/*-
* ============LICENSE_START=======================================================
* ONAP Policy Engine
* ================================================================================
* Copyright (C) 2017-2018 AT&T Intellectual Property. All rights reserved.
* Modifications Copyright (C) 2019 Nordix Foundation.
* ================================================================================
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
* ============LICENSE_END=========================================================
*/
package org.onap.policy.rest.util;
import com.fasterxml.jackson.core.JsonProcessingException;
import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.google.common.base.Splitter;
import com.google.common.base.Strings;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.StringReader;
import java.nio.charset.StandardCharsets;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.HashSet;
import java.util.Iterator;
import java.util.LinkedHashMap;
import java.util.List;
import java.util.Map;
import java.util.Map.Entry;
import java.util.Set;
import javax.json.Json;
import javax.json.JsonException;
import javax.json.JsonObject;
import javax.json.JsonReader;
import javax.json.JsonValue;
import lombok.Getter;
import oasis.names.tc.xacml._3_0.core.schema.wd_17.PolicySetType;
import oasis.names.tc.xacml._3_0.core.schema.wd_17.PolicyType;
import org.apache.commons.lang3.StringEscapeUtils;
import org.apache.commons.lang3.StringUtils;
import org.json.JSONArray;
import org.json.JSONObject;
import org.onap.policy.common.logging.flexlogger.FlexLogger;
import org.onap.policy.common.logging.flexlogger.Logger;
import org.onap.policy.rest.adapter.ClosedLoopFaultBody;
import org.onap.policy.rest.adapter.ClosedLoopPMBody;
import org.onap.policy.rest.adapter.PolicyRestAdapter;
import org.onap.policy.rest.dao.CommonClassDao;
import org.onap.policy.rest.jpa.MicroServiceModels;
import org.onap.policy.rest.jpa.OptimizationModels;
import org.onap.policy.rest.jpa.SafePolicyWarning;
import org.onap.policy.utils.PolicyUtils;
import org.onap.policy.xacml.api.XACMLErrorConstants;
import org.onap.policy.xacml.util.XACMLPolicyScanner;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
@Service
public class PolicyValidation {
private static final Logger LOGGER = FlexLogger.getLogger(PolicyValidation.class);
private static final String ACTION_POLICY = "Action";
private static final String BOOLEAN = "boolean";
private static final String BRMSPARAM = "BRMS_Param";
private static final String BRMSRAW = "BRMS_Raw";
private static final String CLOSEDLOOP_PM = "ClosedLoop_PM";
private static final String CLOSEDLOOP_POLICY = "ClosedLoop_Fault";
private static final String CONFIG_POLICY = "Config";
private static final String DECISION_MS_MODEL = "MicroService_Model";
private static final String DECISION_POLICY = "Decision";
private static final String DECISION_POLICY_MS = "Decision_MS";
private static final String ENFORCER_CONFIG_POLICY = "Enforcer Config";
private static final String FIREWALL = "Firewall Config";
private static final String HTML_ITALICS_LNBREAK = "
";
private static final String INTEGER = "integer";
private static final String ISREQUIRED = " is required";
private static final String JAVA = "java";
private static final String LIST = "list";
private static final String MAP = "map";
private static final String MICROSERVICES = "Micro Service";
private static final String MISSING_COMPONENT_ATTRIBUTE_VALUE = "Component Attributes:"
+ " has one missing Component Attribute value
";
private static final String MISSING_ATTRIBUTE_VALUE = "Rule Attributes:"
+ " has one missing Attribute value
";
private static final String MISSING_COMPONENT_ATTRIBUTE_KEY = "Component Attributes:"
+ " has one missing Component Attribute key
";
private static final String OPTIMIZATION = "Optimization";
private static final String RAW = "Raw";
private static final String REQUIRED_ATTRIBUTE = "required-true";
private static final String RULE_ALGORITHMS = "Rule Algorithms:";
private static final String SELECT_AT_LEAST_ONE_D2_VIRTUALIZED_SERVICES = "D2/Virtualized Services: "
+ "Select at least one D2/Virtualized Services";
private static final String SPACESINVALIDCHARS = " : value has spaces or invalid characters
";
private static final String STRING = "string";
private static final String SUCCESS = "success";
private static final String VALUE = "value";
private static Map mapAttribute = new HashMap<>();
private static Map jsonRequestMap = new HashMap<>();
private static List modelRequiredFieldsList = new ArrayList<>();
@Getter
private static CommonClassDao commonClassDao;
private Set allReqTrueKeys = new HashSet<>();
private Set allOptReqTrueKeys = new HashSet<>();
@Autowired
public PolicyValidation(CommonClassDao commonClassDao) {
PolicyValidation.commonClassDao = commonClassDao;
}
/*
* This is an empty constructor
*/
public PolicyValidation() {
// Empty constructor
}
/**
* Validate policy.
