Example 1 with SCIMException
use of org.gluu.oxtrust.model.exception.SCIMException in project oxTrust by GluuFederation.
the class FidoDeviceWebService method searchDevices.
@GET
@Produces({ MEDIA_TYPE_SCIM_JSON + UTF8_CHARSET_FRAGMENT, MediaType.APPLICATION_JSON + UTF8_CHARSET_FRAGMENT })
@HeaderParam("Accept")
@DefaultValue(MEDIA_TYPE_SCIM_JSON)
@ProtectedApi
@RefAdjusted
@ApiOperation(value = "Search devices", notes = "Returns a list of devices", response = ListResponse.class)
public Response searchDevices(@QueryParam("userId") String userId, @QueryParam(QUERY_PARAM_FILTER) String filter, @QueryParam(QUERY_PARAM_START_INDEX) Integer startIndex, @QueryParam(QUERY_PARAM_COUNT) Integer count, @QueryParam(QUERY_PARAM_SORT_BY) String sortBy, @QueryParam(QUERY_PARAM_SORT_ORDER) String sortOrder, @QueryParam(QUERY_PARAM_ATTRIBUTES) String attrsList, @QueryParam(QUERY_PARAM_EXCLUDED_ATTRS) String excludedAttrsList) {
Response response;
try {
log.debug("Executing web service method. searchDevices");
sortBy = translateSortByAttribute(FidoDeviceResource.class, sortBy);
ListViewResponse<BaseScimResource> resources = searchDevices(userId, filter, sortBy, SortOrder.getByValue(sortOrder), startIndex, count, endpointUrl);
String json = getListResponseSerialized(resources.getTotalResults(), startIndex, resources.getResult(), attrsList, excludedAttrsList, count == 0);
response = Response.ok(json).location(new URI(endpointUrl)).build();
} catch (SCIMException e) {
log.error(e.getMessage(), e);
response = getErrorResponse(Response.Status.BAD_REQUEST, ErrorScimType.INVALID_FILTER, e.getMessage());
} catch (Exception e) {
log.error("Failure at searchDevices method", e);
response = getErrorResponse(Response.Status.INTERNAL_SERVER_ERROR, "Unexpected error: " + e.getMessage());
}
return response;
}
Also used :
ListResponse(org.gluu.oxtrust.model.scim2.ListResponse)
Response(javax.ws.rs.core.Response)
ListViewResponse(org.gluu.persist.model.ListViewResponse)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
FidoDeviceResource(org.gluu.oxtrust.model.scim2.fido.FidoDeviceResource)
BaseScimResource(org.gluu.oxtrust.model.scim2.BaseScimResource)
URI(java.net.URI)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
DefaultValue(javax.ws.rs.DefaultValue)
HeaderParam(javax.ws.rs.HeaderParam)
RefAdjusted(org.gluu.oxtrust.service.scim2.interceptor.RefAdjusted)
Produces(javax.ws.rs.Produces)
GET(javax.ws.rs.GET)
ApiOperation(com.wordnik.swagger.annotations.ApiOperation)
ProtectedApi(org.gluu.oxtrust.service.filter.ProtectedApi)
Example 2 with SCIMException
use of org.gluu.oxtrust.model.exception.SCIMException in project oxTrust by GluuFederation.
the class GroupWebService method searchGroups.
