2 * ============LICENSE_START==========================================
4 * ===================================================================
5 * Copyright © 2017 AT&T Intellectual Property. All rights reserved.
6 * ===================================================================
8 * Unless otherwise specified, all software contained herein is licensed
9 * under the Apache License, Version 2.0 (the “License”);
10 * you may not use this software except in compliance with the License.
11 * You may obtain a copy of the License at
13 * http://www.apache.org/licenses/LICENSE-2.0
15 * Unless required by applicable law or agreed to in writing, software
16 * distributed under the License is distributed on an "AS IS" BASIS,
17 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
18 * See the License for the specific language governing permissions and
19 * limitations under the License.
21 * Unless otherwise specified, all documentation contained herein is licensed
22 * under the Creative Commons License, Attribution 4.0 Intl. (the “License”);
23 * you may not use this documentation except in compliance with the License.
24 * You may obtain a copy of the License at
26 * https://creativecommons.org/licenses/by/4.0/
28 * Unless required by applicable law or agreed to in writing, documentation
29 * distributed under the License is distributed on an "AS IS" BASIS,
30 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
31 * See the License for the specific language governing permissions and
32 * limitations under the License.
34 * ============LICENSE_END============================================
36 * ECOMP is a trademark and service mark of AT&T Intellectual Property.
38 package org.openecomp.portalapp.portal.controller;
40 import java.util.List;
42 import javax.servlet.http.HttpServletRequest;
43 import javax.servlet.http.HttpServletResponse;
45 import org.openecomp.portalapp.controller.EPRestrictedBaseController;
46 import org.openecomp.portalapp.portal.domain.EPRole;
47 import org.openecomp.portalapp.portal.domain.EPUser;
48 import org.openecomp.portalapp.portal.logging.aop.EPAuditLog;
49 import org.openecomp.portalapp.portal.service.AdminRolesService;
50 import org.openecomp.portalapp.portal.service.PortalAdminService;
51 import org.openecomp.portalapp.portal.transport.FieldsValidator;
52 import org.openecomp.portalapp.portal.transport.PortalAdmin;
53 import org.openecomp.portalapp.portal.utils.EcompPortalUtils;
54 import org.openecomp.portalapp.util.EPUserUtils;
55 import org.openecomp.portalsdk.core.logging.logic.EELFLoggerDelegate;
56 import org.springframework.beans.factory.annotation.Autowired;
57 import org.springframework.context.annotation.EnableAspectJAutoProxy;
58 import org.springframework.web.bind.annotation.PathVariable;
59 import org.springframework.web.bind.annotation.RequestBody;
60 import org.springframework.web.bind.annotation.RequestMapping;
61 import org.springframework.web.bind.annotation.RequestMethod;
62 import org.springframework.web.bind.annotation.RestController;
65 @org.springframework.context.annotation.Configuration
66 @EnableAspectJAutoProxy
68 public class PortalAdminController extends EPRestrictedBaseController {
70 PortalAdminService portalAdminService;
72 AdminRolesService adminRolesService;
74 EELFLoggerDelegate logger = EELFLoggerDelegate.getLogger(PortalAdminController.class);
76 @RequestMapping(value = { "/portalApi/portalAdmins" }, method = RequestMethod.GET, produces = "application/json")
77 public List<PortalAdmin> getPortalAdmins(HttpServletRequest request, HttpServletResponse response) {
78 EPUser user = EPUserUtils.getUserSession(request);
79 List<PortalAdmin> portalAdmins = null;
81 logger.debug(EELFLoggerDelegate.debugLogger, "PortalAdminController.getPortalAdmins, null user");
82 EcompPortalUtils.setBadPermissions(user, response, "getPortalAdmins");
83 } else if (!adminRolesService.isSuperAdmin(user)) {
84 logger.debug(EELFLoggerDelegate.debugLogger, "PortalAdminController.getPortalAdmins, bad permissions");
85 EcompPortalUtils.setBadPermissions(user, response, "createPortalAdmin");
87 // return the list of portal admins
88 portalAdmins = portalAdminService.getPortalAdmins();
89 logger.debug(EELFLoggerDelegate.debugLogger, "portalAdmins: called getPortalAdmins()");
90 EcompPortalUtils.logAndSerializeObject("/portalApi/getPortalAdmins", "result =", portalAdmins);
97 * RESTful service method to create a new portal admin. Requirement: you
98 * must be the Ecomp portal super admin user.
101 @RequestMapping(value = { "/portalApi/portalAdmin" }, method = RequestMethod.POST)
102 public FieldsValidator createPortalAdmin(HttpServletRequest request, @RequestBody String userid,
103 HttpServletResponse response) {
104 EPUser user = EPUserUtils.getUserSession(request);
105 FieldsValidator fieldsValidator = null;
107 logger.debug(EELFLoggerDelegate.debugLogger, "PortalAdminController.createPortalAdmin, null user");
108 EcompPortalUtils.setBadPermissions(user, response, "createPortalAdmin");
109 } else if (!adminRolesService.isSuperAdmin(user)) {
110 logger.debug(EELFLoggerDelegate.debugLogger, "PortalAdminController.createPortalAdmin bad permissions");
111 EcompPortalUtils.setBadPermissions(user, response, "createPortalAdmin");
113 fieldsValidator = portalAdminService.createPortalAdmin(userid);
114 response.setStatus(fieldsValidator.httpStatusCode.intValue());
116 EcompPortalUtils.logAndSerializeObject("/portalAdmin", "POST result =", response.getStatus());
118 return fieldsValidator;
121 @RequestMapping(value = { "/portalApi/portalAdmin/{orgUserId}" }, method = RequestMethod.DELETE)
122 public FieldsValidator deletePortalAdmin(HttpServletRequest request, @PathVariable("orgUserId") Long orgUserId,
123 HttpServletResponse response) {
124 EPUser user = EPUserUtils.getUserSession(request);
125 FieldsValidator fieldsValidator = null;
126 if (!adminRolesService.isSuperAdmin(user)) {
127 EcompPortalUtils.setBadPermissions(user, response, "deletePortalAdmin");
129 fieldsValidator = portalAdminService.deletePortalAdmin(orgUserId);
130 response.setStatus(fieldsValidator.httpStatusCode.intValue());
132 EcompPortalUtils.logAndSerializeObject("/portalAdmin", "DELETE result =", response.getStatus());
134 return fieldsValidator;
137 @RequestMapping(value = { "/portalApi/adminAppsRoles/{appId}" }, method = RequestMethod.GET, produces = "application/json")
138 public List<EPRole> getRolesByApp(HttpServletRequest request, @PathVariable("appId") Long appId,
139 HttpServletResponse response) {
140 EPUser user = EPUserUtils.getUserSession(request);
141 List<EPRole> rolesByApp = null;
145 EcompPortalUtils.setBadPermissions(user, response, "getUserApps");
147 rolesByApp = adminRolesService.getRolesByApp(user, appId);
149 } catch (Exception e) {
150 logger.error(EELFLoggerDelegate.errorLogger, "getRolesByApp failed", e);