+++ /dev/null
-/*******************************************************************************\r
- * ============LICENSE_START====================================================\r
- * * org.onap.aaf\r
- * * ===========================================================================\r
- * * Copyright © 2017 AT&T Intellectual Property. All rights reserved.\r
- * * ===========================================================================\r
- * * Licensed under the Apache License, Version 2.0 (the "License");\r
- * * you may not use this file except in compliance with the License.\r
- * * You may obtain a copy of the License at\r
- * * \r
- * * http://www.apache.org/licenses/LICENSE-2.0\r
- * * \r
- * * Unless required by applicable law or agreed to in writing, software\r
- * * distributed under the License is distributed on an "AS IS" BASIS,\r
- * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
- * * See the License for the specific language governing permissions and\r
- * * limitations under the License.\r
- * * ============LICENSE_END====================================================\r
- * *\r
- * * ECOMP is a trademark and service mark of AT&T Intellectual Property.\r
- * *\r
- ******************************************************************************/\r
-package org.onap.aaf.authz.service.api;\r
-\r
-import static org.onap.aaf.authz.layer.Result.OK;\r
-import static org.onap.aaf.cssa.rserv.HttpMethods.DELETE;\r
-import static org.onap.aaf.cssa.rserv.HttpMethods.GET;\r
-import static org.onap.aaf.cssa.rserv.HttpMethods.POST;\r
-import static org.onap.aaf.cssa.rserv.HttpMethods.PUT;\r
-\r
-import javax.servlet.http.HttpServletRequest;\r
-import javax.servlet.http.HttpServletResponse;\r
-\r
-import org.onap.aaf.authz.env.AuthzTrans;\r
-import org.onap.aaf.authz.facade.AuthzFacade;\r
-import org.onap.aaf.authz.layer.Result;\r
-import org.onap.aaf.authz.service.AuthAPI;\r
-import org.onap.aaf.authz.service.Code;\r
-import org.onap.aaf.authz.service.mapper.Mapper.API;\r
-import org.onap.aaf.dao.aaf.cass.Status;\r
-\r
-import com.att.aft.dme2.internal.jetty.http.HttpStatus;\r
-\r
-public class API_Roles {\r
- public static void init(AuthAPI authzAPI, AuthzFacade facade) throws Exception {\r
- /**\r
- * puts a new role in Authz DB\r
- */\r
- authzAPI.route(POST,"/authz/role",API.ROLE_REQ, new Code(facade,"Create Role",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans,\r
- HttpServletRequest req, \r
- HttpServletResponse resp) throws Exception {\r
- Result<Void> r = context.createRole(trans, req, resp);\r
- \r
- switch(r.status) {\r
- case OK:\r
- resp.setStatus(HttpStatus.CREATED_201); \r
- break;\r
- case Status.ACC_Future:\r
- resp.setStatus(HttpStatus.ACCEPTED_202); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- }\r
- );\r
-\r
- /** \r
- * get Role by name\r
- */\r
- authzAPI.route(GET, "/authz/roles/:role", API.ROLES, new Code(facade,"GetRolesByFullName",true) {\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.getRolesByName(trans, resp, pathParam(req, "role"));\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
-\r
- });\r
-\r
-\r
- /** \r
- * gets all Roles by user name\r
- */\r
- authzAPI.route(GET, "/authz/roles/user/:name", API.ROLES, new Code(facade,"GetRolesByUser",true) {\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.getRolesByUser(trans, resp, pathParam(req, "name"));\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
-\r
- });\r
-\r
- /** \r
- * gets all Roles by Namespace\r
- */\r
- authzAPI.route(GET, "/authz/roles/ns/:ns", API.ROLES, new Code(facade,"GetRolesByNS",true) {\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.getRolesByNS(trans, resp, pathParam(req, "ns"));\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- });\r
-\r
- /** \r
- * gets all Roles by Name without the Namespace\r
- */\r
- authzAPI.route(GET, "/authz/roles/name/:name", API.ROLES, new Code(facade,"GetRolesByNameOnly",true) {\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- Result<Void> r = context.getRolesByNameOnly(trans, resp, pathParam(req, ":name"));\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- });\r
- \r
- /**\r
- * Deletes a Role from Authz DB by Object\r
- */\r
- authzAPI.route(DELETE,"/authz/role",API.ROLE_REQ, new Code(facade,"Delete Role",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans,\r
- HttpServletRequest req, \r
- HttpServletResponse resp) throws Exception {\r
- Result<Void> r = context.deleteRole(trans, req, resp);\r
- \r
- switch(r.status) {\r
- case OK:\r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- \r
- }\r
- );\r
- \r
-\r
- \r
- /**\r
- * Deletes a Role from Authz DB by Key\r
- */\r
- authzAPI.route(DELETE,"/authz/role/:role",API.ROLE, new Code(facade,"Delete Role",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans,\r
- HttpServletRequest req, \r
- HttpServletResponse resp) throws Exception {\r
- Result<Void> r = context.deleteRole(trans, resp, pathParam(req,":role"));\r
- \r
- switch(r.status) {\r
- case OK:\r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- \r
- }\r
- );\r
- \r
-\r
- /**\r
- * Add a Permission to a Role (Grant)\r
- */\r
- authzAPI.route(POST,"/authz/role/perm",API.ROLE_PERM_REQ, new Code(facade,"Add Permission to Role",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans,\r
- HttpServletRequest req, \r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.addPermToRole(trans, req, resp);\r
- \r
- switch(r.status) {\r
- case OK:\r
- resp.setStatus(HttpStatus.CREATED_201); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- }\r
- );\r
- \r
- /**\r
- * Get all Roles by Permission\r
- */\r
- authzAPI.route(GET,"/authz/roles/perm/:type/:instance/:action",API.ROLES,new Code(facade,"GetRolesByPerm",true) {\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.getRolesByPerm(trans, resp, \r
- pathParam(req, "type"),\r
- pathParam(req, "instance"),\r
- pathParam(req, "action"));\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- });\r
- \r
- /**\r
- * Set a role's description\r
- */\r
- authzAPI.route(PUT,"/authz/role",API.ROLE_REQ,new Code(facade,"Set Description for role",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.updateRoleDescription(trans, req, resp);\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- }); \r
- \r
- /**\r
- * Set a permission's roles to roles given\r
- */\r
- authzAPI.route(PUT,"/authz/role/perm",API.ROLE_PERM_REQ,new Code(facade,"Set a Permission's Roles",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans, \r
- HttpServletRequest req,\r
- HttpServletResponse resp) throws Exception {\r
- \r
- Result<Void> r = context.resetPermRoles(trans, req, resp);\r
- switch(r.status) {\r
- case OK: \r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- }); \r
- \r
- /**\r
- * Delete a Permission from a Role\r
- */\r
- authzAPI.route(DELETE,"/authz/role/:role/perm",API.ROLE_PERM_REQ, new Code(facade,"Delete Permission from Role",true) {\r
- @Override\r
- public void handle(\r
- AuthzTrans trans,\r
- HttpServletRequest req, \r
- HttpServletResponse resp) throws Exception {\r
- Result<Void> r = context.delPermFromRole(trans, req, resp);\r
- \r
- switch(r.status) {\r
- case OK:\r
- resp.setStatus(HttpStatus.OK_200); \r
- break;\r
- default:\r
- context.error(trans,resp,r);\r
- }\r
- }\r
- \r
- }\r
- );\r
-\r
- }\r
-}\r