Add model classes required for search APIs.

Author: EsalaMapa

components/org.wso2.carbon.identity.authz.spicedb/src/main/java/org/wso2/carbon/identity/authz/spicedb/handler/model/LookupObjectsResponseHolder.java

@@ -0,0 +1,87 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.authz.spicedb.handler.model;
+
+import org.wso2.carbon.identity.authorization.framework.model.AuthorizationResource;
+import org.wso2.carbon.identity.authorization.framework.model.AuthorizationSubject;
+import org.wso2.carbon.identity.authorization.framework.model.SearchResourcesResponse;
+import org.wso2.carbon.identity.authorization.framework.model.SearchSubjectsResponse;
+import org.wso2.carbon.identity.authz.spicedb.handler.util.JsonUtil;
+
+import java.util.ArrayList;
+
+/**
+ * The {@code LookupObjectsResponseHolder} class holds the results stream returned from a Lookup subject or Lookup
+ * resource response. The results stream is converted into a {@code String[]} to extract each result.
+ */
+public class LookupObjectsResponseHolder {
+
+    private final String[] results;
+    private final String resultType;
+
+    public LookupObjectsResponseHolder(String response, String resultType) {
+
+        this.results = response.split("(?<=})\\s*(?=\\{)");
+        this.resultType = resultType;
+    }
+
+    public String[] getResults () {
+
+        return results;
+    }
+
+    /**
+     * Converts the response to a {@link SearchResourcesResponse} object from a lookup resources response.
+     *
+     * @return The {@link SearchResourcesResponse} object.
+     */
+    public SearchResourcesResponse toSearchResourcesResponse() {
+
+        ArrayList<AuthorizationResource> resourceArrayList = new ArrayList<>();
+        for (String result : this.results) {
+            LookupResourcesResult lookUpResourcesResult = JsonUtil.jsonToResponseModel(result,
+                    LookupResourcesResult.class);
+            AuthorizationResource authorizationResource = new AuthorizationResource(this.resultType,
+                    lookUpResourcesResult.getLookupResourcesResult().getResourceId());
+            authorizationResource.setProperties(lookUpResourcesResult.getLookupResourcesResult()
+                    .getPartialCaveatInfo());
+            resourceArrayList.add(authorizationResource);
+        }
+        return new SearchResourcesResponse(resourceArrayList);
+    }
+
+    /**
+     * Converts the response to a {@link SearchSubjectsResponse} object from a lookup subjects response.
+     *
+     * @return The {@link SearchSubjectsResponse} object.
+     */
+    public SearchSubjectsResponse toSearchSubjectsResponse() {
+
+        ArrayList<AuthorizationSubject> listObjectsResults = new ArrayList<>();
+        for (String result : this.results) {
+            LookupSubjectsResult lookUpSubjectsResult = JsonUtil.jsonToResponseModel(result,
+                    LookupSubjectsResult.class);
+            AuthorizationSubject searchObjectsResult = new AuthorizationSubject(this.resultType,
+                    lookUpSubjectsResult.getLookupSubjectsResult().getSubjectId());
+            searchObjectsResult.setProperties(lookUpSubjectsResult.getLookupSubjectsResult().getPartialCaveatInfo());
+            listObjectsResults.add(searchObjectsResult);
+        }
+        return new SearchSubjectsResponse(listObjectsResults);
+    }
+}

components/org.wso2.carbon.identity.authz.spicedb/src/main/java/org/wso2/carbon/identity/authz/spicedb/handler/model/LookupResourcesRequest.java

