package ca.cdr.api.model.enm;

/*
 * #%L
 * Smile CDR - CDR
 * %%
 * Copyright (C) 2016 - 2025 Smile CDR, Inc.
 * %%
 * All rights reserved.
 * #L%
 */

import ca.cdr.api.security.permission.PermissionArgumentFormat;
import ca.cdr.api.security.permission.PermissionArgumentFormats;
import jakarta.annotation.Nonnull;
import org.apache.commons.text.StringTokenizer;

import java.util.ArrayList;
import java.util.Arrays;
import java.util.Collection;
import java.util.Collections;
import java.util.EnumSet;
import java.util.List;
import java.util.Locale;
import java.util.Optional;
import java.util.Set;
import java.util.stream.Collectors;

import static org.apache.commons.lang3.StringUtils.isBlank;
import static org.apache.commons.lang3.StringUtils.isNotBlank;
import static org.apache.commons.lang3.StringUtils.trim;

public enum PermissionEnum {

        /*
         * Sorting agnostic, but don't change which one is first because swagger uses it as an example.
         */

        /**
         * User has permission to change password
         */
        CHANGE_OWN_PASSWORD(PermissionCategoryEnum.USER_MANAGER),

        /**
         * User can log in to EasyShare
         */
        ACCESS_EASYSHARE(PermissionCategoryEnum.EASYSHARE),

        /**
         * User can create a SMART Health Link using EasyShare
         */
        EASYSHARE_CREATE_SMART_HEALTH_LINK(
                        PermissionCategoryEnum.EASYSHARE, new PermissionEnum[] {PermissionEnum.ACCESS_EASYSHARE}),

        //      TODO: add this once this UI is created
        //      /**
        //       * User can manage SMART Health Links in EasyShare
        //       */
        //      EASYSHARE_MANAGE_ALL_SMART_HEALTH_LINKS(
        //                      PermissionCategoryEnum.EASYSHARE, new PermissionEnum[] {PermissionEnum.ACCESS_EASYSHARE}),

        /**
         * User can update their own launch contexts
         */
        CHANGE_OWN_DEFAULT_LAUNCH_CONTEXTS(PermissionCategoryEnum.USER_MANAGER),

        /**
         * User can change their own TFA key
         */
        CHANGE_OWN_TFA_KEY(PermissionCategoryEnum.USER_MANAGER),

        /**
         * User is allowed to log into the web admin console
         */
        ACCESS_ADMIN_WEB(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {CHANGE_OWN_PASSWORD}),

        /**
         * User is allowed to use the JSON Admin API services
         */
        ACCESS_ADMIN_JSON(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to access FHIR services
         */
        ACCESS_FHIR_ENDPOINT(PermissionCategoryEnum.FHIR_CLIENT),

        /**
         * User has permission to log into the FHIRWeb console
         */
        ACCESS_FHIRWEB(PermissionCategoryEnum.ADMIN),

        /**
         * User can access internal metrics API, including thread dump API
         */
        VIEW_METRICS(PermissionCategoryEnum.ADMIN),

        /**
         * User can see (but not change) status information about modules. This includes running/stopped status, health checks, etc., but does not give access to more sensitive details such as logs.
         */
        VIEW_MODULE_STATUS(PermissionCategoryEnum.ADMIN),

        /**
         * User can see (but not change) module configuration information (not including database passwords)
         */
        VIEW_MODULE_CONFIG(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {VIEW_MODULE_STATUS}),

        /**
         * User can archive module
         */
        ARCHIVE_MODULE(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {VIEW_MODULE_CONFIG}),

        /**
         * User can reinstate module
         */
        REINSTATE_MODULE(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {VIEW_MODULE_CONFIG}),

        /**
         * User is allowed to view existing OpenID Connect client list
         */
        OPENID_CONNECT_VIEW_CLIENT_LIST(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to view existing OpenID Connect server list
         */
        OPENID_CONNECT_VIEW_SERVER_LIST(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to create OpenID Connect clients
         */
        OPENID_CONNECT_ADD_CLIENT(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to create OpenID Connect clients with pre-set permissions
         */
        OIDC_CLIENT_PRESET_PERMISSION(
                        PermissionCategoryEnum.ADMIN,
                        OPENID_CONNECT_ADD_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.NO_ARGUMENT_FORMAT),

        /**
         * User is allowed to add OpenID Connect servers
         */
        OPENID_CONNECT_ADD_SERVER(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to edit OpenID Connect servers
         */
        OPENID_CONNECT_EDIT_SERVER(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to edit existing OpenID Connect clients
         */
        OPENID_CONNECT_EDIT_CLIENT(PermissionCategoryEnum.ADMIN),

        /**
         * User is allows to manage other users' OIDC sessions (view active sessions and revoke them).
         */
        OPENID_CONNECT_MANAGE_GLOBAL_SESSIONS(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to manage (view/create/update/delete) OIDC Keystore definitions
         */
        OPENID_CONNECT_MANAGE_KEYSTORES(PermissionCategoryEnum.ADMIN),

        /**
         * User can create other users
         */
        CREATE_USER(PermissionCategoryEnum.USER_MANAGER),

        /**
         * User can update existing users other than themself
         */
        UPDATE_USER(PermissionCategoryEnum.USER_MANAGER),

