2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
22 package org.onap.aaf.auth.gui;
24 import static org.onap.aaf.auth.rserv.HttpMethods.GET;
25 import static org.onap.aaf.auth.rserv.HttpMethods.POST;
26 import static org.onap.aaf.auth.rserv.HttpMethods.PUT;
28 import javax.servlet.Filter;
29 import javax.servlet.http.Cookie;
30 import javax.servlet.http.HttpServletRequest;
31 import javax.servlet.http.HttpServletResponse;
33 import org.onap.aaf.auth.cmd.Cmd;
34 import org.onap.aaf.auth.cui.CUI;
35 import org.onap.aaf.auth.env.AuthzEnv;
36 import org.onap.aaf.auth.env.AuthzTrans;
37 import org.onap.aaf.auth.env.AuthzTransFilter;
38 import org.onap.aaf.auth.gui.pages.ApiDocs;
39 import org.onap.aaf.auth.gui.pages.ApiExample;
40 import org.onap.aaf.auth.gui.pages.ApprovalAction;
41 import org.onap.aaf.auth.gui.pages.ApprovalForm;
42 import org.onap.aaf.auth.gui.pages.CMArtiChangeAction;
43 import org.onap.aaf.auth.gui.pages.CMArtiChangeForm;
44 import org.onap.aaf.auth.gui.pages.CMArtifactShow;
45 import org.onap.aaf.auth.gui.pages.CredDetail;
46 import org.onap.aaf.auth.gui.pages.CredHistory;
47 import org.onap.aaf.auth.gui.pages.Home;
48 import org.onap.aaf.auth.gui.pages.LoginLanding;
49 import org.onap.aaf.auth.gui.pages.LoginLandingAction;
50 import org.onap.aaf.auth.gui.pages.NsDetail;
51 import org.onap.aaf.auth.gui.pages.NsHistory;
52 import org.onap.aaf.auth.gui.pages.NsInfoAction;
53 import org.onap.aaf.auth.gui.pages.NsInfoForm;
54 import org.onap.aaf.auth.gui.pages.NssShow;
55 import org.onap.aaf.auth.gui.pages.PassChangeAction;
56 import org.onap.aaf.auth.gui.pages.PassChangeForm;
57 import org.onap.aaf.auth.gui.pages.PassDeleteAction;
58 import org.onap.aaf.auth.gui.pages.PendingRequestsShow;
59 import org.onap.aaf.auth.gui.pages.PermDetail;
60 import org.onap.aaf.auth.gui.pages.PermGrantAction;
61 import org.onap.aaf.auth.gui.pages.PermGrantForm;
62 import org.onap.aaf.auth.gui.pages.PermHistory;
63 import org.onap.aaf.auth.gui.pages.PermsShow;
64 import org.onap.aaf.auth.gui.pages.RequestDetail;
65 import org.onap.aaf.auth.gui.pages.RoleDetail;
66 import org.onap.aaf.auth.gui.pages.RoleDetailAction;
67 import org.onap.aaf.auth.gui.pages.RoleHistory;
68 import org.onap.aaf.auth.gui.pages.RolesShow;
69 import org.onap.aaf.auth.gui.pages.UserRoleExtend;
70 import org.onap.aaf.auth.gui.pages.UserRoleRemove;
71 import org.onap.aaf.auth.gui.pages.WebCommand;
72 import org.onap.aaf.auth.rserv.CachingFileAccess;
73 import org.onap.aaf.auth.rserv.HttpCode;
74 import org.onap.aaf.auth.server.AbsService;
75 import org.onap.aaf.auth.server.JettyServiceStarter;
76 import org.onap.aaf.auth.server.Log4JLogIt;
77 import org.onap.aaf.cadi.CadiException;
78 import org.onap.aaf.cadi.LocatorException;
79 import org.onap.aaf.cadi.PropAccess;
80 import org.onap.aaf.cadi.aaf.v2_0.AAFConHttp;
81 import org.onap.aaf.cadi.aaf.v2_0.AAFLurPerm;
82 import org.onap.aaf.cadi.aaf.v2_0.AAFTrustChecker;
83 import org.onap.aaf.cadi.client.Future;
84 import org.onap.aaf.cadi.client.Retryable;
85 import org.onap.aaf.cadi.config.Config;
86 import org.onap.aaf.cadi.http.HTransferSS;
87 import org.onap.aaf.cadi.principal.TaggedPrincipal;
88 import org.onap.aaf.cadi.register.Registrant;
89 import org.onap.aaf.cadi.register.RemoteRegistrant;
90 import org.onap.aaf.misc.env.APIException;
91 import org.onap.aaf.misc.env.Env;
92 import org.onap.aaf.misc.env.Slot;
93 import org.onap.aaf.misc.env.StaticSlot;
94 import org.onap.aaf.misc.rosetta.env.RosettaDF;
95 import org.onap.aaf.misc.xgen.html.HTMLGen;
