Example 46 with Resource
use of javax.annotation.Resource in project alien4cloud by alien4cloud.
the class AbstractLocationResourcesSecurityController method revokeGroupAccess.
/**
* Revoke the group's authorisation to access the location resource
*
* @param locationId The id of the location.
* @param groupId The authorized group.
* @return A {@link Void} {@link RestResponse}.
*/
@ApiOperation(value = "Revoke the group's authorisation to access the location", notes = "Only user with ADMIN role can revoke access to the location.")
@RequestMapping(value = "/groups/{groupId}", method = RequestMethod.DELETE, produces = MediaType.APPLICATION_JSON_VALUE)
@PreAuthorize("hasAuthority('ADMIN')")
@Audit
public synchronized RestResponse<List<GroupDTO>> revokeGroupAccess(@PathVariable String orchestratorId, @PathVariable String locationId, @PathVariable String resourceId, @PathVariable String groupId) {
AbstractLocationResourceTemplate resourceTemplate = locationResourceService.getOrFail(resourceId);
resourcePermissionService.revokePermission(resourceTemplate, (resource -> locationResourceService.saveResource((AbstractLocationResourceTemplate) resource)), Subject.GROUP, groupId);
List<GroupDTO> groups = GroupDTO.convert(resourcePermissionService.getAuthorizedGroups(resourceTemplate));
return RestResponseBuilder.<List<GroupDTO>>builder().data(groups).build();
}
Also used :
PathVariable(org.springframework.web.bind.annotation.PathVariable)
Lists(org.elasticsearch.common.collect.Lists)
Arrays(java.util.Arrays)
ApplicationEnvironmentService(alien4cloud.application.ApplicationEnvironmentService)
Subject(alien4cloud.security.Subject)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
LocationService(alien4cloud.orchestrators.locations.services.LocationService)
ResourcePermissionService(alien4cloud.authorization.ResourcePermissionService)
ApplicationEnvironmentAuthorizationDTO(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationDTO)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
ArrayUtils(org.apache.commons.lang3.ArrayUtils)
LocationSecurityService(alien4cloud.orchestrators.locations.services.LocationSecurityService)
AlienUtils.safe(alien4cloud.utils.AlienUtils.safe)
Location(alien4cloud.model.orchestrators.locations.Location)
RequestBody(org.springframework.web.bind.annotation.RequestBody)
ApiOperation(io.swagger.annotations.ApiOperation)
Audit(alien4cloud.audit.annotation.Audit)
RestResponseBuilder(alien4cloud.rest.model.RestResponseBuilder)
RestResponse(alien4cloud.rest.model.RestResponse)
Application(alien4cloud.model.application.Application)
ILocationResourceService(alien4cloud.orchestrators.locations.services.ILocationResourceService)
MapUtils(org.apache.commons.collections4.MapUtils)
ApplicationEnvironment(alien4cloud.model.application.ApplicationEnvironment)
MediaType(org.springframework.http.MediaType)
Resource(javax.annotation.Resource)
RequestMethod(org.springframework.web.bind.annotation.RequestMethod)
Set(java.util.Set)
IGenericSearchDAO(alien4cloud.dao.IGenericSearchDAO)
Collectors(java.util.stream.Collectors)
Sets(com.google.common.collect.Sets)
List(java.util.List)
GroupDTO(alien4cloud.rest.orchestrator.model.GroupDTO)
UserDTO(alien4cloud.rest.orchestrator.model.UserDTO)
AbstractLocationResourceTemplate(alien4cloud.model.orchestrators.locations.AbstractLocationResourceTemplate)
ApplicationEnvironmentAuthorizationUpdateRequest(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationUpdateRequest)
GroupDTO(alien4cloud.rest.orchestrator.model.GroupDTO)
AbstractLocationResourceTemplate(alien4cloud.model.orchestrators.locations.AbstractLocationResourceTemplate)
List(java.util.List)
Audit(alien4cloud.audit.annotation.Audit)
ApiOperation(io.swagger.annotations.ApiOperation)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Example 47 with Resource
use of javax.annotation.Resource in project alien4cloud by alien4cloud.
the class ServiceSecurityController method getAuthorizedEnvironmentsPerApplication.
