org.obiba.opal.web.system.permissions.AdministrationPermissionsResource.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.obiba.opal.web.system.permissions.AdministrationPermissionsResource.java

Introduction

Here is the source code for org.obiba.opal.web.system.permissions.AdministrationPermissionsResource.java

Source

/*
 * Copyright (c) 2013 OBiBa. All rights reserved.
 *
 * This program and the accompanying materials
 * are made available under the terms of the GNU Public License v3.0.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

package org.obiba.opal.web.system.permissions;

import java.util.List;

import javax.ws.rs.DELETE;
import javax.ws.rs.DefaultValue;
import javax.ws.rs.GET;
import javax.ws.rs.POST;
import javax.ws.rs.Path;
import javax.ws.rs.QueryParam;
import javax.ws.rs.core.Response;

import org.obiba.opal.core.security.AdministrationPermissionConverter;
import org.obiba.opal.core.security.RPermissionConverter;
import org.obiba.opal.core.service.security.SubjectAclService;
import org.obiba.opal.web.model.Opal;
import org.obiba.opal.web.security.AbstractPermissionsResource;
import org.obiba.opal.web.security.PermissionsToAclFunction;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Scope;
import org.springframework.stereotype.Component;

import com.google.common.collect.Iterables;

import static org.obiba.opal.core.domain.security.SubjectAcl.SubjectType;

@Component
@Scope("request")
@Path("/system/permissions/administration")
public class AdministrationPermissionsResource extends AbstractPermissionsResource {

    @Autowired
    private SubjectAclService subjectAclService;

    /**
     * Get administration permissions.
     *
     * @param domain
     * @param type
     * @return
     */
    @GET
    public Iterable<Opal.Acl> getAdministrationPermissions(@QueryParam("type") SubjectType type) {
        Iterable<SubjectAclService.Permissions> permissions = subjectAclService.getNodePermissions(DOMAIN,
                getNode(), type);
        return Iterables.transform(permissions, PermissionsToAclFunction.INSTANCE);
    }

    /**
     * Set administration permission for a subject.
     *
     * @param type
     * @param principals
     * @param permission
     * @return
     */
    @POST
    public Response setAdministrationPermission(@QueryParam("type") @DefaultValue("USER") SubjectType type,
            @QueryParam("principal") List<String> principals,
            @QueryParam("permission") AdministrationPermissionConverter.Permission permission) {
        setPermission(principals, type, permission.name());
        return Response.ok().build();
    }

    /**
     * Remove any administration permissions of a subject.
     *
     * @param type
     * @param principals
     * @return
     */
    @DELETE
    public Response deleteAdministrationPermissions(@QueryParam("type") @DefaultValue("USER") SubjectType type,
            @QueryParam("principal") List<String> principals) {
        deletePermissions(principals, type);
        return Response.ok().build();
    }

    @Override
    protected String getNode() {
        return "/";
    }

    @Override
    protected SubjectAclService getSubjectAclService() {
        return subjectAclService;
    }
}