Examples with AuthorizedAnnotationAttributes org.openmrs.annotation.AuthorizedAnnotationAttributes used on opensource projects

Search in sources :

Example 1 with AuthorizedAnnotationAttributes

use of org.openmrs.annotation.AuthorizedAnnotationAttributes in project openmrs-core by openmrs.

the class AuthorizationAdvice method before.

/**
 * Allows us to check whether a user is authorized to access a particular method.
 *
 * @param method
 * @param args
 * @param target
 * @throws Throwable
 * @should notify listeners about checked privileges
 */
@Override
public void before(Method method, Object[] args, Object target) throws Throwable {
    if (log.isDebugEnabled()) {
        log.debug("Calling authorization advice before " + method.getName());
    }
    if (log.isDebugEnabled()) {
        User user = Context.getAuthenticatedUser();
        log.debug("User " + user);
        if (user != null) {
            log.debug("has roles " + user.getAllRoles());
        }
    }
    AuthorizedAnnotationAttributes attributes = new AuthorizedAnnotationAttributes();
    Collection<String> privileges = attributes.getAttributes(method);
    boolean requireAll = attributes.getRequireAll(method);
    // one of them
    if (!privileges.isEmpty()) {
        for (String privilege : privileges) {
            // skip null privileges
            if (privilege == null || privilege.isEmpty()) {
                return;
            }
            if (log.isDebugEnabled()) {
                log.debug("User has privilege " + privilege + "? " + Context.hasPrivilege(privilege));
            }
            if (Context.hasPrivilege(privilege)) {
                if (!requireAll) {
                    // causes them to "pass"
                    return;
                }
            } else {
                if (requireAll) {
                    // if all are required, the first miss causes them
                    // to "fail"
                    throwUnauthorized(Context.getAuthenticatedUser(), method, privilege);
                }
            }
        }
        if (!requireAll) {
            // If there's no match, then we know there are privileges and
            // that the user didn't have any of them. The user is not
            // authorized to access the method
            throwUnauthorized(Context.getAuthenticatedUser(), method, privileges);
        }
    } else if (attributes.hasAuthorizedAnnotation(method) && !Context.isAuthenticated()) {
        throwUnauthorized(Context.getAuthenticatedUser(), method);
    }
}
Also used : User(org.openmrs.User) AuthorizedAnnotationAttributes(org.openmrs.annotation.AuthorizedAnnotationAttributes)

Aggregations

User (org.openmrs.User)1 AuthorizedAnnotationAttributes (org.openmrs.annotation.AuthorizedAnnotationAttributes)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial