Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

nl.gx.webmanager.authorization.impl
Class AuthorizationServiceImpl

java.lang.Object
  extended by nl.gx.webmanager.wcb.foundation.ComponentBase
      extended by nl.gx.webmanager.wcb.servicetype.impl.SimpleServiceComponent
          extended by nl.gx.webmanager.authorization.impl.AuthorizationServiceImpl
All Implemented Interfaces:
AuthorizationService, ExtensionConsumer, DelegatedControllerAware, Component, ServiceComponent
public class AuthorizationServiceImpl
extends SimpleServiceComponent
implements AuthorizationService

Implementation of AuthorizationService interface.

Author:
arjans

Field Summary
 
Fields inherited from class nl.gx.webmanager.wcb.foundation.ComponentBase
myBundleContext, myComponentBundle, myComponentDefinition
 
Constructor Summary
AuthorizationServiceImpl()
           
 
Method Summary
 boolean checkAccess(java.lang.String permissionValue)
          Returns true if the owner of the current session has access for the given permission.
 boolean checkAccess(java.lang.String permissionValue, WorkflowEnabled workflowEnabledObject)
          Returns true if the owner of the current session has both the requested static RBAC authorization as well as the dynamic Workflow authorization according to the Workflow of the given Workflow enabled object.
 boolean checkAccess(java.lang.String permissionValue, WorkflowModel workflowModel)
          Returns true if the owner of the current session has both the requested static RBAC authorization as well as the auhorization to initiate the given Workflow model (in other words; to create a Workflow model instance from it) Returns false otherwise
 boolean checkComponent(java.lang.String permissionValue, int webid)
          This method checks if the component that corresponds to the given permission is enabled or not.
 User getCurrentUser()
          Returns the currently logged in user.
 java.lang.String[] getElementCreatePermission(java.lang.Class<? extends Element> elementClass)
          Returns the create RBAC permissions associated with this element.
 java.lang.String[] getElementDeletePermission(java.lang.Class<? extends Element> elementClass)
          Returns the Delete RBAC permission associated with this element.
 User getUserById(int id)
          Returns the user specified by the SiteWorks id.
 User getUserByUsername(java.lang.String username)
          Returns the user specified by a username.
 boolean login(java.lang.String username, java.lang.String password, javax.servlet.http.HttpServletRequest request)
          Logs in the given user with the given password for the given http servlet request
 void registerCreatePermissions(java.lang.Class<? extends Element> elementClass, Permission[] createPermissions)
          Called by element component type to register the create permissions registered by the element component definition
 void registerDeletePermissions(java.lang.Class<? extends Element> elementClass, Permission[] deletePermissions)
          Called by element component type to register the delete permissions registered by the element component definition
 void unregisterCreatePermissions(java.lang.Class<? extends Element> elementClass)
          Called by element component type to unregister the create permissions registered by the element component definition
 void unregisterDeletePermissions(java.lang.Class<? extends Element> elementClass)
          Called by element component type to unregister the delete permissions registered by the element component definition
 
Methods inherited from class nl.gx.webmanager.wcb.servicetype.impl.SimpleServiceComponent
getInstance
 
Methods inherited from class nl.gx.webmanager.wcb.foundation.ComponentBase
dependencyAdded, dependencyRemoved, exportContent, extensionAdded, extensionRemoved, getBundleContext, getClassesFromBundle, getClassForName, getComponentBundle, getComponentDefinition, getComponentManager, getDelegatedController, getExtensions, getId, getInstanceForName, getPrivateNode, getPrivateNode, getTypeId, getWrapperDefinitions, importContent, internalDoStart, internalDoStop, onDestroy, onInit, onInstall, onPurge, onStart, onStop, onUninstall, onUpdate, purgeContent, setBundleContext, setComponentBundle, setComponentBundle, setComponentDefinition, setComponentManager, setDelegatedController
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 
Methods inherited from interface nl.gx.webmanager.wcb.Component
exportContent, getClassesFromBundle, getClassForName, getComponentBundle, getComponentDefinition, getExtensions, getId, getInstanceForName, getPrivateNode, getTypeId, getWrapperDefinitions, importContent, onDestroy, onInit, onInstall, onPurge, onStart, onStop, onUninstall, onUpdate, purgeContent, setBundleContext, setComponentBundle, setComponentDefinition, setComponentManager
 

Constructor Detail

AuthorizationServiceImpl

public AuthorizationServiceImpl()
Method Detail

checkAccess

public boolean checkAccess(java.lang.String permissionValue)
Returns true if the owner of the current session has access for the given permission.

