class="sourceLineNo">049</span><a id="line.49">import org.slf4j.LoggerFactory;</a>
<span class="sourceLineNo">050</span><a id="line.50">import org.springframework.stereotype.Service;</a>
<span class="sourceLineNo">051</span><a id="line.51"></a>
<span class="sourceLineNo">052</span><a id="line.52">import javax.inject.Inject;</a>
<span class="sourceLineNo">053</span><a id="line.53">import javax.inject.Named;</a>
<span class="sourceLineNo">054</span><a id="line.54">import javax.ws.rs.core.Response;</a>
<span class="sourceLineNo">055</span><a id="line.55">import java.util.ArrayList;</a>
<span class="sourceLineNo">056</span><a id="line.56">import java.util.Arrays;</a>
<span class="sourceLineNo">057</span><a id="line.57">import java.util.Collection;</a>
<span class="sourceLineNo">058</span><a id="line.58">import java.util.Collections;</a>
<span class="sourceLineNo">059</span><a id="line.59">import java.util.Comparator;</a>
<span class="sourceLineNo">060</span><a id="line.60">import java.util.HashSet;</a>
<span class="sourceLineNo">061</span><a id="line.61">import java.util.List;</a>
<span class="sourceLineNo">062</span><a id="line.62">import java.util.Map;</a>
<span class="sourceLineNo">063</span><a id="line.63">import java.util.Optional;</a>
<span class="sourceLineNo">064</span><a id="line.64">import java.util.Set;</a>
<span class="sourceLineNo">065</span><a id="line.65">import java.util.stream.Collectors;</a>
<span class="sourceLineNo">066</span><a id="line.66"></a>
<span class="sourceLineNo">067</span><a id="line.67">/**</a>
<span class="sourceLineNo">068</span><a id="line.68"> * @deprecated Use the new V2 version {@link org.apache.archiva.redback.rest.services.v2.DefaultRoleService}</a>
<span class="sourceLineNo">069</span><a id="line.69"> * @author Olivier Lamy</a>
<span class="sourceLineNo">070</span><a id="line.70"> * @since 1.3</a>
<span class="sourceLineNo">071</span><a id="line.71"> */</a>
<span class="sourceLineNo">072</span><a id="line.72">@Deprecated</a>
<span class="sourceLineNo">073</span><a id="line.73">@Service("roleManagementService#rest")</a>
<span class="sourceLineNo">074</span><a id="line.74">public class DefaultRoleManagementService</a>
<span class="sourceLineNo">075</span><a id="line.75"> implements RoleManagementService</a>
<span class="sourceLineNo">076</span><a id="line.76">{</a>
<span class="sourceLineNo">077</span><a id="line.77"></a>
<span class="sourceLineNo">078</span><a id="line.78"> private Logger log = LoggerFactory.getLogger( getClass() );</a>
<span class="sourceLineNo">079</span><a id="line.79"></a>
<span class="sourceLineNo">080</span><a id="line.80"> private RoleManager roleManager;</a>
<span class="sourceLineNo">081</span><a id="line.81"></a>
<span class="sourceLineNo">082</span><a id="line.82"> private RBACManager rbacManager;</a>
<span class="sourceLineNo">083</span><a id="line.83"></a>
<span class="sourceLineNo">084</span><a id="line.84"> private UserManager userManager;</a>
<span class="sourceLineNo">085</span><a id="line.85"></a>
<span class="sourceLineNo">086</span><a id="line.86"> @Inject</a>
<span class="sourceLineNo">087</span><a id="line.87"> public DefaultRoleManagementService( RoleManager roleManager,</a>
<span class="sourceLineNo">088</span><a id="line.88"> @Named(value = "rbacManager#default") RBACManager rbacManager,</a>
<span class="sourceLineNo">089</span><a id="line.89"> @Named(value = "userManager#default") UserManager userManager )</a>
<span class="sourceLineNo">090</span><a id="line.90"> {</a>
<span class="sourceLineNo">091</span><a id="line.91"> this.roleManager = roleManager;</a>
<span class="sourceLineNo">092</span><a id="line.92"> this.rbacManager = rbacManager;</a>
<span class="sourceLineNo">093</span><a id="line.93"> this.userManager = userManager;</a>
<span class="sourceLineNo">094</span><a id="line.94"></a>
<span class="sourceLineNo">095</span><a id="line.95"> log.debug( "use rbacManager impl: {}", rbacManager.getClass().getName() );</a>
<span class="sourceLineNo">096</span><a id="line.96"> log.debug( "use userManager impl: {}", userManager.getClass().getName() );</a>
<span class="sourceLineNo">097</span><a id="line.97"> }</a>
<span class="sourceLineNo">098</span><a id="line.98"></a>
<span class="sourceLineNo">099</span><a id="line.99"> public ActionStatus createTemplatedRole( String templateId, String resource )</a>
<span class="sourceLineNo">100</span><a id="line.100"> throws RedbackServiceException</a>
<span class="sourceLineNo">101</span><a id="line.101"> {</a>
<span class="sourceLineNo">102</span><a id="line.102"> try</a>
<span class="sourceLineNo">103</span><a id="line.103"> {</a>
<span class="sourceLineNo">104</span><a id="line.104"> roleManager.createTemplatedRole( templateId, resource );</a>
<span class="sourceLineNo">105</span><a id="line.105"> }</a>
<span class="sourceLineNo">106</span><a id="line.106"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">107</span><a id="line.107"> {</a>
<span class="sourceLineNo">108</span><a id="line.108"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">109</span><a id="line.109"> }</a>
<span class="sourceLineNo">110</span><a id="line.110"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">111</span><a id="line.111"> }</a>
<span class="sourceLineNo">112</span><a id="line.112"></a>
<span class="sourceLineNo">113</span><a id="line.113"> public ActionStatus removeTemplatedRole( String templateId, String resource )</a>
<span class="sourceLineNo">114</span><a id="line.114"> throws RedbackServiceException</a>
<span class="sourceLineNo">115</span><a id="line.115"> {</a>
<span class="sourceLineNo">116</span><a id="line.116"></a>
<span class="sourceLineNo">117</span><a id="line.117"> try</a>
<span class="sourceLineNo">118</span><a id="line.118"> {</a>
<span class="sourceLineNo">119</span><a id="line.119"> roleManager.removeTemplatedRole( templateId, resource );</a>
<span class="sourceLineNo">120</span><a id="line.120"> }</a>
<span class="sourceLineNo">121</span><a id="line.121"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">122</span><a id="line.122"> {</a>
<span class="sourceLineNo">123</span><a id="line.123"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">124</span><a id="line.124"> }</a>
<span class="sourceLineNo">125</span><a id="line.125"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">126</span><a id="line.126"> }</a>
<span class="sourceLineNo">127</span><a id="line.127"></a>
<span class="sourceLineNo">128</span><a id="line.128"> public ActionStatus updateRole( String templateId, String oldResource, String newResource )</a>
<span class="sourceLineNo">129</span><a id="line.129"> throws RedbackServiceException</a>
<span class="sourceLineNo">130</span><a id="line.130"> {</a>
<span class="sourceLineNo">131</span><a id="line.131"> try</a>
<span class="sourceLineNo">132</span><a id="line.132"> {</a>
<span class="sourceLineNo">133</span><a id="line.133"> roleManager.moveTemplatedRole( templateId, oldResource, newResource );</a>
<span class="sourceLineNo">134</span><a id="line.134"> }</a>
<span class="sourceLineNo">135</span><a id="line.135"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">136</span><a id="line.136"> {</a>
<span class="sourceLineNo">137</span><a id="line.137"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">138</span><a id="line.138"> }</a>
<span class="sourceLineNo">139</span><a id="line.139"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">140</span><a id="line.140"> }</a>
<span class="sourceLineNo">141</span><a id="line.141"></a>
<span class="sourceLineNo">142</span><a id="line.142"> public ActionStatus assignRole( String roleId, String principal )</a>
<span class="sourceLineNo">143</span><a id="line.143"> throws RedbackServiceException</a>
<span class="sourceLineNo">144</span><a id="line.144"> {</a>
<span class="sourceLineNo">145</span><a id="line.145"> try</a>
<span class="sourceLineNo">146</span><a id="line.146"> {</a>
<span class="sourceLineNo">147</span><a id="line.147"> roleManager.assignRole( roleId, principal );</a>
<span class="sourceLineNo">148</span><a id="line.148"> }</a>
<span class="sourceLineNo">149</span><a id="line.149"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">150</span><a id="line.150"> {</a>
<span class="sourceLineNo">151</span><a id="line.151"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">152</span><a id="line.152"> }</a>
<span class="sourceLineNo">153</span><a id="line.153"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">154</span><a id="line.154"> }</a>
<span class="sourceLineNo">155</span><a id="line.155"></a>
<span class="sourceLineNo">156</span><a id="line.156"> public ActionStatus assignRoleByName( String roleName, String principal )</a>
<span class="sourceLineNo">157</span><a id="line.157"> throws RedbackServiceException</a>
<span class="sourceLineNo">158</span><a id="line.158"> {</a>
<span class="sourceLineNo">159</span><a id="line.159"> try</a>
<span class="sourceLineNo">160</span><a id="line.160"> {</a>
<span class="sourceLineNo">161</span><a id="line.161"> roleManager.assignRoleByName( roleName, principal );</a>
<span class="sourceLineNo">162</span><a id="line.162"> }</a>
<span class="sourceLineNo">163</span><a id="line.163"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">164</span><a id="line.164"> {</a>
<span class="sourceLineNo">165</span><a id="line.165"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">166</span><a id="line.166"> }</a>
<span class="sourceLineNo">167</span><a id="line.167"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">168</span><a id="line.168"> }</a>
