entitlement/opensso/NotificationServlet.java

	NotificationServlet.java revision 0fe99aaa2652cb97bbd71876ea28074e6241c3c0
/**
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
 *
 * Copyright (c) 2009 Sun Microsystems Inc. All Rights Reserved
 *
 * The contents of this file are subject to the terms
 * of the Common Development and Distribution License
 * (the License). You may not use this file except in
 * compliance with the License.
 *
 * You can obtain a copy of the License at
 * https://opensso.dev.java.net/public/CDDLv1.0.html or
 * opensso/legal/CDDLv1.0.txt
 * See the License for the specific language governing
 * permission and limitations under the License.
 *
 * When distributing Covered Code, include this CDDL
 * Header Notice in each file and include the License file
 * at opensso/legal/CDDLv1.0.txt.
 * If applicable, add the following below the CDDL Header,
 * with the fields enclosed by brackets [] replaced by
 * your own identifying information:
 * "Portions Copyrighted [year] [name of copyright owner]"
 *
 * $Id: NotificationServlet.java,v 1.2 2010/01/20 17:01:36 veiming Exp $
 *
 * Portions Copyrighted 2012-2015 ForgeRock AS.
 */

package com.sun.identity.entitlement.opensso;

import com.sun.identity.entitlement.ApplicationManager;
import com.sun.identity.entitlement.EntitlementException;
import com.sun.identity.entitlement.PrivilegeIndexStore;
import org.forgerock.openam.entitlement.PolicyConstants;
import org.forgerock.openam.utils.IOUtils;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.io.Writer;

/**
 * Handles notification request for privilege changes.
 */
public class NotificationServlet extends HttpServlet {
    public static final String CONTEXT_PATH = "/notification";
    public static final String PRIVILEGE_ADDED = "privilegeadded";
    public static final String REFERRAL_ADDED = "referraladded";
    public static final String PRIVILEGE_DELETED = "privilegedeleted";
    public static final String REFERRAL_DELETED = "referraldeleted";
    public static final String APPLICATIONS_CHANGED = "applicationsChanged";
    public static final String ATTR_REALM_NAME = "realm";
    public static final String ATTR_NAME = "name";

    @Override
    public void doGet(HttpServletRequest req, HttpServletResponse res)
        throws ServletException, IOException {
        handleRequest(req, res);
    }

    @Override
    public void doPost(HttpServletRequest req, HttpServletResponse res)
        throws ServletException, IOException {
        handleRequest(req, res);
    }

    private void handleRequest(HttpServletRequest req, HttpServletResponse res){
        Writer writer = null;
        try {
            String uri = req.getRequestURI();
            String path = req.getContextPath();

            String action = uri.substring(path.length());
            action = action.substring(CONTEXT_PATH.length() +1);

            if (action.equals(PRIVILEGE_DELETED)) {
                handlePrivilegeDeleted(req);
            } else if (action.equals(REFERRAL_DELETED)) {
                handleReferralPrivilegeDeleted(req);
            } else if (action.equals(PRIVILEGE_ADDED)) {
                handlePrivilegeAdded(req);
            } else if (action.equals(REFERRAL_ADDED)) {
                handleReferralPrivilegeAdded(req);
            } else if (action.equals(APPLICATIONS_CHANGED)) {
                handleApplicationsChanged(req);
            }

            writer = res.getWriter();
            res.setHeader("content-type", "text/html");
            writer.write("200");
            writer.flush();
        } catch (IOException ex) {
            PolicyConstants.DEBUG.error("NotificationServlet.handleRequest " + ex.getMessage(), ex);
        } finally {
            IOUtils.closeIfNotNull(writer);
        }
    }

    private void handleReferralPrivilegeAdded(HttpServletRequest req) {
        String realm = req.getParameter(ATTR_REALM_NAME);
        // Get an instance as required otherwise it can cause issues on container restart.
        DataStore.getInstance().clearIndexCount(realm, true);
    }

    private void handlePrivilegeAdded(HttpServletRequest req) {
        String realm = req.getParameter(ATTR_REALM_NAME);
        DataStore.getInstance().clearIndexCount(realm, false);
    }

    private void handlePrivilegeDeleted(HttpServletRequest req) {
        String privilegeName = req.getParameter(ATTR_NAME);
        String realm = req.getParameter(ATTR_REALM_NAME);

        PrivilegeIndexStore pis = PrivilegeIndexStore.getInstance(
            PolicyConstants.SUPER_ADMIN_SUBJECT, realm);
        try {
            pis.delete(privilegeName, false);
        } catch (EntitlementException e) {
            //ignore
        }
        // Get an instance as required otherwise it can cause issues on container restart.
        DataStore.getInstance().clearIndexCount(realm, false);
    }

    private void handleReferralPrivilegeDeleted(HttpServletRequest req) {
        String referralName = req.getParameter(ATTR_NAME);
        String realm = req.getParameter(ATTR_REALM_NAME);

        PrivilegeIndexStore pis = PrivilegeIndexStore.getInstance(
                PolicyConstants.SUPER_ADMIN_SUBJECT, realm);
        try {
            pis.deleteReferral(referralName, false);
        } catch (EntitlementException e) {
            //ignore
        }
        // Get an instance as required otherwise it can cause issues on container restart.
        DataStore.getInstance().clearIndexCount(realm, true);
    }

    private void handleApplicationsChanged(HttpServletRequest req) {
        String realm = req.getParameter(ATTR_REALM_NAME);
        ApplicationManager.clearCache(realm);
    }

}