F2F fix

Author: jmgasper

buildtokenproperties.sh

@@ -44,6 +44,8 @@ M2MAUTHCONFIG_USERPROFILES_UPDATE=$(eval "echo \$${ENV}_M2MAUTHCONFIG_USERPROFIL
 M2MAUTHCONFIG_USERPROFILES_READ=$(eval "echo \$${ENV}_M2MAUTHCONFIG_USERPROFILES_READ")
 M2MAUTHCONFIG_USERPROFILES_DELETE=$(eval "echo \$${ENV}_M2MAUTHCONFIG_USERPROFILES_DELETE")
 
+MEMBER_API_ENDPOINT=$(eval "echo \$${ENV}_MEMBER_API_ENDPOINT")
+
 DOMAIN=$(eval "echo \$${ENV}_DOMAIN")
 SMTP=$(eval "echo \$${ENV}_SMTP")
 DB_HOST_IP=$(eval "echo \$${ENV}_DB_HOST_IP")
@@ -118,6 +120,7 @@ perl -pi -e "s/\{\{AUTH_DB_USER\}\}/$AUTH_DB_USER/g" $CONFFILENAME
 perl -pi -e "s/\{\{AUTH_DB_PASSWORD\}\}/$AUTH_DB_PASSWORD/g" $CONFFILENAME
 #perl -pi -e "s/\{\{EVENTBUSSERVICE_ENDPOINT\}\}/$EVENTBUSSERVICE_ENDPOINT/g" $CONFFILENAME
 perl -pi -e "s|\{\{EVENTBUSSERVICE_ENDPOINT\}\}|$EVENTBUSSERVICE_ENDPOINT|g" $CONFFILENAME
+perl -pi -e "s|\{\{MEMBER_API_ENDPOINT\}\}|$MEMBER_API_ENDPOINT|g" $CONFFILENAME
 perl -pi -e "s/\{\{EVENTBUSSERVICE_TOPIC\}\}/$EVENTBUSSERVICE_TOPIC/g" $CONFFILENAME
 perl -pi -e "s/\{\{EVENTBUSSERVICE_ORIGINATOR\}\}/$EVENTBUSSERVICE_ORIGINATOR/g" $CONFFILENAME
 perl -pi -e "s/\{\{M2MAUTHCONFIG_CID\}\}/$M2MAUTHCONFIG_CID/g" $CONFFILENAME

src/main/java/com/appirio/tech/core/service/identity/IdentityApplication.java

@@ -35,6 +35,7 @@
 import com.appirio.tech.core.api.v3.dropwizard.APIApplication;
 import com.appirio.tech.core.api.v3.util.jdbi.TCIDArgumentFactory;
 import com.appirio.tech.core.service.identity.clients.EventBusServiceClient;
+import com.appirio.tech.core.service.identity.clients.MemberApiClient;
 import com.appirio.tech.core.service.identity.dao.ClientDAO;
 import com.appirio.tech.core.service.identity.dao.ExternalAccountDAO;
 import com.appirio.tech.core.service.identity.dao.GroupDAO;
@@ -192,6 +193,11 @@ public void run(IdentityConfiguration configuration, Environment environment) th
 		IdentityProviderResource identityProviderResource = new IdentityProviderResource(identityProviderDAO);
 		environment.jersey().register(identityProviderResource);
 
+		final Client apiClient = new JerseyClientBuilder(environment).using(new JerseyClientConfiguration())
+				.build(getName());
+		final MemberApiClient memberApiClient = new MemberApiClient(apiClient,
+				configuration.getMemberApiClientConfig(), configuration.getM2mAuthConfiguration());
+
 		// RDS
 		final DBIFactory authDBIFactory = new DBIFactory();
 		final DBI authjdbi = authDBIFactory.build(environment, configuration.getAuthorizationDatabase(), "Authorization");
@@ -212,7 +218,7 @@ public void run(IdentityConfiguration configuration, Environment environment) th
 			roleDAO.setShiroSettings(shiroSettings);
 
