Example 1 with OperationOptions
use of org.identityconnectors.framework.common.objects.OperationOptions in project midpoint by Evolveum.
the class ConnectorInstanceConnIdImpl method fetchObject.
@Override
public <T extends ShadowType> PrismObject<T> fetchObject(Class<T> type, ResourceObjectIdentification resourceObjectIdentification, AttributesToReturn attributesToReturn, StateReporter reporter, OperationResult parentResult) throws ObjectNotFoundException, CommunicationException, GenericFrameworkException, SchemaException, SecurityViolationException, ConfigurationException {
Validate.notNull(resourceObjectIdentification, "Null primary identifiers");
ObjectClassComplexTypeDefinition objectClassDefinition = resourceObjectIdentification.getObjectClassDefinition();
// Result type for this operation
OperationResult result = parentResult.createMinorSubresult(ConnectorInstance.class.getName() + ".fetchObject");
result.addParam("resourceObjectDefinition", objectClassDefinition);
result.addParam("identification", resourceObjectIdentification);
result.addContext("connector", connectorType);
if (connIdConnectorFacade == null) {
result.recordFatalError("Attempt to use unconfigured connector");
throw new IllegalStateException("Attempt to use unconfigured connector " + ObjectTypeUtil.toShortString(connectorType) + " " + description);
}
// Get UID from the set of identifiers
Uid uid;
try {
uid = getUid(resourceObjectIdentification);
} catch (SchemaException e) {
result.recordFatalError(e);
throw e;
}
if (uid == null) {
result.recordFatalError("Required attribute UID not found in identification set while attempting to fetch object identified by " + resourceObjectIdentification + " from " + description);
throw new IllegalArgumentException("Required attribute UID not found in identification set while attempting to fetch object identified by " + resourceObjectIdentification + " from " + description);
}
ObjectClass icfObjectClass = connIdNameMapper.objectClassToIcf(objectClassDefinition, getSchemaNamespace(), connectorType, legacySchema);
if (icfObjectClass == null) {
result.recordFatalError("Unable to determine object class from QName " + objectClassDefinition.getTypeName() + " while attempting to fetch object identified by " + resourceObjectIdentification + " from " + description);
throw new IllegalArgumentException("Unable to determine object class from QName " + objectClassDefinition.getTypeName() + " while attempting to fetch object identified by " + resourceObjectIdentification + " from " + description);
}
OperationOptionsBuilder optionsBuilder = new OperationOptionsBuilder();
convertToIcfAttrsToGet(objectClassDefinition, attributesToReturn, optionsBuilder);
optionsBuilder.setAllowPartialResults(true);
OperationOptions options = optionsBuilder.build();
ConnectorObject co = null;
try {
// Invoke the ICF connector
co = fetchConnectorObject(reporter, objectClassDefinition, icfObjectClass, uid, options, result);
} catch (CommunicationException ex) {
result.recordFatalError(ex);
// exception.
throw ex;
} catch (GenericFrameworkException ex) {
result.recordFatalError(ex);
// exception.
throw ex;
} catch (ConfigurationException ex) {
result.recordFatalError(ex);
throw ex;
} catch (SecurityViolationException ex) {
result.recordFatalError(ex);
throw ex;
} catch (ObjectNotFoundException ex) {
result.recordFatalError("Object not found");
throw new ObjectNotFoundException("Object identified by " + resourceObjectIdentification + " (ConnId UID " + uid + "), objectClass " + objectClassDefinition.getTypeName() + " was not found in " + description);
} catch (SchemaException ex) {
result.recordFatalError(ex);
throw ex;
} catch (RuntimeException ex) {
result.recordFatalError(ex);
throw ex;
}
if (co == null) {
result.recordFatalError("Object not found");
throw new ObjectNotFoundException("Object identified by " + resourceObjectIdentification + " (ConnId UID " + uid + "), objectClass " + objectClassDefinition.getTypeName() + " was not in " + description);
}
PrismObjectDefinition<T> shadowDefinition = toShadowDefinition(objectClassDefinition);
PrismObject<T> shadow = connIdConvertor.convertToResourceObject(co, shadowDefinition, false, caseIgnoreAttributeNames, legacySchema);
result.recordSuccess();
return shadow;
}
Also used :
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
SchemaException(com.evolveum.midpoint.util.exception.SchemaException)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
CommunicationException(com.evolveum.midpoint.util.exception.CommunicationException)
GenericFrameworkException(com.evolveum.midpoint.provisioning.ucf.api.GenericFrameworkException)
SecurityViolationException(com.evolveum.midpoint.util.exception.SecurityViolationException)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
OperationResult(com.evolveum.midpoint.schema.result.OperationResult)
AsynchronousOperationResult(com.evolveum.midpoint.schema.result.AsynchronousOperationResult)
OperationOptionsBuilder(org.identityconnectors.framework.common.objects.OperationOptionsBuilder)
Uid(org.identityconnectors.framework.common.objects.Uid)
QualifiedUid(org.identityconnectors.framework.common.objects.QualifiedUid)
ConfigurationException(com.evolveum.midpoint.util.exception.ConfigurationException)
ObjectNotFoundException(com.evolveum.midpoint.util.exception.ObjectNotFoundException)
Example 2 with OperationOptions
use of org.identityconnectors.framework.common.objects.OperationOptions in project midpoint by Evolveum.
the class ConnectorInstanceConnIdImpl method search.