<span class="sourceLineNo">169</span><a id="line.169"></a>
<span class="sourceLineNo">170</span><a id="line.170"> public ActionStatus assignTemplatedRole( String templateId, String resource, String principal )</a>
<span class="sourceLineNo">171</span><a id="line.171"> throws RedbackServiceException</a>
<span class="sourceLineNo">172</span><a id="line.172"> {</a>
<span class="sourceLineNo">173</span><a id="line.173"> try</a>
<span class="sourceLineNo">174</span><a id="line.174"> {</a>
<span class="sourceLineNo">175</span><a id="line.175"> roleManager.assignTemplatedRole( templateId, resource, principal );</a>
<span class="sourceLineNo">176</span><a id="line.176"> }</a>
<span class="sourceLineNo">177</span><a id="line.177"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">178</span><a id="line.178"> {</a>
<span class="sourceLineNo">179</span><a id="line.179"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">180</span><a id="line.180"> }</a>
<span class="sourceLineNo">181</span><a id="line.181"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">182</span><a id="line.182"> }</a>
<span class="sourceLineNo">183</span><a id="line.183"></a>
<span class="sourceLineNo">184</span><a id="line.184"> public ActionStatus unassignRole( String roleId, String principal )</a>
<span class="sourceLineNo">185</span><a id="line.185"> throws RedbackServiceException</a>
<span class="sourceLineNo">186</span><a id="line.186"> {</a>
<span class="sourceLineNo">187</span><a id="line.187"> try</a>
<span class="sourceLineNo">188</span><a id="line.188"> {</a>
<span class="sourceLineNo">189</span><a id="line.189"> roleManager.unassignRole( roleId, principal );</a>
<span class="sourceLineNo">190</span><a id="line.190"> }</a>
<span class="sourceLineNo">191</span><a id="line.191"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">192</span><a id="line.192"> {</a>
<span class="sourceLineNo">193</span><a id="line.193"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">194</span><a id="line.194"> }</a>
<span class="sourceLineNo">195</span><a id="line.195"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">196</span><a id="line.196"> }</a>
<span class="sourceLineNo">197</span><a id="line.197"></a>
<span class="sourceLineNo">198</span><a id="line.198"> public ActionStatus unassignRoleByName( String roleName, String principal )</a>
<span class="sourceLineNo">199</span><a id="line.199"> throws RedbackServiceException</a>
<span class="sourceLineNo">200</span><a id="line.200"> {</a>
<span class="sourceLineNo">201</span><a id="line.201"> try</a>
<span class="sourceLineNo">202</span><a id="line.202"> {</a>
<span class="sourceLineNo">203</span><a id="line.203"> roleManager.unassignRoleByName( roleName, principal );</a>
<span class="sourceLineNo">204</span><a id="line.204"> }</a>
<span class="sourceLineNo">205</span><a id="line.205"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">206</span><a id="line.206"> {</a>
<span class="sourceLineNo">207</span><a id="line.207"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">208</span><a id="line.208"> }</a>
<span class="sourceLineNo">209</span><a id="line.209"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">210</span><a id="line.210"> }</a>
<span class="sourceLineNo">211</span><a id="line.211"></a>
<span class="sourceLineNo">212</span><a id="line.212"> public Boolean roleExists( String roleId )</a>
<span class="sourceLineNo">213</span><a id="line.213"> throws RedbackServiceException</a>
<span class="sourceLineNo">214</span><a id="line.214"> {</a>
<span class="sourceLineNo">215</span><a id="line.215"> try</a>
<span class="sourceLineNo">216</span><a id="line.216"> {</a>
<span class="sourceLineNo">217</span><a id="line.217"> return roleManager.roleExists( roleId );</a>
<span class="sourceLineNo">218</span><a id="line.218"> }</a>
<span class="sourceLineNo">219</span><a id="line.219"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">220</span><a id="line.220"> {</a>
<span class="sourceLineNo">221</span><a id="line.221"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">222</span><a id="line.222"> }</a>
<span class="sourceLineNo">223</span><a id="line.223"> }</a>
<span class="sourceLineNo">224</span><a id="line.224"></a>
<span class="sourceLineNo">225</span><a id="line.225"> public Boolean templatedRoleExists( String templateId, String resource )</a>
<span class="sourceLineNo">226</span><a id="line.226"> throws RedbackServiceException</a>
<span class="sourceLineNo">227</span><a id="line.227"> {</a>
<span class="sourceLineNo">228</span><a id="line.228"> try</a>
<span class="sourceLineNo">229</span><a id="line.229"> {</a>
<span class="sourceLineNo">230</span><a id="line.230"> return roleManager.templatedRoleExists( templateId, resource );</a>
<span class="sourceLineNo">231</span><a id="line.231"> }</a>
<span class="sourceLineNo">232</span><a id="line.232"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">233</span><a id="line.233"> {</a>
<span class="sourceLineNo">234</span><a id="line.234"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">235</span><a id="line.235"> }</a>
<span class="sourceLineNo">236</span><a id="line.236"></a>
<span class="sourceLineNo">237</span><a id="line.237"> }</a>
<span class="sourceLineNo">238</span><a id="line.238"></a>
<span class="sourceLineNo">239</span><a id="line.239"> public VerificationStatus verifyTemplatedRole( String templateId, String resource )</a>
<span class="sourceLineNo">240</span><a id="line.240"> throws RedbackServiceException</a>
<span class="sourceLineNo">241</span><a id="line.241"> {</a>
<span class="sourceLineNo">242</span><a id="line.242"> try</a>
<span class="sourceLineNo">243</span><a id="line.243"> {</a>
<span class="sourceLineNo">244</span><a id="line.244"> roleManager.verifyTemplatedRole( templateId, resource );</a>
<span class="sourceLineNo">245</span><a id="line.245"> }</a>
<span class="sourceLineNo">246</span><a id="line.246"> catch ( RoleManagerException e )</a>
<span class="sourceLineNo">247</span><a id="line.247"> {</a>
<span class="sourceLineNo">248</span><a id="line.248"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">249</span><a id="line.249"> }</a>
<span class="sourceLineNo">250</span><a id="line.250"> return new VerificationStatus( true );</a>
<span class="sourceLineNo">251</span><a id="line.251"> }</a>
<span class="sourceLineNo">252</span><a id="line.252"></a>
<span class="sourceLineNo">253</span><a id="line.253"> public List&lt;Role&gt; getEffectivelyAssignedRoles( String username )</a>
<span class="sourceLineNo">254</span><a id="line.254"> throws RedbackServiceException</a>
<span class="sourceLineNo">255</span><a id="line.255"> {</a>
<span class="sourceLineNo">256</span><a id="line.256"> if ( StringUtils.isEmpty( username ) )</a>
<span class="sourceLineNo">257</span><a id="line.257"> {</a>
<span class="sourceLineNo">258</span><a id="line.258"> throw new RedbackServiceException( new ErrorMessage( "user.cannot.be.null" ) );</a>
<span class="sourceLineNo">259</span><a id="line.259"> }</a>
<span class="sourceLineNo">260</span><a id="line.260"> try</a>
<span class="sourceLineNo">261</span><a id="line.261"> {</a>
<span class="sourceLineNo">262</span><a id="line.262"> List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles =</a>
<span class="sourceLineNo">263</span><a id="line.263"> filterAssignableRoles( rbacManager.getEffectivelyAssignedRoles( username ) );</a>
<span class="sourceLineNo">264</span><a id="line.264"></a>
<span class="sourceLineNo">265</span><a id="line.265"> List&lt;Role&gt; effectivelyAssignedRoles = new ArrayList&lt;Role&gt;( roles.size() );</a>
<span class="sourceLineNo">266</span><a id="line.266"></a>
<span class="sourceLineNo">267</span><a id="line.267"> for ( org.apache.archiva.redback.rbac.Role r : roles )</a>
<span class="sourceLineNo">268</span><a id="line.268"> {</a>
<span class="sourceLineNo">269</span><a id="line.269"> effectivelyAssignedRoles.add( new Role( r ) );</a>
<span class="sourceLineNo">270</span><a id="line.270"> }</a>
<span class="sourceLineNo">271</span><a id="line.271"></a>
<span class="sourceLineNo">272</span><a id="line.272"> Collections.sort( effectivelyAssignedRoles, RoleComparator.INSTANCE );</a>
<span class="sourceLineNo">273</span><a id="line.273"></a>
<span class="sourceLineNo">274</span><a id="line.274"> return effectivelyAssignedRoles;</a>
<span class="sourceLineNo">275</span><a id="line.275"> }</a>
<span class="sourceLineNo">276</span><a id="line.276"> catch ( RbacManagerException rme )</a>
<span class="sourceLineNo">277</span><a id="line.277"> {</a>
<span class="sourceLineNo">278</span><a id="line.278"> // ignore, this can happen when the user has no roles assigned </a>
<span class="sourceLineNo">279</span><a id="line.279"> }</a>
<span class="sourceLineNo">280</span><a id="line.280"> return new ArrayList&lt;Role&gt;( 0 );</a>
<span class="sourceLineNo">281</span><a id="line.281"> }</a>
<span class="sourceLineNo">282</span><a id="line.282"></a>
<span class="sourceLineNo">283</span><a id="line.283"> private static class RoleComparator implements Comparator&lt;Role&gt; {</a>
<span class="sourceLineNo">284</span><a id="line.284"></a>
<span class="sourceLineNo">285</span><a id="line.285"> private static RoleComparator INSTANCE = new RoleComparator();</a>
<span class="sourceLineNo">286</span><a id="line.286"></a>
<span class="sourceLineNo">287</span><a id="line.287"> @Override</a>
<span class="sourceLineNo">288</span><a id="line.288"> public int compare( Role role, Role role2 )</a>
