qt6/cutelyst5/roleacl_8cpp_source.html

 /*
  * SPDX-FileCopyrightText: (C) 2014-2022 Daniel Nicoletti <dantti12@gmail.com>
  * SPDX-License-Identifier: BSD-3-Clause
  */
 #include "common.h"
 #include "roleacl_p.h"

 #include <Cutelyst/Controller>
 #include <Cutelyst/Dispatcher>
 #include <Cutelyst/Plugins/Authentication/authentication.h>

 using namespace Qt::StringLiterals;
 using namespace Cutelyst;

 RoleACL::RoleACL(QObject *parent)
     : Component(new RoleACLPrivate, parent)
 {
 }

 Component::Modifiers RoleACL::modifiers() const
 {
     return AroundExecute;
 }

 bool RoleACL::init(Cutelyst::Application *application, const QVariantHash &args)
 {
     Q_D(RoleACL);
     Q_UNUSED(application)

     const auto attributes = args.value(u"attributes"_s).value<ParamsMultiMap>();
     d->actionReverse      = args.value(u"reverse"_s).toString();

     if (!attributes.contains(u"RequiresRole"_s) && !attributes.contains(u"AllowedRole"_s)) {
         qFatal("RoleACL: Action %s requires at least one RequiresRole or AllowedRole attribute",
                qPrintable(d->actionReverse));
     } else {
         const QStringList required = attributes.values(u"RequiresRole"_s);
         for (const QString &role : required) {
             d->requiresRole.append(role);
         }

         const QStringList allowed = attributes.values(u"AllowedRole"_s);
         for (const QString &role : allowed) {
             d->allowedRole.append(role);
         }
     }

     auto it = attributes.constFind(u"ACLDetachTo"_s);
     if (it == attributes.constEnd() || it.value().isEmpty()) {
         qFatal("RoleACL: Action %s requires the ACLDetachTo(<action>) attribute",
                qPrintable(d->actionReverse));
     }
     d->aclDetachTo = it.value();

     return true;
 }

 bool RoleACL::aroundExecute(Context *c, QStack<Cutelyst::Component *> stack)
 {
     Q_D(const RoleACL);

     if (canVisit(c)) {
         return Component::aroundExecute(c, stack);
     }

     c->detach(d->detachTo);

     return false;
 }

 bool RoleACL::canVisit(Context *c) const
 {
     Q_D(const RoleACL);

     const QStringList user_has = Authentication::user(c).value(u"roles"_s).toStringList();

     const QStringList required = d->requiresRole;
     const QStringList allowed  = d->allowedRole;

     if (!required.isEmpty() && !allowed.isEmpty()) {
         bool allRequired = std::ranges::all_of(
             required, [&user_has](const QString &role) { return user_has.contains(role); });
         if (!allRequired) {
             return false;
         }

         return std::ranges::any_of(
             allowed, [&user_has](const QString &role) { return user_has.contains(role); });
     } else if (!required.isEmpty()) {
         return std::ranges::all_of(
             required, [&user_has](const QString &role) { return user_has.contains(role); });
     } else if (!allowed.isEmpty()) {
         return std::ranges::any_of(
             allowed, [&user_has](const QString &role) { return user_has.contains(role); });
     }

     return false;
 }

 bool RoleACL::dispatcherReady(const Dispatcher *dispatcher, Cutelyst::Controller *controller)
 {
     Q_D(RoleACL);
     Q_UNUSED(dispatcher)

     d->detachTo = controller->actionFor(d->aclDetachTo);
     if (!d->detachTo) {
         d->detachTo = dispatcher->getActionByPath(d->aclDetachTo);
         if (!d->detachTo) {
             qFatal(
                 "RoleACL: Action '%s' requires a valid action set on the ACLDetachTo(%s) attribute",
                 qPrintable(d->actionReverse),
                 qPrintable(d->aclDetachTo));
         }
     }

     return true;
 }

 #include "moc_roleacl.cpp"
QStringList::contains
bool contains(QLatin1StringView str, Qt::CaseSensitivity cs) const const

Cutelyst::RoleACL::init
bool init(Application *application, const QVariantHash &args) override
Definition: roleacl.cpp:134

Cutelyst::Context::detach
void detach(Action *action=nullptr)
Definition: context.cpp:338

Cutelyst::Dispatcher::getActionByPath
Action * getActionByPath(QStringView path) const
Definition: dispatcher.cpp:235

Cutelyst::RoleACL::aroundExecute
bool aroundExecute(Context *c, QStack< Component *> stack) override
Definition: roleacl.cpp:167

Cutelyst::Component
The Cutelyst Component base class.
Definition: component.h:30

Cutelyst::Context
The Cutelyst Context.
Definition: context.h:42

Cutelyst::Controller
Cutelyst Controller base class.
Definition: controller.h:55

Cutelyst::RoleACL::canVisit
bool canVisit(Context *c) const
Definition: roleacl.cpp:180

Cutelyst::RoleACL
User role-based authorization action role.
Definition: roleacl.h:17

QObject

QList::isEmpty
bool isEmpty() const const

Cutelyst::RoleACL::modifiers
Modifiers modifiers() const override
Definition: roleacl.cpp:129

Cutelyst
The Cutelyst namespace holds all public Cutelyst API.
Definition: group-core-actions.dox:1

QString

QStringList

Cutelyst::RoleACL::dispatcherReady
bool dispatcherReady(const Dispatcher *dispatcher, Controller *controller) override
Definition: roleacl.cpp:209

QVariant::toStringList
QStringList toStringList() const const

QList::append
void append(QList< T > &&value)

Cutelyst::AuthenticationUser::value
QVariant value(const QString &key, const QVariant &defaultValue=QVariant()) const
Definition: authenticationuser.h:121

Cutelyst::Component::aroundExecute
virtual bool aroundExecute(Context *c, QStack< Component *> stack)
Definition: component.cpp:101

Cutelyst::Application
The Cutelyst application.
Definition: application.h:72

Cutelyst::Authentication::user
static AuthenticationUser user(Context *c)
Definition: authentication.cpp:107

Cutelyst::Controller::actionFor
Action * actionFor(QStringView name) const
Definition: controller.cpp:262

QMultiMap

Cutelyst::Dispatcher
The Cutelyst Dispatcher.
Definition: dispatcher.h:28

QStack

StringLiterals

QMultiMap::value
T value(const Key &key, const T &defaultValue) const const