Mercurial > hg > orthanc-authorization
comparison Plugin/AuthorizationWebService.cpp @ 1:d5d3cb00556a
initial release
| author | Sebastien Jodogne <s.jodogne@gmail.com> |
|---|---|
| date | Wed, 22 Mar 2017 16:13:52 +0100 |
| parents | |
| children | a2e3e7cd380e |
comparison
equal
deleted
inserted
replaced
| 0:decac5df19c4 | 1:d5d3cb00556a |
|---|---|
| 1 /** | |
| 2 * Advanced authorization plugin for Orthanc | |
| 3 * Copyright (C) 2017 Osimis, Belgium | |
| 4 * | |
| 5 * This program is free software: you can redistribute it and/or | |
| 6 * modify it under the terms of the GNU Affero General Public License | |
| 7 * as published by the Free Software Foundation, either version 3 of | |
| 8 * the License, or (at your option) any later version. | |
| 9 * | |
| 10 * This program is distributed in the hope that it will be useful, but | |
| 11 * WITHOUT ANY WARRANTY; without even the implied warranty of | |
| 12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
| 13 * Affero General Public License for more details. | |
| 14 * | |
| 15 * You should have received a copy of the GNU Affero General Public License | |
| 16 * along with this program. If not, see <http://www.gnu.org/licenses/>. | |
| 17 **/ | |
| 18 | |
| 19 #include "AuthorizationWebService.h" | |
| 20 | |
| 21 #include "../Resources/Orthanc/Core/Logging.h" | |
| 22 #include "../Resources/Orthanc/Plugins/Samples/Common/OrthancPluginCppWrapper.h" | |
| 23 | |
| 24 namespace OrthancPlugins | |
| 25 { | |
| 26 bool AuthorizationWebService::IsGrantedInternal(unsigned int& validity, | |
| 27 OrthancPluginHttpMethod method, | |
| 28 const AccessedResource& access, | |
| 29 const Token* token, | |
| 30 const std::string& tokenValue) | |
| 31 { | |
| 32 Json::Value body = Json::objectValue; | |
| 33 | |
| 34 switch (method) | |
| 35 { | |
| 36 case OrthancPluginHttpMethod_Get: | |
| 37 body["method"] ="get"; | |
| 38 break; | |
| 39 | |
| 40 case OrthancPluginHttpMethod_Post: | |
| 41 body["method"] ="post"; | |
| 42 break; | |
| 43 | |
| 44 case OrthancPluginHttpMethod_Put: | |
| 45 body["method"] ="put"; | |
| 46 break; | |
| 47 | |
| 48 case OrthancPluginHttpMethod_Delete: | |
| 49 body["method"] ="delete"; | |
| 50 break; | |
| 51 | |
| 52 default: | |
| 53 throw Orthanc::OrthancException(Orthanc::ErrorCode_ParameterOutOfRange); | |
| 54 } | |
| 55 | |
| 56 body["level"] = EnumerationToString(access.GetLevel()); | |
| 57 | |
| 58 if (access.GetLevel() == AccessLevel_System) | |
| 59 { | |
| 60 body["uri"] = access.GetOrthancId(); | |
| 61 } | |
| 62 else | |
| 63 { | |
| 64 body["orthanc-id"] = access.GetOrthancId(); | |
| 65 body["dicom-uid"] = access.GetDicomUid(); | |
| 66 } | |
| 67 | |
| 68 if (token != NULL) | |
| 69 { | |
| 70 body["token-key"] = token->GetKey(); | |
| 71 body["token-value"] = tokenValue; | |
| 72 } | |
| 73 | |
| 74 MemoryBuffer answerBody(context_); | |
| 75 MemoryBuffer answerHeaders(context_); | |
| 76 uint16_t httpStatus = 0; | |
| 77 | |
| 78 uint32_t headersCount = 0; | |
| 79 const char* headersKeys[1]; | |
| 80 const char* headersValues[1]; | |
| 81 | |
| 82 if (token != NULL && | |
| 83 token->GetType() == TokenType_HttpHeader) | |
| 84 { | |
| 85 // If the token source is a HTTP header, forward it also as a | |
| 86 // HTTP header | |
| 87 headersCount = 1; | |
| 88 headersKeys[0] = token->GetKey().c_str(); | |
| 89 headersValues[0] = tokenValue.c_str(); | |
| 90 } | |
| 91 | |
| 92 std::string flatBody = body.toStyledString(); | |
| 93 | |
| 94 if (OrthancPluginHttpClient(context_, *answerBody, *answerHeaders, | |
| 95 &httpStatus, OrthancPluginHttpMethod_Post, | |
| 96 url_.c_str(), headersCount, headersKeys, headersValues, | |
| 97 flatBody.c_str(), flatBody.size(), | |
| 98 username_.empty() ? NULL : username_.c_str(), | |
| 99 password_.empty() ? NULL : password_.c_str(), | |
| 100 10 /* timeout */, NULL, NULL, NULL, 0) | |
| 101 != OrthancPluginErrorCode_Success) | |
| 102 { | |
| 103 throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol); | |
| 104 } | |
| 105 | |
| 106 Json::Value answer; | |
| 107 answerBody.ToJson(answer); | |
| 108 | |
| 109 static const char* GRANTED = "granted"; | |
| 110 static const char* VALIDITY = "validity"; | |
| 111 | |
| 112 if (answer.type() != Json::objectValue || | |
| 113 !answer.isMember(GRANTED) || | |
| 114 answer[GRANTED].type() != Json::booleanValue || | |
| 115 (answer.isMember(VALIDITY) && | |
| 116 answer[VALIDITY].type() != Json::intValue)) | |
| 117 { | |
| 118 LOG(ERROR) << "Syntax error in the result of the Web service"; | |
| 119 throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol); | |
| 120 } | |
| 121 | |
| 122 validity = 0; | |
| 123 if (answer.isMember(VALIDITY)) | |
| 124 { | |
| 125 int tmp = answer[VALIDITY].asInt(); | |
| 126 if (tmp < 0) | |
| 127 { | |
| 128 LOG(ERROR) << "A validity duration cannot be negative"; | |
| 129 throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol); | |
| 130 } | |
| 131 | |
| 132 validity = static_cast<unsigned int>(tmp); | |
| 133 } | |
| 134 | |
| 135 return answer[GRANTED].asBool(); | |
| 136 } | |
| 137 | |
| 138 | |
| 139 AuthorizationWebService::AuthorizationWebService(OrthancPluginContext* context, | |
| 140 const std::string& url) : | |
| 141 context_(context), | |
| 142 url_(url) | |
| 143 { | |
| 144 if (context_ == NULL) | |
| 145 { | |
| 146 throw Orthanc::OrthancException(Orthanc::ErrorCode_ParameterOutOfRange); | |
| 147 } | |
| 148 } | |
| 149 | |
| 150 | |
| 151 void AuthorizationWebService::SetCredentials(const std::string& username, | |
| 152 const std::string& password) | |
| 153 { | |
| 154 username_ = username; | |
| 155 password_ = password; | |
| 156 } | |
| 157 } |