 	        // creating new resource for every request
-	        RoleResource roleResource = new RoleResource(roleDAO);
+	        RoleResource roleResource = new RoleResource(roleDAO, memberApiClient);
 	        environment.jersey().register(roleResource);
 
 			final PermissionPolicyDAO policyDAO = authjdbi.onDemand(PermissionPolicyDAO.class);
@@ -221,8 +227,6 @@ public void run(IdentityConfiguration configuration, Environment environment) th
 			environment.jersey().register(polResource);
 		}
 
-		final Client apiClient = new JerseyClientBuilder(environment).using(new JerseyClientConfiguration())
-                .build(getName());
 		final EventBusServiceClient eventBusServiceClient = new EventBusServiceClient(apiClient, 
 		        configuration.getEventBusServiceClientConfig(), configuration.getM2mAuthConfiguration());
 		// Resources::users

src/main/java/com/appirio/tech/core/service/identity/IdentityConfiguration.java

@@ -108,7 +108,14 @@ public class IdentityConfiguration extends APIBaseConfiguration {
     @NotNull
     @JsonProperty("eventBusServiceClient")
     private final BaseClientConfiguration eventBusServiceClientConfig = new BaseClientConfiguration();
-        
+
+	/**
+	 * The Member API URL
+	 */
+	@Valid
+	@NotNull
+	@JsonProperty("memberApiClient")
+	private final BaseClientConfiguration memberApiClientConfig = new BaseClientConfiguration();
 
 
 	public DataSourceFactory getDataSourceFactory() {
@@ -181,4 +188,12 @@ public M2mAuthConfiguration getM2mAuthConfiguration() {
     public BaseClientConfiguration getEventBusServiceClientConfig() {
         return this.eventBusServiceClientConfig;
     }
+
+	/**
+	 * Get memberApiClientConfig
+	 * @return memberApiClientConfig
+	 */
+	public BaseClientConfiguration getMemberApiClientConfig() {
+		return memberApiClientConfig;
+	}
 }

src/main/java/com/appirio/tech/core/service/identity/clients/MemberApiClient.java

@@ -0,0 +1,68 @@
+package com.appirio.tech.core.service.identity.clients;
+
+import com.appirio.clients.BaseClient;
+import com.appirio.clients.BaseClientConfiguration;
+import com.appirio.tech.core.api.v3.TCID;
+import com.appirio.tech.core.service.identity.M2mAuthConfiguration;
+import com.appirio.tech.core.service.identity.representation.MemberInfo;
+import com.appirio.tech.core.service.identity.util.Utils;
+import org.eclipse.jetty.http.HttpStatus;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.ws.rs.client.Client;
+import javax.ws.rs.client.Invocation;
+import javax.ws.rs.client.WebTarget;
+import javax.ws.rs.core.GenericType;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Set;
+
+public class MemberApiClient extends BaseClient {
+    /**
+     * The logger for this class
+     */
+    private final static Logger LOGGER = LoggerFactory.getLogger(MemberApiClient.class);
+
+    private M2mAuthConfiguration m2mAuthConfiguration;
+
+    /**
+     * Constructor.
+     *
+     * @param client the Jersey client
+     * @param config the configuration
+     * @param m2mAuthConfiguration m2m config
+     */
+    public MemberApiClient(Client client, BaseClientConfiguration config,
+                           M2mAuthConfiguration m2mAuthConfiguration) {
+        super(client, config);
+        this.m2mAuthConfiguration = m2mAuthConfiguration;
+    }
+
+    public List<MemberInfo> getUserInfoList(Set<TCID> userIds) {
+        List<MemberInfo> res = new ArrayList<>();
+        try  {
+            StringBuilder strBuffer = new StringBuilder(this.config.getEndpoint());
+            strBuffer.append("?fields=handle,email,userId");
+            for (TCID userId: userIds) {
+                strBuffer.append("&userIds=");
+                strBuffer.append(userId.getId());
+            }
+            WebTarget target = this.client.target(strBuffer.toString());
+            final Invocation.Builder request = target.request(MediaType.APPLICATION_JSON_TYPE);
+            String authToken = Utils.generateAuthToken(m2mAuthConfiguration);
+
+            Response response = request.header("Authorization", "Bearer " + authToken).get();
+            if (response.getStatusInfo().getStatusCode() != HttpStatus.OK_200) {
+                LOGGER.error("Unable to fire the event: {}", response);
+            } else {
+                res = response.readEntity(new GenericType<List<MemberInfo>>() {});
+            }
+        } catch (Exception e) {
+            LOGGER.error("Error occurs while getting member info: {}", e);
+        }
+        return res;
+    }
+}