@@ -0,0 +1,96 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.authz.spicedb.handler.model;
+
+import com.google.gson.annotations.Expose;
+import com.google.gson.annotations.SerializedName;
+import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
+import org.wso2.carbon.identity.authorization.framework.model.SearchResourcesRequest;
+import org.wso2.carbon.identity.authz.spicedb.constants.SpiceDbModelConstants;
+
+import java.util.Map;
+
+/**
+ * The {@code LookupResourcesRequest} class represents the request body of a lookup resources request sent to SpiceDB.
+ */
+@SuppressFBWarnings(value = "URF_UNREAD_FIELD",
+        justification = "All fields are accessed via Gson serialization")
+public class LookupResourcesRequest {
+
+    @SerializedName(SpiceDbModelConstants.RESOURCE_OBJECT_TYPE)
+    @Expose
+    private String resourceType;
+    @SerializedName(SpiceDbModelConstants.PERMISSION)
+    @Expose
+    private String permission;
+    @SerializedName(SpiceDbModelConstants.SUBJECT)
+    @Expose
+    private Subject subject;
+    @SerializedName(SpiceDbModelConstants.OPTIONAL_LIMIT)
+    @Expose
+    private long optionalLimit;
+    @SerializedName(SpiceDbModelConstants.OPTIONAL_CURSOR)
+    @Expose
+    private String optionalCursor;
+    @SerializedName(SpiceDbModelConstants.CONTEXT)
+    @Expose
+    private Map<String, Object> context;
+
+    public LookupResourcesRequest(SearchResourcesRequest searchResourcesRequest) {
+
+        if (searchResourcesRequest.getResource() == null ||
+                searchResourcesRequest.getAction() == null ||
+                searchResourcesRequest.getSubject() == null) {
+            throw new IllegalArgumentException("Invalid request. Resource with type, action, and subject " +
+                    "must be provided to lookup resources.");
+        }
+        if (searchResourcesRequest.getSubject().getSubjectId() == null) {
+            throw new IllegalArgumentException("Invalid request. Subject id must be provided to lookup resources.");
+        }
+        this.resourceType = searchResourcesRequest.getResource().getResourceType();
+        this.permission = searchResourcesRequest.getAction().getAction();
+        this.subject = new Subject(searchResourcesRequest.getSubject().getSubjectType(),
+                searchResourcesRequest.getSubject().getSubjectId());
+    }
+
+    public void setContext(Map<String, Object> context) {
+
+        this.context = context;
+    }
+
+    public void setOptionalRelation (String optionalRelation) {
+
+        this.subject.setOptionalRelation(optionalRelation);
+    }
+
+    public void setOptionalLimit (Long optionalLimit) {
+
+        this.optionalLimit = optionalLimit;
+    }
+
+    public void setOptionalCursor (String optionalCursor) {
+
+        this.optionalCursor = optionalCursor;
+    }
+
+    public Map<String, Object> getContext() {
+
+        return context;
+    }
+}

components/org.wso2.carbon.identity.authz.spicedb/src/main/java/org/wso2/carbon/identity/authz/spicedb/handler/model/LookupResourcesResult.java

@@ -0,0 +1,37 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.authz.spicedb.handler.model;
+
+import com.google.gson.annotations.SerializedName;
+import org.wso2.carbon.identity.authz.spicedb.constants.SpiceDbModelConstants;
+
+/**
+ * The {@code LookupResourcesResult} class represents a single element in the results stream returned in a lookup
+ * resources response.
+ */
+public class LookupResourcesResult {
+
+    @SerializedName(SpiceDbModelConstants.RESULT)
+    private LookupResourcesResultBody lookupResourcesResultBody;
+
+    public LookupResourcesResultBody getLookupResourcesResult() {
+
+        return lookupResourcesResultBody;
+    }
+}

components/org.wso2.carbon.identity.authz.spicedb/src/main/java/org/wso2/carbon/identity/authz/spicedb/handler/model/LookupResourcesResultBody.java

@@ -0,0 +1,73 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.authz.spicedb.handler.model;
+
+import com.google.gson.annotations.Expose;
+import com.google.gson.annotations.SerializedName;
+import org.wso2.carbon.identity.authz.spicedb.constants.SpiceDbModelConstants;
+
+import java.util.Map;
+
+/**
+ * The {@code LookupResourcesResultBody} class holds all the fields in a single element in a results stream returned
+ * from a lookup resources request.
+ */
+public class LookupResourcesResultBody {
+
+    @SerializedName(SpiceDbModelConstants.LOOKED_AT)
+    @Expose
+    private ZedToken lookedAt;
+    @SerializedName(SpiceDbModelConstants.RESOURCE_ID)
+    @Expose
+    private String resourceId;
+    @SerializedName(SpiceDbModelConstants.PERMISSION_RESULT)
+    @Expose
+    private String permissionship;
+    @SerializedName(SpiceDbModelConstants.PARTIAL_CAVEAT_INFO)
+    @Expose
+    private Map<String, Object> partialCaveatInfo;
+    @SerializedName(SpiceDbModelConstants.AFTER_RESULT_CURSOR)
+    @Expose
+    private String afterResultCursor;
+
+    public String lookedAt() {
+
+        return lookedAt.getToken();
+    }
+
+    public String getResourceId() {
+
+        return resourceId;
+    }
+
+    public String getPermissionship() {
+
+        return permissionship;
+    }
+
+    public Map<String, Object> getPartialCaveatInfo() {
+
+        return partialCaveatInfo;
+    }
+
+    public String getAfterResultCursor() {
+
+        return afterResultCursor;
+    }
+}

