io.igia.config.fhir.interceptor

Class ScopeBasedAuthorizationInterceptor

java.lang.Object

ca.uhn.fhir.rest.server.interceptor.InterceptorAdapter

ca.uhn.fhir.rest.server.interceptor.ServerOperationInterceptorAdapter

ca.uhn.fhir.rest.server.interceptor.auth.AuthorizationInterceptor

io.igia.config.fhir.interceptor.ScopeBasedAuthorizationInterceptor

All Implemented Interfaces:

ca.uhn.fhir.rest.server.interceptor.auth.IRuleApplier, ca.uhn.fhir.rest.server.interceptor.IServerInterceptor, ca.uhn.fhir.rest.server.interceptor.IServerOperationInterceptor

public class ScopeBasedAuthorizationInterceptor
extends ca.uhn.fhir.rest.server.interceptor.auth.AuthorizationInterceptor

Nested Class Summary

Nested classes/interfaces inherited from class ca.uhn.fhir.rest.server.interceptor.auth.AuthorizationInterceptor

ca.uhn.fhir.rest.server.interceptor.auth.AuthorizationInterceptor.Verdict

Nested classes/interfaces inherited from interface ca.uhn.fhir.rest.server.interceptor.IServerInterceptor

ca.uhn.fhir.rest.server.interceptor.IServerInterceptor.ActionRequestDetails

Field Summary

Fields

Modifier and Type	Field and Description
static String	LAUNCH_CONTEXT_PATIENT_PARAM_NAME

Constructor Summary

Constructors

Constructor and Description
ScopeBasedAuthorizationInterceptor(org.springframework.security.oauth2.provider.token.TokenStore tokenStore, org.springframework.security.oauth2.client.OAuth2RestTemplate oAuth2RestTemplate)

Method Summary

Modifier and Type	Method and Description
protected void	applyPatientScopeConditionalResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleConditional ruleOp, org.hspconsortium.platform.api.authorization.SmartScope smartScope)
protected void	applyPatientScopeOperationResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules, org.hl7.fhir.instance.model.api.IIdType patientIdType, org.hspconsortium.platform.api.authorization.SmartScope smartScope)
protected void	applyPatientScopeResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleOp ruleOp, org.hl7.fhir.instance.model.api.IIdType patientId, org.hspconsortium.platform.api.authorization.SmartScope smartScope)
protected void	applyUserScopeConditionalResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleConditional ruleOp, org.hspconsortium.platform.api.authorization.SmartScope smartScope)
protected void	applyUserScopeOperationResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules, String userId, List<org.springframework.security.core.GrantedAuthority> authorities, org.hspconsortium.platform.api.authorization.SmartScope smartScope)
protected void	applyUserScopeResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleOp ruleOp, String userId, List<org.springframework.security.core.GrantedAuthority> authorities, org.hspconsortium.platform.api.authorization.SmartScope smartScope)
List<ca.uhn.fhir.rest.server.interceptor.auth.IAuthRule>	buildRuleList(ca.uhn.fhir.rest.api.server.RequestDetails theRequestDetails)
protected void	filterToPatientScope(org.hl7.fhir.instance.model.api.IIdType patientId, org.hspconsortium.platform.api.authorization.SmartScope smartScope, ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules)
protected ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder	filterToPatientScopes(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules, String patientId, Set<org.hspconsortium.platform.api.authorization.SmartScope> smartScopes)
protected void	filterToUserScope(String userId, List<org.springframework.security.core.GrantedAuthority> authorities, org.hspconsortium.platform.api.authorization.SmartScope smartScope, ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules)
protected ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder	filterToUserScopes(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules, String userId, List<org.springframework.security.core.GrantedAuthority> authorities, Set<org.hspconsortium.platform.api.authorization.SmartScope> smartScopes)

Methods inherited from class ca.uhn.fhir.rest.server.interceptor.auth.AuthorizationInterceptor

applyRulesAndReturnDecision, getDefaultPolicy, getFlags, handleDeny, handleDeny, incomingRequestPreHandled, outgoingResponse, outgoingResponse, outgoingResponse, resourceCreated, resourceDeleted, resourceUpdated, setDefaultPolicy, setFlags, setFlags

