Example 11 with Attribute
use of org.gluu.oxtrust.model.scim2.annotations.Attribute in project oxTrust by GluuFederation.
the class Scim2PatchService method applyPatchOperationWithValueFilter.
private BaseScimResource applyPatchOperationWithValueFilter(BaseScimResource resource, PatchOperation operation, String valSelFilter, String attribute, String subAttribute) throws SCIMException, InvalidAttributeValueException {
String path = operation.getPath();
ObjectMapper mapper = new ObjectMapper();
Class<? extends BaseScimResource> cls = resource.getClass();
Map<String, Object> resourceAsMap = mapper.convertValue(resource, new TypeReference<Map<String, Object>>() {
});
List<Map<String, Object>> list;
Attribute attrAnnot = IntrospectUtil.getFieldAnnotation(attribute, cls, Attribute.class);
if (attrAnnot != null) {
if (!attrAnnot.multiValueClass().equals(NullType.class) && attrAnnot.type().equals(AttributeDefinition.Type.COMPLEX)) {
Object colObject = resourceAsMap.get(attribute);
list = colObject == null ? null : new ArrayList<Map<String, Object>>((Collection<Map<String, Object>>) colObject);
} else
throw new SCIMException(String.format("Attribute '%s' expected to be complex multi-valued", attribute));
} else
throw new SCIMException(String.format("Attribute '%s' not recognized or expected to be complex multi-valued", attribute));
if (list == null)
log.info("applyPatchOperationWithValueFilter. List of values for {} is empty. Operation has no effect", attribute);
else {
try {
valSelFilter = FilterUtil.preprocess(valSelFilter, cls);
ParseTree parseTree = filterService.getParseTree(valSelFilter);
List<Integer> matchingIndexes = new ArrayList<Integer>();
for (int i = 0; i < list.size(); i++) {
if (filterService.complexAttributeMatch(parseTree, list.get(i), attribute, cls))
// Important: add so that resulting list is reverse-ordered
matchingIndexes.add(0, i);
}
if (subAttribute.length() > 0 && matchingIndexes.size() > 0 && operation.getType().equals(PatchOperationType.REMOVE)) {
// per spec (section 3.5.2.2 RFC 7644) subAttribute must not be required or read-only
Attribute subAttrAnnot = IntrospectUtil.getFieldAnnotation(attribute + "." + subAttribute, cls, Attribute.class);
if (subAttrAnnot != null && (subAttrAnnot.mutability().equals(READ_ONLY) || subAttrAnnot.isRequired()))
throw new InvalidAttributeValueException("Cannot remove read-only or required attribute " + attribute + "." + subAttribute);
}
/*
Here we differ from spec (see section 3.5.2.3/4 of RFC7644. If no record match is made, we are supposed to
return error 400 with scimType of noTarget. But this is clearly inconvenient
*/
log.info("There are {} entries matching the filter '{}'", matchingIndexes.size(), path);
for (Integer index : matchingIndexes) {
if (operation.getType().equals(PatchOperationType.REMOVE)) {
if (// Remove the whole item
subAttribute.length() == 0)
// If intValue is not used, the remove(Object) method is called!
list.remove(index.intValue());
else
// remove subattribute only
list.get(index).remove(subAttribute);
} else
applyPartialUpdate(attribute, subAttribute, list, index, operation.getValue(), cls);
}
log.trace("New {} list is:\n{}", attribute, mapper.writeValueAsString(list));
resourceAsMap.put(attribute, list.size() == 0 ? null : list);
resource = mapper.convertValue(resourceAsMap, cls);
} catch (InvalidAttributeValueException ei) {
throw ei;
} catch (Exception e) {
log.info("Error processing Patch operation with value selection path '{}'", path);
log.error(e.getMessage(), e);
throw new SCIMException(e.getMessage(), e);
}
}
return resource;
}
Also used :
Attribute(org.gluu.oxtrust.model.scim2.annotations.Attribute)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
ObjectMapper(org.codehaus.jackson.map.ObjectMapper)
ParseTree(org.antlr.v4.runtime.tree.ParseTree)
Example 12 with Attribute
use of org.gluu.oxtrust.model.scim2.annotations.Attribute in project oxTrust by GluuFederation.
