2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
22 package org.onap.aaf.auth.batch.actions;
24 import java.io.IOException;
25 import java.util.List;
27 import org.onap.aaf.auth.batch.helpers.Perm;
28 import org.onap.aaf.auth.batch.helpers.Role;
29 import org.onap.aaf.auth.dao.cass.PermDAO;
30 import org.onap.aaf.auth.dao.cass.RoleDAO;
31 import org.onap.aaf.auth.dao.cass.Status;
32 import org.onap.aaf.auth.dao.cass.PermDAO.Data;
33 import org.onap.aaf.auth.env.AuthzTrans;
34 import org.onap.aaf.auth.layer.Result;
35 import org.onap.aaf.misc.env.APIException;
37 import com.datastax.driver.core.Cluster;
39 public class PermModify extends ActionDAO<Perm,PermDAO.Data,PermModify.Modify> {
40 public PermModify(AuthzTrans trans, Cluster cluster, boolean dryRun) throws APIException, IOException {
41 super(trans, cluster,dryRun);
44 public PermModify(AuthzTrans trans, ActionDAO<?,?,?> adao) {
49 public Result<PermDAO.Data> exec(AuthzTrans trans, final Perm p, final Modify modify) {
50 Result<List<PermDAO.Data>> rr = q.permDAO.read(trans, p.ns,p.type,p.instance,p.action);
52 if (rr.isOKhasData()) {
53 return Result.ok(rr.value.get(0));
55 return Result.err(Result.ERR_NotFound, "Data not Found " + p.toString());
58 Result<PermDAO.Data> rv = null;
59 if (rr.isOKhasData()) {
60 for (final Data d : rr.value) {
62 if (d.ns.equals(p.ns) && d.type.equals(p.type) && d.instance.equals(p.instance) && d.action.equals(p.action)) {
64 // In either case, adjust Permissions
65 for (String r : d.roles) {
66 if (!p.roles.contains(r)) {
67 q.permDAO.dao().addRole(trans, d, r);
70 for (String r : p.roles) {
71 if (!d.roles.contains(r)) {
72 q.permDAO.dao().delRole(trans, d, r);
77 for (String r : d.roles) {
78 Role role = Role.keys.get(r);
79 if (role.rdd.perms.contains(p.encode())) {
80 modify.roleModify().exec(trans, role, new RoleModify.Modify() {
82 public PermModify permModify() {
83 return PermModify.this;
87 public void change(RoleDAO.Data rdd) {
88 rdd.perms.remove(p.encode());
89 rdd.perms.add(d.encode());
95 rv = q.permDAO.create(trans, d);
97 PermDAO.Data pdd = new PermDAO.Data();
100 pdd.instance = p.instance;
101 pdd.action = p.action;
102 q.permDAO.delete(trans, pdd, false);
103 trans.info().printf("Updated %s|%s|%s|%s to %s|%s|%s|%s\n",
104 p.ns, p.type, p.instance, p.action,
105 d.ns, d.type, d.instance, d.action);
107 trans.info().log(rv.errorString());
116 rv = Result.err(Status.ERR_General,"Never get to this code");
123 public static interface Modify {
124 void change(PermDAO.Data ur);
125 RoleModify roleModify();
128 public Result<Void> delete(AuthzTrans trans, Perm p) {
132 PermDAO.Data data = new PermDAO.Data();
135 data.instance = p.instance;
136 data.action = p.action;
137 return q.permDAO.delete(trans,data,false);
Code Review / aaf / authz.git / blob