Example 11 with Attribute
use of org.identityconnectors.framework.common.objects.Attribute in project syncope by apache.
the class MappingManagerImpl method prepareAttr.
/**
* Prepare an attribute to be sent to a connector instance.
*
* @param provision external resource
* @param mapItem mapping item for the given attribute
* @param any given any object
* @param password clear-text password
* @return connObjectKey + prepared attribute
*/
private Pair<String, Attribute> prepareAttr(final Provision provision, final Item mapItem, final Any<?> any, final String password) {
IntAttrName intAttrName;
try {
intAttrName = intAttrNameParser.parse(mapItem.getIntAttrName(), provision.getAnyType().getKind());
} catch (ParseException e) {
LOG.error("Invalid intAttrName '{}' specified, ignoring", mapItem.getIntAttrName(), e);
return null;
}
boolean readOnlyVirSchema = false;
Schema schema = null;
AttrSchemaType schemaType = AttrSchemaType.String;
if (intAttrName.getSchemaType() != null) {
switch(intAttrName.getSchemaType()) {
case PLAIN:
schema = plainSchemaDAO.find(intAttrName.getSchemaName());
if (schema != null) {
schemaType = schema.getType();
}
break;
case VIRTUAL:
schema = virSchemaDAO.find(intAttrName.getSchemaName());
readOnlyVirSchema = (schema != null && schema.isReadonly());
break;
default:
}
}
List<PlainAttrValue> values = getIntValues(provision, mapItem, intAttrName, any);
LOG.debug("Define mapping for: " + "\n* ExtAttrName " + mapItem.getExtAttrName() + "\n* is connObjectKey " + mapItem.isConnObjectKey() + "\n* is password " + mapItem.isPassword() + "\n* mandatory condition " + mapItem.getMandatoryCondition() + "\n* Schema " + intAttrName.getSchemaName() + "\n* ClassType " + schemaType.getType().getName() + "\n* Values " + values);
Pair<String, Attribute> result;
if (readOnlyVirSchema) {
result = null;
} else {
List<Object> objValues = new ArrayList<>();
for (PlainAttrValue value : values) {
if (FrameworkUtil.isSupportedAttributeType(schemaType.getType())) {
objValues.add(value.getValue());
} else {
objValues.add(value.getValueAsString(schemaType));
}
}
if (mapItem.isConnObjectKey()) {
result = Pair.of(objValues.isEmpty() ? null : objValues.iterator().next().toString(), null);
} else if (mapItem.isPassword() && any instanceof User) {
String passwordAttrValue = password;
if (StringUtils.isBlank(passwordAttrValue)) {
User user = (User) any;
if (user.canDecodePassword()) {
try {
passwordAttrValue = ENCRYPTOR.decode(user.getPassword(), user.getCipherAlgorithm());
} catch (Exception e) {
LOG.error("Could not decode password for {}", user, e);
}
} else if (provision.getResource().isRandomPwdIfNotProvided()) {
try {
passwordAttrValue = passwordGenerator.generate(provision.getResource());
} catch (InvalidPasswordRuleConf e) {
LOG.error("Could not generate policy-compliant random password for {}", user, e);
}
}
}
if (passwordAttrValue == null) {
result = null;
} else {
result = Pair.of(null, AttributeBuilder.buildPassword(passwordAttrValue.toCharArray()));
}
} else if (schema != null && schema.isMultivalue()) {
result = Pair.of(null, AttributeBuilder.build(mapItem.getExtAttrName(), objValues));
} else {
result = Pair.of(null, objValues.isEmpty() ? AttributeBuilder.build(mapItem.getExtAttrName()) : AttributeBuilder.build(mapItem.getExtAttrName(), objValues.iterator().next()));
}
}
return result;
}
Also used :
User(org.apache.syncope.core.persistence.api.entity.user.User)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
InvalidPasswordRuleConf(org.apache.syncope.core.provisioning.api.utils.policy.InvalidPasswordRuleConf)
Schema(org.apache.syncope.core.persistence.api.entity.Schema)
PlainSchema(org.apache.syncope.core.persistence.api.entity.PlainSchema)
DerSchema(org.apache.syncope.core.persistence.api.entity.DerSchema)
VirSchema(org.apache.syncope.core.persistence.api.entity.VirSchema)
ArrayList(java.util.ArrayList)
ParseException(java.text.ParseException)
ParsingValidationException(org.apache.syncope.core.persistence.api.attrvalue.validation.ParsingValidationException)
IntAttrName(org.apache.syncope.core.provisioning.api.IntAttrName)
AttrSchemaType(org.apache.syncope.common.lib.types.AttrSchemaType)
PlainAttrValue(org.apache.syncope.core.persistence.api.entity.PlainAttrValue)
AnyObject(org.apache.syncope.core.persistence.api.entity.anyobject.AnyObject)
ParseException(java.text.ParseException)
Example 12 with Attribute
use of org.identityconnectors.framework.common.objects.Attribute in project syncope by apache.
the class MappingManagerImpl method setIntValues.
