Пример #1
0
  @Override
  protected BasicAjaxResponse doAddRole2Group(
      HttpServletRequest request, String roleId, String groupId) {
    final String callerId = getRequesterId(request);
    IdmAuditLog idmAuditLog = new IdmAuditLog();
    idmAuditLog.setRequestorUserId(callerId);
    idmAuditLog.setAction(AuditAction.ADD_ROLE_TO_GROUP.value());
    idmAuditLog.setAuditDescription("Add role to group");

    Role roleParent = roleServiceClient.getRole(roleId, callerId);
    idmAuditLog.setTargetRole(roleParent.getId(), roleParent.getName());
    Group group = groupServiceClient.getGroup(groupId, callerId);
    idmAuditLog.setTargetGroup(group.getId(), group.getName());

    final Response wsResponse = roleServiceClient.addGroupToRole(roleId, groupId, callerId);

    if (wsResponse.isSuccess()) {
      idmAuditLog.succeed();
    } else {
      idmAuditLog.fail();
      idmAuditLog.setFailureReason(wsResponse.getErrorCode());
      idmAuditLog.setFailureReason(wsResponse.getErrorText());
    }
    auditLogService.addLog(idmAuditLog);
    return getResponseAfterEntity2EntityAddition(wsResponse, false);
  }
Пример #2
0
  @Override
  protected BasicAjaxResponse doDelete(
      HttpServletRequest request, HttpServletResponse response, Role entity) throws Exception {
    final BasicAjaxResponse ajaxResponse = new BasicAjaxResponse();
    final String callerId = getRequesterId(request);
    IdmAuditLog idmAuditLog = new IdmAuditLog();
    idmAuditLog.setRequestorUserId(callerId);
    idmAuditLog.setAction(AuditAction.DELETE_ROLE.value());
    idmAuditLog.setAuditDescription("Delete role");
    idmAuditLog.setTargetResource(entity.getId(), entity.getName());

    final Response wsResponse = roleServiceClient.removeRole(entity.getId(), callerId);
    if (wsResponse.isSuccess()) {
      ajaxResponse.setStatus(200);
      ajaxResponse.setRedirectURL("roles.html");
      ajaxResponse.setSuccessToken(new SuccessToken(SuccessMessage.ROLE_DELETE));
      idmAuditLog.succeed();
    } else {
      ajaxResponse.setErrorList(getDeleteErrors(wsResponse, request, entity));
      idmAuditLog.fail();
      idmAuditLog.setFailureReason(wsResponse.getErrorCode());
      idmAuditLog.setFailureReason(wsResponse.getErrorText());
      idmAuditLog.setTargetResource(entity.getId(), entity.getName());
    }
    auditLogService.addLog(idmAuditLog);

    return ajaxResponse;
  }
Пример #3
0
  @Override
  protected BasicAjaxResponse doRemoveRoleFromRole(
      HttpServletRequest request, String roleId, String childRoleId) {
    final String callerId = getRequesterId(request);
    IdmAuditLog idmAuditLog = new IdmAuditLog();
    idmAuditLog.setRequestorUserId(callerId);
    idmAuditLog.setAction(AuditAction.REMOVE_CHILD_ROLE.value());
    idmAuditLog.setAuditDescription("Remove child role");

    Role roleParent = roleServiceClient.getRole(roleId, callerId);
    idmAuditLog.setTargetRole(roleParent.getId(), roleParent.getName());
    Role roleChild = roleServiceClient.getRole(childRoleId, callerId);
    idmAuditLog.setTargetRole(roleChild.getId(), roleChild.getName());

    final Response wsResponse = roleServiceClient.removeChildRole(roleId, childRoleId, callerId);

