IdentityQueryController.java example

Explorer

identity-binder-master
- src
  - main
    - java
      - org
        mitre
        openid
        connect
        binder
        BinderApplication.java
        authentication
        MultipleIdentityAuthentication.java
        MultipleIdentityAuthenticationConsistencyFilter.java
        MultipleIdentityAuthenticationProvider.java
        config
        DataConfiguration.java
        MethodSecurityConfiguration.java
        OAuthProtectedResourceConfiguration.java
        ServletInitializer.java
        WebConfiguration.java
        WebSecurityConfiguration.java
        model
        IdentityProvider.java
        MultipleIdentity.java
        SingleIdentity.java
        repository
        MultipleIdentityRepository.java
        SingleIdentityRepository.java
        service
        ConsistencyService.java
        ConsistencyServiceDefault.java
        IdentityService.java
        IdentityServiceDefault.java
        util
        UserInfoFormatter.java
        web
        AccountController.java
        BinderController.java
        IdentityQueryController.java
        LoginController.java
  - test
    - java
      - org
        mitre
        openid
        binder
        ConsistencyServiceTest.java
        IdentityServiceTest.java
        RepositoryTest.java

/*******************************************************************************
 * Copyright 2016 The MITRE Corporation
 * 
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * 
 *   http://www.apache.org/licenses/LICENSE-2.0
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 ******************************************************************************/
package org.mitre.openid.connect.binder.web;

import java.util.Set;

import org.mitre.openid.connect.binder.model.MultipleIdentity;
import org.mitre.openid.connect.binder.model.SingleIdentity;
import org.mitre.openid.connect.binder.service.IdentityService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.bind.annotation.RestController;

@RestController
public class IdentityQueryController {
	
	@Autowired
	private IdentityService identityService;
	
	/**
	 * OAuth protected API call, requires scope 'org.mitre.idbind.query'.
	 */
	@PreAuthorize("#oauth2.hasScope('org.mitre.idbind.query')")
	@RequestMapping(value = "/query", method = RequestMethod.GET, produces = "application/json")
	public Set<SingleIdentity> queryAll() {
		return identityService.getAllIdentities();
	}
	
	@PreAuthorize("#oauth2.hasScope('org.mitre.idbind.query')")
	@RequestMapping(value = "/query", method = RequestMethod.POST, consumes = "application/x-www-form-urlencoded", produces = "application/json")
	public Set<SingleIdentity> queryUser(@RequestParam("issuer") String issuer, @RequestParam("subject") String subject) {
		MultipleIdentity identity = identityService.getMultipleBySubjectIssuer(subject, issuer);
		return identity == null ? null : identity.getIdentities();
	}
	
}