@GET
@Produces({ MEDIA_TYPE_SCIM_JSON + UTF8_CHARSET_FRAGMENT, MediaType.APPLICATION_JSON + UTF8_CHARSET_FRAGMENT })
@HeaderParam("Accept")
@DefaultValue(MEDIA_TYPE_SCIM_JSON)
@ProtectedApi
@RefAdjusted
@ApiOperation(value = "Search groups", notes = "Returns a list of groups (https://tools.ietf.org/html/rfc7644#section-3.4.2.2)", response = ListResponse.class)
public Response searchGroups(@QueryParam(QUERY_PARAM_FILTER) String filter, @QueryParam(QUERY_PARAM_START_INDEX) Integer startIndex, @QueryParam(QUERY_PARAM_COUNT) Integer count, @QueryParam(QUERY_PARAM_SORT_BY) String sortBy, @QueryParam(QUERY_PARAM_SORT_ORDER) String sortOrder, @QueryParam(QUERY_PARAM_ATTRIBUTES) String attrsList, @QueryParam(QUERY_PARAM_EXCLUDED_ATTRS) String excludedAttrsList) {
Response response;
try {
log.debug("Executing web service method. searchGroups");
sortBy = translateSortByAttribute(GroupResource.class, sortBy);
ListViewResponse<BaseScimResource> resources = scim2GroupService.searchGroups(filter, sortBy, SortOrder.getByValue(sortOrder), startIndex, count, endpointUrl, userWebService.getEndpointUrl(), getMaxCount());
String json = getListResponseSerialized(resources.getTotalResults(), startIndex, resources.getResult(), attrsList, excludedAttrsList, count == 0);
response = Response.ok(json).location(new URI(endpointUrl)).build();
} catch (SCIMException e) {
log.error(e.getMessage(), e);
response = getErrorResponse(Response.Status.BAD_REQUEST, ErrorScimType.INVALID_FILTER, e.getMessage());
} catch (Exception e) {
log.error("Failure at searchGroups method", e);
response = getErrorResponse(Response.Status.INTERNAL_SERVER_ERROR, "Unexpected error: " + e.getMessage());
}
return response;
}
Also used :
ListResponse(org.gluu.oxtrust.model.scim2.ListResponse)
Response(javax.ws.rs.core.Response)
ListViewResponse(org.gluu.persist.model.ListViewResponse)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
BaseScimResource(org.gluu.oxtrust.model.scim2.BaseScimResource)
URI(java.net.URI)
GroupResource(org.gluu.oxtrust.model.scim2.group.GroupResource)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
DefaultValue(javax.ws.rs.DefaultValue)
HeaderParam(javax.ws.rs.HeaderParam)
RefAdjusted(org.gluu.oxtrust.service.scim2.interceptor.RefAdjusted)
Produces(javax.ws.rs.Produces)
GET(javax.ws.rs.GET)
ApiOperation(com.wordnik.swagger.annotations.ApiOperation)
ProtectedApi(org.gluu.oxtrust.service.filter.ProtectedApi)
Example 3 with SCIMException
use of org.gluu.oxtrust.model.exception.SCIMException in project oxTrust by GluuFederation.
the class GroupWebService method patchGroup.
@Path("{id}")
@PATCH
@Consumes({ MEDIA_TYPE_SCIM_JSON, MediaType.APPLICATION_JSON })
@Produces({ MEDIA_TYPE_SCIM_JSON + UTF8_CHARSET_FRAGMENT, MediaType.APPLICATION_JSON + UTF8_CHARSET_FRAGMENT })
@HeaderParam("Accept")
@DefaultValue(MEDIA_TYPE_SCIM_JSON)
@ProtectedApi
@RefAdjusted
@ApiOperation(value = "PATCH operation", notes = "https://tools.ietf.org/html/rfc7644#section-3.5.2", response = GroupResource.class)
public Response patchGroup(PatchRequest request, @PathParam("id") String id, @QueryParam(QUERY_PARAM_ATTRIBUTES) String attrsList, @QueryParam(QUERY_PARAM_EXCLUDED_ATTRS) String excludedAttrsList) {
Response response;
try {
log.debug("Executing web service method. patchGroup");
String usersUrl = userWebService.getEndpointUrl();
GroupResource group = new GroupResource();
// group is not null (check associated decorator method)
GluuGroup gluuGroup = groupService.getGroupByInum(id);
// Fill group instance with all info from gluuGroup
scim2GroupService.transferAttributesToGroupResource(gluuGroup, group, endpointUrl, usersUrl);
// Apply patches one by one in sequence
for (PatchOperation po : request.getOperations()) group = (GroupResource) scim2PatchService.applyPatchOperation(group, po);
// Throws exception if final representation does not pass overall validation
log.debug("patchGroup. Revising final resource representation still passes validations");
executeDefaultValidation(group);
// Update timestamp
String now = ISODateTimeFormat.dateTime().withZoneUTC().print(System.currentTimeMillis());
group.getMeta().setLastModified(now);
// Replaces the information found in gluuGroup with the contents of group
scim2GroupService.replaceGroupInfo(gluuGroup, group, endpointUrl, usersUrl);
String json = resourceSerializer.serialize(group, attrsList, excludedAttrsList);