@Override
public <T extends ShadowType> SearchResultMetadata search(final ObjectClassComplexTypeDefinition objectClassDefinition, final ObjectQuery query, final ResultHandler<T> handler, AttributesToReturn attributesToReturn, PagedSearchCapabilityType pagedSearchCapabilityType, SearchHierarchyConstraints searchHierarchyConstraints, final StateReporter reporter, OperationResult parentResult) throws CommunicationException, GenericFrameworkException, SecurityViolationException, SchemaException, ObjectNotFoundException {
// Result type for this operation
final OperationResult result = parentResult.createSubresult(ConnectorInstance.class.getName() + ".search");
result.addParam("objectClass", objectClassDefinition);
result.addContext("connector", connectorType);
if (objectClassDefinition == null) {
result.recordFatalError("Object class not defined");
throw new IllegalArgumentException("objectClass not defined");
}
ObjectClass icfObjectClass = connIdNameMapper.objectClassToIcf(objectClassDefinition, getSchemaNamespace(), connectorType, legacySchema);
if (icfObjectClass == null) {
IllegalArgumentException ex = new IllegalArgumentException("Unable to determine object class from QName " + objectClassDefinition + " while attempting to search objects by " + ObjectTypeUtil.toShortString(connectorType));
result.recordFatalError("Unable to determine object class", ex);
throw ex;
}
final PrismObjectDefinition<T> objectDefinition = toShadowDefinition(objectClassDefinition);
if (pagedSearchCapabilityType == null) {
pagedSearchCapabilityType = getCapability(PagedSearchCapabilityType.class);
}
final boolean useConnectorPaging = pagedSearchCapabilityType != null;
if (!useConnectorPaging && query != null && query.getPaging() != null && (query.getPaging().getOffset() != null || query.getPaging().getMaxSize() != null)) {
InternalMonitor.recordConnectorSimulatedPagingSearchCount();
}
final Holder<Integer> countHolder = new Holder<>(0);
ResultsHandler icfHandler = new ResultsHandler() {
@Override
public boolean handle(ConnectorObject connectorObject) {
// Convert ICF-specific connector object to a generic
// ResourceObject
recordIcfOperationSuspend(reporter, ProvisioningOperation.ICF_SEARCH, objectClassDefinition);
int count = countHolder.getValue();
countHolder.setValue(count + 1);
if (!useConnectorPaging) {
if (query != null && query.getPaging() != null && query.getPaging().getOffset() != null && query.getPaging().getMaxSize() != null) {
if (count < query.getPaging().getOffset()) {
recordResume();
return true;
}
if (count == (query.getPaging().getOffset() + query.getPaging().getMaxSize())) {
recordResume();
return false;
}
}
}
PrismObject<T> resourceObject;
try {
resourceObject = connIdConvertor.convertToResourceObject(connectorObject, objectDefinition, false, caseIgnoreAttributeNames, legacySchema);
} catch (SchemaException e) {
recordResume();
throw new IntermediateException(e);
}
// .. and pass it to the handler
boolean cont = handler.handle(resourceObject);
if (!cont) {
result.recordWarning("Stopped on request from the handler");
}
recordResume();
return cont;
}
private void recordResume() {
recordIcfOperationResume(reporter, ProvisioningOperation.ICF_SEARCH, objectClassDefinition);
}
};
OperationOptionsBuilder optionsBuilder = new OperationOptionsBuilder();
try {
convertToIcfAttrsToGet(objectClassDefinition, attributesToReturn, optionsBuilder);
if (query != null && query.isAllowPartialResults()) {
optionsBuilder.setAllowPartialResults(query.isAllowPartialResults());
}
// preparing paging-related options
if (useConnectorPaging && query != null && query.getPaging() != null) {
ObjectPaging paging = query.getPaging();
if (paging.getOffset() != null) {
// ConnId API says the numbering starts at 1
optionsBuilder.setPagedResultsOffset(paging.getOffset() + 1);
}
if (paging.getMaxSize() != null) {
optionsBuilder.setPageSize(paging.getMaxSize());
}
QName orderByAttributeName;
boolean isAscending;
ItemPath orderByPath = paging.getOrderBy();
String desc;
if (orderByPath != null && !orderByPath.isEmpty()) {
orderByAttributeName = ShadowUtil.getAttributeName(orderByPath, "OrderBy path");
if (SchemaConstants.C_NAME.equals(orderByAttributeName)) {
orderByAttributeName = SchemaConstants.ICFS_NAME;
}
isAscending = paging.getDirection() != OrderDirection.DESCENDING;
desc = "(explicitly specified orderBy attribute)";
} else {
orderByAttributeName = pagedSearchCapabilityType.getDefaultSortField();
isAscending = pagedSearchCapabilityType.getDefaultSortDirection() != OrderDirectionType.DESCENDING;
desc = "(default orderBy attribute from capability definition)";
}
if (orderByAttributeName != null) {
String orderByIcfName = connIdNameMapper.convertAttributeNameToIcf(orderByAttributeName, objectClassDefinition, desc);
optionsBuilder.setSortKeys(new SortKey(orderByIcfName, isAscending));
}
}
if (searchHierarchyConstraints != null) {
ResourceObjectIdentification baseContextIdentification = searchHierarchyConstraints.getBaseContext();
// Only LDAP connector really supports base context. And this one will work better with
// DN. And DN is secondary identifier (__NAME__). This is ugly, but practical. It works around ConnId problems.
