-
Notifications
You must be signed in to change notification settings - Fork 7
/
BaseTenantAutoSetup.java
90 lines (74 loc) · 3.34 KB
/
BaseTenantAutoSetup.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
/*
* Made with all the love in the world
* by scireum in Remshalden, Germany
*
* Copyright by scireum GmbH
* http://www.scireum.de - [email protected]
*/
package sirius.biz.tenants;
import sirius.kernel.AutoSetupRule;
import sirius.kernel.commons.Strings;
import sirius.kernel.di.PartCollection;
import sirius.kernel.di.std.ConfigValue;
import sirius.kernel.di.std.Part;
import sirius.kernel.di.std.Parts;
import sirius.kernel.di.std.Priorized;
import javax.annotation.Nullable;
import java.util.function.Consumer;
/**
* Contains the common base functionality of {@link sirius.biz.tenants.jdbc.SQLTenantAutoSetup} and
* {@link sirius.biz.tenants.mongo.MongoTenantAutoSetup}.
*/
public abstract class BaseTenantAutoSetup implements AutoSetupRule {
@Part
protected Tenants<?, ?, ?> tenants;
@Parts(TenantAutoSetupExtender.class)
protected PartCollection<TenantAutoSetupExtender> extenders;
@ConfigValue("security.system-saml.externalLoginIntervalDays")
@Nullable
private Integer externalLoginIntervalDays;
@ConfigValue("security.system-saml.requestIssuerName")
private String samlRequestIssuerName;
@ConfigValue("security.system-saml.issuerUrl")
private String samlIssuerUrl;
@ConfigValue("security.system-saml.issuerIndex")
private String samlIssuerIndex;
@ConfigValue("security.system-saml.issuerName")
private String samlIssuerName;
@ConfigValue("security.system-saml.fingerprint")
private String samlFingerprint;
protected void setupUserData(UserAccount<?, ?> userAccount) {
userAccount.getUserAccountData().setEmail("[email protected]");
userAccount.getUserAccountData().getLogin().setUsername("system");
userAccount.getUserAccountData().getLogin().setCleartextPassword("system");
userAccount.getTrace().setSilent(true);
// This should be enough to grant us more roles via the UI
userAccount.getUserAccountData().getPermissions().getPermissions().add("administrator");
userAccount.getUserAccountData().getPermissions().getPermissions().add("user-administrator");
userAccount.getUserAccountData().getPermissions().getPermissions().add("system-administrator");
extenders.forEach(extender -> extender.enhanceUser(userAccount));
}
protected void setupTenantData(Tenant<?> tenant) {
updateSamlData(tenant);
tenant.getTenantData().setName("System Tenant");
tenant.getTenantData().setFullName("System Tenant");
extenders.forEach(extender -> extender.enhanceTenant(tenant));
}
protected void updateSamlData(Tenant<?> tenant) {
tenant.getTenantData().setExternalLoginIntervalDays(externalLoginIntervalDays);
acceptIfFilled(samlIssuerName, tenant.getTenantData()::setSamlIssuerName);
acceptIfFilled(samlRequestIssuerName, tenant.getTenantData()::setSamlRequestIssuerName);
acceptIfFilled(samlIssuerUrl, tenant.getTenantData()::setSamlIssuerUrl);
acceptIfFilled(samlIssuerIndex, tenant.getTenantData()::setSamlIssuerIndex);
acceptIfFilled(samlFingerprint, tenant.getTenantData()::setSamlFingerprint);
}
private void acceptIfFilled(String value, Consumer<String> filler) {
if (Strings.isFilled(value)) {
filler.accept(value);
}
}
@Override
public int getPriority() {
return Priorized.DEFAULT_PRIORITY;
}
}