    if (wsResponse.isSuccess()) {
      idmAuditLog.succeed();
    } else {
      idmAuditLog.fail();
      idmAuditLog.setFailureReason(wsResponse.getErrorCode());
      idmAuditLog.setFailureReason(wsResponse.getErrorText());
    }
    auditLogService.addLog(idmAuditLog);
    return getResponseAfterEntity2EntityAddition(wsResponse, true);
  }
Пример #4
0
  @Override
  protected BasicAjaxResponse doEdit(
      HttpServletRequest request, HttpServletResponse response, Role role) throws Exception {
    final BasicAjaxResponse ajaxResponse = new BasicAjaxResponse();
    IdmAuditLog idmAuditLog = new IdmAuditLog();
    idmAuditLog.setRequestorUserId(getRequesterId(request));
    if (role.getId() == null) {
      idmAuditLog.setAction(AuditAction.ADD_ROLE.value());
      idmAuditLog.setAuditDescription("Create new role");
    } else {
      idmAuditLog.setAction(AuditAction.EDIT_ROLE.value());
      idmAuditLog.setAuditDescription("Edit new role");
    }

    final Response wsResponse = roleServiceClient.saveRole(role, getRequesterId(request));
    if (wsResponse.isSuccess()) {
      String roleId = (String) wsResponse.getResponseValue();
      ajaxResponse.setStatus(200);
      ajaxResponse.setSuccessToken(new SuccessToken(SuccessMessage.ROLE_SAVED));
      if (StringUtils.isBlank(role.getId())) {
        ajaxResponse.setRedirectURL(
            new StringBuilder("editRole.html?id=")
                .append(wsResponse.getResponseValue())
                .toString());
      }
      idmAuditLog.setTargetRole(roleId, role.getName());
      idmAuditLog.succeed();
    } else {
      final List<ErrorToken> errorList = getEditErrors(wsResponse, request, role);
      ajaxResponse.setErrorList(errorList);
      ajaxResponse.setStatus(500);
      idmAuditLog.fail();
      idmAuditLog.setFailureReason(wsResponse.getErrorCode());
      idmAuditLog.setFailureReason(wsResponse.getErrorText());
      idmAuditLog.setTargetRole(role.getId(), role.getName());
    }
    auditLogService.addLog(idmAuditLog);
    return ajaxResponse;
  }
Пример #5
0
  @RequestMapping(value = "/roleMenuTree", method = RequestMethod.GET)
  public String roleMenuTree(
      final HttpServletRequest request,
      final HttpServletResponse response,
      final @RequestParam(value = "id") String roleId)
      throws IOException {
    String requesterId = getRequesterId(request);

    final RoleSearchBean searchBean = new RoleSearchBean();
    searchBean.setKey(roleId);
    searchBean.setDeepCopy(false);
    final List<Role> beans = roleServiceClient.findBeans(searchBean, requesterId, 0, 1);
    if (CollectionUtils.isEmpty(beans)) {
      response.sendError(
          HttpServletResponse.SC_NOT_FOUND, String.format("Role with ID '%s' not found", roleId));
      return null;
    }

    final Role role = beans.get(0);

    setMenuTree(request, roleEditMenuName);
    return menuNodeViewProvider.menuTreeEntitlementsRequest(
        request, "role", roleId, role.getName());
  }
Пример #6
0
  @Override
  protected BasicAjaxResponse doRemoveRoleFromGroup(
      HttpServletRequest request, String roleId, String groupId) {
    final String callerId = getRequesterId(request);
    IdmAuditLog idmAuditLog = new IdmAuditLog();
    idmAuditLog.setRequestorUserId(callerId);
    idmAuditLog.setAction(AuditAction.REMOVE_ROLE_FROM_GROUP.value());
    idmAuditLog.setAuditDescription("Remove role from group");
    Role roleParent = roleServiceClient.getRole(roleId, callerId);
    idmAuditLog.setTargetRole(roleParent.getId(), roleParent.getName());
    Group group = groupServiceClient.getGroup(groupId, callerId);
    idmAuditLog.setTargetGroup(group.getId(), group.getName());

    final Response wsResponse = roleServiceClient.removeGroupFromRole(roleId, groupId, callerId);

    if (wsResponse.isSuccess()) {
      idmAuditLog.succeed();
    } else {
      idmAuditLog.fail();
      idmAuditLog.setFailureReason(wsResponse.getErrorCode());
      idmAuditLog.setFailureReason(wsResponse.getErrorText());
    }
    return getResponseAfterEntity2EntityAddition(wsResponse, true);
  }