Google Git
Sign in
apache / archiva-web-content / 1b7e811f9aa411dd1b001fe82a147012e4cce823 / . / redback / core / 3.0.0-SNAPSHOT / apidocs / src-html / org / apache / archiva / redback / role / processor / DefaultRoleModelProcessor.html
blob: 97773a23da44f51fdd637bca8a785fce2056602f [file] [log] [blame]
<!DOCTYPE HTML>
<html lang="en">
<head>
<title>Source code</title>
<link rel="stylesheet" type="text/css" href="../../../../../../../stylesheet.css" title="Style">
</head>
<body>
<main role="main">
<div class="sourceContainer">
<pre><span class="sourceLineNo">001</span><a id="line.1">package org.apache.archiva.redback.role.processor;</a>
<span class="sourceLineNo">002</span><a id="line.2"></a>
<span class="sourceLineNo">003</span><a id="line.3">/*</a>
<span class="sourceLineNo">004</span><a id="line.4"> * Licensed to the Apache Software Foundation (ASF) under one</a>
<span class="sourceLineNo">005</span><a id="line.5"> * or more contributor license agreements. See the NOTICE file</a>
<span class="sourceLineNo">006</span><a id="line.6"> * distributed with this work for additional information</a>
<span class="sourceLineNo">007</span><a id="line.7"> * regarding copyright ownership. The ASF licenses this file</a>
<span class="sourceLineNo">008</span><a id="line.8"> * to you under the Apache License, Version 2.0 (the</a>
<span class="sourceLineNo">009</span><a id="line.9"> * "License"); you may not use this file except in compliance</a>
<span class="sourceLineNo">010</span><a id="line.10"> * with the License. You may obtain a copy of the License at</a>
<span class="sourceLineNo">011</span><a id="line.11"> *</a>
<span class="sourceLineNo">012</span><a id="line.12"> * http://www.apache.org/licenses/LICENSE-2.0</a>
<span class="sourceLineNo">013</span><a id="line.13"> *</a>
<span class="sourceLineNo">014</span><a id="line.14"> * Unless required by applicable law or agreed to in writing,</a>
<span class="sourceLineNo">015</span><a id="line.15"> * software distributed under the License is distributed on an</a>
<span class="sourceLineNo">016</span><a id="line.16"> * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY</a>
<span class="sourceLineNo">017</span><a id="line.17"> * KIND, either express or implied. See the License for the</a>
<span class="sourceLineNo">018</span><a id="line.18"> * specific language governing permissions and limitations</a>
<span class="sourceLineNo">019</span><a id="line.19"> * under the License.</a>
<span class="sourceLineNo">020</span><a id="line.20"> */</a>
<span class="sourceLineNo">021</span><a id="line.21"></a>
<span class="sourceLineNo">022</span><a id="line.22">import org.apache.archiva.redback.rbac.Operation;</a>
<span class="sourceLineNo">023</span><a id="line.23">import org.apache.archiva.redback.rbac.Permission;</a>
<span class="sourceLineNo">024</span><a id="line.24">import org.apache.archiva.redback.rbac.RBACManager;</a>
<span class="sourceLineNo">025</span><a id="line.25">import org.apache.archiva.redback.rbac.RbacManagerException;</a>
<span class="sourceLineNo">026</span><a id="line.26">import org.apache.archiva.redback.rbac.Resource;</a>
<span class="sourceLineNo">027</span><a id="line.27">import org.apache.archiva.redback.rbac.Role;</a>
<span class="sourceLineNo">028</span><a id="line.28">import org.apache.archiva.redback.role.RoleManagerException;</a>
<span class="sourceLineNo">029</span><a id="line.29">import org.apache.archiva.redback.role.model.ModelApplication;</a>
<span class="sourceLineNo">030</span><a id="line.30">import org.apache.archiva.redback.role.model.ModelOperation;</a>
<span class="sourceLineNo">031</span><a id="line.31">import org.apache.archiva.redback.role.model.ModelPermission;</a>
<span class="sourceLineNo">032</span><a id="line.32">import org.apache.archiva.redback.role.model.ModelResource;</a>
