*/
package org.codelibs.fess.app.web.api.admin.role;

import org.codelibs.fess.app.web.api.admin.BaseSearchBody;

/**
 * Search request body for role administration API.
 */
public class SearchBody extends BaseSearchBody {

    /**
     * Default constructor.
     */
    public SearchBody() {
        super();
    }

    /** Role ID */
    public String id;

    }

    @Override
    protected String getActionRole() {
        return ROLE;
    }

    /**
     * Displays the search request management index page.
     *
     * @return HTML response for the search request page
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        return asListHtml(this::saveToken);
    }

    /**

          "mapping": {
            "type": "keyword"
          }
        }
      }
    ],
    "properties": {
      "user": {
        "type": "keyword"
      },
      "roles": {
        "type": "keyword"
      },
      "queryId": {
        "type": "keyword"
      },
      "searchWord": {
        "type": "keyword"
      },
      "requestedAt": {
        "type": "date",

				Columns: []clause.Column{{Name: "role"}},
				Having:  []clause.Expression{clause.Eq{"role", "admin"}},
			}},
			"SELECT * FROM `users` GROUP BY `role` HAVING `role` = ?",
			[]interface{}{"admin"},
		},
		{
			[]clause.Interface{clause.Select{}, clause.From{}, clause.GroupBy{
				Columns: []clause.Column{{Name: "role"}},
				Having:  []clause.Expression{clause.Eq{"role", "admin"}},
			}, clause.GroupBy{

public class AdminDictProtwordsAction extends FessAdminAction {

    /**
     * Default constructor.
     */
    public AdminDictProtwordsAction() {
        super();
    }

    /** The role for this action. */
    public static final String ROLE = "admin-dict";

    private static final Logger logger = LogManager.getLogger(AdminDictProtwordsAction.class);

     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        return asListHtml();
    }

    /**
     * Displays the group list with pagination.
     *
     * @param pageNumber the page number
     * @param form the search form
     * @return HTML response for the list page
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })

import jakarta.annotation.Resource;

/**
 * Admin action for Path Map management.
 *
 */
public class AdminPathmapAction extends FessAdminAction {

    /**
     * Role identifier for admin path mapping operations.
     */
    public static final String ROLE = "admin-pathmap";

    private static final Logger logger = LogManager.getLogger(AdminPathmapAction.class);

    /**
     * Default constructor for AdminPathmapAction.

import java.util.regex.Pattern;
import java.util.stream.Collectors;

import org.codelibs.core.misc.Pair;
import org.codelibs.fess.opensearch.user.bsbhv.BsRoleBhv;
import org.codelibs.fess.opensearch.user.exentity.Role;
import org.codelibs.fess.util.ComponentUtil;
import org.dbflute.exception.IllegalBehaviorStateException;
import org.dbflute.util.DfTypeUtil;

/**
 * @author FreeGen
 */
public class RoleBhv extends BsRoleBhv {

    /**
     * Default constructor.
     */
    public AdminRelatedqueryAction() {
        super();
    }

    /** Role name for admin related query operations */
    public static final String ROLE = "admin-relatedquery";

    private static final Logger logger = LogManager.getLogger(AdminRelatedqueryAction.class);

Si quieres asegurar tu API, hay varias cosas mejores que puedes hacer, por ejemplo:

* Asegúrate de tener modelos Pydantic bien definidos para tus request bodies y responses.
* Configura los permisos y roles necesarios usando dependencias.
* Nunca guardes contraseñas en texto plano, solo hashes de contraseñas.
* Implementa y utiliza herramientas criptográficas bien conocidas, como Passlib y JWT tokens, etc.