<span class="sourceLineNo">289</span><a id="line.289"> {</a>
<span class="sourceLineNo">290</span><a id="line.290"> return role.getName().compareTo( role2.getName() );</a>
<span class="sourceLineNo">291</span><a id="line.291"> }</a>
<span class="sourceLineNo">292</span><a id="line.292"> }</a>
<span class="sourceLineNo">293</span><a id="line.293"></a>
<span class="sourceLineNo">294</span><a id="line.294"></a>
<span class="sourceLineNo">295</span><a id="line.295"> public List&lt;Application&gt; getApplications( String username )</a>
<span class="sourceLineNo">296</span><a id="line.296"> throws RedbackServiceException</a>
<span class="sourceLineNo">297</span><a id="line.297"> {</a>
<span class="sourceLineNo">298</span><a id="line.298"></a>
<span class="sourceLineNo">299</span><a id="line.299"> List&lt;ModelApplication&gt; modelApplications = roleManager.getModel().getApplications();</a>
<span class="sourceLineNo">300</span><a id="line.300"></a>
<span class="sourceLineNo">301</span><a id="line.301"> List&lt;Application&gt; applications = new ArrayList&lt;Application&gt;( modelApplications.size() );</a>
<span class="sourceLineNo">302</span><a id="line.302"></a>
<span class="sourceLineNo">303</span><a id="line.303"> for ( ModelApplication modelApplication : modelApplications )</a>
<span class="sourceLineNo">304</span><a id="line.304"> {</a>
<span class="sourceLineNo">305</span><a id="line.305"> Application application = new Application();</a>
<span class="sourceLineNo">306</span><a id="line.306"> application.setDescription( modelApplication.getDescription() );</a>
<span class="sourceLineNo">307</span><a id="line.307"> application.setId( modelApplication.getId() );</a>
<span class="sourceLineNo">308</span><a id="line.308"> application.setLongDescription( modelApplication.getLongDescription() );</a>
<span class="sourceLineNo">309</span><a id="line.309"> application.setVersion( modelApplication.getVersion() );</a>
<span class="sourceLineNo">310</span><a id="line.310"> applications.add( application );</a>
<span class="sourceLineNo">311</span><a id="line.311"> }</a>
<span class="sourceLineNo">312</span><a id="line.312"></a>
<span class="sourceLineNo">313</span><a id="line.313"> return applications;</a>
<span class="sourceLineNo">314</span><a id="line.314"> }</a>
<span class="sourceLineNo">315</span><a id="line.315"></a>
<span class="sourceLineNo">316</span><a id="line.316"> public List&lt;Role&gt; getAllRoles()</a>
<span class="sourceLineNo">317</span><a id="line.317"> throws RedbackServiceException</a>
<span class="sourceLineNo">318</span><a id="line.318"> {</a>
<span class="sourceLineNo">319</span><a id="line.319"> try</a>
<span class="sourceLineNo">320</span><a id="line.320"> {</a>
<span class="sourceLineNo">321</span><a id="line.321"> List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles = rbacManager.getAllRoles();</a>
<span class="sourceLineNo">322</span><a id="line.322"></a>
<span class="sourceLineNo">323</span><a id="line.323"> if ( roles == null )</a>
<span class="sourceLineNo">324</span><a id="line.324"> {</a>
<span class="sourceLineNo">325</span><a id="line.325"> return Collections.emptyList();</a>
<span class="sourceLineNo">326</span><a id="line.326"> }</a>
<span class="sourceLineNo">327</span><a id="line.327"></a>
<span class="sourceLineNo">328</span><a id="line.328"> roles = filterRolesForCurrentUserAccess( roles );</a>
<span class="sourceLineNo">329</span><a id="line.329"></a>
<span class="sourceLineNo">330</span><a id="line.330"> List&lt;Role&gt; res = new ArrayList&lt;Role&gt;( roles.size() );</a>
<span class="sourceLineNo">331</span><a id="line.331"></a>
<span class="sourceLineNo">332</span><a id="line.332"> for ( org.apache.archiva.redback.rbac.Role r : roles )</a>
<span class="sourceLineNo">333</span><a id="line.333"> {</a>
<span class="sourceLineNo">334</span><a id="line.334"> res.add( new Role( r ) );</a>
<span class="sourceLineNo">335</span><a id="line.335"> }</a>
<span class="sourceLineNo">336</span><a id="line.336"> return res;</a>
<span class="sourceLineNo">337</span><a id="line.337"></a>
<span class="sourceLineNo">338</span><a id="line.338"> }</a>
<span class="sourceLineNo">339</span><a id="line.339"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">340</span><a id="line.340"> {</a>
<span class="sourceLineNo">341</span><a id="line.341"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">342</span><a id="line.342"> }</a>
<span class="sourceLineNo">343</span><a id="line.343"> }</a>
<span class="sourceLineNo">344</span><a id="line.344"></a>
<span class="sourceLineNo">345</span><a id="line.345"> public List&lt;Role&gt; getDetailedAllRoles()</a>
<span class="sourceLineNo">346</span><a id="line.346"> throws RedbackServiceException</a>
<span class="sourceLineNo">347</span><a id="line.347"> {</a>
<span class="sourceLineNo">348</span><a id="line.348"> try</a>
<span class="sourceLineNo">349</span><a id="line.349"> {</a>
<span class="sourceLineNo">350</span><a id="line.350"> List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles = rbacManager.getAllRoles();</a>
<span class="sourceLineNo">351</span><a id="line.351"></a>
<span class="sourceLineNo">352</span><a id="line.352"> if ( roles == null )</a>
<span class="sourceLineNo">353</span><a id="line.353"> {</a>
<span class="sourceLineNo">354</span><a id="line.354"> return Collections.emptyList();</a>
<span class="sourceLineNo">355</span><a id="line.355"> }</a>
<span class="sourceLineNo">356</span><a id="line.356"></a>
<span class="sourceLineNo">357</span><a id="line.357"> roles = filterRolesForCurrentUserAccess( roles );</a>
<span class="sourceLineNo">358</span><a id="line.358"></a>
<span class="sourceLineNo">359</span><a id="line.359"> List&lt;Role&gt; res = new ArrayList&lt;Role&gt;( roles.size() );</a>
<span class="sourceLineNo">360</span><a id="line.360"></a>
<span class="sourceLineNo">361</span><a id="line.361"> for ( org.apache.archiva.redback.rbac.Role r : roles )</a>
<span class="sourceLineNo">362</span><a id="line.362"> {</a>
<span class="sourceLineNo">363</span><a id="line.363"> res.add( getRole( r.getName() ) );</a>
<span class="sourceLineNo">364</span><a id="line.364"> }</a>
<span class="sourceLineNo">365</span><a id="line.365"> return res;</a>
<span class="sourceLineNo">366</span><a id="line.366"></a>
<span class="sourceLineNo">367</span><a id="line.367"> }</a>
<span class="sourceLineNo">368</span><a id="line.368"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">369</span><a id="line.369"> {</a>
<span class="sourceLineNo">370</span><a id="line.370"> throw new RedbackServiceException( e.getMessage() );</a>
<span class="sourceLineNo">371</span><a id="line.371"> }</a>
<span class="sourceLineNo">372</span><a id="line.372"> }</a>
<span class="sourceLineNo">373</span><a id="line.373"></a>
<span class="sourceLineNo">374</span><a id="line.374"> private List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; filterAssignableRoles(</a>
<span class="sourceLineNo">375</span><a id="line.375"> Collection&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles )</a>
<span class="sourceLineNo">376</span><a id="line.376"> {</a>
<span class="sourceLineNo">377</span><a id="line.377"> List&lt;org.apache.archiva.redback.rbac.Role&gt; assignableRoles =</a>
<span class="sourceLineNo">378</span><a id="line.378"> new ArrayList&lt;org.apache.archiva.redback.rbac.Role&gt;( roles.size() );</a>
<span class="sourceLineNo">379</span><a id="line.379"> for ( org.apache.archiva.redback.rbac.Role r : roles )</a>
<span class="sourceLineNo">380</span><a id="line.380"> {</a>
<span class="sourceLineNo">381</span><a id="line.381"> if ( r.isAssignable() )</a>
<span class="sourceLineNo">382</span><a id="line.382"> {</a>
<span class="sourceLineNo">383</span><a id="line.383"> assignableRoles.add( r );</a>
<span class="sourceLineNo">384</span><a id="line.384"> }</a>
<span class="sourceLineNo">385</span><a id="line.385"> }</a>
<span class="sourceLineNo">386</span><a id="line.386"> return assignableRoles;</a>
<span class="sourceLineNo">387</span><a id="line.387"> }</a>
<span class="sourceLineNo">388</span><a id="line.388"></a>
<span class="sourceLineNo">389</span><a id="line.389"> public Role getRole( String roleName )</a>
<span class="sourceLineNo">390</span><a id="line.390"> throws RedbackServiceException</a>
<span class="sourceLineNo">391</span><a id="line.391"> {</a>
<span class="sourceLineNo">392</span><a id="line.392"> try</a>
<span class="sourceLineNo">393</span><a id="line.393"> {</a>
<span class="sourceLineNo">394</span><a id="line.394"> org.apache.archiva.redback.rbac.Role rbacRole = rbacManager.getRole( roleName );</a>
<span class="sourceLineNo">395</span><a id="line.395"> Role role = new Role( rbacRole );</a>
<span class="sourceLineNo">396</span><a id="line.396"></a>
<span class="sourceLineNo">397</span><a id="line.397"> Map&lt;String, ? extends org.apache.archiva.redback.rbac.Role&gt; parentRoleIds = rbacManager.getParentRoleIds( rbacRole );</a>
<span class="sourceLineNo">398</span><a id="line.398"> for ( String parentRoleId : parentRoleIds.keySet() )</a>
<span class="sourceLineNo">399</span><a id="line.399"> {</a>
<span class="sourceLineNo">400</span><a id="line.400"> org.apache.archiva.redback.rbac.Role rbacParentRole = rbacManager.getRoleById( parentRoleId );</a>
<span class="sourceLineNo">401</span><a id="line.401"> role.getParentRoleNames().add( rbacParentRole.getName() );</a>
<span class="sourceLineNo">402</span><a id="line.402"> }</a>
<span class="sourceLineNo">403</span><a id="line.403"></a>