<span class="sourceLineNo">033</span><a id="line.33">import org.apache.archiva.redback.role.model.ModelRole;</a>
<span class="sourceLineNo">034</span><a id="line.34">import org.apache.archiva.redback.role.model.RedbackRoleModel;</a>
<span class="sourceLineNo">035</span><a id="line.35">import org.apache.archiva.redback.role.util.RoleModelUtils;</a>
<span class="sourceLineNo">036</span><a id="line.36">import org.apache.commons.lang3.time.StopWatch;</a>
<span class="sourceLineNo">037</span><a id="line.37">import org.slf4j.Logger;</a>
<span class="sourceLineNo">038</span><a id="line.38">import org.slf4j.LoggerFactory;</a>
<span class="sourceLineNo">039</span><a id="line.39">import org.springframework.stereotype.Service;</a>
<span class="sourceLineNo">040</span><a id="line.40"></a>
<span class="sourceLineNo">041</span><a id="line.41">import javax.inject.Inject;</a>
<span class="sourceLineNo">042</span><a id="line.42">import javax.inject.Named;</a>
<span class="sourceLineNo">043</span><a id="line.43">import java.util.ArrayList;</a>
<span class="sourceLineNo">044</span><a id="line.44">import java.util.HashMap;</a>
<span class="sourceLineNo">045</span><a id="line.45">import java.util.HashSet;</a>
<span class="sourceLineNo">046</span><a id="line.46">import java.util.List;</a>
<span class="sourceLineNo">047</span><a id="line.47">import java.util.Map;</a>
<span class="sourceLineNo">048</span><a id="line.48">import java.util.Set;</a>
<span class="sourceLineNo">049</span><a id="line.49"></a>
<span class="sourceLineNo">050</span><a id="line.50">/**</a>
<span class="sourceLineNo">051</span><a id="line.51"> * DefaultRoleModelProcessor: inserts the components of the model that can be populated into the rbac manager</a>
<span class="sourceLineNo">052</span><a id="line.52"> *</a>
<span class="sourceLineNo">053</span><a id="line.53"> * @author: Jesse McConnell</a>
<span class="sourceLineNo">054</span><a id="line.54"> */</a>
<span class="sourceLineNo">055</span><a id="line.55">@Service( "roleModelProcessor" )</a>
<span class="sourceLineNo">056</span><a id="line.56">public class DefaultRoleModelProcessor</a>
<span class="sourceLineNo">057</span><a id="line.57"> implements RoleModelProcessor</a>
<span class="sourceLineNo">058</span><a id="line.58">{</a>
<span class="sourceLineNo">059</span><a id="line.59"> private Logger log = LoggerFactory.getLogger( DefaultRoleModelProcessor.class );</a>
<span class="sourceLineNo">060</span><a id="line.60"></a>
<span class="sourceLineNo">061</span><a id="line.61"> @Inject</a>
<span class="sourceLineNo">062</span><a id="line.62"> @Named( value = "rbacManager#default" )</a>
<span class="sourceLineNo">063</span><a id="line.63"> private RBACManager rbacManager;</a>
<span class="sourceLineNo">064</span><a id="line.64"></a>
<span class="sourceLineNo">065</span><a id="line.65"> private Map&lt;String, Resource&gt; resourceMap = new HashMap&lt;String, Resource&gt;();</a>
<span class="sourceLineNo">066</span><a id="line.66"></a>
<span class="sourceLineNo">067</span><a id="line.67"> private Map&lt;String, Operation&gt; operationMap = new HashMap&lt;String, Operation&gt;();</a>
<span class="sourceLineNo">068</span><a id="line.68"></a>
<span class="sourceLineNo">069</span><a id="line.69"> public void process( RedbackRoleModel model )</a>
<span class="sourceLineNo">070</span><a id="line.70"> throws RoleManagerException</a>
<span class="sourceLineNo">071</span><a id="line.71"> {</a>
<span class="sourceLineNo">072</span><a id="line.72"> // must process resources and operations first, they are required for the</a>
<span class="sourceLineNo">073</span><a id="line.73"> // permissions in the roles to add in correctly</a>
<span class="sourceLineNo">074</span><a id="line.74"> processResources( model );</a>
