Mercurial > hg > orthanc-authorization
annotate Plugin/DefaultAuthorizationParser.cpp @ 68:1a13c4fbc9a1
copyrights
author | Alain Mazy <am@osimis.io> |
---|---|
date | Fri, 17 Feb 2023 15:05:02 +0100 |
parents | 55539d564f4f |
children | 94a9484d7f8f |
rev | line source |
---|---|
1 | 1 /** |
2 * Advanced authorization plugin for Orthanc | |
68 | 3 * Copyright (C) 2017-2023 Osimis S.A., Belgium |
1 | 4 * |
5 * This program is free software: you can redistribute it and/or | |
6 * modify it under the terms of the GNU Affero General Public License | |
7 * as published by the Free Software Foundation, either version 3 of | |
8 * the License, or (at your option) any later version. | |
9 * | |
10 * This program is distributed in the hope that it will be useful, but | |
11 * WITHOUT ANY WARRANTY; without even the implied warranty of | |
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
13 * Affero General Public License for more details. | |
14 * | |
15 * You should have received a copy of the GNU Affero General Public License | |
16 * along with this program. If not, see <http://www.gnu.org/licenses/>. | |
17 **/ | |
18 | |
19 #include "DefaultAuthorizationParser.h" | |
20 | |
32 | 21 #include <OrthancException.h> |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
22 #include <HttpServer/HttpToolbox.h> |
1 | 23 |
24 namespace OrthancPlugins | |
25 { | |
29
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
28
diff
changeset
|
26 DefaultAuthorizationParser::DefaultAuthorizationParser(ICacheFactory& factory, |
1 | 27 const std::string& dicomWebRoot) : |
29
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
28
diff
changeset
|
28 AuthorizationParserBase(factory), |
1 | 29 resourcesPattern_("^/(patients|studies|series|instances)/([a-f0-9-]+)(|/.*)$"), |
30 seriesPattern_("^/(web-viewer/series|web-viewer/is-stable-series|wsi/pyramids|wsi/tiles)/([a-f0-9-]+)(|/.*)$"), | |
11 | 31 instancesPattern_("^/web-viewer/instances/[a-z0-9]+-([a-f0-9-]+)_[0-9]+$"), |
32 osimisViewerSeries_("^/osimis-viewer/series/([a-f0-9-]+)(|/.*)$"), | |
28
ae19947abf68
Added support for Osimis Web Viewer new route (osimis-viewer/custom-command/)
am@osimis.io
parents:
22
diff
changeset
|
33 osimisViewerImages_("^/osimis-viewer/(images|custom-command)/([a-f0-9-]+)(|/.*)$"), |
11 | 34 osimisViewerStudies_("^/osimis-viewer/studies/([a-f0-9-]+)(|/.*)$") |
1 | 35 { |
36 std::string tmp = dicomWebRoot; | |
37 while (!tmp.empty() && | |
38 tmp[tmp.size() - 1] == '/') | |
39 { | |
40 tmp = tmp.substr(0, tmp.size() - 1); | |
41 } | |
42 | |
43 dicomWebStudies_ = boost::regex( | |
44 "^" + tmp + "/studies/([.0-9]+)(|/series)(|/)$"); | |
45 | |
46 dicomWebSeries_ = boost::regex( | |
47 "^" + tmp + "/studies/([.0-9]+)/series/([.0-9]+)(|/instances)(|/)$"); | |
48 | |
49 dicomWebInstances_ = boost::regex( | |
50 "^" + tmp + "/studies/([.0-9]+)/series/([.0-9]+)/instances/([.0-9]+)(|/|/frames/.*)$"); | |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
51 |
57
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
52 dicomWebQidoRsFind_ = boost::regex( |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
53 "^" + tmp + "/(studies|series|instances)\?(.*)$"); |
1 | 54 } |
55 | |
56 | |
57 bool DefaultAuthorizationParser::Parse(AccessedResources& target, | |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
58 const std::string& uri, |
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
59 const std::map<std::string, std::string>& getArguments) |
1 | 60 { |
61 // The mutex below should not be necessary, but we prefer to | |
62 // ensure thread safety in boost::regex | |
63 boost::mutex::scoped_lock lock(mutex_); | |
64 | |
65 boost::smatch what; | |
66 | |
67 if (boost::regex_match(uri, what, resourcesPattern_)) | |
68 { | |
69 AccessLevel level = StringToAccessLevel(what[1]); | |
70 | |
71 switch (level) | |
72 { | |
73 case AccessLevel_Instance: | |
74 AddOrthancInstance(target, what[2]); | |
75 break; | |
76 | |
77 case AccessLevel_Series: | |
78 AddOrthancSeries(target, what[2]); | |
79 break; | |
80 | |
81 case AccessLevel_Study: | |
82 AddOrthancStudy(target, what[2]); | |
83 break; | |
84 | |
