Examples with Acl org.springframework.security.acls.model.Acl used on opensource projects

Example 1 with Acl

use of org.springframework.security.acls.model.Acl in project spring-security by spring-projects.

the class AdminPermissionController method displayAdminPage.

/**
	 * Displays the permission admin page for a particular contact.
	 */
@RequestMapping(value = "/secure/adminPermission.htm", method = RequestMethod.GET)
public ModelAndView displayAdminPage(@RequestParam("contactId") int contactId) {
    Contact contact = contactManager.getById(Long.valueOf(contactId));
    Acl acl = aclService.readAclById(new ObjectIdentityImpl(contact));
    Map<String, Object> model = new HashMap<String, Object>();
    model.put("contact", contact);
    model.put("acl", acl);
    return new ModelAndView("adminPermission", "model", model);
}

Example 2 with Acl

use of org.springframework.security.acls.model.Acl in project spring-security by spring-projects.

the class BasicLookupStrategyTests method testAclsRetrievalWithDefaultBatchSize.

@Test
public void testAclsRetrievalWithDefaultBatchSize() throws Exception {
    ObjectIdentity topParentOid = new ObjectIdentityImpl(TARGET_CLASS, new Long(100));
    ObjectIdentity middleParentOid = new ObjectIdentityImpl(TARGET_CLASS, new Long(101));
    // Deliberately use an integer for the child, to reproduce bug report in
    // SEC-819
    ObjectIdentity childOid = new ObjectIdentityImpl(TARGET_CLASS, Integer.valueOf(102));
    Map<ObjectIdentity, Acl> map = this.strategy.readAclsById(Arrays.asList(topParentOid, middleParentOid, childOid), null);
    checkEntries(topParentOid, middleParentOid, childOid, map);
}

Example 3 with Acl

use of org.springframework.security.acls.model.Acl in project spring-security by spring-projects.

the class BasicLookupStrategyTests method testAclsRetrievalFromCacheOnly.

@Test
public void testAclsRetrievalFromCacheOnly() throws Exception {
    ObjectIdentity topParentOid = new ObjectIdentityImpl(TARGET_CLASS, Integer.valueOf(100));
    ObjectIdentity middleParentOid = new ObjectIdentityImpl(TARGET_CLASS, new Long(101));
    ObjectIdentity childOid = new ObjectIdentityImpl(TARGET_CLASS, new Long(102));
    // Objects were put in cache
    strategy.readAclsById(Arrays.asList(topParentOid, middleParentOid, childOid), null);
    // Let's empty the database to force acls retrieval from cache
    emptyDatabase();
    Map<ObjectIdentity, Acl> map = this.strategy.readAclsById(Arrays.asList(topParentOid, middleParentOid, childOid), null);
    checkEntries(topParentOid, middleParentOid, childOid, map);
}

Example 4 with Acl

use of org.springframework.security.acls.model.Acl in project spring-security by spring-projects.

the class BasicLookupStrategyTests method testReadAllObjectIdentitiesWhenLastElementIsAlreadyCached.

