Package com.comcast.cmb.common.model

Examples of com.comcast.cmb.common.model.CMBPolicy

123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
       
        if (actionList.size() == 0) {
            throw new CMBException(CMBErrorCodes.NotFound, "ActionName is required");
        }
       
        CMBPolicy policy = null;
    CNSTopicAttributes attributes = CNSCache.getTopicAttributes(topicArn);

        // validate policy string
       
        if (attributes.getPolicy() != null) {
          policy = new CMBPolicy(attributes.getPolicy());
        } else {
          policy = new CMBPolicy();
        }

        if (policy.addStatement(CMBPolicy.SERVICE.CNS, label, "Allow", userList, actionList, topicArn, null)) {
          attributes.setPolicy(policy.toString());
          PersistenceFactory.getCNSAttributePersistence().setTopicAttributes(attributes, topicArn);
        } else {
          throw new CMBException(CMBErrorCodes.InvalidParameterValue, "Value " + label + " for parameter Label is invalid. Reason: Already exists.");
        }
View Full Code Here
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
        if (!Util.isValidId(label)) {
            throw new CMBException(CQSErrorCodes.InvalidBatchEntryId, "Label " + label + " is invalid. Only alphanumeric, hyphen, and underscore are allowed. It can be at most " + CMBProperties.getInstance().getCQSMaxMessageSuppliedIdLength() + " letters long.");
        }
       
        CMBPolicy policy = null;

    CNSTopicAttributes attributes = CNSCache.getTopicAttributes(topicArn);

        // validate policy string
       
        if (attributes.getPolicy() != null) {

          policy = new CMBPolicy(attributes.getPolicy());
           
          if (policy.removeStatement(label)) {
              attributes.setPolicy(policy.toString());
            PersistenceFactory.getCNSAttributePersistence().setTopicAttributes(attributes, topicArn);
            }
        }
       
        String out = CNSAttributePopulator.getRemovePermissionResponse();
View Full Code Here
92
93
94
95
96
97
98
99
100
101
102
      } else if (attributeName.equals("Policy")) {     
       
      // validate policy before updating
     
      try {
        new CMBPolicy(attributeValue);
      } catch (Exception ex) {
                logger.warn("event=invalid_policy topic_arn=" + topicArn + " policy=" + attributeValue, ex);
          throw ex;
        }
View Full Code Here
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
    } catch (Exception ex) {
      logger.error("event=get_topic_attributes topic_arn=" + topicArn + " user_id=" + userId, ex);
      throw new ServletException(ex);
    }
   
    CMBPolicy policy = null;
   
    try {
      if (attributes.get("Policy") != null && !attributes.get("Policy").equals("") && !attributes.get("Policy").equals("null")) {
        policy = new CMBPolicy(attributes.get("Policy"));
      }
    } catch (Exception ex) {
      throw new ServletException(ex);
    }
   
    out.println("<html>");
   
    header(request, out, "Permissions for Topic "+ Util.getNameFromTopicArn(topicArn));
   
    out.println("<body>");

    out.println("<h2>Permissions for Topic "+ Util.getNameFromTopicArn(topicArn) + "</h2>");
   
    if (user != null) {
     
      out.println("<table><tr><td><b>User Name:</b></td><td>"+ user.getUserName()+"</td></tr>");
      out.println("<tr><td><b>User ID:</b></td><td>"+ user.getUserId()+"</td></tr>");
      out.println("<tr><td><b>Access Key:</b></td><td>"+user.getAccessKey()+"</td></tr>");
      out.println("<tr><td><b>Access Secret:</b></td><td>"+user.getAccessSecret()+"</td></tr>");
      out.println("<tr><td><b>Topic Name:</b></td><td>"+Util.getNameFromTopicArn(topicArn)+"</td></tr>");
      out.println("<tr><td><b>Topic Arn:</b></td><td>"+topicArn+"</td></tr></table><br>");
    }
   
    if (policy != null && !policy.getStatements().isEmpty()) {
     
      List<CMBStatement> stmts = policy.getStatements();
     
      if (stmts != null && stmts.size() > 0) {
        out.println("<span class='content'><table border='1' width='70%'><tr><th>Effect</th><th>Users</th><th>Actions</th><th>Label</th><th>&nbsp;</th></tr>");
      }
     
View Full Code Here
229
230
231
232
233
234
235
236
237
238
239
        String topicArn = request.getParameter("TopicArn");
           
