1 /*
2 * Licensed to the Apache Software Foundation (ASF) under one or more
3 * contributor license agreements. See the NOTICE file distributed with
4 * this work for additional information regarding copyright ownership.
5 * The ASF licenses this file to You under the Apache License, Version 2.0
6 * (the "License"); you may not use this file except in compliance with
7 * the License. You may obtain a copy of the License at
8 *
9 * http://www.apache.org/licenses/LICENSE-2.0
10 *
11 * Unless required by applicable law or agreed to in writing, software
12 * distributed under the License is distributed on an "AS IS" BASIS,
13 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 * See the License for the specific language governing permissions and
15 * limitations under the License.
16 */
17
18 package org.apache.shardingsphere.authority.checker;
19
20 import lombok.RequiredArgsConstructor;
21 import org.apache.shardingsphere.authority.rule.AuthorityRule;
22 import org.apache.shardingsphere.infra.annotation.HighFrequencyInvocation;
23 import org.apache.shardingsphere.infra.metadata.user.Grantee;
24 import org.apache.shardingsphere.infra.metadata.user.ShardingSphereUser;
25
26 /**
27 * Authority checker.
28 */
29 @RequiredArgsConstructor
30 public final class AuthorityChecker {
31
32 private final AuthorityRule rule;
33
34 private final Grantee grantee;
35
36 /**
37 * Check database authority.
38 *
39 * @param database database name
40 * @return authorized or not
41 */
42 @HighFrequencyInvocation
43 public boolean isAuthorized(final String database) {
44 return null == grantee || rule.findUser(grantee).map(ShardingSphereUser::isAdmin).orElse(false)
45 || rule.findPrivileges(grantee).map(optional -> optional.hasPrivileges(database)).orElse(false);
46 }
47 }