Package com.ngdata.lily.security.hbase.client

Source Code of com.ngdata.lily.security.hbase.client.AuthorizationContext

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
package com.ngdata.lily.security.hbase.client;

import org.lilyproject.bytes.api.DataInput;
import org.lilyproject.bytes.api.DataOutput;
import org.lilyproject.bytes.impl.DataInputImpl;
import org.lilyproject.bytes.impl.DataOutputImpl;

import javax.annotation.Nonnull;
import javax.annotation.Nullable;
import java.util.HashSet;
import java.util.Set;

/**
* Information about a user as used within the HBase authorization framework.
*
* <p>This can be seen as the subset of information held by the AuthenticationContext which is needed
* to perform authorization on the HBase level.</p>
*/
public class AuthorizationContext {
    private String name;
    private String tenant;
    private Set<String> roles;

    /**
     * The attribute on a HBase operation (like Get, Put, Scan, etc) in which the authentication
     * information (= the serialization of this object) is stored.
     */
    public static final String OPERATION_ATTRIBUTE = "lily.authctx";

    /**
     * Constructor.
     *
     * @param name name of this user, optional (nullable), only for informational purposes
     * @param tenant unique name/id of the tenant for which the user is current logged in
     * @param roles roles of the user for the active tenant, <b>without the tenant component</b>
     */
    public AuthorizationContext(@Nullable String name, @Nonnull String tenant, @Nonnull Set<String> roles) {
        this.name = name;
        this.tenant = tenant;
        this.roles = roles;
    }

    /**
     * The name of the user, this is only used for informational/debugging purposes.
     *
     * @return null if the user is unknown
     */
    @Nullable
    public String getName() {
        return name;
    }

    public String getTenant() {
        return tenant;
    }

    /**
     * The roles of the user.
     */
    public Set<String> getRoles() {
        return roles;
    }

    public byte[] serialize() {
        DataOutput buffer = new DataOutputImpl();

        buffer.writeVUTF(name);
        buffer.writeVUTF(tenant);

        buffer.writeVInt(roles.size());
        for (String role : roles) {
            buffer.writeVUTF(role);
        }

        return buffer.toByteArray();
    }

    public static AuthorizationContext deserialiaze(byte[] data) {
        DataInput input = new DataInputImpl(data);

        String name = input.readVUTF();
        String tenant = input.readVUTF();

        Set<String> roles = new HashSet<String>();
        int roleCnt = input.readVInt();
        for (int i = 0; i < roleCnt; i++) {
            roles.add(input.readVUTF());
        }

        return new AuthorizationContext(name, tenant, roles);
    }
}
TOP

Related Classes of com.ngdata.lily.security.hbase.client.AuthorizationContext

  • org.lilyproject.avro.AvroConverter
  • org.lilyproject.bytes.api.DataInput
  • org.lilyproject.bytes.api.DataOutput
  • org.lilyproject.bytes.impl.DataInputImpl
  • org.lilyproject.bytes.impl.DataOutputImpl
  • org.lilyproject.process.test.AuthzTest
  • org.lilyproject.tools.import_.cli.JsonImportTool
  • org.lilyproject.tools.scanner.cli.ScannerCli
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.