/*******************************************************************************
 * ============LICENSE_START====================================================
 * * org.onap.aaf
 * * ===========================================================================
 * * Copyright © 2017 AT&T Intellectual Property. All rights reserved.
 * * ===========================================================================
 * * Licensed under the Apache License, Version 2.0 (the "License");
 * * you may not use this file except in compliance with the License.
 * * You may obtain a copy of the License at
 * * 
 *  *      http://www.apache.org/licenses/LICENSE-2.0
 * * 
 *  * Unless required by applicable law or agreed to in writing, software
 * * distributed under the License is distributed on an "AS IS" BASIS,
 * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * * See the License for the specific language governing permissions and
 * * limitations under the License.
 * * ============LICENSE_END====================================================
 * *
 * * ECOMP is a trademark and service mark of AT&T Intellectual Property.
 * *
 ******************************************************************************/
package org.onap.aaf.dao.aaf.hl;

import org.onap.aaf.authz.env.AuthzTrans;
import org.onap.aaf.authz.layer.Result;
import org.onap.aaf.authz.org.Executor;
import org.onap.aaf.dao.aaf.cass.NsSplit;
import org.onap.aaf.dao.aaf.cass.NsDAO.Data;

public class CassExecutor implements Executor {

	private Question q;
	private Function f;
	private AuthzTrans trans;

	public CassExecutor(AuthzTrans trans, Function f) {
		this.trans = trans;
		this.f = f;
		this.q = this.f.q;
	}

	@Override
	public boolean hasPermission(String user, String ns, String type, String instance, String action) {
		return isGranted(user, ns, type, instance, action);
	}

	@Override
	public boolean inRole(String name) {
		Result<NsSplit> nss = q.deriveNsSplit(trans, name);
		if(nss.notOK())return false;
		return q.roleDAO.read(trans, nss.value.ns,nss.value.name).isOKhasData();
	}

	public boolean isGranted(String user, String ns, String type, String instance, String action) {
		return q.isGranted(trans, user, ns, type, instance,action);
	}

	@Override
	public String namespace() throws Exception {
		Result<Data> res = q.validNSOfDomain(trans,trans.user());
		if(res.isOK()) {
			String user[] = trans.user().split("\\.");
			return user[user.length-1] + '.' + user[user.length-2];
		}
		throw new Exception(res.status + ' ' + res.details);
	}

	@Override
	public String id() {
		return trans.user();
	}

}