ResourceAttribute<?> secondaryIdentifier = baseContextIdentification.getSecondaryIdentifier();
if (secondaryIdentifier == null) {
SchemaException e = new SchemaException("No secondary identifier in base context identification " + baseContextIdentification);
result.recordFatalError(e);
throw e;
}
String secondaryIdentifierValue = secondaryIdentifier.getRealValue(String.class);
ObjectClass baseContextIcfObjectClass = connIdNameMapper.objectClassToIcf(baseContextIdentification.getObjectClassDefinition(), getSchemaNamespace(), connectorType, legacySchema);
QualifiedUid containerQualifiedUid = new QualifiedUid(baseContextIcfObjectClass, new Uid(secondaryIdentifierValue));
optionsBuilder.setContainer(containerQualifiedUid);
}
} catch (SchemaException e) {
result.recordFatalError(e);
throw e;
}
// Relax completeness requirements. This is a search, not get. So it is OK to
// return incomplete member lists and similar attributes.
optionsBuilder.setAllowPartialAttributeValues(true);
OperationOptions options = optionsBuilder.build();
Filter filter;
try {
filter = convertFilterToIcf(query, objectClassDefinition);
} catch (SchemaException | RuntimeException e) {
result.recordFatalError(e);
throw e;
}
// Connector operation cannot create result for itself, so we need to
// create result for it
OperationResult icfResult = result.createSubresult(ConnectorFacade.class.getName() + ".search");
icfResult.addArbitraryObjectAsParam("objectClass", icfObjectClass);
icfResult.addContext("connector", connIdConnectorFacade.getClass());
SearchResult icfSearchResult;
try {
InternalMonitor.recordConnectorOperation("search");
recordIcfOperationStart(reporter, ProvisioningOperation.ICF_SEARCH, objectClassDefinition);
icfSearchResult = connIdConnectorFacade.search(icfObjectClass, filter, icfHandler, options);
recordIcfOperationEnd(reporter, ProvisioningOperation.ICF_SEARCH, objectClassDefinition);
icfResult.recordSuccess();
} catch (IntermediateException inex) {
recordIcfOperationEnd(reporter, ProvisioningOperation.ICF_SEARCH, objectClassDefinition, inex);
SchemaException ex = (SchemaException) inex.getCause();
icfResult.recordFatalError(ex);
result.recordFatalError(ex);
throw ex;
} catch (Throwable ex) {
recordIcfOperationEnd(reporter, ProvisioningOperation.ICF_SEARCH, objectClassDefinition, ex);
Throwable midpointEx = processIcfException(ex, this, icfResult);
result.computeStatus();
// exception
if (midpointEx instanceof CommunicationException) {
throw (CommunicationException) midpointEx;
} else if (midpointEx instanceof ObjectNotFoundException) {
throw (ObjectNotFoundException) midpointEx;
} else if (midpointEx instanceof GenericFrameworkException) {
throw (GenericFrameworkException) midpointEx;
} else if (midpointEx instanceof SchemaException) {
throw (SchemaException) midpointEx;
} else if (midpointEx instanceof SecurityViolationException) {
throw (SecurityViolationException) midpointEx;
} else if (midpointEx instanceof RuntimeException) {
throw (RuntimeException) midpointEx;
} else if (midpointEx instanceof Error) {
throw (Error) midpointEx;
} else {
throw new SystemException("Got unexpected exception: " + ex.getClass().getName() + ": " + ex.getMessage(), ex);
}
}
SearchResultMetadata metadata = null;
if (icfSearchResult != null) {
metadata = new SearchResultMetadata();
metadata.setPagingCookie(icfSearchResult.getPagedResultsCookie());
if (icfSearchResult.getRemainingPagedResults() >= 0) {
metadata.setApproxNumberOfAllResults(icfSearchResult.getRemainingPagedResults());
}
if (!icfSearchResult.isAllResultsReturned()) {
metadata.setPartialResults(true);
}
}
if (result.isUnknown()) {
result.recordSuccess();
}
return metadata;
}
Also used :
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
SecurityViolationException(com.evolveum.midpoint.util.exception.SecurityViolationException)
OperationResult(com.evolveum.midpoint.schema.result.OperationResult)
AsynchronousOperationResult(com.evolveum.midpoint.schema.result.AsynchronousOperationResult)
SortKey(org.identityconnectors.framework.common.objects.SortKey)
GuardedString(org.identityconnectors.common.security.GuardedString)
OperationOptionsBuilder(org.identityconnectors.framework.common.objects.OperationOptionsBuilder)
PagedSearchCapabilityType(com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.PagedSearchCapabilityType)
SystemException(com.evolveum.midpoint.util.exception.SystemException)
QualifiedUid(org.identityconnectors.framework.common.objects.QualifiedUid)
SchemaException(com.evolveum.midpoint.util.exception.SchemaException)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
CommunicationException(com.evolveum.midpoint.util.exception.CommunicationException)
GenericFrameworkException(com.evolveum.midpoint.provisioning.ucf.api.GenericFrameworkException)
QName(javax.xml.namespace.QName)
Holder(com.evolveum.midpoint.util.Holder)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
SearchResultMetadata(com.evolveum.midpoint.schema.SearchResultMetadata)
SearchResult(org.identityconnectors.framework.common.objects.SearchResult)
SyncResultsHandler(org.identityconnectors.framework.common.objects.SyncResultsHandler)
ResultsHandler(org.identityconnectors.framework.common.objects.ResultsHandler)
Uid(org.identityconnectors.framework.common.objects.Uid)
QualifiedUid(org.identityconnectors.framework.common.objects.QualifiedUid)
ObjectPaging(com.evolveum.midpoint.prism.query.ObjectPaging)
Filter(org.identityconnectors.framework.common.objects.filter.Filter)
ObjectNotFoundException(com.evolveum.midpoint.util.exception.ObjectNotFoundException)
ItemPath(com.evolveum.midpoint.prism.path.ItemPath)
Example 3 with OperationOptions
use of org.identityconnectors.framework.common.objects.OperationOptions in project midpoint by Evolveum.
the class ConnectorInstanceConnIdImpl method addObject.