*
* @param policyData the policy data
* @return the string builder
* @throws IOException Signals that an I/O exception has occurred.
*/
public StringBuilder validatePolicy(PolicyRestAdapter policyData) throws IOException {
try {
boolean valid = true;
StringBuilder responseString = new StringBuilder();
ObjectMapper mapper = new ObjectMapper();
if (policyData.getPolicyName() != null) {
String policyNameValidate = PolicyUtils.policySpecialCharValidator(policyData.getPolicyName());
if (!policyNameValidate.contains(SUCCESS)) {
responseString.append("PolicyName:" + policyNameValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("PolicyName: PolicyName Should not be empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (policyData.getPolicyDescription() != null) {
String descriptionValidate = PolicyUtils.descriptionValidator(policyData.getPolicyDescription());
if (!descriptionValidate.contains(SUCCESS)) {
responseString.append("Description:" + descriptionValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (!"API".equals(policyData.getApiflag()) && policyData.getAttributes() != null
&& !policyData.getAttributes().isEmpty()) {
for (Object attribute : policyData.getAttributes()) {
if (attribute instanceof LinkedHashMap, ?>) {
String attValue = null;
String key = null;
if (((LinkedHashMap, ?>) attribute).get("key") != null) {
key = ((LinkedHashMap, ?>) attribute).get("key").toString();
if (!PolicyUtils.policySpecialCharWithDashValidator(key).contains(SUCCESS)) {
responseString.append("Attributes or Component Attributes:" + attValue
+ SPACESINVALIDCHARS);
valid = false;
}
} else {
if (CONFIG_POLICY.equals(policyData.getPolicyType())) {
if ("Base".equals(policyData.getConfigPolicyType())) {
responseString.append(
"Attributes: has one missing Attribute key
");
}
if (BRMSPARAM.equals(policyData.getConfigPolicyType())
|| BRMSRAW.equals(policyData.getConfigPolicyType())) {
responseString.append(
"Rule Attributes: has one missing Attribute key
");
}
} else {
responseString.append(MISSING_COMPONENT_ATTRIBUTE_KEY);
}
valid = false;
}
if (((LinkedHashMap, ?>) attribute).get(VALUE) != null) {
attValue = ((LinkedHashMap, ?>) attribute).get(VALUE).toString();
if (!PolicyUtils.policySpecialCharWithDashValidator(attValue).contains(SUCCESS)) {
if (CONFIG_POLICY.equals(policyData.getPolicyType())) {
if ("Base".equals(policyData.getConfigPolicyType())) {
responseString.append("Attributes:" + attValue + SPACESINVALIDCHARS);
}
if (BRMSPARAM.equals(policyData.getConfigPolicyType())
|| BRMSRAW.equals(policyData.getConfigPolicyType())) {
responseString.append(
"Rule Attributes:" + attValue + SPACESINVALIDCHARS);
}
} else {
responseString.append(
"Component Attributes:" + attValue + SPACESINVALIDCHARS);
}
valid = false;
}
} else {
if (CONFIG_POLICY.equals(policyData.getPolicyType())) {
if ("Base".equals(policyData.getConfigPolicyType())) {
responseString.append(
"Attributes: has one missing Attribute value
");
}
if (BRMSPARAM.equals(policyData.getConfigPolicyType())
|| BRMSRAW.equals(policyData.getConfigPolicyType())) {
responseString.append(MISSING_ATTRIBUTE_VALUE);
}
} else {
responseString.append(MISSING_COMPONENT_ATTRIBUTE_VALUE);
}
valid = false;
}
}
}
}
// Decision Policy Attributes Validation
if (!"API".equals(policyData.getApiflag()) && policyData.getSettings() != null
&& !policyData.getSettings().isEmpty()) {
for (Object attribute : policyData.getSettings()) {
if (attribute instanceof LinkedHashMap, ?>) {
String value = null;
if (((LinkedHashMap, ?>) attribute).get("key") == null) {
responseString.append(
"Settings Attributes: has one missing Attribute key
");
valid = false;
}
