feat(authorization): Integrate new authorization with components

Rework the routes defined in component modules to use the new
`Authorization` component.

Signed-off-by: Oliver Heger <[email protected]>

Author: oheger-bosch

components/admin-config/backend/build.gradle.kts

@@ -42,7 +42,7 @@ dependencies {
     implementation(libs.exposedCore)
     implementation(libs.exposedKotlinDatetime)
 
-    routesImplementation(projects.components.authorizationKeycloak.backend)
+    routesImplementation(projects.components.authorization.backend)
     routesImplementation(projects.shared.apiModel)
     routesImplementation(projects.shared.ktorUtils)
 

components/admin-config/backend/src/routes/kotlin/routes/GetConfigByKey.kt

@@ -28,7 +28,7 @@ import io.ktor.server.routing.Route
 import org.eclipse.apoapsis.ortserver.components.adminconfig.Config
 import org.eclipse.apoapsis.ortserver.components.adminconfig.ConfigKey
 import org.eclipse.apoapsis.ortserver.components.adminconfig.ConfigTable
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requireAuthenticated
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.OrtServerPrincipal.Companion.requirePrincipal
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.jsonBody
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.requireParameter
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.respondError
@@ -68,7 +68,7 @@ internal fun Route.getConfigByKey(db: Database) = get("admin/config/{key}", {
         }
     }
 }) {
-    requireAuthenticated()
+    requirePrincipal()
 
     val keyParameter = call.requireParameter("key")
 

components/admin-config/backend/src/routes/kotlin/routes/InsertOrUpdateConfig.kt

@@ -19,8 +19,6 @@
 
 package org.eclipse.apoapsis.ortserver.components.adminconfig.routes
 
-import io.github.smiley4.ktoropenapi.post
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.request.receive
 import io.ktor.server.response.respond
@@ -29,7 +27,8 @@ import io.ktor.server.routing.Route
 import org.eclipse.apoapsis.ortserver.components.adminconfig.Config
 import org.eclipse.apoapsis.ortserver.components.adminconfig.ConfigKey
 import org.eclipse.apoapsis.ortserver.components.adminconfig.ConfigTable
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requireSuperuser
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.post
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requireSuperuser
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.jsonBody
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.requireParameter
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.respondError
@@ -69,9 +68,7 @@ internal fun Route.setConfigByKey(db: Database) = post("admin/config/{key}", {
             description = "The config key is invalid."
         }
     }
-}) {
-    requireSuperuser()
-
+}, requireSuperuser()) {
     val keyParameter = call.requireParameter("key")
 
     val key = runCatching {

components/infrastructure-services/backend/build.gradle.kts

@@ -49,7 +49,7 @@ dependencies {
 
     implementation(libs.exposedCore)
 
-    routesImplementation(projects.components.authorizationKeycloak.backend)
+    routesImplementation(projects.components.authorization.backend)
     routesImplementation(projects.shared.apiMappings)
     routesImplementation(projects.shared.ktorUtils)
 

components/infrastructure-services/backend/src/routes/kotlin/routes/organization/DeleteOrganizationInfrastructureService.kt

@@ -19,14 +19,13 @@
 
 package org.eclipse.apoapsis.ortserver.components.infrastructureservices.routes.organization
 
-import io.github.smiley4.ktoropenapi.delete
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.response.respond
 import io.ktor.server.routing.Route
 
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.permissions.OrganizationPermission
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requirePermission
+import org.eclipse.apoapsis.ortserver.components.authorization.rights.OrganizationPermission
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.delete
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requirePermission
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.InfrastructureServiceService
 import org.eclipse.apoapsis.ortserver.model.OrganizationId
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.requireIdParameter
@@ -53,9 +52,7 @@ internal fun Route.deleteOrganizationInfrastructureService(
             description = "Success"
         }
     }
-}) {
-    requirePermission(OrganizationPermission.WRITE)
-
+}, requirePermission(OrganizationPermission.WRITE)) {
     val orgId = call.requireIdParameter("organizationId")
     val serviceName = call.requireParameter("serviceName")
 

components/infrastructure-services/backend/src/routes/kotlin/routes/organization/GetOrganizationInfrastructureService.kt

@@ -19,14 +19,13 @@
 
 package org.eclipse.apoapsis.ortserver.components.infrastructureservices.routes.organization
 
-import io.github.smiley4.ktoropenapi.get
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.response.respond
 import io.ktor.server.routing.Route
 
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.permissions.OrganizationPermission
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requirePermission
+import org.eclipse.apoapsis.ortserver.components.authorization.rights.OrganizationPermission
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.get
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requirePermission
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.InfrastructureServiceService
 import org.eclipse.apoapsis.ortserver.model.OrganizationId
 import org.eclipse.apoapsis.ortserver.shared.apimappings.mapToApi
@@ -67,9 +66,7 @@ internal fun Route.getOrganizationInfrastructureService(
             }
         }
     }
-}) {
-    requirePermission(OrganizationPermission.READ)
-
+}, requirePermission(OrganizationPermission.READ)) {
     val organizationId = call.requireIdParameter("organizationId")
     val serviceName = call.requireParameter("serviceName")
 

components/infrastructure-services/backend/src/routes/kotlin/routes/organization/GetOrganizationInfrastructureServices.kt

