gcube-cms-suite/geoportal-common/src/main/java/org/gcube/application/geoportal/common/model/useCaseDescriptor/DataAccessPolicy.java

package org.gcube.application.geoportal.common.model.useCaseDescriptor;

import com.fasterxml.jackson.annotation.JsonIgnore;
import com.fasterxml.jackson.annotation.JsonProperty;
import lombok.*;
import org.bson.Document;
import org.gcube.application.geoportal.common.model.document.Project;
import org.gcube.application.geoportal.common.model.document.accounting.User;

import java.util.List;

@NoArgsConstructor
@AllArgsConstructor
@Getter
@Setter
@ToString
public class DataAccessPolicy {

    public static final String POLICY = "_policy";
    public static final String ROLES = "_roles";
    public static final String ENFORCER = "_enforcer";

    @NoArgsConstructor
    @AllArgsConstructor
    @Getter
    @Setter
    @ToString
    public static class Policy {
        public static final String WRITE="_write";
        public static final String READ="_read";

        public static enum Type{
            OWN,NONE,ANY
        }

        @JsonProperty(WRITE)
        private Type write;
        @JsonProperty(READ)
        private Type read;
    }


    @NoArgsConstructor
    @AllArgsConstructor
    @Getter
    @Setter
    @ToString
    public static class PolicyEnforcer {
        public static final String FILTER="_filter";
        @JsonProperty(FILTER)
        private Document filter;
    }


    @JsonProperty(POLICY)
    private Policy policy;
    @JsonProperty(ROLES)
    private List<String> roles;
    @JsonProperty(ENFORCER)
    private PolicyEnforcer enforcer;

    @JsonIgnore
    public boolean canRead(Project p, User u){
        switch(getPolicy().getRead()){
            case OWN: return p.getInfo().getCreationInfo().getUser().equals(u);
            case ANY: return true;
            case NONE:
            default : return false;
        }
    }

    @JsonIgnore
    public boolean canWrite(Project p, User u){
        switch(getPolicy().getWrite()){
            case OWN: return p.getInfo().getCreationInfo().getUser().equals(u);
            case ANY: return true;
            case NONE:
            default : return false;
        }
    }
}
Refactoring to Projects and UCD 2022-03-04 14:23:20 +01:00			`package org.gcube.application.geoportal.common.model.useCaseDescriptor;`
Register Fileset 2022-01-27 15:02:53 +01:00
Role based data access support 2022-03-24 17:44:00 +01:00			`import com.fasterxml.jackson.annotation.JsonIgnore;`
Field naming 2022-02-23 17:13:22 +01:00			`import com.fasterxml.jackson.annotation.JsonProperty;`
Register Fileset 2022-01-27 15:02:53 +01:00			`import lombok.*;`
			`import org.bson.Document;`
Role based data access support 2022-03-24 17:44:00 +01:00			`import org.gcube.application.geoportal.common.model.document.Project;`
			`import org.gcube.application.geoportal.common.model.document.accounting.User;`
Register Fileset 2022-01-27 15:02:53 +01:00
			`import java.util.List;`

			`@NoArgsConstructor`
			`@AllArgsConstructor`
			`@Getter`
			`@Setter`
			`@ToString`
			`public class DataAccessPolicy {`

Field naming 2022-02-23 17:13:22 +01:00			`public static final String POLICY = "_policy";`
			`public static final String ROLES = "_roles";`
			`public static final String ENFORCER = "_enforcer";`
Register Fileset 2022-01-27 15:02:53 +01:00
			`@NoArgsConstructor`
			`@AllArgsConstructor`
			`@Getter`
			`@Setter`
			`@ToString`
			`public static class Policy {`
Field naming 2022-02-23 17:13:22 +01:00			`public static final String WRITE="_write";`
			`public static final String READ="_read";`
Register Fileset 2022-01-27 15:02:53 +01:00
			`public static enum Type{`
			`OWN,NONE,ANY`
			`}`

Field naming 2022-02-23 17:13:22 +01:00			`@JsonProperty(WRITE)`
Register Fileset 2022-01-27 15:02:53 +01:00			`private Type write;`
Field naming 2022-02-23 17:13:22 +01:00			`@JsonProperty(READ)`
Register Fileset 2022-01-27 15:02:53 +01:00			`private Type read;`
			`}`


			`@NoArgsConstructor`
			`@AllArgsConstructor`
			`@Getter`
			`@Setter`
			`@ToString`
			`public static class PolicyEnforcer {`
Field naming 2022-02-23 17:13:22 +01:00			`public static final String FILTER="_filter";`
			`@JsonProperty(FILTER)`
Register Fileset 2022-01-27 15:02:53 +01:00			`private Document filter;`
			`}`


Field naming 2022-02-23 17:13:22 +01:00			`@JsonProperty(POLICY)`
Register Fileset 2022-01-27 15:02:53 +01:00			`private Policy policy;`
Field naming 2022-02-23 17:13:22 +01:00			`@JsonProperty(ROLES)`
Register Fileset 2022-01-27 15:02:53 +01:00			`private List<String> roles;`
Field naming 2022-02-23 17:13:22 +01:00			`@JsonProperty(ENFORCER)`
Register Fileset 2022-01-27 15:02:53 +01:00			`private PolicyEnforcer enforcer;`
Role based data access support 2022-03-24 17:44:00 +01:00
			`@JsonIgnore`
			`public boolean canRead(Project p, User u){`
			`switch(getPolicy().getRead()){`
			`case OWN: return p.getInfo().getCreationInfo().getUser().equals(u);`
			`case ANY: return true;`
			`case NONE:`
			`default : return false;`
			`}`
			`}`

			`@JsonIgnore`
			`public boolean canWrite(Project p, User u){`
			`switch(getPolicy().getWrite()){`
			`case OWN: return p.getInfo().getCreationInfo().getUser().equals(u);`
			`case ANY: return true;`
			`case NONE:`
			`default : return false;`
			`}`
			`}`
Register Fileset 2022-01-27 15:02:53 +01:00			`}`