the class Scim2UserService method transferExtendedAttributesToResource.
private void transferExtendedAttributesToResource(GluuCustomPerson person, BaseScimResource resource) {
log.debug("transferExtendedAttributesToResource of type {}", ScimResourceUtil.getType(resource.getClass()));
// Gets the list of extensions associated to the resource passed. In practice, this will be at most a singleton list
List<Extension> extensions = extService.getResourceExtensions(resource.getClass());
// Iterate over every extension to copy extended attributes from person to resource
for (Extension extension : extensions) {
Map<String, ExtensionField> fields = extension.getFields();
// Create empty map to store the values of the extended attributes found for current extension in object person
Map<String, Object> map = new HashMap<String, Object>();
log.debug("transferExtendedAttributesToResource. Revising attributes of extension '{}'", extension.getUrn());
// Iterate over every attribute part of this extension
for (String attr : fields.keySet()) {
// Gets the values associated to this attribute that were found in LDAP
String[] values = person.getAttributes(attr);
if (values != null) {
log.debug("transferExtendedAttributesToResource. Copying to resource the value(s) for attribute '{}'", attr);
ExtensionField field = fields.get(attr);
if (field.isMultiValued())
map.put(attr, extService.convertValues(field, values));
else
map.put(attr, extService.convertValues(field, values).get(0));
}
}
// Stores all extended attributes (with their values) in the resource object
if (map.size() > 0) {
resource.addCustomAttributes(extension.getUrn(), map);
}
}
for (String urn : resource.getCustomAttributes().keySet()) resource.getSchemas().add(urn);
}
Also used :
Extension(org.gluu.oxtrust.model.scim2.extensions.Extension)
ExtensionField(org.gluu.oxtrust.model.scim2.extensions.ExtensionField)
HashMap(java.util.HashMap)
Example 13 with Attribute
use of org.gluu.oxtrust.model.scim2.annotations.Attribute in project oxTrust by GluuFederation.
the class Scim2UserService method transferExtendedAttributesToPerson.
/**
* Takes all extended attributes found in the SCIM resource and copies them to a GluuCustomPerson
* This method is called after validations take place (see associated decorator for User Service), so all inputs are
* OK and can go straight to LDAP with no runtime surprises
* @param resource A SCIM resource used as origin of data
* @param person a GluuCustomPerson used as destination
*/
private void transferExtendedAttributesToPerson(BaseScimResource resource, GluuCustomPerson person) {
try {
// Gets all the extended attributes for this resource
Map<String, Object> extendedAttrs = resource.getCustomAttributes();
// Iterates over all extensions this type of resource might have
for (Extension extension : extService.getResourceExtensions(resource.getClass())) {
Object val = extendedAttrs.get(extension.getUrn());
if (val != null) {
// Obtains the attribute/value(s) pairs in the current extension
Map<String, Object> attrsMap = IntrospectUtil.strObjMap(val);
for (String attribute : attrsMap.keySet()) {
Object value = attrsMap.get(attribute);
// Ignore if the attribute is unassigned in this resource: destination will not be changed in this regard
if (value != null) {
// Get properly formatted string representations for the value(s) associated to the attribute
List<String> values = extService.getStringAttributeValues(extension.getFields().get(attribute), value);
log.debug("transferExtendedAttributesToPerson. Setting attribute '{}' with values {}", attribute, values.toString());
person.setAttribute(attribute, values.toArray(new String[] {}));
}
}
}
}
} catch (Exception e) {
log.error(e.getMessage(), e);
}
}
Also used :
Extension(org.gluu.oxtrust.model.scim2.extensions.Extension)
InvalidAttributeValueException(javax.management.InvalidAttributeValueException)
WebApplicationException(javax.ws.rs.WebApplicationException)
Example 14 with Attribute
use of org.gluu.oxtrust.model.scim2.annotations.Attribute in project oxTrust by GluuFederation.
the class IntrospectUtil method findFieldFromPath.
