示例#1
0
  /**
   * Adds the required criteria for authorization to the query for sites and series security groups
   *
   * @param query
   */
  public void authorizeSitesAndSSGs(DICOMQuery query) {
    AuthorizationCriteria auth = query.getAuthorizationCriteria();

    if (auth == null) {
      // Add authorization criteria if it does not
      // already exist
      auth = new AuthorizationCriteria();
      query.setCriteria(auth);
    }

    auth.setSeriesSecurityGroups(getAuthorizedSeriesSecurityGroups());
    auth.setSites(getAuthorizedSites());
  }
  private static AuthorizationCriteria createAuthorizationCriteria() throws Exception {
    AuthorizationManager am = new AuthorizationManager("kascice");
    List<SiteData> authorizedSites = am.getAuthorizedSites(RoleType.READ);
    List<String> authorizedCollections = am.getAuthorizedCollections(RoleType.READ);
    List<String> authorizedSeriesSecurityGroups =
        am.getAuthorizedSeriesSecurityGroups(RoleType.READ);

    AuthorizationCriteria authorizationCriteria = new AuthorizationCriteria();
    authorizationCriteria.setCollections(authorizedCollections);
    authorizationCriteria.setSites(authorizedSites);
    authorizationCriteria.setSeriesSecurityGroups(authorizedSeriesSecurityGroups);

    return authorizationCriteria;
  }
示例#3
0
  /**
   * Adds the required criteria for authorization to the query for collections
   *
   * @param query
   * @return returns false if user attempted to view data with unauthorized collections
   */
  public boolean authorizeCollections(DICOMQuery query) {
    boolean returnValue = true;
    AuthorizationCriteria auth = query.getAuthorizationCriteria();

    if (auth == null) {
      // Add authorization criteria if it does not
      // already exist
      auth = new AuthorizationCriteria();
      query.setCriteria(auth);
    }

    CollectionCriteria cc = query.getCollectionCriteria();

    if (cc == null) {
      // User didn't choose any collections, so filter by the collections
      // they are authorized to see
      auth.setCollections(getAuthorizedCollections());
    } else {
      List<String> authorizedCollections = getAuthorizedCollections();
      List<String> collectionsToRemove = new ArrayList<String>();

      // Look at each collection to ensure that user is allowed to view it
      for (String selectedCollection : cc.getCollectionObjects()) {
        if (!authorizedCollections.contains(selectedCollection)) {
          returnValue = false;
          collectionsToRemove.add(selectedCollection);
        }
      }

      for (String collectionToRemove : collectionsToRemove) {
        cc.removeCollection(collectionToRemove);
      }
    }

    return returnValue;
  }