[archiva-redback-core] 02/02: Changing password reset API v2

Thu, 24 Sep 2020 08:09:31 -0700 

This is an automated email from the ASF dual-hosted git repository.

martin_s pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/archiva-redback-core.git

commit 06b7ef2d39c8f54d10081919a3b82c3f1c2adf01
Author: Martin Stockhammer <[email protected]>
AuthorDate: Thu Sep 24 17:08:52 2020 +0200

    Changing password reset API v2
---
 .../security/role/RedbackRoleConstants.java        |  2 ++
 .../resources/META-INF/redback/redback-core.xml    | 20 ++++++++++++
 .../redback/rest/api/services/v2/UserService.java  |  8 ++---
 .../rest/services/v2/NativeUserServiceTest.java    | 38 ++++++++++++++++++++++
 4 files changed, 64 insertions(+), 4 deletions(-)

diff --git 
a/redback-integrations/redback-integrations-security/src/main/java/org/apache/archiva/redback/integration/security/role/RedbackRoleConstants.java
 
b/redback-integrations/redback-integrations-security/src/main/java/org/apache/archiva/redback/integration/security/role/RedbackRoleConstants.java
index b7241b9..d5b47c6 100644
--- 
a/redback-integrations/redback-integrations-security/src/main/java/org/apache/archiva/redback/integration/security/role/RedbackRoleConstants.java
+++ 
b/redback-integrations/redback-integrations-security/src/main/java/org/apache/archiva/redback/integration/security/role/RedbackRoleConstants.java
@@ -60,6 +60,8 @@ public interface RedbackRoleConstants
 
     public static final String USER_MANAGEMENT_USER_LIST_OPERATION = 
"user-management-user-list";
 
+    public static final String USER_MANAGEMENT_USER_VIEW_OPERATION = 
"user-management-user-view";
+
     // operations against user assignment.
     public static final String USER_MANAGEMENT_ROLE_GRANT_OPERATION = 
"user-management-role-grant";
 
diff --git 
a/redback-integrations/redback-integrations-security/src/main/resources/META-INF/redback/redback-core.xml
 
b/redback-integrations/redback-integrations-security/src/main/resources/META-INF/redback/redback-core.xml
index 3168923..2eddf19 100644
--- 
a/redback-integrations/redback-integrations-security/src/main/resources/META-INF/redback/redback-core.xml
+++ 
b/redback-integrations/redback-integrations-security/src/main/resources/META-INF/redback/redback-core.xml
@@ -77,6 +77,12 @@
           <permanent>true</permanent>
         </operation>
         <operation>
+          <id>user-management-user-view</id>
+          <name>user-management-user-view</name>
+          <description>view user information</description>
+          <permanent>true</permanent>
+        </operation>
+        <operation>
           <id>user-management-role-grant</id>
           <name>user-management-role-grant</name>
           <description>grant role</description>
@@ -195,6 +201,13 @@
               <resource>global</resource>
               <permanent>true</permanent>
             </permission>
+            <permission>
+              <id>access-user-data</id>
+              <name>Access User Data</name>
+              <operation>user-management-user-view</operation>
+              <resource>global</resource>
+              <permanent>true</permanent>
+            </permission>
           </permissions>
         </role>
         <role>
@@ -210,6 +223,13 @@
               <resource>username</resource>
               <permanent>true</permanent>
             </permission>
+            <permission>
+              <id>view-user-by-username</id>
+              <name>View User Data by Username</name>
+              <operation>user-management-user-view</operation>
+              <resource>username</resource>
+              <permanent>true</permanent>
+            </permission>
           </permissions>
         </role>
         <role>
diff --git 
a/redback-integrations/redback-rest/redback-rest-api/src/main/java/org/apache/archiva/redback/rest/api/services/v2/UserService.java
 
b/redback-integrations/redback-rest/redback-rest-api/src/main/java/org/apache/archiva/redback/rest/api/services/v2/UserService.java
index e8785a2..ee83204 100644
--- 
a/redback-integrations/redback-rest/redback-rest-api/src/main/java/org/apache/archiva/redback/rest/api/services/v2/UserService.java
+++ 
b/redback-integrations/redback-rest/redback-rest-api/src/main/java/org/apache/archiva/redback/rest/api/services/v2/UserService.java
@@ -386,8 +386,8 @@ public interface UserService
         throws RedbackServiceException;
 