Specified by:
checkAccess in interface AuthorizationService
Parameters:
permissionValue - Value that uniquely identifies the permission to check.
Returns:
true If the owner of the current session is has access to given permission.

checkAccess

public boolean checkAccess(java.lang.String permissionValue,
                           WorkflowEnabled workflowEnabledObject)
Returns true if the owner of the current session has both the requested static RBAC authorization as well as the dynamic Workflow authorization according to the Workflow of the given Workflow enabled object. Returns false otherwise.

Specified by:
checkAccess in interface AuthorizationService
Parameters:
permissionValue - RBAC authorization key to check authorization for.
workflowEnabledObject - Workflow enabled object to check Workflow authorization against.
Returns:
true if the owner of the current session has both static RBAC and dynamic Workflow authorization for the requested RBAC permission and Workflow context.

checkAccess

public boolean checkAccess(java.lang.String permissionValue,
                           WorkflowModel workflowModel)
Returns true if the owner of the current session has both the requested static RBAC authorization as well as the auhorization to initiate the given Workflow model (in other words; to create a Workflow model instance from it) Returns false otherwise

Specified by:
checkAccess in interface AuthorizationService
Parameters:
permissionValue - RBAC authorization key to check authorization for
Returns:
true if the owner of the current session has both static RBAC and dynamic Workflow authorization to initiate the given Workflow model

checkComponent

public boolean checkComponent(java.lang.String permissionValue,
                              int webid)
This method checks if the component that corresponds to the given permission is enabled or not. Note that if 'show_as_component' of the component category is false then this method will always return true; the component in that case cannot be disabled using the GUI.

Specified by:
checkComponent in interface AuthorizationService
Parameters:
permissionValue - Label of the permission to check component access for
Returns:
true if the component that belongs to the permission is either enabled in the GUI or has the 'show_as_component' option set to false.

registerCreatePermissions

public void registerCreatePermissions(java.lang.Class<? extends Element> elementClass,
                                      Permission[] createPermissions)
Called by element component type to register the create permissions registered by the element component definition

Specified by:
registerCreatePermissions in interface AuthorizationService
Parameters:
elementClass - Element class to register the create permissions for
createPermissions - Create permissions to register

unregisterCreatePermissions

public void unregisterCreatePermissions(java.lang.Class<? extends Element> elementClass)
Called by element component type to unregister the create permissions registered by the element component definition

Specified by:
unregisterCreatePermissions in interface AuthorizationService
Parameters:
elementClass - Element class to unregister the create permissions for

registerDeletePermissions

public void registerDeletePermissions(java.lang.Class<? extends Element> elementClass,
                                      Permission[] deletePermissions)
Called by element component type to register the delete permissions registered by the element component definition

Specified by:
registerDeletePermissions in interface AuthorizationService
Parameters:
elementClass - Element class to register the delete permissions for
deletePermissions - Delete permissions to register

unregisterDeletePermissions

public void unregisterDeletePermissions(java.lang.Class<? extends Element> elementClass)
Called by element component type to unregister the delete permissions registered by the element component definition

Specified by:
unregisterDeletePermissions in interface AuthorizationService
Parameters:
elementClass - Element class to unregister the delete permissions for

getElementCreatePermission

public java.lang.String[] getElementCreatePermission(java.lang.Class<? extends Element> elementClass)
Returns the create RBAC permissions associated with this element. This is the permission that allows the user to create the element

Specified by:
getElementCreatePermission in interface AuthorizationService
Returns:
RBAC permission that grants create permission on this element

getElementDeletePermission

public java.lang.String[] getElementDeletePermission(java.lang.Class<? extends Element> elementClass)
Returns the Delete RBAC permission associated with this element. This is the permission that allows the user to delete the element

Specified by:
getElementDeletePermission in interface AuthorizationService
Returns:
RBAC permission that grants delete permission on this element

login

public boolean login(java.lang.String username,
                     java.lang.String password,
                     javax.servlet.http.HttpServletRequest request)
Logs in the given user with the given password for the given http servlet request

Specified by:
login in interface AuthorizationService
Parameters:
username - Username of the user
password - Password of the user
request - Current http servlet request
Returns:
true if login was successful, false otherwise

getCurrentUser

public User getCurrentUser()
Returns the currently logged in user.

Specified by:
getCurrentUser in interface AuthorizationService
Returns:
the currently logged in user.

getUserById

public User getUserById(int id)
Returns the user specified by the SiteWorks id.

Specified by:
getUserById in interface AuthorizationService
Returns:
the user specified by the SiteWorks id.

getUserByUsername

public User getUserByUsername(java.lang.String username)
Returns the user specified by a username.

Specified by:
getUserByUsername in interface AuthorizationService
Parameters:
username - Username to search for (case sensitive).
Returns:
User found or null if the user can not be found.
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2007-2011 GX Software BV. All Rights Reserved.