/**
 * ============LICENSE_START====================================================
 * org.onap.aaf
 * ===========================================================================
 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
 * ===========================================================================
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 * ============LICENSE_END====================================================
 *
 */

package org.onap.aaf.auth.dao.hl;

import org.onap.aaf.auth.dao.cass.NsSplit;
import org.onap.aaf.auth.dao.cass.NsDAO.Data;
import org.onap.aaf.auth.env.AuthzTrans;
import org.onap.aaf.auth.layer.Result;
import org.onap.aaf.auth.org.Executor;

public class CassExecutor implements Executor {

    private Question q;
    private Function f;
    private AuthzTrans trans;

    public CassExecutor(AuthzTrans trans, Function f) {
        this.trans = trans;
        this.f = f;
        this.q = this.f.q;
    }

    @Override
    public boolean hasPermission(String user, String ns, String type, String instance, String action) {
        return isGranted(user, ns, type, instance, action);
    }

    @Override
    public boolean inRole(String name) {
        Result<NsSplit> nss = q.deriveNsSplit(trans, name);
        if (nss.notOK())return false;
        return q.roleDAO().read(trans, nss.value.ns,nss.value.name).isOKhasData();
    }

    public boolean isGranted(String user, String ns, String type, String instance, String action) {
        return q.isGranted(trans, user, ns, type, instance,action);
    }

    @Override
    public String namespace() throws Exception {
        Result<Data> res = q.validNSOfDomain(trans,trans.user());
        if (res.isOK()) {
            String user[] = trans.user().split("\\.");
            return user[user.length-1] + '.' + user[user.length-2];
        }
        throw new Exception(res.status + ' ' + res.details);
    }

    @Override
    public String id() {
        return trans.user();
    }

}