<span class="sourceLineNo">075</span><a id="line.75"> processOperations( model );</a>
<span class="sourceLineNo">076</span><a id="line.76"></a>
<span class="sourceLineNo">077</span><a id="line.77"> processRoles( model );</a>
<span class="sourceLineNo">078</span><a id="line.78"> }</a>
<span class="sourceLineNo">079</span><a id="line.79"></a>
<span class="sourceLineNo">080</span><a id="line.80"> @SuppressWarnings( "unchecked" )</a>
<span class="sourceLineNo">081</span><a id="line.81"> private void processResources( RedbackRoleModel model )</a>
<span class="sourceLineNo">082</span><a id="line.82"> throws RoleManagerException</a>
<span class="sourceLineNo">083</span><a id="line.83"> {</a>
<span class="sourceLineNo">084</span><a id="line.84"> for ( ModelApplication application : model.getApplications() )</a>
<span class="sourceLineNo">085</span><a id="line.85"> {</a>
<span class="sourceLineNo">086</span><a id="line.86"> for ( ModelResource profileResource : application.getResources() )</a>
<span class="sourceLineNo">087</span><a id="line.87"> {</a>
<span class="sourceLineNo">088</span><a id="line.88"> try</a>
<span class="sourceLineNo">089</span><a id="line.89"> {</a>
<span class="sourceLineNo">090</span><a id="line.90"> if ( !rbacManager.resourceExists( profileResource.getName() ) )</a>
<span class="sourceLineNo">091</span><a id="line.91"> {</a>
<span class="sourceLineNo">092</span><a id="line.92"></a>
<span class="sourceLineNo">093</span><a id="line.93"> Resource resource = rbacManager.createResource( profileResource.getName() );</a>
<span class="sourceLineNo">094</span><a id="line.94"> resource.setPermanent( profileResource.isPermanent() );</a>
<span class="sourceLineNo">095</span><a id="line.95"> resource = rbacManager.saveResource( resource );</a>
<span class="sourceLineNo">096</span><a id="line.96"></a>
<span class="sourceLineNo">097</span><a id="line.97"> // store for use in permission creation</a>
<span class="sourceLineNo">098</span><a id="line.98"> resourceMap.put( profileResource.getId(), resource );</a>
<span class="sourceLineNo">099</span><a id="line.99"></a>
<span class="sourceLineNo">100</span><a id="line.100"> }</a>
<span class="sourceLineNo">101</span><a id="line.101"> else</a>
<span class="sourceLineNo">102</span><a id="line.102"> {</a>
<span class="sourceLineNo">103</span><a id="line.103"> resourceMap.put( profileResource.getId(),</a>
<span class="sourceLineNo">104</span><a id="line.104"> rbacManager.getResource( profileResource.getName() ) );</a>
<span class="sourceLineNo">105</span><a id="line.105"> }</a>
<span class="sourceLineNo">106</span><a id="line.106"> }</a>
<span class="sourceLineNo">107</span><a id="line.107"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">108</span><a id="line.108"> {</a>
<span class="sourceLineNo">109</span><a id="line.109"> throw new RoleManagerException( "error creating resource '" + profileResource.getName() + "'", e );</a>
<span class="sourceLineNo">110</span><a id="line.110"> }</a>
<span class="sourceLineNo">111</span><a id="line.111"> }</a>
<span class="sourceLineNo">112</span><a id="line.112"> }</a>
<span class="sourceLineNo">113</span><a id="line.113"> }</a>
<span class="sourceLineNo">114</span><a id="line.114"></a>
<span class="sourceLineNo">115</span><a id="line.115"> @SuppressWarnings( "unchecked" )</a>
<span class="sourceLineNo">116</span><a id="line.116"> private void processOperations( RedbackRoleModel model )</a>
<span class="sourceLineNo">117</span><a id="line.117"> throws RoleManagerException</a>
<span class="sourceLineNo">118</span><a id="line.118"> {</a>
<span class="sourceLineNo">119</span><a id="line.119"> for ( ModelApplication application : model.getApplications() )</a>
<span class="sourceLineNo">120</span><a id="line.120"> {</a>