@Transactional(readOnly = true)
@Override
public void setIntValues(final Item mapItem, final Attribute attr, final AnyTO anyTO, final AnyUtils anyUtils) {
List<Object> values = null;
if (attr != null) {
values = attr.getValue();
for (ItemTransformer transformer : MappingUtils.getItemTransformers(mapItem)) {
values = transformer.beforePull(mapItem, anyTO, values);
}
}
values = values == null ? Collections.emptyList() : values;
IntAttrName intAttrName;
try {
intAttrName = intAttrNameParser.parse(mapItem.getIntAttrName(), anyUtils.getAnyTypeKind());
} catch (ParseException e) {
LOG.error("Invalid intAttrName '{}' specified, ignoring", mapItem.getIntAttrName(), e);
return;
}
if (intAttrName.getField() != null) {
switch(intAttrName.getField()) {
case "password":
if (anyTO instanceof UserTO && !values.isEmpty()) {
((UserTO) anyTO).setPassword(ConnObjectUtils.getPassword(values.get(0)));
}
break;
case "username":
if (anyTO instanceof UserTO) {
((UserTO) anyTO).setUsername(values.isEmpty() || values.get(0) == null ? null : values.get(0).toString());
}
break;
case "name":
if (anyTO instanceof GroupTO) {
((GroupTO) anyTO).setName(values.isEmpty() || values.get(0) == null ? null : values.get(0).toString());
} else if (anyTO instanceof AnyObjectTO) {
((AnyObjectTO) anyTO).setName(values.isEmpty() || values.get(0) == null ? null : values.get(0).toString());
}
break;
case "mustChangePassword":
if (anyTO instanceof UserTO && !values.isEmpty() && values.get(0) != null) {
((UserTO) anyTO).setMustChangePassword(BooleanUtils.toBoolean(values.get(0).toString()));
}
break;
case "userOwner":
case "groupOwner":
if (anyTO instanceof GroupTO && attr != null) {
// using a special attribute (with schema "", that will be ignored) for carrying the
// GroupOwnerSchema value
AttrTO attrTO = new AttrTO();
attrTO.setSchema(StringUtils.EMPTY);
if (values.isEmpty() || values.get(0) == null) {
attrTO.getValues().add(StringUtils.EMPTY);
} else {
attrTO.getValues().add(values.get(0).toString());
}
((GroupTO) anyTO).getPlainAttrs().add(attrTO);
}
break;
default:
}
} else if (intAttrName.getSchemaType() != null) {
GroupableRelatableTO groupableTO = null;
Group group = null;
if (anyTO instanceof GroupableRelatableTO && intAttrName.getMembershipOfGroup() != null) {
groupableTO = (GroupableRelatableTO) anyTO;
group = groupDAO.findByName(intAttrName.getMembershipOfGroup());
}
switch(intAttrName.getSchemaType()) {
case PLAIN:
AttrTO attrTO = new AttrTO();
attrTO.setSchema(intAttrName.getSchemaName());
PlainSchema schema = plainSchemaDAO.find(intAttrName.getSchemaName());
for (Object value : values) {
AttrSchemaType schemaType = schema == null ? AttrSchemaType.String : schema.getType();
if (value != null) {
PlainAttrValue attrValue = anyUtils.newPlainAttrValue();
switch(schemaType) {
case String:
attrValue.setStringValue(value.toString());
break;
case Binary:
attrValue.setBinaryValue((byte[]) value);
break;
default:
try {
attrValue.parseValue(schema, value.toString());
} catch (ParsingValidationException e) {
LOG.error("While parsing provided value {}", value, e);
attrValue.setStringValue(value.toString());
schemaType = AttrSchemaType.String;
}
break;
}
attrTO.getValues().add(attrValue.getValueAsString(schemaType));
}
}
if (groupableTO == null || group == null) {
anyTO.getPlainAttrs().add(attrTO);
} else {
Optional<MembershipTO> membership = groupableTO.getMembership(group.getKey());
if (!membership.isPresent()) {
membership = Optional.of(new MembershipTO.Builder().group(group.getKey(), group.getName()).build());
groupableTO.getMemberships().add(membership.get());
}
membership.get().getPlainAttrs().add(attrTO);
}
break;
case DERIVED:
attrTO = new AttrTO();
attrTO.setSchema(intAttrName.getSchemaName());
if (groupableTO == null || group == null) {
anyTO.getDerAttrs().add(attrTO);
} else {
Optional<MembershipTO> membership = groupableTO.getMembership(group.getKey());
if (!membership.isPresent()) {
membership = Optional.of(new MembershipTO.Builder().group(group.getKey(), group.getName()).build());
groupableTO.getMemberships().add(membership.get());
}
membership.get().getDerAttrs().add(attrTO);
}
break;
case VIRTUAL:
attrTO = new AttrTO();
attrTO.setSchema(intAttrName.getSchemaName());
// virtual attributes don't get transformed, iterate over original attr.getValue()
if (attr != null && attr.getValue() != null && !attr.getValue().isEmpty()) {
attr.getValue().stream().filter(value -> value != null).forEachOrdered(value -> attrTO.getValues().add(value.toString()));
}
if (groupableTO == null || group == null) {
anyTO.getVirAttrs().add(attrTO);
} else {
Optional<MembershipTO> membership = groupableTO.getMembership(group.getKey());
if (!membership.isPresent()) {
membership = Optional.of(new MembershipTO.Builder().group(group.getKey(), group.getName()).build());
groupableTO.getMemberships().add(membership.get());
}
membership.get().getVirAttrs().add(attrTO);
}
break;
default:
}
}
}
Also used :
Date(java.util.Date)
Realm(org.apache.syncope.core.persistence.api.entity.Realm)
PlainAttr(org.apache.syncope.core.persistence.api.entity.PlainAttr)
LoggerFactory(org.slf4j.LoggerFactory)
Autowired(org.springframework.beans.factory.annotation.Autowired)
Schema(org.apache.syncope.core.persistence.api.entity.Schema)
InvalidPasswordRuleConf(org.apache.syncope.core.provisioning.api.utils.policy.InvalidPasswordRuleConf)
StringUtils(org.apache.commons.lang3.StringUtils)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
