org.wso2.balana.PDP Java Examples
The following examples show how to use
org.wso2.balana.PDP.
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
| Source File: PDPController.java From balana with Apache License 2.0 | 5 votes |
|
/**
* Evaluates the request which was created based on KMarket sample.
*
* @param request is going to be converted to XACML Request.
* @return result of the Policy Decision Point.
* */
@PostMapping("/evaluate")
public ResponseObject evaluate(@RequestBody RequestObject request)
{
int totalAmount = 0;
Utilities.initData();
Utilities.initBalana();
totalAmount = Utilities.calculateTotal(request.getProductName(), request.getNumberOfProducts());
String xacmlRequest = Utilities.createXACMLRequest(
request.getUsername(), request.getProductName(), request.getNumberOfProducts(), totalAmount);
PDP pdp = Utilities.getPDPNewInstance();
String xacmlResponse = pdp.evaluate(xacmlRequest); //evaluates XACML request here.
String responseMessage = "";
try {
ResponseCtx responseCtx = ResponseCtx.getInstance(Utilities.getXacmlResponse(xacmlResponse));
AbstractResult result = responseCtx.getResults().iterator().next();
if(AbstractResult.DECISION_PERMIT == result.getDecision()){
responseMessage = "\n" + request.getUsername() + " is authorized to perform this purchase\n\n";
} else {
//if it is not PERMIT, DENY is going to be returned to client user.
responseMessage += "\n" + request.getUsername() + " is NOT authorized to perform this purchase\n";
List<Advice> advices = result.getAdvices();
for(Advice advice : advices){
List<AttributeAssignment> assignments = advice.getAssignments();
for(AttributeAssignment assignment : assignments){
responseMessage += "Advice : " + assignment.getContent() +"\n\n";
}
}
}
} catch (ParsingException e) {
e.printStackTrace();
}
return new ResponseObject(responseMessage);
}
Example #2
| Source File: Utilities.java From balana with Apache License 2.0 | 5 votes |
|
/**
* Generates new Policy Decision Point instance.
* */
protected static PDP getPDPNewInstance(){
PDPConfig pdpConfig = balana.getPdpConfig();
// registering new attribute finder. so default PDPConfig is needed to change
AttributeFinder attributeFinder = pdpConfig.getAttributeFinder();
List<AttributeFinderModule> finderModules = attributeFinder.getModules();
finderModules.add(new SampleAttributeFinderModule());
attributeFinder.setModules(finderModules);
return new PDP(new PDPConfig(attributeFinder, pdpConfig.getPolicyFinder(), null, true));
}
Example #3
| Source File: KMarketAccessControl.java From balana with Apache License 2.0 | 5 votes |
|
/**
* Returns a new PDP instance with new XACML policies
*
* @return a PDP instance
*/
private static PDP getPDPNewInstance(){
PDPConfig pdpConfig = balana.getPdpConfig();
// registering new attribute finder. so default PDPConfig is needed to change
AttributeFinder attributeFinder = pdpConfig.getAttributeFinder();
List<AttributeFinderModule> finderModules = attributeFinder.getModules();
finderModules.add(new SampleAttributeFinderModule());
attributeFinder.setModules(finderModules);
return new PDP(new PDPConfig(attributeFinder, pdpConfig.getPolicyFinder(), null, true));
}
Example #4
| Source File: KMarketAccessControl.java From balana with Apache License 2.0 | 4 votes |
|
public static void main(String[] args){
Console console;
String userName = null;
String productName = null;
int numberOfProducts = 1;
int totalAmount = 0;
printDescription();
initData();
initBalana();
System.out.println("\nYou can select one of following item for your shopping chart : \n");
System.out.println(products);
if ((console = System.console()) != null){
userName = console.readLine("Enter User name : ");
if(userName == null || userName.trim().length() < 1 ){
System.err.println("\nUser name can not be empty\n");
return;
}
String productId = console.readLine("Enter Product Id : ");
if(productId == null || productId.trim().length() < 1 ){
System.err.println("\nProduct Id can not be empty\n");
return;
} else {
productName = idMap.get(productId);
if(productName == null){
System.err.println("\nEnter valid product Id\n");
return;
}
}
String productAmount = console.readLine("Enter No of Products : ");
if(productAmount == null || productAmount.trim().length() < 1 ){
numberOfProducts = 1;
} else {
numberOfProducts = Integer.parseInt(productAmount);
}
}
totalAmount = calculateTotal(productName, numberOfProducts);
System.err.println("\nTotal Amount is : " + totalAmount + "\n");
String request = createXACMLRequest(userName, productName, numberOfProducts, totalAmount);
//String request = createXACMLRequest("bob", "Food", 2, 40);
PDP pdp = getPDPNewInstance();
System.out.println("\n======================== XACML Request ====================");
System.out.println(request);
System.out.println("===========================================================");
String response = pdp.evaluate(request);
System.out.println("\n======================== XACML Response ===================");
System.out.println(response);
System.out.println("===========================================================");
try {
ResponseCtx responseCtx = ResponseCtx.getInstance(getXacmlResponse(response));
AbstractResult result = responseCtx.getResults().iterator().next();
if(AbstractResult.DECISION_PERMIT == result.getDecision()){
System.out.println("\n" + userName + " is authorized to perform this purchase\n\n");
} else {
System.out.println("\n" + userName + " is NOT authorized to perform this purchase\n");
List<Advice> advices = result.getAdvices();
for(Advice advice : advices){
List<AttributeAssignment> assignments = advice.getAssignments();
for(AttributeAssignment assignment : assignments){
System.out.println("Advice : " + assignment.getContent() +"\n\n");
}
}
}
} catch (ParsingException e) {
e.printStackTrace();
}
}