        /**
         * User can view list of users
         */
        VIEW_USERS(PermissionCategoryEnum.USER_MANAGER),

        /**
         * User can view, create, and update users
         */
        SAVE_USER(PermissionCategoryEnum.USER_MANAGER, new PermissionEnum[] {CREATE_USER, UPDATE_USER, VIEW_USERS}),

        /**
         * User is allowed to use a FHIR client
         */
        ROLE_FHIR_CLIENT(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {ACCESS_FHIR_ENDPOINT}),

        /**
         * Actions performed by the system itself.
         * Implied permissions are populated internally and not explicitly defined in the constructor.
         */
        ROLE_SYSTEM(PermissionCategoryEnum.SYSTEM),

        /**
         * Actions performed by the system itself during initialization
         */
        ROLE_SYSTEM_INITIALIZATION(PermissionCategoryEnum.SYSTEM, new PermissionEnum[] {ROLE_SYSTEM}),

        /**
         * User is allowed to view the audit log
         */
        VIEW_AUDIT_LOG(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to view the transaction log
         */
        VIEW_TRANSACTION_LOG(PermissionCategoryEnum.ADMIN),

        /**
         * User is allowed to view entries in the transaction log
         */
        VIEW_TRANSACTION_LOG_EVENT(PermissionCategoryEnum.ADMIN),

        /**
         * User is allows to modify a module's configuration
         */
        UPDATE_MODULE_CONFIG(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {VIEW_MODULE_CONFIG}),

        /**
         * User is allowed to start/stop modules
         */
        START_STOP_MODULE(PermissionCategoryEnum.ADMIN),

        /**
         * User can start/stop/restart modules
         */
        CONTROL_MODULE(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {VIEW_MODULE_CONFIG, START_STOP_MODULE}),

        /**
         * User is allowed to create new modules
         */
        CREATE_MODULE(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {VIEW_MODULE_CONFIG}),

        /**
         * User is allowed to create, reconfigure and start/stop modules
         */
        MODULE_ADMIN(PermissionCategoryEnum.ADMIN, new PermissionEnum[] {
                CREATE_MODULE,
                UPDATE_MODULE_CONFIG,
                CONTROL_MODULE,
                REINSTATE_MODULE,
                ARCHIVE_MODULE,
                START_STOP_MODULE,
                VIEW_MODULE_CONFIG
        }),

        /**
         * User is allowed to access (includes both read and write operations) data in all
         * partitions. Note that this permission does not actually authorize any specific read/write
         * operations, it simply implies access to the partitions.
         */
        FHIR_ACCESS_PARTITION_ALL(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to access (includes both read and write operations) data in the given
         * partition. Note that this permission does not actually authorize any specific read/write
         * operations, it simply implies access to the given partition.
         */
        FHIR_ACCESS_PARTITION_NAME(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.NO_ARGUMENT_FORMAT),

        /**
         * User is allowed to invoke the ConceptMap/$hapi.fhir.add-mapping and
         * ConceptMap/$hapi.fhir.remove-mapping operations
         */
        FHIR_OP_ADD_AND_REMOVE_CONCEPT_MAPPING(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the $binary-access-XXX operation (note that the user
         * will also need permission to read/write the individual resource that is
         * actually being accessed)
         */
        FHIR_OP_BINARY_ACCESS_READ(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the $binary-access-XXX operation (note that the user
         * will also need permission to read/write the individual resource that is
         * actually being accessed)
         */
        FHIR_OP_BINARY_ACCESS_WRITE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the $hapi.fhir.bulk-patch operation. This is a potentially destructive
         * operation, so this permission should only be granted to trusted administrative
         * users. The Bulk Patch operation must also be enabled in the FHIR Storage module
         * configuration to use this operation.
         */
        FHIR_OP_BULK_PATCH(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the $hapi.fhir.bulk-patch-rewrite-history operation. This is a potentially destructive
         * operation, so this permission should only be granted to trusted administrative
         * users. The Bulk Patch operation must also be enabled in the FHIR Storage module
         * configuration to use this operation.
         */
        FHIR_OP_BULK_PATCH_REWRITE_HISTORY(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to initiate a bulk data export using the $export operation
         */
        FHIR_OP_INITIATE_BULK_DATA_EXPORT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.OPTIONAL,
                        PermissionArgumentFormats.EXPORT_RESOURCE_TYPES_FORMAT),

        /**
         * User is allowed to initiate a bulk data import using the $import operation
         */
        FHIR_OP_INITIATE_BULK_DATA_IMPORT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Bulk export - group Level
         */
        FHIR_OP_INITIATE_BULK_DATA_EXPORT_GROUP(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.COMPARTMENT_WITH_EXPORT_RESOURCE_TYPES_FORMAT),

        /**
         * Bulk export - Patient Level
         *
         * @deprecated In favour of FHIR_OP_INITIATE_BULK_DATA_EXPORT_PATIENTS and FHIR_OP_INITIATE_BULK_DATA_EXPORT_ALL_PATIENTS
         */
        @Deprecated
        FHIR_OP_INITIATE_BULK_DATA_EXPORT_PATIENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.OPTIONAL,
                        PermissionArgumentFormats.COMPARTMENT_WITH_EXPORT_RESOURCE_TYPES_FORMAT),