src/main/java/com/appirio/tech/core/service/identity/representation/MemberInfo.java

@@ -0,0 +1,42 @@
+package com.appirio.tech.core.service.identity.representation;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * Member info containing userId, email and handle
+ */
+public class MemberInfo {
+
+    @JsonProperty("email")
+    private String email;
+
+    @JsonProperty("handle")
+    private String handle;
+
+    @JsonProperty("userId")
+    private Long userId;
+
+    public String getEmail() {
+        return email;
+    }
+
+    public void setEmail(String email) {
+        this.email = email;
+    }
+
+    public String getHandle() {
+        return handle;
+    }
+
+    public void setHandle(String handle) {
+        this.handle = handle;
+    }
+
+    public Long getUserId() {
+        return userId;
+    }
+
+    public void setUserId(Long userId) {
+        this.userId = userId;
+    }
+}

src/main/java/com/appirio/tech/core/service/identity/representation/RoleSubjects.java

@@ -0,0 +1,31 @@
+package com.appirio.tech.core.service.identity.representation;
+
+import com.appirio.tech.core.api.v3.model.AbstractIdResource;
+import com.appirio.tech.core.api.v3.model.annotation.ApiMapping;
+
+import java.util.List;
+
+/**
+ * Role and subject info list
+ */
+public class RoleSubjects extends AbstractIdResource {
+    private String roleName;
+    private List<MemberInfo> subjects;
+
+    public String getRoleName() {
+        return roleName;
+    }
+
+    public void setRoleName(String roleName) {
+        this.roleName = roleName;
+    }
+
+    public List<MemberInfo> getSubjects() {
+        return subjects;
+    }
+
+    @ApiMapping(queryDefault=false)
+    public void setSubjects(List<MemberInfo> subjects) {
+        this.subjects = subjects;
+    }
+}

src/main/java/com/appirio/tech/core/service/identity/resource/RoleResource.java

@@ -16,8 +16,11 @@
 import com.appirio.tech.core.api.v3.response.ApiResponse;
 import com.appirio.tech.core.api.v3.response.ApiResponseFactory;
 import com.appirio.tech.core.auth.AuthUser;
+import com.appirio.tech.core.service.identity.clients.MemberApiClient;
 import com.appirio.tech.core.service.identity.dao.RoleDAO;
+import com.appirio.tech.core.service.identity.representation.MemberInfo;
 import com.appirio.tech.core.service.identity.representation.Role;
+import com.appirio.tech.core.service.identity.representation.RoleSubjects;
 import com.appirio.tech.core.service.identity.util.Utils;
 import com.codahale.metrics.annotation.Timed;
 import io.dropwizard.auth.Auth;
@@ -38,8 +41,11 @@
 import static javax.servlet.http.HttpServletResponse.SC_BAD_REQUEST;
 import static javax.servlet.http.HttpServletResponse.SC_INTERNAL_SERVER_ERROR;
 
+import java.util.ArrayList;
 import java.util.Iterator;
 import java.util.List;
+import java.util.Map;
+import java.util.stream.Collectors;
 