@Override
public AsynchronousOperationReturnValue<Collection<ResourceAttribute<?>>> addObject(PrismObject<? extends ShadowType> shadow, Collection<Operation> additionalOperations, StateReporter reporter, OperationResult parentResult) throws CommunicationException, GenericFrameworkException, SchemaException, ObjectAlreadyExistsException, ConfigurationException {
validateShadow(shadow, "add", false);
ShadowType shadowType = shadow.asObjectable();
ResourceAttributeContainer attributesContainer = ShadowUtil.getAttributesContainer(shadow);
OperationResult result = parentResult.createSubresult(ConnectorInstance.class.getName() + ".addObject");
result.addParam("resourceObject", shadow);
// because of serialization issues
result.addParam("additionalOperations", DebugUtil.debugDump(additionalOperations));
ObjectClassComplexTypeDefinition ocDef;
ResourceAttributeContainerDefinition attrContDef = attributesContainer.getDefinition();
if (attrContDef != null) {
ocDef = attrContDef.getComplexTypeDefinition();
} else {
ocDef = resourceSchema.findObjectClassDefinition(shadow.asObjectable().getObjectClass());
if (ocDef == null) {
throw new SchemaException("Unknown object class " + shadow.asObjectable().getObjectClass());
}
}
// getting icf object class from resource object class
ObjectClass icfObjectClass = connIdNameMapper.objectClassToIcf(shadow, getSchemaNamespace(), connectorType, legacySchema);
if (icfObjectClass == null) {
result.recordFatalError("Couldn't get icf object class from " + shadow);
throw new IllegalArgumentException("Couldn't get icf object class from " + shadow);
}
// setting ifc attributes from resource object attributes
Set<Attribute> attributes = null;
try {
if (LOGGER.isTraceEnabled()) {
LOGGER.trace("midPoint object before conversion:\n{}", attributesContainer.debugDump());
}
attributes = connIdConvertor.convertFromResourceObject(attributesContainer, ocDef);
if (shadowType.getCredentials() != null && shadowType.getCredentials().getPassword() != null) {
PasswordType password = shadowType.getCredentials().getPassword();
ProtectedStringType protectedString = password.getValue();
GuardedString guardedPassword = ConnIdUtil.toGuardedString(protectedString, "new password", protector);
if (guardedPassword != null) {
attributes.add(AttributeBuilder.build(OperationalAttributes.PASSWORD_NAME, guardedPassword));
}
}
if (ActivationUtil.hasAdministrativeActivation(shadowType)) {
attributes.add(AttributeBuilder.build(OperationalAttributes.ENABLE_NAME, ActivationUtil.isAdministrativeEnabled(shadowType)));
}
if (ActivationUtil.hasValidFrom(shadowType)) {
attributes.add(AttributeBuilder.build(OperationalAttributes.ENABLE_DATE_NAME, XmlTypeConverter.toMillis(shadowType.getActivation().getValidFrom())));
}
if (ActivationUtil.hasValidTo(shadowType)) {
attributes.add(AttributeBuilder.build(OperationalAttributes.DISABLE_DATE_NAME, XmlTypeConverter.toMillis(shadowType.getActivation().getValidTo())));
}
if (ActivationUtil.hasLockoutStatus(shadowType)) {
attributes.add(AttributeBuilder.build(OperationalAttributes.LOCK_OUT_NAME, ActivationUtil.isLockedOut(shadowType)));
}
if (LOGGER.isTraceEnabled()) {
LOGGER.trace("ICF attributes after conversion:\n{}", ConnIdUtil.dump(attributes));
}
} catch (SchemaException | RuntimeException ex) {
result.recordFatalError("Error while converting resource object attributes. Reason: " + ex.getMessage(), ex);
throw new SchemaException("Error while converting resource object attributes. Reason: " + ex.getMessage(), ex);
}
if (attributes == null) {
result.recordFatalError("Couldn't set attributes for icf.");
throw new IllegalStateException("Couldn't set attributes for icf.");
}
List<String> icfAuxiliaryObjectClasses = new ArrayList<>();
for (QName auxiliaryObjectClass : shadowType.getAuxiliaryObjectClass()) {
icfAuxiliaryObjectClasses.add(connIdNameMapper.objectClassToIcf(auxiliaryObjectClass, resourceSchemaNamespace, connectorType, false).getObjectClassValue());
}
if (!icfAuxiliaryObjectClasses.isEmpty()) {
AttributeBuilder ab = new AttributeBuilder();
ab.setName(PredefinedAttributes.AUXILIARY_OBJECT_CLASS_NAME);
ab.addValue(icfAuxiliaryObjectClasses);
attributes.add(ab.build());
}
OperationOptionsBuilder operationOptionsBuilder = new OperationOptionsBuilder();
OperationOptions options = operationOptionsBuilder.build();
checkAndExecuteAdditionalOperation(reporter, additionalOperations, BeforeAfterType.BEFORE, result);
OperationResult connIdResult = result.createSubresult(ConnectorFacade.class.getName() + ".create");
connIdResult.addArbitraryObjectAsParam("objectClass", icfObjectClass);
connIdResult.addArbitraryCollectionAsParam("auxiliaryObjectClasses", icfAuxiliaryObjectClasses);
connIdResult.addArbitraryCollectionAsParam("attributes", attributes);
connIdResult.addArbitraryObjectAsParam("options", options);