/**
	 * Test created from SEC-590.
	 */
@Test
public void testReadAllObjectIdentitiesWhenLastElementIsAlreadyCached() throws Exception {
    String query = "INSERT INTO acl_object_identity(ID,OBJECT_ID_CLASS,OBJECT_ID_IDENTITY,PARENT_OBJECT,OWNER_SID,ENTRIES_INHERITING) VALUES (4,2,104,null,1,1);" + "INSERT INTO acl_object_identity(ID,OBJECT_ID_CLASS,OBJECT_ID_IDENTITY,PARENT_OBJECT,OWNER_SID,ENTRIES_INHERITING) VALUES (5,2,105,4,1,1);" + "INSERT INTO acl_object_identity(ID,OBJECT_ID_CLASS,OBJECT_ID_IDENTITY,PARENT_OBJECT,OWNER_SID,ENTRIES_INHERITING) VALUES (6,2,106,4,1,1);" + "INSERT INTO acl_object_identity(ID,OBJECT_ID_CLASS,OBJECT_ID_IDENTITY,PARENT_OBJECT,OWNER_SID,ENTRIES_INHERITING) VALUES (7,2,107,5,1,1);" + "INSERT INTO acl_entry(ID,ACL_OBJECT_IDENTITY,ACE_ORDER,SID,MASK,GRANTING,AUDIT_SUCCESS,AUDIT_FAILURE) VALUES (5,4,0,1,1,1,0,0)";
    jdbcTemplate.execute(query);
    ObjectIdentity grandParentOid = new ObjectIdentityImpl(TARGET_CLASS, new Long(104));
    ObjectIdentity parent1Oid = new ObjectIdentityImpl(TARGET_CLASS, new Long(105));
    ObjectIdentity parent2Oid = new ObjectIdentityImpl(TARGET_CLASS, Integer.valueOf(106));
    ObjectIdentity childOid = new ObjectIdentityImpl(TARGET_CLASS, Integer.valueOf(107));
    // First lookup only child, thus populating the cache with grandParent,
    // parent1
    // and child
    List<Permission> checkPermission = Arrays.asList(BasePermission.READ);
    List<Sid> sids = Arrays.asList(BEN_SID);
    List<ObjectIdentity> childOids = Arrays.asList(childOid);
    strategy.setBatchSize(6);
    Map<ObjectIdentity, Acl> foundAcls = strategy.readAclsById(childOids, sids);
    Acl foundChildAcl = foundAcls.get(childOid);
    assertThat(foundChildAcl).isNotNull();
    assertThat(foundChildAcl.isGranted(checkPermission, sids, false)).isTrue();
    // Search for object identities has to be done in the following order:
    // last
    // element have to be one which
    // is already in cache and the element before it must not be stored in
    // cache
    List<ObjectIdentity> allOids = Arrays.asList(grandParentOid, parent1Oid, parent2Oid, childOid);
    try {
        foundAcls = strategy.readAclsById(allOids, sids);
    } catch (NotFoundException notExpected) {
        fail("It shouldn't have thrown NotFoundException");
    }
    Acl foundParent2Acl = foundAcls.get(parent2Oid);
    assertThat(foundParent2Acl).isNotNull();
    assertThat(foundParent2Acl.isGranted(checkPermission, sids, false)).isTrue();
}

Example 5 with Acl

use of org.springframework.security.acls.model.Acl in project spring-security by spring-projects.

the class BasicLookupStrategyTests method testAllParentsAreRetrievedWhenChildIsLoaded.

@Test
public void testAllParentsAreRetrievedWhenChildIsLoaded() throws Exception {
    String query = "INSERT INTO acl_object_identity(ID,OBJECT_ID_CLASS,OBJECT_ID_IDENTITY,PARENT_OBJECT,OWNER_SID,ENTRIES_INHERITING) VALUES (4,2,103,1,1,1);";
    jdbcTemplate.execute(query);
    ObjectIdentity topParentOid = new ObjectIdentityImpl(TARGET_CLASS, Long.valueOf(100));
    ObjectIdentity middleParentOid = new ObjectIdentityImpl(TARGET_CLASS, Long.valueOf(101));
    ObjectIdentity childOid = new ObjectIdentityImpl(TARGET_CLASS, Long.valueOf(102));
    ObjectIdentity middleParent2Oid = new ObjectIdentityImpl(TARGET_CLASS, Long.valueOf(103));
    // Retrieve the child
    Map<ObjectIdentity, Acl> map = this.strategy.readAclsById(Arrays.asList(childOid), null);
    // Check that the child and all its parents were retrieved
    assertThat(map.get(childOid)).isNotNull();
    assertThat(map.get(childOid).getObjectIdentity()).isEqualTo(childOid);
    assertThat(map.get(middleParentOid)).isNotNull();
    assertThat(map.get(middleParentOid).getObjectIdentity()).isEqualTo(middleParentOid);
    assertThat(map.get(topParentOid)).isNotNull();
    assertThat(map.get(topParentOid).getObjectIdentity()).isEqualTo(topParentOid);
    // The second parent shouldn't have been retrieved
    assertThat(map.get(middleParent2Oid)).isNull();
}