        /**
         * Bulk Export for a list of patient IDs and resource types
         */
        FHIR_OP_INITIATE_BULK_DATA_EXPORT_PATIENTS(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.OPTIONAL,
                        PermissionArgumentFormats.COMPARTMENTS_WITH_EXPORT_RESOURCE_TYPES_FORMAT),

        /**
         * Bulk Export for all patients
         */
        FHIR_OP_INITIATE_BULK_DATA_EXPORT_ALL_PATIENTS(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.NO,
                        PermissionArgumentFormats.OPTIONAL_FILTER_FORMAT),

        /**
         * Bulk export - System Level
         */
        FHIR_OP_INITIATE_BULK_DATA_EXPORT_SYSTEM(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.OPTIONAL,
                        PermissionArgumentFormats.EXPORT_RESOURCE_TYPES_FORMAT),

        /**
         * User is allowed to read search parameters
         */
        FHIR_READ_SEARCH_PARAMETERS(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {
                                // does not imply FHIR_CLIENT since this can be used for JSON Admin functions too
                        }),

        /**
         * User is allowed to create, update, and delete search parameters
         */
        FHIR_MODIFY_SEARCH_PARAMETERS(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {
                                // does not imply FHIR_CLIENT since this can be used for JSON Admin functions too
                        }),

        /**
         * User is allowed to read any resources in the given compartment
         */
        FHIR_READ_ALL_IN_COMPARTMENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.COMPARTMENT_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to write any resources in the given compartment
         */
        FHIR_WRITE_ALL_IN_COMPARTMENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.COMPARTMENT_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to read any resources of the given type in the given compartment
         */
        FHIR_READ_TYPE_IN_COMPARTMENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.TYPE_IN_COMPARTMENT_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to write any resources of the given type in the given compartment
         */
        FHIR_WRITE_TYPE_IN_COMPARTMENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.TYPE_IN_COMPARTMENT_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to read any resources of the given type
         */
        FHIR_READ_ALL_OF_TYPE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.RESOURCE_TYPE_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to write any resources of the given type
         */
        FHIR_WRITE_ALL_OF_TYPE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.RESOURCE_TYPE_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to read a specific resource instance by ID
         */
        FHIR_READ_INSTANCE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.INSTANCE_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to write a specific resource instance by ID
         */
        FHIR_WRITE_INSTANCE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.INSTANCE_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to access resources with a code
         */
        BLOCK_FHIR_READ_UNLESS_CODE_IN_VS(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {ROLE_FHIR_CLIENT},
                        TakesArgumentEnum.YES,
                        true,
                        PermissionArgumentFormats.CODE_IN_VALUE_SET_FILTER_FORMAT),

        /**
         * User is allowed to access resources with a code
         */
        BLOCK_FHIR_READ_UNLESS_CODE_NOT_IN_VS(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {ROLE_FHIR_CLIENT},
                        TakesArgumentEnum.YES,
                        true,
                        PermissionArgumentFormats.CODE_IN_VALUE_SET_FILTER_FORMAT),

        /**
         * User is permitted to invoke the $expunge operation with expungeDeletedResources=true
         */
        FHIR_EXPUNGE_DELETED(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to invoke the $expunge operation with expungePreviousVersions=true
         */
        FHIR_EXPUNGE_PREVIOUS_VERSIONS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to invoke the $expunge operation with expungeEverything=true
         */
        FHIR_EXPUNGE_EVERYTHING(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to invoke the $delete-expunge operation
         */
        FHIR_DELETE_EXPUNGE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to invoke the $livebundle-watchlist-add, $livebundle-watchlist-delete, $livebundle-watchlist, and $livebundle operations
         */
        FHIR_LIVEBUNDLE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to invoke the operations
         * $partition-management-create-partition,
         * $partition-management-read-partition,
         * $partition-management-update-partition,
         * $partition-management-delete-partition,
         * $partition-management-list-partitions,
         */
        FHIR_MANAGE_PARTITIONS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to invoke the $meta, $meta-add, and $meta-delete operations on
         * any resource.
         */
        FHIR_META_OPERATIONS_SUPERUSER(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke any kind of operation
         */
        FHIR_EXTENDED_OPERATION_SUPERUSER(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke operation with name specified by argument (e.g. $fooOperation)
         */
        FHIR_EXTENDED_OPERATION_ON_SERVER(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.OPERATION_FORMAT),

        /**
         * User may invoke operation at the type level with type and name specified by argument (e.g. Patient/$fooOperation)
         */
        FHIR_EXTENDED_OPERATION_ON_TYPE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.OPERATION_ON_RESOURCE_TYPE_FORMAT),

        /**
         * User may invoke operation at the instance level for any type with name specified by argument (e.g. $fooOperation)
         */
        FHIR_EXTENDED_OPERATION_ON_ANY_INSTANCE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.OPERATION_FORMAT),

        /**
         * User may invoke operation at the instance level with type and name specified by argument (e.g. Patient/$fooOperation)
         */
        FHIR_EXTENDED_OPERATION_ON_ANY_INSTANCE_OF_TYPE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.OPERATION_ON_RESOURCE_TYPE_FORMAT),