GroupDAO(org.apache.syncope.core.persistence.api.dao.GroupDAO)
Pair(org.apache.commons.lang3.tuple.Pair)
AttrSchemaType(org.apache.syncope.common.lib.types.AttrSchemaType)
AnyObjectDAO(org.apache.syncope.core.persistence.api.dao.AnyObjectDAO)
ConnObjectUtils(org.apache.syncope.core.provisioning.java.utils.ConnObjectUtils)
GroupableRelatableTO(org.apache.syncope.common.lib.to.GroupableRelatableTO)
OrgUnit(org.apache.syncope.core.persistence.api.entity.resource.OrgUnit)
ParseException(java.text.ParseException)
OperationalAttributes(org.identityconnectors.framework.common.objects.OperationalAttributes)
UserDAO(org.apache.syncope.core.persistence.api.dao.UserDAO)
OrgUnitItem(org.apache.syncope.core.persistence.api.entity.resource.OrgUnitItem)
DerAttrHandler(org.apache.syncope.core.provisioning.api.DerAttrHandler)
Set(java.util.Set)
PlainAttrValue(org.apache.syncope.core.persistence.api.entity.PlainAttrValue)
GroupTO(org.apache.syncope.common.lib.to.GroupTO)
AnyTypeDAO(org.apache.syncope.core.persistence.api.dao.AnyTypeDAO)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
List(java.util.List)
DerSchemaDAO(org.apache.syncope.core.persistence.api.dao.DerSchemaDAO)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
AttributeUtil(org.identityconnectors.framework.common.objects.AttributeUtil)
AttributeBuilder(org.identityconnectors.framework.common.objects.AttributeBuilder)
PlainSchema(org.apache.syncope.core.persistence.api.entity.PlainSchema)
Group(org.apache.syncope.core.persistence.api.entity.group.Group)
Optional(java.util.Optional)
IntAttrName(org.apache.syncope.core.provisioning.api.IntAttrName)
VirAttrCache(org.apache.syncope.core.provisioning.api.cache.VirAttrCache)
ApplicationDAO(org.apache.syncope.core.persistence.api.dao.ApplicationDAO)
ItemTransformer(org.apache.syncope.core.provisioning.api.data.ItemTransformer)
AttrTO(org.apache.syncope.common.lib.to.AttrTO)
AnyUtilsFactory(org.apache.syncope.core.persistence.api.entity.AnyUtilsFactory)
RealmTO(org.apache.syncope.common.lib.to.RealmTO)
GroupableRelatable(org.apache.syncope.core.persistence.api.entity.GroupableRelatable)
AnyTO(org.apache.syncope.common.lib.to.AnyTO)
FrameworkUtil(org.identityconnectors.framework.common.FrameworkUtil)
BooleanUtils(org.apache.commons.lang3.BooleanUtils)
PasswordGenerator(org.apache.syncope.core.spring.security.PasswordGenerator)
ArrayList(java.util.ArrayList)
HashSet(java.util.HashSet)
Application(org.apache.syncope.core.persistence.api.entity.Application)
DerSchema(org.apache.syncope.core.persistence.api.entity.DerSchema)
MappingManager(org.apache.syncope.core.provisioning.api.MappingManager)
FieldUtils(org.apache.commons.lang3.reflect.FieldUtils)
Item(org.apache.syncope.core.persistence.api.entity.resource.Item)
RealmDAO(org.apache.syncope.core.persistence.api.dao.RealmDAO)
MembershipTO(org.apache.syncope.common.lib.to.MembershipTO)
Mapping(org.apache.syncope.core.persistence.api.entity.resource.Mapping)
Encryptor(org.apache.syncope.core.spring.security.Encryptor)
Logger(org.slf4j.Logger)
AnyObject(org.apache.syncope.core.persistence.api.entity.anyobject.AnyObject)
PlainSchemaDAO(org.apache.syncope.core.persistence.api.dao.PlainSchemaDAO)
VirAttrHandler(org.apache.syncope.core.provisioning.api.VirAttrHandler)
User(org.apache.syncope.core.persistence.api.entity.user.User)
Membership(org.apache.syncope.core.persistence.api.entity.Membership)
Name(org.identityconnectors.framework.common.objects.Name)
VirSchema(org.apache.syncope.core.persistence.api.entity.VirSchema)
MappingUtils(org.apache.syncope.core.provisioning.java.utils.MappingUtils)
Component(org.springframework.stereotype.Component)
VirSchemaDAO(org.apache.syncope.core.persistence.api.dao.VirSchemaDAO)
UserTO(org.apache.syncope.common.lib.to.UserTO)
AnyUtils(org.apache.syncope.core.persistence.api.entity.AnyUtils)
Collections(java.util.Collections)
Any(org.apache.syncope.core.persistence.api.entity.Any)
DateFormatUtils(org.apache.commons.lang3.time.DateFormatUtils)
AnyObjectTO(org.apache.syncope.common.lib.to.AnyObjectTO)
ParsingValidationException(org.apache.syncope.core.persistence.api.attrvalue.validation.ParsingValidationException)
Transactional(org.springframework.transaction.annotation.Transactional)
Group(org.apache.syncope.core.persistence.api.entity.group.Group)
Optional(java.util.Optional)
ItemTransformer(org.apache.syncope.core.provisioning.api.data.ItemTransformer)
AttrTO(org.apache.syncope.common.lib.to.AttrTO)
IntAttrName(org.apache.syncope.core.provisioning.api.IntAttrName)
GroupTO(org.apache.syncope.common.lib.to.GroupTO)
ParsingValidationException(org.apache.syncope.core.persistence.api.attrvalue.validation.ParsingValidationException)
AnyObjectTO(org.apache.syncope.common.lib.to.AnyObjectTO)
GroupableRelatableTO(org.apache.syncope.common.lib.to.GroupableRelatableTO)
UserTO(org.apache.syncope.common.lib.to.UserTO)
AttrSchemaType(org.apache.syncope.common.lib.types.AttrSchemaType)
MembershipTO(org.apache.syncope.common.lib.to.MembershipTO)
PlainAttrValue(org.apache.syncope.core.persistence.api.entity.PlainAttrValue)
AnyObject(org.apache.syncope.core.persistence.api.entity.anyobject.AnyObject)
ParseException(java.text.ParseException)
PlainSchema(org.apache.syncope.core.persistence.api.entity.PlainSchema)
Transactional(org.springframework.transaction.annotation.Transactional)
Example 13 with Attribute
use of org.identityconnectors.framework.common.objects.Attribute in project syncope by apache.
