org.xdi.oxauth.uma.service.UmaPermissionService クラス

org.xdi.oxauth.uma.service.UmaPermissionService 連携図

公開メンバ関数
String	generateNewTicket ()
String	addPermission (UmaPermissionList permissionList, String clientDn) throws Exception
Date	ticketExpirationDate ()
void	addPermission (UmaPermission permission, String clientDn)
void	merge (UmaPermission permission)
void	mergeSilently (UmaPermission permission)
List< UmaPermission >	getPermissionsByTicket (String ticket)
String	getPermissionTicketByConfigurationCode (String configurationCode, String clientDn)
UmaPermission	getPermissionByConfigurationCode (String p_configurationCode, String clientDn)
void	deletePermission (String ticket)
void	cleanup (final Date now)
void	addBranch (String clientDn)
void	addBranchIfNeeded (String clientDn)
boolean	containsBranch (String clientDn)
String	changeTicket (List< UmaPermission > permissions, Map< String, String > attributes)

静的公開メンバ関数
static String	getDn (String clientDn, String ticket)
static String	getBranchDn (String clientDn)

非公開メンバ関数
List< UmaPermission >	createPermissions (UmaPermissionList permissions, Date expirationDate)
Filter	getExpiredUmaPermissionFilter (Date date)

非公開変数類
Logger	log
PersistenceEntryManager	ldapEntryManager
StaticConfiguration	staticConfiguration
UmaScopeService	scopeService
AppConfiguration	appConfiguration

静的非公開変数類
static final String	ORGUNIT_OF_RESOURCE_PERMISSION = "uma_permission"
static final int	DEFAULT_TICKET_LIFETIME = 3600

詳解

Holds permission tokens and permissions

著者

Yuriy Zabrovarnyy

関数詳解

addBranch()

void org.xdi.oxauth.uma.service.UmaPermissionService.addBranch ( String  clientDn )

inline

                                           {
        final SimpleBranch branch = new SimpleBranch();
        branch.setOrganizationalUnitName(ORGUNIT_OF_RESOURCE_PERMISSION);
        branch.setDn(getBranchDn(clientDn));
        ldapEntryManager.persist(branch);
    }

addBranchIfNeeded()

void org.xdi.oxauth.uma.service.UmaPermissionService.addBranchIfNeeded ( String  clientDn )

inline

                                                   {
        if (!containsBranch(clientDn)) {
            addBranch(clientDn);
        }
    }

addPermission() [1/2]

String org.xdi.oxauth.uma.service.UmaPermissionService.addPermission ( UmaPermissionList  permissionList, String  clientDn  ) throws Exception

inline

                                                                                                    {
        try {
            List<UmaPermission> created = createPermissions(permissionList, ticketExpirationDate());
            for (UmaPermission permission : created) {
                addPermission(permission, clientDn);
            }
            return created.get(0).getTicket();
        } catch (Exception e) {
            log.trace(e.getMessage(), e);
            throw e;
        }
    }

addPermission() [2/2]

void org.xdi.oxauth.uma.service.UmaPermissionService.addPermission ( UmaPermission  permission, String  clientDn  )

inline

                                                                         {
        try {
            addBranchIfNeeded(clientDn);
            permission.setDn(getDn(clientDn, permission.getTicket()));
            ldapEntryManager.persist(permission);
        } catch (Exception e) {
            log.trace(e.getMessage(), e);
        }
    }

changeTicket()

String org.xdi.oxauth.uma.service.UmaPermissionService.changeTicket ( List< UmaPermission >  permissions, Map< String, String >  attributes  )

inline

                                                                                                {
        String newTicket = generateNewTicket();

        for (UmaPermission permission : permissions) {
            ldapEntryManager.remove(permission);

            String dn = String.format("oxTicket=%s,%s", newTicket, StringUtils.substringAfter(permission.getDn(), ","));
            permission.setTicket(newTicket);
            permission.setDn(dn);
            permission.setAttributes(attributes);
            ldapEntryManager.persist(permission);
        }
        return newTicket;
    }

cleanup()

void org.xdi.oxauth.uma.service.UmaPermissionService.cleanup ( final Date  now )

inline

                                        {
        BatchOperation<UmaPermission> batchService = new ProcessBatchOperation<UmaPermission>() {
            @Override
            public void performAction(List<UmaPermission> entries) {
                for (UmaPermission p : entries) {
                    try {
                        ldapEntryManager.remove(p);
                    } catch (Exception e) {
                        log.error("Failed to remove entry", e);
                    }
                }
            }

        };
        ldapEntryManager.findEntries(staticConfiguration.getBaseDn().getClients(), UmaPermission.class, getExpiredUmaPermissionFilter(now), SearchScope.SUB, new String[] { "" }, batchService, 0, 0, CleanerTimer.BATCH_SIZE);
    }

containsBranch()

boolean org.xdi.oxauth.uma.service.UmaPermissionService.containsBranch ( String  clientDn )

inline

                                                   {
        return ldapEntryManager.contains(SimpleBranch.class, getBranchDn(clientDn));
    }

createPermissions()