/**
* Inspects a class to search for a field that corresponds to the path passed using dot notation. Every piece of the
* path (separated by the a dot '.') is expected to have a field with the same name in the class inspected. When such
* a field is found, the remainder of the path is processed using the class associated to the field, until the path is
* fully consumed.
* <p>This method starts from an initial class and visits ascendingly the class hierarchy with a route determined
* by the components found in the path parameter.</p>
* @param initcls Class to start the search from
* @param path A string denoting a path to a target attribute. Examples of valid paths can be: displayName, name.givenName,
* addresses.locality
* @return A Field that represents the terminal portion of the path, for instance "locality" field for "addresses.locality".
* If no such field is found (because at some point, there was no route to go), null is returned.
*/
public static Field findFieldFromPath(Class<?> initcls, String path) {
Class cls = initcls;
Field f = null;
for (String prop : path.split("\\.")) {
f = findField(cls, prop);
if (f != null) {
cls = f.getType();
if (isCollection(cls)) {
Attribute attrAnnot = f.getAnnotation(Attribute.class);
if (attrAnnot != null)
cls = attrAnnot.multiValueClass();
}
} else
break;
}
return f;
}Example 15 with Attribute
use of org.gluu.oxtrust.model.scim2.annotations.Attribute in project oxTrust by GluuFederation.
the class ResourceValidator method validateValidableAttributes.
/**
* Inspects the resource passed in the constructor and applies validations for every attribute annotated with
* {@link Validator}. Validations are of different nature as seen{@link Validations here}.
* @throws SCIMException When a validation does not pass (the {@link Validations#apply(Validations, Object) apply}
* method returns false)
*/
public void validateValidableAttributes() throws SCIMException {
Map<String, List<Method>> map = IntrospectUtil.validableCoreAttrs.get(resourceClass);
for (String attributePath : map.keySet()) {
Field f = IntrospectUtil.findFieldFromPath(resourceClass, attributePath);
Validations valToApply = f.getAnnotation(Validator.class).value();
log.debug("Validating value(s) of attribute '{}'", attributePath);
for (Object val : IntrospectUtil.getAttributeValues(resource, map.get(attributePath))) {
if (val != null && !Validations.apply(valToApply, val)) {
log.error("Error validating attribute '{}', wrong value supplied: '{}'", attributePath, val.toString());
throw new SCIMException(String.format(ATTR_VALIDATION_FAILED, attributePath));
}
}
}
}
Also used :
ExtensionField(org.gluu.oxtrust.model.scim2.extensions.ExtensionField)
Field(java.lang.reflect.Field)
Validations(org.gluu.oxtrust.model.scim2.Validations)
SCIMException(org.gluu.oxtrust.model.exception.SCIMException)
Validator(org.gluu.oxtrust.model.scim2.annotations.Validator)
Aggregations
Attribute (org.gluu.oxtrust.model.scim2.annotations.Attribute)11
SCIMException (org.gluu.oxtrust.model.exception.SCIMException)9
ObjectMapper (org.codehaus.jackson.map.ObjectMapper)8
Extension (org.gluu.oxtrust.model.scim2.extensions.Extension)8
ExtensionField (org.gluu.oxtrust.model.scim2.extensions.ExtensionField)8
Field (java.lang.reflect.Field)6
InvalidAttributeValueException (javax.management.InvalidAttributeValueException)6
GluuCustomPerson (org.gluu.oxtrust.model.GluuCustomPerson)6
ArrayList (java.util.ArrayList)5
Date (java.util.Date)5
GluuAttribute (org.xdi.model.GluuAttribute)5
BigDecimal (java.math.BigDecimal)4
Response (javax.ws.rs.core.Response)4
Extension (org.gluu.oxtrust.model.scim2.Extension)4
ListResponse (org.gluu.oxtrust.model.scim2.ListResponse)4
ApiOperation (com.wordnik.swagger.annotations.ApiOperation)3
URI (java.net.URI)3
Consumes (javax.ws.rs.Consumes)3
DefaultValue (javax.ws.rs.DefaultValue)3
HeaderParam (javax.ws.rs.HeaderParam)3
