2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
21 package org.onap.aaf.cadi.shiro;
23 import java.security.Principal;
24 import java.util.ArrayList;
25 import java.util.Collection;
26 import java.util.List;
28 import org.apache.shiro.authz.AuthorizationInfo;
29 import org.apache.shiro.authz.Permission;
30 import org.onap.aaf.cadi.Access;
31 import org.onap.aaf.cadi.Access.Level;
32 import org.onap.aaf.cadi.aaf.AAFPermission;
35 * We treat "roles" and "permissions" in a similar way for first pass.
37 * @author JonathanGathman
40 public class AAFAuthorizationInfo implements AuthorizationInfo {
41 private static final long serialVersionUID = -4805388954462426018L;
43 private Access access;
44 private Principal bait;
45 // Use these to save conversions
46 private List<org.onap.aaf.cadi.Permission> cPerms;
47 private List<Permission> oPerms;
48 private List<String> sPerms;
50 public AAFAuthorizationInfo(Access access, Principal bait) {
58 public Principal principal() {
63 public Collection<Permission> getObjectPermissions() {
64 access.log(Level.DEBUG, "AAFAuthorizationInfo.getObjectPermissions");
67 oPerms = new ArrayList<>();
69 cPerms = new ArrayList<>();
70 AAFRealm.singleton.authz.fishAll(bait, cPerms);
72 for(final org.onap.aaf.cadi.Permission p : cPerms) {
73 oPerms.add(new AAFShiroPermission(p));
81 public Collection<String> getRoles() {
82 access.log(Level.DEBUG,"AAFAuthorizationInfo.getRoles");
83 // Until we decide to make Roles available, tie into String based permissions.
84 return getStringPermissions();
88 public Collection<String> getStringPermissions() {
89 access.log(Level.DEBUG,"AAFAuthorizationInfo.getStringPermissions");
92 sPerms = new ArrayList<>();
94 cPerms = new ArrayList<>();
95 AAFRealm.singleton.authz.fishAll(bait,cPerms);
97 for(final org.onap.aaf.cadi.Permission p : cPerms) {
98 sPerms.add(p.getKey());