List<UmaPermission> org.xdi.oxauth.uma.service.UmaPermissionService.createPermissions ( UmaPermissionList  permissions, Date  expirationDate  )

inlineprivate

                                                                                                      {
        final String configurationCode = INumGenerator.generate(8) + "." + System.currentTimeMillis();

        final String ticket = generateNewTicket();
        List<UmaPermission> result = new ArrayList<UmaPermission>();
        for (org.xdi.oxauth.model.uma.UmaPermission permission : permissions) {
            UmaPermission p = new UmaPermission(permission.getResourceId(), scopeService.getScopeDNsByIdsAndAddToLdapIfNeeded(permission.getScopes()), ticket, configurationCode, expirationDate);
            if (permission.getParams() != null && !permission.getParams().isEmpty()) {
                p.getAttributes().putAll(permission.getParams());
            }
            result.add(p);
        }

        return result;
    }

deletePermission()

void org.xdi.oxauth.uma.service.UmaPermissionService.deletePermission ( String  ticket )

inline

                                                {
        try {
            final List<UmaPermission> permissions = getPermissionsByTicket(ticket);
            for (UmaPermission p : permissions) {
                ldapEntryManager.remove(p);
            }
        } catch (Exception e) {
            log.trace(e.getMessage(), e);
        }
    }

generateNewTicket()

String org.xdi.oxauth.uma.service.UmaPermissionService.generateNewTicket ( )

inline

                                      {
       return UUID.randomUUID().toString();
    }

getBranchDn()

static String org.xdi.oxauth.uma.service.UmaPermissionService.getBranchDn ( String  clientDn )

inlinestatic

                                                      {
        return String.format("ou=%s,%s", ORGUNIT_OF_RESOURCE_PERMISSION, clientDn);
    }

getDn()

static String org.xdi.oxauth.uma.service.UmaPermissionService.getDn ( String  clientDn, String  ticket  )

inlinestatic

                                                               {
        return String.format("oxTicket=%s,%s", ticket, getBranchDn(clientDn));
    }

getExpiredUmaPermissionFilter()

Filter org.xdi.oxauth.uma.service.UmaPermissionService.getExpiredUmaPermissionFilter ( Date  date )

inlineprivate

                                                            {
        return Filter.createLessOrEqualFilter("oxAuthExpiration", ldapEntryManager.encodeTime(date));
    }

getPermissionByConfigurationCode()

UmaPermission org.xdi.oxauth.uma.service.UmaPermissionService.getPermissionByConfigurationCode ( String  p_configurationCode, String  clientDn  )

inline

                                                                                                       {
        try {
            final Filter filter = Filter.create(String.format("&(oxConfigurationCode=%s)", p_configurationCode));
            final List<UmaPermission> entries = ldapEntryManager.findEntries(clientDn, UmaPermission.class, filter);
            if (entries != null && !entries.isEmpty()) {
                return entries.get(0);
            }
        } catch (Exception e) {
            log.trace(e.getMessage(), e);
        }
        return null;
    }

getPermissionsByTicket()

List<UmaPermission> org.xdi.oxauth.uma.service.UmaPermissionService.getPermissionsByTicket ( String  ticket )

inline

                                                                     {
        try {
            final String baseDn = staticConfiguration.getBaseDn().getClients();
            final Filter filter = Filter.create(String.format("&(oxTicket=%s)", ticket));
            return ldapEntryManager.findEntries(baseDn, UmaPermission.class, filter);
        } catch (Exception e) {
            log.trace(e.getMessage(), e);
        }
        return null;
    }

getPermissionTicketByConfigurationCode()

String org.xdi.oxauth.uma.service.UmaPermissionService.getPermissionTicketByConfigurationCode ( String  configurationCode, String  clientDn  )

inline

                                                                                                    {
        final UmaPermission permission = getPermissionByConfigurationCode(configurationCode, clientDn);
        if (permission != null) {
            return permission.getTicket();
        }
        return null;
    }

merge()

void org.xdi.oxauth.uma.service.UmaPermissionService.merge ( UmaPermission  permission )

inline

                                                {
        ldapEntryManager.merge(permission);
    }

mergeSilently()

void org.xdi.oxauth.uma.service.UmaPermissionService.mergeSilently ( UmaPermission  permission )

inline

                                                        {
        try {
            ldapEntryManager.merge(permission);
        } catch (Exception e) {
            log.error("Failed to persist permission: " + permission, e);
        }
    }

ticketExpirationDate()

Date org.xdi.oxauth.uma.service.UmaPermissionService.ticketExpirationDate ( )

inline

                                       {
        int lifeTime = appConfiguration.getUmaTicketLifetime();
        if (lifeTime <= 0) {
            lifeTime = DEFAULT_TICKET_LIFETIME;
        }

        final Calendar calendar = Calendar.getInstance();
        calendar.add(Calendar.SECOND, lifeTime);
        return calendar.getTime();
    }

メンバ詳解

appConfiguration

AppConfiguration org.xdi.oxauth.uma.service.UmaPermissionService.appConfiguration

private

DEFAULT_TICKET_LIFETIME

final int org.xdi.oxauth.uma.service.UmaPermissionService.DEFAULT_TICKET_LIFETIME = 3600

staticprivate

ldapEntryManager

PersistenceEntryManager org.xdi.oxauth.uma.service.UmaPermissionService.ldapEntryManager

private

log

Logger org.xdi.oxauth.uma.service.UmaPermissionService.log

private

ORGUNIT_OF_RESOURCE_PERMISSION

final String org.xdi.oxauth.uma.service.UmaPermissionService.ORGUNIT_OF_RESOURCE_PERMISSION = "uma_permission"

staticprivate

scopeService

UmaScopeService org.xdi.oxauth.uma.service.UmaPermissionService.scopeService

private

staticConfiguration

StaticConfiguration org.xdi.oxauth.uma.service.UmaPermissionService.staticConfiguration

private

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/gluu/src/oxAuth/Server/src/main/java/org/xdi/oxauth/uma/service/UmaPermissionService.java