--- /dev/null
+/*******************************************************************************\r
+ * ============LICENSE_START====================================================\r
+ * * org.onap.aaf\r
+ * * ===========================================================================\r
+ * * Copyright © 2017 AT&T Intellectual Property. All rights reserved.\r
+ * * ===========================================================================\r
+ * * Licensed under the Apache License, Version 2.0 (the "License");\r
+ * * you may not use this file except in compliance with the License.\r
+ * * You may obtain a copy of the License at\r
+ * * \r
+ * * http://www.apache.org/licenses/LICENSE-2.0\r
+ * * \r
+ * * Unless required by applicable law or agreed to in writing, software\r
+ * * distributed under the License is distributed on an "AS IS" BASIS,\r
+ * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
+ * * See the License for the specific language governing permissions and\r
+ * * limitations under the License.\r
+ * * ============LICENSE_END====================================================\r
+ * *\r
+ * * ECOMP is a trademark and service mark of AT&T Intellectual Property.\r
+ * *\r
+ ******************************************************************************/\r
+package org.onap.aaf.authz.service.api;\r
+\r
+import static org.onap.aaf.authz.layer.Result.OK;\r
+import static org.onap.aaf.cssa.rserv.HttpMethods.DELETE;\r
+import static org.onap.aaf.cssa.rserv.HttpMethods.GET;\r
+import static org.onap.aaf.cssa.rserv.HttpMethods.POST;\r
+import static org.onap.aaf.cssa.rserv.HttpMethods.PUT;\r
+\r
+import java.net.URLDecoder;\r
+\r
+import javax.servlet.http.HttpServletRequest;\r
+import javax.servlet.http.HttpServletResponse;\r
+\r
+import org.onap.aaf.authz.env.AuthzTrans;\r
+import org.onap.aaf.authz.facade.AuthzFacade;\r
+import org.onap.aaf.authz.layer.Result;\r
+import org.onap.aaf.authz.service.AuthAPI;\r
+import org.onap.aaf.authz.service.Code;\r
+import org.onap.aaf.authz.service.mapper.Mapper.API;\r
+\r
+import com.att.aft.dme2.internal.jetty.http.HttpStatus;\r
+import org.onap.aaf.cadi.config.Config;\r
+\r
+public class API_Perms {\r
+ public static void timeSensitiveInit(AuthAPI authzAPI, AuthzFacade facade) throws Exception {\r
+ /** \r
+ * gets all permissions by user name\r
+ */\r
+ authzAPI.route(GET, "/authz/perms/user/:user", API.PERMS, new Code(facade,"Get Permissions by User",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.getPermsByUser(trans, resp, pathParam(req, "user"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+\r
+ });\r
+ \r
+ /** \r
+ * gets all permissions by user name\r
+ */\r
+ authzAPI.route(POST, "/authz/perms/user/:user", API.PERMS, new Code(facade,"Get Permissions by User, Query AAF Perms",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.getPermsByUserWithAAFQuery(trans, req, resp, pathParam(req, "user"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+\r
+ });\r
+\r
+\r
+ } // end timeSensitiveInit\r
+\r
+ public static void init(AuthAPI authzAPI, AuthzFacade facade) throws Exception {\r
+ /**\r
+ * Create a Permission\r
+ */\r
+ authzAPI.route(POST,"/authz/perm",API.PERM_REQ,new Code(facade,"Create a Permission",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.createPerm(trans, req, resp);\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.CREATED_201); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ });\r
+\r
+ /** \r
+ * get details of Permission\r
+ */\r
+ authzAPI.route(GET, "/authz/perms/:type/:instance/:action", API.PERMS, new Code(facade,"Get Permissions by Key",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.getPermsByName(trans, resp, \r
+ pathParam(req, "type"),\r
+ URLDecoder.decode(pathParam(req, "instance"),Config.UTF_8),\r
+ pathParam(req, "action"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+\r
+ });\r
+ \r
+ /** \r
+ * get children of Permission\r
+ */\r
+ authzAPI.route(GET, "/authz/perms/:type", API.PERMS, new Code(facade,"Get Permissions by Type",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.getPermsByType(trans, resp, pathParam(req, "type"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+\r
+ });\r
+\r
+ \r
+ /**\r
+ * gets all permissions by role name\r
+ */\r
+ authzAPI.route(GET,"/authz/perms/role/:role",API.PERMS,new Code(facade,"Get Permissions by Role",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.getPermsForRole(trans, resp, pathParam(req, "role"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ });\r
+\r
+ /**\r
+ * gets all permissions by Namespace\r
+ */\r
+ authzAPI.route(GET,"/authz/perms/ns/:ns",API.PERMS,new Code(facade,"Get PermsByNS",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.getPermsByNS(trans, resp, pathParam(req, "ns"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ });\r
+ \r
+ /**\r
+ * Set a perm's description\r
+ */\r
+ authzAPI.route(PUT,"/authz/perm",API.PERM_REQ,new Code(facade,"Set Description for Permission",true) {\r
+ @Override\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.updatePermDescription(trans, req, resp);\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ }); \r
+ \r
+ /**\r
+ * Update a permission with a rename\r
+ */\r
+ authzAPI.route(PUT,"/authz/perm/:type/:instance/:action",API.PERM_REQ,new Code(facade,"Update a Permission",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.renamePerm(trans, req, resp, pathParam(req, "type"), \r
+ pathParam(req, "instance"), pathParam(req, "action"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ }); \r
+ \r
+ /**\r
+ * Delete a Permission\r
+ */\r
+ authzAPI.route(DELETE,"/authz/perm",API.PERM_REQ,new Code(facade,"Delete a Permission",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.deletePerm(trans,req, resp);\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ });\r
+\r
+ \r
+ \r
+\r
+ /**\r
+ * Delete a Permission\r
+ */\r
+ authzAPI.route(DELETE,"/authz/perm/:name/:type/:action",API.PERM_KEY,new Code(facade,"Delete a Permission",true) {\r
+ public void handle(\r
+ AuthzTrans trans, \r
+ HttpServletRequest req,\r
+ HttpServletResponse resp) throws Exception {\r
+ \r
+ Result<Void> r = context.deletePerm(trans, resp,\r
+ pathParam(req, ":name"),\r
+ pathParam(req, ":type"),\r
+ pathParam(req, ":action"));\r
+ switch(r.status) {\r
+ case OK: \r
+ resp.setStatus(HttpStatus.OK_200); \r
+ break;\r
+ default:\r
+ context.error(trans,resp,r);\r
+ }\r
+ }\r
+ });\r
+\r
+ } // end init\r
+}\r
+\r
+\r
+\r