<span class="sourceLineNo">404</span><a id="line.404"> List&lt;? extends UserAssignment&gt; userAssignments = rbacManager.getUserAssignmentsForRoles( Arrays.asList( rbacRole.getId() ) );</a>
<span class="sourceLineNo">405</span><a id="line.405"></a>
<span class="sourceLineNo">406</span><a id="line.406"> if ( userAssignments != null )</a>
<span class="sourceLineNo">407</span><a id="line.407"> {</a>
<span class="sourceLineNo">408</span><a id="line.408"> for ( UserAssignment userAssignment : userAssignments )</a>
<span class="sourceLineNo">409</span><a id="line.409"> {</a>
<span class="sourceLineNo">410</span><a id="line.410"> try</a>
<span class="sourceLineNo">411</span><a id="line.411"> {</a>
<span class="sourceLineNo">412</span><a id="line.412"> User user = userManager.findUser( userAssignment.getPrincipal() );</a>
<span class="sourceLineNo">413</span><a id="line.413"> role.getUsers().add( new org.apache.archiva.redback.rest.api.model.User( user ) );</a>
<span class="sourceLineNo">414</span><a id="line.414"> }</a>
<span class="sourceLineNo">415</span><a id="line.415"> catch ( UserNotFoundException e )</a>
<span class="sourceLineNo">416</span><a id="line.416"> {</a>
<span class="sourceLineNo">417</span><a id="line.417"> log.warn( "User '{}' doesn't exist.", userAssignment.getPrincipal(), e );</a>
<span class="sourceLineNo">418</span><a id="line.418"> }</a>
<span class="sourceLineNo">419</span><a id="line.419"> }</a>
<span class="sourceLineNo">420</span><a id="line.420"> }</a>
<span class="sourceLineNo">421</span><a id="line.421"></a>
<span class="sourceLineNo">422</span><a id="line.422"> if ( !role.getParentRoleNames().isEmpty() )</a>
<span class="sourceLineNo">423</span><a id="line.423"> {</a>
<span class="sourceLineNo">424</span><a id="line.424"> List&lt;? extends UserAssignment&gt; userParentAssignments =</a>
<span class="sourceLineNo">425</span><a id="line.425"> rbacManager.getUserAssignmentsForRoles( parentRoleIds.keySet() );</a>
<span class="sourceLineNo">426</span><a id="line.426"> if ( userParentAssignments != null )</a>
<span class="sourceLineNo">427</span><a id="line.427"> {</a>
<span class="sourceLineNo">428</span><a id="line.428"> for ( UserAssignment userAssignment : userParentAssignments )</a>
<span class="sourceLineNo">429</span><a id="line.429"> {</a>
<span class="sourceLineNo">430</span><a id="line.430"> try</a>
<span class="sourceLineNo">431</span><a id="line.431"> {</a>
<span class="sourceLineNo">432</span><a id="line.432"> User user = userManager.findUser( userAssignment.getPrincipal() );</a>
<span class="sourceLineNo">433</span><a id="line.433"> role.getParentsRolesUsers().add(</a>
<span class="sourceLineNo">434</span><a id="line.434"> new org.apache.archiva.redback.rest.api.model.User( user ) );</a>
<span class="sourceLineNo">435</span><a id="line.435"> }</a>
<span class="sourceLineNo">436</span><a id="line.436"> catch ( UserNotFoundException e )</a>
<span class="sourceLineNo">437</span><a id="line.437"> {</a>
<span class="sourceLineNo">438</span><a id="line.438"> log.warn( "User '{}' doesn't exist.", userAssignment.getPrincipal(), e );</a>
<span class="sourceLineNo">439</span><a id="line.439"> }</a>
<span class="sourceLineNo">440</span><a id="line.440"> }</a>
<span class="sourceLineNo">441</span><a id="line.441"> }</a>
<span class="sourceLineNo">442</span><a id="line.442"> }</a>
<span class="sourceLineNo">443</span><a id="line.443"></a>
<span class="sourceLineNo">444</span><a id="line.444"> List&lt;org.apache.archiva.redback.rest.api.model.User&gt; otherUsers = new ArrayList&lt;&gt;();</a>
<span class="sourceLineNo">445</span><a id="line.445"> for ( User u : userManager.getUsers() )</a>
<span class="sourceLineNo">446</span><a id="line.446"> {</a>
<span class="sourceLineNo">447</span><a id="line.447"> org.apache.archiva.redback.rest.api.model.User user =</a>
<span class="sourceLineNo">448</span><a id="line.448"> new org.apache.archiva.redback.rest.api.model.User( u );</a>
<span class="sourceLineNo">449</span><a id="line.449"> if ( role.getParentsRolesUsers().contains( user ) )</a>
<span class="sourceLineNo">450</span><a id="line.450"> {</a>
<span class="sourceLineNo">451</span><a id="line.451"> continue;</a>
<span class="sourceLineNo">452</span><a id="line.452"> }</a>
<span class="sourceLineNo">453</span><a id="line.453"> if ( role.getUsers().contains( user ) )</a>
<span class="sourceLineNo">454</span><a id="line.454"> {</a>
<span class="sourceLineNo">455</span><a id="line.455"> continue;</a>
<span class="sourceLineNo">456</span><a id="line.456"> }</a>
<span class="sourceLineNo">457</span><a id="line.457"> otherUsers.add( user );</a>
<span class="sourceLineNo">458</span><a id="line.458"> }</a>
<span class="sourceLineNo">459</span><a id="line.459"></a>
<span class="sourceLineNo">460</span><a id="line.460"> role.setOtherUsers( otherUsers );</a>
<span class="sourceLineNo">461</span><a id="line.461"></a>
<span class="sourceLineNo">462</span><a id="line.462"> return role;</a>
<span class="sourceLineNo">463</span><a id="line.463"> }</a>
<span class="sourceLineNo">464</span><a id="line.464"> catch ( RbacManagerException | UserManagerException e )</a>
<span class="sourceLineNo">465</span><a id="line.465"> {</a>
<span class="sourceLineNo">466</span><a id="line.466"> throw new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">467</span><a id="line.467"> }</a>
<span class="sourceLineNo">468</span><a id="line.468"> }</a>
<span class="sourceLineNo">469</span><a id="line.469"></a>
<span class="sourceLineNo">470</span><a id="line.470"> public ActionStatus updateRoleDescription( String roleName, String description )</a>
<span class="sourceLineNo">471</span><a id="line.471"> throws RedbackServiceException</a>
<span class="sourceLineNo">472</span><a id="line.472"> {</a>
<span class="sourceLineNo">473</span><a id="line.473"> try</a>
<span class="sourceLineNo">474</span><a id="line.474"> {</a>
<span class="sourceLineNo">475</span><a id="line.475"> org.apache.archiva.redback.rbac.Role rbacRole = rbacManager.getRole( roleName );</a>
<span class="sourceLineNo">476</span><a id="line.476"> rbacRole.setDescription( description == null ? "" : description);</a>
<span class="sourceLineNo">477</span><a id="line.477"> rbacManager.saveRole( rbacRole );</a>
<span class="sourceLineNo">478</span><a id="line.478"> }</a>
<span class="sourceLineNo">479</span><a id="line.479"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">480</span><a id="line.480"> {</a>
<span class="sourceLineNo">481</span><a id="line.481"> throw new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">482</span><a id="line.482"> }</a>
<span class="sourceLineNo">483</span><a id="line.483"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">484</span><a id="line.484"> }</a>
<span class="sourceLineNo">485</span><a id="line.485"></a>
<span class="sourceLineNo">486</span><a id="line.486"> public ActionStatus updateRoleUsers( Role role )</a>
<span class="sourceLineNo">487</span><a id="line.487"> throws RedbackServiceException</a>
<span class="sourceLineNo">488</span><a id="line.488"> {</a>
<span class="sourceLineNo">489</span><a id="line.489"></a>
<span class="sourceLineNo">490</span><a id="line.490"> for ( org.apache.archiva.redback.rest.api.model.User user : role.getUsers() )</a>
<span class="sourceLineNo">491</span><a id="line.491"> {</a>
<span class="sourceLineNo">492</span><a id="line.492"> String username = user.getUsername();</a>
<span class="sourceLineNo">493</span><a id="line.493"></a>
<span class="sourceLineNo">494</span><a id="line.494"> try</a>
<span class="sourceLineNo">495</span><a id="line.495"> {</a>
<span class="sourceLineNo">496</span><a id="line.496"></a>
<span class="sourceLineNo">497</span><a id="line.497"> if ( !userManager.userExists( username ) )</a>
<span class="sourceLineNo">498</span><a id="line.498"> {</a>
<span class="sourceLineNo">499</span><a id="line.499"> log.error( "user {} not exits", username );</a>
<span class="sourceLineNo">500</span><a id="line.500"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">501</span><a id="line.501"> new ErrorMessage( "user.not.exists", new String[]{ username } ) );</a>
<span class="sourceLineNo">502</span><a id="line.502"> }</a>
<span class="sourceLineNo">503</span><a id="line.503"></a>
<span class="sourceLineNo">504</span><a id="line.504"> UserAssignment assignment;</a>
<span class="sourceLineNo">505</span><a id="line.505"></a>
<span class="sourceLineNo">506</span><a id="line.506"> if ( rbacManager.userAssignmentExists( username ) )</a>
<span class="sourceLineNo">507</span><a id="line.507"> {</a>
<span class="sourceLineNo">508</span><a id="line.508"> assignment = rbacManager.getUserAssignment( username );</a>
<span class="sourceLineNo">509</span><a id="line.509"> }</a>
<span class="sourceLineNo">510</span><a id="line.510"> else</a>
<span class="sourceLineNo">511</span><a id="line.511"> {</a>
<span class="sourceLineNo">512</span><a id="line.512"> assignment = rbacManager.createUserAssignment( username );</a>
<span class="sourceLineNo">513</span><a id="line.513"> }</a>
<span class="sourceLineNo">514</span><a id="line.514"></a>
<span class="sourceLineNo">515</span><a id="line.515"> org.apache.archiva.redback.rbac.Role rbacRole = rbacManager.getRole( role.getName( ) );</a>
<span class="sourceLineNo">516</span><a id="line.516"> assignment.addRoleId( rbacRole.getId() );</a>
<span class="sourceLineNo">517</span><a id="line.517"> assignment = rbacManager.saveUserAssignment( assignment );</a>
<span class="sourceLineNo">518</span><a id="line.518"> log.info( "{} role assigned to {}", role.getName(), username );</a>
