SHIBUI-2003

First pass - ownership items

backend/src/main/java/edu/internet2/tier/shibboleth/admin/ui/security/model/Ownable.java

@@ -0,0 +1,13 @@
+package edu.internet2.tier.shibboleth.admin.ui.security.model;
+
+public interface Ownable {
+    /**
+     * @return representation of the id of the object. This is likely (but not limited to) the resource id of the object
+     */
+    public String getObjectId();
+
+    /**
+     * @return the OwnableType that describes the Ownable object
+     */
+    public OwnableType getOwnableType();
+}

backend/src/main/java/edu/internet2/tier/shibboleth/admin/ui/security/model/OwnableType.java

@@ -0,0 +1,5 @@
+package edu.internet2.tier.shibboleth.admin.ui.security.model;
+
+public enum OwnableType {
+    USER, ENTITY_DESCRIPTOR, METADATA_PROVIDER
+}

backend/src/main/java/edu/internet2/tier/shibboleth/admin/ui/security/model/Owner.java

@@ -0,0 +1,13 @@
+package edu.internet2.tier.shibboleth.admin.ui.security.model;
+
+public interface Owner {
+    /**
+     * @return representation of the id of the owner. This is likely (but not limited to) the resource id of the owner
+     */
+    public String getOwnerId();
+
+    /**
+     * @return the type describing the owner
+     */
+    public OwnerType getOwnerType();
+}

backend/src/main/java/edu/internet2/tier/shibboleth/admin/ui/security/model/OwnerType.java

@@ -0,0 +1,5 @@
+package edu.internet2.tier.shibboleth.admin.ui.security.model;
+
+public enum OwnerType {
+    USER, GROUP
+}

backend/src/main/java/edu/internet2/tier/shibboleth/admin/ui/security/model/Ownership.java

@@ -0,0 +1,31 @@
+package edu.internet2.tier.shibboleth.admin.ui.security.model;
+
+import javax.persistence.Entity;
+import javax.persistence.GeneratedValue;
+import javax.persistence.GenerationType;
+import javax.persistence.Id;
+
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+@Entity(name = "ownership")
+@Data
+@NoArgsConstructor
+public class Ownership {
+    @Id
+    @GeneratedValue(strategy = GenerationType.SEQUENCE)
+    protected Long id;
+
+    private String ownedId;
+    private String ownedType;
+    private String ownerId;
+    private String ownerType;
+
+    public Ownership(Owner owner, Ownable ownedObject) {
+        ownerId = owner.getOwnerId();
+        ownerType = owner.getOwnerType().name();
+
+        ownedId = ownedObject.getObjectId();
+        ownedType = ownedObject.getOwnableType().name();
+    }
+}

backend/src/main/java/edu/internet2/tier/shibboleth/admin/ui/security/repository/OwnershipRepository.java

@@ -0,0 +1,59 @@
+package edu.internet2.tier.shibboleth.admin.ui.security.repository;
+
+import java.util.List;
+import java.util.Set;
+
+import org.springframework.data.jpa.repository.JpaRepository;
+import org.springframework.data.jpa.repository.Modifying;
+import org.springframework.data.jpa.repository.Query;
+import org.springframework.data.repository.query.Param;
+
+import edu.internet2.tier.shibboleth.admin.ui.security.model.Ownable;
+import edu.internet2.tier.shibboleth.admin.ui.security.model.Owner;
+import edu.internet2.tier.shibboleth.admin.ui.security.model.Ownership;
+
+public interface OwnershipRepository extends JpaRepository<Ownership, String> {
+    /**
+     * Delete the user from any groups they may in.
+     */
+    @Query("DELETE FROM ownership o WHERE o.ownedId = :username AND o.ownedType = 'USER' AND o.ownerType = 'GROUP'")
+    @Modifying(clearAutomatically = true, flushAutomatically = true)
+    void clearUsersGroups(@Param("username") String username);
+
+    /**
+     * Remove any ownership of the ownable object
+     */
+    @Query("DELETE FROM ownership o WHERE o.ownedId = :#{#ownedObject.getObjectId()} AND o.ownedType = :#{#ownedObject.getOwnableType().toString()}")
+    @Modifying(clearAutomatically = true, flushAutomatically = true)
+    void deleteEntriesForOwnedObject(@Param("ownedObject") Ownable ownedObject);
+
+    /**
+     * Find all items an owner owns
+     */
+    @Query("SELECT o FROM ownership o WHERE o.ownerId = :#{#owner.getOwnerId()} AND o.ownerType = :#{#owner.getOwnerType().toString()}")
+    Set<Ownership> findAllByOwner(@Param("owner") Owner owner);
+
+    /**
+     * Find all the groups that a user belongs to
+     */
+    @Query("SELECT o FROM ownership o WHERE o.ownedId = :username AND o.ownedType = 'USER' AND o.ownerType = 'GROUP' ")
+    Set<Ownership> findAllGroupsForUser(@Param("username") String username);
+
+    /**
+     * Find the owner of this object
+     */
+    @Query("SELECT o FROM ownership o WHERE o.ownedId = :#{#ownedObject.getObjectId()} AND o.ownedType = :#{#ownedObject.getOwnableType().toString()}")
+    Set<Ownership> findOwnableObjectOwners(@Param("ownedObject") Ownable ownedObject);
+
+    /**
+     * Find all things the user owns
+     */
+    @Query("SELECT o FROM ownership o WHERE o.ownerId = :username AND o.ownerType = 'USER' ")
+    List<Ownership> findOwnedByUser(@Param("username") String username);
+
+    /**
+     * Find only the users that the owner owns
+     */
+    @Query("SELECT o FROM ownership o WHERE o.ownerId = :#{#owner.getOwnerId()} AND o.ownerType = :#{#owner.getOwnerType().toString()} AND o.ownedType='USER'")
+    Set<Ownership> findUsersByOwner(@Param("owner") Owner owner);
+}