public Set<Permission> authorize(AuthenticatedUser user, IResource resource) { return resource.applicablePermissions(); }
public Set<Permission> authorize(AuthenticatedUser user, IResource resource) { return resource.applicablePermissions(); }
public Set<Permission> authorize(AuthenticatedUser user, IResource resource) { return resource.applicablePermissions(); }
public boolean apply(String s) { return resource.applicablePermissions().contains(Permission.valueOf(s)); } };
public Set<Permission> filterPermissions(Set<Permission> permissions, IResource resource) { if (resource == null) return Collections.emptySet(); Set<Permission> filtered = new HashSet<>(permissions); filtered.retainAll(resource.applicablePermissions()); if (filtered.isEmpty()) addRecognitionError("Resource type " + resource.getClass().getSimpleName() + " does not support any of the requested permissions"); return filtered; }
public boolean apply(String s) { return resource.applicablePermissions().contains(Permission.valueOf(s)); } };
public Set<Permission> filterPermissions(Set<Permission> permissions, IResource resource) { if (resource == null) return Collections.emptySet(); Set<Permission> filtered = new HashSet<>(permissions); filtered.retainAll(resource.applicablePermissions()); if (filtered.isEmpty()) addRecognitionError("Resource type " + resource.getClass().getSimpleName() + " does not support any of the requested permissions"); return filtered; }
public Set<Permission> filterPermissions(Set<Permission> permissions, IResource resource) { if (resource == null) return Collections.emptySet(); Set<Permission> filtered = new HashSet<>(permissions); filtered.retainAll(resource.applicablePermissions()); if (filtered.isEmpty()) addRecognitionError("Resource type " + resource.getClass().getSimpleName() + " does not support any of the requested permissions"); return filtered; }
public boolean apply(String s) { return resource.applicablePermissions().contains(Permission.valueOf(s)); } };
public Set<Permission> authorize(AuthenticatedUser user, IResource resource) { if (user.isSuper()) return resource.applicablePermissions(); Set<Permission> permissions = EnumSet.noneOf(Permission.class); try { for (RoleResource role: user.getRoles()) addPermissionsForRole(permissions, resource, role); } catch (RequestValidationException e) { throw new AssertionError(e); // not supposed to happen } catch (RequestExecutionException e) { logger.warn("CassandraAuthorizer failed to authorize {} for {}", user, resource); throw new RuntimeException(e); } return permissions; }
public Set<Permission> authorize(AuthenticatedUser user, IResource resource) { if (user.isSuper()) return resource.applicablePermissions(); Set<Permission> permissions = EnumSet.noneOf(Permission.class); try { for (RoleResource role: user.getRoles()) addPermissionsForRole(permissions, resource, role); } catch (RequestValidationException e) { throw new AssertionError(e); // not supposed to happen } catch (RequestExecutionException e) { logger.warn("CassandraAuthorizer failed to authorize {} for {}", user, resource); throw new RuntimeException(e); } return permissions; }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = FunctionResource.function(functionName.keyspace, functionName.name, argTypes); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = FunctionResource.function(functionName.keyspace, functionName.name, argTypes); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = FunctionResource.function(functionName.keyspace, functionName.name, argTypes); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = FunctionResource.function(functionName.keyspace, functionName.name, argTypes); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = FunctionResource.function(functionName.keyspace, functionName.name, argTypes); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = FunctionResource.function(functionName.keyspace, functionName.name, argTypes); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = DataResource.table(keyspace(), columnFamily()); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = DataResource.table(keyspace(), columnFamily()); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }
protected void grantPermissionsToCreator(QueryState state) { try { IResource resource = DataResource.table(keyspace(), columnFamily()); DatabaseDescriptor.getAuthorizer().grant(AuthenticatedUser.SYSTEM_USER, resource.applicablePermissions(), resource, RoleResource.role(state.getClientState().getUser().getName())); } catch (RequestExecutionException e) { throw new RuntimeException(e); } }