Fix request model

Joffry Ferrater · Joffry Ferrater · commit ab4b7018b05a · 2018-12-24T14:13:42.000+01:00
diff --git a/abac-pep-spring-security/src/main/java/com/github/joffryferrater/pep/security/AbacMethodSecurityExpressionRoot.java b/abac-pep-spring-security/src/main/java/com/github/joffryferrater/pep/security/AbacMethodSecurityExpressionRoot.java
@@ -1,5 +1,6 @@
 package com.github.joffryferrater.pep.security;
 
+import com.fasterxml.jackson.databind.ObjectMapper;
 import com.github.joffryferrater.pep.client.PdpClient;
 import com.github.joffryferrater.request.AccessSubjectCategory;
 import com.github.joffryferrater.request.ActionCategory;
@@ -45,7 +46,11 @@ public boolean hasAccessToResource(String attributeId, List<Object> values) {
         LOGGER.debug("Entering hasAccessToResource(attributeId={},values={}", attributeId, values);
         final Request request = getAllCategoriesRequest(attributeId, values);
         try {
-            final Response pdpResponse = pdpClient.sendXacmlJsonRequest(new XacmlRequest(request));
+            final XacmlRequest xacmlRequest = new XacmlRequest(request);
+            ObjectMapper objectMapper = new ObjectMapper();
+            final String valueAsString = objectMapper.writeValueAsString(xacmlRequest);
+            LOGGER.debug(valueAsString);
+            final Response pdpResponse = pdpClient.sendXacmlJsonRequest(xacmlRequest);
             return isPermitted(pdpResponse);
         } catch (IOException e) {
             LOGGER.error(e.getMessage());
@@ -54,19 +59,19 @@ public boolean hasAccessToResource(String attributeId, List<Object> values) {
     }
 
     private Request getAllCategoriesRequest(String attributeId, List<Object> values) {
-        ResourceCategory resourceCategory = createResourceCategoryRequest(attributeId, values);
         Request request = new Request();
+        ResourceCategory resourceCategory = createResourceCategoryRequest(attributeId, values);
         List<ResourceCategory> resourceCategories = new ArrayList<>();
         resourceCategories.add(resourceCategory);
-        final Optional<List<AccessSubjectCategory>> accessSubjectCategories = addAccessSubjectCategoryRequest();
-        accessSubjectCategories.ifPresent(request::setAccessSubjectCategory);
         final Optional<List<ResourceCategory>> optionalResourceCategories = addResourceCategoryRequest();
         optionalResourceCategories.ifPresent(resourceCategories::addAll);
         request.setResourceCategory(resourceCategories);
         final Optional<List<ActionCategory>> actionCategories = addActionCategoryRequest();
         actionCategories.ifPresent(request::setActionCategory);
         final Optional<List<EnvironmentCategory>> environmentCategories = addEnvironmentCategoryRequest();
         environmentCategories.ifPresent(request::setEnvironmentCategory);
+        final Optional<List<AccessSubjectCategory>> accessSubjectCategories = addAccessSubjectCategoryRequest();
+        accessSubjectCategories.ifPresent(request::setAccessSubjectCategory);
         return request;
     }
 
diff --git a/xacml-resource-models/src/main/java/com/github/joffryferrater/request/Request.java b/xacml-resource-models/src/main/java/com/github/joffryferrater/request/Request.java
@@ -27,10 +27,10 @@ public class Request {
     @JsonProperty(ACTION)
     private List<ActionCategory> actionCategory = new ArrayList<>();
 
-    @JsonProperty(RESOURCE)
+    @JsonProperty(ENVIRONMENT)
     private List<EnvironmentCategory> environmentCategory = new ArrayList<>();
 
