CloudifyAuthorizationDetails.java example

Explorer
cloudify-master
/*******************************************************************************
 * Copyright (c) 2012 GigaSpaces Technologies Ltd. All rights reserved
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *       http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *******************************************************************************/
package org.cloudifysource.security;

import java.util.ArrayList;
import java.util.Collection;
import java.util.logging.Logger;

import org.springframework.security.access.AccessDeniedException;
import org.springframework.security.authentication.AnonymousAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;

/**
 * POJO for holding the data needed for permission evaluation.
 * @author noak
 * 
 * @since 2.3.0
 */
public class CloudifyAuthorizationDetails implements AuthorizationDetails {
	
	private String username;
	private Collection<String> roles = new ArrayList<String>();
	private Collection<String> authGroups = new ArrayList<String>();
	
	private Logger logger = java.util.logging.Logger.getLogger(CloudifyAuthorizationDetails.class.getName());
	
	
	public CloudifyAuthorizationDetails() {
	}
	
	public CloudifyAuthorizationDetails(final Authentication authentication) {
		init(authentication);
	}
	
	
	@Override
	public void init(final Authentication authentication) {
		if (authentication == null || authentication instanceof AnonymousAuthenticationToken) {
			logger.warning("Anonymous user is not supported");
			throw new AccessDeniedException("Anonymous user is not supported");
    	}
		
    	if (!(authentication instanceof CustomAuthenticationToken)) {
    		logger.warning("Authentication object type not supported. "
    				+ "Verify your Spring configuration is valid.");
    		throw new AccessDeniedException("Authentication object type not supported. "
    				+ "Verify your Spring configuration is valid.");
    	}
    	
    	username = authentication.getName();
    	
    	//set roles
		for (GrantedAuthority authority : authentication.getAuthorities()) {
			roles.add(authority.getAuthority());
		}
		
		//set auth groups
		authGroups = ((CustomAuthenticationToken) authentication).getAuthGroups();
		
	}
	

	public String getUsername() {
		return username;
	}
	

	public Collection<String> getRoles() {
		return roles;
	}
	

	public Collection<String> getAuthGroups() {
		return authGroups;
	}


}