/**
* List all environments per application authorised to access the location.
*
* @return list of all environments per application.
*/
@ApiOperation(value = "List all applications, environments and environment types authorized to access the service resource", notes = "Only user with ADMIN role can list authorized applications, environments and environment types for the location.")
@RequestMapping(value = "/environmentsPerApplication", method = RequestMethod.GET, produces = MediaType.APPLICATION_JSON_VALUE)
@PreAuthorize("hasAuthority('ADMIN')")
public RestResponse<List<ApplicationEnvironmentAuthorizationDTO>> getAuthorizedEnvironmentsPerApplication(@PathVariable String serviceId) {
ServiceResource service = serviceResourceService.getOrFail(serviceId);
List<Application> applicationsRelatedToEnvironment = Lists.newArrayList();
List<Application> applicationsRelatedToEnvironmentType = Lists.newArrayList();
List<ApplicationEnvironment> environments = Lists.newArrayList();
List<String> environmentTypes = Lists.newArrayList();
List<Application> applications = Lists.newArrayList();
if (service.getEnvironmentPermissions() != null && service.getEnvironmentPermissions().size() > 0) {
environments = alienDAO.findByIds(ApplicationEnvironment.class, service.getEnvironmentPermissions().keySet().toArray(new String[service.getEnvironmentPermissions().size()]));
Set<String> environmentApplicationIds = environments.stream().map(ae -> ae.getApplicationId()).collect(Collectors.toSet());
applicationsRelatedToEnvironment = alienDAO.findByIds(Application.class, environmentApplicationIds.toArray(new String[environmentApplicationIds.size()]));
}
if (service.getEnvironmentTypePermissions() != null && service.getEnvironmentTypePermissions().size() > 0) {
environmentTypes.addAll(service.getEnvironmentTypePermissions().keySet());
Set<String> environmentTypeApplicationIds = Sets.newHashSet();
for (String envType : safe(service.getEnvironmentTypePermissions()).keySet()) {
environmentTypeApplicationIds.add(envType.split(":")[0]);
}
applicationsRelatedToEnvironmentType = alienDAO.findByIds(Application.class, environmentTypeApplicationIds.toArray(new String[environmentTypeApplicationIds.size()]));
}
if (service.getApplicationPermissions() != null && service.getApplicationPermissions().size() > 0) {
applications = alienDAO.findByIds(Application.class, service.getApplicationPermissions().keySet().toArray(new String[service.getApplicationPermissions().size()]));
}
List<ApplicationEnvironmentAuthorizationDTO> result = ApplicationEnvironmentAuthorizationDTO.buildDTOs(applicationsRelatedToEnvironment, applicationsRelatedToEnvironmentType, environments, applications, environmentTypes);
return RestResponseBuilder.<List<ApplicationEnvironmentAuthorizationDTO>>builder().data(result).build();
}
Also used :
PathVariable(org.springframework.web.bind.annotation.PathVariable)
Lists(org.elasticsearch.common.collect.Lists)
Arrays(java.util.Arrays)
ApplicationEnvironmentService(alien4cloud.application.ApplicationEnvironmentService)
Subject(alien4cloud.security.Subject)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
ServiceResourceService(org.alien4cloud.alm.service.ServiceResourceService)
ResourcePermissionService(alien4cloud.authorization.ResourcePermissionService)
ApplicationEnvironmentAuthorizationDTO(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationDTO)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
AlienUtils.safe(alien4cloud.utils.AlienUtils.safe)
RequestBody(org.springframework.web.bind.annotation.RequestBody)
ApiOperation(io.swagger.annotations.ApiOperation)
Audit(alien4cloud.audit.annotation.Audit)
RestResponseBuilder(alien4cloud.rest.model.RestResponseBuilder)
RestResponse(alien4cloud.rest.model.RestResponse)
Application(alien4cloud.model.application.Application)
Api(io.swagger.annotations.Api)
ApplicationEnvironment(alien4cloud.model.application.ApplicationEnvironment)