<span class="sourceLineNo">121</span><a id="line.121"> for ( ModelOperation profileOperation : application.getOperations() )</a>
<span class="sourceLineNo">122</span><a id="line.122"> {</a>
<span class="sourceLineNo">123</span><a id="line.123"> try</a>
<span class="sourceLineNo">124</span><a id="line.124"> {</a>
<span class="sourceLineNo">125</span><a id="line.125"> if ( !rbacManager.operationExists( profileOperation.getName() ) )</a>
<span class="sourceLineNo">126</span><a id="line.126"> {</a>
<span class="sourceLineNo">127</span><a id="line.127"></a>
<span class="sourceLineNo">128</span><a id="line.128"> Operation operation = rbacManager.createOperation( profileOperation.getName() );</a>
<span class="sourceLineNo">129</span><a id="line.129"> operation.setPermanent( profileOperation.isPermanent() );</a>
<span class="sourceLineNo">130</span><a id="line.130"> operation.setDescription( profileOperation.getDescription() );</a>
<span class="sourceLineNo">131</span><a id="line.131"> operation = rbacManager.saveOperation( operation );</a>
<span class="sourceLineNo">132</span><a id="line.132"></a>
<span class="sourceLineNo">133</span><a id="line.133"> // store for use in permission creation</a>
<span class="sourceLineNo">134</span><a id="line.134"> operationMap.put( profileOperation.getId(), operation );</a>
<span class="sourceLineNo">135</span><a id="line.135"></a>
<span class="sourceLineNo">136</span><a id="line.136"> }</a>
<span class="sourceLineNo">137</span><a id="line.137"> else</a>
<span class="sourceLineNo">138</span><a id="line.138"> {</a>
<span class="sourceLineNo">139</span><a id="line.139"> operationMap.put( profileOperation.getId(),</a>
<span class="sourceLineNo">140</span><a id="line.140"> rbacManager.getOperation( profileOperation.getName() ) );</a>
<span class="sourceLineNo">141</span><a id="line.141"> }</a>
<span class="sourceLineNo">142</span><a id="line.142"> }</a>
<span class="sourceLineNo">143</span><a id="line.143"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">144</span><a id="line.144"> {</a>
<span class="sourceLineNo">145</span><a id="line.145"> throw new RoleManagerException( "error creating operation '" + profileOperation.getName() + "'",</a>
<span class="sourceLineNo">146</span><a id="line.146"> e );</a>
<span class="sourceLineNo">147</span><a id="line.147"> }</a>
<span class="sourceLineNo">148</span><a id="line.148"> }</a>
<span class="sourceLineNo">149</span><a id="line.149"> }</a>
<span class="sourceLineNo">150</span><a id="line.150"> }</a>
<span class="sourceLineNo">151</span><a id="line.151"></a>
<span class="sourceLineNo">152</span><a id="line.152"> @SuppressWarnings( "unchecked" )</a>
<span class="sourceLineNo">153</span><a id="line.153"> private void processRoles( RedbackRoleModel model )</a>
<span class="sourceLineNo">154</span><a id="line.154"> throws RoleManagerException</a>
<span class="sourceLineNo">155</span><a id="line.155"> {</a>
<span class="sourceLineNo">156</span><a id="line.156"> StopWatch stopWatch = new StopWatch();</a>
<span class="sourceLineNo">157</span><a id="line.157"> stopWatch.reset();</a>
<span class="sourceLineNo">158</span><a id="line.158"> stopWatch.start();</a>
<span class="sourceLineNo">159</span><a id="line.159"> List&lt;String&gt; sortedGraph = RoleModelUtils.reverseTopologicalSortedRoleList(model);</a>
<span class="sourceLineNo">160</span><a id="line.160"></a>
<span class="sourceLineNo">161</span><a id="line.161"> List&lt;? extends Role&gt; allRoles;</a>
<span class="sourceLineNo">162</span><a id="line.162"> try</a>
<span class="sourceLineNo">163</span><a id="line.163"> {</a>
<span class="sourceLineNo">164</span><a id="line.164"> allRoles = rbacManager.getAllRoles();</a>
<span class="sourceLineNo">165</span><a id="line.165"> }</a>