85 case AccessLevel_Patient: | |
86 AddOrthancPatient(target, what[2]); | |
87 break; | |
88 | |
89 default: | |
90 throw Orthanc::OrthancException(Orthanc::ErrorCode_InternalError); | |
91 } | |
92 | |
93 return true; | |
94 } | |
95 else if (boost::regex_match(uri, what, seriesPattern_)) | |
96 { | |
97 AddOrthancSeries(target, what[2]); | |
98 return true; | |
99 } | |
100 else if (boost::regex_match(uri, what, instancesPattern_)) | |
101 { | |
102 AddOrthancInstance(target, what[1]); | |
103 return true; | |
104 } | |
105 else if (boost::regex_match(uri, what, dicomWebStudies_)) | |
106 { | |
107 AddDicomStudy(target, what[1]); | |
108 return true; | |
109 } | |
110 else if (boost::regex_match(uri, what, dicomWebSeries_)) | |
111 { | |
112 AddDicomSeries(target, what[1], what[2]); | |
113 return true; | |
114 } | |
115 else if (boost::regex_match(uri, what, dicomWebInstances_)) | |
116 { | |
117 AddDicomInstance(target, what[1], what[2], what[3]); | |
118 return true; | |
119 } | |
11 | 120 else if (boost::regex_match(uri, what, osimisViewerSeries_)) |
121 { | |
122 AddOrthancSeries(target, what[1]); | |
123 return true; | |
124 } | |
125 else if (boost::regex_match(uri, what, osimisViewerStudies_)) | |
126 { | |
127 AddOrthancStudy(target, what[1]); | |
128 return true; | |
129 } | |
130 else if (boost::regex_match(uri, what, osimisViewerImages_)) | |
131 { | |
50 | 132 AddOrthancInstance(target, what[2]); |
11 | 133 return true; |
134 } | |
57
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
135 else if (boost::regex_match(uri, what, dicomWebQidoRsFind_)) |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
136 { |
57
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
137 std::string studyInstanceUid, seriesInstanceUid, sopInstanceUid; |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
138 |
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
139 studyInstanceUid = Orthanc::HttpToolbox::GetArgument(getArguments, "0020000D", ""); |
57
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
140 seriesInstanceUid = Orthanc::HttpToolbox::GetArgument(getArguments, "0020000E", ""); |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
141 sopInstanceUid = Orthanc::HttpToolbox::GetArgument(getArguments, "00080018", ""); |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
142 |
57
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
143 if (!sopInstanceUid.empty() && !seriesInstanceUid.empty() && !studyInstanceUid.empty()) |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
144 { |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
145 AddDicomInstance(target, studyInstanceUid, seriesInstanceUid, sopInstanceUid); |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
146 } |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
147 else if (!seriesInstanceUid.empty() && !studyInstanceUid.empty()) |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
148 { |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
149 AddDicomSeries(target, studyInstanceUid, seriesInstanceUid); |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
150 } |
55539d564f4f
added support for /dicom-web/series? & /dicom-web/instances?
Alain Mazy <am@osimis.io>
parents:
56
diff
changeset
|
151 else if (!studyInstanceUid.empty()) |
56
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
152 { |
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
153 AddDicomStudy(target, studyInstanceUid); |
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
154 } |
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
155 return true; |
c02f0646297d
added support for /dicom-web/studies?0020000D=1.2.3&...
Alain Mazy <am@osimis.io>
parents:
50
diff
changeset
|
156 } |
1 | 157 else |
158 { | |
159 // Unknown type of resource: Consider it as a system access | |
160 | |
161 // Remove the trailing slashes if need be | |
162 std::string s = uri; | |
163 while (!s.empty() && | |
164 s[s.length() - 1] == '/') | |
165 { | |
166 s = s.substr(0, s.length() - 1); | |
167 } | |
168 | |
169 target.push_back(AccessedResource(AccessLevel_System, s, "")); | |
170 return true; | |
171 } | |
172 } | |
173 } |