the class AbstractPropagationTaskExecutor method execute.
protected TaskExec execute(final PropagationTaskTO taskTO, final PropagationReporter reporter) {
PropagationTask task = entityFactory.newEntity(PropagationTask.class);
task.setResource(resourceDAO.find(taskTO.getResource()));
task.setObjectClassName(taskTO.getObjectClassName());
task.setAnyTypeKind(taskTO.getAnyTypeKind());
task.setAnyType(taskTO.getAnyType());
task.setEntityKey(taskTO.getEntityKey());
task.setOperation(taskTO.getOperation());
task.setConnObjectKey(taskTO.getConnObjectKey());
task.setOldConnObjectKey(taskTO.getOldConnObjectKey());
Set<Attribute> attributes = new HashSet<>();
if (StringUtils.isNotBlank(taskTO.getAttributes())) {
attributes.addAll(Arrays.asList(POJOHelper.deserialize(taskTO.getAttributes(), Attribute[].class)));
}
task.setAttributes(attributes);
List<PropagationActions> actions = getPropagationActions(task.getResource());
String resource = task.getResource().getKey();
Date start = new Date();
TaskExec execution = entityFactory.newEntity(TaskExec.class);
execution.setStatus(PropagationTaskExecStatus.CREATED.name());
String taskExecutionMessage = null;
String failureReason = null;
// Flag to state whether any propagation has been attempted
AtomicReference<Boolean> propagationAttempted = new AtomicReference<>(false);
ConnectorObject beforeObj = null;
ConnectorObject afterObj = null;
Provision provision = null;
OrgUnit orgUnit = null;
Uid uid = null;
Connector connector = null;
Result result;
try {
provision = task.getResource().getProvision(new ObjectClass(task.getObjectClassName())).orElse(null);
orgUnit = task.getResource().getOrgUnit();
connector = connFactory.getConnector(task.getResource());
// Try to read remote object BEFORE any actual operation
beforeObj = provision == null && orgUnit == null ? null : orgUnit == null ? getRemoteObject(task, connector, provision, false) : getRemoteObject(task, connector, orgUnit, false);
for (PropagationActions action : actions) {
action.before(task, beforeObj);
}
switch(task.getOperation()) {
case CREATE:
case UPDATE:
uid = createOrUpdate(task, beforeObj, connector, propagationAttempted);
break;
case DELETE:
uid = delete(task, beforeObj, connector, propagationAttempted);
break;
default:
}
execution.setStatus(propagationAttempted.get() ? PropagationTaskExecStatus.SUCCESS.name() : PropagationTaskExecStatus.NOT_ATTEMPTED.name());
LOG.debug("Successfully propagated to {}", task.getResource());
result = Result.SUCCESS;
} catch (Exception e) {
result = Result.FAILURE;
LOG.error("Exception during provision on resource " + resource, e);
if (e instanceof ConnectorException && e.getCause() != null) {
taskExecutionMessage = e.getCause().getMessage();
if (e.getCause().getMessage() == null) {
failureReason = e.getMessage();
} else {
failureReason = e.getMessage() + "\n\n Cause: " + e.getCause().getMessage().split("\n")[0];
}
} else {
taskExecutionMessage = ExceptionUtils2.getFullStackTrace(e);
if (e.getCause() == null) {
failureReason = e.getMessage();
} else {
failureReason = e.getMessage() + "\n\n Cause: " + e.getCause().getMessage().split("\n")[0];
}
}
try {
execution.setStatus(PropagationTaskExecStatus.FAILURE.name());
} catch (Exception wft) {
LOG.error("While executing KO action on {}", execution, wft);
}
propagationAttempted.set(true);
actions.forEach(action -> {
action.onError(task, execution, e);
});
} finally {
// Try to read remote object AFTER any actual operation
if (connector != null) {
if (uid != null) {
task.setConnObjectKey(uid.getUidValue());
}
try {
afterObj = provision == null && orgUnit == null ? null : orgUnit == null ? getRemoteObject(task, connector, provision, true) : getRemoteObject(task, connector, orgUnit, true);
} catch (Exception ignore) {
// ignore exception
LOG.error("Error retrieving after object", ignore);
}
}
if (task.getOperation() != ResourceOperation.DELETE && afterObj == null && uid != null) {
afterObj = new ConnectorObjectBuilder().setObjectClass(new ObjectClass(task.getObjectClassName())).setUid(uid).setName(AttributeUtil.getNameFromAttributes(task.getAttributes())).build();
}
execution.setStart(start);
execution.setMessage(taskExecutionMessage);
execution.setEnd(new Date());
LOG.debug("Execution finished: {}", execution);
if (hasToBeregistered(task, execution)) {
LOG.debug("Execution to be stored: {}", execution);
execution.setTask(task);
task.add(execution);
taskDAO.save(task);
// needed to generate a value for the execution key
taskDAO.flush();
}
if (reporter != null) {
reporter.onSuccessOrNonPriorityResourceFailures(taskTO, PropagationTaskExecStatus.valueOf(execution.getStatus()), failureReason, beforeObj, afterObj);
}
}
for (PropagationActions action : actions) {
action.after(task, execution, afterObj);
}
// SYNCOPE-1136
String anyTypeKind = task.getAnyTypeKind() == null ? "realm" : task.getAnyTypeKind().name().toLowerCase();
String operation = task.getOperation().name().toLowerCase();
boolean notificationsAvailable = notificationManager.notificationsAvailable(AuditElements.EventCategoryType.PROPAGATION, anyTypeKind, resource, operation);
boolean auditRequested = auditManager.auditRequested(AuditElements.EventCategoryType.PROPAGATION, anyTypeKind, resource, operation);
if (notificationsAvailable || auditRequested) {
ExecTO execTO = taskDataBinder.getExecTO(execution);
notificationManager.createTasks(AuditElements.EventCategoryType.PROPAGATION, anyTypeKind, resource, operation, result, beforeObj, new Object[] { execTO, afterObj }, taskTO);
auditManager.audit(AuditElements.EventCategoryType.PROPAGATION, anyTypeKind, resource, operation, result, beforeObj, new Object[] { execTO, afterObj }, taskTO);