if (((LinkedHashMap, ?>) attribute).get(VALUE) != null) {
value = ((LinkedHashMap, ?>) attribute).get(VALUE).toString();
if (!PolicyUtils.policySpecialCharValidator(value).contains(SUCCESS)) {
responseString.append("Settings Attributes:" + value + SPACESINVALIDCHARS);
valid = false;
}
} else {
responseString.append(
"Settings Attributes: has one missing Attribute Value
");
valid = false;
}
}
}
}
if (!"API".equals(policyData.getApiflag()) && policyData.getRuleAlgorithmschoices() != null
&& !policyData.getRuleAlgorithmschoices().isEmpty()) {
for (Object attribute : policyData.getRuleAlgorithmschoices()) {
if (attribute instanceof LinkedHashMap, ?>) {
String label = ((LinkedHashMap, ?>) attribute).get("id").toString();
if (((LinkedHashMap, ?>) attribute).get("dynamicRuleAlgorithmField1") == null) {
responseString.append(RULE_ALGORITHMS + label + " : Field 1 value is not selected
");
valid = false;
}
if (((LinkedHashMap, ?>) attribute).get("dynamicRuleAlgorithmCombo") == null) {
responseString.append(RULE_ALGORITHMS + label + " : Field 2 value is not selected
");
valid = false;
}
if (((LinkedHashMap, ?>) attribute).get("dynamicRuleAlgorithmField2") != null) {
String value = ((LinkedHashMap, ?>) attribute).get("dynamicRuleAlgorithmField2")
.toString();
if (!PolicyUtils.policySpecialCharValidator(value).contains(SUCCESS)) {
responseString.append(RULE_ALGORITHMS + label
+ " : Field 3 value has special characters
");
valid = false;
}
} else {
responseString.append(RULE_ALGORITHMS + label + " : Field 3 value is empty
");
valid = false;
}
}
}
}
if (CONFIG_POLICY.equalsIgnoreCase(policyData.getPolicyType())) {
if ("Base".equals(policyData.getConfigPolicyType())
|| CLOSEDLOOP_POLICY.equals(policyData.getConfigPolicyType())
|| CLOSEDLOOP_PM.equals(policyData.getConfigPolicyType())
|| ENFORCER_CONFIG_POLICY.equals(policyData.getConfigPolicyType())
|| MICROSERVICES.equals(policyData.getConfigPolicyType())
|| OPTIMIZATION.equals(policyData.getConfigPolicyType())) {
if (!Strings.isNullOrEmpty(policyData.getOnapName())) {
String onapNameValidate = PolicyUtils
.policySpecialCharWithDashValidator(policyData.getOnapName());
if (!onapNameValidate.contains(SUCCESS)) {
responseString.append("OnapName:" + onapNameValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Onap Name: Onap Name Should not be empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (!Strings.isNullOrEmpty(policyData.getRiskType())) {
String riskTypeValidate = PolicyUtils.policySpecialCharValidator(policyData.getRiskType());
if (!riskTypeValidate.contains(SUCCESS)) {
responseString.append("RiskType:" + riskTypeValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("RiskType: Risk Type Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (!Strings.isNullOrEmpty(policyData.getRiskLevel())) {
String validateRiskLevel = PolicyUtils.policySpecialCharValidator(policyData.getRiskLevel());
if (!validateRiskLevel.contains(SUCCESS)) {
responseString.append("RiskLevel:" + validateRiskLevel + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("RiskLevel: Risk Level Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (!Strings.isNullOrEmpty(policyData.getGuard())) {
String validateGuard = PolicyUtils.policySpecialCharValidator(policyData.getGuard());
if (!validateGuard.contains(SUCCESS)) {
responseString.append("Guard:" + validateGuard + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Guard: Guard Value Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
// Validate Config Base Policy Data
if ("Base".equalsIgnoreCase(policyData.getConfigPolicyType())) {
if (!Strings.isNullOrEmpty(policyData.getConfigName())) {
