orthanc-authorization: Plugin/CachedAuthorizationService.cpp annotate

annotate Plugin/CachedAuthorizationService.cpp @ 46:914b8113fd46

upgrade to year 2021

author	Sebastien Jodogne <s.jodogne@gmail.com>
date	Wed, 06 Jan 2021 18:01:12 +0100
parents	79d871605ffd
children	1a13c4fbc9a1

rev	line source
1 d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	1 /**
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	2 * Advanced authorization plugin for Orthanc
46 914b8113fd46 upgrade to year 2021 Sebastien Jodogne <s.jodogne@gmail.com> parents: 32 diff changeset	3 * Copyright (C) 2017-2021 Osimis S.A., Belgium
1 d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	4 *
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	5 * This program is free software: you can redistribute it and/or
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	6 * modify it under the terms of the GNU Affero General Public License
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	7 * as published by the Free Software Foundation, either version 3 of
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	8 * the License, or (at your option) any later version.
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	9 *
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	10 * This program is distributed in the hope that it will be useful, but
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	11 * WITHOUT ANY WARRANTY; without even the implied warranty of
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	13 * Affero General Public License for more details.
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	14 *
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	15 * You should have received a copy of the GNU Affero General Public License
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	16 * along with this program. If not, see <http://www.gnu.org/licenses/>.
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	17 **/
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	18
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	19 #include "CachedAuthorizationService.h"
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	20
32 79d871605ffd sync Sebastien Jodogne <s.jodogne@gmail.com> parents: 31 diff changeset	21 #include <OrthancException.h>
1 d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	22
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	23 #include <boost/lexical_cast.hpp>
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	24
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	25 namespace OrthancPlugins
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	26 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	27 std::string CachedAuthorizationService::ComputeKey(OrthancPluginHttpMethod method,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	28 const AccessedResource& access,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	29 const Token& token,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	30 const std::string& tokenValue) const
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	31 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	32 return (boost::lexical_cast<std::string>(method) + "\|" +
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	33 boost::lexical_cast<std::string>(access.GetLevel()) + "\|" +
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	34 access.GetOrthancId() + "\|" + token.GetKey() + "\|" + tokenValue);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	35 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	36
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	37
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	38 CachedAuthorizationService::CachedAuthorizationService(IAuthorizationService* decorated /* takes ownership */,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	39 ICacheFactory& factory) :
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	40 decorated_(decorated),
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	41 cache_(factory.Create())
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	42 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	43 if (decorated_.get() == NULL)
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	44 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	45 throw Orthanc::OrthancException(Orthanc::ErrorCode_InternalError);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	46 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	47 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	48
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	49
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	50 bool CachedAuthorizationService::IsGranted(unsigned int& validity,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	51 OrthancPluginHttpMethod method,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	52 const AccessedResource& access,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	53 const Token& token,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	54 const std::string& tokenValue)
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	55 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	56 assert(decorated_.get() != NULL);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	57
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	58 std::string key = ComputeKey(method, access, token, tokenValue);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	59 std::string value;
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	60
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	61 if (cache_->Retrieve(value, key))
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	62 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	63 // Return the previously cached value
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	64 return (value == "1");
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	65 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	66
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	67 bool granted = decorated_->IsGranted(validity, method, access, token, tokenValue);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	68
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	69 if (granted)
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	70 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	71 if (validity > 0)
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	72 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	73 cache_->Store(key, "1", validity);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	74 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	75
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	76 return true;
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	77 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	78 else
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	79 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	80 if (validity > 0)
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	81 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	82 cache_->Store(key, "0", validity);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	83 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	84
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	85 return false;
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	86 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	87 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	88
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	89
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	90 bool CachedAuthorizationService::IsGranted(unsigned int& validity,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	91 OrthancPluginHttpMethod method,
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	92 const AccessedResource& access)
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	93 {
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	94 assert(decorated_.get() != NULL);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	95
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	96 // The cache is not used if no token is available
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	97 return decorated_->IsGranted(validity, method, access);
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	98 }
d5d3cb00556a initial release Sebastien Jodogne <s.jodogne@gmail.com> parents: diff changeset	99 }

Mercurial > hg > orthanc-authorization

annotate Plugin/CachedAuthorizationService.cpp @ 46:914b8113fd46