}
return execution;
}
Also used :
OrgUnit(org.apache.syncope.core.persistence.api.entity.resource.OrgUnit)
Arrays(java.util.Arrays)
Date(java.util.Date)
LoggerFactory(org.slf4j.LoggerFactory)
Autowired(org.springframework.beans.factory.annotation.Autowired)
AuditElements(org.apache.syncope.common.lib.types.AuditElements)
ResourceOperation(org.apache.syncope.common.lib.types.ResourceOperation)
NotificationManager(org.apache.syncope.core.provisioning.api.notification.NotificationManager)
StringUtils(org.apache.commons.lang3.StringUtils)
PropagationTask(org.apache.syncope.core.persistence.api.entity.task.PropagationTask)
VirAttrCacheValue(org.apache.syncope.core.provisioning.api.cache.VirAttrCacheValue)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
PropagationTaskTO(org.apache.syncope.common.lib.to.PropagationTaskTO)
GroupDAO(org.apache.syncope.core.persistence.api.dao.GroupDAO)
AnyObjectDAO(org.apache.syncope.core.persistence.api.dao.AnyObjectDAO)
ConnObjectUtils(org.apache.syncope.core.provisioning.java.utils.ConnObjectUtils)
Map(java.util.Map)
OrgUnit(org.apache.syncope.core.persistence.api.entity.resource.OrgUnit)
ExceptionUtils2(org.apache.syncope.core.provisioning.api.utils.ExceptionUtils2)
ExecTO(org.apache.syncope.common.lib.to.ExecTO)
UserDAO(org.apache.syncope.core.persistence.api.dao.UserDAO)
OrgUnitItem(org.apache.syncope.core.persistence.api.entity.resource.OrgUnitItem)
Collection(java.util.Collection)
Set(java.util.Set)
PropagationActions(org.apache.syncope.core.provisioning.api.propagation.PropagationActions)
Collectors(java.util.stream.Collectors)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
ImplementationManager(org.apache.syncope.core.spring.ImplementationManager)
EntityFactory(org.apache.syncope.core.persistence.api.entity.EntityFactory)
Connector(org.apache.syncope.core.provisioning.api.Connector)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
List(java.util.List)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
AttributeUtil(org.identityconnectors.framework.common.objects.AttributeUtil)
TaskUtilsFactory(org.apache.syncope.core.persistence.api.entity.task.TaskUtilsFactory)
AuditManager(org.apache.syncope.core.provisioning.api.AuditManager)
AttributeBuilder(org.identityconnectors.framework.common.objects.AttributeBuilder)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
ConnectorFactory(org.apache.syncope.core.provisioning.api.ConnectorFactory)
PropagationTaskExecutor(org.apache.syncope.core.provisioning.api.propagation.PropagationTaskExecutor)
Optional(java.util.Optional)
ExternalResourceDAO(org.apache.syncope.core.persistence.api.dao.ExternalResourceDAO)
VirAttrCache(org.apache.syncope.core.provisioning.api.cache.VirAttrCache)
POJOHelper(org.apache.syncope.core.provisioning.api.serialization.POJOHelper)
PropagationTaskExecStatus(org.apache.syncope.common.lib.types.PropagationTaskExecStatus)
TaskDataBinder(org.apache.syncope.core.provisioning.api.data.TaskDataBinder)
ConnectorObjectBuilder(org.identityconnectors.framework.common.objects.ConnectorObjectBuilder)
AtomicReference(java.util.concurrent.atomic.AtomicReference)
ConnectorException(org.identityconnectors.framework.common.exceptions.ConnectorException)
ArrayList(java.util.ArrayList)
TaskDAO(org.apache.syncope.core.persistence.api.dao.TaskDAO)
HashSet(java.util.HashSet)
Result(org.apache.syncope.common.lib.types.AuditElements.Result)
TaskExec(org.apache.syncope.core.persistence.api.entity.task.TaskExec)
TimeoutException(org.apache.syncope.core.provisioning.api.TimeoutException)
Logger(org.slf4j.Logger)
Uid(org.identityconnectors.framework.common.objects.Uid)
PropagationException(org.apache.syncope.core.provisioning.api.propagation.PropagationException)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
PropagationReporter(org.apache.syncope.core.provisioning.api.propagation.PropagationReporter)
Name(org.identityconnectors.framework.common.objects.Name)
MappingUtils(org.apache.syncope.core.provisioning.java.utils.MappingUtils)
ExternalResource(org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)
VirSchemaDAO(org.apache.syncope.core.persistence.api.dao.VirSchemaDAO)
Collections(java.util.Collections)
TraceLevel(org.apache.syncope.common.lib.types.TraceLevel)
Transactional(org.springframework.transaction.annotation.Transactional)
PropagationActions(org.apache.syncope.core.provisioning.api.propagation.PropagationActions)
Connector(org.apache.syncope.core.provisioning.api.Connector)
PropagationTask(org.apache.syncope.core.persistence.api.entity.task.PropagationTask)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
ConnectorObjectBuilder(org.identityconnectors.framework.common.objects.ConnectorObjectBuilder)
Result(org.apache.syncope.common.lib.types.AuditElements.Result)
HashSet(java.util.HashSet)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
ExecTO(org.apache.syncope.common.lib.to.ExecTO)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
AtomicReference(java.util.concurrent.atomic.AtomicReference)
Date(java.util.Date)
ConnectorException(org.identityconnectors.framework.common.exceptions.ConnectorException)
TimeoutException(org.apache.syncope.core.provisioning.api.TimeoutException)
PropagationException(org.apache.syncope.core.provisioning.api.propagation.PropagationException)
Uid(org.identityconnectors.framework.common.objects.Uid)
TaskExec(org.apache.syncope.core.persistence.api.entity.task.TaskExec)
ConnectorException(org.identityconnectors.framework.common.exceptions.ConnectorException)
Example 14 with Attribute
use of org.identityconnectors.framework.common.objects.Attribute in project syncope by apache.