String configNameValidate = PolicyUtils.policySpecialCharValidator(policyData.getConfigName());
if (!configNameValidate.contains(SUCCESS)) {
responseString.append("ConfigName:" + configNameValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Config Name: Config Name Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (!Strings.isNullOrEmpty(policyData.getConfigType())) {
String configTypeValidate = PolicyUtils.policySpecialCharValidator(policyData.getConfigType());
if (!configTypeValidate.contains(SUCCESS)) {
responseString.append("ConfigType:" + configTypeValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Config Type: Config Type Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (!Strings.isNullOrEmpty(policyData.getConfigBodyData())) {
String configBodyData = policyData.getConfigBodyData();
String configType = policyData.getConfigType();
if (configType != null) {
if ("JSON".equals(configType)) {
if (!PolicyUtils.isJSONValid(configBodyData)) {
responseString.append(
"Config Body: JSON Content is not valid" + HTML_ITALICS_LNBREAK);
valid = false;
}
} else if ("XML".equals(configType)) {
if (!PolicyUtils.isXMLValid(configBodyData)) {
responseString.append("Config Body: XML Content data is not valid"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
} else if ("PROPERTIES".equals(configType)) {
if (!PolicyUtils.isPropValid(configBodyData) || "".equals(configBodyData)) {
responseString.append(
"Config Body: Property data is not valid" + HTML_ITALICS_LNBREAK);
valid = false;
}
} else if ("OTHER".equals(configType) && ("".equals(configBodyData))) {
responseString.append(
"Config Body: Config Body Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
} else {
responseString.append("Config Body: Config Body Should not be Empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
// Validate Config Firewall Policy Data
if (FIREWALL.equalsIgnoreCase(policyData.getConfigPolicyType())) {
if (policyData.getConfigName() != null && !policyData.getConfigName().isEmpty()) {
String configNameValidate = PolicyUtils.policySpecialCharValidator(policyData.getConfigName());
if (!configNameValidate.contains(SUCCESS)) {
responseString.append("ConfigName:" + configNameValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Config Name: Config Name is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (policyData.getSecurityZone() == null || policyData.getSecurityZone().isEmpty()) {
responseString.append(
"Security Zone: Security Zone is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
// Validate BRMS_Param Policy Data
if (BRMSPARAM.equalsIgnoreCase(policyData.getConfigPolicyType())
&& Strings.isNullOrEmpty(policyData.getRuleName())) {
responseString.append("BRMS Template:BRMS Template is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
// Validate BRMS_Raw Policy Data
if (BRMSRAW.equalsIgnoreCase(policyData.getConfigPolicyType())) {
if (policyData.getConfigBodyData() != null && !policyData.getConfigBodyData().isEmpty()) {
String message = PolicyUtils.brmsRawValidate(policyData.getConfigBodyData());
// If there are any error other than Annotations then this is not Valid
if (message.contains("[ERR")) {
responseString.append("Raw Rule Validate:Raw Rule has error" + message
+ HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Raw Rule:Raw Rule is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
// Validate ClosedLoop_PM Policy Data
if (CLOSEDLOOP_PM.equalsIgnoreCase(policyData.getConfigPolicyType())) {
try {
if (Strings.isNullOrEmpty(policyData.getServiceTypePolicyName().get("serviceTypePolicyName")
.toString())) {
responseString.append("ServiceType PolicyName:ServiceType PolicyName is required"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