connIdResult.addContext("connector", connIdConnectorFacade.getClass());
Uid uid = null;
try {
// CALL THE ICF FRAMEWORK
InternalMonitor.recordConnectorOperation("create");
// TODO provide object name
recordIcfOperationStart(reporter, ProvisioningOperation.ICF_CREATE, ocDef, null);
uid = connIdConnectorFacade.create(icfObjectClass, attributes, options);
recordIcfOperationEnd(reporter, ProvisioningOperation.ICF_CREATE, ocDef, uid);
} catch (Throwable ex) {
// TODO name
recordIcfOperationEnd(reporter, ProvisioningOperation.ICF_CREATE, ocDef, ex, null);
Throwable midpointEx = processIcfException(ex, this, connIdResult);
result.computeStatus("Add object failed");
// exception
if (midpointEx instanceof ObjectAlreadyExistsException) {
throw (ObjectAlreadyExistsException) midpointEx;
} else if (midpointEx instanceof CommunicationException) {
// result.muteError();
throw (CommunicationException) midpointEx;
} else if (midpointEx instanceof GenericFrameworkException) {
throw (GenericFrameworkException) midpointEx;
} else if (midpointEx instanceof SchemaException) {
throw (SchemaException) midpointEx;
} else if (midpointEx instanceof ConfigurationException) {
throw (ConfigurationException) midpointEx;
} else if (midpointEx instanceof RuntimeException) {
throw (RuntimeException) midpointEx;
} else if (midpointEx instanceof Error) {
throw (Error) midpointEx;
} else {
throw new SystemException("Got unexpected exception: " + ex.getClass().getName() + ": " + ex.getMessage(), ex);
}
}
checkAndExecuteAdditionalOperation(reporter, additionalOperations, BeforeAfterType.AFTER, result);
if (uid == null || uid.getUidValue() == null || uid.getUidValue().isEmpty()) {
connIdResult.recordFatalError("ICF did not returned UID after create");
result.computeStatus("Add object failed");
throw new GenericFrameworkException("ICF did not returned UID after create");
}
Collection<ResourceAttribute<?>> identifiers = ConnIdUtil.convertToIdentifiers(uid, attributesContainer.getDefinition().getComplexTypeDefinition(), resourceSchema);
for (ResourceAttribute<?> identifier : identifiers) {
attributesContainer.getValue().addReplaceExisting(identifier);
}
connIdResult.recordSuccess();
result.recordSuccess();
return AsynchronousOperationReturnValue.wrap(attributesContainer.getAttributes(), result);
}
Also used :
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
OperationResult(com.evolveum.midpoint.schema.result.OperationResult)
AsynchronousOperationResult(com.evolveum.midpoint.schema.result.AsynchronousOperationResult)
GuardedString(org.identityconnectors.common.security.GuardedString)
GuardedString(org.identityconnectors.common.security.GuardedString)
PasswordType(com.evolveum.midpoint.xml.ns._public.common.common_3.PasswordType)
OperationOptionsBuilder(org.identityconnectors.framework.common.objects.OperationOptionsBuilder)
SystemException(com.evolveum.midpoint.util.exception.SystemException)
ConfigurationException(com.evolveum.midpoint.util.exception.ConfigurationException)
ObjectAlreadyExistsException(com.evolveum.midpoint.util.exception.ObjectAlreadyExistsException)
SchemaException(com.evolveum.midpoint.util.exception.SchemaException)
AttributeBuilder(org.identityconnectors.framework.common.objects.AttributeBuilder)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
CommunicationException(com.evolveum.midpoint.util.exception.CommunicationException)
GenericFrameworkException(com.evolveum.midpoint.provisioning.ucf.api.GenericFrameworkException)
ShadowType(com.evolveum.midpoint.xml.ns._public.common.common_3.ShadowType)
QName(javax.xml.namespace.QName)
Uid(org.identityconnectors.framework.common.objects.Uid)
QualifiedUid(org.identityconnectors.framework.common.objects.QualifiedUid)
ProtectedStringType(com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)
Example 4 with OperationOptions
use of org.identityconnectors.framework.common.objects.OperationOptions in project syncope by apache.
the class PullJobDelegate method doExecuteProvisioning.
@Override
protected String doExecuteProvisioning(final PullTask pullTask, final Connector connector, final boolean dryRun) throws JobExecutionException {
LOG.debug("Executing pull on {}", pullTask.getResource());
List<PullActions> actions = new ArrayList<>();
pullTask.getActions().forEach(impl -> {
try {
actions.add(ImplementationManager.build(impl));
} catch (Exception e) {
LOG.warn("While building {}", impl, e);
}
});
profile = new ProvisioningProfile<>(connector, pullTask);
profile.getActions().addAll(actions);
profile.setDryRun(dryRun);
profile.setResAct(pullTask.getResource().getPullPolicy() == null ? ConflictResolutionAction.IGNORE : pullTask.getResource().getPullPolicy().getConflictResolutionAction());
latestSyncTokens.clear();
if (!profile.isDryRun()) {
for (PullActions action : actions) {
action.beforeAll(profile);
}
}
status.set("Initialization completed");
// First realms...