<span class="sourceLineNo">519</span><a id="line.519"> }</a>
<span class="sourceLineNo">520</span><a id="line.520"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">521</span><a id="line.521"> {</a>
<span class="sourceLineNo">522</span><a id="line.522"> log.error( "error during assign role {} to user {}" , role.getName(), username, e );</a>
<span class="sourceLineNo">523</span><a id="line.523"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">524</span><a id="line.524"> new ErrorMessage( "error.assign.role.user", new String[]{ role.getName(), username } ) );</a>
<span class="sourceLineNo">525</span><a id="line.525"> }</a>
<span class="sourceLineNo">526</span><a id="line.526"> catch ( UserManagerException e )</a>
<span class="sourceLineNo">527</span><a id="line.527"> {</a>
<span class="sourceLineNo">528</span><a id="line.528"> throw new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">529</span><a id="line.529"> }</a>
<span class="sourceLineNo">530</span><a id="line.530"> }</a>
<span class="sourceLineNo">531</span><a id="line.531"></a>
<span class="sourceLineNo">532</span><a id="line.532"> for ( org.apache.archiva.redback.rest.api.model.User user : role.getRemovedUsers() )</a>
<span class="sourceLineNo">533</span><a id="line.533"> {</a>
<span class="sourceLineNo">534</span><a id="line.534"> String username = user.getUsername();</a>
<span class="sourceLineNo">535</span><a id="line.535"></a>
<span class="sourceLineNo">536</span><a id="line.536"> try</a>
<span class="sourceLineNo">537</span><a id="line.537"> {</a>
<span class="sourceLineNo">538</span><a id="line.538"></a>
<span class="sourceLineNo">539</span><a id="line.539"> if ( !userManager.userExists( username ) )</a>
<span class="sourceLineNo">540</span><a id="line.540"> {</a>
<span class="sourceLineNo">541</span><a id="line.541"> log.error( "user {} not exits", username );</a>
<span class="sourceLineNo">542</span><a id="line.542"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">543</span><a id="line.543"> new ErrorMessage( "user.not.exists", new String[]{ username } ) );</a>
<span class="sourceLineNo">544</span><a id="line.544"> }</a>
<span class="sourceLineNo">545</span><a id="line.545"></a>
<span class="sourceLineNo">546</span><a id="line.546"> UserAssignment assignment;</a>
<span class="sourceLineNo">547</span><a id="line.547"></a>
<span class="sourceLineNo">548</span><a id="line.548"> if ( rbacManager.userAssignmentExists( username ) )</a>
<span class="sourceLineNo">549</span><a id="line.549"> {</a>
<span class="sourceLineNo">550</span><a id="line.550"> assignment = rbacManager.getUserAssignment( username );</a>
<span class="sourceLineNo">551</span><a id="line.551"> }</a>
<span class="sourceLineNo">552</span><a id="line.552"> else</a>
<span class="sourceLineNo">553</span><a id="line.553"> {</a>
<span class="sourceLineNo">554</span><a id="line.554"> assignment = rbacManager.createUserAssignment( username );</a>
<span class="sourceLineNo">555</span><a id="line.555"> }</a>
<span class="sourceLineNo">556</span><a id="line.556"></a>
<span class="sourceLineNo">557</span><a id="line.557"> org.apache.archiva.redback.rbac.Role rbacRole = rbacManager.getRole( role.getName( ) );</a>
<span class="sourceLineNo">558</span><a id="line.558"> assignment.removeRoleId( rbacRole.getId() );</a>
<span class="sourceLineNo">559</span><a id="line.559"> assignment = rbacManager.saveUserAssignment( assignment );</a>
<span class="sourceLineNo">560</span><a id="line.560"> log.info( "{} role unassigned to {}", role.getName(), username );</a>
<span class="sourceLineNo">561</span><a id="line.561"> }</a>
<span class="sourceLineNo">562</span><a id="line.562"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">563</span><a id="line.563"> {</a>
<span class="sourceLineNo">564</span><a id="line.564"> log.error( "error during assign role {} to user {}" , role.getName(), username, e );</a>
<span class="sourceLineNo">565</span><a id="line.565"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">566</span><a id="line.566"> new ErrorMessage( "error.unassign.role.user", new String[]{ role.getName(), username } ) );</a>
<span class="sourceLineNo">567</span><a id="line.567"> }</a>
<span class="sourceLineNo">568</span><a id="line.568"> catch ( UserManagerException e )</a>
<span class="sourceLineNo">569</span><a id="line.569"> {</a>
<span class="sourceLineNo">570</span><a id="line.570"> throw new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">571</span><a id="line.571"> }</a>
<span class="sourceLineNo">572</span><a id="line.572"> }</a>
<span class="sourceLineNo">573</span><a id="line.573"></a>
<span class="sourceLineNo">574</span><a id="line.574"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">575</span><a id="line.575"> }</a>
<span class="sourceLineNo">576</span><a id="line.576"></a>
<span class="sourceLineNo">577</span><a id="line.577"> public List&lt;ApplicationRoles&gt; getApplicationRoles( String username )</a>
<span class="sourceLineNo">578</span><a id="line.578"> throws RedbackServiceException</a>
<span class="sourceLineNo">579</span><a id="line.579"> {</a>
<span class="sourceLineNo">580</span><a id="line.580"> AdminEditUserCredentials user = null;</a>
<span class="sourceLineNo">581</span><a id="line.581"> if ( StringUtils.isEmpty( username ) )</a>
<span class="sourceLineNo">582</span><a id="line.582"> {</a>
<span class="sourceLineNo">583</span><a id="line.583"> throw new RedbackServiceException( new ErrorMessage( "rbac.edit.user.empty.principal" ) );</a>
<span class="sourceLineNo">584</span><a id="line.584"> }</a>
<span class="sourceLineNo">585</span><a id="line.585"></a>
<span class="sourceLineNo">586</span><a id="line.586"> try</a>
<span class="sourceLineNo">587</span><a id="line.587"> {</a>
<span class="sourceLineNo">588</span><a id="line.588"> if ( !userManager.userExists( username ) )</a>
<span class="sourceLineNo">589</span><a id="line.589"> {</a>
<span class="sourceLineNo">590</span><a id="line.590"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">591</span><a id="line.591"> new ErrorMessage( "user.does.not.exist", new String[]{ username } ) );</a>
<span class="sourceLineNo">592</span><a id="line.592"> }</a>
<span class="sourceLineNo">593</span><a id="line.593"></a>
<span class="sourceLineNo">594</span><a id="line.594"> User u = userManager.findUser( username );</a>
<span class="sourceLineNo">595</span><a id="line.595"></a>
<span class="sourceLineNo">596</span><a id="line.596"> if ( u == null )</a>
<span class="sourceLineNo">597</span><a id="line.597"> {</a>
<span class="sourceLineNo">598</span><a id="line.598"> throw new RedbackServiceException( new ErrorMessage( "cannot.operate.on.null.user" ) );</a>
<span class="sourceLineNo">599</span><a id="line.599"> }</a>
<span class="sourceLineNo">600</span><a id="line.600"></a>
<span class="sourceLineNo">601</span><a id="line.601"> user = new AdminEditUserCredentials( u );</a>
<span class="sourceLineNo">602</span><a id="line.602"> }</a>
<span class="sourceLineNo">603</span><a id="line.603"> catch ( UserNotFoundException e )</a>
<span class="sourceLineNo">604</span><a id="line.604"> {</a>
<span class="sourceLineNo">605</span><a id="line.605"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">606</span><a id="line.606"> new ErrorMessage( "user.does.not.exist", new String[]{ username, e.getMessage() } ) );</a>
<span class="sourceLineNo">607</span><a id="line.607"> }</a>
<span class="sourceLineNo">608</span><a id="line.608"> catch ( UserManagerException e )</a>
<span class="sourceLineNo">609</span><a id="line.609"> {</a>
<span class="sourceLineNo">610</span><a id="line.610"> throw new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">611</span><a id="line.611"> }</a>
<span class="sourceLineNo">612</span><a id="line.612"> try</a>
<span class="sourceLineNo">613</span><a id="line.613"> {</a>
<span class="sourceLineNo">614</span><a id="line.614"> // check first if role assignments for user exist</a>
<span class="sourceLineNo">615</span><a id="line.615"> if ( !rbacManager.userAssignmentExists( username ) )</a>
<span class="sourceLineNo">616</span><a id="line.616"> {</a>
<span class="sourceLineNo">617</span><a id="line.617"> UserAssignment assignment = rbacManager.createUserAssignment( username );</a>
<span class="sourceLineNo">618</span><a id="line.618"> rbacManager.saveUserAssignment( assignment );</a>
<span class="sourceLineNo">619</span><a id="line.619"> }</a>
<span class="sourceLineNo">620</span><a id="line.620"></a>
<span class="sourceLineNo">621</span><a id="line.621"> List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; allRoles =</a>
<span class="sourceLineNo">622</span><a id="line.622"> filterRolesForCurrentUserAccess( rbacManager.getAllRoles() );</a>
<span class="sourceLineNo">623</span><a id="line.623"></a>
<span class="sourceLineNo">624</span><a id="line.624"> List&lt;ModelApplication&gt; modelApplications = roleManager.getModel().getApplications();</a>
<span class="sourceLineNo">625</span><a id="line.625"></a>
<span class="sourceLineNo">626</span><a id="line.626"> List&lt;ApplicationRoles&gt; applicationRolesList = new ArrayList&lt;&gt;( modelApplications.size() );</a>
<span class="sourceLineNo">627</span><a id="line.627"></a>
<span class="sourceLineNo">628</span><a id="line.628"> for ( ModelApplication modelApplication : modelApplications )</a>
<span class="sourceLineNo">629</span><a id="line.629"> {</a>
<span class="sourceLineNo">630</span><a id="line.630"> ApplicationRoles applicationRoles = new ApplicationRoles();</a>
<span class="sourceLineNo">631</span><a id="line.631"></a>
