protected IAuthorizationPrincipal getUserPrincipal(final String userName) { final IEntity user = GroupService.getEntity(userName, IPerson.class); if (user == null) { return null; } final AuthorizationServiceFacade authService = AuthorizationServiceFacade.instance(); return authService.newPrincipal(user); } }
@Override protected AuthorizationServiceFacade createSingleton(Object... args) { return new AuthorizationServiceFacade(); } };
/** * Determines if the passed-in authorization principal represents a user that is a member of the * administrator group or any of its sub groups. */ public static boolean isAdmin(IAuthorizationPrincipal ap) { IGroupMember member = AuthorizationServiceFacade.instance().getGroupMember(ap); return isAdmin(member); }
final AuthorizationServiceFacade authService = AuthorizationServiceFacade.instance(); final String target = PermissionHelper.permissionTargetIdForPortletDefinition(definition); authService.newUpdatingPermissionManager(system); final List<IPermission> permissions = new ArrayList<>(); authService.newPrincipal(member); final IPermission permEntity = upm.newPermission(authPrincipal); permEntity.setType(IPermission.PERMISSION_TYPE_GRANT);
Object permission) { if (authorizationServiceFacade == null) { authorizationServiceFacade = AuthorizationServiceFacade.instance();
List<String> groupList, List<String> userList) { final AuthorizationServiceFacade authService = AuthorizationServiceFacade.instance(); final IPermissionManager pm = authService.newPermissionManager(permDef.getSystem()); final String portletTargetId = PermissionHelper.permissionTargetIdForPortletDefinition(def); final IAuthorizationPrincipal[] principals = IGroupMember member = authService.getGroupMember(principal); if (member.isGroup()) { final EntityNameFinderService entityNameFinderService =
/** Prepare a uPortal IAuthorizationPrincipal based in the Spring principal */ private IAuthorizationPrincipal getAuthorizationPrincipal(Authentication authentication) { final Object authPrincipal = authentication.getPrincipal(); logger.trace("getAuthorizationPrincipal -- authPrincipal=[{}]", authPrincipal); String username; if (authPrincipal instanceof UserDetails) { // User is authenticated UserDetails userDetails = (UserDetails) authPrincipal; logger.trace( "getAuthorizationPrincipal -- AUTHENTICATED, userDetails=[{}]", userDetails); username = userDetails.getUsername(); } else { // Which guest user are we? final HttpServletRequest req = portalRequestUtils.getCurrentPortalRequest(); final IPerson person = personManager.getPerson(req); logger.trace("getAuthorizationPrincipal -- UNAUTHENTICATED, person=[{}]", person); username = person.getUserName(); } return authorizationServiceFacade.newPrincipal(username, IPerson.class); }
@Transactional @Override public void removePortletDefinition(IPortletDefinition portletDefinition, IPerson person) { IPortletDefinition portletDef = portletDefinitionDao.getPortletDefinition( portletDefinition.getPortletDefinitionId()); // Delete existing category memberships for this portlet String portletDefinitionId = portletDefinition.getPortletDefinitionId().getStringId(); IEntity channelDefEntity = GroupService.getEntity(portletDefinitionId, IPortletDefinition.class); for (IEntityGroup group : channelDefEntity.getAncestorGroups()) { group.removeChild(channelDefEntity); group.update(); } // Delete permissions records that refer to this portlet AuthorizationServiceFacade authService = AuthorizationServiceFacade.instance(); String target = PermissionHelper.permissionTargetIdForPortletDefinition(portletDefinition); IUpdatingPermissionManager upm = authService.newUpdatingPermissionManager(IPermission.PORTAL_SUBSCRIBE); IPermission[] oldPermissions = upm.getPermissionsForTarget(target); upm.removePermissions(oldPermissions); // Delete any ratings (incl. reviews) associated with the portlet marketplaceRatingDao.clearRatingsForPortlet(portletDef); // Delete the portlet itself. portletDefinitionDao.deletePortletDefinition(portletDef); }