        /**
         * User may invoke the MDM $match operation on a Patient
         */
        FHIR_OP_PATIENT_MATCH(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the $sdh.mdm-bundle-match operation on a Bundle
         */
        FHIR_OP_MDM_BUNDLE_MATCH(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-merge-golden-resources operation on Golden Resources
         */
        FHIR_OP_MDM_MERGE_GOLDEN_RESOURCES(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-update-link operation on a Golden Resource
         */
        FHIR_OP_MDM_UPDATE_LINK(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-create-link operation on a Golden Resource
         */
        FHIR_OP_MDM_CREATE_LINK(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-query-links operation
         */
        FHIR_OP_MDM_QUERY_LINKS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-query-links operation
         */
        FHIR_OP_MDM_LINK_HISTORY(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-duplicate-golden-resources
         */
        FHIR_OP_MDM_DUPLICATE_GOLDEN_RESOURCES(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-not-duplicate
         */
        FHIR_OP_MDM_NOT_DUPLICATE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-clear Operation
         */
        FHIR_OP_MDM_CLEAR(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may invoke the MDM $mdm-submit operation
         */
        FHIR_OP_MDM_SUBMIT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may perform all MDM operations
         */
        FHIR_MDM_ADMIN(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {
                FHIR_OP_MDM_SUBMIT,
                FHIR_OP_MDM_CLEAR,
                FHIR_OP_MDM_DUPLICATE_GOLDEN_RESOURCES,
                FHIR_OP_MDM_NOT_DUPLICATE,
                FHIR_OP_MDM_MERGE_GOLDEN_RESOURCES,
                FHIR_OP_MDM_QUERY_LINKS,
                FHIR_OP_MDM_LINK_HISTORY,
                FHIR_OP_MDM_UPDATE_LINK,
                FHIR_OP_MDM_CREATE_LINK
        }),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_OP_EMPI_MERGE_PERSONS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_OP_EMPI_UPDATE_LINK(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_OP_EMPI_QUERY_LINKS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_OP_EMPI_DUPLICATE_PERSONS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_OP_EMPI_CLEAR(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_OP_EMPI_SUBMIT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        FHIR_EMPI_ADMIN(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {
                FHIR_OP_EMPI_SUBMIT,
                FHIR_OP_EMPI_CLEAR,
                FHIR_OP_EMPI_DUPLICATE_PERSONS,
                FHIR_OP_EMPI_MERGE_PERSONS,
                FHIR_OP_EMPI_QUERY_LINKS,
                FHIR_OP_EMPI_UPDATE_LINK
        }),

        /**
         * CQL Permission for evaluate-measure operation.
         */
        FHIR_OP_EVALUATE_MEASURE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for submit-data operation.
         */
        FHIR_OP_SUBMIT_DATA(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for care-gaps operation.
         */
        FHIR_OP_CARE_GAPS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for evaluate operation.
         */
        FHIR_OP_EVALUATE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for $collect-data operation.
         */
        FHIR_OP_COLLECTDATA(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for $data-requirements operation.
         */
        FHIR_OP_DATAREQUIREMENTS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for cql operation.
         */
        FHIR_OP_CQL(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for evaluate-measures operation.
         */
        FHIR_OP_EVALUATE_MEASURES(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {ROLE_FHIR_CLIENT}),
        /**
         * Permission for qpp-build operation.
         */
        DQM_QPP_BUILD(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),
        /**
         * Permission for job-analytics operation
         */
        BATCH_JOB_ANALYTICS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $apply operation
         */
        FHIR_OP_APPLY(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $prepopulate operation
         */
        FHIR_OP_PREPOPULATE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $populate operation
         */
        FHIR_OP_POPULATE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $extract operation
         */
        FHIR_OP_EXTRACT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $package operation
         */
        FHIR_OP_PACKAGE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $hapi.fhir.replace-references operation
         */
        FHIR_OP_REPLACE_REFERENCES(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $merge operation
         */
        FHIR_OP_MERGE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User may perform all DTR operations
         */
        FHIR_DTR_USER(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {FHIR_OP_PACKAGE, FHIR_OP_POPULATE}),