the class AbstractPropagationTaskExecutor method createOrUpdate.
protected Uid createOrUpdate(final PropagationTask task, final ConnectorObject beforeObj, final Connector connector, final AtomicReference<Boolean> propagationAttempted) {
// set of attributes to be propagated
Set<Attribute> attributes = new HashSet<>(task.getAttributes());
// check if there is any missing or null / empty mandatory attribute
Set<Object> mandatoryAttrNames = new HashSet<>();
Attribute mandatoryMissing = AttributeUtil.find(MANDATORY_MISSING_ATTR_NAME, task.getAttributes());
if (mandatoryMissing != null) {
attributes.remove(mandatoryMissing);
if (beforeObj == null) {
mandatoryAttrNames.addAll(mandatoryMissing.getValue());
}
}
Attribute mandatoryNullOrEmpty = AttributeUtil.find(MANDATORY_NULL_OR_EMPTY_ATTR_NAME, task.getAttributes());
if (mandatoryNullOrEmpty != null) {
attributes.remove(mandatoryNullOrEmpty);
mandatoryAttrNames.addAll(mandatoryNullOrEmpty.getValue());
}
if (!mandatoryAttrNames.isEmpty()) {
throw new IllegalArgumentException("Not attempted because there are mandatory attributes without value(s): " + mandatoryAttrNames);
}
Uid result;
if (beforeObj == null) {
LOG.debug("Create {} on {}", attributes, task.getResource().getKey());
result = connector.create(new ObjectClass(task.getObjectClassName()), attributes, null, propagationAttempted);
} else {
// 1. check if rename is really required
Name newName = AttributeUtil.getNameFromAttributes(attributes);
LOG.debug("Rename required with value {}", newName);
if (newName != null && newName.equals(beforeObj.getName()) && !newName.getNameValue().equals(beforeObj.getUid().getUidValue())) {
LOG.debug("Remote object name unchanged");
attributes.remove(newName);
}
// 2. check wether anything is actually needing to be propagated, i.e. if there is attribute
// difference between beforeObj - just read above from the connector - and the values to be propagated
Map<String, Attribute> originalAttrMap = beforeObj.getAttributes().stream().collect(Collectors.toMap(attr -> attr.getName().toUpperCase(), attr -> attr));
Map<String, Attribute> updateAttrMap = attributes.stream().collect(Collectors.toMap(attr -> attr.getName().toUpperCase(), attr -> attr));
// Only compare attribute from beforeObj that are also being updated
Set<String> skipAttrNames = originalAttrMap.keySet();
skipAttrNames.removeAll(updateAttrMap.keySet());
new HashSet<>(skipAttrNames).forEach(attrName -> {
originalAttrMap.remove(attrName);
});
Set<Attribute> originalAttrs = new HashSet<>(originalAttrMap.values());
if (originalAttrs.equals(attributes)) {
LOG.debug("Don't need to propagate anything: {} is equal to {}", originalAttrs, attributes);
result = AttributeUtil.getUidAttribute(attributes);
} else {
LOG.debug("Attributes that would be updated {}", attributes);
Set<Attribute> strictlyModified = new HashSet<>();
attributes.stream().filter(attr -> (!originalAttrs.contains(attr))).forEachOrdered(attr -> {
strictlyModified.add(attr);
});
// 3. provision entry
LOG.debug("Update {} on {}", strictlyModified, task.getResource().getKey());
result = connector.update(beforeObj.getObjectClass(), new Uid(beforeObj.getUid().getUidValue()), strictlyModified, null, propagationAttempted);
}
}
return result;
}
Also used :
Arrays(java.util.Arrays)
Date(java.util.Date)
LoggerFactory(org.slf4j.LoggerFactory)
Autowired(org.springframework.beans.factory.annotation.Autowired)
AuditElements(org.apache.syncope.common.lib.types.AuditElements)
ResourceOperation(org.apache.syncope.common.lib.types.ResourceOperation)
NotificationManager(org.apache.syncope.core.provisioning.api.notification.NotificationManager)
StringUtils(org.apache.commons.lang3.StringUtils)
PropagationTask(org.apache.syncope.core.persistence.api.entity.task.PropagationTask)
VirAttrCacheValue(org.apache.syncope.core.provisioning.api.cache.VirAttrCacheValue)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
PropagationTaskTO(org.apache.syncope.common.lib.to.PropagationTaskTO)
GroupDAO(org.apache.syncope.core.persistence.api.dao.GroupDAO)
AnyObjectDAO(org.apache.syncope.core.persistence.api.dao.AnyObjectDAO)
ConnObjectUtils(org.apache.syncope.core.provisioning.java.utils.ConnObjectUtils)
Map(java.util.Map)
OrgUnit(org.apache.syncope.core.persistence.api.entity.resource.OrgUnit)
ExceptionUtils2(org.apache.syncope.core.provisioning.api.utils.ExceptionUtils2)
ExecTO(org.apache.syncope.common.lib.to.ExecTO)
UserDAO(org.apache.syncope.core.persistence.api.dao.UserDAO)
OrgUnitItem(org.apache.syncope.core.persistence.api.entity.resource.OrgUnitItem)
Collection(java.util.Collection)
Set(java.util.Set)
PropagationActions(org.apache.syncope.core.provisioning.api.propagation.PropagationActions)
Collectors(java.util.stream.Collectors)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
ImplementationManager(org.apache.syncope.core.spring.ImplementationManager)
EntityFactory(org.apache.syncope.core.persistence.api.entity.EntityFactory)
Connector(org.apache.syncope.core.provisioning.api.Connector)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
List(java.util.List)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
AttributeUtil(org.identityconnectors.framework.common.objects.AttributeUtil)
