org.opendatakit.api.users.RoleService.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.opendatakit.api.users.RoleService.java

Introduction

Here is the source code for org.opendatakit.api.users.RoleService.java

Source

/* Licensed under the Apache License, Version 2.0 (the "License"); you may not
 * use this file except in compliance with the License. You may obtain a copy of
 * the License at
 * 
 * http://www.apache.org/licenses/LICENSE-2.0
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations under
 * the License.
 */
package org.opendatakit.api.users;

import java.io.IOException;
import java.util.ArrayList;
import java.util.Collection;
import java.util.List;
import java.util.Set;

import javax.servlet.ServletContext;
import javax.servlet.http.HttpServletRequest;
import javax.ws.rs.GET;
import javax.ws.rs.Path;
import javax.ws.rs.Produces;
import javax.ws.rs.core.Context;
import javax.ws.rs.core.HttpHeaders;
import javax.ws.rs.core.MediaType;
import javax.ws.rs.core.Response;

import org.opendatakit.aggregate.odktables.rest.ApiConstants;
import org.opendatakit.api.users.entity.RoleDescription;
import org.opendatakit.api.users.entity.UserEntity;
import org.opendatakit.constants.BasicConsts;
import org.opendatakit.context.CallingContext;
import org.opendatakit.persistence.client.exception.DatastoreFailureException;
import org.opendatakit.security.common.GrantedAuthorityName;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.access.hierarchicalroles.RoleHierarchy;
import org.springframework.security.core.GrantedAuthority;

import com.fasterxml.jackson.databind.ObjectMapper;

import io.swagger.annotations.Api;
import io.swagger.annotations.ApiOperation;
import io.swagger.annotations.Authorization;

@Api(value = "/roles", description = "ODK Role API", authorizations = { @Authorization(value = "basicAuth") })
@Path("roles")
public class RoleService {

    @Autowired
    private CallingContext callingContext;
    private static final ObjectMapper mapper = new ObjectMapper();

    @GET
    @ApiOperation(response = String.class, responseContainer = "List", value = "Returns list of roles granted to the currently authenticated (or anonymous) user.")
    @Path("granted")
    @Produces({ MediaType.APPLICATION_JSON, ApiConstants.MEDIA_TEXT_XML_UTF8,
            ApiConstants.MEDIA_APPLICATION_XML_UTF8 })
    public Response getGranted(@Context ServletContext sc, @Context HttpServletRequest req,
            @Context HttpHeaders httpHeaders) throws IOException {

        Set<GrantedAuthority> grants = callingContext.getCurrentUser().getDirectAuthorities();
        RoleHierarchy rh = (RoleHierarchy) callingContext.getHierarchicalRoleRelationships();
        Collection<? extends GrantedAuthority> roles = rh.getReachableGrantedAuthorities(grants);
        ArrayList<String> roleNames = new ArrayList<String>();
        for (GrantedAuthority a : roles) {
            if (a.getAuthority().startsWith(GrantedAuthorityName.ROLE_PREFIX)) {
                roleNames.add(a.getAuthority());
            }
        }

        // Need to set host header?  original has     
        // resp.addHeader(HttpHeaders.HOST, cc.getServerURL());

        return Response.ok(mapper.writeValueAsString(roleNames)).encoding(BasicConsts.UTF8_ENCODE)
                .type(MediaType.APPLICATION_JSON)
                .header(ApiConstants.OPEN_DATA_KIT_VERSION_HEADER, ApiConstants.OPEN_DATA_KIT_VERSION)
                .header("Access-Control-Allow-Origin", "*").header("Access-Control-Allow-Credentials", "true")
                .build();
    }

    @GET
    @Path("list")
    @ApiOperation(value = "Return a list of all available roles, with descriptions.  Ordered from least privileged to most privileged.")
    @Produces({ MediaType.APPLICATION_JSON, ApiConstants.MEDIA_TEXT_XML_UTF8,
            ApiConstants.MEDIA_APPLICATION_XML_UTF8 })
    /**
     * Ideally this descriptive information would all reside in the database, but this is a quick update until we have time to dive into updating the data model.
     * @return
     * @throws IOException
     * @throws DatastoreFailureException
     */
    public Response getRoleList() throws IOException, DatastoreFailureException {

        List<RoleDescription> roles = new ArrayList<RoleDescription>();

        RoleDescription roleDescription = new RoleDescription();

        roleDescription.setRole(GrantedAuthorityName.ROLE_USER.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_USER.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_USER.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_DATA_VIEWER.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_DATA_VIEWER.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_DATA_VIEWER.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_DATA_COLLECTOR.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_DATA_COLLECTOR.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_DATA_COLLECTOR.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_DATA_OWNER.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_DATA_OWNER.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_DATA_OWNER.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_SYNCHRONIZE_TABLES.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_SYNCHRONIZE_TABLES.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_SYNCHRONIZE_TABLES.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_SUPER_USER_TABLES.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_SUPER_USER_TABLES.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_SUPER_USER_TABLES.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_ADMINISTER_TABLES.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_ADMINISTER_TABLES.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_ADMINISTER_TABLES.getDisplayText());
        roles.add(roleDescription);

        roleDescription = new RoleDescription();
        roleDescription.setRole(GrantedAuthorityName.ROLE_SITE_ACCESS_ADMIN.name());
        roleDescription.setName(GrantedAuthorityName.ROLE_SITE_ACCESS_ADMIN.getDisplayName());
        roleDescription.setDescription(GrantedAuthorityName.ROLE_SITE_ACCESS_ADMIN.getDisplayText());
        roles.add(roleDescription);

        // Need to set host header? original has
        // resp.addHeader(HttpHeaders.HOST, cc.getServerURL());

        return Response.ok(mapper.writeValueAsString(roles)).encoding(BasicConsts.UTF8_ENCODE)
                .type(MediaType.APPLICATION_JSON)
                .header(ApiConstants.OPEN_DATA_KIT_VERSION_HEADER, ApiConstants.OPEN_DATA_KIT_VERSION)
                .header("Access-Control-Allow-Origin", "*").header("Access-Control-Allow-Credentials", "true")
                .build();
    }
}