        /**
         * User is allowed to perform any FHIR read/access-to-data operation, e.g. `read`, `search`, `history`, etc
         */
        FHIR_ALL_READ(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {ROLE_FHIR_CLIENT, FHIR_READ_SEARCH_PARAMETERS},
                        TakesArgumentEnum.NO,
                        false,
                        PermissionArgumentFormats.OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to perform FHIR transactions
         */
        FHIR_TRANSACTION(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform FHIR GraphQL Operations
         */
        FHIR_GRAPHQL(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform FHIR transactions
         */
        FHIR_BATCH(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform FHIR PATCH operations
         *
         * @deprecated FHIR_PATCH will be removed:  Users should instead be granted more granular write permissions that cover PATCH operations.
         */
        @Deprecated
        FHIR_PATCH(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform any FHIR write/modify operation, e.g. `create`, `update`, etc
         */
        FHIR_ALL_WRITE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {ROLE_FHIR_CLIENT, FHIR_MODIFY_SEARCH_PARAMETERS, FHIR_META_OPERATIONS_SUPERUSER},
                        TakesArgumentEnum.NO,
                        false,
                        PermissionArgumentFormats.OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to perform any FHIR delete operation
         */
        FHIR_ALL_DELETE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {ROLE_FHIR_CLIENT},
                        TakesArgumentEnum.OPTIONAL,
                        false,
                        PermissionArgumentFormats.OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to perform any FHIR delete operation on the given type
         */
        FHIR_DELETE_ALL_OF_TYPE(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.RESOURCE_TYPE_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to perform any FHIR delete operation on a given compartment
         */
        FHIR_DELETE_ALL_IN_COMPARTMENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.COMPARTMENT_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to perform any FHIR delete operation on a given compartment
         */
        FHIR_DELETE_TYPE_IN_COMPARTMENT(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.TYPE_IN_COMPARTMENT_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * Any delete permissions granted to the user may be applied to cascaded deletes
         * as well as normal deletes. Note that this permission allows cascaded deletes
         * to occur, but does not actually grant any permission to delete resources in
         * the first place. This permission must be combined with other permissions that
         * grant the ability to cascade deletes.
         */
        FHIR_DELETE_CASCADE_ALLOWED(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to access the server capability statement
         */
        FHIR_CAPABILITIES(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the `$validate` operation to validate resources
         */
        FHIR_MANUAL_VALIDATION(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the `$process-message` operation to accept a message
         */
        FHIR_PROCESS_MESSAGE(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to upload external code systems
         */
        FHIR_UPLOAD_EXTERNAL_TERMINOLOGY(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call the $get-resource-counts operation
         */
        FHIR_GET_RESOURCE_COUNTS(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to invoke the $trigger-subscription operation
         */
        FHIR_TRIGGER_SUBSCRIPTION(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is permitted to call read-only terminology methods, such as
         * $lookup, $validate-code
         */
        ROLE_FHIR_TERMINOLOGY_READ_CLIENT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform the patient $everything operation
         */
        FHIR_OP_PATIENT_EVERYTHING(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform the patient $everything operation with `Access All` permission
         */
        FHIR_OP_PATIENT_EVERYTHING_ACCESS_ALL(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        ROLE_FHIR_CLIENT,
                        TakesArgumentEnum.YES,
                        PermissionArgumentFormats.INSTANCE_WITH_OPTIONAL_FILTER_FORMAT),

        /**
         * User is allowed to perform the patient $summary operation
         */
        FHIR_OP_PATIENT_SUMMARY(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform the encounter $everything operation
         */
        FHIR_OP_ENCOUNTER_EVERYTHING(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform the $snapshot operation
         */
        FHIR_OP_STRUCTUREDEFINITION_SNAPSHOT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to perform the $member-match operation
         */
        FHIR_OP_MEMBER_MATCH(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User is allowed to execute HFQL queries
         */
        HFQL_EXECUTE(),

        /**
         * Any read functions
         */
        ROLE_FHIR_CLIENT_SUPERUSER_RO(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {
                FHIR_CAPABILITIES,
                FHIR_ALL_READ,
                FHIR_TRANSACTION,
                FHIR_GRAPHQL,
                FHIR_BATCH,
                FHIR_OP_ENCOUNTER_EVERYTHING,
                FHIR_OP_PATIENT_EVERYTHING,
                FHIR_OP_PATIENT_SUMMARY,
                FHIR_OP_BINARY_ACCESS_READ,
                FHIR_GET_RESOURCE_COUNTS,
                ROLE_FHIR_TERMINOLOGY_READ_CLIENT,
                FHIR_OP_INITIATE_BULK_DATA_EXPORT
        }),

        /**
         * User has permission to perform any standard FHIR client operation (does not imply superuser status for other parts of the CDR, e.g. user management, FHIR search parameter modification, etc)
         * Implied permissions are populated internally and not explicitly defined in the constructor.
         */
        ROLE_FHIR_CLIENT_SUPERUSER(PermissionCategoryEnum.FHIR_CLIENT),

        /**
         * User has all permissions to do anything
         * Implied permissions are populated internally and not explicitly defined in the constructor.
         */
        ROLE_SUPERUSER(PermissionCategoryEnum.ADMIN),

        /**
         * User is not logged in or has not supplied credentials
         */
        ROLE_ANONYMOUS(),

        /**
         * User is allowed to initiate processing an ETL job
         */
        ETL_IMPORT_PROCESS_FILE(),

        /**
         * User is allowed to view CDA Document Templates
         */
        VIEW_CDA_TEMPLATE(PermissionCategoryEnum.CDA),

        /**
         * User is allowed to create new CDA Document Templates
         */
        CREATE_CDA_TEMPLATE(PermissionCategoryEnum.CDA, PermissionEnum.VIEW_CDA_TEMPLATE),

        /**
         * User is allowed to delete CDA Document Templates
         */
        DELETE_CDA_TEMPLATE(PermissionCategoryEnum.CDA, PermissionEnum.VIEW_CDA_TEMPLATE),

        /**
         * User is allowed to use CDA Document Templates,
         * potentially persisting a Composition, Bundle, and returning sensitive information in the resultant XML
         */
        USE_CDA_TEMPLATE(PermissionCategoryEnum.CDA, PermissionEnum.VIEW_CDA_TEMPLATE),

