RoleContainer support added (helidon-io#4271)

Verdent · web-flow · commit 39288628062b · 2022-05-26T18:25:55.000+02:00
RoleContainer support added

Signed-off-by: David Kral &lt;david.k.kral@oracle.com&gt;
diff --git a/security/abac/role/src/main/java/io/helidon/security/abac/role/RoleValidator.java b/security/abac/role/src/main/java/io/helidon/security/abac/role/RoleValidator.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2018, 2021 Oracle and/or its affiliates.
+ * Copyright (c) 2018, 2022 Oracle and/or its affiliates.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -116,6 +116,18 @@ public RoleConfig fromAnnotations(EndpointConfig endpointConfig) {
                         }
                         builder.permitAll(false);
                         builder.denyAll(false);
+                    } else if (annotation instanceof RolesContainer container) {
+                        for (Roles role : container.value()) {
+                            if (role.subjectType() == SubjectType.USER) {
+                                roles.addAll(Arrays.asList(role.value()));
+                            } else {
+                                serviceRoles.addAll(Arrays.asList(role.value()));
+                            }
+                        }
+                        if (container.value().length != 0) {
+                            builder.permitAll(false);
+                            builder.denyAll(false);
+                        }
                     } else if (annotation instanceof PermitAll) {
                         builder.permitAll(true);
                         builder.denyAll(false);