Authentication authentication, Object targetDomainObject, Object permission) { if (authorizationServiceFacade == null) { authorizationServiceFacade = AuthorizationServiceFacade.instance();
private IAuthorizationPrincipal getUserPrincipal(final String userName) { final IEntity user = GroupService.getEntity(userName, IPerson.class); if (user == null) { return null; } final AuthorizationServiceFacade authService = AuthorizationServiceFacade.instance(); return authService.newPrincipal(user); }
@Override protected AuthorizationServiceFacade createSingleton(Object... args) { return new AuthorizationServiceFacade(); } };
protected IAuthorizationPrincipal getUserPrincipal(final String userName) { final IEntity user = GroupService.getEntity(userName, IPerson.class); if (user == null) { return null; } final AuthorizationServiceFacade authService = AuthorizationServiceFacade.instance(); return authService.newPrincipal(user); } }
/** * Get the authorization principal matching the supplied IPerson. * * @param person * @return */ protected IAuthorizationPrincipal getPrincipalForUser(final IPerson person) { final EntityIdentifier ei = person.getEntityIdentifier(); return AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); } }
/** * Get the authoriztaion principal matching the supplied IPerson. * * @param person * @return */ protected IAuthorizationPrincipal getPrincipalForUser(final IPerson person) { final EntityIdentifier ei = person.getEntityIdentifier(); return AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); }
private boolean hasPermission(IPerson person, String permission, String target) { EntityIdentifier ei = person.getEntityIdentifier(); IAuthorizationPrincipal ap = AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); return ap.hasPermission(IPermission.PORTAL_GROUPS, permission, target); }
public boolean canDeleteGroup(IPerson currentUser, String target) { EntityIdentifier ei = currentUser.getEntityIdentifier(); IAuthorizationPrincipal ap = AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); return (ap.hasPermission( IPermission.PORTAL_GROUPS, IPermission.DELETE_GROUP_ACTIVITY, target)); }
public boolean canCreateMemberGroup(IPerson currentUser, String target) { EntityIdentifier ei = currentUser.getEntityIdentifier(); IAuthorizationPrincipal ap = AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); return (ap.hasPermission( IPermission.PORTAL_GROUPS, IPermission.CREATE_GROUP_ACTIVITY, target)); }
@Override public boolean canEditOwner(IPerson currentUser, String owner) { EntityIdentifier ei = currentUser.getEntityIdentifier(); IAuthorizationPrincipal ap = AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); return (ap.hasPermission( IPermission.PORTAL_PERMISSIONS, IPermission.EDIT_PERMISSIONS_ACTIVITY, IPermission.ALL_TARGET)); }
@Override public boolean canEditActivity(IPerson currentUser, String activity) { EntityIdentifier ei = currentUser.getEntityIdentifier(); IAuthorizationPrincipal ap = AuthorizationServiceFacade.instance().newPrincipal(ei.getKey(), ei.getType()); return (ap.hasPermission( IPermission.PORTAL_PERMISSIONS, IPermission.EDIT_PERMISSIONS_ACTIVITY, IPermission.ALL_TARGET)); }
/** * Convenience method for converting an IPerson to an IAuthorizationPrincipal. * * @param user a non-null valid IPerson * @return an IAuthorizationPrincipal representing that user * @throws IllegalArgumentException if the user object is null or defective. * @since 4.1 */ public static IAuthorizationPrincipal principalFromUser(final IPerson user) { Validate.notNull(user, "Cannot determine an authorization principal for null user."); final EntityIdentifier userEntityIdentifier = user.getEntityIdentifier(); Validate.notNull(user, "The user object is defective: lacks entity identifier."); final String userEntityKey = userEntityIdentifier.getKey(); Validate.notNull(userEntityKey, "The user object is defective: lacks entity key."); final Class userEntityType = userEntityIdentifier.getType(); Validate.notNull(userEntityType, "The user object is defective: lacks entity type."); final IAuthorizationPrincipal principal = AuthorizationServiceFacade.instance().newPrincipal(userEntityKey, userEntityType); return principal; } }