diff options
author | Zach Smith <zach@driver.xyz> | 2017-09-27 22:20:53 -0700 |
---|---|---|
committer | Zach Smith <zach@driver.xyz> | 2017-10-12 16:48:08 -0700 |
commit | 2c524be93052fc6d57359a00fd60d957099885c6 (patch) | |
tree | b68467ca2fd4f4f101da1ce315c022ab12220145 /src/main/scala/xyz/driver/core/rest/auth/ChainedAuthorization.scala | |
parent | b00892d723f6dedf50dc1c1fde7d443e9c3f9497 (diff) | |
download | driver-core-2c524be93052fc6d57359a00fd60d957099885c6.tar.gz driver-core-2c524be93052fc6d57359a00fd60d957099885c6.tar.bz2 driver-core-2c524be93052fc6d57359a00fd60d957099885c6.zip |
Refactor rest package into separate files
Diffstat (limited to 'src/main/scala/xyz/driver/core/rest/auth/ChainedAuthorization.scala')
-rw-r--r-- | src/main/scala/xyz/driver/core/rest/auth/ChainedAuthorization.scala | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/src/main/scala/xyz/driver/core/rest/auth/ChainedAuthorization.scala b/src/main/scala/xyz/driver/core/rest/auth/ChainedAuthorization.scala new file mode 100644 index 0000000..f5eb402 --- /dev/null +++ b/src/main/scala/xyz/driver/core/rest/auth/ChainedAuthorization.scala @@ -0,0 +1,27 @@ +package xyz.driver.core.rest.auth + +import xyz.driver.core.auth.{Permission, User} +import xyz.driver.core.rest.ServiceRequestContext + +import scala.concurrent.{ExecutionContext, Future} +import scalaz.Scalaz.{futureInstance, listInstance} +import scalaz.syntax.semigroup._ +import scalaz.syntax.traverse._ + +class ChainedAuthorization[U <: User](authorizations: Authorization[U]*)(implicit execution: ExecutionContext) + extends Authorization[U] { + + override def userHasPermissions(user: U, permissions: Seq[Permission])( + implicit ctx: ServiceRequestContext): Future[AuthorizationResult] = { + def allAuthorized(permissionsMap: Map[Permission, Boolean]): Boolean = + permissions.forall(permissionsMap.getOrElse(_, false)) + + authorizations.toList.foldLeftM[Future, AuthorizationResult](AuthorizationResult.unauthorized) { + (authResult, authorization) => + if (allAuthorized(authResult.authorized)) Future.successful(authResult) + else { + authorization.userHasPermissions(user, permissions).map(authResult |+| _) + } + } + } +} |