Mercurial > hg > orthanc-authorization

diff Plugin/AuthorizationWebService.cpp @ 1:d5d3cb00556a

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
initial release
author Sebastien Jodogne <s.jodogne@gmail.com>
date Wed, 22 Mar 2017 16:13:52 +0100
parents
children a2e3e7cd380e
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/Plugin/AuthorizationWebService.cpp	Wed Mar 22 16:13:52 2017 +0100
@@ -0,0 +1,157 @@
+/**
+ * Advanced authorization plugin for Orthanc
+ * Copyright (C) 2017 Osimis, Belgium
+ *
+ * This program is free software: you can redistribute it and/or
+ * modify it under the terms of the GNU Affero General Public License
+ * as published by the Free Software Foundation, either version 3 of
+ * the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful, but
+ * WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ * Affero General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Affero General Public License
+ * along with this program. If not, see <http://www.gnu.org/licenses/>.
+ **/
+
+#include "AuthorizationWebService.h"
+
+#include "../Resources/Orthanc/Core/Logging.h"
+#include "../Resources/Orthanc/Plugins/Samples/Common/OrthancPluginCppWrapper.h"
+
+namespace OrthancPlugins
+{
+  bool AuthorizationWebService::IsGrantedInternal(unsigned int& validity,
+                                                  OrthancPluginHttpMethod method,
+                                                  const AccessedResource& access,
+                                                  const Token* token,
+                                                  const std::string& tokenValue)
+  {
+    Json::Value body = Json::objectValue;
+      
+    switch (method)
+    {
+      case OrthancPluginHttpMethod_Get:
+        body["method"] ="get";
+        break;
+          
+      case OrthancPluginHttpMethod_Post:
+        body["method"] ="post";
+        break;
+          
+      case OrthancPluginHttpMethod_Put:
+        body["method"] ="put";
+        break;
+          
+      case OrthancPluginHttpMethod_Delete:
+        body["method"] ="delete";
+        break;
+          
+      default:
+        throw Orthanc::OrthancException(Orthanc::ErrorCode_ParameterOutOfRange);
+    }
+
+    body["level"] = EnumerationToString(access.GetLevel());
+
+    if (access.GetLevel() == AccessLevel_System)
+    {
+      body["uri"] = access.GetOrthancId();
+    }
+    else
+    {
+      body["orthanc-id"] = access.GetOrthancId();
+      body["dicom-uid"] = access.GetDicomUid();
+    }
+
+    if (token != NULL)
+    {
+      body["token-key"] = token->GetKey();
+      body["token-value"] = tokenValue;
+    }
+
+    MemoryBuffer answerBody(context_);
+    MemoryBuffer answerHeaders(context_);
+    uint16_t httpStatus = 0;
+
+    uint32_t headersCount = 0;
+    const char* headersKeys[1];
+    const char* headersValues[1];
+      
+    if (token != NULL &&
+        token->GetType() == TokenType_HttpHeader)
+    {
+      // If the token source is a HTTP header, forward it also as a
+      // HTTP header
+      headersCount = 1;
+      headersKeys[0] = token->GetKey().c_str();
+      headersValues[0] = tokenValue.c_str();
+    }
+
+    std::string flatBody = body.toStyledString();
+      
+    if (OrthancPluginHttpClient(context_, *answerBody, *answerHeaders,
+                                &httpStatus, OrthancPluginHttpMethod_Post,
+                                url_.c_str(), headersCount, headersKeys, headersValues,
+                                flatBody.c_str(), flatBody.size(),
+                                username_.empty() ? NULL : username_.c_str(),
+                                password_.empty() ? NULL : password_.c_str(),
+                                10 /* timeout */, NULL, NULL, NULL, 0)
+        != OrthancPluginErrorCode_Success)
+    {
+      throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol);        
+    }
+
+    Json::Value answer;
+    answerBody.ToJson(answer);
+
+    static const char* GRANTED = "granted";
+    static const char* VALIDITY = "validity";
+      
+    if (answer.type() != Json::objectValue ||
+        !answer.isMember(GRANTED) ||
+        answer[GRANTED].type() != Json::booleanValue ||
+        (answer.isMember(VALIDITY) &&
+         answer[VALIDITY].type() != Json::intValue))
+    {
+      LOG(ERROR) << "Syntax error in the result of the Web service";
+      throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol);
+    }
+
+    validity = 0;
+    if (answer.isMember(VALIDITY))
+    {
+      int tmp = answer[VALIDITY].asInt();
+      if (tmp < 0)
+      {
+        LOG(ERROR) << "A validity duration cannot be negative";
+        throw Orthanc::OrthancException(Orthanc::ErrorCode_NetworkProtocol);          
+      }
+
+      validity = static_cast<unsigned int>(tmp);
+    }
+
+    return answer[GRANTED].asBool();
+  }
+    
+
+  AuthorizationWebService::AuthorizationWebService(OrthancPluginContext* context,
+                                                   const std::string& url) :
+    context_(context),
+    url_(url)
+  {
+    if (context_ == NULL)
+    {
+      throw Orthanc::OrthancException(Orthanc::ErrorCode_ParameterOutOfRange);
+    }
+  }
+
+    
+  void AuthorizationWebService::SetCredentials(const std::string& username,
+                                               const std::string& password)
+  {
+    username_ = username;
+    password_ = password;
+  }
+}