/modules/uoa-login-core/trunk/src/main/java/eu/dnetlib/openaire/user/login/authorization/OpenAIREAuthoritiesMapper.java - D-Net - D-Net project tracking tool

dnet45/modules/uoa-login-core/trunk/src/main/java/eu/dnetlib/openaire/user/login/authorization/OpenAIREAuthoritiesMapper.java @ 59191

       package eu.dnetlib.openaire.user.login.authorization;
       import com.google.gson.JsonElement;
       import com.nimbusds.jwt.JWT;
       import com.nimbusds.jwt.JWTClaimsSet;
       import org.apache.log4j.Logger;
       import org.mitre.openid.connect.client.OIDCAuthoritiesMapper;
       import org.mitre.openid.connect.model.UserInfo;
       import org.springframework.context.annotation.ComponentScan;
       import org.springframework.security.core.GrantedAuthority;
       import org.springframework.security.core.authority.SimpleGrantedAuthority;
       import org.springframework.stereotype.Component;
       import java.text.ParseException;
       import java.util.Collection;
       import java.util.HashSet;
       import java.util.regex.Matcher;
       import java.util.regex.Pattern;
       @ComponentScan
       @Component
       public class OpenAIREAuthoritiesMapper implements OIDCAuthoritiesMapper {
           private static final Logger logger = Logger.getLogger(OpenAIREAuthoritiesMapper.class);
           @Override
           public Collection<? extends GrantedAuthority> mapAuthorities(JWT jwtToken, UserInfo userInfo) {
               HashSet<SimpleGrantedAuthority> out = new HashSet<>();
               logger.info("entitlements" + userInfo.getSource().getAsJsonArray("edu_person_entitlements").size());
               try {
                   JWTClaimsSet claims = jwtToken.getJWTClaimsSet();
                   String  regex = "urn:geant:openaire[.]eu:group:(\\w+[\\W]*\\w+):?(.*)?:role=member#aai[.]openaire[.]eu";
                   for(JsonElement obj: userInfo.getSource().getAsJsonArray("edu_person_entitlements")) {
                       Matcher matcher = Pattern.compile(regex).matcher(obj.getAsString());
                       if (matcher.find()) {
                           StringBuilder sb = new StringBuilder();
                           if(matcher.group(1) != null && matcher.group(1).length() > 0) {
                               sb.append(matcher.group(1).replaceAll("[\\W]+", "_").toUpperCase());
+                          }
                           if(matcher.group(2).length() > 0) {
                               if(sb.toString().length() > 0) {
                                   sb.append("_");
+                              }
                               if(matcher.group(2).equals("admins")) {
                                   sb.append("MANAGER");
                               } else  {
                                   sb.append(matcher.group(2).toUpperCase());
+                              }
+                          }
                           out.add(new SimpleGrantedAuthority
                                   (sb.toString()));
+                      }
+                  }
               } catch (ParseException pe) {
                   logger.warn("Unable to parse ID Token inside of authorities mapper (huh?)", pe);
+              }
               return out;
+          }
+      }

(1-1/1)

Project

General

Profile

D-Net