 /**
  * API resource to manage roles.
@@ -63,12 +69,15 @@ public class RoleResource implements GetResource<Role>, DDLResource<Role>{
 	private static final Logger logger = Logger.getLogger(RoleResource.class);
 
 	protected RoleDAO dao;
+
+	protected MemberApiClient memberApiClient;
 
 	public RoleResource() {
 	}
 
-	public RoleResource(RoleDAO roleDao) {
+	public RoleResource(RoleDAO roleDao, MemberApiClient memberApiClient) {
 		this.dao = roleDao;
+		this.memberApiClient = memberApiClient;
 	}
 	public RoleDAO getDao() {
 		return dao;
@@ -78,7 +87,15 @@ public void setDao(RoleDAO dao) {
 		this.dao = dao;
 	}
 
-    /**
+	public MemberApiClient getMemberApiClient() {
+		return memberApiClient;
+	}
+
+	public void setMemberApiClient(MemberApiClient memberApiClient) {
+		this.memberApiClient = memberApiClient;
+	}
+
+	/**
      * Get roles.
      * 
      * @param authUser the authenticated user
@@ -258,10 +275,31 @@ public ApiResponse getObject(
         }
 
         Role role = null;
+		RoleSubjects roleSubjects = null;
         try {
     		if (hasField(selector, "subjects")) {
     			logger.info("Found subjects");
     			role = dao.getSubjects(roleId);
+				if (role != null) {
+					roleSubjects = new RoleSubjects();
+					roleSubjects.setRoleName(role.getRoleName());
+					roleSubjects.setSubjects(new ArrayList<>());
+					if (!role.getSubjects().isEmpty()) {
+						List<MemberInfo> memberList = memberApiClient.getUserInfoList(role.getSubjects());
+						Map<String, MemberInfo> infoMap = memberList.stream().collect(
+								Collectors.toMap(m -> m.getUserId().toString(), model -> model));
+						for (TCID userId: role.getSubjects()) {
+							MemberInfo info = new MemberInfo();
+							info.setUserId(Long.parseLong(userId.getId()));
+							if (infoMap.containsKey(userId.getId())) {
+								MemberInfo realInfo = infoMap.get(userId.getId());
+								info.setEmail(realInfo.getEmail());
+								info.setHandle(realInfo.getHandle());
+							}
+							roleSubjects.getSubjects().add(info);
+						}
+					}
+				}
     		} else {
     			role = dao.populateById(selector, roleId);
     		}
@@ -273,6 +311,9 @@ public ApiResponse getObject(
         if (role == null)
             throw new APIRuntimeException(HttpServletResponse.SC_NOT_FOUND);
 
+		if (roleSubjects != null) {
+			return ApiResponseFactory.createFieldSelectorResponse(roleSubjects, selector);
+		}
         return ApiResponseFactory.createFieldSelectorResponse(role, selector);
 	}
 

src/main/resources/config.yml.localdev

@@ -190,3 +190,7 @@ logging:
       archivedLogFilenamePattern: /var/log/ap-identity-%d.log
       archivedFileCount: 50
       timeZone: UTC
+
+#for Member API, is for the real dev environment
+memberApiClient:
+  endpoint: end-point-url

token.properties.localdev

@@ -60,6 +60,8 @@
 @eventBusServiceClient.configuration.topic@=dummy
 @eventBusServiceClient.configuration.originator@=dummy-service
 
+@memberApiClient.endpoint@=dummy
+
 @m2mAuthConfig.clientId@=dummy
 @m2mAuthConfig.clientSecret@=dummy
 @m2mAuthConfig.audience@=dummy

token.properties.template

@@ -86,6 +86,8 @@
 @eventBusServiceClient.configuration.topic@={{EVENTBUSSERVICE_TOPIC}}
 @eventBusServiceClient.configuration.originator@={{EVENTBUSSERVICE_ORIGINATOR}}
 
+@memberApiClient.endpoint@={{MEMBERSERVICE_ENDPOINT}}
+
 @m2mAuthConfig.clientId@={{M2MAUTHCONFIG_CID}}
 @m2mAuthConfig.clientSecret@={{M2MAUTHCONFIG_SECRET}}
 @m2mAuthConfig.audience@={{M2MAUTHCONFIG_AUDIENCE}}