if (pullTask.getResource().getOrgUnit() != null) {
status.set("Pulling " + pullTask.getResource().getOrgUnit().getObjectClass().getObjectClassValue());
OrgUnit orgUnit = pullTask.getResource().getOrgUnit();
OperationOptions options = MappingUtils.buildOperationOptions(MappingUtils.getPullItems(orgUnit.getItems()).iterator());
rhandler = buildRealmHandler();
try {
switch(pullTask.getPullMode()) {
case INCREMENTAL:
if (!dryRun) {
latestSyncTokens.put(orgUnit.getObjectClass(), orgUnit.getSyncToken());
}
connector.sync(orgUnit.getObjectClass(), orgUnit.getSyncToken(), rhandler, options);
if (!dryRun) {
orgUnit.setSyncToken(latestSyncTokens.get(orgUnit.getObjectClass()));
resourceDAO.save(orgUnit.getResource());
}
break;
case FILTERED_RECONCILIATION:
ReconFilterBuilder filterBuilder = ImplementationManager.build(pullTask.getReconFilterBuilder());
connector.filteredReconciliation(orgUnit.getObjectClass(), filterBuilder, rhandler, options);
break;
case FULL_RECONCILIATION:
default:
connector.fullReconciliation(orgUnit.getObjectClass(), rhandler, options);
break;
}
} catch (Throwable t) {
throw new JobExecutionException("While pulling from connector", t);
}
}
// ...then provisions for any types
ahandler = buildAnyObjectHandler();
uhandler = buildUserHandler();
ghandler = buildGroupHandler();
for (Provision provision : pullTask.getResource().getProvisions()) {
if (provision.getMapping() != null) {
status.set("Pulling " + provision.getObjectClass().getObjectClassValue());
SyncopePullResultHandler handler;
switch(provision.getAnyType().getKind()) {
case USER:
handler = uhandler;
break;
case GROUP:
handler = ghandler;
break;
case ANY_OBJECT:
default:
handler = ahandler;
}
try {
Set<MappingItem> linkingMappingItems = virSchemaDAO.findByProvision(provision).stream().map(schema -> schema.asLinkingMappingItem()).collect(Collectors.toSet());
Iterator<MappingItem> mapItems = new IteratorChain<>(provision.getMapping().getItems().iterator(), linkingMappingItems.iterator());
OperationOptions options = MappingUtils.buildOperationOptions(mapItems);
switch(pullTask.getPullMode()) {
case INCREMENTAL:
if (!dryRun) {
latestSyncTokens.put(provision.getObjectClass(), provision.getSyncToken());
}
connector.sync(provision.getObjectClass(), provision.getSyncToken(), handler, options);
if (!dryRun) {
provision.setSyncToken(latestSyncTokens.get(provision.getObjectClass()));
resourceDAO.save(provision.getResource());
}
break;
case FILTERED_RECONCILIATION:
ReconFilterBuilder filterBuilder = ImplementationManager.build(pullTask.getReconFilterBuilder());
connector.filteredReconciliation(provision.getObjectClass(), filterBuilder, handler, options);
break;
case FULL_RECONCILIATION:
default:
connector.fullReconciliation(provision.getObjectClass(), handler, options);
break;
}
} catch (Throwable t) {
throw new JobExecutionException("While pulling from connector", t);
}
}
}
try {
setGroupOwners(ghandler);
} catch (Exception e) {
LOG.error("While setting group owners", e);
}
if (!profile.isDryRun()) {
for (PullActions action : actions) {
action.afterAll(profile);
}
}
status.set("Pull done");
String result = createReport(profile.getResults(), pullTask.getResource(), dryRun);
LOG.debug("Pull result: {}", result);
return result;
}
Also used :
OrgUnit(org.apache.syncope.core.persistence.api.entity.resource.OrgUnit)
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
ReconFilterBuilder(org.apache.syncope.core.provisioning.api.pushpull.ReconFilterBuilder)
ProvisioningProfile(org.apache.syncope.core.provisioning.api.pushpull.ProvisioningProfile)
Autowired(org.springframework.beans.factory.annotation.Autowired)
HashMap(java.util.HashMap)
AbstractBeanDefinition(org.springframework.beans.factory.support.AbstractBeanDefinition)
SyncopePullExecutor(org.apache.syncope.core.provisioning.api.pushpull.SyncopePullExecutor)
UserPullResultHandler(org.apache.syncope.core.provisioning.api.pushpull.UserPullResultHandler)
StringUtils(org.apache.commons.lang3.StringUtils)
ArrayList(java.util.ArrayList)
PullTask(org.apache.syncope.core.persistence.api.entity.task.PullTask)
GroupPullResultHandler(org.apache.syncope.core.provisioning.api.pushpull.GroupPullResultHandler)
GroupDAO(org.apache.syncope.core.persistence.api.dao.GroupDAO)
MutablePair(org.apache.commons.lang3.tuple.MutablePair)
Map(java.util.Map)
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
OrgUnit(org.apache.syncope.core.persistence.api.entity.resource.OrgUnit)
SyncopePullResultHandler(org.apache.syncope.core.provisioning.api.pushpull.SyncopePullResultHandler)
SyncToken(org.identityconnectors.framework.common.objects.SyncToken)
Iterator(java.util.Iterator)
UserDAO(org.apache.syncope.core.persistence.api.dao.UserDAO)
ConflictResolutionAction(org.apache.syncope.common.lib.types.ConflictResolutionAction)
Set(java.util.Set)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
Collectors(java.util.stream.Collectors)
NotFoundException(org.apache.syncope.core.persistence.api.dao.NotFoundException)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
Name(org.identityconnectors.framework.common.objects.Name)