TaskUtilsFactory(org.apache.syncope.core.persistence.api.entity.task.TaskUtilsFactory)
AuditManager(org.apache.syncope.core.provisioning.api.AuditManager)
AttributeBuilder(org.identityconnectors.framework.common.objects.AttributeBuilder)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
ConnectorFactory(org.apache.syncope.core.provisioning.api.ConnectorFactory)
PropagationTaskExecutor(org.apache.syncope.core.provisioning.api.propagation.PropagationTaskExecutor)
Optional(java.util.Optional)
ExternalResourceDAO(org.apache.syncope.core.persistence.api.dao.ExternalResourceDAO)
VirAttrCache(org.apache.syncope.core.provisioning.api.cache.VirAttrCache)
POJOHelper(org.apache.syncope.core.provisioning.api.serialization.POJOHelper)
PropagationTaskExecStatus(org.apache.syncope.common.lib.types.PropagationTaskExecStatus)
TaskDataBinder(org.apache.syncope.core.provisioning.api.data.TaskDataBinder)
ConnectorObjectBuilder(org.identityconnectors.framework.common.objects.ConnectorObjectBuilder)
AtomicReference(java.util.concurrent.atomic.AtomicReference)
ConnectorException(org.identityconnectors.framework.common.exceptions.ConnectorException)
ArrayList(java.util.ArrayList)
TaskDAO(org.apache.syncope.core.persistence.api.dao.TaskDAO)
HashSet(java.util.HashSet)
Result(org.apache.syncope.common.lib.types.AuditElements.Result)
TaskExec(org.apache.syncope.core.persistence.api.entity.task.TaskExec)
TimeoutException(org.apache.syncope.core.provisioning.api.TimeoutException)
Logger(org.slf4j.Logger)
Uid(org.identityconnectors.framework.common.objects.Uid)
PropagationException(org.apache.syncope.core.provisioning.api.propagation.PropagationException)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
PropagationReporter(org.apache.syncope.core.provisioning.api.propagation.PropagationReporter)
Name(org.identityconnectors.framework.common.objects.Name)
MappingUtils(org.apache.syncope.core.provisioning.java.utils.MappingUtils)
ExternalResource(org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)
VirSchemaDAO(org.apache.syncope.core.persistence.api.dao.VirSchemaDAO)
Collections(java.util.Collections)
TraceLevel(org.apache.syncope.common.lib.types.TraceLevel)
Transactional(org.springframework.transaction.annotation.Transactional)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
Name(org.identityconnectors.framework.common.objects.Name)
Uid(org.identityconnectors.framework.common.objects.Uid)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
HashSet(java.util.HashSet)
Example 15 with Attribute
use of org.identityconnectors.framework.common.objects.Attribute in project syncope by apache.
the class ResourceLogic method readConnObject.
@PreAuthorize("hasRole('" + StandardEntitlement.RESOURCE_GET_CONNOBJECT + "')")
@Transactional(readOnly = true)
public ConnObjectTO readConnObject(final String key, final String anyTypeKey, final String anyKey) {
Triple<ExternalResource, AnyType, Provision> init = connObjectInit(key, anyTypeKey);
// 1. find any
Any<?> any = init.getMiddle().getKind() == AnyTypeKind.USER ? userDAO.find(anyKey) : init.getMiddle().getKind() == AnyTypeKind.ANY_OBJECT ? anyObjectDAO.find(anyKey) : groupDAO.find(anyKey);
if (any == null) {
throw new NotFoundException(init.getMiddle() + " " + anyKey);
}
// 2. build connObjectKeyItem
Optional<MappingItem> connObjectKeyItem = MappingUtils.getConnObjectKeyItem(init.getRight());
if (!connObjectKeyItem.isPresent()) {
throw new NotFoundException("ConnObjectKey mapping for " + init.getMiddle() + " " + anyKey + " on resource '" + key + "'");
}
Optional<String> connObjectKeyValue = mappingManager.getConnObjectKeyValue(any, init.getRight());
// 3. determine attributes to query
Set<MappingItem> linkinMappingItems = virSchemaDAO.findByProvision(init.getRight()).stream().map(virSchema -> virSchema.asLinkingMappingItem()).collect(Collectors.toSet());
Iterator<MappingItem> mapItems = new IteratorChain<>(init.getRight().getMapping().getItems().iterator(), linkinMappingItems.iterator());
// 4. read from the underlying connector
Connector connector = connFactory.getConnector(init.getLeft());
ConnectorObject connectorObject = connector.getObject(init.getRight().getObjectClass(), AttributeBuilder.build(connObjectKeyItem.get().getExtAttrName(), connObjectKeyValue.get()), MappingUtils.buildOperationOptions(mapItems));
if (connectorObject == null) {
throw new NotFoundException("Object " + connObjectKeyValue.get() + " with class " + init.getRight().getObjectClass() + " not found on resource " + key);
}
// 5. build result
Set<Attribute> attributes = connectorObject.getAttributes();
if (AttributeUtil.find(Uid.NAME, attributes) == null) {
attributes.add(connectorObject.getUid());
}
if (AttributeUtil.find(Name.NAME, attributes) == null) {
attributes.add(connectorObject.getName());
}
return ConnObjectUtils.getConnObjectTO(connectorObject);
}
Also used :
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
SyncopeClientException(org.apache.syncope.common.lib.SyncopeClientException)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
AnyType(org.apache.syncope.core.persistence.api.entity.AnyType)
Autowired(org.springframework.beans.factory.annotation.Autowired)
ConnObjectTO(org.apache.syncope.common.lib.to.ConnObjectTO)