response = Response.ok(new URI(group.getMeta().getLocation())).entity(json).build();
} catch (InvalidAttributeValueException e) {
log.error(e.getMessage(), e);
response = getErrorResponse(Response.Status.BAD_REQUEST, ErrorScimType.MUTABILITY, e.getMessage());
} catch (SCIMException e) {
response = getErrorResponse(Response.Status.BAD_REQUEST, ErrorScimType.INVALID_SYNTAX, e.getMessage());
} catch (Exception e) {
log.error("Failure at patchGroup method", e);
response = getErrorResponse(Response.Status.INTERNAL_SERVER_ERROR, "Unexpected error: " + e.getMessage());
}
return response;
}
Also used :
ListResponse(org.gluu.oxtrust.model.scim2.ListResponse)
Response(javax.ws.rs.core.Response)
ListViewResponse(org.gluu.persist.model.ListViewResponse)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
PatchOperation(org.gluu.oxtrust.model.scim2.patch.PatchOperation)
GluuGroup(org.gluu.oxtrust.model.GluuGroup)
URI(java.net.URI)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
GroupResource(org.gluu.oxtrust.model.scim2.group.GroupResource)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
Path(javax.ws.rs.Path)
DefaultValue(javax.ws.rs.DefaultValue)
HeaderParam(javax.ws.rs.HeaderParam)
RefAdjusted(org.gluu.oxtrust.service.scim2.interceptor.RefAdjusted)
Consumes(javax.ws.rs.Consumes)
Produces(javax.ws.rs.Produces)
ApiOperation(com.wordnik.swagger.annotations.ApiOperation)
ProtectedApi(org.gluu.oxtrust.service.filter.ProtectedApi)
Example 4 with SCIMException
use of org.gluu.oxtrust.model.exception.SCIMException in project oxTrust by GluuFederation.
the class Scim2PatchService method applyPatchOperationWithValueFilter.
private BaseScimResource applyPatchOperationWithValueFilter(BaseScimResource resource, PatchOperation operation, String valSelFilter, String attribute, String subAttribute) throws SCIMException, InvalidAttributeValueException {
String path = operation.getPath();
ObjectMapper mapper = new ObjectMapper();
Class<? extends BaseScimResource> cls = resource.getClass();
Map<String, Object> resourceAsMap = mapper.convertValue(resource, new TypeReference<Map<String, Object>>() {
});
List<Map<String, Object>> list;
Attribute attrAnnot = IntrospectUtil.getFieldAnnotation(attribute, cls, Attribute.class);
if (attrAnnot != null) {
if (!attrAnnot.multiValueClass().equals(NullType.class) && attrAnnot.type().equals(AttributeDefinition.Type.COMPLEX)) {
Object colObject = resourceAsMap.get(attribute);
list = colObject == null ? null : new ArrayList<Map<String, Object>>((Collection<Map<String, Object>>) colObject);
} else
throw new SCIMException(String.format("Attribute '%s' expected to be complex multi-valued", attribute));
} else
throw new SCIMException(String.format("Attribute '%s' not recognized or expected to be complex multi-valued", attribute));
if (list == null)
log.info("applyPatchOperationWithValueFilter. List of values for {} is empty. Operation has no effect", attribute);
else {
try {
valSelFilter = FilterUtil.preprocess(valSelFilter, cls);
ParseTree parseTree = filterService.getParseTree(valSelFilter);
List<Integer> matchingIndexes = new ArrayList<Integer>();
for (int i = 0; i < list.size(); i++) {
if (filterService.complexAttributeMatch(parseTree, list.get(i), attribute, cls))
// Important: add so that resulting list is reverse-ordered
matchingIndexes.add(0, i);
}
if (subAttribute.length() > 0 && matchingIndexes.size() > 0 && operation.getType().equals(PatchOperationType.REMOVE)) {
// per spec (section 3.5.2.2 RFC 7644) subAttribute must not be required or read-only
Attribute subAttrAnnot = IntrospectUtil.getFieldAnnotation(attribute + "." + subAttribute, cls, Attribute.class);
if (subAttrAnnot != null && (subAttrAnnot.mutability().equals(READ_ONLY) || subAttrAnnot.isRequired()))
throw new InvalidAttributeValueException("Cannot remove read-only or required attribute " + attribute + "." + subAttribute);
}
/*
Here we differ from spec (see section 3.5.2.3/4 of RFC7644. If no record match is made, we are supposed to
return error 400 with scimType of noTarget. But this is clearly inconvenient
*/
log.info("There are {} entries matching the filter '{}'", matchingIndexes.size(), path);
for (Integer index : matchingIndexes) {
if (operation.getType().equals(PatchOperationType.REMOVE)) {
if (// Remove the whole item
subAttribute.length() == 0)
// If intValue is not used, the remove(Object) method is called!