ImplementationManager(org.apache.syncope.core.spring.ImplementationManager)
JobExecutionException(org.quartz.JobExecutionException)
MappingUtils(org.apache.syncope.core.provisioning.java.utils.MappingUtils)
Connector(org.apache.syncope.core.provisioning.api.Connector)
List(java.util.List)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
AnyObjectPullResultHandler(org.apache.syncope.core.provisioning.api.pushpull.AnyObjectPullResultHandler)
PullActions(org.apache.syncope.core.provisioning.api.pushpull.PullActions)
RealmPullResultHandler(org.apache.syncope.core.provisioning.api.pushpull.RealmPullResultHandler)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
VirSchemaDAO(org.apache.syncope.core.persistence.api.dao.VirSchemaDAO)
Group(org.apache.syncope.core.persistence.api.entity.group.Group)
Optional(java.util.Optional)
ApplicationContextProvider(org.apache.syncope.core.spring.ApplicationContextProvider)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
SyncopePullResultHandler(org.apache.syncope.core.provisioning.api.pushpull.SyncopePullResultHandler)
PullActions(org.apache.syncope.core.provisioning.api.pushpull.PullActions)
ArrayList(java.util.ArrayList)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
NotFoundException(org.apache.syncope.core.persistence.api.dao.NotFoundException)
JobExecutionException(org.quartz.JobExecutionException)
JobExecutionException(org.quartz.JobExecutionException)
ReconFilterBuilder(org.apache.syncope.core.provisioning.api.pushpull.ReconFilterBuilder)
Example 5 with OperationOptions
use of org.identityconnectors.framework.common.objects.OperationOptions in project syncope by apache.
the class ResourceLogic method listConnObjects.
@PreAuthorize("hasRole('" + StandardEntitlement.RESOURCE_LIST_CONNOBJECT + "')")
@Transactional(readOnly = true)
public Pair<SearchResult, List<ConnObjectTO>> listConnObjects(final String key, final String anyTypeKey, final int size, final String pagedResultsCookie, final List<OrderByClause> orderBy) {
ExternalResource resource;
ObjectClass objectClass;
OperationOptions options;
if (SyncopeConstants.REALM_ANYTYPE.equals(anyTypeKey)) {
resource = resourceDAO.authFind(key);
if (resource == null) {
throw new NotFoundException("Resource '" + key + "'");
}
if (resource.getOrgUnit() == null) {
throw new NotFoundException("Realm provisioning for resource '" + key + "'");
}
objectClass = resource.getOrgUnit().getObjectClass();
options = MappingUtils.buildOperationOptions(MappingUtils.getPropagationItems(resource.getOrgUnit().getItems()).iterator());
} else {
Triple<ExternalResource, AnyType, Provision> init = connObjectInit(key, anyTypeKey);
resource = init.getLeft();
objectClass = init.getRight().getObjectClass();
init.getRight().getMapping().getItems();
Set<MappingItem> linkinMappingItems = virSchemaDAO.findByProvision(init.getRight()).stream().map(virSchema -> virSchema.asLinkingMappingItem()).collect(Collectors.toSet());
Iterator<MappingItem> mapItems = new IteratorChain<>(init.getRight().getMapping().getItems().iterator(), linkinMappingItems.iterator());
options = MappingUtils.buildOperationOptions(mapItems);
}
final List<ConnObjectTO> connObjects = new ArrayList<>();
SearchResult searchResult = connFactory.getConnector(resource).search(objectClass, null, new ResultsHandler() {
private int count;
@Override
public boolean handle(final ConnectorObject connectorObject) {
connObjects.add(ConnObjectUtils.getConnObjectTO(connectorObject));
// safety protection against uncontrolled result size
count++;
return count < size;
}
}, size, pagedResultsCookie, orderBy, options);
return ImmutablePair.of(searchResult, connObjects);
}
Also used :
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
SyncopeClientException(org.apache.syncope.common.lib.SyncopeClientException)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
AnyType(org.apache.syncope.core.persistence.api.entity.AnyType)
Autowired(org.springframework.beans.factory.annotation.Autowired)
ConnObjectTO(org.apache.syncope.common.lib.to.ConnObjectTO)
StringUtils(org.apache.commons.lang3.StringUtils)
AnyTypeKind(org.apache.syncope.common.lib.types.AnyTypeKind)
Attribute(org.identityconnectors.framework.common.objects.Attribute)
GroupDAO(org.apache.syncope.core.persistence.api.dao.GroupDAO)
Pair(org.apache.commons.lang3.tuple.Pair)
AnyObjectDAO(org.apache.syncope.core.persistence.api.dao.AnyObjectDAO)
ConnObjectUtils(org.apache.syncope.core.provisioning.java.utils.ConnObjectUtils)
OperationOptions(org.identityconnectors.framework.common.objects.OperationOptions)
AuthContextUtils(org.apache.syncope.core.spring.security.AuthContextUtils)
Method(java.lang.reflect.Method)
Triple(org.apache.commons.lang3.tuple.Triple)
ResultsHandler(org.identityconnectors.framework.common.objects.ResultsHandler)
UserDAO(org.apache.syncope.core.persistence.api.dao.UserDAO)
Set(java.util.Set)
ConnInstanceDAO(org.apache.syncope.core.persistence.api.dao.ConnInstanceDAO)
ResourceDataBinder(org.apache.syncope.core.provisioning.api.data.ResourceDataBinder)
Collectors(java.util.stream.Collectors)
