| .. | .. |
|---|
| 4 | 4 | import java.util.List; |
|---|
| 5 | 5 | import java.util.Set; |
|---|
| 6 | 6 | |
|---|
| 7 | +import javax.annotation.security.RolesAllowed; |
|---|
| 7 | 8 | import javax.inject.Inject; |
|---|
| 8 | 9 | import javax.inject.Provider; |
|---|
| 9 | 10 | import javax.persistence.EntityManager; |
|---|
| .. | .. |
|---|
| 27 | 28 | import net.curisit.securis.DefaultExceptionHandler; |
|---|
| 28 | 29 | import net.curisit.securis.db.Application; |
|---|
| 29 | 30 | import net.curisit.securis.db.ApplicationMetadata; |
|---|
| 31 | +import net.curisit.securis.security.BasicSecurityContext; |
|---|
| 32 | +import net.curisit.securis.security.Securable; |
|---|
| 30 | 33 | import net.curisit.securis.utils.TokenHelper; |
|---|
| 31 | 34 | |
|---|
| 32 | 35 | import org.apache.logging.log4j.LogManager; |
|---|
| .. | .. |
|---|
| 63 | 66 | @Produces({ |
|---|
| 64 | 67 | MediaType.APPLICATION_JSON |
|---|
| 65 | 68 | }) |
|---|
| 69 | + @Securable |
|---|
| 66 | 70 | public Response index() { |
|---|
| 67 | 71 | LOG.info("Getting applications list "); |
|---|
| 68 | 72 | |
|---|
| .. | .. |
|---|
| 82 | 86 | @Produces({ |
|---|
| 83 | 87 | MediaType.APPLICATION_JSON |
|---|
| 84 | 88 | }) |
|---|
| 89 | + @Securable |
|---|
| 85 | 90 | public Response get(@PathParam("appid") String appid, @HeaderParam(TokenHelper.TOKEN_HEADER_PÀRAM) String token) { |
|---|
| 86 | 91 | LOG.info("Getting application data for id: {}: ", appid); |
|---|
| 87 | 92 | if (appid == null || "".equals(appid)) { |
|---|
| .. | .. |
|---|
| 107 | 112 | MediaType.APPLICATION_JSON |
|---|
| 108 | 113 | }) |
|---|
| 109 | 114 | @Transactional |
|---|
| 115 | + @Securable |
|---|
| 116 | + @RolesAllowed(BasicSecurityContext.ROL_ADMIN) |
|---|
| 110 | 117 | public Response create(Application app, @HeaderParam(TokenHelper.TOKEN_HEADER_PÀRAM) String token) { |
|---|
| 111 | 118 | LOG.info("Creating new application"); |
|---|
| 112 | 119 | EntityManager em = emProvider.get(); |
|---|
| .. | .. |
|---|
| 132 | 139 | @Produces({ |
|---|
| 133 | 140 | MediaType.APPLICATION_JSON |
|---|
| 134 | 141 | }) |
|---|
| 142 | + @Securable |
|---|
| 143 | + @RolesAllowed(BasicSecurityContext.ROL_ADMIN) |
|---|
| 135 | 144 | public Response modify(Application app, @PathParam("appid") String appid, @HeaderParam(TokenHelper.TOKEN_HEADER_PÀRAM) String token) { |
|---|
| 136 | 145 | LOG.info("Modifying application with id: {}", appid); |
|---|
| 137 | 146 | EntityManager em = emProvider.get(); |
|---|
| .. | .. |
|---|
| 170 | 179 | @Produces({ |
|---|
| 171 | 180 | MediaType.APPLICATION_JSON |
|---|
| 172 | 181 | }) |
|---|
| 182 | + @Securable |
|---|
| 183 | + @RolesAllowed(BasicSecurityContext.ROL_ADMIN) |
|---|
| 173 | 184 | public Response delete(@PathParam("appid") String appid, @Context HttpServletRequest request) { |
|---|
| 174 | 185 | LOG.info("Deleting app with id: {}", appid); |
|---|
| 175 | 186 | EntityManager em = emProvider.get(); |
|---|
