Mercurial > hg > orthanc-authorization
annotate Plugin/AuthorizationWebService.cpp @ 52:af3387f433c5 0.2.5
Release 0.2.5
| author | Alain Mazy <am@osimis.io> |
|---|---|
| date | Fri, 13 May 2022 09:50:02 +0200 |
| parents | 914b8113fd46 |
| children | 317b31e99501 |
| rev | line source |
|---|---|
| 1 | 1 /** |
| 2 * Advanced authorization plugin for Orthanc | |
|
46
914b8113fd46
upgrade to year 2021
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
34
diff
changeset
|
3 * Copyright (C) 2017-2021 Osimis S.A., Belgium |
| 1 | 4 * |
| 5 * This program is free software: you can redistribute it and/or | |
| 6 * modify it under the terms of the GNU Affero General Public License | |
| 7 * as published by the Free Software Foundation, either version 3 of | |
| 8 * the License, or (at your option) any later version. | |
| 9 * | |
| 10 * This program is distributed in the hope that it will be useful, but | |
| 11 * WITHOUT ANY WARRANTY; without even the implied warranty of | |
| 12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
| 13 * Affero General Public License for more details. | |
| 14 * | |
| 15 * You should have received a copy of the GNU Affero General Public License | |
| 16 * along with this program. If not, see <http://www.gnu.org/licenses/>. | |
| 17 **/ | |
| 18 | |
| 19 #include "AuthorizationWebService.h" | |
| 20 | |
| 34 | 21 #include "../Resources/Orthanc/Plugins/OrthancPluginCppWrapper.h" |
| 22 | |
| 32 | 23 #include <Logging.h> |
| 1 | 24 |
| 25 namespace OrthancPlugins | |
| 26 { | |
| 27 bool AuthorizationWebService::IsGrantedInternal(unsigned int& validity, | |
| 28 OrthancPluginHttpMethod method, | |
| 29 const AccessedResource& access, | |
| 30 const Token* token, | |
| 31 const std::string& tokenValue) | |
| 32 { | |
| 33 Json::Value body = Json::objectValue; | |
| 34 | |
| 35 switch (method) | |
| 36 { | |
| 37 case OrthancPluginHttpMethod_Get: | |
| 38 body["method"] ="get"; | |
| 39 break; | |
| 40 | |
| 41 case OrthancPluginHttpMethod_Post: | |
| 42 body["method"] ="post"; | |
| 43 break; | |
| 44 | |
| 45 case OrthancPluginHttpMethod_Put: | |
| 46 body["method"] ="put"; | |
| 47 break; | |
| 48 | |
| 49 case OrthancPluginHttpMethod_Delete: | |
| 50 body["method"] ="delete"; | |
| 51 break; | |
| 52 | |
| 53 default: | |
| 54 throw Orthanc::OrthancException(Orthanc::ErrorCode_ParameterOutOfRange); | |
| 55 } | |
| 56 | |
| 57 body["level"] = EnumerationToString(access.GetLevel()); | |
| 58 | |
| 59 if (access.GetLevel() == AccessLevel_System) | |
| 60 { | |
| 61 body["uri"] = access.GetOrthancId(); | |
| 62 } | |
| 63 else | |
| 64 { | |
| 65 body["orthanc-id"] = access.GetOrthancId(); | |
| 66 body["dicom-uid"] = access.GetDicomUid(); | |
| 67 } | |
| 68 | |
| 69 if (token != NULL) | |
| 70 { | |
| 71 body["token-key"] = token->GetKey(); | |
| 72 body["token-value"] = tokenValue; | |
| 73 } | |
| 74 | |
|
29
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
75 MemoryBuffer answerBody; |
|
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
76 MemoryBuffer answerHeaders; |
| 1 | 77 uint16_t httpStatus = 0; |
| 78 | |
| 79 uint32_t headersCount = 0; | |
| 10 | 80 const char* headersKeys[2]; |
| 81 const char* headersValues[2]; | |
| 1 | 82 |
| 83 if (token != NULL && | |
| 84 token->GetType() == TokenType_HttpHeader) | |
| 85 { | |
| 86 // If the token source is a HTTP header, forward it also as a | |
| 87 // HTTP header | |
| 10 | 88 headersKeys[headersCount] = token->GetKey().c_str(); |
| 89 headersValues[headersCount] = tokenValue.c_str(); | |
| 90 headersCount++; | |
| 1 | 91 } |
| 92 | |
| 10 | 93 // set the correct content type for the outgoing |
| 94 headersKeys[headersCount] = "Content-Type"; | |
| 95 headersValues[headersCount] = "application/json"; | |
| 96 headersCount++; | |
| 97 | |
| 1 | 98 std::string flatBody = body.toStyledString(); |
| 99 | |
|
29
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
100 if (OrthancPluginHttpClient(GetGlobalContext(), *answerBody, *answerHeaders, |
| 1 | 101 &httpStatus, OrthancPluginHttpMethod_Post, |
| 102 url_.c_str(), headersCount, headersKeys, headersValues, | |
| 103 flatBody.c_str(), flatBody.size(), | |
| 104 username_.empty() ? NULL : username_.c_str(), | |
| 105 password_.empty() ? NULL : password_.c_str(), | |
| 106 10 /* timeout */, NULL, NULL, NULL, 0) | |
| 107 != OrthancPluginErrorCode_Success) | |
| 108 { | |
| 109 throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol); | |
| 110 } | |
| 111 | |
| 112 Json::Value answer; | |
| 113 answerBody.ToJson(answer); | |
| 114 | |
| 115 static const char* GRANTED = "granted"; | |
| 116 static const char* VALIDITY = "validity"; | |
| 117 | |
| 118 if (answer.type() != Json::objectValue || | |
| 119 !answer.isMember(GRANTED) || | |
| 120 answer[GRANTED].type() != Json::booleanValue || | |
| 121 (answer.isMember(VALIDITY) && | |
| 122 answer[VALIDITY].type() != Json::intValue)) | |
| 123 { | |
|
29
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
124 throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol, |
|
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
125 "Syntax error in the result of the Web service"); |
| 1 | 126 } |
| 127 | |
| 128 validity = 0; | |
| 129 if (answer.isMember(VALIDITY)) | |
| 130 { | |
| 131 int tmp = answer[VALIDITY].asInt(); | |
| 132 if (tmp < 0) | |
| 133 { | |
|
29
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
134 throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol, |
|
bc0431cb6b8f
fix for compatibility with simplified OrthancPluginCppWrapper
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
22
diff
changeset
|
135 "A validity duration cannot be negative"); |
| 1 | 136 } |
| 137 | |
| 138 validity = static_cast<unsigned int>(tmp); | |
| 139 } | |
| 140 | |
| 141 return answer[GRANTED].asBool(); | |
| 142 } | |
| 143 | |
| 144 | |
| 145 void AuthorizationWebService::SetCredentials(const std::string& username, | |
| 146 const std::string& password) | |
| 147 { | |
| 148 username_ = username; | |
| 149 password_ = password; | |
| 150 } | |
| 151 } |