<span class="sourceLineNo">166</span><a id="line.166"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">167</span><a id="line.167"> {</a>
<span class="sourceLineNo">168</span><a id="line.168"> throw new RoleManagerException( e.getMessage(), e );</a>
<span class="sourceLineNo">169</span><a id="line.169"> }</a>
<span class="sourceLineNo">170</span><a id="line.170"></a>
<span class="sourceLineNo">171</span><a id="line.171"> Set&lt;String&gt; allRoleNames = new HashSet&lt;String&gt;( allRoles.size() );</a>
<span class="sourceLineNo">172</span><a id="line.172"> for ( Role role : allRoles )</a>
<span class="sourceLineNo">173</span><a id="line.173"> {</a>
<span class="sourceLineNo">174</span><a id="line.174"> allRoleNames.add( role.getName() );</a>
<span class="sourceLineNo">175</span><a id="line.175"> }</a>
<span class="sourceLineNo">176</span><a id="line.176"></a>
<span class="sourceLineNo">177</span><a id="line.177"> for ( String roleId : sortedGraph )</a>
<span class="sourceLineNo">178</span><a id="line.178"> {</a>
<span class="sourceLineNo">179</span><a id="line.179"> ModelRole roleProfile = RoleModelUtils.getModelRole( model, roleId );</a>
<span class="sourceLineNo">180</span><a id="line.180"></a>
<span class="sourceLineNo">181</span><a id="line.181"> List&lt;? extends Permission&gt; permissions = processPermissions( roleProfile.getPermissions() );</a>
<span class="sourceLineNo">182</span><a id="line.182"></a>
<span class="sourceLineNo">183</span><a id="line.183"> boolean roleExists = allRoleNames.contains( roleProfile.getName() );// false;</a>
<span class="sourceLineNo">184</span><a id="line.184"></a>
<span class="sourceLineNo">185</span><a id="line.185"> /*try</a>
<span class="sourceLineNo">186</span><a id="line.186"> {</a>
<span class="sourceLineNo">187</span><a id="line.187"> roleExists = rbacManager.roleExists( roleProfile.getName() );</a>
<span class="sourceLineNo">188</span><a id="line.188"> }</a>
<span class="sourceLineNo">189</span><a id="line.189"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">190</span><a id="line.190"> {</a>
<span class="sourceLineNo">191</span><a id="line.191"> throw new RoleManagerException( e.getMessage(), e );</a>
<span class="sourceLineNo">192</span><a id="line.192"> }*/</a>
<span class="sourceLineNo">193</span><a id="line.193"></a>
<span class="sourceLineNo">194</span><a id="line.194"> if ( !roleExists )</a>
<span class="sourceLineNo">195</span><a id="line.195"> {</a>
<span class="sourceLineNo">196</span><a id="line.196"> try</a>
<span class="sourceLineNo">197</span><a id="line.197"> {</a>
<span class="sourceLineNo">198</span><a id="line.198"> Role role = rbacManager.createRole( roleProfile.getName() );</a>
<span class="sourceLineNo">199</span><a id="line.199"> role.setId( roleProfile.getId() );</a>
<span class="sourceLineNo">200</span><a id="line.200"> role.setModelId( roleProfile.getId() );</a>
<span class="sourceLineNo">201</span><a id="line.201"> role.setTemplateInstance( false );</a>
<span class="sourceLineNo">202</span><a id="line.202"> role.setDescription( roleProfile.getDescription() );</a>
<span class="sourceLineNo">203</span><a id="line.203"> role.setPermanent( roleProfile.isPermanent() );</a>
<span class="sourceLineNo">204</span><a id="line.204"> role.setAssignable( roleProfile.isAssignable() );</a>
<span class="sourceLineNo">205</span><a id="line.205"></a>
<span class="sourceLineNo">206</span><a id="line.206"> // add any permissions associated with this role</a>
<span class="sourceLineNo">207</span><a id="line.207"> for ( Permission permission : permissions )</a>
<span class="sourceLineNo">208</span><a id="line.208"> {</a>
<span class="sourceLineNo">209</span><a id="line.209"> role.addPermission( permission );</a>