<span class="sourceLineNo">632</span><a id="line.632"> applicationRoles.setDescription( modelApplication.getDescription() );</a>
<span class="sourceLineNo">633</span><a id="line.633"> applicationRoles.setName( modelApplication.getId() );</a>
<span class="sourceLineNo">634</span><a id="line.634"></a>
<span class="sourceLineNo">635</span><a id="line.635"> Collection&lt;? extends org.apache.archiva.redback.rbac.Role&gt; appRoles =</a>
<span class="sourceLineNo">636</span><a id="line.636"> filterApplicationRoles( modelApplication, allRoles, modelApplication.getTemplates() );</a>
<span class="sourceLineNo">637</span><a id="line.637"></a>
<span class="sourceLineNo">638</span><a id="line.638"> List&lt;String&gt; roleNames = new ArrayList&lt;&gt;( toRoleNames( appRoles ) );</a>
<span class="sourceLineNo">639</span><a id="line.639"></a>
<span class="sourceLineNo">640</span><a id="line.640"> Collections.sort( roleNames );</a>
<span class="sourceLineNo">641</span><a id="line.641"></a>
<span class="sourceLineNo">642</span><a id="line.642"> applicationRoles.setGlobalRoles( roleNames );</a>
<span class="sourceLineNo">643</span><a id="line.643"></a>
<span class="sourceLineNo">644</span><a id="line.644"> Set&lt;String&gt; resources = discoverResources( modelApplication.getTemplates(), appRoles );</a>
<span class="sourceLineNo">645</span><a id="line.645"></a>
<span class="sourceLineNo">646</span><a id="line.646"> applicationRoles.setResources( resources );</a>
<span class="sourceLineNo">647</span><a id="line.647"></a>
<span class="sourceLineNo">648</span><a id="line.648"> applicationRoles.setRoleTemplates( toRoleTemplates( modelApplication.getTemplates() ) );</a>
<span class="sourceLineNo">649</span><a id="line.649"></a>
<span class="sourceLineNo">650</span><a id="line.650"> // cleanup app roles remove roles coming from templates</a>
<span class="sourceLineNo">651</span><a id="line.651"></a>
<span class="sourceLineNo">652</span><a id="line.652"> List&lt;String&gt; appRoleNames = new ArrayList&lt;&gt;( appRoles.size() );</a>
<span class="sourceLineNo">653</span><a id="line.653"></a>
<span class="sourceLineNo">654</span><a id="line.654"> for ( String appRoleName : applicationRoles.getGlobalRoles() )</a>
<span class="sourceLineNo">655</span><a id="line.655"> {</a>
<span class="sourceLineNo">656</span><a id="line.656"> if ( !roleFromTemplate( appRoleName, modelApplication.getTemplates() ) )</a>
<span class="sourceLineNo">657</span><a id="line.657"> {</a>
<span class="sourceLineNo">658</span><a id="line.658"> appRoleNames.add( appRoleName );</a>
<span class="sourceLineNo">659</span><a id="line.659"> }</a>
<span class="sourceLineNo">660</span><a id="line.660"> }</a>
<span class="sourceLineNo">661</span><a id="line.661"></a>
<span class="sourceLineNo">662</span><a id="line.662"> Collections.sort( appRoleNames );</a>
<span class="sourceLineNo">663</span><a id="line.663"></a>
<span class="sourceLineNo">664</span><a id="line.664"> applicationRoles.setGlobalRoles( appRoleNames );</a>
<span class="sourceLineNo">665</span><a id="line.665"></a>
<span class="sourceLineNo">666</span><a id="line.666"> Collections.sort( appRoleNames );</a>
<span class="sourceLineNo">667</span><a id="line.667"></a>
<span class="sourceLineNo">668</span><a id="line.668"> applicationRolesList.add( applicationRoles );</a>
<span class="sourceLineNo">669</span><a id="line.669"> }</a>
<span class="sourceLineNo">670</span><a id="line.670"></a>
<span class="sourceLineNo">671</span><a id="line.671"> return applicationRolesList;</a>
<span class="sourceLineNo">672</span><a id="line.672"></a>
<span class="sourceLineNo">673</span><a id="line.673"> }</a>
<span class="sourceLineNo">674</span><a id="line.674"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">675</span><a id="line.675"> {</a>
<span class="sourceLineNo">676</span><a id="line.676"> RedbackServiceException redbackServiceException =</a>
<span class="sourceLineNo">677</span><a id="line.677"> new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">678</span><a id="line.678"> redbackServiceException.setHttpErrorCode( Response.Status.INTERNAL_SERVER_ERROR.getStatusCode() );</a>
<span class="sourceLineNo">679</span><a id="line.679"> throw redbackServiceException;</a>
<span class="sourceLineNo">680</span><a id="line.680"> }</a>
<span class="sourceLineNo">681</span><a id="line.681"> }</a>
<span class="sourceLineNo">682</span><a id="line.682"></a>
<span class="sourceLineNo">683</span><a id="line.683"> public ActionStatus updateUserRoles( org.apache.archiva.redback.rest.api.model.User user )</a>
<span class="sourceLineNo">684</span><a id="line.684"> throws RedbackServiceException</a>
<span class="sourceLineNo">685</span><a id="line.685"> {</a>
<span class="sourceLineNo">686</span><a id="line.686"></a>
<span class="sourceLineNo">687</span><a id="line.687"> String username = user.getUsername();</a>
<span class="sourceLineNo">688</span><a id="line.688"></a>
<span class="sourceLineNo">689</span><a id="line.689"> if ( StringUtils.isEmpty( username ) )</a>
<span class="sourceLineNo">690</span><a id="line.690"> {</a>
<span class="sourceLineNo">691</span><a id="line.691"> throw new RedbackServiceException( new ErrorMessage( "rbac.edit.user.empty.principal" ) );</a>
<span class="sourceLineNo">692</span><a id="line.692"> }</a>
<span class="sourceLineNo">693</span><a id="line.693"></a>
<span class="sourceLineNo">694</span><a id="line.694"> try</a>
<span class="sourceLineNo">695</span><a id="line.695"> {</a>
<span class="sourceLineNo">696</span><a id="line.696"></a>
<span class="sourceLineNo">697</span><a id="line.697"> if ( !userManager.userExists( username ) )</a>
<span class="sourceLineNo">698</span><a id="line.698"> {</a>
<span class="sourceLineNo">699</span><a id="line.699"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">700</span><a id="line.700"> new ErrorMessage( "user.does.not.exist", new String[]{ username } ) );</a>
<span class="sourceLineNo">701</span><a id="line.701"> }</a>
<span class="sourceLineNo">702</span><a id="line.702"></a>
<span class="sourceLineNo">703</span><a id="line.703"> User u = userManager.findUser( username );</a>
<span class="sourceLineNo">704</span><a id="line.704"></a>
<span class="sourceLineNo">705</span><a id="line.705"> if ( u == null )</a>
<span class="sourceLineNo">706</span><a id="line.706"> {</a>
<span class="sourceLineNo">707</span><a id="line.707"> throw new RedbackServiceException( new ErrorMessage( "cannot.operate.on.null.user" ) );</a>
<span class="sourceLineNo">708</span><a id="line.708"> }</a>
<span class="sourceLineNo">709</span><a id="line.709"></a>
<span class="sourceLineNo">710</span><a id="line.710"> }</a>
<span class="sourceLineNo">711</span><a id="line.711"> catch ( UserNotFoundException e )</a>
<span class="sourceLineNo">712</span><a id="line.712"> {</a>
<span class="sourceLineNo">713</span><a id="line.713"> throw new RedbackServiceException(</a>
<span class="sourceLineNo">714</span><a id="line.714"> new ErrorMessage( "user.does.not.exist", new String[]{ username, e.getMessage() } ) );</a>
<span class="sourceLineNo">715</span><a id="line.715"> }</a>
<span class="sourceLineNo">716</span><a id="line.716"> catch ( UserManagerException e )</a>
<span class="sourceLineNo">717</span><a id="line.717"> {</a>
<span class="sourceLineNo">718</span><a id="line.718"> throw new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">719</span><a id="line.719"> }</a>
<span class="sourceLineNo">720</span><a id="line.720"></a>
<span class="sourceLineNo">721</span><a id="line.721"> try</a>
<span class="sourceLineNo">722</span><a id="line.722"> {</a>
<span class="sourceLineNo">723</span><a id="line.723"></a>
<span class="sourceLineNo">724</span><a id="line.724"> UserAssignment assignment;</a>
<span class="sourceLineNo">725</span><a id="line.725"></a>
<span class="sourceLineNo">726</span><a id="line.726"> if ( rbacManager.userAssignmentExists( username ) )</a>
<span class="sourceLineNo">727</span><a id="line.727"> {</a>
<span class="sourceLineNo">728</span><a id="line.728"> assignment = rbacManager.getUserAssignment( username );</a>
<span class="sourceLineNo">729</span><a id="line.729"> }</a>
<span class="sourceLineNo">730</span><a id="line.730"> else</a>
<span class="sourceLineNo">731</span><a id="line.731"> {</a>
<span class="sourceLineNo">732</span><a id="line.732"> assignment = rbacManager.createUserAssignment( username );</a>
<span class="sourceLineNo">733</span><a id="line.733"> }</a>
<span class="sourceLineNo">734</span><a id="line.734"> List&lt;String&gt; assignedRoleIds = user.getAssignedRoles().stream().map(roleName -&gt; {</a>
<span class="sourceLineNo">735</span><a id="line.735"> try</a>
<span class="sourceLineNo">736</span><a id="line.736"> {</a>
<span class="sourceLineNo">737</span><a id="line.737"> return Optional.of( rbacManager.getRole( roleName ).getId( ) );</a>
<span class="sourceLineNo">738</span><a id="line.738"> }</a>
<span class="sourceLineNo">739</span><a id="line.739"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">740</span><a id="line.740"> {</a>
<span class="sourceLineNo">741</span><a id="line.741"> return Optional.&lt;String&gt;empty( );</a>
<span class="sourceLineNo">742</span><a id="line.742"> }</a>
<span class="sourceLineNo">743</span><a id="line.743"> } ).filter( Optional::isPresent ).map(Optional::get).collect( Collectors.toList());</a>
<span class="sourceLineNo">744</span><a id="line.744"> assignment.setRoleIds( assignedRoleIds );</a>
<span class="sourceLineNo">745</span><a id="line.745"> rbacManager.saveUserAssignment( assignment );</a>