} catch (Exception e) {
LOGGER.error("ERROR in ClosedLoop_PM PolicyName", e);
responseString.append("ServiceType PolicyName:ServiceType PolicyName is required"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (policyData.getJsonBody() != null) {
ClosedLoopPMBody pmBody = mapper.readValue(policyData.getJsonBody(), ClosedLoopPMBody.class);
if (pmBody.getEmailAddress() != null) {
String result = emailValidation(pmBody.getEmailAddress(), responseString.toString());
if (result != SUCCESS) {
responseString.append(result + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (!pmBody.isGamma() && !pmBody.isMcr() && !pmBody.isTrinity() && !pmBody.isvDNS()
&& !pmBody.isvUSP()) {
responseString.append(SELECT_AT_LEAST_ONE_D2_VIRTUALIZED_SERVICES + HTML_ITALICS_LNBREAK);
valid = false;
}
if (pmBody.getGeoLink() != null && !pmBody.getGeoLink().isEmpty()) {
String result = PolicyUtils.policySpecialCharValidator(pmBody.getGeoLink());
if (!result.contains(SUCCESS)) {
responseString.append("GeoLink:" + result + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (pmBody.getAttributes() != null && !pmBody.getAttributes().isEmpty()) {
for (Entry entry : pmBody.getAttributes().entrySet()) {
String key = entry.getKey();
String value = entry.getValue();
if (!key.contains("Message")) {
String attributeValidate = PolicyUtils.policySpecialCharValidator(value);
if (!attributeValidate.contains(SUCCESS)) {
responseString.append("Attributes:" + key
+ " : value has spaces or invalid characters"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
}
}
}
} else {
responseString.append(
"D2/Virtualized Services:Select atleast one D2/Virtualized Services"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (CLOSEDLOOP_POLICY.equalsIgnoreCase(policyData.getConfigPolicyType())) {
if (policyData.getJsonBody() != null) {
// For API we need to get the conditions key from the Json request and check it before
// deserializing to POJO due to the enum
if ("API".equals(policyData.getApiflag())) {
JSONObject json = new JSONObject(policyData.getJsonBody());
if (!json.isNull("conditions")) {
String apiCondition = (String) json.get("conditions");
if (Strings.isNullOrEmpty(apiCondition)) {
responseString.append("Conditions: Select At least one Condition"
+ HTML_ITALICS_LNBREAK);
return responseString;
}
} else {
responseString.append("Conditions:"
+ " There were no conditions provided in configBody json"
+ HTML_ITALICS_LNBREAK);
return responseString;
}
} else {
if (policyData.getTrapDatas().getTrap1() != null) {
if (policyData.getClearTimeOut() == null) {
responseString.append("Trigger Clear TimeOut: "
+ "Trigger Clear TimeOut is required when at "
+ "least One Trigger Signature is enabled
");
valid = false;
}
if (policyData.getTrapMaxAge() == null) {
responseString.append("Trap Max Age: Trap Max Age is required when at "
+ "least One Trigger Signature is enabled
");
valid = false;
}
}
if (policyData.getFaultDatas().getTrap1() != null
&& policyData.getVerificationclearTimeOut() == null) {
responseString.append(
"Fault Clear TimeOut: Fault Clear TimeOut is required when at"
+ "least One Fault Signature is enabled
");
valid = false;
}
}
ClosedLoopFaultBody faultBody = mapper.readValue(policyData.getJsonBody(),
ClosedLoopFaultBody.class);
if (faultBody.getEmailAddress() != null && !faultBody.getEmailAddress().isEmpty()) {
String result = emailValidation(faultBody.getEmailAddress(), responseString.toString());
if (!SUCCESS.equals(result)) {
responseString.append(result + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (!(faultBody.isGamma() || faultBody.isMcr() || faultBody.isTrinity() || faultBody.isvDNS()