-    @JsonProperty(ENVIRONMENT)
+    @JsonProperty(RESOURCE)
     private List<ResourceCategory> resourceCategory = new ArrayList<>();
 
     public List<AccessSubjectCategory> getAccessSubjectCategory() {
@@ -39,30 +39,30 @@ public List<AccessSubjectCategory> getAccessSubjectCategory() {
 
     public void setAccessSubjectCategory(
         List<AccessSubjectCategory> accessSubjectCategory) {
-        this.accessSubjectCategory = accessSubjectCategory;
+        this.accessSubjectCategory = new ArrayList<>(accessSubjectCategory);
     }
 
     public List<ActionCategory> getActionCategory() {
         return actionCategory;
     }
 
     public void setActionCategory(List<ActionCategory> actionCategory) {
-        this.actionCategory = actionCategory;
+        this.actionCategory = new ArrayList<>(actionCategory);
     }
 
     public List<EnvironmentCategory> getEnvironmentCategory() {
         return environmentCategory;
     }
 
     public void setEnvironmentCategory(List<EnvironmentCategory> environmentCategory) {
-        this.environmentCategory = environmentCategory;
+        this.environmentCategory = new ArrayList<>(environmentCategory);
     }
 
     public List<ResourceCategory> getResourceCategory() {
         return resourceCategory;
     }
 
     public void setResourceCategory(List<ResourceCategory> resourceCategory) {
-        this.resourceCategory = resourceCategory;
+        this.resourceCategory = new ArrayList<>(resourceCategory);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -27,10 +27,10 @@ public class Request {`
`27`	`27`	`@JsonProperty(ACTION)`
`28`	`28`	`private List<ActionCategory> actionCategory = new ArrayList<>();`
`29`	`29`
`30`		`- @JsonProperty(RESOURCE)`
	`30`	`+ @JsonProperty(ENVIRONMENT)`
`31`	`31`	`private List<EnvironmentCategory> environmentCategory = new ArrayList<>();`
`32`	`32`
`33`		`- @JsonProperty(ENVIRONMENT)`
	`33`	`+ @JsonProperty(RESOURCE)`
`34`	`34`	`private List<ResourceCategory> resourceCategory = new ArrayList<>();`
`35`	`35`
`36`	`36`	`public List<AccessSubjectCategory> getAccessSubjectCategory() {`
`@@ -39,30 +39,30 @@ public List<AccessSubjectCategory> getAccessSubjectCategory() {`
`39`	`39`
`40`	`40`	`public void setAccessSubjectCategory(`
`41`	`41`	`List<AccessSubjectCategory> accessSubjectCategory) {`
`42`		`- this.accessSubjectCategory = accessSubjectCategory;`
	`42`	`+ this.accessSubjectCategory = new ArrayList<>(accessSubjectCategory);`
`43`	`43`	`}`
`44`	`44`
`45`	`45`	`public List<ActionCategory> getActionCategory() {`
`46`	`46`	`return actionCategory;`
`47`	`47`	`}`
`48`	`48`
`49`	`49`	`public void setActionCategory(List<ActionCategory> actionCategory) {`
`50`		`- this.actionCategory = actionCategory;`
	`50`	`+ this.actionCategory = new ArrayList<>(actionCategory);`
`51`	`51`	`}`
`52`	`52`
`53`	`53`	`public List<EnvironmentCategory> getEnvironmentCategory() {`
`54`	`54`	`return environmentCategory;`
`55`	`55`	`}`
`56`	`56`
`57`	`57`	`public void setEnvironmentCategory(List<EnvironmentCategory> environmentCategory) {`
`58`		`- this.environmentCategory = environmentCategory;`
	`58`	`+ this.environmentCategory = new ArrayList<>(environmentCategory);`
`59`	`59`	`}`
`60`	`60`
`61`	`61`	`public List<ResourceCategory> getResourceCategory() {`
`62`	`62`	`return resourceCategory;`
`63`	`63`	`}`
`64`	`64`
`65`	`65`	`public void setResourceCategory(List<ResourceCategory> resourceCategory) {`
`66`		`- this.resourceCategory = resourceCategory;`
	`66`	`+ this.resourceCategory = new ArrayList<>(resourceCategory);`
`67`	`67`	`}`
`68`	`68`	`}`