components/org.wso2.carbon.identity.authz.spicedb/src/main/java/org/wso2/carbon/identity/authz/spicedb/handler/model/LookupSubjectsRequest.java

@@ -0,0 +1,102 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.authz.spicedb.handler.model;
+
+import com.google.gson.annotations.Expose;
+import com.google.gson.annotations.SerializedName;
+import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
+import org.wso2.carbon.identity.authorization.framework.model.SearchSubjectsRequest;
+import org.wso2.carbon.identity.authz.spicedb.constants.SpiceDbModelConstants;
+
+import java.util.Map;
+
+/**
+ * The {@code LookupSubjectsRequest} class represents the request body of a lookup subjects request sent to SpiceDB.
+ */
+@SuppressFBWarnings(value = "URF_UNREAD_FIELD",
+        justification = "All fields are accessed via Gson serialization")
+public class LookupSubjectsRequest {
+
+    @SerializedName(SpiceDbModelConstants.SUBJECT_OBJECT_TYPE)
+    @Expose
+    private String subjectType;
+    @SerializedName(SpiceDbModelConstants.PERMISSION)
+    @Expose
+    private String permission;
+    @SerializedName(SpiceDbModelConstants.RESOURCE)
+    @Expose
+    private Resource resource;
+    @SerializedName(SpiceDbModelConstants.CONTEXT)
+    @Expose
+    private Map<String, Object> context;
+    @SerializedName(SpiceDbModelConstants.OPTIONAL_SUBJECT_RELATION)
+    @Expose
+    private String optionalSubjectRelation;
+    @SerializedName(SpiceDbModelConstants.OPTIONAL_CONCRETE_LIMIT)
+    @Expose
+    private long optionalConcreteLimit;
+    @SerializedName(SpiceDbModelConstants.OPTIONAL_CURSOR)
+    @Expose
+    private String optionalCursor;
+    @SerializedName(SpiceDbModelConstants.WILD_CARD_OPTION)
+    @Expose
+    private String wildCardOption;
+
+    public LookupSubjectsRequest(SearchSubjectsRequest searchSubjectsRequest) {
+
+        if (searchSubjectsRequest.getResource() == null ||
+                searchSubjectsRequest.getAction() == null ||
+                searchSubjectsRequest.getSubject() == null) {
+            throw new IllegalArgumentException("Invalid request. Resource, action, and subject with type " +
+                    "must be provided to lookup subjects.");
+        }
+        if (searchSubjectsRequest.getResource().getResourceId() == null) {
+            throw new IllegalArgumentException("Invalid request. Resource id must be provided to lookup subjects.");
+        }
+        this.subjectType = searchSubjectsRequest.getSubject().getSubjectType();
+        this.permission = searchSubjectsRequest.getAction().getAction();
+        this.resource = new Resource(searchSubjectsRequest.getResource().getResourceType(),
+                searchSubjectsRequest.getResource().getResourceId());
+    }
+
+    public void setContext(Map<String, Object> context) {
+
+        this.context = context;
+    }
+
+    public void setOptionalSubjectRelation (String optionalSubjectRelation) {
+
+        this.optionalSubjectRelation = optionalSubjectRelation;
+    }
+
+    public void setOptionalConcreteLimit (Long optionalConcreteLimit) {
+
+        this.optionalConcreteLimit = optionalConcreteLimit;
+    }
+
+    public void setOptionalCursor (String optionalCursor) {
+
+        this.optionalCursor = optionalCursor;
+    }
+
+    public void setWildCardOption (String wildCardOption) {
+
+        this.wildCardOption = wildCardOption;
+    }
+}