MediaType(org.springframework.http.MediaType)
Resource(javax.annotation.Resource)
RequestMethod(org.springframework.web.bind.annotation.RequestMethod)
Set(java.util.Set)
IGenericSearchDAO(alien4cloud.dao.IGenericSearchDAO)
RestController(org.springframework.web.bind.annotation.RestController)
Collectors(java.util.stream.Collectors)
Sets(com.google.common.collect.Sets)
List(java.util.List)
GroupDTO(alien4cloud.rest.orchestrator.model.GroupDTO)
UserDTO(alien4cloud.rest.orchestrator.model.UserDTO)
ApplicationEnvironmentAuthorizationUpdateRequest(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationUpdateRequest)
ServiceResource(alien4cloud.model.service.ServiceResource)
ApplicationEnvironmentAuthorizationDTO(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationDTO)
ServiceResource(alien4cloud.model.service.ServiceResource)
List(java.util.List)
Application(alien4cloud.model.application.Application)
ApplicationEnvironment(alien4cloud.model.application.ApplicationEnvironment)
ApiOperation(io.swagger.annotations.ApiOperation)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Example 48 with Resource
use of javax.annotation.Resource in project alien4cloud by alien4cloud.
the class ServiceSecurityController method revokeApplicationAccess.
/**
*****************************************************************************************************************************
*
* SECURITY ON APPLICATIONS
*
******************************************************************************************************************************
*/
/**
* Revoke the application's authorisation to access the location (including all related environments and environment types).
*
* @param serviceId The id of the location.
* @param applicationId The authorized application.
* @return A {@link Void} {@link RestResponse}.
*/
@ApiOperation(value = "Revoke the application's authorisation to access the service resource", notes = "Only user with ADMIN role can revoke access to the location.")
@RequestMapping(value = "/applications/{applicationId}", method = RequestMethod.DELETE, produces = MediaType.APPLICATION_JSON_VALUE)
@PreAuthorize("hasAuthority('ADMIN')")
@Audit
public synchronized RestResponse<Void> revokeApplicationAccess(@PathVariable String serviceId, @PathVariable String applicationId) {
ServiceResource service = serviceResourceService.getOrFail(serviceId);
resourcePermissionService.revokePermission(service, Subject.APPLICATION, applicationId);
// remove all environments related to this application
ApplicationEnvironment[] aes = applicationEnvironmentService.getByApplicationId(applicationId);
String[] envIds = Arrays.stream(aes).map(ae -> ae.getId()).toArray(String[]::new);
resourcePermissionService.revokePermission(service, Subject.ENVIRONMENT, envIds);
// remove all environments types related to this application
Set<String> envTypeIds = Sets.newHashSet();
for (String envType : safe(service.getEnvironmentTypePermissions()).keySet()) {
if (envType.contains(applicationId)) {
envTypeIds.add(envType);
}
}
resourcePermissionService.revokePermission(service, Subject.ENVIRONMENT_TYPE, envTypeIds.toArray(new String[envTypeIds.size()]));
return RestResponseBuilder.<Void>builder().build();
}
Also used :
PathVariable(org.springframework.web.bind.annotation.PathVariable)
Lists(org.elasticsearch.common.collect.Lists)
Arrays(java.util.Arrays)
ApplicationEnvironmentService(alien4cloud.application.ApplicationEnvironmentService)
Subject(alien4cloud.security.Subject)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
ServiceResourceService(org.alien4cloud.alm.service.ServiceResourceService)
ResourcePermissionService(alien4cloud.authorization.ResourcePermissionService)
ApplicationEnvironmentAuthorizationDTO(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationDTO)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
AlienUtils.safe(alien4cloud.utils.AlienUtils.safe)
RequestBody(org.springframework.web.bind.annotation.RequestBody)
