X-Git-Url: https://gerrit.onap.org/r/gitweb?p=aaf%2Fauthz.git;a=blobdiff_plain;f=auth%2Fauth-service%2Fsrc%2Fmain%2Fjava%2Forg%2Fonap%2Faaf%2Fauth%2Fservice%2Fapi%2FAPI_UserRole.java;h=a56b7c26e4d6843d5eeff47b36d11e6b77db5042;hp=7937a184cb054c79a44b1818162ebd32bd408f9d;hb=ff1417ff60baee231a28272f9a16ef2c9c8ea0a2;hpb=a47bd51641efcb84e19d68a6383f0947df826636

diff --git a/auth/auth-service/src/main/java/org/onap/aaf/auth/service/api/API_UserRole.java b/auth/auth-service/src/main/java/org/onap/aaf/auth/service/api/API_UserRole.java
index 7937a184..a56b7c26 100644
--- a/auth/auth-service/src/main/java/org/onap/aaf/auth/service/api/API_UserRole.java
+++ b/auth/auth-service/src/main/java/org/onap/aaf/auth/service/api/API_UserRole.java
@@ -104,21 +104,17 @@ public class API_UserRole {
             }
         });
 
-        
+    /* TODO
+     * REMOVE dangerous resetUsersForRole and resetRolesForUser APIs
+     */
+        final Result<Object> removeAPI = Result.err(Result.ERR_NotFound,"API Removed, use /authz/userRole instead.");
         /**
          * Update roles attached to user in path
          */
         authzAPI.route(PUT,"/authz/userRole/user",API.USER_ROLE_REQ,new Code(facade,"Update Roles for a user", true) {
             @Override
             public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
-                Result<Void> r = context.resetRolesForUser(trans, resp, req);
-                switch(r.status) {
-                    case OK:
-                        resp.setStatus(HttpStatus.OK_200); 
-                        break;
-                    default:
-                        context.error(trans,resp,r);
-                }
+            	context.error(trans,resp,removeAPI);
             }
         });
         
@@ -129,16 +125,14 @@ public class API_UserRole {
         authzAPI.route(PUT,"/authz/userRole/role",API.USER_ROLE_REQ,new Code(facade,"Update Users for a role", true) {
             @Override
             public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
-                Result<Void> r = context.resetUsersForRole(trans, resp, req);
-                switch(r.status) {
-                    case OK:
-                        resp.setStatus(HttpStatus.OK_200); 
-                        break;
-                    default:
-                        context.error(trans,resp,r);
-                }
+            	context.error(trans,resp,removeAPI);
             }
         });
+
+    /*
+     * END REMOVE Dangerous API
+     */
+        
         
         /**
          * Extend Expiration Date (according to Organizational rules)