Skip to content

Adds @RequiresCRUD security annotation && Interceptors #238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 15, 2017
Merged

Adds @RequiresCRUD security annotation && Interceptors #238

merged 2 commits into from
Sep 15, 2017

Conversation

@Sherpard
Copy link
Member

@Sherpard Sherpard commented Sep 4, 2017
edited
Loading

Smart Annotation that takes care of adding a permission check,
User is able to configure how to resolve the CRUD verb implementing CRUDActionResolver on their code

@adrienlauer
Copy link
Member

adrienlauer commented Sep 4, 2017

Can you show a simple example of how to use this annotation ? I'm somewhat understanding its purpose from the test, but an explanation would help :)

@coveralls
Copy link

coveralls commented Sep 4, 2017

Coverage Status

Coverage increased (+0.2%) to 68.851% when pulling dfe3da0 on Sherpard:feature/RequiresRestAnnotation into 895cc7b on seedstack:master.

@Sherpard Sherpard changed the title Added @RequiresRest annotation to spec Adds @RequiresCRUD security annotation && Interceptors Sep 5, 2017
@coveralls
Copy link

coveralls commented Sep 5, 2017

Coverage Status

Coverage increased (+0.02%) to 68.584% when pulling 6aa2335 on Sherpard:feature/RequiresRestAnnotation into c9ade71 on seedstack:master.

@coveralls
Copy link

coveralls commented Sep 5, 2017

Coverage Status

Coverage increased (+0.02%) to 68.584% when pulling 6aa2335 on Sherpard:feature/RequiresRestAnnotation into c9ade71 on seedstack:master.

@coveralls
Copy link

coveralls commented Sep 6, 2017

Coverage Status

Coverage increased (+0.1%) to 68.662% when pulling cd74b90 on Sherpard:feature/RequiresRestAnnotation into c9ade71 on seedstack:master.

ejemba
ejemba reviewed Sep 6, 2017
View reviewed changes
security/core/src/it/java/org/seedstack/seed/security/internal/fixtures/TestActionResolver.java Outdated
import org.seedstack.seed.security.spi.CRUDActionResolver;

public class TestActionResolver implements CRUDActionResolver {

Copy link
Member

@ejemba ejemba Sep 6, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd name the Class CrudActionResolver in order to be compliant to java standard name with acronyms and also to be flat with CrudSecurityIT.
I also would rename CRUDAction to CrudAction for the same reasons.

Copy link
Member

@adrienlauer adrienlauer Sep 6, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agree. I suggested those names but it's better to keep CamelCase even for acryonyms.

Copy link
Member Author

@Sherpard Sherpard Sep 6, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agree, already commited the cangue :)

@coveralls
Copy link

coveralls commented Sep 6, 2017

Coverage Status

Coverage increased (+0.1%) to 68.662% when pulling d63d46b on Sherpard:feature/RequiresRestAnnotation into 376894d on seedstack:master.

@coveralls
Copy link

coveralls commented Sep 11, 2017

Coverage Status

Coverage increased (+0.08%) to 68.646% when pulling e4d3433 on Sherpard:feature/RequiresRestAnnotation into 376894d on seedstack:master.

@adrienlauer
Copy link
Member

adrienlauer commented Sep 15, 2017

The canResolve method is not useful because resolve already returns an Optional and can return empty if nothing is detected. I removed it and refactored the implementation of the interceptors a bit in my fork at https://github.com/adrienlauer/seed/tree/feature/RequiresRestAnnotation.

@Sherpard
Added @RequiresCrudPermission annotation to spec
6d6464c 
Added AbstractInterceptor as a base class for the interceptors, as much of their logic were pretty much the same

Added SPI functionality to define custom verb resolvers

Implementation improvements on CRUD security

Simplify CrudActionResolver
@Sherpard Sherpard force-pushed the feature/RequiresRestAnnotation branch from e4d3433 to 6d6464c Compare September 15, 2017 10:00
@coveralls
Copy link

coveralls commented Sep 15, 2017

Coverage Status

Coverage increased (+0.2%) to 68.741% when pulling d0f6845 on Sherpard:feature/RequiresRestAnnotation into 376894d on seedstack:master.

@adrienlauer adrienlauer merged commit ca2a515 into seedstack:master Sep 15, 2017
@Sherpard Sherpard deleted the feature/RequiresRestAnnotation branch December 16, 2019 10:54
hervestern pushed a commit to hervestern/seed that referenced this pull request Aug 10, 2020
@Sherpard
Added @RequiresCrudPermission annotation to spec (seedstack#238)
9e2d7ff 
Added AbstractInterceptor as a base class for the interceptors, as much of their logic were pretty much the same

Added SPI functionality to define custom verb resolvers

Implementation improvements on CRUD security

Simplify CrudActionResolver
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@adrienlauer adrienlauer adrienlauer left review comments

+1 more reviewer

@ejemba ejemba ejemba left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Sherpard @adrienlauer @coveralls @ejemba