/
AccessTokenService.java
115 lines (92 loc) · 4.59 KB
/
AccessTokenService.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
/*
* Copyright 2012-2024 CodeLibs Project and the Others.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
* either express or implied. See the License for the specific language
* governing permissions and limitations under the License.
*/
package org.codelibs.fess.app.service;
import static org.codelibs.core.stream.StreamUtil.stream;
import java.util.HashSet;
import java.util.List;
import java.util.Set;
import javax.annotation.Resource;
import javax.servlet.http.HttpServletRequest;
import org.codelibs.core.beans.util.BeanUtil;
import org.codelibs.core.lang.StringUtil;
import org.codelibs.fess.Constants;
import org.codelibs.fess.app.pager.AccessTokenPager;
import org.codelibs.fess.es.config.cbean.AccessTokenCB;
import org.codelibs.fess.es.config.exbhv.AccessTokenBhv;
import org.codelibs.fess.es.config.exentity.AccessToken;
import org.codelibs.fess.exception.InvalidAccessTokenException;
import org.codelibs.fess.mylasta.direction.FessConfig;
import org.codelibs.fess.taglib.FessFunctions;
import org.codelibs.fess.util.ComponentUtil;
import org.dbflute.cbean.result.PagingResultBean;
import org.dbflute.optional.OptionalEntity;
public class AccessTokenService {
@Resource
protected AccessTokenBhv accessTokenBhv;
@Resource
protected FessConfig fessConfig;
public List<AccessToken> getAccessTokenList(final AccessTokenPager accessTokenPager) {
final PagingResultBean<AccessToken> accessTokenList = accessTokenBhv.selectPage(cb -> {
cb.paging(accessTokenPager.getPageSize(), accessTokenPager.getCurrentPageNumber());
setupListCondition(cb, accessTokenPager);
});
// update pager
BeanUtil.copyBeanToBean(accessTokenList, accessTokenPager, option -> option.include(Constants.PAGER_CONVERSION_RULE));
accessTokenPager.setPageNumberList(
accessTokenList.pageRange(op -> op.rangeSize(fessConfig.getPagingPageRangeSizeAsInteger())).createPageNumberList());
return accessTokenList;
}
public OptionalEntity<AccessToken> getAccessToken(final String id) {
return accessTokenBhv.selectByPK(id);
}
public void store(final AccessToken accessToken) {
accessTokenBhv.insertOrUpdate(accessToken, op -> op.setRefreshPolicy(Constants.TRUE));
}
public void delete(final AccessToken accessToken) {
accessTokenBhv.delete(accessToken, op -> op.setRefreshPolicy(Constants.TRUE));
}
protected void setupListCondition(final AccessTokenCB cb, final AccessTokenPager accessTokenPager) {
if (accessTokenPager.id != null) {
cb.query().docMeta().setId_Equal(accessTokenPager.id);
}
// TODO Long, Integer, String supported only.
// setup condition
cb.query().addOrderBy_Name_Asc();
cb.query().addOrderBy_CreatedTime_Asc();
// search
}
public OptionalEntity<Set<String>> getPermissions(final HttpServletRequest request) {
final String token = ComponentUtil.getAccessTokenHelper().getAccessTokenFromRequest(request);
if (StringUtil.isNotBlank(token)) {
return accessTokenBhv.selectEntity(cb -> {
cb.query().setToken_Term(token);
}).map(accessToken -> {
final Set<String> permissionSet = new HashSet<>();
final Long expiredTime = accessToken.getExpiredTime();
if (expiredTime != null && expiredTime.longValue() > 0
&& expiredTime.longValue() < ComponentUtil.getSystemHelper().getCurrentTimeAsLong()) {
throw new InvalidAccessTokenException("invalid_token",
"The token is expired(" + FessFunctions.formatDate(FessFunctions.date(expiredTime)) + ").");
}
stream(accessToken.getPermissions()).of(stream -> stream.forEach(permissionSet::add));
final String name = accessToken.getParameterName();
stream(request.getParameterValues(name)).of(stream -> stream.filter(StringUtil::isNotBlank).forEach(permissionSet::add));
return OptionalEntity.of(permissionSet);
}).orElseThrow(() -> new InvalidAccessTokenException("invalid_token", "Invalid token: " + token));
}
return OptionalEntity.empty();
}
}