Examples with Permissions org.apache.nifi.registry.authorization.Permissions used on opensource projects

Example 1 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method updateUserGroup.

@Override
public UserGroupEntity updateUserGroup(final Revision revision, final UserGroupDTO userGroupDTO) {
    final Authorizable userGroupsAuthorizable = authorizableLookup.getTenant();
    final Set<AccessPolicy> policies = userGroupDAO.getAccessPoliciesForUserGroup(userGroupDTO.getId());
    final RevisionUpdate<UserGroupDTO> snapshot = updateComponent(revision, userGroupsAuthorizable, () -> userGroupDAO.updateUserGroup(userGroupDTO), userGroup -> {
        final Set<TenantEntity> tenantEntities = userGroup.getUsers().stream().map(mapUserIdToTenantEntity()).collect(Collectors.toSet());
        final Set<AccessPolicySummaryEntity> policyEntities = policies.stream().map(ap -> createAccessPolicySummaryEntity(ap)).collect(Collectors.toSet());
        return dtoFactory.createUserGroupDto(userGroup, tenantEntities, policyEntities);
    });
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(userGroupsAuthorizable);
    return entityFactory.createUserGroupEntity(snapshot.getComponent(), dtoFactory.createRevisionDTO(snapshot.getLastModification()), permissions);
}

Example 2 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method createOutputPortEntity.

private PortEntity createOutputPortEntity(final Port port, final NiFiUser user) {
    final RevisionDTO revision = dtoFactory.createRevisionDTO(revisionManager.getRevision(port.getIdentifier()));
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(port, user);
    final PortStatusDTO status = dtoFactory.createPortStatusDto(controllerFacade.getOutputPortStatus(port.getIdentifier()));
    final List<BulletinDTO> bulletins = dtoFactory.createBulletinDtos(bulletinRepository.findBulletinsForSource(port.getIdentifier()));
    final List<BulletinEntity> bulletinEntities = bulletins.stream().map(bulletin -> entityFactory.createBulletinEntity(bulletin, permissions.getCanRead())).collect(Collectors.toList());
    return entityFactory.createPortEntity(dtoFactory.createPortDto(port), revision, permissions, status, bulletinEntities);
}

Example 3 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method deleteUser.

@Override
public UserEntity deleteUser(final Revision revision, final String userId) {
    final User user = userDAO.getUser(userId);
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(authorizableLookup.getTenant());
    final Set<TenantEntity> userGroups = user != null ? userGroupDAO.getUserGroupsForUser(userId).stream().map(g -> g.getIdentifier()).map(mapUserGroupIdToTenantEntity()).collect(Collectors.toSet()) : null;
    final Set<AccessPolicySummaryEntity> policyEntities = user != null ? userGroupDAO.getAccessPoliciesForUser(userId).stream().map(ap -> createAccessPolicySummaryEntity(ap)).collect(Collectors.toSet()) : null;
    final String resourceIdentifier = ResourceFactory.getTenantResource().getIdentifier() + "/" + userId;
    final UserDTO snapshot = deleteComponent(revision, new Resource() {

        @Override
        public String getIdentifier() {
            return resourceIdentifier;
        }

        @Override
        public String getName() {
            return resourceIdentifier;
        }

        @Override
        public String getSafeDescription() {
            return "User " + userId;
        }
    }, () -> userDAO.deleteUser(userId), // no user specific policies to remove
    false, dtoFactory.createUserDto(user, userGroups, policyEntities));
    return entityFactory.createUserEntity(snapshot, null, permissions);
}

Example 4 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method getProcessGroupFlow.

@Override
public ProcessGroupFlowEntity getProcessGroupFlow(final String groupId) {
    // get all identifiers for every child component
    final Set<String> identifiers = new HashSet<>();
    final ProcessGroup processGroup = processGroupDAO.getProcessGroup(groupId);
    processGroup.getProcessors().stream().map(proc -> proc.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getConnections().stream().map(conn -> conn.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getInputPorts().stream().map(port -> port.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getOutputPorts().stream().map(port -> port.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getProcessGroups().stream().map(group -> group.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getRemoteProcessGroups().stream().map(remoteGroup -> remoteGroup.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getRemoteProcessGroups().stream().flatMap(remoteGroup -> remoteGroup.getInputPorts().stream()).map(remoteInputPort -> remoteInputPort.getIdentifier()).forEach(id -> identifiers.add(id));
    processGroup.getRemoteProcessGroups().stream().flatMap(remoteGroup -> remoteGroup.getOutputPorts().stream()).map(remoteOutputPort -> remoteOutputPort.getIdentifier()).forEach(id -> identifiers.add(id));
    // read lock on every component being accessed in the dto conversion
    final ProcessGroupStatus groupStatus = controllerFacade.getProcessGroupStatus(groupId);
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(processGroup);
    return entityFactory.createProcessGroupFlowEntity(dtoFactory.createProcessGroupFlowDto(processGroup, groupStatus, revisionManager, this::getProcessGroupBulletins), permissions);
}

Example 5 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method createProcessor.

@Override
public ProcessorEntity createProcessor(final Revision revision, final String groupId, final ProcessorDTO processorDTO) {
    final RevisionUpdate<ProcessorDTO> snapshot = createComponent(revision, processorDTO, () -> processorDAO.createProcessor(groupId, processorDTO), processor -> dtoFactory.createProcessorDto(processor));
    final ProcessorNode processor = processorDAO.getProcessor(processorDTO.getId());
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(processor);
    final ProcessorStatusDTO status = dtoFactory.createProcessorStatusDto(controllerFacade.getProcessorStatus(processorDTO.getId()));
    final List<BulletinDTO> bulletins = dtoFactory.createBulletinDtos(bulletinRepository.findBulletinsForSource(processorDTO.getId()));
    final List<BulletinEntity> bulletinEntities = bulletins.stream().map(bulletin -> entityFactory.createBulletinEntity(bulletin, permissions.getCanRead())).collect(Collectors.toList());
    return entityFactory.createProcessorEntity(snapshot.getComponent(), dtoFactory.createRevisionDTO(snapshot.getLastModification()), permissions, status, bulletinEntities);
}