Skip to content

Updated exserver logic for dynamic topic publishing and subscribing #27

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
KaveeshTennakoon wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Updated exserver logic for dynamic topic publishing and subscribing #27

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
75 changes: 73 additions & 2 deletions ....plugins.emqx.exhook/src/main/java/io/entgra/device/mgt/plugins/emqx/exhook/ExServer.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
/*
* Copyright (c) 2018 - 2023, Entgra (Pvt) Ltd. (http://www.entgra.io) All Rights Reserved.
* Copyright (c) 2018 - 2026, Entgra (Pvt) Ltd. (http://www.entgra.io) All Rights Reserved.
*
* Entgra (Pvt) Ltd. licenses this file to you under the Apache License,
* Version 2.0 (the "License"); you may not use this file except
Expand Down Expand Up @@ -61,6 +61,11 @@ public class ExServer {
private Server server;
private final ExServerUtilityService utilityService;

private static final String TOPIC_SEPARATOR = ":";
private static final String SINGLE_LEVEL_WILDCARD = "+";
private static final String MULTI_LEVEL_WILDCARD = "#";
private static final String MULTI_LEVEL_WILDCARD_SUFFIX = TOPIC_SEPARATOR + MULTI_LEVEL_WILDCARD;

public ExServer(ExServerUtilityService utilityService) {
this.utilityService = utilityService;
}
Expand Down Expand Up @@ -399,7 +404,7 @@ public void onClientCheckAcl(ClientCheckAclRequest request, StreamObserver<Value
.asRuntimeException();
}

boolean isAuthorized = scopeList.stream().anyMatch(scope -> scope.startsWith(tempScope));
boolean isAuthorized = scopeList.stream().anyMatch(scope -> isTopicMatch(scope, tempScope));
if (!isAuthorized) {
logger.warn("topic=" + topic + ", requiredScope=" + tempScope);
throw Status.PERMISSION_DENIED.withDescription("User not authorized for requested topic").asRuntimeException();
Expand All @@ -420,6 +425,72 @@ public void onClientCheckAcl(ClientCheckAclRequest request, StreamObserver<Value
}
}

private boolean isTopicMatch(String scopePattern, String exactTopic) {
Comment thread
KaveeshTennakoon marked this conversation as resolved.
if (scopePattern.equals(exactTopic)) {
return true;
}

String[] scopeParts = scopePattern.split(TOPIC_SEPARATOR);
String[] topicParts = exactTopic.split(TOPIC_SEPARATOR);

boolean scopeHasMulti = scopePattern.endsWith(MULTI_LEVEL_WILDCARD_SUFFIX);
boolean topicHasMulti = exactTopic.endsWith(MULTI_LEVEL_WILDCARD_SUFFIX);

if (topicHasMulti) {
return matchMultiLevelSubscription(scopeParts, topicParts);
}

if (scopeHasMulti) {
return matchMultiLevelScope(scopeParts, topicParts);
}

return matchSingleLevelWildcards(scopeParts, topicParts);
}

/**
* Handles cases where the incoming subscription request contains a '#'
*/
private boolean matchMultiLevelSubscription(String[] scopeParts, String[] topicParts) {
if (topicParts.length > scopeParts.length || !MULTI_LEVEL_WILDCARD.equals(scopeParts[scopeParts.length - 1])) {
return false;
}
return compareParts(scopeParts, topicParts, topicParts.length - 1);
}

/**
* Handles cases where the defined scope contains a '#'
*/
private boolean matchMultiLevelScope(String[] scopeParts, String[] topicParts) {
if (topicParts.length < scopeParts.length - 1) {
return false;
}
return compareParts(scopeParts, topicParts, scopeParts.length - 1);
}

/**
* Handles standard positional matching including '+' wildcards
*/
private boolean matchSingleLevelWildcards(String[] scopeParts, String[] topicParts) {
if (scopeParts.length != topicParts.length) {
return false;
}
return compareParts(scopeParts, topicParts, scopeParts.length);
}

/**
* Helper to compare individual segments of the topic
*/
private boolean compareParts(String[] scopeParts, String[] topicParts, int lengthToCompare) {
for (int i = 0; i < lengthToCompare; i++) {
String scope = scopeParts[i];
String topic = topicParts[i];
if (!SINGLE_LEVEL_WILDCARD.equals(scope) && !scope.equals(topic)) {
return false;
}
}
return true;
}

@Override
public void onClientSubscribe(ClientSubscribeRequest request, StreamObserver<EmptySuccess> responseObserver) {
DEBUG("onClientSubscribe", request);
Expand Down
Loading