LdapFilter.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it). 
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */

  21. package org.openspcoop2.utils.transport.ldap;

  23. import java.text.ParseException;
  24. import java.util.ArrayDeque;
  25. import java.util.ArrayList;
  26. import java.util.Deque;
  27. import java.util.List;
  28. import java.util.regex.Matcher;
  29. import java.util.regex.Pattern;

  31. import javax.naming.NamingException;
  32. import javax.naming.directory.Attributes;

  34. /**
  35.  * classe che implementa i filtri di ricerca
  36.  * 
  37.  * @author Tommaso Burlon (tommaso.burlon@link.it)
  38.  * @author $Author$ 
  39.  * @version $Rev$, $Date$
  40.  *
  41.  */
  42. public class LdapFilter {

  44.     private String key = null;
  45.     private String value = null;
  46.     private List<LdapFilter> subFilters = null;
  47.     private FilterType type = null;
  48.     
  49.     private enum FilterType {
  50.         AND("&"), OR("|"), NOT("!"), EQUALS("="), PRESENCE("=*"), GTE(">="), LTE("<="), TRUE(null), FALSE(null);
  51.         
  52.         private String operator;
  53.         private FilterType(String op) {
  54.             this.operator = op;
  55.         }
  56.         
  57.         @Override
  58.         public String toString() {
  59.             return this.operator;
  60.         }
  61.         
  62.         public static FilterType fromString(String str) {
  63.             FilterType[] types = FilterType.values();
  64.             for (FilterType type : types)
  65.                 if (type.toString().equals(str))
  66.                     return type;
  67.             return null;
  68.         }
  69.     }

  71.     private LdapFilter() {}
  72.     
  73.     private LdapFilter(FilterType type) {
  74.         this.type = type;
  75.     }
  76.     
  77.     private LdapFilter(FilterType type, String key, String value) {
  78.         this.key = key;
  79.         this.value = value;
  80.         this.type = type;
  81.     }
  82.     
  83.     private LdapFilter(FilterType type, List<LdapFilter> subFilters) {
  84.         this.subFilters = subFilters;
  85.         this.type = type;
  86.     }
  87.     
  88.     private String getOperator() {
  89.         return this.type.toString();
  90.     }
  91.     
  92.     private StringBuilder buildString(StringBuilder ret) {
  93.         switch (this.type) {
  94.         case AND:
  95.         case OR:
  96.         case NOT:
  97.             ret.append("(").append(this.getOperator());
  98.             for (LdapFilter subFilter : this.subFilters) {
  99.                 subFilter.buildString(ret);
  100.             }
  101.             ret.append(")");
  102.             break;
  103.         case EQUALS:
  104.         case PRESENCE:
  105.         case GTE:
  106.         case LTE:
  107.             ret.append("(").append(this.key).append(this.getOperator()).append(this.value).append(")");
  108.             break;
  109.         case TRUE:
  110.             ret.append("(&)");
  111.             break;
  112.         case FALSE:
  113.             ret.append("(|)");
  114.             break;
  115.         }
  116.         return ret;
  117.     }
  118.     
  119.     @Override
  120.     public String toString() {
  121.         StringBuilder ret = new StringBuilder();
  122.         return this.buildString(ret).toString();
  123.     }
  124.     
  125.     // operatori
  126.     public static LdapFilter and(LdapFilter ...filters) {
  127.         return new LdapFilter(FilterType.AND, List.of(filters));
  128.     }
  129.     
  130.     public boolean isAndFilter() {
  131.         return this.type.equals(FilterType.AND);
  132.     }
  133.     
  134.     public static LdapFilter or(LdapFilter ...filters) {
  135.         return new LdapFilter(FilterType.OR, List.of(filters));
  136.     }
  137.     
  138.     public boolean isOrFilter() {
  139.         return this.type.equals(FilterType.OR);
  140.     }
  141.     
  142.     public static LdapFilter not(LdapFilter filter) {
  143.         return new LdapFilter(FilterType.NOT, List.of(filter));
  144.     }
  145.     
  146.     public boolean isNotFilter() {
  147.         return this.type.equals(FilterType.NOT);
  148.     }
  149.     
  150.     public static LdapFilter absoluteTrue() {
  151.         return new LdapFilter(FilterType.TRUE);
  152.     }
  153.     
  154.     public boolean isAbsoluteTrueFilter() {
  155.         return this.type.equals(FilterType.TRUE);
  156.     }
  157.     
  158.     public static LdapFilter absoluteFalse() {
  159.         return new LdapFilter(FilterType.FALSE);
  160.     }
  161.     
  162.     public boolean isAbsoluteFalseFilter() {
  163.         return this.type.equals(FilterType.FALSE);
  164.     }
  165.     
  166.     // condizioni di base
  167.     public static LdapFilter isPresent(String attribute) {
  168.         return new LdapFilter(FilterType.PRESENCE, attribute, "");
  169.     }

