Examples with Permissions org.apache.nifi.registry.authorization.Permissions used on opensource projects

Example 26 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method createControllerService.

@Override
public ControllerServiceEntity createControllerService(final Revision revision, final String groupId, final ControllerServiceDTO controllerServiceDTO) {
    controllerServiceDTO.setParentGroupId(groupId);
    final NiFiUser user = NiFiUserUtils.getNiFiUser();
    // request claim for component to be created... revision already verified (version == 0)
    final RevisionClaim claim = new StandardRevisionClaim(revision);
    final RevisionUpdate<ControllerServiceDTO> snapshot;
    if (groupId == null) {
        // update revision through revision manager
        snapshot = revisionManager.updateRevision(claim, user, () -> {
            // Unfortunately, we can not use the createComponent() method here because createComponent() wants to obtain the read lock
            // on the group. The Controller Service may or may not have a Process Group (it won't if it's controller-scoped).
            final ControllerServiceNode controllerService = controllerServiceDAO.createControllerService(controllerServiceDTO);
            final ControllerServiceDTO dto = dtoFactory.createControllerServiceDto(controllerService);
            controllerFacade.save();
            final FlowModification lastMod = new FlowModification(revision.incrementRevision(revision.getClientId()), user.getIdentity());
            return new StandardRevisionUpdate<>(dto, lastMod);
        });
    } else {
        snapshot = revisionManager.updateRevision(claim, user, () -> {
            final ControllerServiceNode controllerService = controllerServiceDAO.createControllerService(controllerServiceDTO);
            final ControllerServiceDTO dto = dtoFactory.createControllerServiceDto(controllerService);
            controllerFacade.save();
            final FlowModification lastMod = new FlowModification(revision.incrementRevision(revision.getClientId()), user.getIdentity());
            return new StandardRevisionUpdate<>(dto, lastMod);
        });
    }
    final ControllerServiceNode controllerService = controllerServiceDAO.getControllerService(controllerServiceDTO.getId());
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(controllerService);
    final List<BulletinDTO> bulletins = dtoFactory.createBulletinDtos(bulletinRepository.findBulletinsForSource(controllerServiceDTO.getId()));
    final List<BulletinEntity> bulletinEntities = bulletins.stream().map(bulletin -> entityFactory.createBulletinEntity(bulletin, permissions.getCanRead())).collect(Collectors.toList());
    return entityFactory.createControllerServiceEntity(snapshot.getComponent(), dtoFactory.createRevisionDTO(snapshot.getLastModification()), permissions, bulletinEntities);
}

Example 27 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method createUserGroupEntity.

private UserGroupEntity createUserGroupEntity(final Group userGroup) {
    final RevisionDTO userGroupRevision = dtoFactory.createRevisionDTO(revisionManager.getRevision(userGroup.getIdentifier()));
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(authorizableLookup.getTenant());
    final Set<TenantEntity> users = userGroup.getUsers().stream().map(mapUserIdToTenantEntity()).collect(Collectors.toSet());
    final Set<AccessPolicySummaryEntity> policyEntities = userGroupDAO.getAccessPoliciesForUserGroup(userGroup.getIdentifier()).stream().map(ap -> createAccessPolicySummaryEntity(ap)).collect(Collectors.toSet());
    return entityFactory.createUserGroupEntity(dtoFactory.createUserGroupDto(userGroup, users, policyEntities), userGroupRevision, permissions);
}

Example 28 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method updateInputPort.

@Override
public PortEntity updateInputPort(final Revision revision, final PortDTO inputPortDTO) {
    final Port inputPortNode = inputPortDAO.getPort(inputPortDTO.getId());
    final RevisionUpdate<PortDTO> snapshot = updateComponent(revision, inputPortNode, () -> inputPortDAO.updatePort(inputPortDTO), port -> dtoFactory.createPortDto(port));
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(inputPortNode);
    final PortStatusDTO status = dtoFactory.createPortStatusDto(controllerFacade.getInputPortStatus(inputPortNode.getIdentifier()));
    final List<BulletinDTO> bulletins = dtoFactory.createBulletinDtos(bulletinRepository.findBulletinsForSource(inputPortNode.getIdentifier()));
    final List<BulletinEntity> bulletinEntities = bulletins.stream().map(bulletin -> entityFactory.createBulletinEntity(bulletin, permissions.getCanRead())).collect(Collectors.toList());
    return entityFactory.createPortEntity(snapshot.getComponent(), dtoFactory.createRevisionDTO(snapshot.getLastModification()), permissions, status, bulletinEntities);
}

Example 29 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method createUser.

@Override
public UserEntity createUser(final Revision revision, final UserDTO userDTO) {
    final String creator = NiFiUserUtils.getNiFiUserIdentity();
    final User newUser = userDAO.createUser(userDTO);
    final Set<TenantEntity> tenantEntities = userGroupDAO.getUserGroupsForUser(newUser.getIdentifier()).stream().map(g -> g.getIdentifier()).map(mapUserGroupIdToTenantEntity()).collect(Collectors.toSet());
    final Set<AccessPolicySummaryEntity> policyEntities = userGroupDAO.getAccessPoliciesForUser(newUser.getIdentifier()).stream().map(ap -> createAccessPolicySummaryEntity(ap)).collect(Collectors.toSet());
    final UserDTO newUserDto = dtoFactory.createUserDto(newUser, tenantEntities, policyEntities);
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(authorizableLookup.getTenant());
    return entityFactory.createUserEntity(newUserDto, dtoFactory.createRevisionDTO(new FlowModification(revision, creator)), permissions);
}

Example 30 with Permissions

use of org.apache.nifi.registry.authorization.Permissions in project nifi by apache.

the class StandardNiFiServiceFacade method createUserGroup.

@Override
public UserGroupEntity createUserGroup(final Revision revision, final UserGroupDTO userGroupDTO) {
    final String creator = NiFiUserUtils.getNiFiUserIdentity();
    final Group newUserGroup = userGroupDAO.createUserGroup(userGroupDTO);
    final Set<TenantEntity> tenantEntities = newUserGroup.getUsers().stream().map(mapUserIdToTenantEntity()).collect(Collectors.toSet());
    final Set<AccessPolicySummaryEntity> policyEntities = userGroupDAO.getAccessPoliciesForUserGroup(newUserGroup.getIdentifier()).stream().map(ap -> createAccessPolicySummaryEntity(ap)).collect(Collectors.toSet());
    final UserGroupDTO newUserGroupDto = dtoFactory.createUserGroupDto(newUserGroup, tenantEntities, policyEntities);
    final PermissionsDTO permissions = dtoFactory.createPermissionsDto(authorizableLookup.getTenant());
    return entityFactory.createUserGroupEntity(newUserGroupDto, dtoFactory.createRevisionDTO(new FlowModification(revision, creator)), permissions);
}