/
FromAttributesAuthorizationGenerator.java
92 lines (77 loc) · 3.39 KB
/
FromAttributesAuthorizationGenerator.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
package org.pac4j.core.authorization.generator;
import org.pac4j.core.profile.CommonProfile;
import java.util.Arrays;
import java.util.Collection;
import java.util.StringTokenizer;
/**
* <p>Generate the authorization information by inspecting attributes.</p>
* <p>The attributes containing the roles separated by the {@link #splitChar} property (can be set through {@link #setSplitChar(String)}) are
* defined in the constructor. It's the same for the attributes containing the permissions.</p>
*
* @author Jerome Leleu
* @since 1.5.0
*/
public class FromAttributesAuthorizationGenerator<U extends CommonProfile> implements AuthorizationGenerator<U> {
private final Collection<String> roleAttributes;
private final Collection<String> permissionAttributes;
private String splitChar = ",";
public FromAttributesAuthorizationGenerator(final Collection<String> roleAttributes, final Collection<String> permissionAttributes) {
this.roleAttributes = roleAttributes;
this.permissionAttributes = permissionAttributes;
}
public FromAttributesAuthorizationGenerator(final String[] roleAttributes, final String[] permissionAttributes) {
if (roleAttributes != null) {
this.roleAttributes = Arrays.asList(roleAttributes);
} else {
this.roleAttributes = null;
}
if (permissionAttributes != null) {
this.permissionAttributes = Arrays.asList(permissionAttributes);
} else {
this.permissionAttributes = null;
}
}
public void generate(final U profile) {
generateAuth(profile, this.roleAttributes, true);
generateAuth(profile, this.permissionAttributes, false);
}
private void generateAuth(final U profile, final Iterable<String> attributes, final boolean isRole) {
if (attributes == null) {
return;
}
for (final String attribute : attributes) {
final Object value = profile.getAttribute(attribute);
if (value != null) {
if (value instanceof String) {
final StringTokenizer st = new StringTokenizer((String) value, this.splitChar);
while (st.hasMoreTokens()) {
addRoleOrPermissionToProfile(profile, st.nextToken(), isRole);
}
} else if (value.getClass().isArray() && value.getClass().getComponentType().isAssignableFrom(String.class)) {
for (Object item : (Object[]) value) {
addRoleOrPermissionToProfile(profile, item.toString(), isRole);
}
} else if (Collection.class.isAssignableFrom(value.getClass())) {
for (Object item : (Collection<?>) value) {
if (item.getClass().isAssignableFrom(String.class)) {
addRoleOrPermissionToProfile(profile, item.toString(), isRole);
}
}
}
}
}
}
private void addRoleOrPermissionToProfile(final U profile, final String value, final boolean isRole) {
if (isRole) {
profile.addRole(value);
} else {
profile.addPermission(value);
}
}
public String getSplitChar() {
return this.splitChar;
}
public void setSplitChar(final String splitChar) {
this.splitChar = splitChar;
}
}