Examples with Operation org.thingsboard.server.service.security.permission.Operation used on opensource projects

Example 1 with Operation

use of org.thingsboard.server.service.security.permission.Operation in project thingsboard by thingsboard.

the class AccessValidator method validateEdge.

private void validateEdge(final SecurityUser currentUser, Operation operation, EntityId entityId, FutureCallback<ValidationResult> callback) {
    if (currentUser.isSystemAdmin()) {
        callback.onSuccess(ValidationResult.accessDenied(SYSTEM_ADMINISTRATOR_IS_NOT_ALLOWED_TO_PERFORM_THIS_OPERATION));
    } else {
        ListenableFuture<Edge> edgeFuture = edgeService.findEdgeByIdAsync(currentUser.getTenantId(), new EdgeId(entityId.getId()));
        Futures.addCallback(edgeFuture, getCallback(callback, edge -> {
            if (edge == null) {
                return ValidationResult.entityNotFound(EDGE_WITH_REQUESTED_ID_NOT_FOUND);
            } else {
                try {
                    accessControlService.checkPermission(currentUser, Resource.EDGE, operation, entityId, edge);
                } catch (ThingsboardException e) {
                    return ValidationResult.accessDenied(e.getMessage());
                }
                return ValidationResult.ok(edge);
            }
        }), executor);
    }
}

Example 2 with Operation

use of org.thingsboard.server.service.security.permission.Operation in project thingsboard by thingsboard.

the class AccessValidator method validateRuleChain.

private void validateRuleChain(final SecurityUser currentUser, Operation operation, EntityId entityId, FutureCallback<ValidationResult> callback) {
    if (currentUser.isCustomerUser()) {
        callback.onSuccess(ValidationResult.accessDenied(CUSTOMER_USER_IS_NOT_ALLOWED_TO_PERFORM_THIS_OPERATION));
    } else {
        ListenableFuture<RuleChain> ruleChainFuture = ruleChainService.findRuleChainByIdAsync(currentUser.getTenantId(), new RuleChainId(entityId.getId()));
        Futures.addCallback(ruleChainFuture, getCallback(callback, ruleChain -> {
            if (ruleChain == null) {
                return ValidationResult.entityNotFound("Rule chain with requested id wasn't found!");
            } else {
                try {
                    accessControlService.checkPermission(currentUser, Resource.RULE_CHAIN, operation, entityId, ruleChain);
                } catch (ThingsboardException e) {
                    return ValidationResult.accessDenied(e.getMessage());
                }
                return ValidationResult.ok(ruleChain);
            }
        }), executor);
    }
}

Example 3 with Operation

use of org.thingsboard.server.service.security.permission.Operation in project thingsboard by thingsboard.

the class AccessValidator method validateCustomer.

private void validateCustomer(final SecurityUser currentUser, Operation operation, EntityId entityId, FutureCallback<ValidationResult> callback) {
    if (currentUser.isSystemAdmin()) {
        callback.onSuccess(ValidationResult.accessDenied(SYSTEM_ADMINISTRATOR_IS_NOT_ALLOWED_TO_PERFORM_THIS_OPERATION));
    } else {
        ListenableFuture<Customer> customerFuture = customerService.findCustomerByIdAsync(currentUser.getTenantId(), new CustomerId(entityId.getId()));
        Futures.addCallback(customerFuture, getCallback(callback, customer -> {
            if (customer == null) {
                return ValidationResult.entityNotFound("Customer with requested id wasn't found!");
            } else {
                try {
                    accessControlService.checkPermission(currentUser, Resource.CUSTOMER, operation, entityId, customer);
                } catch (ThingsboardException e) {
                    return ValidationResult.accessDenied(e.getMessage());
                }
                return ValidationResult.ok(customer);
            }
        }), executor);
    }
}

Example 4 with Operation

use of org.thingsboard.server.service.security.permission.Operation in project thingsboard by thingsboard.

the class AccessValidator method validateAsset.

private void validateAsset(final SecurityUser currentUser, Operation operation, EntityId entityId, FutureCallback<ValidationResult> callback) {
    if (currentUser.isSystemAdmin()) {
        callback.onSuccess(ValidationResult.accessDenied(SYSTEM_ADMINISTRATOR_IS_NOT_ALLOWED_TO_PERFORM_THIS_OPERATION));
    } else {
        ListenableFuture<Asset> assetFuture = assetService.findAssetByIdAsync(currentUser.getTenantId(), new AssetId(entityId.getId()));
        Futures.addCallback(assetFuture, getCallback(callback, asset -> {
            if (asset == null) {
                return ValidationResult.entityNotFound("Asset with requested id wasn't found!");
            } else {
                try {
                    accessControlService.checkPermission(currentUser, Resource.ASSET, operation, entityId, asset);
                } catch (ThingsboardException e) {
                    return ValidationResult.accessDenied(e.getMessage());
                }
                return ValidationResult.ok(asset);
            }
        }), executor);
    }
}

Example 5 with Operation

use of org.thingsboard.server.service.security.permission.Operation in project thingsboard by thingsboard.

the class AccessValidator method validateUser.

private void validateUser(final SecurityUser currentUser, Operation operation, EntityId entityId, FutureCallback<ValidationResult> callback) {
    ListenableFuture<User> userFuture = userService.findUserByIdAsync(currentUser.getTenantId(), new UserId(entityId.getId()));
    Futures.addCallback(userFuture, getCallback(callback, user -> {
        if (user == null) {
            return ValidationResult.entityNotFound("User with requested id wasn't found!");
        }
        try {
            accessControlService.checkPermission(currentUser, Resource.USER, operation, entityId, user);
        } catch (ThingsboardException e) {
            return ValidationResult.accessDenied(e.getMessage());
        }
        return ValidationResult.ok(user);
    }), executor);
}