     /**
-     *
-     * @param resetPasswordRequest contains username for send a password reset 
email
+     * Asks for a password reset of the given User. Normally this results in a 
password reset email sent to the
+     * stored email address for the given user.
      */
     @Path( "{userId}/password/reset" )
     @POST
@@ -410,11 +410,11 @@ public interface UserService
     @Path( "{userId}/permissions" )
     @GET
     @Produces( { MediaType.APPLICATION_JSON } )
-    @RedbackAuthorization( permissions = 
RedbackRoleConstants.USER_MANAGEMENT_USER_LIST_OPERATION,
+    @RedbackAuthorization( permissions = 
RedbackRoleConstants.USER_MANAGEMENT_USER_VIEW_OPERATION,
         resource = "{userId}")
     @io.swagger.v3.oas.annotations.Operation( summary = "Returns a list of 
permissions assigned to the given user.",
         security = {
-            @SecurityRequirement( name = 
RedbackRoleConstants.USER_MANAGEMENT_USER_LIST_OPERATION )
+            @SecurityRequirement( name = 
RedbackRoleConstants.USER_MANAGEMENT_USER_VIEW_OPERATION )
         },
         responses = {
             @ApiResponse( responseCode = "200",
diff --git 
a/redback-integrations/redback-rest/redback-rest-services/src/test/java/org/apache/archiva/redback/rest/services/v2/NativeUserServiceTest.java
 
b/redback-integrations/redback-rest/redback-rest-services/src/test/java/org/apache/archiva/redback/rest/services/v2/NativeUserServiceTest.java
index e017b46..8e40086 100644
--- 
a/redback-integrations/redback-rest/redback-rest-services/src/test/java/org/apache/archiva/redback/rest/services/v2/NativeUserServiceTest.java
+++ 
b/redback-integrations/redback-rest/redback-rest-services/src/test/java/org/apache/archiva/redback/rest/services/v2/NativeUserServiceTest.java
@@ -1025,4 +1025,42 @@ public class NativeUserServiceTest extends 
AbstractNativeRestServices
                 .then( ).statusCode( 200 );
         }
     }
+
+
+    @Test
+    void getUserPermissions( )
+    {
+        String adminToken = getAdminToken( );
+        Map<String, Object> jsonAsMap = new HashMap<>( );
+        jsonAsMap.put( "user_id", "aragorn" );
+        jsonAsMap.put( "email", "[email protected]" );
+        jsonAsMap.put( "fullName", "Aragorn King of Gondor" );
+        jsonAsMap.put( "validated", true );
+        jsonAsMap.put( "password", "pAssw0rD" );
+        given( ).spec( getRequestSpec( adminToken ) ).contentType( JSON )
+            .body( jsonAsMap )
+            .when( )
+            .post( )
+            .then( ).statusCode( 201 );
+        try
+        {
+
+            String token = getUserToken( "aragorn", "pAssw0rD" );
+            Response response = given( ).spec( getRequestSpec( token ) 
).contentType( JSON )
+                .when( )
+                .get( "aragorn/permissions" )
+                .prettyPeek()
+                .then( ).statusCode( 200 ).extract( ).response( );
+            assertEquals( 2, response.getBody( ).jsonPath().getList( "" 
).size() );
+
+
+        }
+        finally
+        {
+            given( ).spec( getRequestSpec( adminToken ) ).contentType( JSON )
+                .delete( "aragorn" )
+                .then( ).statusCode( 200 );
+        }
+    }
+
 }

Reply via email to