/******************************************************************************* * ============LICENSE_START==================================================== * * org.onap.aaf * * =========================================================================== * * Copyright © 2017 AT&T Intellectual Property. All rights reserved. * * =========================================================================== * * Licensed under the Apache License, Version 2.0 (the "License"); * * you may not use this file except in compliance with the License. * * You may obtain a copy of the License at * * * * http://www.apache.org/licenses/LICENSE-2.0 * * * * Unless required by applicable law or agreed to in writing, software * * distributed under the License is distributed on an "AS IS" BASIS, * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * * See the License for the specific language governing permissions and * * limitations under the License. * * ============LICENSE_END==================================================== * * * * ECOMP is a trademark and service mark of AT&T Intellectual Property. * * ******************************************************************************/ package org.onap.aaf.dao.aaf.cached; import java.util.ArrayList; import java.util.List; import org.onap.aaf.authz.env.AuthzTrans; import org.onap.aaf.authz.layer.Result; import org.onap.aaf.dao.CIDAO; import org.onap.aaf.dao.CachedDAO; import org.onap.aaf.dao.aaf.cass.Status; import org.onap.aaf.dao.aaf.cass.UserRoleDAO; import org.onap.aaf.dao.aaf.cass.UserRoleDAO.Data; import org.onap.aaf.inno.env.Slot; public class CachedUserRoleDAO extends CachedDAO { private Slot transURSlot; public CachedUserRoleDAO(UserRoleDAO dao, CIDAO info) { super(dao, info, UserRoleDAO.CACHE_SEG); transURSlot = dao.transURSlot; } /** * Special Case. * User Roles by User are very likely to be called many times in a Transaction, to validate "May User do..." * Pull result, and make accessible by the Trans, which is always keyed by User. * @param trans * @param user * @return */ public Result> readByUser(AuthzTrans trans, final String user) { DAOGetter getter = new DAOGetter(trans,dao()) { public Result> call() { // If the call is for THIS user, and it exists, get from TRANS, add to TRANS if not. if(user!=null && user.equals(trans.user())) { Result> transLD = trans.get(transURSlot,null); if(transLD==null ) { transLD = dao.readByUser(trans, user); } return transLD; } else { return dao.readByUser(trans, user); } } }; Result> lurd = get(trans, user, getter); if(lurd.isOK() && lurd.isEmpty()) { return Result.err(Status.ERR_UserRoleNotFound,"UserRole not found for [%s]",user); } return lurd; } public Result> readByRole(AuthzTrans trans, final String role) { DAOGetter getter = new DAOGetter(trans,dao()) { public Result> call() { return dao.readByRole(trans, role); } }; Result> lurd = get(trans, role, getter); if(lurd.isOK() && lurd.isEmpty()) { return Result.err(Status.ERR_UserRoleNotFound,"UserRole not found for [%s]",role); } return lurd; } public Result> readUserInRole(final AuthzTrans trans, final String user, final String role) { DAOGetter getter = new DAOGetter(trans,dao()) { public Result> call() { if(user.equals(trans.user())) { Result> rrbu = readByUser(trans, user); if(rrbu.isOK()) { List ld = new ArrayList(1); for(Data d : rrbu.value) { if(d.role.equals(role)) { ld.add(d); break; } } return Result.ok(ld).emptyList(ld.isEmpty()); } else { return rrbu; } } return dao.readByUserRole(trans, user, role); } }; Result> lurd = get(trans, keyFromObjs(user,role), getter); if(lurd.isOK() && lurd.isEmpty()) { return Result.err(Status.ERR_UserRoleNotFound,"UserRole not found for role [%s] and user [%s]",role,user); } return lurd; } }