2 * ============LICENSE_START=======================================================
4 * ================================================================================
5 * Copyright (C) 2018 AT&T Intellectual Property. All rights reserved.
6 * ================================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END=========================================================
21 package org.onap.policy.common.endpoints.http.server.aaf;
23 import javax.servlet.http.HttpServletRequest;
24 import org.onap.policy.common.utils.network.NetworkUtil;
27 * This generic class allows the mapping of REST APIs to AAF permissions
28 * to be evaluated in an AAF context. This class can be used for
29 * highly granular permissions where each REST resource can be directly
30 * mapped transparently to an AAF permission type, the instance being the host
31 * server, and the HTTP method corresponding to the action.
32 * Subclasses are responsible to provide the root permission prefix, typically
35 public abstract class AafGranularAuthFilter extends AafAuthFilter {
38 protected String getPermissionType(HttpServletRequest request) {
39 return getPermissionTypeRoot() + "." +
40 request.getRequestURI().replace('/', '.');
44 protected String getPermissionInstance(HttpServletRequest request) {
45 return NetworkUtil.getHostname();
48 public abstract String getPermissionTypeRoot();
Code Review / policy / common.git / blob