<span class="sourceLineNo">746</span><a id="line.746"></a>
<span class="sourceLineNo">747</span><a id="line.747"> }</a>
<span class="sourceLineNo">748</span><a id="line.748"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">749</span><a id="line.749"> {</a>
<span class="sourceLineNo">750</span><a id="line.750"> RedbackServiceException redbackServiceException =</a>
<span class="sourceLineNo">751</span><a id="line.751"> new RedbackServiceException( new ErrorMessage( e.getMessage() ) );</a>
<span class="sourceLineNo">752</span><a id="line.752"> redbackServiceException.setHttpErrorCode( Response.Status.INTERNAL_SERVER_ERROR.getStatusCode() );</a>
<span class="sourceLineNo">753</span><a id="line.753"> throw redbackServiceException;</a>
<span class="sourceLineNo">754</span><a id="line.754"> }</a>
<span class="sourceLineNo">755</span><a id="line.755"></a>
<span class="sourceLineNo">756</span><a id="line.756"> return ActionStatus.SUCCESS;</a>
<span class="sourceLineNo">757</span><a id="line.757"></a>
<span class="sourceLineNo">758</span><a id="line.758"> }</a>
<span class="sourceLineNo">759</span><a id="line.759"></a>
<span class="sourceLineNo">760</span><a id="line.760"> //----------------------------------------------------------------</a>
<span class="sourceLineNo">761</span><a id="line.761"> // Internal methods</a>
<span class="sourceLineNo">762</span><a id="line.762"> //----------------------------------------------------------------</a>
<span class="sourceLineNo">763</span><a id="line.763"></a>
<span class="sourceLineNo">764</span><a id="line.764"> private org.apache.archiva.redback.rbac.Role isInList( String roleName,</a>
<span class="sourceLineNo">765</span><a id="line.765"> Collection&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles )</a>
<span class="sourceLineNo">766</span><a id="line.766"> {</a>
<span class="sourceLineNo">767</span><a id="line.767"> for ( org.apache.archiva.redback.rbac.Role role : roles )</a>
<span class="sourceLineNo">768</span><a id="line.768"> {</a>
<span class="sourceLineNo">769</span><a id="line.769"> if ( roleName.equals( role.getName() ) )</a>
<span class="sourceLineNo">770</span><a id="line.770"> {</a>
<span class="sourceLineNo">771</span><a id="line.771"> return role;</a>
<span class="sourceLineNo">772</span><a id="line.772"> }</a>
<span class="sourceLineNo">773</span><a id="line.773"> }</a>
<span class="sourceLineNo">774</span><a id="line.774"> return null;</a>
<span class="sourceLineNo">775</span><a id="line.775"> }</a>
<span class="sourceLineNo">776</span><a id="line.776"></a>
<span class="sourceLineNo">777</span><a id="line.777"> private Collection&lt;? extends org.apache.archiva.redback.rbac.Role&gt; filterApplicationRoles( ModelApplication application,</a>
<span class="sourceLineNo">778</span><a id="line.778"> List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; allRoles,</a>
<span class="sourceLineNo">779</span><a id="line.779"> List&lt;ModelTemplate&gt; applicationTemplates )</a>
<span class="sourceLineNo">780</span><a id="line.780"> {</a>
<span class="sourceLineNo">781</span><a id="line.781"> Set&lt;org.apache.archiva.redback.rbac.Role&gt; applicationRoles = new HashSet&lt;&gt;();</a>
<span class="sourceLineNo">782</span><a id="line.782"> List&lt;ModelRole&gt; roles = application.getRoles();</a>
<span class="sourceLineNo">783</span><a id="line.783"></a>
<span class="sourceLineNo">784</span><a id="line.784"> for ( ModelRole modelRole : roles )</a>
<span class="sourceLineNo">785</span><a id="line.785"> {</a>
<span class="sourceLineNo">786</span><a id="line.786"> org.apache.archiva.redback.rbac.Role r = isInList( modelRole.getName(), allRoles );</a>
<span class="sourceLineNo">787</span><a id="line.787"> if ( r != null )</a>
<span class="sourceLineNo">788</span><a id="line.788"> {</a>
<span class="sourceLineNo">789</span><a id="line.789"> applicationRoles.add( r );</a>
<span class="sourceLineNo">790</span><a id="line.790"> }</a>
<span class="sourceLineNo">791</span><a id="line.791"> }</a>
<span class="sourceLineNo">792</span><a id="line.792"></a>
<span class="sourceLineNo">793</span><a id="line.793"> List&lt;String&gt; roleNames = toRoleNames( allRoles );</a>
<span class="sourceLineNo">794</span><a id="line.794"></a>
<span class="sourceLineNo">795</span><a id="line.795"> for ( ModelTemplate modelTemplate : applicationTemplates )</a>
<span class="sourceLineNo">796</span><a id="line.796"> {</a>
<span class="sourceLineNo">797</span><a id="line.797"> for ( org.apache.archiva.redback.rbac.Role r : allRoles )</a>
<span class="sourceLineNo">798</span><a id="line.798"> {</a>
<span class="sourceLineNo">799</span><a id="line.799"> if ( StringUtils.startsWith( r.getName(),</a>
<span class="sourceLineNo">800</span><a id="line.800"> modelTemplate.getNamePrefix() + modelTemplate.getDelimiter() ) )</a>
<span class="sourceLineNo">801</span><a id="line.801"> {</a>
<span class="sourceLineNo">802</span><a id="line.802"> applicationRoles.add( r );</a>
<span class="sourceLineNo">803</span><a id="line.803"> }</a>
<span class="sourceLineNo">804</span><a id="line.804"> }</a>
<span class="sourceLineNo">805</span><a id="line.805"> }</a>
<span class="sourceLineNo">806</span><a id="line.806"></a>
<span class="sourceLineNo">807</span><a id="line.807"> return applicationRoles;</a>
<span class="sourceLineNo">808</span><a id="line.808"> }</a>
<span class="sourceLineNo">809</span><a id="line.809"></a>
<span class="sourceLineNo">810</span><a id="line.810"> private boolean roleFromTemplate( String roleName, List&lt;ModelTemplate&gt; applicationTemplates )</a>
<span class="sourceLineNo">811</span><a id="line.811"> {</a>
<span class="sourceLineNo">812</span><a id="line.812"></a>
<span class="sourceLineNo">813</span><a id="line.813"> for ( ModelTemplate modelTemplate : applicationTemplates )</a>
<span class="sourceLineNo">814</span><a id="line.814"> {</a>
<span class="sourceLineNo">815</span><a id="line.815"> if ( StringUtils.startsWith( roleName, modelTemplate.getNamePrefix() + modelTemplate.getDelimiter() ) )</a>
<span class="sourceLineNo">816</span><a id="line.816"> {</a>
<span class="sourceLineNo">817</span><a id="line.817"> return true;</a>
<span class="sourceLineNo">818</span><a id="line.818"> }</a>
<span class="sourceLineNo">819</span><a id="line.819"></a>
<span class="sourceLineNo">820</span><a id="line.820"> }</a>
<span class="sourceLineNo">821</span><a id="line.821"> return false;</a>
<span class="sourceLineNo">822</span><a id="line.822"> }</a>
<span class="sourceLineNo">823</span><a id="line.823"></a>
<span class="sourceLineNo">824</span><a id="line.824"> private List&lt;String&gt; toRoleNames( Collection&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles )</a>
<span class="sourceLineNo">825</span><a id="line.825"> {</a>
<span class="sourceLineNo">826</span><a id="line.826"> List&lt;String&gt; names = new ArrayList&lt;&gt;( roles.size() );</a>
<span class="sourceLineNo">827</span><a id="line.827"></a>
<span class="sourceLineNo">828</span><a id="line.828"> for ( org.apache.archiva.redback.rbac.Role r : roles )</a>
<span class="sourceLineNo">829</span><a id="line.829"> {</a>
<span class="sourceLineNo">830</span><a id="line.830"> names.add( r.getName() );</a>
<span class="sourceLineNo">831</span><a id="line.831"> }</a>
<span class="sourceLineNo">832</span><a id="line.832"></a>
<span class="sourceLineNo">833</span><a id="line.833"> return names;</a>
<span class="sourceLineNo">834</span><a id="line.834"> }</a>
<span class="sourceLineNo">835</span><a id="line.835"></a>
<span class="sourceLineNo">836</span><a id="line.836"> private List&lt;RoleTemplate&gt; toRoleTemplates( List&lt;ModelTemplate&gt; modelTemplates )</a>
<span class="sourceLineNo">837</span><a id="line.837"> {</a>
<span class="sourceLineNo">838</span><a id="line.838"> if ( modelTemplates == null || modelTemplates.isEmpty() )</a>
<span class="sourceLineNo">839</span><a id="line.839"> {</a>
<span class="sourceLineNo">840</span><a id="line.840"> return new ArrayList&lt;&gt;( 0 );</a>
<span class="sourceLineNo">841</span><a id="line.841"> }</a>
<span class="sourceLineNo">842</span><a id="line.842"></a>
<span class="sourceLineNo">843</span><a id="line.843"> List&lt;RoleTemplate&gt; roleTemplates = new ArrayList&lt;RoleTemplate&gt;( modelTemplates.size() );</a>
<span class="sourceLineNo">844</span><a id="line.844"></a>
<span class="sourceLineNo">845</span><a id="line.845"> for ( ModelTemplate modelTemplate : modelTemplates )</a>
<span class="sourceLineNo">846</span><a id="line.846"> {</a>
<span class="sourceLineNo">847</span><a id="line.847"> RoleTemplate roleTemplate = new RoleTemplate();</a>
<span class="sourceLineNo">848</span><a id="line.848"></a>
<span class="sourceLineNo">849</span><a id="line.849"> roleTemplate.setDelimiter( modelTemplate.getDelimiter() );</a>
<span class="sourceLineNo">850</span><a id="line.850"> roleTemplate.setDescription( modelTemplate.getDescription() );</a>
<span class="sourceLineNo">851</span><a id="line.851"> roleTemplate.setId( modelTemplate.getId() );</a>
<span class="sourceLineNo">852</span><a id="line.852"> roleTemplate.setNamePrefix( modelTemplate.getNamePrefix() );</a>
<span class="sourceLineNo">853</span><a id="line.853"></a>
<span class="sourceLineNo">854</span><a id="line.854"> roleTemplates.add( roleTemplate );</a>
<span class="sourceLineNo">855</span><a id="line.855"> }</a>
<span class="sourceLineNo">856</span><a id="line.856"></a>
<span class="sourceLineNo">857</span><a id="line.857"> return roleTemplates;</a>
