auth/auth-service/src/main/java/org/onap/aaf/auth/service/api/API_UserRole.java

   1 /**
   2  * ============LICENSE_START====================================================
   3  * org.onap.aaf
   4  * ===========================================================================
   5  * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
   6  * ===========================================================================
   7  * Licensed under the Apache License, Version 2.0 (the "License");
   8  * you may not use this file except in compliance with the License.
   9  * You may obtain a copy of the License at
  10  *
  11  *      http://www.apache.org/licenses/LICENSE-2.0
  12  *
  13  * Unless required by applicable law or agreed to in writing, software
  14  * distributed under the License is distributed on an "AS IS" BASIS,
  15  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  16  * See the License for the specific language governing permissions and
  17  * limitations under the License.
  18  * ============LICENSE_END====================================================
  19  *
  20  */
  21
  22 package org.onap.aaf.auth.service.api;
  23
  24 import static org.onap.aaf.auth.layer.Result.OK;
  25 import static org.onap.aaf.auth.rserv.HttpMethods.DELETE;
  26 import static org.onap.aaf.auth.rserv.HttpMethods.GET;
  27 import static org.onap.aaf.auth.rserv.HttpMethods.POST;
  28 import static org.onap.aaf.auth.rserv.HttpMethods.PUT;
  29
  30 import javax.servlet.http.HttpServletRequest;
  31 import javax.servlet.http.HttpServletResponse;
  32
  33 import org.eclipse.jetty.http.HttpStatus;
  34 import org.onap.aaf.auth.env.AuthzTrans;
  35 import org.onap.aaf.auth.layer.Result;
  36 import org.onap.aaf.auth.service.AAF_Service;
  37 import org.onap.aaf.auth.service.Code;
  38 import org.onap.aaf.auth.service.facade.AuthzFacade;
  39 import org.onap.aaf.auth.service.mapper.Mapper.API;
  40
  41 /**
  42  * User Role APIs
  43  * @author Jonathan
  44  *
  45  */
  46 public class API_UserRole {
  47         /**
  48          * Normal Init level APIs
  49          *
  50          * @param authzAPI
  51          * @param facade
  52          * @throws Exception
  53          */
  54         public static void init(final AAF_Service authzAPI, AuthzFacade facade) throws Exception {
  55                 /**
  56                  * Request User Role Access
  57                  */
  58                 authzAPI.route(POST,"/authz/userRole",API.USER_ROLE_REQ,new Code(facade,"Request User Role Access", true) {
  59                         @Override
  60                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
  61                                 Result<Void> r = context.requestUserRole(trans, req, resp);
  62                                 switch(r.status) {
  63                                         case OK:
  64                                                 resp.setStatus(HttpStatus.CREATED_201);
  65                                                 break;
  66                                         default:
  67                                                 context.error(trans,resp,r);
  68                                 }
  69                         }
  70                 });
  71
  72
  73                 /**
  74                  * Get UserRoles by Role
  75                  */
  76                 authzAPI.route(GET,"/authz/userRoles/role/:role",API.USER_ROLES,new Code(facade,"Get UserRoles by Role", true) {
  77                         @Override
  78                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
  79                                 Result<Void> r = context.getUserRolesByRole(trans, resp, pathParam(req,":role"));
  80                                 switch(r.status) {
  81                                         case OK:
  82                                                 resp.setStatus(HttpStatus.OK_200);
  83                                                 break;
  84                                         default:
  85                                                 context.error(trans,resp,r);
  86                                 }
  87                         }
  88                 });
  89
  90                 /**
  91                  * Get UserRoles by User
  92                  */
  93                 authzAPI.route(GET,"/authz/userRoles/user/:user",API.USER_ROLES,new Code(facade,"Get UserRoles by User", true) {
  94                         @Override
  95                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
  96                                 Result<Void> r = context.getUserRolesByUser(trans, resp, pathParam(req,":user"));
  97                                 switch(r.status) {
  98                                         case OK:
  99                                                 resp.setStatus(HttpStatus.OK_200);
 100                                                 break;
 101                                         default:
 102                                                 context.error(trans,resp,r);
 103                                 }
 104                         }
 105                 });
 106
 107
 108                 /**
 109                  * Update roles attached to user in path
 110                  */
 111                 authzAPI.route(PUT,"/authz/userRole/user",API.USER_ROLE_REQ,new Code(facade,"Update Roles for a user", true) {
 112                         @Override
 113                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
 114                                 Result<Void> r = context.resetRolesForUser(trans, resp, req);
 115                                 switch(r.status) {
 116                                         case OK:
 117                                                 resp.setStatus(HttpStatus.OK_200);
 118                                                 break;
 119                                         default:
 120                                                 context.error(trans,resp,r);
 121                                 }
 122                         }
 123                 });
 124
 125
 126                 /**
 127                  * Update users attached to role in path
 128                  */
 129                 authzAPI.route(PUT,"/authz/userRole/role",API.USER_ROLE_REQ,new Code(facade,"Update Users for a role", true) {
 130                         @Override
 131                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
 132                                 Result<Void> r = context.resetUsersForRole(trans, resp, req);
 133                                 switch(r.status) {
 134                                         case OK:
 135                                                 resp.setStatus(HttpStatus.OK_200);
 136                                                 break;
 137                                         default:
 138                                                 context.error(trans,resp,r);
 139                                 }
 140                         }
 141                 });
 142
 143                 /**
 144                  * Extend Expiration Date (according to Organizational rules)
 145                  */
 146                 authzAPI.route(PUT, "/authz/userRole/extend/:user/:role", API.VOID, new Code(facade,"Extend Expiration", true) {
 147                         @Override
 148                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
 149                                 Result<Void> r = context.extendUserRoleExpiration(trans,resp,pathParam(req,":user"),pathParam(req,":role"));
 150                                 switch(r.status) {
 151                                 case OK:
 152                                         resp.setStatus(HttpStatus.OK_200);
 153                                         break;
 154                                 default:
 155                                         context.error(trans,resp,r);
 156                         }
 157
 158                         }
 159
 160                 });
 161
 162
 163                 /**
 164                  * Create a new ID/Credential
 165                  */
 166                 authzAPI.route(DELETE,"/authz/userRole/:user/:role",API.VOID,new Code(facade,"Delete User Role", true) {
 167                         @Override
 168                         public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
 169                                 Result<Void> r = context.deleteUserRole(trans, resp, pathParam(req,":user"),pathParam(req,":role"));
 170                                 switch(r.status) {
 171                                         case OK:
 172                                                 resp.setStatus(HttpStatus.OK_200);
 173                                                 break;
 174                                         default:
 175                                                 context.error(trans,resp,r);
 176                                 }
 177                         }
 178                 });
 179
 180         }
 181 }