1 files changed, 0 insertions, 226 deletions

diff --git a/src/main/java/org/onap/clamp/clds/service/SecureServiceBase.java b/src/main/java/org/onap/clamp/clds/service/SecureServiceBase.java
deleted file mode 100644
index debd687c..00000000
--- a/src/main/java/org/onap/clamp/clds/service/SecureServiceBase.java
+++ /dev/null
@@ -1,226 +0,0 @@
-/*-
- * ============LICENSE_START=======================================================
- * ONAP CLAMP
- * ================================================================================
- * Copyright (C) 2017 AT&T Intellectual Property. All rights
- *                             reserved.
- * ================================================================================
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- * ============LICENSE_END============================================
- * ===================================================================
- *
- */
-
-package org.onap.clamp.clds.service;
-
-import com.att.eelf.configuration.EELFLogger;
-import com.att.eelf.configuration.EELFManager;
-
-import java.util.Date;
-import javax.ws.rs.NotAuthorizedException;
-
-import org.onap.clamp.clds.util.LoggingUtils;
-import org.onap.clamp.clds.util.OnapLogConstants;
-import org.slf4j.event.Level;
-import org.springframework.security.core.Authentication;
-import org.springframework.security.core.GrantedAuthority;
-import org.springframework.security.core.context.SecurityContext;
-import org.springframework.security.core.context.SecurityContextHolder;
-import org.springframework.security.core.userdetails.UserDetails;
-
-/**
- * Base/abstract Service class. Implements shared security methods.
- */
-public abstract class SecureServiceBase {
-    protected static final EELFLogger logger          = EELFManager.getInstance().getLogger(SecureServiceBase.class);
-    protected static final EELFLogger auditLogger     = EELFManager.getInstance().getAuditLogger();
-    protected static final EELFLogger securityLogger  = EELFManager.getInstance().getSecurityLogger();
-
-    // By default we'll set it to a default handler
-    private static UserNameHandler    userNameHandler = new DefaultUserNameHandler();
-
-
-    private SecurityContext           securityContext = SecurityContextHolder.getContext();
-
-    /**
-     * Get the userId from AAF/CSP.
-     *
-     * @return user ID
-     */
-    public String getUserId() {
-        return getUserName();
-    }
-
-    /**
-     * Get the Full name.
-     *
-     * @return user name
-     */
-    public String getUserName() {
-        String name = userNameHandler.retrieveUserName(securityContext);
-        Date startTime = new Date();
-        LoggingUtils.setTargetContext("CLDS", "getUserName");
-        LoggingUtils.setTimeContext(startTime, new Date());
-        securityLogger.debug("User logged into the CLDS system={}", name);
-        return name;
-    }
-
-    /**
-     * Get the principal name.
-     *
-     * @return the principal name
-     */
-    public String getPrincipalName() {
-        String principal = ((UserDetails)securityContext.getAuthentication().getPrincipal()).getUsername();
-        String name = "Not found";
-        if (principal != null) {
-            name = principal;
-        }
-        logger.debug("userPrincipal.getName()={}", name);
-        return name;
-    }
-
-    /**
-     * Check if user is authorized for the given the permission. Allow matches
-     * if user has a permission with an "*" in permission instance or permission
-     * action even if the permission to check has a specific value in those
-     * fields. For example: if the user has this permission: app-perm-type|*|*
-     * it will be authorized if the inPermission to check is:
-     * app-perm-type|dev|read
-     *
-     * @param inPermission
-     *            The permission to validate
-     * @return A boolean to indicate if the user has the permission to do
-     *         execute the inPermission
-     * @throws NotAuthorizedException
-     *             In case of issues with the permission test, error is returned
-     *             in this exception
-     */
-    public boolean isAuthorized(SecureServicePermission inPermission) throws NotAuthorizedException {
-        Date startTime = new Date();
-        LoggingUtils.setTargetContext("CLDS", "isAuthorized");
-        LoggingUtils.setTimeContext(startTime, new Date());
-        securityLogger.debug("checking if {} has permission: {}", getPrincipalName(), inPermission);
-        try {
-            return isUserPermitted(inPermission);
-        } catch (NotAuthorizedException nae) {
-            String msg = getPrincipalName() + " does not have permission: " + inPermission;
-            LoggingUtils.setErrorContext("100", "Authorization Error");