Methods inherited from class ca.uhn.fhir.rest.server.interceptor.ServerOperationInterceptorAdapter

resourcePreCreate, resourcePreDelete, resourcePreUpdate, resourceUpdated

Methods inherited from class ca.uhn.fhir.rest.server.interceptor.InterceptorAdapter

handleException, incomingRequestPostProcessed, incomingRequestPreProcessed, outgoingResponse, outgoingResponse, outgoingResponse, outgoingResponse, preProcessOutgoingException, processingCompletedNormally

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface ca.uhn.fhir.rest.server.interceptor.IServerInterceptor

handleException, incomingRequestPostProcessed, incomingRequestPreProcessed, outgoingResponse, outgoingResponse, outgoingResponse, outgoingResponse, preProcessOutgoingException, processingCompletedNormally

Field Detail

LAUNCH_CONTEXT_PATIENT_PARAM_NAME

public static final String LAUNCH_CONTEXT_PATIENT_PARAM_NAME

See Also:

Constant Field Values

Constructor Detail

ScopeBasedAuthorizationInterceptor

public ScopeBasedAuthorizationInterceptor(org.springframework.security.oauth2.provider.token.TokenStore tokenStore,
                                          org.springframework.security.oauth2.client.OAuth2RestTemplate oAuth2RestTemplate)

Method Detail

buildRuleList

public List<ca.uhn.fhir.rest.server.interceptor.auth.IAuthRule> buildRuleList(ca.uhn.fhir.rest.api.server.RequestDetails theRequestDetails)

Overrides:

buildRuleList in class ca.uhn.fhir.rest.server.interceptor.auth.AuthorizationInterceptor

filterToUserScopes

protected ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder filterToUserScopes(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules,
                                                                                       String userId,
                                                                                       List<org.springframework.security.core.GrantedAuthority> authorities,
                                                                                       Set<org.hspconsortium.platform.api.authorization.SmartScope> smartScopes)

filterToUserScope

protected void filterToUserScope(String userId,
                                 List<org.springframework.security.core.GrantedAuthority> authorities,
                                 org.hspconsortium.platform.api.authorization.SmartScope smartScope,
                                 ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules)

applyUserScopeResourceClassifier

protected void applyUserScopeResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleOp ruleOp,
                                                String userId,
                                                List<org.springframework.security.core.GrantedAuthority> authorities,
                                                org.hspconsortium.platform.api.authorization.SmartScope smartScope)

applyUserScopeConditionalResourceClassifier

protected void applyUserScopeConditionalResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleConditional ruleOp,
                                                           org.hspconsortium.platform.api.authorization.SmartScope smartScope)

applyUserScopeOperationResourceClassifier

protected void applyUserScopeOperationResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules,
                                                         String userId,
                                                         List<org.springframework.security.core.GrantedAuthority> authorities,
                                                         org.hspconsortium.platform.api.authorization.SmartScope smartScope)

filterToPatientScopes

protected ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder filterToPatientScopes(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules,
                                                                                          String patientId,
                                                                                          Set<org.hspconsortium.platform.api.authorization.SmartScope> smartScopes)

filterToPatientScope

protected void filterToPatientScope(org.hl7.fhir.instance.model.api.IIdType patientId,
                                    org.hspconsortium.platform.api.authorization.SmartScope smartScope,
                                    ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules)

applyPatientScopeResourceClassifier

protected void applyPatientScopeResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleOp ruleOp,
                                                   org.hl7.fhir.instance.model.api.IIdType patientId,
                                                   org.hspconsortium.platform.api.authorization.SmartScope smartScope)

applyPatientScopeConditionalResourceClassifier

protected void applyPatientScopeConditionalResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilderRuleConditional ruleOp,
                                                              org.hspconsortium.platform.api.authorization.SmartScope smartScope)

applyPatientScopeOperationResourceClassifier

protected void applyPatientScopeOperationResourceClassifier(ca.uhn.fhir.rest.server.interceptor.auth.IAuthRuleBuilder rules,
                                                            org.hl7.fhir.instance.model.api.IIdType patientIdType,
                                                            org.hspconsortium.platform.api.authorization.SmartScope smartScope)