        CNSTopicAttributes attributes = CNSCache.getTopicAttributes(topicArn);         
            if (attributes != null) {
                if (!actionMap.get(action).isActionAllowed(user, request, "CNS", new CMBPolicy(attributes.getPolicy()))) {
                    throw new CMBException(CMBErrorCodes.AccessDenied, "You don't have permission for " + actionMap.get(action).getName());
                }
            }
      }
View Full Code Here
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
    } catch (Exception ex) {
      logger.error("event_failed_to_get_attributes queue_url=" + queueUrl, ex);
      throw new ServletException(ex);
    }
   
    CMBPolicy policy;
   
    try {
      policy = new CMBPolicy(attributes.get("Policy"));
    } catch (Exception ex) {
      throw new ServletException(ex);
    }
   
    if (policy != null && !policy.getStatements().isEmpty()) {
     
      List<CMBStatement> stmts = policy.getStatements();
     
      if (stmts != null && stmts.size() > 0) {
        out.println("<span class='content'><table border='1' width='70%'><tr><th>Effect</th><th>Principals</th><th>Actions</th><th>Label</th><th>&nbsp;</th></tr>");
      }
     
View Full Code Here
82
83
84
85
86
87
88
89
90
91
92
            if (value != null && !value.equals("")) {
               
              // validate policy before updating
             
              try {
                new CMBPolicy(value);
              } catch (Exception ex) {
                      logger.warn("event=invalid_policy queue_url=" + queue.getRelativeUrl() + " policy=" + value, ex);
                throw ex;
              }
            }
View Full Code Here
51
52
53
54
55
56
57
58
59
60
61
62
63
64
        if (!Util.isValidId(label)) {
            throw new CMBException(CQSErrorCodes.InvalidBatchEntryId, "Label " + label + " is invalid. Only alphanumeric, hyphen, and underscore are allowed. It can be at most " + CMBProperties.getInstance().getCQSMaxMessageSuppliedIdLength() + " letters long.");
        }
       
        CMBPolicy policy = new CMBPolicy(queue.getPolicy());
       
        if (policy.removeStatement(label)) {
            String policyStr = policy.toString();
            PersistenceFactory.getQueuePersistence().updatePolicy(queue.getRelativeUrl(), policyStr);
            queue.setPolicy(policyStr);
        }
       
        String out = CQSQueuePopulator.getRemovePermissionResponse();
View Full Code Here
220
221
222
223
224
225
226
227
228
229
230
231
232
233
            queue = CQSCache.getCachedQueue(user, request);
      }

        if (isAuthenticationRequired(action)) {
       
            CMBPolicy policy = new CMBPolicy();
           
            if (queue != null) {
              policy.fromString(queue.getPolicy());
            }
           
            if (!actionMap.get(action).isActionAllowed(user, request, "CQS", policy)) {
                throw new CMBException(CMBErrorCodes.AccessDenied, "You don't have permission for " + actionMap.get(action).getName());
            }
View Full Code Here
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
       
        if (actionList.size() == 0) {
            throw new CMBException(CMBErrorCodes.NotFound, "ActionName is required");
        }
       
        CMBPolicy policy = new CMBPolicy(queue.getPolicy());
       
        if (policy.addStatement(CMBPolicy.SERVICE.CQS, label, "Allow", userList, actionList, queue.getArn(), null)) {
            PersistenceFactory.getQueuePersistence().updatePolicy(queue.getRelativeUrl(), policy.toString());
            queue.setPolicy(policy.toString());
        } else {
          throw new CMBException(CMBErrorCodes.InvalidParameterValue, "Value " + label + " for parameter Label is invalid. Reason: Already exists.");
        }
       
        String out = CQSQueuePopulator.getAddPermissionResponse();
View Full Code Here
TOP

Related Classes of com.comcast.cmb.common.model.CMBPolicy

  • com.comcast.cmb.test.common.model.unit.CMBPolicyTest
  • com.comcast.cns.controller.CNSAddPermissionAction
  • com.comcast.cns.controller.CNSControllerServlet
  • com.comcast.cns.controller.CNSRemovePermissionAction
  • com.comcast.cns.controller.CNSSetTopicAttributesAction
  • com.comcast.cns.controller.CNSTopicPermissionPage
  • com.comcast.cqs.controller.CQSAddPermissionAction
  • com.comcast.cqs.controller.CQSControllerServlet
  • com.comcast.cqs.controller.CQSQueuePermissionsPage
  • com.comcast.cqs.controller.CQSRemovePermissionAction
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.