2020-07-03 12:09:22 +02:00
|
|
|
package eu.dnetlib.organizations.controller;
|
|
|
|
|
|
|
|
|
|
import org.apache.commons.lang3.EnumUtils;
|
|
|
|
|
import org.apache.commons.lang3.StringUtils;
|
|
|
|
|
import org.springframework.security.core.Authentication;
|
|
|
|
|
import org.springframework.security.core.GrantedAuthority;
|
2020-11-23 12:02:33 +01:00
|
|
|
import org.springframework.security.oauth2.core.oidc.user.DefaultOidcUser;
|
2022-09-22 13:53:21 +02:00
|
|
|
import org.springframework.security.oauth2.core.oidc.user.OidcUser;
|
2020-11-04 14:18:41 +01:00
|
|
|
|
2020-07-03 12:09:22 +02:00
|
|
|
public class UserInfo {
|
|
|
|
|
|
|
|
|
|
private String name;
|
|
|
|
|
private UserRole role;
|
|
|
|
|
|
|
|
|
|
public UserInfo() {
|
|
|
|
|
this.name = "anonymous";
|
|
|
|
|
this.role = UserRole.NOT_AUTHORIZED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public UserInfo(final String name, final UserRole role) {
|
|
|
|
|
this.name = name;
|
|
|
|
|
this.role = role;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public String getName() {
|
|
|
|
|
return name;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public void setName(final String name) {
|
|
|
|
|
this.name = name;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public UserRole getRole() {
|
|
|
|
|
return role;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public void setRole(final UserRole role) {
|
|
|
|
|
this.role = role;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static UserInfo generate(final Authentication authentication) {
|
2020-11-23 12:02:33 +01:00
|
|
|
return new UserInfo(getEmail(authentication), findRole(authentication));
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static UserRole findRole(final Authentication authentication) {
|
2022-09-21 10:25:48 +02:00
|
|
|
|
2020-07-03 12:09:22 +02:00
|
|
|
return authentication.getAuthorities()
|
2020-11-04 14:18:41 +01:00
|
|
|
.stream()
|
|
|
|
|
.map(GrantedAuthority::getAuthority)
|
|
|
|
|
.map(s -> StringUtils.substringAfter(s, "ROLE_OPENORGS_"))
|
|
|
|
|
.filter(s -> EnumUtils.isValidEnum(UserRole.class, s))
|
|
|
|
|
.map(UserRole::valueOf)
|
|
|
|
|
.findFirst()
|
|
|
|
|
.orElseGet(() -> UserRole.NOT_AUTHORIZED);
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static boolean isSuperAdmin(final Authentication authentication) {
|
|
|
|
|
for (final GrantedAuthority aut : authentication.getAuthorities()) {
|
2020-11-04 12:18:25 +01:00
|
|
|
if (aut.getAuthority().equals("ROLE_OPENORGS_" + UserRole.ADMIN)) { return true; }
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static boolean isNationalAdmin(final Authentication authentication) {
|
|
|
|
|
for (final GrantedAuthority aut : authentication.getAuthorities()) {
|
2020-11-04 12:18:25 +01:00
|
|
|
if (aut.getAuthority().equals("ROLE_OPENORGS_" + UserRole.NATIONAL_ADMIN)) { return true; }
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static boolean isSimpleUser(final Authentication authentication) {
|
|
|
|
|
for (final GrantedAuthority aut : authentication.getAuthorities()) {
|
2020-11-04 12:18:25 +01:00
|
|
|
if (aut.getAuthority().equals("ROLE_OPENORGS_" + UserRole.USER)) { return true; }
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static boolean isPending(final Authentication authentication) {
|
|
|
|
|
for (final GrantedAuthority aut : authentication.getAuthorities()) {
|
2020-11-04 12:18:25 +01:00
|
|
|
if (aut.getAuthority().equals("ROLE_OPENORGS_" + UserRole.PENDING)) { return true; }
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static boolean isNotAuthorized(final Authentication authentication) {
|
|
|
|
|
for (final GrantedAuthority aut : authentication.getAuthorities()) {
|
2020-11-04 12:18:25 +01:00
|
|
|
if (aut.getAuthority().equals("ROLE_OPENORGS_" + UserRole.NOT_AUTHORIZED)) { return true; }
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2020-11-23 12:02:33 +01:00
|
|
|
public static String getEmail(final Authentication authentication) {
|
|
|
|
|
final Object user = authentication.getPrincipal();
|
2022-09-22 13:53:21 +02:00
|
|
|
return user instanceof DefaultOidcUser ? getEmail((DefaultOidcUser) user) : authentication.getName();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static String getEmail(final OidcUser user) {
|
|
|
|
|
return user.getEmail();
|
2020-11-23 12:02:33 +01:00
|
|
|
}
|
|
|
|
|
|
2022-09-19 14:33:22 +02:00
|
|
|
public static String getFullname(final Authentication authentication) {
|
|
|
|
|
final Object user = authentication.getPrincipal();
|
2022-09-22 13:53:21 +02:00
|
|
|
return user instanceof DefaultOidcUser ? getFullname((DefaultOidcUser) user) : "unknown";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static String getFullname(final OidcUser user) {
|
|
|
|
|
return user.getFullName();
|
2022-09-19 14:33:22 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static String getOrganization(final Authentication authentication) {
|
|
|
|
|
final Object user = authentication.getPrincipal();
|
2022-09-22 13:53:21 +02:00
|
|
|
return user instanceof DefaultOidcUser ? getOrganization((DefaultOidcUser) user) : "unknown";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static String getOrganization(final OidcUser user) {
|
|
|
|
|
return user.getAttribute("organization");
|
2022-09-19 14:33:22 +02:00
|
|
|
}
|
|
|
|
|
|
2020-07-03 12:09:22 +02:00
|
|
|
}
|
