Examples of org.sonatype.security.authorization.AuthorizationManager

• org.sonatype.security.authorization.AuthorizationManager
  A DAO for Roles and Privileges comming from a given source. @author Brian Demers

    PrivilegeStatusResourceResponse result = new PrivilegeStatusResourceResponse();

    Privilege priv = null;

    try {
      AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager(PRIVILEGE_SOURCE);
      priv = authzManager.getPrivilege(getPrivilegeId(request));
    }
    catch (NoSuchPrivilegeException e) {
      throw new ResourceException(Status.CLIENT_ERROR_NOT_FOUND, "Privilege could not be found.");
    }
    catch (NoSuchAuthorizationManagerException e) {

      throws ResourceException
  {
    Privilege priv;

    try {
      AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager(PRIVILEGE_SOURCE);

      priv = authzManager.getPrivilege(getPrivilegeId(request));

      if (priv.getType().equals(ApplicationPrivilegeDescriptor.TYPE)) {
        throw new ResourceException(Status.CLIENT_ERROR_BAD_REQUEST,
            "Cannot delete an application type privilege");
      }
      else {
        authzManager.deletePrivilege(getPrivilegeId(request));
      }
    }
    catch (NoSuchPrivilegeException e) {
      throw new ResourceException(Status.CLIENT_ERROR_NOT_FOUND, e.getMessage());
    }

      throws ResourceException
  {
    String sourceId = this.getSourceId(request);
    String roleId = this.getRoleId(request);

    AuthorizationManager source;
    try {
      source = getSecuritySystem().getAuthorizationManager(sourceId);
    }
    catch (NoSuchAuthorizationManagerException e) {
      throw new ResourceException(Status.CLIENT_ERROR_BAD_REQUEST, "Invalid source id '" + sourceId + "'", e);
    }

    final Role role;
    try {
      role = source.getRole(roleId);
    }
    catch (NoSuchRoleException e) {
      throw new ResourceException(Status.CLIENT_ERROR_NOT_FOUND, "Invalid role id '" + roleId + "' on realm '"
          + sourceId + "'", e);
    }

    try {
      AssignedPrivilegeListResourceResponse responseResource = new AssignedPrivilegeListResourceResponse();

      User user = this.getSecuritySystem().getUser(userId);

      AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager("default");

      for (RoleIdentifier roleIdentifier : user.getRoles()) {
        try {
          handleRole(authzManager.getRole(roleIdentifier.getRoleId()), null, authzManager,
              responseResource);
        }
        catch (NoSuchRoleException e) {
          getLogger().debug("Invalid roleId: " + roleIdentifier.getRoleId() + " from source: "
              + roleIdentifier.getSource() + " not found.");

    String roleName = role.getRoleId();

    SecuritySystem securitySystem = this.getSecuritySystem();

    try {
      AuthorizationManager authzManager = securitySystem.getAuthorizationManager(DEFAULT_SOURCE);
      roleName = authzManager.getRole(role.getRoleId()).getName();
    }
    catch (NoSuchAuthorizationManagerException e) {
      this.getLogger().warn("Failed to lookup the users Role: " + role.getRoleId() + " source: "
          + role.getSource() + " but the user has this role.", e);
    }

      throws ResourceException
  {
    RoleResourceResponse result = new RoleResourceResponse();

    try {
      AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager(ROLE_SOURCE);
      result.setData(securityToRestModel(authzManager.getRole(getRoleId(request)), request, false));

    }
    catch (NoSuchRoleException e) {
      throw new ResourceException(Status.CLIENT_ERROR_NOT_FOUND, e.getMessage());
    }

    if (resourceRequest != null) {
      RoleResource resource = resourceRequest.getData();

      try {
        AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager(ROLE_SOURCE);
        Role role = restToSecurityModel(authzManager.getRole(resource.getId()), resource);

        validateRoleContainment(role);

        authzManager.updateRole(role);

        resourceResponse = new RoleResourceResponse();

        resourceResponse.setData(resourceRequest.getData());

  @DELETE
  public void delete(Context context, Request request, Response response)
      throws ResourceException
  {
    try {
      AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager(ROLE_SOURCE);
      authzManager.deleteRole(getRoleId(request));
    }
    catch (NoSuchRoleException e) {
      throw new ResourceException(Status.CLIENT_ERROR_NOT_FOUND, e.getMessage());
    }
    catch (NoSuchAuthorizationManagerException e) {

      Role role = restToSecurityModel(null, resource);

      try {
        validateRoleContainment(role);

        AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager(ROLE_SOURCE);
        role = authzManager.addRole(role);

        result = new RoleResourceResponse();

        resource.setId(role.getRoleId());

    String userId = getUserId(request);

    try {
      RoleTreeResourceResponse responseResource = new RoleTreeResourceResponse();

      AuthorizationManager authzManager = getSecuritySystem().getAuthorizationManager("default");

      if (Boolean.parseBoolean(request.getResourceRef().getQueryAsForm().getFirstValue("isRole"))) {
        Role role = authzManager.getRole(userId);

        handleRole(role, authzManager, responseResource, null);
      }
      else {
        User user = getSecuritySystem().getUser(userId);