        /**
         * User can set/update MDM match rules
         */
        MDM_UPDATE_MATCH_RULES(PermissionCategoryEnum.MDM),

        /**
         * User can see MDM match rules
         */
        MDM_VIEW_MATCH_RULES(PermissionCategoryEnum.MDM),

        /**
         * User can perform any MDM operations
         */
        MDM_ADMIN(
                        PermissionCategoryEnum.MDM,
                        new PermissionEnum[] {PermissionEnum.MDM_VIEW_MATCH_RULES, PermissionEnum.MDM_UPDATE_MATCH_RULES}),

        /**
         * User will have MDM expansion performed automatically on all queries
         */
        FHIR_AUTO_MDM(PermissionCategoryEnum.MDM),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        EMPI_UPDATE_MATCH_RULES(PermissionCategoryEnum.EMPI),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        EMPI_VIEW_MATCH_RULES(PermissionCategoryEnum.EMPI),

        /**
         * Legacy permission for backward compatibility. Use corresponding MDM permission instead.
         */
        EMPI_ADMIN(
                        PermissionCategoryEnum.EMPI,
                        new PermissionEnum[] {PermissionEnum.EMPI_VIEW_MATCH_RULES, PermissionEnum.EMPI_UPDATE_MATCH_RULES}),

        /**
         * User can perform read operations from the package registry
         */
        PACKAGE_REGISTRY_READ(PermissionCategoryEnum.PACKAGE_REGISTRY),

        /**
         * User can perform read operations from the package registry
         */
        PACKAGE_REGISTRY_WRITE(PermissionCategoryEnum.PACKAGE_REGISTRY),

        /**
         * User can call CDS Hooks
         */
        INVOKE_CDS_HOOKS(PermissionCategoryEnum.CDS_HOOKS),

        /**
         * User can perform read operations from the appSphere Admin Console
         */
        AG_ADMIN_CONSOLE_READ(PermissionCategoryEnum.AG_ADMIN_CONSOLE),

        /**
         * User can perform write operations from the appSphere Admin Console
         */
        AG_ADMIN_CONSOLE_WRITE(PermissionCategoryEnum.AG_ADMIN_CONSOLE),

        /**
         * User can perform read operations from the appSphere Developer Portal
         */
        AG_DEV_PORTAL_READ(PermissionCategoryEnum.AG_DEV_PORTAL),

        /**
         * User can perform write operations from the appSphere Developer Portal
         */
        AG_DEV_PORTAL_WRITE(PermissionCategoryEnum.AG_DEV_PORTAL),

        /**
         * User has permission to view batch jobs
         */
        VIEW_BATCH_JOBS(PermissionCategoryEnum.ADMIN),

        /**
         * User has permission to manage (modify) batch jobs
         */
        MANAGE_BATCH_JOBS(PermissionCategoryEnum.ADMIN),

        /**
         * User can perform a docref operation
         */
        DOCREF(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User can perform a CDA Import operation
         */
        CDA_IMPORT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User can perform the $sdh.cda-to-fhir operation
         */
        SDH_CDA_TO_FHIR(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User can perform the $sdh.generate-cda operation
         */
        SMILE_GENERATE_CDA(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User can perform an update on the historical version of a resource
         */
        FHIR_UPDATE_REWRITE_HISTORY(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        SUBMIT_ATTACHMENT(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT),

        /**
         * User can see (but not change) module configuration information (not including database passwords)
         * for a specific module id for a node id
         */
        VIEW_MODULE_CONFIG_FOR_MODULE(
                        PermissionCategoryEnum.ADMIN,
                        new PermissionEnum[] {},
                        TakesArgumentEnum.YES,
                        false,
                        PermissionArgumentFormats.NODE_AND_MODULE_ID_PERMISSION_ARGUMENT_FORMAT),
        /**
         * User is allowed to modify a specific module id's configuration for a node id
         */
        UPDATE_MODULE_CONFIG_FOR_MODULE(
                        PermissionCategoryEnum.ADMIN,
                        new PermissionEnum[] {VIEW_MODULE_CONFIG_FOR_MODULE},
                        TakesArgumentEnum.YES,
                        false,
                        PermissionArgumentFormats.NODE_AND_MODULE_ID_PERMISSION_ARGUMENT_FORMAT),
        /**
         * User is allowed to start/stop a specific module id for a node id
         */
        START_STOP_MODULE_FOR_MODULE(
                        PermissionCategoryEnum.ADMIN,
                        new PermissionEnum[] {},
                        TakesArgumentEnum.YES,
                        false,
                        PermissionArgumentFormats.NODE_AND_MODULE_ID_PERMISSION_ARGUMENT_FORMAT),
        /**
         * User can start/stop/restart a specific module id for a node id
         */
        CONTROL_MODULE_FOR_MODULE(
                        PermissionCategoryEnum.ADMIN,
                        new PermissionEnum[] {VIEW_MODULE_CONFIG_FOR_MODULE, START_STOP_MODULE_FOR_MODULE},
                        TakesArgumentEnum.YES,
                        false,
                        PermissionArgumentFormats.NODE_AND_MODULE_ID_PERMISSION_ARGUMENT_FORMAT),

