EntityAccessControl.java

package com.thinkbiganalytics.security.rest.model;

/*-
 * #%L
 * thinkbig-feed-manager-rest-model
 * %%
 * Copyright (C) 2017 ThinkBig Analytics
 * %%
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 * #L%
 */

import com.fasterxml.jackson.annotation.JsonIgnore;
import com.fasterxml.jackson.annotation.JsonProperty;

import java.util.ArrayList;
import java.util.List;

public class EntityAccessControl {

    private UserPrincipal owner;

    private ActionGroup allowedActions;

    private List<RoleMembership> roleMemberships;

    public ActionGroup getAllowedActions() {
        return allowedActions;
    }

    public void setAllowedActions(ActionGroup allowedActions) {
        this.allowedActions = allowedActions;
    }

    public List<RoleMembership> getRoleMemberships() {
        if (roleMemberships == null) {
            roleMemberships = new ArrayList<>();
        }
        return roleMemberships;
    }

    public void setRoleMemberships(List<RoleMembership> roleMemberships) {
        this.roleMemberships = roleMemberships;
    }

    public void addRoleMembership(RoleMembership roleMembership) {
        getRoleMemberships().add(roleMembership);
    }

    public List<RoleMembershipChange> toRoleMembershipChangeList() {
        List<RoleMembershipChange> membershipChanges = new ArrayList<>();
        for (RoleMembership membership : getRoleMemberships()) {
            RoleMembershipChange roleMembershipChange = new RoleMembershipChange();
            roleMembershipChange.setRoleName(membership.getRole().getSystemName());
            roleMembershipChange.setChange(RoleMembershipChange.ChangeType.REPLACE);
            membership.getGroups().stream().forEach(group -> roleMembershipChange.getGroups().add(group));
            membership.getUsers().stream().forEach(user -> roleMembershipChange.getUsers().add(user));
            membershipChanges.add(roleMembershipChange);
        }
        return membershipChanges;
    }

    public UserPrincipal getOwner() {
        return owner;
    }

    @JsonProperty  // allows overloaded method in Datasource to be ignored
    public void setOwner(UserPrincipal owner) {
        this.owner = owner;
    }

    @JsonIgnore
    public boolean hasAction(String action) {
        return getAllowedActions() != null && getAllowedActions().hasAction(action);
    }
}