<span class="sourceLineNo">858</span><a id="line.858"> }</a>
<span class="sourceLineNo">859</span><a id="line.859"></a>
<span class="sourceLineNo">860</span><a id="line.860"> private Set&lt;String&gt; discoverResources( List&lt;ModelTemplate&gt; applicationTemplates,</a>
<span class="sourceLineNo">861</span><a id="line.861"> Collection&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roles )</a>
<span class="sourceLineNo">862</span><a id="line.862"> {</a>
<span class="sourceLineNo">863</span><a id="line.863"> Set&lt;String&gt; resources = new HashSet&lt;&gt;();</a>
<span class="sourceLineNo">864</span><a id="line.864"> for ( ModelTemplate modelTemplate : applicationTemplates )</a>
<span class="sourceLineNo">865</span><a id="line.865"> {</a>
<span class="sourceLineNo">866</span><a id="line.866"> for ( org.apache.archiva.redback.rbac.Role role : roles )</a>
<span class="sourceLineNo">867</span><a id="line.867"> {</a>
<span class="sourceLineNo">868</span><a id="line.868"> String roleName = role.getName();</a>
<span class="sourceLineNo">869</span><a id="line.869"> if ( roleName.startsWith( modelTemplate.getNamePrefix() ) )</a>
<span class="sourceLineNo">870</span><a id="line.870"> {</a>
<span class="sourceLineNo">871</span><a id="line.871"> String delimiter = modelTemplate.getDelimiter();</a>
<span class="sourceLineNo">872</span><a id="line.872"> resources.add( roleName.substring( roleName.indexOf( delimiter ) + delimiter.length() ) );</a>
<span class="sourceLineNo">873</span><a id="line.873"> }</a>
<span class="sourceLineNo">874</span><a id="line.874"> }</a>
<span class="sourceLineNo">875</span><a id="line.875"> }</a>
<span class="sourceLineNo">876</span><a id="line.876"> return resources;</a>
<span class="sourceLineNo">877</span><a id="line.877"> }</a>
<span class="sourceLineNo">878</span><a id="line.878"></a>
<span class="sourceLineNo">879</span><a id="line.879"> /**</a>
<span class="sourceLineNo">880</span><a id="line.880"> * this is a hack. this is a hack around the requirements of putting RBAC constraints into the model. this adds one</a>
<span class="sourceLineNo">881</span><a id="line.881"> * very major restriction to this security system, that a role name must contain the identifiers of the resource</a>
<span class="sourceLineNo">882</span><a id="line.882"> * that is being constrained for adding and granting of roles, this is unacceptable in the long term and we need to</a>
<span class="sourceLineNo">883</span><a id="line.883"> * get the model refactored to include this RBAC concept</a>
<span class="sourceLineNo">884</span><a id="line.884"> *</a>
<span class="sourceLineNo">885</span><a id="line.885"> * @param roleList</a>
<span class="sourceLineNo">886</span><a id="line.886"> * @return</a>
<span class="sourceLineNo">887</span><a id="line.887"> * @throws RedbackServiceException</a>
<span class="sourceLineNo">888</span><a id="line.888"> *</a>
<span class="sourceLineNo">889</span><a id="line.889"> */</a>
<span class="sourceLineNo">890</span><a id="line.890"> protected List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; filterRolesForCurrentUserAccess(</a>
<span class="sourceLineNo">891</span><a id="line.891"> List&lt;? extends org.apache.archiva.redback.rbac.Role&gt; roleList )</a>
<span class="sourceLineNo">892</span><a id="line.892"> throws RedbackServiceException</a>
<span class="sourceLineNo">893</span><a id="line.893"> {</a>
<span class="sourceLineNo">894</span><a id="line.894"> RedbackRequestInformation redbackRequestInformation = RedbackAuthenticationThreadLocal.get();</a>
<span class="sourceLineNo">895</span><a id="line.895"> // olamy: should not happened normally as annotations check this first</a>
<span class="sourceLineNo">896</span><a id="line.896"> if ( redbackRequestInformation == null || redbackRequestInformation.getUser() == null )</a>
<span class="sourceLineNo">897</span><a id="line.897"> {</a>
<span class="sourceLineNo">898</span><a id="line.898"> throw new RedbackServiceException( new ErrorMessage( "login.mandatory" ) );</a>
<span class="sourceLineNo">899</span><a id="line.899"> }</a>
<span class="sourceLineNo">900</span><a id="line.900"> String currentUser = redbackRequestInformation.getUser().getUsername();</a>
<span class="sourceLineNo">901</span><a id="line.901"></a>
<span class="sourceLineNo">902</span><a id="line.902"> List&lt;org.apache.archiva.redback.rbac.Role&gt; filteredRoleList = new ArrayList&lt;&gt;();</a>
<span class="sourceLineNo">903</span><a id="line.903"> try</a>
<span class="sourceLineNo">904</span><a id="line.904"> {</a>
<span class="sourceLineNo">905</span><a id="line.905"> Map&lt;String, List&lt;? extends Permission&gt;&gt; assignedPermissionMap = rbacManager.getAssignedPermissionMap( currentUser );</a>
<span class="sourceLineNo">906</span><a id="line.906"> List&lt;String&gt; resourceGrants = new ArrayList&lt;String&gt;();</a>
<span class="sourceLineNo">907</span><a id="line.907"></a>
<span class="sourceLineNo">908</span><a id="line.908"> if ( assignedPermissionMap.containsKey( RedbackRoleConstants.USER_MANAGEMENT_ROLE_GRANT_OPERATION ) )</a>
<span class="sourceLineNo">909</span><a id="line.909"> {</a>
<span class="sourceLineNo">910</span><a id="line.910"> List&lt;? extends Permission&gt; roleGrantPermissions =</a>
<span class="sourceLineNo">911</span><a id="line.911"> assignedPermissionMap.get( RedbackRoleConstants.USER_MANAGEMENT_ROLE_GRANT_OPERATION );</a>
<span class="sourceLineNo">912</span><a id="line.912"></a>
<span class="sourceLineNo">913</span><a id="line.913"> for ( Permission permission : roleGrantPermissions )</a>
<span class="sourceLineNo">914</span><a id="line.914"> {</a>
<span class="sourceLineNo">915</span><a id="line.915"> if ( permission.getResource().getIdentifier().equals( Resource.GLOBAL ) )</a>
<span class="sourceLineNo">916</span><a id="line.916"> {</a>
<span class="sourceLineNo">917</span><a id="line.917"> // the current user has the rights to assign any given role</a>
<span class="sourceLineNo">918</span><a id="line.918"> return roleList;</a>
<span class="sourceLineNo">919</span><a id="line.919"> }</a>
<span class="sourceLineNo">920</span><a id="line.920"> else</a>
<span class="sourceLineNo">921</span><a id="line.921"> {</a>
<span class="sourceLineNo">922</span><a id="line.922"> resourceGrants.add( permission.getResource().getIdentifier() );</a>
<span class="sourceLineNo">923</span><a id="line.923"> }</a>
<span class="sourceLineNo">924</span><a id="line.924"> }</a>
<span class="sourceLineNo">925</span><a id="line.925"></a>
<span class="sourceLineNo">926</span><a id="line.926"> }</a>
<span class="sourceLineNo">927</span><a id="line.927"> else</a>
<span class="sourceLineNo">928</span><a id="line.928"> {</a>
<span class="sourceLineNo">929</span><a id="line.929"> return Collections.emptyList();</a>
<span class="sourceLineNo">930</span><a id="line.930"> }</a>
<span class="sourceLineNo">931</span><a id="line.931"></a>
<span class="sourceLineNo">932</span><a id="line.932"> String delimiter = " - ";</a>
<span class="sourceLineNo">933</span><a id="line.933"></a>
<span class="sourceLineNo">934</span><a id="line.934"> // we should have a list of resourceGrants now, this will provide us with the information necessary to restrict</a>
<span class="sourceLineNo">935</span><a id="line.935"> // the role list</a>
<span class="sourceLineNo">936</span><a id="line.936"> for ( org.apache.archiva.redback.rbac.Role role : roleList )</a>
<span class="sourceLineNo">937</span><a id="line.937"> {</a>
<span class="sourceLineNo">938</span><a id="line.938"> int delimiterIndex = role.getName().indexOf( delimiter );</a>
<span class="sourceLineNo">939</span><a id="line.939"> for ( String resourceIdentifier : resourceGrants )</a>
<span class="sourceLineNo">940</span><a id="line.940"> {</a>
<span class="sourceLineNo">941</span><a id="line.941"></a>
<span class="sourceLineNo">942</span><a id="line.942"> if ( ( role.getName().indexOf( resourceIdentifier ) != -1 ) &amp;&amp; ( delimiterIndex != -1 ) )</a>
<span class="sourceLineNo">943</span><a id="line.943"> {</a>
<span class="sourceLineNo">944</span><a id="line.944"> String resourceName = role.getName().substring( delimiterIndex + delimiter.length() );</a>
<span class="sourceLineNo">945</span><a id="line.945"> if ( resourceName.equals( resourceIdentifier ) )</a>
<span class="sourceLineNo">946</span><a id="line.946"> {</a>
<span class="sourceLineNo">947</span><a id="line.947"> filteredRoleList.add( role );</a>
<span class="sourceLineNo">948</span><a id="line.948"> }</a>
<span class="sourceLineNo">949</span><a id="line.949"> }</a>
<span class="sourceLineNo">950</span><a id="line.950"> }</a>
<span class="sourceLineNo">951</span><a id="line.951"> }</a>
<span class="sourceLineNo">952</span><a id="line.952"> }</a>
<span class="sourceLineNo">953</span><a id="line.953"> catch ( RbacManagerException rme )</a>
<span class="sourceLineNo">954</span><a id="line.954"> {</a>
<span class="sourceLineNo">955</span><a id="line.955"> // ignore, this can happen when the user has no roles assigned </a>
<span class="sourceLineNo">956</span><a id="line.956"> }</a>
<span class="sourceLineNo">957</span><a id="line.957"> Collections.sort( filteredRoleList, new RoleSorter() );</a>
<span class="sourceLineNo">958</span><a id="line.958"> return filteredRoleList;</a>
<span class="sourceLineNo">959</span><a id="line.959"> }</a>
<span class="sourceLineNo">960</span><a id="line.960"></a>
<span class="sourceLineNo">961</span><a id="line.961"></a>
<span class="sourceLineNo">962</span><a id="line.962">}</a>
</pre>
</div>
</main>
</body>
</html>