-            securityLogger.warn(msg);
-            throw new NotAuthorizedException(msg);
-        }
-    }
-
-    /**
-     * Check if user is authorized for the given aaf permission. Allow matches
-     * if user has a permission with an "*" in permission instance or permission
-     * action even if the permission to check has a specific value in those
-     * fields. For example: if the user has this permission: app-perm-type|*|*
-     * it will be authorized if the inPermission to check is:
-     * app-perm-type|dev|read
-     *
-     * @param inPermission
-     *            The permission to validate
-     * @return A boolean to indicate if the user has the permission to do
-     *         execute the inPermission
-     */
-    public boolean isAuthorizedNoException(SecureServicePermission inPermission) {
-        securityLogger.debug("checking if {} has permission: {}", getPrincipalName(), inPermission);
-        Date startTime = new Date();
-        LoggingUtils.setTargetContext("CLDS", "isAuthorizedNoException");
-        LoggingUtils.setTimeContext(startTime, new Date());
-        try {
-            return isUserPermitted(inPermission);
-        } catch (NotAuthorizedException nae) {
-            String msg = getPrincipalName() + " does not have permission: " + inPermission;
-            LoggingUtils.setErrorContext("100", "Authorization Error");
-            securityLogger.warn(msg);
-        }
-        return false;
-    }
-
-    /**
-     * This method can be used by the Application.class to set the
-     * UserNameHandler that must be used in this class. The UserNameHandler
-     * where to get the User name
-     *
-     * @param handler
-     *            The Handler impl to use
-     */
-    public static final void setUserNameHandler(UserNameHandler handler) {
-        if (handler != null) {
-            userNameHandler = handler;
-        }
-    }
-
-    public void setSecurityContext(SecurityContext securityContext) {
-        this.securityContext = securityContext;
-    }
-
-    private boolean isUserPermitted(SecureServicePermission inPermission) {
-        boolean authorized = false;
-        // check if the user has the permission key or the permission key with a
-        // combination of  all instance and/or all action.
-        if (hasRole(inPermission.getKey())) {
-            securityLogger.info("{} authorized for permission: {}", getPrincipalName(), inPermission.getKey());
-            authorized = true;
-            // the rest of these don't seem to be required - isUserInRole method
-            // appears to take * as a wildcard
-        } else if (hasRole(inPermission.getKeyAllInstance())) {
-            securityLogger.info("{} authorized because user has permission with * for instance: {}",
-                                getPrincipalName(), inPermission.getKey());
-            authorized = true;
-        } else if (hasRole(inPermission.getKeyAllInstanceAction())) {
-            securityLogger.info("{} authorized because user has permission with * for instance and * for action: {}",
-                                getPrincipalName(), inPermission.getKey());
-            authorized = true;
-        } else if (hasRole(inPermission.getKeyAllAction())) {
-            securityLogger.info("{} authorized because user has permission with * for action: {}",
-                                getPrincipalName(), inPermission.getKey());
-            authorized = true;
-        } else {
-            throw new NotAuthorizedException("");
-        }
-        return authorized;
-    }
-
-    protected boolean hasRole(String role) {
-        Authentication authentication = securityContext.getAuthentication();
-        if (authentication == null) {
-            return false;
-        }
-
-        for (GrantedAuthority auth : authentication.getAuthorities()) {
-            if (role.equals(auth.getAuthority())) {
-                return true;
-            }
-        }
-
-        return false;
-    }
-
-    protected void auditLogInfo(LoggingUtils util, String actionDescription, Date startTime) {
-        LoggingUtils.setTimeContext(startTime, new Date());
-        auditLogger.info(actionDescription + " completed");
-        util.exiting("200", actionDescription + " success", Level.INFO,
-            OnapLogConstants.ResponseStatus.COMPLETED);
-    }
-
-    protected void auditLogInfo(String actionDescription, Date startTime) {
-
-        LoggingUtils.setTimeContext(startTime, new Date());
-        LoggingUtils.setResponseContext("0", actionDescription + " success",
-            this.getClass().getName());
-        auditLogger.info(actionDescription + " completed");
-    }
-}
\ No newline at end of file