        /**
         * User is allowed to reconfigure and start/stop a specific module id for a node id
         */
        MODULE_ADMIN_FOR_MODULE(
                        PermissionCategoryEnum.ADMIN,
                        new PermissionEnum[] {
                                UPDATE_MODULE_CONFIG_FOR_MODULE,
                                CONTROL_MODULE_FOR_MODULE,
                                START_STOP_MODULE_FOR_MODULE,
                                VIEW_MODULE_CONFIG_FOR_MODULE
                        },
                        TakesArgumentEnum.YES,
                        false,
                        PermissionArgumentFormats.NODE_AND_MODULE_ID_PERMISSION_ARGUMENT_FORMAT),
        ROLE_MDMUI_DATASTEWARD_FHIR(PermissionCategoryEnum.FHIR_CLIENT, new PermissionEnum[] {
                FHIR_ALL_READ,
                FHIR_BATCH,
                FHIR_TRANSACTION,
                FHIR_OP_MDM_DUPLICATE_GOLDEN_RESOURCES,
                FHIR_OP_MDM_LINK_HISTORY,
                FHIR_OP_MDM_MERGE_GOLDEN_RESOURCES,
                FHIR_OP_MDM_NOT_DUPLICATE,
                FHIR_OP_MDM_QUERY_LINKS,
                FHIR_OP_MDM_UPDATE_LINK,
                ROLE_FHIR_TERMINOLOGY_READ_CLIENT
        }),
        ROLE_MDMUI_ADMIN_FHIR(
                        PermissionCategoryEnum.FHIR_CLIENT,
                        new PermissionEnum[] {ROLE_MDMUI_DATASTEWARD_FHIR, FHIR_OP_MDM_CLEAR, FHIR_OP_MDM_SUBMIT}),

        FHIR_OP_UPDATE_TOKENIZATION(PermissionCategoryEnum.FHIR_CLIENT, ROLE_FHIR_CLIENT);

        private static final Set<PermissionEnum> ROLES = getRoles();

        static {
                ROLE_SYSTEM.myImplies = getAllPermissions();
                ROLE_SUPERUSER.myImplies = getAllSuperuserPermissions();
                ROLE_FHIR_CLIENT_SUPERUSER.myImplies = getAllFhirSuperuserPermissions();

                /*
                 * Creating EnumSet with enum elements that have not been initialized fails (not a bug).
                 * Use a static block to replace Set with EnumSet once everything is initialized.
                 * {@link https://bugs.openjdk.org/browse/JDK-8211749}.
                 */
                for (PermissionEnum next : values()) {
                        next.myImplies = unmodifiableEnumSet(next.myImplies.toArray(new PermissionEnum[0]));
                }
        }

        private final TakesArgumentEnum myTakesArgument;
        private final boolean myNegativePermission;
        private Set<PermissionEnum> myImplies;
        private final PermissionCategoryEnum myCategory;
        /**
         * The format for the argument - defaults to no argument
         */
        private final PermissionArgumentFormat<?> myFormat;

        /**
         * Constructor for permissions with just a name
         */
        PermissionEnum() {
                this(null);
        }

        /**
         * Constructor for permissions with an assigned category
         */
        PermissionEnum(PermissionCategoryEnum theCategory) {
                this(theCategory, new PermissionEnum[] {});
        }

        /**
         * Constructor for permissions that have implied (underlying) permissions
         */
        PermissionEnum(PermissionCategoryEnum theCategory, PermissionEnum... theImplies) {
                this(theCategory, theImplies, TakesArgumentEnum.NO, false, PermissionArgumentFormats.NO_ARGUMENT_FORMAT);
        }

        /**
         * Constructor for permissions with arguments.
         */
        PermissionEnum(
                        PermissionCategoryEnum theCategory,
                        PermissionEnum theImplied,
                        TakesArgumentEnum theTakesArgument,
                        PermissionArgumentFormat<?> theFormat) {
                this(theCategory, new PermissionEnum[] {theImplied}, theTakesArgument, false, theFormat);
        }

        /**
         * Constructor for permissions with implied (underlying) permissions and/or with arguments.
         */
        PermissionEnum(
                        PermissionCategoryEnum theCategory,
                        PermissionEnum[] theImplies,
                        TakesArgumentEnum theTakesArgument,
                        boolean theNegativePermission,
                        PermissionArgumentFormat<?> theFormat) {
                assert theTakesArgument != null;
                assert !theNegativePermission || name().startsWith("BLOCK_");
                myImplies = Set.of(theImplies);
                myCategory = theCategory;
                myTakesArgument = theTakesArgument;
                myNegativePermission = theNegativePermission;
                myFormat = theFormat;
                validateInheritedPermissionsFormat(theImplies, theFormat);
        }

        public static void validateInheritedPermissionsFormat(
                        PermissionEnum[] theImplies, PermissionArgumentFormat<?> theFormat) {
                if (Arrays.stream(theImplies).anyMatch(x -> x.isRequiresArgument() && (x.getFormat() != theFormat))) {
                        throw new IllegalArgumentException(
                                        "Implied Permissions with arguments must accept the same argument format as Parent permission. "
                                                        + theFormat);
                }
        }