<span class="sourceLineNo">210</span><a id="line.210"> }</a>
<span class="sourceLineNo">211</span><a id="line.211"></a>
<span class="sourceLineNo">212</span><a id="line.212"> // add child roles to this role</a>
<span class="sourceLineNo">213</span><a id="line.213"> if ( roleProfile.getChildRoles() != null )</a>
<span class="sourceLineNo">214</span><a id="line.214"> {</a>
<span class="sourceLineNo">215</span><a id="line.215"> for ( String childRoleId : roleProfile.getChildRoles() )</a>
<span class="sourceLineNo">216</span><a id="line.216"> {</a>
<span class="sourceLineNo">217</span><a id="line.217"> ModelRole childRoleProfile = RoleModelUtils.getModelRole( model, childRoleId );</a>
<span class="sourceLineNo">218</span><a id="line.218"> role.addChildRoleName( childRoleProfile.getName() );</a>
<span class="sourceLineNo">219</span><a id="line.219"> role.addChildRoleId( childRoleProfile.getId() );</a>
<span class="sourceLineNo">220</span><a id="line.220"> }</a>
<span class="sourceLineNo">221</span><a id="line.221"> }</a>
<span class="sourceLineNo">222</span><a id="line.222"></a>
<span class="sourceLineNo">223</span><a id="line.223"> rbacManager.saveRole( role );</a>
<span class="sourceLineNo">224</span><a id="line.224"> allRoleNames.add( role.getName() );</a>
<span class="sourceLineNo">225</span><a id="line.225"></a>
<span class="sourceLineNo">226</span><a id="line.226"> // add link from parent roles to this new role</a>
<span class="sourceLineNo">227</span><a id="line.227"> if ( roleProfile.getParentRoles() != null )</a>
<span class="sourceLineNo">228</span><a id="line.228"> {</a>
<span class="sourceLineNo">229</span><a id="line.229"> for ( String parentRoleId : roleProfile.getParentRoles() )</a>
<span class="sourceLineNo">230</span><a id="line.230"> {</a>
<span class="sourceLineNo">231</span><a id="line.231"> ModelRole parentModelRole = RoleModelUtils.getModelRole( model, parentRoleId );</a>
<span class="sourceLineNo">232</span><a id="line.232"> Role parentRole = rbacManager.getRole( parentModelRole.getName() );</a>
<span class="sourceLineNo">233</span><a id="line.233"> parentRole.addChildRole( role );</a>
<span class="sourceLineNo">234</span><a id="line.234"> rbacManager.saveRole( parentRole );</a>
<span class="sourceLineNo">235</span><a id="line.235"> allRoleNames.add( parentRole.getName() );</a>
<span class="sourceLineNo">236</span><a id="line.236"> }</a>
<span class="sourceLineNo">237</span><a id="line.237"> }</a>
<span class="sourceLineNo">238</span><a id="line.238"></a>
<span class="sourceLineNo">239</span><a id="line.239"> }</a>
<span class="sourceLineNo">240</span><a id="line.240"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">241</span><a id="line.241"> {</a>
<span class="sourceLineNo">242</span><a id="line.242"> throw new RoleManagerException( "error creating role '" + roleProfile.getName() + "'", e );</a>
<span class="sourceLineNo">243</span><a id="line.243"> }</a>
<span class="sourceLineNo">244</span><a id="line.244"> }</a>
<span class="sourceLineNo">245</span><a id="line.245"> else</a>
<span class="sourceLineNo">246</span><a id="line.246"> {</a>
<span class="sourceLineNo">247</span><a id="line.247"> try</a>
<span class="sourceLineNo">248</span><a id="line.248"> {</a>
<span class="sourceLineNo">249</span><a id="line.249"> Role role = rbacManager.getRole( roleProfile.getName() );</a>
<span class="sourceLineNo">250</span><a id="line.250"></a>
<span class="sourceLineNo">251</span><a id="line.251"> boolean changed = false;</a>
<span class="sourceLineNo">252</span><a id="line.252"> for ( Permission permission : permissions )</a>
<span class="sourceLineNo">253</span><a id="line.253"> {</a>
<span class="sourceLineNo">254</span><a id="line.254"> if ( !role.getPermissions().contains( permission ) )</a>