|| faultBody.isvUSP())) {
responseString.append(SELECT_AT_LEAST_ONE_D2_VIRTUALIZED_SERVICES + HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getActions() == null || faultBody.getActions().isEmpty()) {
responseString.append(
"vPRO Actions: vPRO Actions is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getClosedLoopPolicyStatus() == null
|| faultBody.getClosedLoopPolicyStatus().isEmpty()) {
responseString.append("Policy Status: Policy Status is required"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getConditions() == null) {
responseString.append("Conditions: Select At least one Condition"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getGeoLink() != null && !faultBody.getGeoLink().isEmpty()) {
String result = PolicyUtils.policySpecialCharWithSpaceValidator(faultBody.getGeoLink());
if (!result.contains(SUCCESS)) {
responseString.append("GeoLink:" + result + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (faultBody.getAgingWindow() == 0) {
responseString.append(
"Aging Window: Aging Window is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getTimeInterval() == 0) {
responseString.append("Time Interval: Time Interval is required"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getRetrys() == 0) {
responseString.append("Number of Retries: Number of Retries is required"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getTimeOutvPRO() == 0) {
responseString.append("APP-C Timeout: APP-C Timeout is required"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getTimeOutRuby() == 0) {
responseString.append(
"TimeOutRuby: TimeOutRuby is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
if (faultBody.getVnfType() == null || faultBody.getVnfType().isEmpty()) {
responseString.append("Vnf Type: Vnf Type is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append(
"D2/Virtualized Services: Select atleast one D2/Virtualized Services"
+ HTML_ITALICS_LNBREAK);
responseString.append(
"vPRO Actions: vPRO Actions is required" + HTML_ITALICS_LNBREAK);
responseString.append(
"Aging Window: Aging Window is required" + HTML_ITALICS_LNBREAK);
responseString.append(
"Policy Status: Policy Status is required" + HTML_ITALICS_LNBREAK);
responseString.append(
"Conditions: Select Atleast one Condition" + HTML_ITALICS_LNBREAK);
responseString.append("PEP Name: PEP Name is required" + HTML_ITALICS_LNBREAK);
responseString.append("PEP Action: PEP Action is required" + HTML_ITALICS_LNBREAK);
responseString.append(
"Time Interval: Time Interval is required" + HTML_ITALICS_LNBREAK);
responseString.append("Number of Retries: Number of Retries is required"
+ HTML_ITALICS_LNBREAK);
responseString.append(
"APP-C Timeout: APP-C Timeout is required" + HTML_ITALICS_LNBREAK);
responseString.append("TimeOutRuby: TimeOutRuby is required" + HTML_ITALICS_LNBREAK);
responseString.append("Vnf Type: Vnf Type is required" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
// Validate MicroService Policy Data
if (MICROSERVICES.equals(policyData.getConfigPolicyType())) {
boolean tmpValid = validateMsModel(policyData, responseString);
if (!tmpValid) {
valid = false;
}
}
// Validate Optimization Policy Data
if (OPTIMIZATION.equals(policyData.getConfigPolicyType())) {
boolean tmpValid = validateOptimization(policyData, responseString);
if (!tmpValid) {
valid = false;
}
}
}
if ((DECISION_POLICY.equalsIgnoreCase(policyData.getPolicyType()))
|| (DECISION_POLICY_MS.equalsIgnoreCase(policyData.getPolicyType()))) {
if (!RAW.equalsIgnoreCase(policyData.getRuleProvider())) {
if (!Strings.isNullOrEmpty(policyData.getOnapName())) {