        @Deprecated(since = "7.2.0")
        public Set<PermissionCategoryEnum> getCategories() {
                return Set.of(myCategory);
        }

        public PermissionCategoryEnum getCategory() {
                return myCategory;
        }

        public Set<PermissionEnum> getImplies() {
                return myImplies;
        }

        public boolean isSystemPermission() {
                return this == ROLE_SYSTEM_INITIALIZATION || this == ROLE_SYSTEM;
        }

        public boolean isTakesArgument() {
                return myTakesArgument != TakesArgumentEnum.NO;
        }

        public boolean isRequiresArgument() {
                return myTakesArgument == TakesArgumentEnum.YES;
        }

        public boolean isArgumentOptional() {
                return myTakesArgument == TakesArgumentEnum.OPTIONAL;
        }

        public boolean isNegative() {
                return myNegativePermission;
        }

        /**
         * The format for the argument - defaults to NoArgument format
         */
        public PermissionArgumentFormat getFormat() {
                return myFormat;
        }

        private enum TakesArgumentEnum {
                YES,
                NO,
                OPTIONAL
        }

        @Nonnull
        public static Optional<PermissionEnum> find(String thePermission) {
                try {
                        return Optional.of(PermissionEnum.valueOf(thePermission.toUpperCase(Locale.ROOT)));
                } catch (NullPointerException | IllegalArgumentException e) {
                        return Optional.empty();
                }
        }

        @Nonnull
        public static List<PermissionEnum> findAll(List<String> thePermissions) {
                return Optional.ofNullable(thePermissions).stream()
                                .flatMap(Collection::stream)
                                .map(PermissionEnum::find)
                                .filter(Optional::isPresent)
                                .map(Optional::get)
                                .collect(Collectors.toList());
        }

        private static <T extends Enum<T>> Set<T> unmodifiableEnumSet(T[] theValues) {
                if (theValues.length == 0) {
                        return Collections.emptySet();
                }
                Set<T> set = EnumSet.of(theValues[0], theValues);
                return Collections.unmodifiableSet(set);
        }

        @Deprecated(since = "7.2.0")
        public static Set<PermissionEnum> roles() {
                return ROLES;
        }

        public static String extractFirstSpaceSeparatedArgument(String theArgument) {
                if (isNotBlank(theArgument)) {
                        int spaceIdx = theArgument.indexOf(' ');
                        if (spaceIdx != -1) {
                                return trim(theArgument.substring(0, spaceIdx));
                        } else {
                                return theArgument;
                        }
                }
                return null;
        }

        public static Collection<String> extractSpaceSeparatedResourceTypesFromArgument(String theArgument) {
                return extractSpaceSeparatedResourceTypesFromArgument(theArgument, 0);
        }

        public static Collection<String> extractSpaceSeparatedResourceTypesFromArgument(
                        String theArgument, int theFromOffsetIndex) {
                if (isBlank(theArgument)) {
                        return null;
                }
                StringTokenizer tok = new StringTokenizer(theArgument, " ");
                List<String> retVal = new ArrayList<>();
                while (tok.hasNext()) {
                        String next = tok.next();
                        next = trim(next);
                        if (isNotBlank(next)) {
                                if (theFromOffsetIndex > 0) {
                                        theFromOffsetIndex--;
                                        continue;
                                }
                                retVal.add(next);
                        }
                }
                return retVal;
        }

        private static Set<PermissionEnum> getAllPermissions() {
                return Arrays.stream(values())
                                .filter(p -> !p.isRole())
                                .filter(p -> !p.isRequiresArgument())
                                .collect(Collectors.toSet());
        }

        private static Set<PermissionEnum> getAllSuperuserPermissions() {
                return Arrays.stream(values())
                                .filter(p -> !p.isRole())
                                .filter(p -> !p.isExpungePermission())
                                .filter(p -> !p.isRequiresArgument())
                                .collect(Collectors.toSet());
        }

        private static Set<PermissionEnum> getAllFhirSuperuserPermissions() {
                Set<PermissionEnum> permissions = getAllSuperuserPermissions().stream()
                                .filter(PermissionEnum::isFhirPermission)
                                .collect(Collectors.toSet());
                permissions.add(ACCESS_FHIRWEB);
                return permissions;
        }

        private static Set<PermissionEnum> getRoles() {
                Set<PermissionEnum> roles = Arrays.stream(values())
                                .filter(PermissionEnum::isRole)
                                .collect(Collectors.toCollection(() -> EnumSet.noneOf(PermissionEnum.class)));
                return Collections.unmodifiableSet(roles);
        }

        public boolean isRole() {
                // unlike other roles, the terminology role is involved in the logic that checks the access
                return name().startsWith("ROLE_") && this != ROLE_FHIR_TERMINOLOGY_READ_CLIENT;
        }

        public boolean isExpungePermission() {
                return name().toLowerCase().contains("expunge");
        }

        /**
         * Determines if this is a FHIR delete permission.
         *
         * @return true if FHIR delete, false otherwise
         */
        public boolean isSuperuser() {
                return name().toLowerCase().contains("superuser");
        }

        /**
         * Determines if this is a FHIR related permission.
         *
         * @return true if FHIR permission, false otherwise
         */
        public boolean isFhirPermission() {
                return PermissionCategoryEnum.FHIR_CLIENT.equals(myCategory);
        }
}