Lines 96-102
Link Here
|
96 |
public boolean authorize(Request request) throws AccessControlException { |
96 |
public boolean authorize(Request request) throws AccessControlException { |
97 |
|
97 |
|
98 |
String usecase = request.getParameter(USECASE_PARAMETER); |
98 |
String usecase = request.getParameter(USECASE_PARAMETER); |
99 |
boolean authorized = true; |
99 |
boolean authorized = false; |
100 |
|
100 |
|
101 |
SourceResolver resolver = null; |
101 |
SourceResolver resolver = null; |
102 |
|
102 |
|
Lines 119-124
Link Here
|
119 |
request.getRequestURI()); |
119 |
request.getRequestURI()); |
120 |
} else { |
120 |
} else { |
121 |
getLogger().debug("No usecase to authorize. Granting access."); |
121 |
getLogger().debug("No usecase to authorize. Granting access."); |
|
|
122 |
authorized = true; |
122 |
} |
123 |
} |
123 |
} catch (final ServiceException e) { |
124 |
} catch (final ServiceException e) { |
124 |
throw new AccessControlException(e); |
125 |
throw new AccessControlException(e); |
Lines 148-154
Link Here
|
148 |
public boolean authorizeUsecase(String usecase, Role[] roles, String _configurationUri, |
149 |
public boolean authorizeUsecase(String usecase, Role[] roles, String _configurationUri, |
149 |
String requestURI) throws AccessControlException { |
150 |
String requestURI) throws AccessControlException { |
150 |
getLogger().debug("Authorizing usecase [" + usecase + "]"); |
151 |
getLogger().debug("Authorizing usecase [" + usecase + "]"); |
151 |
boolean authorized = true; |
152 |
boolean authorized = false; |
152 |
|
153 |
|
153 |
UsecaseRolesBuilder builder = new UsecaseRolesBuilder(); |
154 |
UsecaseRolesBuilder builder = new UsecaseRolesBuilder(); |
154 |
UsecaseRoles usecaseRoles; |
155 |
UsecaseRoles usecaseRoles; |
Lines 170-176
Link Here
|
170 |
List usecaseRoleIds = Arrays.asList(usecaseRoles.getRoles(usecase)); |
171 |
List usecaseRoleIds = Arrays.asList(usecaseRoles.getRoles(usecase)); |
171 |
|
172 |
|
172 |
int i = 0; |
173 |
int i = 0; |
173 |
authorized = false; |
|
|
174 |
while (!authorized && i < roles.length) { |
174 |
while (!authorized && i < roles.length) { |
175 |
authorized = usecaseRoleIds.contains(roles[i].getId()); |
175 |
authorized = usecaseRoleIds.contains(roles[i].getId()); |
176 |
getLogger().debug("Authorization for role [" + roles[i].getId() + "] is [" |
176 |
getLogger().debug("Authorization for role [" + roles[i].getId() + "] is [" |
Lines 178-184
Link Here
|
178 |
i++; |
178 |
i++; |
179 |
} |
179 |
} |
180 |
} else { |
180 |
} else { |
181 |
getLogger().debug("No roles for usecase found. Granting access."); |
181 |
getLogger().debug("No roles for usecase found. Denying access."); |
182 |
} |
182 |
} |
183 |
return authorized; |
183 |
return authorized; |
184 |
} |
184 |
} |