96 import org.onap.aaf.misc.xgen.html.State;
98 import certman.v1_0.Artifacts;
99 import certman.v1_0.CertInfo;
101 public class AAF_GUI extends AbsService<AuthzEnv, AuthzTrans> implements State<Env>{
102 public static final String AAF_GUI_THEME = "aaf_gui_theme";
103 public static final String AAF_GUI_COPYRIGHT = "aaf_gui_copyright";
104 public static final String HTTP_SERVLET_REQUEST = "HTTP_SERVLET_REQUEST";
105 public static final int TIMEOUT = 60000;
106 public static final String APP = "AAF GUI";
110 // Certificate manager API
111 public RosettaDF<Artifacts> artifactsDF;
112 public RosettaDF<CertInfo> certInfoDF;
114 private final AAFConHttp cmCon;
115 public final AAFConHttp aafCon;
116 public final AAFLurPerm lur;
118 public final Slot slotHttpServletRequest;
119 protected final String deployedVersion;
120 private StaticSlot sThemeWebPath;
121 private StaticSlot sDefaultTheme;
124 public AAF_GUI(final AuthzEnv env) throws Exception {
125 super(env.access(), env);
126 sDefaultTheme = env.staticSlot(AAF_GUI_THEME);
127 String defTheme = env.getProperty(AAF_GUI_THEME,"onap");
128 env.put(sDefaultTheme, defTheme);
131 sThemeWebPath = env.staticSlot(CachingFileAccess.CFA_WEB_PATH);
132 if(env.get(sThemeWebPath)==null) {
133 env.put(sThemeWebPath,"theme");
137 slotHttpServletRequest = env.slot(HTTP_SERVLET_REQUEST);
138 deployedVersion = appVersion;
141 // Certificate Manager
142 String aafUrlCm = env.getProperty(Config.AAF_URL_CM,Config.AAF_URL_CM_DEF);
143 cmCon = new AAFConHttp(env.access(),aafUrlCm);
144 artifactsDF = env.newDataFactory(Artifacts.class);
145 certInfoDF = env.newDataFactory(CertInfo.class);
148 /////////////////////////
150 /////////////////////////
152 final Page start = new Display(this, GET, new Home(this)).page();
155 final Page myPerms = new Display(this, GET, new PermsShow(this, start)).page();
156 Page permDetail = new Display(this, GET, new PermDetail(this, start, myPerms)).page();
157 new Display(this, GET, new PermHistory(this,start,myPerms,permDetail));
160 final Page myRoles = new Display(this, GET, new RolesShow(this, start)).page();
161 Page roleDetail = new Display(this, GET, new RoleDetail(this, start, myRoles)).page();
162 new Display(this, POST, new RoleDetailAction(this,start,myRoles,roleDetail));
163 new Display(this, GET, new RoleHistory(this,start,myRoles,roleDetail));
166 final Page myNamespaces = new Display(this, GET, new NssShow(this, start)).page();
167 Page nsDetail = new Display(this, GET, new NsDetail(this, start, myNamespaces)).page();
168 new Display(this, GET, new NsHistory(this, start,myNamespaces,nsDetail));
169 Page crdDetail = new Display(this, GET, new CredDetail(this, start, myNamespaces, nsDetail)).page();
170 new Display(this, GET, new CredHistory(this,start,myNamespaces,nsDetail,crdDetail));
171 Page artiShow = new Display(this, GET, new CMArtifactShow(this, start, myNamespaces, nsDetail, crdDetail)).page();
172 Page artiCForm = new Display(this, GET, new CMArtiChangeForm(this, start, myNamespaces, nsDetail, crdDetail,artiShow)).page();
173 new Display(this, POST, new CMArtiChangeAction(this, start,artiShow,artiCForm));
175 // Password Change Screens
176 final Page pwc = new Display(this, GET, new PassChangeForm(this, start,crdDetail)).page();
177 new Display(this, POST, new PassChangeAction(this, start, pwc));
179 // Password Delete Screen
180 new Display(this, GET, new PassDeleteAction(this, start,crdDetail));
182 // Validation Change Screens
183 final Page validate = new Display(this, GET, new ApprovalForm(this, start)).page();