ApiOperation(io.swagger.annotations.ApiOperation)
Audit(alien4cloud.audit.annotation.Audit)
RestResponseBuilder(alien4cloud.rest.model.RestResponseBuilder)
RestResponse(alien4cloud.rest.model.RestResponse)
Application(alien4cloud.model.application.Application)
Api(io.swagger.annotations.Api)
ApplicationEnvironment(alien4cloud.model.application.ApplicationEnvironment)
MediaType(org.springframework.http.MediaType)
Resource(javax.annotation.Resource)
RequestMethod(org.springframework.web.bind.annotation.RequestMethod)
Set(java.util.Set)
IGenericSearchDAO(alien4cloud.dao.IGenericSearchDAO)
RestController(org.springframework.web.bind.annotation.RestController)
Collectors(java.util.stream.Collectors)
Sets(com.google.common.collect.Sets)
List(java.util.List)
GroupDTO(alien4cloud.rest.orchestrator.model.GroupDTO)
UserDTO(alien4cloud.rest.orchestrator.model.UserDTO)
ApplicationEnvironmentAuthorizationUpdateRequest(alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationUpdateRequest)
ServiceResource(alien4cloud.model.service.ServiceResource)
ServiceResource(alien4cloud.model.service.ServiceResource)
ApplicationEnvironment(alien4cloud.model.application.ApplicationEnvironment)
Audit(alien4cloud.audit.annotation.Audit)
ApiOperation(io.swagger.annotations.ApiOperation)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Example 49 with Resource
use of javax.annotation.Resource in project tomee by apache.
the class ResourceInjector method visitField.
public final void visitField(final Field field, final Annotation annotation) {
assert annotation instanceof Resource : annotation;
Resource res = (Resource) annotation;
String name = getFieldNameForResource(res, field);
Class<?> type = getResourceType(res, field);
Object resource = resolveResource(name, type);
if (resource == null && "".equals(res.name())) {
resource = resolveResource(null, type);
}
if (resource != null) {
injectField(field, resource);
} else {
LOG.log(Level.INFO, "RESOURCE_RESOLVE_FAILED", name);
}
}
Also used :
Resource(javax.annotation.Resource)
Example 50 with Resource
use of javax.annotation.Resource in project cxf by apache.
the class PolicyEngineImpl method setBus.
@Resource
public final void setBus(Bus b) {
if (this.bus == b) {
// avoid bus init twice through injection
return;
}
bus = b;
addBusInterceptors();
FactoryBeanListenerManager fblm = bus.getExtension(FactoryBeanListenerManager.class);
if (fblm != null) {
for (FactoryBeanListener l : fblm.getListeners()) {
if (l instanceof PolicyAnnotationListener) {
return;
}
}
fblm.addListener(new PolicyAnnotationListener(bus));
}
}
Also used :
FactoryBeanListener(org.apache.cxf.service.factory.FactoryBeanListener)
FactoryBeanListenerManager(org.apache.cxf.service.factory.FactoryBeanListenerManager)
Resource(javax.annotation.Resource)
Aggregations
Resource (javax.annotation.Resource)59
Collectors (java.util.stream.Collectors)22
Set (java.util.Set)20
List (java.util.List)18
Subject (alien4cloud.security.Subject)17
Sets (com.google.common.collect.Sets)17
Arrays (java.util.Arrays)17
ArrayUtils (org.apache.commons.lang3.ArrayUtils)15
IGenericSearchDAO (alien4cloud.dao.IGenericSearchDAO)14
ApplicationEnvironmentService (alien4cloud.application.ApplicationEnvironmentService)12
ApplicationEnvironment (alien4cloud.model.application.ApplicationEnvironment)12
Audit (alien4cloud.audit.annotation.Audit)11
ResourcePermissionService (alien4cloud.authorization.ResourcePermissionService)11
RestResponse (alien4cloud.rest.model.RestResponse)11
RestResponseBuilder (alien4cloud.rest.model.RestResponseBuilder)11
ApplicationEnvironmentAuthorizationUpdateRequest (alien4cloud.rest.orchestrator.model.ApplicationEnvironmentAuthorizationUpdateRequest)11
ApiOperation (io.swagger.annotations.ApiOperation)11
IOException (java.io.IOException)11
MediaType (org.springframework.http.MediaType)11
PreAuthorize (org.springframework.security.access.prepost.PreAuthorize)11