<span class="sourceLineNo">255</span><a id="line.255"> {</a>
<span class="sourceLineNo">256</span><a id="line.256"> log.info( "Adding new permission '{}' to role '{}'", permission.getName(), role.getName() );</a>
<span class="sourceLineNo">257</span><a id="line.257"> role.addPermission( permission );</a>
<span class="sourceLineNo">258</span><a id="line.258"> changed = true;</a>
<span class="sourceLineNo">259</span><a id="line.259"> }</a>
<span class="sourceLineNo">260</span><a id="line.260"> }</a>
<span class="sourceLineNo">261</span><a id="line.261"></a>
<span class="sourceLineNo">262</span><a id="line.262"> // Copy list to avoid concurrent modification [REDBACK-220]</a>
<span class="sourceLineNo">263</span><a id="line.263"> List&lt;Permission&gt; oldPermissions = new ArrayList&lt;Permission&gt;( role.getPermissions() );</a>
<span class="sourceLineNo">264</span><a id="line.264"> for ( Permission permission : oldPermissions )</a>
<span class="sourceLineNo">265</span><a id="line.265"> {</a>
<span class="sourceLineNo">266</span><a id="line.266"> if ( !permissions.contains( permission ) )</a>
<span class="sourceLineNo">267</span><a id="line.267"> {</a>
<span class="sourceLineNo">268</span><a id="line.268"> log.info(</a>
<span class="sourceLineNo">269</span><a id="line.269"> "Removing old permission '{}' from role '{}'", permission.getName(), role.getName() );</a>
<span class="sourceLineNo">270</span><a id="line.270"> role.removePermission( permission );</a>
<span class="sourceLineNo">271</span><a id="line.271"> changed = true;</a>
<span class="sourceLineNo">272</span><a id="line.272"> }</a>
<span class="sourceLineNo">273</span><a id="line.273"> }</a>
<span class="sourceLineNo">274</span><a id="line.274"> if ( changed )</a>
<span class="sourceLineNo">275</span><a id="line.275"> {</a>
<span class="sourceLineNo">276</span><a id="line.276"> rbacManager.saveRole( role );</a>
<span class="sourceLineNo">277</span><a id="line.277"> allRoleNames.add( role.getName() );</a>
<span class="sourceLineNo">278</span><a id="line.278"> }</a>
<span class="sourceLineNo">279</span><a id="line.279"> }</a>
<span class="sourceLineNo">280</span><a id="line.280"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">281</span><a id="line.281"> {</a>
<span class="sourceLineNo">282</span><a id="line.282"> throw new RoleManagerException( "error updating role '" + roleProfile.getName() + "'", e );</a>
<span class="sourceLineNo">283</span><a id="line.283"> }</a>
<span class="sourceLineNo">284</span><a id="line.284"> }</a>
<span class="sourceLineNo">285</span><a id="line.285"> }</a>
<span class="sourceLineNo">286</span><a id="line.286"> stopWatch.stop();</a>
<span class="sourceLineNo">287</span><a id="line.287"> log.info( "time to process roles model: {} ms", stopWatch.getTime() );</a>
<span class="sourceLineNo">288</span><a id="line.288"> }</a>
<span class="sourceLineNo">289</span><a id="line.289"></a>
<span class="sourceLineNo">290</span><a id="line.290"> private List&lt;? extends Permission&gt; processPermissions( List&lt;ModelPermission&gt; permissions )</a>
<span class="sourceLineNo">291</span><a id="line.291"> throws RoleManagerException</a>
<span class="sourceLineNo">292</span><a id="line.292"> {</a>
<span class="sourceLineNo">293</span><a id="line.293"> List&lt;Permission&gt; rbacPermissions = new ArrayList&lt;Permission&gt;( permissions.size() );</a>
<span class="sourceLineNo">294</span><a id="line.294"></a>
<span class="sourceLineNo">295</span><a id="line.295"> for ( ModelPermission profilePermission : permissions )</a>
<span class="sourceLineNo">296</span><a id="line.296"> {</a>
<span class="sourceLineNo">297</span><a id="line.297"> try</a>
<span class="sourceLineNo">298</span><a id="line.298"> {</a>
