public boolean canCreatePipelines(Username username) { return isUserAdmin(username) || isUserGroupAdmin(username); }
private void checkAndAddGroupAdmin(String username, Set<GrantedAuthority> authorities) { if (securityService.isUserGroupAdmin(new Username(new CaseInsensitiveString(username)))) { authorities.add(GoAuthority.ROLE_GROUP_SUPERVISOR.asAuthority()); } }
public boolean canViewAdminPage(Username username) { return isUserAdmin(username) || isUserGroupAdmin(username) || isAuthorizedToViewAndEditTemplates(username) || isAuthorizedToViewTemplates(username); }
@Override public boolean canContinue(CruiseConfig cruiseConfig) { if (!(securityService.isUserAdmin(currentUser) || securityService.isUserGroupAdmin(currentUser))) { result.forbidden(forbiddenToEdit(), forbidden()); return false; } return true; } }
public List<PipelineConfig> allPipelinesNotUsingTemplates(Username username, LocalizedOperationResult result) { if (!(securityService.isUserAdmin(username) || securityService.isUserGroupAdmin(username))) { result.forbidden(LocalizedMessage.forbiddenToEdit(), HealthStateType.forbidden()); return null; } List<PipelineConfig> allPipelineConfigs = goConfigService.getAllPipelineConfigsForEditForUser(username); List<PipelineConfig> allPipelinesNotUsingTemplates = new ArrayList<>(); for (PipelineConfig pipeline : allPipelineConfigs) { if (!pipeline.hasTemplate()) { allPipelinesNotUsingTemplates.add(pipeline); } } return allPipelinesNotUsingTemplates; }
public void checkAdminUserOrGroupAdminUserAnd403(Request request, Response response) { if (!securityService.isSecurityEnabled()) { return; } if (!(securityService.isUserAdmin(currentUsername()) || securityService.isUserGroupAdmin(currentUsername()))) { throw renderForbiddenResponse(); } }
public void checkAnyAdminUserAnd403(Request request, Response response) { if (!securityService.isSecurityEnabled()) { return; } if (!(securityService.isUserAdmin(currentUsername()) || securityService.isUserGroupAdmin(currentUsername()) || securityService.isAuthorizedToViewAndEditTemplates(currentUsername()))) { throw renderForbiddenResponse(); } }
@Override public void update(CruiseConfig modifiedConfig) { if (securityService.isUserGroupAdmin(currentUser)) { templateConfig.setAuthorization(new Authorization(new AdminsConfig(new AdminUser(currentUser.getUsername())))); } modifiedConfig.addTemplate(templateConfig); }
velocityContext.put(GROUP_ADMINISTRATOR, securityService.isUserGroupAdmin(username)); velocityContext.put(TEMPLATE_ADMINISTRATOR, securityService.isAuthorizedToViewAndEditTemplates(username)); velocityContext.put(VIEW_ADMINISTRATOR_RIGHTS, securityService.canViewAdminPage(username));