From 15065654b5976d5d986e451be47adc340600588a Mon Sep 17 00:00:00 2001
From: Konstantinos Georgilakis <cgeorgilakis@grnet.gr>
Date: Thu, 31 Aug 2023 16:13:32 +0300
Subject: [PATCH] allow group events only for top level groups

---
 .../metrics/utils/AmsCommunication.java       | 60 +++++++++++--------
 1 file changed, 36 insertions(+), 24 deletions(-)

diff --git a/src/main/java/org/keycloak/metrics/utils/AmsCommunication.java b/src/main/java/org/keycloak/metrics/utils/AmsCommunication.java
index fe52bda..56ff025 100644
--- a/src/main/java/org/keycloak/metrics/utils/AmsCommunication.java
+++ b/src/main/java/org/keycloak/metrics/utils/AmsCommunication.java
@@ -1,15 +1,22 @@
 package org.keycloak.metrics.utils;
 
+import java.io.IOException;
 import java.util.Base64;
+import java.util.List;
+import java.util.stream.Collectors;
+import java.util.stream.Stream;
 
+import javax.ws.rs.BadRequestException;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import okhttp3.MediaType;
 import okhttp3.OkHttpClient;
 import okhttp3.Request;
 import okhttp3.RequestBody;
 import okhttp3.Response;
+import org.apache.commons.lang3.StringUtils;
 import org.jboss.logging.Logger;
 import org.keycloak.events.Event;
+import org.keycloak.events.EventType;
 import org.keycloak.metrics.representations.AmsDto;
 import org.keycloak.metrics.representations.MessagesDto;
 import org.keycloak.metrics.representations.MetricsDto;
@@ -22,30 +29,35 @@ public class AmsCommunication {
     private static final ObjectMapper objectMapper = new ObjectMapper();
     public static final MediaType JSON = MediaType.get("application/json; charset=utf-8");
 
-    public static void communicate(RealmModel realm, Event event) throws Exception {
-        MetricsDto metricsDto = new MetricsDto(event, realm);
-        String encodedData = Base64.getEncoder().encodeToString(objectMapper.writeValueAsBytes(metricsDto));
-        AmsDto amsDto = new AmsDto(new MessagesDto(encodedData));
-        String amsJson = objectMapper.writeValueAsString(amsDto);
-        logger.info("try to write message with body : " + amsJson);
-
-        Request request = new Request.Builder()
-                .url(realm.getAttribute(MetricsUtils.AMS_URL) + MetricsUtils.PUBLISH)
-                .addHeader("Accept", "application/json")
-                .addHeader("Content-Type", "application/json")
-                .addHeader(MetricsUtils.API_KEY, realm.getAttribute(MetricsUtils.API_KEY))
-                .post(RequestBody.create(amsJson, JSON))
-                .build();
-
-        Response response = client.newCall(request).execute();
-        if (!response.isSuccessful()) {
-            int statusCode = response.code();
-            logger.error("ams response error with status: " + statusCode);
-            logger.error("message : " + response.message());
-            response.close();
-            throw new Exception("ams response error with status: " + statusCode);
-        } else {
-            response.close();
+    private static final List<EventType> groupEvents = Stream.of(EventType.valueOf(MetricsUtils.GROUP_MEMBERSHIP_CREATE), EventType.valueOf(MetricsUtils.GROUP_MEMBERSHIP_SUSPEND), EventType.valueOf(MetricsUtils.GROUP_MEMBERSHIP_DELETE)).collect(Collectors.toList());
+
+    public static void communicate(RealmModel realm, Event event) throws BadRequestException, IOException {
+        //groupEvents are only allowed for top level groups
+        if ((!groupEvents.contains(event.getType())) || StringUtils.countMatches(event.getDetails().get(MetricsUtils.EVENT_GROUP), "/") == 1) {
+            MetricsDto metricsDto = new MetricsDto(event, realm);
+            String encodedData = Base64.getEncoder().encodeToString(objectMapper.writeValueAsBytes(metricsDto));
+            AmsDto amsDto = new AmsDto(new MessagesDto(encodedData));
+            String amsJson = objectMapper.writeValueAsString(amsDto);
+            logger.info("try to write message with body : " + amsJson);
+
+            Request request = new Request.Builder()
+                    .url(realm.getAttribute(MetricsUtils.AMS_URL) + MetricsUtils.PUBLISH)
+                    .addHeader("Accept", "application/json")
+                    .addHeader("Content-Type", "application/json")
+                    .addHeader(MetricsUtils.API_KEY, realm.getAttribute(MetricsUtils.API_KEY))
+                    .post(RequestBody.create(amsJson, JSON))
+                    .build();
+
+            Response response = client.newCall(request).execute();
+            if (!response.isSuccessful()) {
+                int statusCode = response.code();
+                logger.error("ams response error with status: " + statusCode);
+                logger.error("message : " + response.message());
+                response.close();
+                throw new BadRequestException("ams response error with status: " + statusCode);
+            } else {
+                response.close();
+            }
         }
 
     }