NotFoundException(org.apache.syncope.core.persistence.api.dao.NotFoundException)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
AnyTypeDAO(org.apache.syncope.core.persistence.api.dao.AnyTypeDAO)
Connector(org.apache.syncope.core.provisioning.api.Connector)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
List(java.util.List)
Provision(org.apache.syncope.core.persistence.api.entity.resource.Provision)
AttributeUtil(org.identityconnectors.framework.common.objects.AttributeUtil)
AttributeBuilder(org.identityconnectors.framework.common.objects.AttributeBuilder)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
ConnectorFactory(org.apache.syncope.core.provisioning.api.ConnectorFactory)
Optional(java.util.Optional)
ExternalResourceDAO(org.apache.syncope.core.persistence.api.dao.ExternalResourceDAO)
StandardEntitlement(org.apache.syncope.common.lib.types.StandardEntitlement)
OrderByClause(org.apache.syncope.core.persistence.api.dao.search.OrderByClause)
ArrayUtils(org.apache.commons.lang3.ArrayUtils)
ConnInstanceDataBinder(org.apache.syncope.core.provisioning.api.data.ConnInstanceDataBinder)
ArrayList(java.util.ArrayList)
RealmUtils(org.apache.syncope.core.provisioning.api.utils.RealmUtils)
DelegatedAdministrationException(org.apache.syncope.core.spring.security.DelegatedAdministrationException)
DuplicateException(org.apache.syncope.core.persistence.api.dao.DuplicateException)
MappingManager(org.apache.syncope.core.provisioning.api.MappingManager)
ClientExceptionType(org.apache.syncope.common.lib.types.ClientExceptionType)
SyncopeConstants(org.apache.syncope.common.lib.SyncopeConstants)
ImmutableTriple(org.apache.commons.lang3.tuple.ImmutableTriple)
Iterator(java.util.Iterator)
ResourceTO(org.apache.syncope.common.lib.to.ResourceTO)
Uid(org.identityconnectors.framework.common.objects.Uid)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
ConnInstance(org.apache.syncope.core.persistence.api.entity.ConnInstance)
Name(org.identityconnectors.framework.common.objects.Name)
ImmutablePair(org.apache.commons.lang3.tuple.ImmutablePair)
MappingUtils(org.apache.syncope.core.provisioning.java.utils.MappingUtils)
ExternalResource(org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)
Component(org.springframework.stereotype.Component)
VirSchemaDAO(org.apache.syncope.core.persistence.api.dao.VirSchemaDAO)
SearchResult(org.identityconnectors.framework.common.objects.SearchResult)
Any(org.apache.syncope.core.persistence.api.entity.Any)
Transactional(org.springframework.transaction.annotation.Transactional)
MappingItem(org.apache.syncope.core.persistence.api.entity.resource.MappingItem)
ObjectClass(org.identityconnectors.framework.common.objects.ObjectClass)
ConnectorObject(org.identityconnectors.framework.common.objects.ConnectorObject)
ArrayList(java.util.ArrayList)
NotFoundException(org.apache.syncope.core.persistence.api.dao.NotFoundException)
SearchResult(org.identityconnectors.framework.common.objects.SearchResult)
ResultsHandler(org.identityconnectors.framework.common.objects.ResultsHandler)
ExternalResource(org.apache.syncope.core.persistence.api.entity.resource.ExternalResource)
IteratorChain(org.apache.syncope.common.lib.collections.IteratorChain)
ConnObjectTO(org.apache.syncope.common.lib.to.ConnObjectTO)
AnyType(org.apache.syncope.core.persistence.api.entity.AnyType)
PreAuthorize(org.springframework.security.access.prepost.PreAuthorize)
Transactional(org.springframework.transaction.annotation.Transactional)
Aggregations
OperationOptions (org.identityconnectors.framework.common.objects.OperationOptions)17
ObjectClass (org.identityconnectors.framework.common.objects.ObjectClass)15
ConnectorFacade (org.identityconnectors.framework.api.ConnectorFacade)9
IcConnectorFacade (eu.bcvsolutions.idm.ic.service.api.IcConnectorFacade)8
IcObjectClass (eu.bcvsolutions.idm.ic.api.IcObjectClass)7
ConnectorObject (org.identityconnectors.framework.common.objects.ConnectorObject)7
Uid (org.identityconnectors.framework.common.objects.Uid)7
GenericFrameworkException (com.evolveum.midpoint.provisioning.ucf.api.GenericFrameworkException)6
AsynchronousOperationResult (com.evolveum.midpoint.schema.result.AsynchronousOperationResult)6
OperationResult (com.evolveum.midpoint.schema.result.OperationResult)6
CommunicationException (com.evolveum.midpoint.util.exception.CommunicationException)6
SchemaException (com.evolveum.midpoint.util.exception.SchemaException)6
OperationOptionsBuilder (org.identityconnectors.framework.common.objects.OperationOptionsBuilder)6
SystemException (com.evolveum.midpoint.util.exception.SystemException)5
Attribute (org.identityconnectors.framework.common.objects.Attribute)5
GuardedString (org.identityconnectors.common.security.GuardedString)4
ObjectNotFoundException (com.evolveum.midpoint.util.exception.ObjectNotFoundException)3
SecurityViolationException (com.evolveum.midpoint.util.exception.SecurityViolationException)3
QualifiedUid (org.identityconnectors.framework.common.objects.QualifiedUid)3
Filter (org.identityconnectors.framework.common.objects.filter.Filter)3
