Mercurial > hg > orthanc-authorization
view Plugin/BaseAuthorizationService.h @ 197:b61949537444 0.8.0
0.8.0
author | Alain Mazy <am@orthanc.team> |
---|---|
date | Thu, 27 Jun 2024 17:04:58 +0200 |
parents | de232f9b3a60 |
children |
line wrap: on
line source
/** * Advanced authorization plugin for Orthanc * Copyright (C) 2017-2023 Osimis S.A., Belgium * Copyright (C) 2024-2024 Orthanc Team SRL, Belgium * Copyright (C) 2021-2024 Sebastien Jodogne, ICTEAM UCLouvain, Belgium * * This program is free software: you can redistribute it and/or * modify it under the terms of the GNU Affero General Public License * as published by the Free Software Foundation, either version 3 of * the License, or (at your option) any later version. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License * along with this program. If not, see <http://www.gnu.org/licenses/>. **/ #pragma once #include "IAuthorizationService.h" #include <Compatibility.h> namespace OrthancPlugins { class CachedAuthorizationService; class BaseAuthorizationService : public IAuthorizationService { friend CachedAuthorizationService; protected: virtual bool IsGrantedInternal(unsigned int& validity, OrthancPluginHttpMethod method, const AccessedResource& access, const Token* token, const std::string& tokenValue) = 0; virtual bool GetUserProfileInternal(unsigned int& validity, UserProfile& profile /* out */, const Token* token, const std::string& tokenValue) = 0; virtual bool HasUserPermissionInternal(unsigned int& validity, const std::string& permission, const UserProfile& profile) = 0; public: virtual ~BaseAuthorizationService() { } virtual bool IsGranted(unsigned int& validity, OrthancPluginHttpMethod method, const AccessedResource& access, const Token& token, const std::string& tokenValue) ORTHANC_OVERRIDE { return IsGrantedInternal(validity, method, access, &token, tokenValue); } virtual bool IsGrantedToAnonymousUser(unsigned int& validity, OrthancPluginHttpMethod method, const AccessedResource& access) ORTHANC_OVERRIDE { return IsGrantedInternal(validity, method, access, NULL, ""); } virtual bool GetUserProfile(unsigned int& validity, UserProfile& profile /* out */, const Token& token, const std::string& tokenValue) ORTHANC_OVERRIDE { return GetUserProfileInternal(validity, profile, &token, tokenValue); } virtual bool GetAnonymousUserProfile(unsigned int& validity /* out */, UserProfile& profile /* out */) ORTHANC_OVERRIDE { return GetUserProfileInternal(validity, profile, NULL, ""); } virtual bool HasUserPermission(unsigned int& validity /* out */, const std::set<std::string>& anyOfPermissions, const UserProfile& profile) ORTHANC_OVERRIDE { if (anyOfPermissions.size() == 0) { return true; } for (std::set<std::string>::const_iterator it = anyOfPermissions.begin(); it != anyOfPermissions.end(); ++it) { if (HasUserPermissionInternal(validity, *it, profile)) { return true; } } return false; } virtual bool HasAnonymousUserPermission(unsigned int& validity /* out */, const std::set<std::string>& anyOfPermissions) ORTHANC_OVERRIDE { if (anyOfPermissions.size() == 0) { return true; } UserProfile anonymousUserProfile; anonymousUserProfile.tokenType = TokenType_None; for (std::set<std::string>::const_iterator it = anyOfPermissions.begin(); it != anyOfPermissions.end(); ++it) { if (HasUserPermissionInternal(validity, *it, anonymousUserProfile)) { return true; } } return false; } }; }