SecurityUtils.java

  1. package no.nav.data.common.security;

  3. import lombok.experimental.UtilityClass;
  4. import no.nav.data.common.exceptions.ForbiddenException;
  5. import no.nav.data.common.exceptions.ValidationException;
  6. import no.nav.data.common.security.dto.UserInfo;
  7. import org.springframework.security.core.Authentication;
  8. import org.springframework.security.core.context.SecurityContextHolder;

  10. import java.util.Optional;

  12. @UtilityClass
  13. public class SecurityUtils {

  15.     public static Optional<UserInfo> getCurrentUser() {
  16.         return Optional.ofNullable(SecurityContextHolder.getContext().getAuthentication())
  17.                 .filter(Authentication::isAuthenticated)
  18.                 .map(authentication -> authentication.getDetails() instanceof UserInfo ui ? ui : null);
  19.     }

  21.     public static Optional<String> lookupCurrentIdent() {
  22.         return getCurrentUser().map(UserInfo::getIdent);
  23.     }

  25.     public static String getCurrentIdent() {
  26.         return lookupCurrentIdent().orElseThrow(() -> new ValidationException("Invalid user, no ident found"));
  27.     }

  29.     public static boolean isAdmin() {
  30.         return getCurrentUser().map(UserInfo::isAdmin).orElse(false);
  31.     }

  33.     public static boolean isUserOrAdmin(String ident) {
  34.         return getCurrentIdent().equals(ident) || isAdmin();
  35.     }

  37.     public static void assertIsUserOrAdmin(String ident, String message) {
  38.         if (!isUserOrAdmin(ident)) {
  39.             throw new ForbiddenException(message);
  40.         }
  41.     }

  43. }
Created with JaCoCo 0.8.12.202403310830