Validates if resource id is part of authentication scope attributes using micronaut-security and micronaut-security-attributes - https://github.com/traycho/micronaut-security-attributes

.java

package com.pulsarix.micronaut.security.attributes.validation;


import com.pulsarix.micronaut.security.attributes.util.Attributes;
import io.micronaut.http.HttpRequest;
import io.micronaut.security.rules.SecurityRuleResult;

import javax.inject.Singleton;
import java.net.URI;
import java.util.List;
import java.util.Map;

/**
 * Validates if resource id is part of authentication scope attributes.
 *
 * @see SecuredAttributeValidator
 */
@Singleton
public class ResourceIdScopeValidator extends SecuredAttributeValidator {

    private static final String ATTRIBUTE_SCOPES = "scp";

    /**
     * {@inheritDoc}
     */
    @Override
    public SecurityRuleResult validate(HttpRequest request, Map<String, Object> attributes) {

        SecurityRuleResult result = SecurityRuleResult.REJECTED;

        if (attributes != null) {
            List<String> scopes = Attributes.find(attributes, ATTRIBUTE_SCOPES);
            String resourceId = getResourceId(request);
            if (scopes.contains(resourceId)) {
                result = SecurityRuleResult.ALLOWED;
            }
        }

        return result;
    }

    /**
     * Gets resource id from given http request.
     *
     * @param request http request
     * @return resource identifier
     */
    String getResourceId(HttpRequest request) {
        URI uri = request.getUri();
        String path = uri.getPath();
        return path.substring(path.lastIndexOf('/') + 1);
    }
}