String onapNameValidate = PolicyUtils.policySpecialCharValidator(policyData.getOnapName());
if (!onapNameValidate.contains(SUCCESS)) {
responseString.append("OnapName:" + onapNameValidate + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("Onap Name: Onap Name Should not be empty" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (RAW.equalsIgnoreCase(policyData.getRuleProvider())) {
Object policy = XACMLPolicyScanner.readPolicy(new ByteArrayInputStream(StringEscapeUtils
.unescapeXml(policyData.getRawXacmlPolicy()).getBytes(StandardCharsets.UTF_8)));
if (!(policy instanceof PolicySetType || policy instanceof PolicyType)) {
responseString.append("Raw XACML: The XACML Content is not valid" + HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (DECISION_MS_MODEL.equals(policyData.getRuleProvider())) {
LOGGER.info("Validating Decision MS Policy - ");
boolean tmpValid = validateMsModel(policyData, responseString);
if (!tmpValid) {
valid = false;
}
}
if ("Rainy_Day".equals(policyData.getRuleProvider())) {
if (policyData.getRainyday() == null) {
responseString.append(" Rainy Day Parameters are Required
");
valid = false;
} else {
if (Strings.isNullOrEmpty(policyData.getRainyday().getServiceType())) {
responseString.append("Rainy Day Service Type is Required
");
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getRainyday().getVnfType())) {
responseString.append("Rainy Day VNF Type is Required
");
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getRainyday().getBbid())) {
responseString.append("Rainy Day Building Block ID is Required
");
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getRainyday().getWorkstep())) {
responseString.append("Rainy Day Work Step is Required
");
valid = false;
}
if (!policyData.getRainyday().getTreatmentTableChoices().isEmpty()
&& policyData.getRainyday().getTreatmentTableChoices() != null) {
for (Object treatmentMap : policyData.getRainyday().getTreatmentTableChoices()) {
String errorCode = null;
String treatment = null;
if (treatmentMap instanceof LinkedHashMap, ?>) {
if (((LinkedHashMap, ?>) treatmentMap).containsKey("errorcode")) {
errorCode = ((LinkedHashMap, ?>) treatmentMap).get("errorcode").toString();
}
if (((LinkedHashMap, ?>) treatmentMap).containsKey("treatment")) {
treatment = ((LinkedHashMap, ?>) treatmentMap).get("treatment").toString();
}
}
if (Strings.isNullOrEmpty(errorCode) && Strings.isNullOrEmpty(treatment)) {
responseString.append("Rainy Day Error Code and "
+ "Desired Treatment cannot be empty
");
valid = false;
break;
}
if (Strings.isNullOrEmpty(errorCode)) {
responseString.append("Rainy Day Error Code is Required "
+ "for each Desired Treatment
");
valid = false;
break;
}
if (Strings.isNullOrEmpty(treatment)) {
responseString.append("Rainy Day Desired Treatment"
+ " is Required for each Error Code
");
valid = false;
break;
}
}
} else {
responseString.append("Rainy Day Desired Automated Treatments are Required
");
valid = false;
}
}
}
if ("GUARD_YAML".equals(policyData.getRuleProvider())
|| "GUARD_BL_YAML".equals(policyData.getRuleProvider())
|| "GUARD_MIN_MAX".equals(policyData.getRuleProvider())) {
if (policyData.getYamlparams() == null) {
responseString.append(" Guard Params are Required " + HTML_ITALICS_LNBREAK);
valid = false;
} else {
if (Strings.isNullOrEmpty(policyData.getYamlparams().getActor())) {
responseString.append("Guard Params Actor is Required " + HTML_ITALICS_LNBREAK);
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getYamlparams().getRecipe())) {
responseString.append("Guard Params Recipe is Required " + HTML_ITALICS_LNBREAK);
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getYamlparams().getGuardActiveStart())) {
