/*
* Copyright 2016 ThoughtWorks, Inc.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.thoughtworks.go.config.update;
import com.thoughtworks.go.config.*;
import com.thoughtworks.go.config.exceptions.GoConfigInvalidException;
import com.thoughtworks.go.i18n.LocalizedMessage;
import com.thoughtworks.go.plugin.access.authorization.AuthorizationExtension;
import com.thoughtworks.go.server.domain.Username;
import com.thoughtworks.go.server.service.GoConfigService;
import com.thoughtworks.go.server.service.PluginProfileNotFoundException;
import com.thoughtworks.go.server.service.result.LocalizedOperationResult;
import org.apache.commons.lang.StringUtils;
import java.util.ArrayList;
import java.util.List;
public class SecurityAuthConfigDeleteCommand extends SecurityAuthConfigCommand {
public SecurityAuthConfigDeleteCommand(GoConfigService goConfigService, SecurityAuthConfig newSecurityAuthConfig, AuthorizationExtension extension, Username currentUser, LocalizedOperationResult result) {
super(goConfigService, newSecurityAuthConfig, extension, currentUser, result);
}
@Override
public void update(CruiseConfig preprocessedConfig) throws Exception {
preprocessedProfile = findExistingProfile(preprocessedConfig);
if (preprocessedProfile == null) {
throw new PluginProfileNotFoundException();
}
getPluginProfiles(preprocessedConfig).remove(preprocessedProfile);
}
@Override
public boolean isValid(CruiseConfig preprocessedConfig) {
return isValidForDelete(preprocessedConfig);
}
private boolean isValidForDelete(CruiseConfig preprocessedConfig) {
RolesConfig rolesConfig = preprocessedConfig.server().security().getRoles();
List<String> usedByRolesConfig = new ArrayList<>();
for (Role role : rolesConfig.getPluginRoleConfigs()) {
if (profile.hasRole((PluginRoleConfig) role)) {
usedByRolesConfig.add(role.getName().toString());
}
}
if (!usedByRolesConfig.isEmpty()) {
result.unprocessableEntity(LocalizedMessage.string("CANNOT_DELETE_RESOURCE_REFERENCED_BY_OTHER_RESOURCE", getObjectDescriptor().toLowerCase(), profile.getId(), "role", usedByRolesConfig));
throw new GoConfigInvalidException(preprocessedConfig, String.format("The %s '%s' is being referenced by role(s): %s.", getObjectDescriptor().toLowerCase(), profile.getId(), StringUtils.join(usedByRolesConfig, ", ")));
}
return true;
}
}