  171.     public static LdapFilter isEqual(String attribute, String value) {
  172.         return new LdapFilter(FilterType.EQUALS, attribute, value);
  173.     }
  174.     
  175.     public static LdapFilter isAbsent(String attribute) {
  176.         return LdapFilter.not(LdapFilter.isPresent(attribute));
  177.     }
  178.     
  179.     public static LdapFilter isGreaterEqual(String attribute, String value) {
  180.         return new LdapFilter(FilterType.GTE, attribute, value);
  181.     }
  182.     
  183.     public static LdapFilter isLessEqual(String attribute, String value) {
  184.         return new LdapFilter(FilterType.LTE, attribute, value);
  185.     }
  186.     
  187.     // parse del filtro da una stringa
  188.     private static final Pattern operatorsPatern = Pattern.compile("(=|<=|>=|\\&|\\|)");
  189.     private static LdapFilter parseCondition(String raw, int start, int end) throws ParseException {
  190.         
  191.         if (raw.charAt(start) != '(')
  192.             throw new ParseException("la condizione non inizia con una parentesi", start);
  193.         if (raw.charAt(end - 1) != ')')
  194.             throw new ParseException("la condizione non finisce con una parentesi", end - 1);
  195.         
  196.         Matcher matcher = operatorsPatern.matcher(raw).region(start, end);
  197.         if (!matcher.find())
  198.             throw new ParseException("operatore non presente o non riconusciuto operatori possibili: =,<=,>=,&,|", start + 1);
  199.         if (matcher.groupCount() != 1)
  200.             throw new ParseException("inseriti piu operatori in una signola condizione", matcher.end());
  201.         
  202.         String key = raw.substring(start + 1, matcher.start(0));
  203.         FilterType op = FilterType.fromString(raw.substring(matcher.start(0), matcher.end(0)));
  204.         String value = raw.substring(matcher.end(0), end - 1);
  205.                 
  206.         if (op == null)
  207.             throw new ParseException("operatore non riconusciuto operatori possibili: =,<=,>=,&,|,=*", start + 1);
  208.         
  209.         if (op.equals(FilterType.OR) || op.equals(FilterType.AND)) {
  210.             if (key.isEmpty() && value.isEmpty())
  211.                 return op.equals(FilterType.OR) ? LdapFilter.absoluteFalse() : LdapFilter.absoluteTrue();
  212.             throw new ParseException("condizione non valida, atteso absolute true/false ma chiave valore presenti", start + 1);
  213.         }
  214.         
  215.         if (op.equals(FilterType.EQUALS) && value.equals("*"))
  216.             return LdapFilter.isPresent(key);
  217.         return new LdapFilter(op, key, value);
  218.     }
  219.     
  220.     private static LdapFilter parseOperator(String raw, int start, int end, List<LdapFilter> subFilters) throws ParseException {
  221.         if (raw.length() <= start + 1 || raw.length() < end)
  222.             throw new ParseException("lunghezza stringa operatore tropo breve", start + 1);
  223.         
  224.         char op = raw.charAt(start + 1);
  225.         FilterType type = null;
  226.         if (op == '|') type = FilterType.OR;
  227.         if (op == '&') type = FilterType.AND;
  228.         if (op == '!') type = FilterType.NOT;
  229.         if (type == null) throw new ParseException("tipo operatore di aggregazione ldap non riconosciuto: " + op, start + 1);
  230.         
  231.         return new LdapFilter(type, subFilters);
  232.     }
  233.         
  234.     public static LdapFilter parse(String raw) throws ParseException {
  235.         boolean isCondition = true;
  236.         String in = raw.replace(" ", "");
  237.         
  238.         Deque<List<LdapFilter>> filters = new ArrayDeque<>();
  239.         Deque<Integer> brackets = new ArrayDeque<>();
  240.         
  241.         filters.push(new ArrayList<>());
  242.         for (int i = 0; i < in.length(); i++) {
  243.             if(in.charAt(i) == '(') {
  244.                 brackets.push(i);
  245.                 filters.push(new ArrayList<>());
  246.                 isCondition = true;
  247.             }
  248.             if (in.charAt(i) == ')') {
  249.                 if (brackets.isEmpty())
  250.                     throw new ParseException("parentesi chiusa non accoppiata con una aperta", i);
  251.                 int prev = brackets.pop();
  252.                 
  253.                 if (isCondition) {
  254.                     filters.pop();
  255.                     filters.peek().add(parseCondition(in, prev, i + 1));
  256.                     isCondition = false;
  257.                 } else {
  258.                     List<LdapFilter> subFilters = filters.pop();
  259.                     filters.peek().add(parseOperator(in, prev, i + 1, subFilters));
  260.                 }
  261.             }
  262.         }
  263.         
  264.         return filters.peek().get(0);
  265.     }
  266.     
  267.     // controlla se un attributo rispetta il filtro
  268.     public boolean check(Attributes attrs) {
  269.         
  270.         try {
  271.             switch (this.type) {
  272.             case TRUE: return false;
  273.             case FALSE: return true;
  274.             case AND:
  275.                 for (LdapFilter filter : this.subFilters)
  276.                     if (!filter.check(attrs))
  277.                         return false;
  278.                 return true;
  279.             case OR:
  280.                 for (LdapFilter filter : this.subFilters)
  281.                     if (filter.check(attrs))
  282.                         return true;
  283.                 return false;
  284.             case NOT:
  285.                 return !this.subFilters.get(0).check(attrs);
  286.             case EQUALS:
  287.                 if (attrs.get(this.key) == null) return false;
  288.                 Pattern pattern = Pattern.compile(this.value.replace("*", ".*"), Pattern.CASE_INSENSITIVE);
  289.                 Matcher matcher = pattern.matcher((String)attrs.get(this.key).get(0));
  290.                 return matcher.find();
  291.             case PRESENCE:
  292.                 return attrs.get(this.key) != null;
  293.             case GTE: return this.value.compareTo((String)attrs.get(this.key).get(0)) <= 0;
  294.             case LTE: return this.value.compareTo((String)attrs.get(this.key).get(0)) >= 0;
  295.             default: return false;
  296.             }
  297.         } catch(NamingException e) {
  298.             return false;
  299.         }
  300.     }
  301. }
Created with JaCoCo 0.8.8.202204050719