StringUtils(org.apache.commons.lang3.StringUtils)
AnyTypeKind(org.apache.syncope.common.lib.types.AnyTypeKind)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
GroupDAO(org.apache.syncope.core.persistence.api.dao.GroupDAO)
Pair(org.apache.commons.lang3.tuple.Pair)
AnyObjectDAO(org.apache.syncope.core.persistence.api.dao.AnyObjectDAO)
ConnObjectUtils(org.apache.syncope.core.provisioning.java.utils.ConnObjectUtils)
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
AuthContextUtils(org.apache.syncope.core.spring.security.AuthContextUtils)
Method(java.lang.reflect.Method)
Triple(org.apache.commons.lang3.tuple.Triple)
ResultsHandler(org.identityconnectors.framework.common.objects.ResultsHandler)
UserDAO(org.apache.syncope.core.persistence.api.dao.UserDAO)
Set(java.util.Set)
ConnInstanceDAO(org.apache.syncope.core.persistence.api.dao.ConnInstanceDAO)
ResourceDataBinder(org.apache.syncope.core.provisioning.api.data.ResourceDataBinder)
Collectors(java.util.stream.Collectors)
NotFoundException(org.apache.syncope.core.persistence.api.dao.NotFoundException)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
AnyTypeDAO(org.apache.syncope.core.persistence.api.dao.AnyTypeDAO)
Connector(org.apache.syncope.core.provisioning.api.Connector)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
List(java.util.List)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
AttributeUtil(org.identityconnectors.framework.common.objects.AttributeUtil)
AttributeBuilder(org.identityconnectors.framework.common.objects.AttributeBuilder)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
ConnectorFactory(org.apache.syncope.core.provisioning.api.ConnectorFactory)
Optional(java.util.Optional)
ExternalResourceDAO(org.apache.syncope.core.persistence.api.dao.ExternalResourceDAO)
StandardEntitlement(org.apache.syncope.common.lib.types.StandardEntitlement)
OrderByClause(org.apache.syncope.core.persistence.api.dao.search.OrderByClause)
ArrayUtils(org.apache.commons.lang3.ArrayUtils)
ConnInstanceDataBinder(org.apache.syncope.core.provisioning.api.data.ConnInstanceDataBinder)
ArrayList(java.util.ArrayList)
RealmUtils(org.apache.syncope.core.provisioning.api.utils.RealmUtils)
DelegatedAdministrationException(org.apache.syncope.core.spring.security.DelegatedAdministrationException)
DuplicateException(org.apache.syncope.core.persistence.api.dao.DuplicateException)
MappingManager(org.apache.syncope.core.provisioning.api.MappingManager)
ClientExceptionType(org.apache.syncope.common.lib.types.ClientExceptionType)
SyncopeConstants(org.apache.syncope.common.lib.SyncopeConstants)
ImmutableTriple(org.apache.commons.lang3.tuple.ImmutableTriple)
Iterator(java.util.Iterator)
ResourceTO(org.apache.syncope.common.lib.to.ResourceTO)
Uid(org.identityconnectors.framework.common.objects.Uid)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
ConnInstance(org.apache.syncope.core.persistence.api.entity.ConnInstance)
Name(org.identityconnectors.framework.common.objects.Name)
ImmutablePair(org.apache.commons.lang3.tuple.ImmutablePair)
MappingUtils(org.apache.syncope.core.provisioning.java.utils.MappingUtils)
ExternalResource(org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)
Component(org.springframework.stereotype.Component)
VirSchemaDAO(org.apache.syncope.core.persistence.api.dao.VirSchemaDAO)
SearchResult(org.identityconnectors.framework.common.objects.SearchResult)
Any(org.apache.syncope.core.persistence.api.entity.Any)
Transactional(org.springframework.transaction.annotation.Transactional)
Connector(org.apache.syncope.core.provisioning.api.Connector)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
NotFoundException(org.apache.syncope.core.persistence.api.dao.NotFoundException)
ExternalResource(org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
AnyType(org.apache.syncope.core.persistence.api.entity.AnyType)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
Transactional(org.springframework.transaction.annotation.Transactional)
Aggregations
Attribute (org.identityconnectors.framework.common.objects.Attribute)35
HashSet (java.util.HashSet)19
ArrayList (java.util.ArrayList)14
ConnectorObject (org.identityconnectors.framework.common.objects.ConnectorObject)12
Transactional (org.springframework.transaction.annotation.Transactional)12
User (org.apache.syncope.core.persistence.api.entity.user.User)11
List (java.util.List)10
Set (java.util.Set)10
MappingItem (org.apache.syncope.core.persistence.api.entity.resource.MappingItem)10
Uid (org.identityconnectors.framework.common.objects.Uid)10
ObjectClass (org.identityconnectors.framework.common.objects.ObjectClass)9
ExternalResource (org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)8
Provision (org.apache.syncope.core.persistence.api.entity.resource.Provision)8
Name (org.identityconnectors.framework.common.objects.Name)8
AttributeBuilder (org.identityconnectors.framework.common.objects.AttributeBuilder)7
Map (java.util.Map)6
StringUtils (org.apache.commons.lang3.StringUtils)6
GroupDAO (org.apache.syncope.core.persistence.api.dao.GroupDAO)6
UserDAO (org.apache.syncope.core.persistence.api.dao.UserDAO)6
OrgUnitItem (org.apache.syncope.core.persistence.api.entity.resource.OrgUnitItem)6
