use of io.jans.scim.model.GluuGroup in project jans by JanssenProject.
the class Scim2UserService method transferAttributesToUserResource.
public void transferAttributesToUserResource(ScimCustomPerson person, UserResource res, String url) {
log.debug("transferAttributesToUserResource");
res.setId(person.getInum());
res.setExternalId(person.getAttribute("jansExtId"));
Meta meta = new Meta();
meta.setResourceType(ScimResourceUtil.getType(res.getClass()));
meta.setCreated(person.getAttribute("jansMetaCreated"));
if (meta.getCreated() == null) {
Date date = person.getCreationDate();
meta.setCreated(date == null ? null : DateUtil.millisToISOString(date.getTime()));
}
meta.setLastModified(person.getAttribute("jansMetaLastMod"));
if (meta.getLastModified() == null) {
Date date = person.getUpdatedAt();
meta.setLastModified(date == null ? null : DateUtil.millisToISOString(date.getTime()));
}
meta.setLocation(person.getAttribute("jansMetaLocation"));
if (meta.getLocation() == null) {
meta.setLocation(url + "/" + person.getInum());
}
res.setMeta(meta);
// Set values in order of appearance in UserResource class
res.setUserName(person.getUid());
Name name = new Name();
name.setGivenName(person.getGivenName());
name.setFamilyName(person.getSurname());
name.setMiddleName(person.getAttribute("middleName"));
name.setHonorificPrefix(person.getAttribute("jansHonorificPrefix"));
name.setHonorificSuffix(person.getAttribute("jansHonorificSuffix"));
String formatted = person.getAttribute("jansNameFormatted");
if (formatted == null) {
// recomputes the formatted name if absent in LDAP
name.computeFormattedName();
} else {
name.setFormatted(formatted);
}
res.setName(name);
res.setDisplayName(person.getDisplayName());
res.setNickName(person.getAttribute("nickname"));
res.setProfileUrl(person.getAttribute("jansProfileURL"));
res.setTitle(person.getAttribute("jansTitle"));
res.setUserType(person.getAttribute("jansUsrTyp"));
res.setPreferredLanguage(person.getPreferredLanguage());
res.setLocale(person.getAttribute("locale"));
res.setTimezone(person.getTimezone());
res.setActive(Boolean.valueOf(person.getAttribute("jansActive")) || GluuBoolean.getByValue(person.getAttribute("jansStatus")).isBooleanValue());
res.setPassword(person.getUserPassword());
res.setEmails(getAttributeListValue(person, Email.class, "jansEmail"));
if (res.getEmails() == null) {
// There can be cases where jansEmail is not synced with mail attribute....
List<Email> emails = person.getAttributeList("mail").stream().map(m -> {
Email email = new Email();
email.setValue(m);
email.setPrimary(false);
return email;
}).collect(Collectors.toList());
res.setEmails(emails.size() == 0 ? null : emails);
}
res.setPhoneNumbers(getAttributeListValue(person, PhoneNumber.class, "jansPhoneValue"));
res.setIms(getAttributeListValue(person, InstantMessagingAddress.class, "jansImsValue"));
res.setPhotos(getAttributeListValue(person, Photo.class, "jansPhotos"));
res.setAddresses(getAttributeListValue(person, Address.class, "jansAddres"));
List<String> listOfGroups = person.getMemberOf();
if (listOfGroups != null && listOfGroups.size() > 0) {
List<Group> groupList = new ArrayList<>();
for (String groupDN : listOfGroups) {
try {
GluuGroup gluuGroup = groupService.getGroupByDn(groupDN);
Group group = new Group();
group.setValue(gluuGroup.getInum());
String reference = groupEndpointUrl + "/" + gluuGroup.getInum();
group.setRef(reference);
group.setDisplay(gluuGroup.getDisplayName());
// Only support direct membership: see section 4.1.2 of RFC 7644
group.setType(Group.Type.DIRECT);
groupList.add(group);
} catch (Exception e) {
log.warn("transferAttributesToUserResource. Group with dn {} could not be added to User Resource. {}", groupDN, person.getUid());
log.error(e.getMessage(), e);
}
}
if (groupList.size() > 0) {
res.setGroups(groupList);
}
}
res.setEntitlements(getAttributeListValue(person, Entitlement.class, "jansEntitlements"));
res.setRoles(getAttributeListValue(person, Role.class, "jansRole"));
res.setX509Certificates(getAttributeListValue(person, X509Certificate.class, "jansx509Certificate"));
res.setPairwiseIdentifiers(person.getPpid());
transferExtendedAttributesToResource(person, res);
}
use of io.jans.scim.model.GluuGroup in project jans by JanssenProject.
the class UserPersistenceHelper method removeUserFromGroups.