184 new Display(this, POST, new ApprovalAction(this, start, validate));
186 // Onboard, Detailed Edit Screens
187 final Page onb = new Display(this, GET, new NsInfoForm(this, start)).page();
188 new Display(this, POST, new NsInfoAction(this, start, onb));
190 // Web Command Screens
191 /* final Page webCommand =*/ new Display(this, GET, new WebCommand(this, start)).page();
194 final Page apidocs = new Display(this, GET, new ApiDocs(this, start)).page();
195 new Display(this, GET, new ApiExample(this,start, apidocs)).page();
197 // Permission Grant Page
198 final Page permGrant = new Display(this, GET, new PermGrantForm(this, start)).page();
199 new Display(this, POST, new PermGrantAction(this, start, permGrant)).page();
201 // Login Landing if no credentials detected
202 final Page loginLanding = new Display(this, GET, new LoginLanding(this, start)).page();
203 new Display(this, POST, new LoginLandingAction(this, start, loginLanding));
205 // User Role Request Extend and Remove
206 new Display(this, GET, new UserRoleExtend(this, start,myRoles)).page();
207 new Display(this, GET, new UserRoleRemove(this, start,myRoles)).page();
209 // See my Pending Requests
210 final Page requestsShow = new Display(this, GET, new PendingRequestsShow(this, start)).page();
211 new Display(this, GET, new RequestDetail(this, start, requestsShow));
213 // Command line Mechanism
214 route(env, PUT, "/gui/cui", new CUI(this),"text/plain;charset=utf-8","*/*");
216 route(env, GET, "/gui/clear", new HttpCode<AuthzTrans, Void>(null, "Clear"){
218 public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
220 Cookie cookies[] = req.getCookies();
222 for(Cookie c : cookies) {
223 if(c.getName().startsWith("aaf.gui.")) {
229 resp.sendRedirect("/gui/home");
231 }, "text/plain;charset=utf-8","*/*");
233 ///////////////////////
234 // WebContent Handler
235 ///////////////////////
236 CachingFileAccess<AuthzTrans> cfa = new CachingFileAccess<AuthzTrans>(env);
237 route(env,GET,"/theme/:key*", cfa);
238 ///////////////////////
240 lur = aafCon.newLur();
243 public<T> RosettaDF<T> getDF(Class<T> cls) throws APIException {
244 return Cmd.getDF(env,cls);
247 public void writeError(AuthzTrans trans, Future<?> fp, HTMLGen hgen, int indent) {
249 String msg = aafCon.readableErrMsg(fp);
250 hgen.incr(HTMLGen.P,"style=text-indent:"+indent*10+"px")
251 .text("<font color=\"red\"><i>Error</i>:</font> ")
254 trans.checkpoint(msg);
258 public<RET> RET cmClientAsUser(TaggedPrincipal p,Retryable<RET> retryable) throws APIException, LocatorException, CadiException {
259 return cmCon.hman().best(new HTransferSS(p, APP, aafCon.securityInfo()), retryable);
263 public Filter[] _filters(Object ... additionalTafLurs) throws CadiException, LocatorException {
265 return new Filter[] {
266 new XFrameFilter(XFrameFilter.TYPE.none),
267 new AuthzTransFilter(env,aafCon(),
268 new AAFTrustChecker((Env)env),
270 new OrgLookupFilter()
272 } catch (NumberFormatException e) {
273 throw new CadiException("Invalid Property information", e);
277 @SuppressWarnings("unchecked")
279 public Registrant<AuthzEnv>[] registrants(final int port) throws CadiException, LocatorException {
280 return new Registrant[] {
281 new RemoteRegistrant<AuthzEnv>(aafCon(),port)
285 public static void main(final String[] args) {
287 Log4JLogIt logIt = new Log4JLogIt(args, "gui");
288 PropAccess propAccess = new PropAccess(logIt,args);
291 new JettyServiceStarter<AuthzEnv,AuthzTrans>(
292 new AAF_GUI(new AuthzEnv(propAccess)),true)
294 } catch (Exception e) {
297 } catch (Exception e) {