/* * ============LICENSE_START========================================== * org.onap.music * =================================================================== * Copyright (c) 2017 AT&T Intellectual Property * =================================================================== * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. * * ============LICENSE_END============================================= * ==================================================================== */ package org.onap.music; import java.util.ArrayList; import java.util.List; import java.util.regex.Matcher; import java.util.regex.Pattern; import javax.servlet.FilterConfig; import javax.servlet.ServletException; import javax.servlet.ServletRequest; import javax.servlet.http.HttpServletRequest; import com.att.eelf.configuration.EELFLogger; import org.onap.aaf.cadi.CadiWrap; import org.onap.aaf.cadi.Permission; import org.onap.aaf.cadi.PropAccess; import org.onap.aaf.cadi.aaf.AAFPermission; import org.onap.aaf.cadi.filter.CadiFilter; import org.onap.music.eelf.logging.EELFLoggerDelegate; import org.onap.music.main.MusicCore; public class CadiAuthFilter extends CadiFilter { private static final EELFLoggerDelegate logger = EELFLoggerDelegate.getLogger(CadiAuthFilter.class); public CadiAuthFilter(PropAccess access) throws ServletException { super(true, access); } public void init(FilterConfig filterConfig) throws ServletException { super.init(filterConfig); } private boolean matchPattern(String requestedPath, String includeUrl) { includeUrl = includeUrl.substring(1); String[] path = requestedPath.split("/"); if (path.length > 1) { String[] roleFunctionArray = includeUrl.split("/"); boolean match = true; for (int i = 0; i < roleFunctionArray.length; i++) { if (match) { if (!"*".equals(roleFunctionArray[i])) { Pattern p = Pattern.compile(Pattern.quote(path[i]), Pattern.CASE_INSENSITIVE); Matcher m = p.matcher(roleFunctionArray[i]); match = m.matches(); } else if (roleFunctionArray[i].equals("*")) { match = true; } } } if (match) return match; } else { if (requestedPath.matches(includeUrl)) return true; else if ("*".equals(includeUrl)) return true; } return false; } public static List getAAFPermissions(HttpServletRequest request) { CadiWrap wrapReq = (CadiWrap) request; List perms = wrapReq.getPermissions(wrapReq.getUserPrincipal()); List aafPermsList = new ArrayList<>(); for (Permission perm : perms) { AAFPermission aafPerm = (AAFPermission) perm; aafPermsList.add(aafPerm); logger.info(aafPerm.toString()); logger.info(aafPerm.getType()); } return aafPermsList; } public static List getAAFPermissions(ServletRequest request) { CadiWrap wrapReq = (CadiWrap) request; List perms = wrapReq.getPermissions(wrapReq.getUserPrincipal()); List aafPermsList = new ArrayList<>(); for (Permission perm : perms) { AAFPermission aafPerm = (AAFPermission) perm; aafPermsList.add(aafPerm); } return aafPermsList; } }