X-Git-Url: https://gerrit.onap.org/r/gitweb?a=blobdiff_plain;f=src%2Fmain%2Fjava%2Forg%2Fonap%2Fdmaap%2Fdbcapi%2Faaf%2FAafService.java;h=30efbf2ec39365333fba69a8c44e630c44a64e43;hb=bf91de122a24dbfc9a0158556e290df21472240b;hp=727ec19e9764f1f40eeebf2be07f3040e0c0f5fb;hpb=a05efb7b7b3cfc77f5e3fda11e8434834829f56a;p=dmaap%2Fdbcapi.git diff --git a/src/main/java/org/onap/dmaap/dbcapi/aaf/AafService.java b/src/main/java/org/onap/dmaap/dbcapi/aaf/AafService.java index 727ec19..30efbf2 100644 --- a/src/main/java/org/onap/dmaap/dbcapi/aaf/AafService.java +++ b/src/main/java/org/onap/dmaap/dbcapi/aaf/AafService.java @@ -7,9 +7,9 @@ * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at - * + * * http://www.apache.org/licenses/LICENSE-2.0 - * + * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. @@ -20,161 +20,27 @@ package org.onap.dmaap.dbcapi.aaf; -import java.io.IOException; - -import org.apache.log4j.Logger; -import org.onap.dmaap.dbcapi.logging.BaseLoggingClass; -import org.onap.dmaap.dbcapi.logging.DmaapbcLogMessageEnum; -import org.onap.dmaap.dbcapi.util.DmaapConfig; +/* + * this service uses the AAF REST API endpoints to provision values in AAF + */ +public interface AafService { + enum ServiceType { + AAF_Admin, + AAF_TopicMgr + } -public class AafService extends BaseLoggingClass { - public enum ServiceType { - AAF_Admin, - AAF_TopicMgr - } - - private AafConnection aaf; - private ServiceType ctype; - private String aafURL ; - - private String getCred( boolean wPwd ) { - String mechIdProperty = null; - String pwdProperty = null; - DmaapConfig p = (DmaapConfig)DmaapConfig.getConfig(); - AafDecrypt decryptor = new AafDecrypt(); + String getIdentity(); - if ( ctype == ServiceType.AAF_Admin ) { - mechIdProperty = "aaf.AdminUser"; - pwdProperty = "aaf.AdminPassword"; - } else if ( ctype == ServiceType.AAF_TopicMgr ){ - mechIdProperty = "aaf.TopicMgrUser"; - pwdProperty = "aaf.TopicMgrPassword"; - } else { - logger.error( "Unexpected case for AAF credential type: " + ctype ); - return null; - } - String user = p.getProperty( mechIdProperty, "noMechId@domain.netset.com" ); - //String dClass = p.getProperty( "AafDecryption.Class", "org.openecomp.dmaapbc.aaf.ClearDecrypt"); - String pwd = ""; - String encPwd = p.getProperty( pwdProperty, "notSet" ); - //DecryptionInterface dec = null; - //try { - // dec = (DecryptionInterface) (Class.forName(dClass).newInstance()); - // dec.init( p.getProperty("CredentialCodecKeyfile", "LocalKey")); - //} catch (Exception ee ) { - // errorLogger.error(DmaapbcLogMessageEnum.UNEXPECTED_CONDITION, "attempting to use " + dClass + " to decrypt " + encPwd ); - //} - //try { - // pwd = dec.decrypt( encPwd ); - //} catch( IOException io ) { - // errorLogger.error(DmaapbcLogMessageEnum.DECRYPT_IO_ERROR, dClass, encPwd ); - //} - - pwd = decryptor.decrypt(encPwd); - - if ( wPwd ) { - return user + ":" + pwd; - } else { - return user; - } - - - } - - public AafService(ServiceType t ) { - DmaapConfig p = (DmaapConfig)DmaapConfig.getConfig(); - aafURL = p.getProperty( "aaf.URL", "https://authentication.domain.netset.com:8095/proxy/"); - initAafService( t ); - } - public AafService( ServiceType t, String url ) { - aafURL = url; - initAafService( t ); - } - - private void initAafService( ServiceType t ) { - ctype = t; - aaf = new AafConnection( getCred( true ) ); - } - - public int addPerm(DmaapPerm perm) { + int addPerm(DmaapPerm perm); - int rc = -1; - logger.info( "entry: addPerm() " ); - String pURL = aafURL + "authz/perm"; - rc = aaf.postAaf( perm, pURL ); - switch( rc ) { - case 401: - case 403: - errorLogger.error(DmaapbcLogMessageEnum.AAF_CREDENTIAL_ERROR, getCred( false ) ); - System.exit(1); - case 409: - logger.warn( "Perm already exists. Possible conflict."); - break; - - case 201: - logger.info( "expected response" ); - break; - default : - logger.error( "Unexpected response: " + rc ); - break; - } - - return rc; - } - public int addGrant(DmaapGrant grant ) { + int addGrant(DmaapGrant grant); - int rc = -1; - logger.info( "entry: addGrant() " ); + int addUserRole(AafUserRole ur); - String pURL = aafURL + "authz/role/perm"; - rc = aaf.postAaf( grant, pURL ); - switch( rc ) { - case 401: - case 403: - errorLogger.error(DmaapbcLogMessageEnum.AAF_CREDENTIAL_ERROR, getCred( false ) ); - System.exit(1); - break; + int delGrant(DmaapGrant grant); - case 409: - logger.warn( "Perm already exists. Possible conflict."); - break; - - case 201: - logger.info( "expected response" ); - break; - default : - logger.error( "Unexpected response: " + rc ); - break; - } - - return rc; - } + int addRole(AafRole role); - public int delGrant( DmaapGrant grant ) { - int rc = -1; - logger.info( "entry: delGrant() " ); - String pURL = aafURL + "authz/role/:" + grant.getRole() + "/perm"; - rc = aaf.delAaf( grant, pURL ); - switch( rc ) { - case 401: - case 403: - errorLogger.error(DmaapbcLogMessageEnum.AAF_CREDENTIAL_ERROR, getCred( false ) ); - System.exit(1); - break; - - case 404: - logger.warn( "Perm not found...ignore"); - break; - - case 200: - logger.info( "expected response" ); - break; - default : - logger.error( "Unexpected response: " + rc ); - break; - } - - return rc; - } + int addNamespace(AafNamespace ns); }