<span class="sourceLineNo">299</span><a id="line.299"> if ( !rbacManager.permissionExists( profilePermission.getName() ) )</a>
<span class="sourceLineNo">300</span><a id="line.300"> {</a>
<span class="sourceLineNo">301</span><a id="line.301"></a>
<span class="sourceLineNo">302</span><a id="line.302"> Permission permission = rbacManager.createPermission( profilePermission.getName() );</a>
<span class="sourceLineNo">303</span><a id="line.303"></a>
<span class="sourceLineNo">304</span><a id="line.304"> // get the operation out of the map we stored it in when we created it _by_ the id in the model</a>
<span class="sourceLineNo">305</span><a id="line.305"> Operation operation = (Operation) operationMap.get( profilePermission.getOperation() );</a>
<span class="sourceLineNo">306</span><a id="line.306"> // same with resource</a>
<span class="sourceLineNo">307</span><a id="line.307"> Resource resource = (Resource) resourceMap.get( profilePermission.getResource() );</a>
<span class="sourceLineNo">308</span><a id="line.308"></a>
<span class="sourceLineNo">309</span><a id="line.309"> permission.setOperation( operation );</a>
<span class="sourceLineNo">310</span><a id="line.310"> permission.setResource( resource );</a>
<span class="sourceLineNo">311</span><a id="line.311"> permission.setPermanent( profilePermission.isPermanent() );</a>
<span class="sourceLineNo">312</span><a id="line.312"> permission.setDescription( profilePermission.getDescription() );</a>
<span class="sourceLineNo">313</span><a id="line.313"></a>
<span class="sourceLineNo">314</span><a id="line.314"> permission = rbacManager.savePermission( permission );</a>
<span class="sourceLineNo">315</span><a id="line.315"></a>
<span class="sourceLineNo">316</span><a id="line.316"> rbacPermissions.add( permission );</a>
<span class="sourceLineNo">317</span><a id="line.317"></a>
<span class="sourceLineNo">318</span><a id="line.318"> }</a>
<span class="sourceLineNo">319</span><a id="line.319"> else</a>
<span class="sourceLineNo">320</span><a id="line.320"> {</a>
<span class="sourceLineNo">321</span><a id="line.321"> rbacPermissions.add( rbacManager.getPermission( profilePermission.getName() ) );</a>
<span class="sourceLineNo">322</span><a id="line.322"> }</a>
<span class="sourceLineNo">323</span><a id="line.323"> }</a>
<span class="sourceLineNo">324</span><a id="line.324"> catch ( RbacManagerException e )</a>
<span class="sourceLineNo">325</span><a id="line.325"> {</a>
<span class="sourceLineNo">326</span><a id="line.326"> throw new RoleManagerException( "error creating permission '" + profilePermission.getName() + "'", e );</a>
<span class="sourceLineNo">327</span><a id="line.327"> }</a>
<span class="sourceLineNo">328</span><a id="line.328"> }</a>
<span class="sourceLineNo">329</span><a id="line.329"> return rbacPermissions;</a>
<span class="sourceLineNo">330</span><a id="line.330"> }</a>
<span class="sourceLineNo">331</span><a id="line.331"></a>
<span class="sourceLineNo">332</span><a id="line.332"> public RBACManager getRbacManager()</a>
<span class="sourceLineNo">333</span><a id="line.333"> {</a>
<span class="sourceLineNo">334</span><a id="line.334"> return rbacManager;</a>
<span class="sourceLineNo">335</span><a id="line.335"> }</a>
<span class="sourceLineNo">336</span><a id="line.336"></a>
<span class="sourceLineNo">337</span><a id="line.337"> public void setRbacManager( RBACManager rbacManager )</a>
<span class="sourceLineNo">338</span><a id="line.338"> {</a>
<span class="sourceLineNo">339</span><a id="line.339"> this.rbacManager = rbacManager;</a>
<span class="sourceLineNo">340</span><a id="line.340"> }</a>
<span class="sourceLineNo">341</span><a id="line.341">}</a>
<span class="sourceLineNo">342</span><a id="line.342"></a>
<span class="sourceLineNo">343</span><a id="line.343"></a>
</pre>
</div>
</main>
</body>
</html>