list.remove(index.intValue());
else
// remove subattribute only
list.get(index).remove(subAttribute);
} else
applyPartialUpdate(attribute, subAttribute, list, index, operation.getValue(), cls);
}
log.trace("New {} list is:\n{}", attribute, mapper.writeValueAsString(list));
resourceAsMap.put(attribute, list.size() == 0 ? null : list);
resource = mapper.convertValue(resourceAsMap, cls);
} catch (InvalidAttributeValueException ei) {
throw ei;
} catch (Exception e) {
log.info("Error processing Patch operation with value selection path '{}'", path);
log.error(e.getMessage(), e);
throw new SCIMException(e.getMessage(), e);
}
}
return resource;
}
Also used :
Attribute(org.gluu.oxtrust.model.scim2.annotations.Attribute)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
ObjectMapper(org.codehaus.jackson.map.ObjectMapper)
ParseTree(org.antlr.v4.runtime.tree.ParseTree)
Example 5 with SCIMException
use of org.gluu.oxtrust.model.exception.SCIMException in project oxTrust by GluuFederation.
the class UserWebServiceDecorator method updateUser.
public Response updateUser(UserResource user, String id, String attrsList, String excludedAttrsList) {
Response response;
try {
// Check if the ids match in case the user coming has one
if (user.getId() != null && !user.getId().equals(id))
throw new SCIMException("Parameter id does not match with id attribute of User");
response = validateExistenceOfUser(id);
if (response == null) {
executeValidation(user, true);
if (StringUtils.isNotEmpty(user.getUserName()))
checkUidExistence(user.getUserName(), id);
ScimResourceUtil.adjustPrimarySubAttributes(user);
// Proceed with actual implementation of updateUser method
response = service.updateUser(user, id, attrsList, excludedAttrsList);
}
} catch (DuplicateEntryException e) {
log.error(e.getMessage());
response = getErrorResponse(Response.Status.CONFLICT, ErrorScimType.UNIQUENESS, e.getMessage());
} catch (SCIMException e) {
log.error("Validation check at updateUser returned: {}", e.getMessage());
response = getErrorResponse(Response.Status.BAD_REQUEST, ErrorScimType.INVALID_VALUE, e.getMessage());
}
return response;
}
Also used :
Response(javax.ws.rs.core.Response)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
DuplicateEntryException(org.gluu.persist.exception.operation.DuplicateEntryException)
Aggregations
SCIMException (org.gluu.oxtrust.model.exception.SCIMException)20
Response (javax.ws.rs.core.Response)12
InvalidAttributeValueException (javax.management.InvalidAttributeValueException)8
ApiOperation (com.wordnik.swagger.annotations.ApiOperation)7
URI (java.net.URI)7
DefaultValue (javax.ws.rs.DefaultValue)7
HeaderParam (javax.ws.rs.HeaderParam)7
Produces (javax.ws.rs.Produces)7
ListResponse (org.gluu.oxtrust.model.scim2.ListResponse)7
ProtectedApi (org.gluu.oxtrust.service.filter.ProtectedApi)7
RefAdjusted (org.gluu.oxtrust.service.scim2.interceptor.RefAdjusted)7
ListViewResponse (org.gluu.persist.model.ListViewResponse)7
GET (javax.ws.rs.GET)4
Path (javax.ws.rs.Path)4
BaseScimResource (org.gluu.oxtrust.model.scim2.BaseScimResource)4
DuplicateEntryException (org.gluu.persist.exception.operation.DuplicateEntryException)4
Consumes (javax.ws.rs.Consumes)3
Attribute (org.gluu.oxtrust.model.scim2.annotations.Attribute)3
Extension (org.gluu.oxtrust.model.scim2.extensions.Extension)3
FidoDeviceResource (org.gluu.oxtrust.model.scim2.fido.FidoDeviceResource)3