@@ -19,14 +19,13 @@
 
 package org.eclipse.apoapsis.ortserver.components.infrastructureservices.routes.organization
 
-import io.github.smiley4.ktoropenapi.get
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.response.respond
 import io.ktor.server.routing.Route
 
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.permissions.OrganizationPermission
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requirePermission
+import org.eclipse.apoapsis.ortserver.components.authorization.rights.OrganizationPermission
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.get
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requirePermission
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.InfrastructureServiceService
 import org.eclipse.apoapsis.ortserver.model.InfrastructureService as ModelInfrastructureService
 import org.eclipse.apoapsis.ortserver.model.OrganizationId
@@ -89,9 +88,7 @@ internal fun Route.getOrganizationInfrastructureServices(
             }
         }
     }
-}) {
-    requirePermission(OrganizationPermission.READ)
-
+}, requirePermission(OrganizationPermission.READ)) {
     val orgId = call.requireIdParameter("organizationId")
     val pagingOptions = call.pagingOptions(SortProperty("name", SortDirection.ASCENDING))
 

components/infrastructure-services/backend/src/routes/kotlin/routes/organization/PatchOrganizationInfrastructureService.kt

@@ -19,15 +19,14 @@
 
 package org.eclipse.apoapsis.ortserver.components.infrastructureservices.routes.organization
 
-import io.github.smiley4.ktoropenapi.patch
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.request.receive
 import io.ktor.server.response.respond
 import io.ktor.server.routing.Route
 
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.permissions.OrganizationPermission
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requirePermission
+import org.eclipse.apoapsis.ortserver.components.authorization.rights.OrganizationPermission
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.patch
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requirePermission
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.InfrastructureServiceService
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.PatchInfrastructureService
 import org.eclipse.apoapsis.ortserver.model.OrganizationId
@@ -85,9 +84,7 @@ internal fun Route.patchOrganizationInfrastructureService(
             }
         }
     }
-}) {
-    requirePermission(OrganizationPermission.WRITE)
-
+}, requirePermission(OrganizationPermission.WRITE)) {
     val organizationId = call.requireIdParameter("organizationId")
     val serviceName = call.requireParameter("serviceName")
     val updateService = call.receive<PatchInfrastructureService>()

components/infrastructure-services/backend/src/routes/kotlin/routes/organization/PostOrganizationInfrastructureService.kt

@@ -19,15 +19,14 @@
 
 package org.eclipse.apoapsis.ortserver.components.infrastructureservices.routes.organization
 
-import io.github.smiley4.ktoropenapi.post
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.request.receive
 import io.ktor.server.response.respond
 import io.ktor.server.routing.Route
 
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.permissions.OrganizationPermission
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requirePermission
+import org.eclipse.apoapsis.ortserver.components.authorization.rights.OrganizationPermission
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.post
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requirePermission
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.InfrastructureServiceService
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.PostInfrastructureService
 import org.eclipse.apoapsis.ortserver.model.OrganizationId
@@ -77,9 +76,7 @@ internal fun Route.postOrganizationInfrastructureService(
             }
         }
     }
-}) {
-    requirePermission(OrganizationPermission.WRITE)
-
+}, requirePermission(OrganizationPermission.WRITE)) {
     val organizationId = call.requireIdParameter("organizationId")
     val createService = call.receive<PostInfrastructureService>()
 

components/infrastructure-services/backend/src/routes/kotlin/routes/product/DeleteProductInfrastructureService.kt

@@ -19,14 +19,13 @@
 
 package org.eclipse.apoapsis.ortserver.components.infrastructureservices.routes.product
 
-import io.github.smiley4.ktoropenapi.delete
-
 import io.ktor.http.HttpStatusCode
 import io.ktor.server.response.respond
 import io.ktor.server.routing.Route
 
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.permissions.ProductPermission
-import org.eclipse.apoapsis.ortserver.components.authorization.keycloak.requirePermission
+import org.eclipse.apoapsis.ortserver.components.authorization.rights.ProductPermission
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.delete
+import org.eclipse.apoapsis.ortserver.components.authorization.routes.requirePermission
 import org.eclipse.apoapsis.ortserver.components.infrastructureservices.InfrastructureServiceService
 import org.eclipse.apoapsis.ortserver.model.ProductId
 import org.eclipse.apoapsis.ortserver.shared.ktorutils.requireIdParameter
@@ -53,9 +52,7 @@ internal fun Route.deleteProductInfrastructureService(
             description = "Success"
         }
     }
-}) {
-    requirePermission(ProductPermission.WRITE)
-
+}, requirePermission(ProductPermission.WRITE)) {
     val prodId = call.requireIdParameter("productId")
     val serviceName = call.requireParameter("serviceName")