[moon.git] /

/*
 * Copyright (c) 2014 Cisco Systems, Inc. and others.  All rights reserved.
 *
 * This program and the accompanying materials are made available under the
 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
 * and is available at http://www.eclipse.org/legal/epl-v10.html
 */

package org.opendaylight.aaa.authz.srv;

import com.google.common.util.concurrent.CheckedFuture;
import com.google.common.util.concurrent.Futures;
import com.google.common.util.concurrent.ListenableFuture;

import org.opendaylight.controller.md.sal.common.api.TransactionStatus;
import org.opendaylight.controller.md.sal.common.api.data.LogicalDatastoreType;
import org.opendaylight.controller.md.sal.common.api.data.TransactionCommitFailedException;
import org.opendaylight.controller.md.sal.dom.api.DOMDataWriteTransaction;
import org.opendaylight.yang.gen.v1.urn.aaa.yang.authz.ds.rev140722.ActionType;
import org.opendaylight.yangtools.yang.common.RpcResult;
import org.opendaylight.yangtools.yang.data.api.YangInstanceIdentifier;
import org.opendaylight.yangtools.yang.data.api.schema.NormalizedNode;

/**
 * Created by wdec on 02/09/2014.
 */
public class AuthzWriteOnlyTransaction implements DOMDataWriteTransaction {

    private final DOMDataWriteTransaction domDataWriteTransaction;

    public AuthzWriteOnlyTransaction(DOMDataWriteTransaction wo) {
        this.domDataWriteTransaction = wo;
    }

    @Override
    public void put(LogicalDatastoreType logicalDatastoreType,
            YangInstanceIdentifier yangInstanceIdentifier, NormalizedNode<?, ?> normalizedNode) {

        if (AuthzServiceImpl.isAuthorized(logicalDatastoreType, yangInstanceIdentifier,
                ActionType.Put)) {
            domDataWriteTransaction.put(logicalDatastoreType, yangInstanceIdentifier,
                    normalizedNode);
        }
    }

    @Override
    public void merge(LogicalDatastoreType logicalDatastoreType,
            YangInstanceIdentifier yangInstanceIdentifier, NormalizedNode<?, ?> normalizedNode) {

        if (AuthzServiceImpl.isAuthorized(logicalDatastoreType, yangInstanceIdentifier,
                ActionType.Merge)) {
            domDataWriteTransaction.merge(logicalDatastoreType, yangInstanceIdentifier,
                    normalizedNode);
        }
    }

    @Override
    public boolean cancel() {
        if (AuthzServiceImpl.isAuthorized(ActionType.Cancel)) {
            return domDataWriteTransaction.cancel();
        }
        return false;
    }

    @Override
    public void delete(LogicalDatastoreType logicalDatastoreType,
            YangInstanceIdentifier yangInstanceIdentifier) {

        if (AuthzServiceImpl.isAuthorized(logicalDatastoreType, yangInstanceIdentifier,
                ActionType.Delete)) {
            domDataWriteTransaction.delete(logicalDatastoreType, yangInstanceIdentifier);
        }
    }

    @Override
    public CheckedFuture<Void, TransactionCommitFailedException> submit() {
        if (AuthzServiceImpl.isAuthorized(ActionType.Submit)) {
            return domDataWriteTransaction.submit();
        }
        TransactionCommitFailedException e = new TransactionCommitFailedException(
                "Unauthorized User");
        return Futures.immediateFailedCheckedFuture(e);
    }

    @Deprecated
    @Override
    public ListenableFuture<RpcResult<TransactionStatus>> commit() {
        if (AuthzServiceImpl.isAuthorized(ActionType.Commit)) {
            return domDataWriteTransaction.commit();
        }
        TransactionCommitFailedException e = new TransactionCommitFailedException(
                "Unauthorized User");
        return Futures.immediateFailedCheckedFuture(e);
    }

    @Override
    public Object getIdentifier() {
        if (AuthzServiceImpl.isAuthorized(ActionType.GetIdentifier)) {
            return domDataWriteTransaction.getIdentifier();
        }
        return null;
    }
}