responseString.append("Guard Params Guard Active Start is Required "
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getYamlparams().getGuardActiveEnd())) {
responseString.append(
"Guard Params Guard Active End is Required " + HTML_ITALICS_LNBREAK);
valid = false;
}
if ("GUARD_YAML".equals(policyData.getRuleProvider())) {
if (Strings.isNullOrEmpty(policyData.getYamlparams().getLimit())) {
responseString.append(" Guard Params Limit is Required " + HTML_ITALICS_LNBREAK);
valid = false;
} else if (!PolicyUtils.isInteger(policyData.getYamlparams().getLimit())) {
responseString.append(
" Guard Params Limit Should be Integer " + HTML_ITALICS_LNBREAK);
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getYamlparams().getTimeWindow())) {
responseString.append(
"Guard Params Time Window is Required" + HTML_ITALICS_LNBREAK);
valid = false;
} else if (!PolicyUtils.isInteger(policyData.getYamlparams().getTimeWindow())) {
responseString.append(" Guard Params Time Window Should be Integer "
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getYamlparams().getTimeUnits())) {
responseString.append(
"Guard Params Time Units is Required" + HTML_ITALICS_LNBREAK);
valid = false;
}
} else if ("GUARD_MIN_MAX".equals(policyData.getRuleProvider())) {
if (Strings.isNullOrEmpty(policyData.getYamlparams().getMin())) {
responseString.append(" Guard Params Min is Required " + HTML_ITALICS_LNBREAK);
valid = false;
} else if (!PolicyUtils.isInteger(policyData.getYamlparams().getMin())) {
responseString.append(
" Guard Params Min Should be Integer " + HTML_ITALICS_LNBREAK);
valid = false;
}
if (Strings.isNullOrEmpty(policyData.getYamlparams().getMax())) {
responseString.append(" Guard Params Max is Required " + HTML_ITALICS_LNBREAK);
valid = false;
} else if (!PolicyUtils.isInteger(policyData.getYamlparams().getMax())) {
responseString.append(
" Guard Params Max Should be Integer " + HTML_ITALICS_LNBREAK);
valid = false;
}
} else if ("GUARD_BL_YAML".equals(policyData.getRuleProvider())
&& "Use Manual Entry".equals(policyData.getBlackListEntryType())) {
if (policyData.getYamlparams().getBlackList() == null
|| policyData.getYamlparams().getBlackList().isEmpty()) {
responseString.append(
" Guard Params BlackList is Required " + HTML_ITALICS_LNBREAK);
valid = false;
} else {
for (String blackList : policyData.getYamlparams().getBlackList()) {
if (blackList == null || !(SUCCESS
.equals(PolicyUtils.policySpecialCharValidator(blackList)))) {
responseString.append(" Guard Params BlackList Should be valid String"
+ HTML_ITALICS_LNBREAK);
valid = false;
break;
}
}
}
}
}
}
}
if (ACTION_POLICY.equalsIgnoreCase(policyData.getPolicyType())) {
if (!Strings.isNullOrEmpty(policyData.getActionPerformer())) {
String actionPerformer = PolicyUtils.policySpecialCharValidator(policyData.getActionPerformer());
if (!actionPerformer.contains(SUCCESS)) {
responseString.append("ActionPerformer:" + actionPerformer + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("ActionPerformer: ActionPerformer Should not be empty"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
if (!Strings.isNullOrEmpty(policyData.getActionAttributeValue())) {
String actionAttribute = PolicyUtils
.policySpecialCharValidator(policyData.getActionAttributeValue());
if (!actionAttribute.contains(SUCCESS)) {
responseString.append("ActionAttribute:" + actionAttribute + HTML_ITALICS_LNBREAK);
valid = false;
}
} else {
responseString.append("ActionAttribute: ActionAttribute Should not be empty"
+ HTML_ITALICS_LNBREAK);
valid = false;
}
}
if (CONFIG_POLICY.equals(policyData.getPolicyType())) {
String value = "";
if (valid) {
if (commonClassDao != null) {
List