/**
* "Detaches" a person from all groups he is currently member of
* @param person The person in question
* @throws Exception
*/
public void removeUserFromGroups(ScimCustomPerson person) {
String dn = person.getDn();
List<String> groups = person.getMemberOf();
for (String oneGroup : groups) {
try {
GluuGroup aGroup = groupService.getGroupByDn(oneGroup);
List<String> groupMembers = aGroup.getMembers();
int idx = Optional.ofNullable(groupMembers).map(l -> l.indexOf(dn)).orElse(-1);
if (idx >= 0) {
List<String> newMembers = new ArrayList<>();
newMembers.addAll(groupMembers.subList(0, idx));
newMembers.addAll(groupMembers.subList(idx + 1, groupMembers.size()));
aGroup.setMembers(newMembers.isEmpty() ? null : newMembers);
groupService.updateGroup(aGroup);
}
} catch (Exception e) {
log.error(e.getMessage());
}
}
}
use of io.jans.scim.model.GluuGroup in project jans by JanssenProject.
the class Scim2GroupService method searchGroups.
public PagedResult<BaseScimResource> searchGroups(String filter, String sortBy, SortOrder sortOrder, int startIndex, int count, String groupsUrl, String usersUrl, int maxCount, boolean fillMembersDisplay) throws Exception {
Filter ldapFilter = scimFilterParserService.createFilter(filter, Filter.createPresenceFilter("inum"), GroupResource.class);
log.info("Executing search for groups using: ldapfilter '{}', sortBy '{}', sortOrder '{}', startIndex '{}', count '{}'", ldapFilter.toString(), sortBy, sortOrder.getValue(), startIndex, count);
PagedResult<GluuGroup> list = ldapEntryManager.findPagedEntries(groupService.getDnForGroup(null), GluuGroup.class, ldapFilter, null, sortBy, sortOrder, startIndex - 1, count, maxCount);
List<BaseScimResource> resources = new ArrayList<>();
if (externalScimService.isEnabled() && !externalScimService.executeScimPostSearchGroupsMethods(list)) {
throw new WebApplicationException("Failed to execute SCIM script successfully", Status.PRECONDITION_FAILED);
}
for (GluuGroup group : list.getEntries()) {
GroupResource scimGroup = new GroupResource();
transferAttributesToGroupResource(group, scimGroup, fillMembersDisplay, groupsUrl, usersUrl);
resources.add(scimGroup);
}
log.info("Found {} matching entries - returning {}", list.getTotalEntriesCount(), list.getEntries().size());
PagedResult<BaseScimResource> result = new PagedResult<>();
result.setEntries(resources);
result.setTotalEntriesCount(list.getTotalEntriesCount());
return result;
}
use of io.jans.scim.model.GluuGroup in project jans by JanssenProject.
the class GroupService method generateInumForNewGroup.
public String generateInumForNewGroup() throws Exception {
GluuGroup group = new GluuGroup();
String newInum = null;
String newDn = null;
do {
newInum = generateInumForNewGroupImpl();
newDn = getDnForGroup(newInum);
group.setDn(newDn);
} while (persistenceEntryManager.contains(newDn, GluuCustomPerson.class));
return newInum;
}
use of io.jans.scim.model.GluuGroup in project jans by JanssenProject.
the class ServiceUtil method groupMembersAdder.
/**
* Adds a person to a group
*
* @return void
* @throws Exception
*/
public void groupMembersAdder(GluuCustomPerson gluuPerson, String dn) throws Exception {
List<String> groups = gluuPerson.getMemberOf();
for (String group : groups) {
GluuGroup oneGroup = groupService.getGroupByDn(group);
List<String> groupMembers = oneGroup.getMembers();
if ((groupMembers != null && !groupMembers.isEmpty()) && !isMemberExist(groupMembers, dn)) {
List<String> cleanGroupMembers = new ArrayList<String>();
cleanGroupMembers.add(dn);
for (String personDN : groupMembers) {
cleanGroupMembers.add(personDN);
}
oneGroup.setMembers(cleanGroupMembers);
groupService.updateGroup(oneGroup);
}
}
}
Aggregations