Examples with NotAuthorisedException cern.modesti.workflow.task.NotAuthorisedException used on opensource projects

Example 1 with NotAuthorisedException

use of cern.modesti.workflow.task.NotAuthorisedException in project modesti by jlsalmon.

the class RequestServiceImpl method assignCreator.

private Request assignCreator(String requestId, String newCreator, String originalCreator) {
    Request request = findOneByRequestId(requestId);
    if (request == null) {
        throw new IllegalArgumentException("No request with id " + requestId + " was found");
    }
    User newCreatorUser = userService.findOneByUsername(newCreator);
    if (newCreatorUser == null) {
        throw new IllegalArgumentException("No user with username " + newCreator + " was found");
    }
    if (!request.getCreator().equals(originalCreator)) {
        throw new NotAuthorisedException(format("User %s is not authorized to change the request creator", originalCreator));
    }
    request.setCreator(newCreator);
    save(request);
    return request;
}

Example 2 with NotAuthorisedException

use of cern.modesti.workflow.task.NotAuthorisedException in project modesti by jlsalmon.

the class RequestServiceImpl method insert.

/**
 * Insert (create) a new request.
 * <p>
 * Creating a new request performs the following actions:
 * <ul>
 * <li>
 * Asserts that the currently logged-in user is authorised to create a
 * request for the domain of the request
 * </li>
 * <li>
 * Sets the currently logged-in user as the creator of the request
 * </li>
 * <li>Generates a request id</li>
 * <li>Adds some empty points to the request if none were specified</li>
 * <li>Starts a new workflow process instance using the workflow key of the
 * plugin associated with the request domain</li>
 * </ul>
 *
 * @param request the request to create
 * @return the newly created request with all properties set
 */
@Override
public Request insert(Request request) {
    // Do not create a request if there is no appropriate domain
    RequestProvider plugin = requestProviderRegistry.getPluginFor(request, new UnsupportedRequestException(request));
    User user = userService.getCurrentUser();
    // Assert that the current user is allowed to create a request for this domain
    if (!authService.canCreate(plugin, request, user)) {
        throw new NotAuthorisedException(format("User \"%s\" is not authorised to create requests for domain \"%s\". " + "Authorisation group is \"%s\".", user.getUsername(), request.getDomain(), plugin.getMetadata().getAuthorisationGroup(request)));
    }
    // Set the creator as the current logged in user
    request.setCreator(user.getUsername());
    ((RequestImpl) request).setRequestId(counterService.getNextSequence(CounterService.REQUEST_ID_SEQUENCE).toString());
    log.trace(format("generated request id: %s", request.getRequestId()));
    ((RequestImpl) request).setCreatedAt(new DateTime());
    if (request.getPoints() == null) {
        request.setPoints(new ArrayList<>());
    }
    // Apply formatting to the request points
    requestFormatter.format(request);
    // Add some empty points if there aren't any yet
    if (request.getPoints().isEmpty()) {
        for (int i = 0; i < 50; i++) {
            Point point = new PointImpl((long) (i + 1));
            request.addPoint(point);
        }
    }
    for (Point point : request.getPoints()) {
        if (point.getLineNo() == null) {
            point.setLineNo((long) (request.getPoints().indexOf(point) + 1));
        }
    }
    request = repository.save((RequestImpl) request);
    if (request.getType().equals(RequestType.UPDATE)) {
        // Store an initial, empty change history
        ((RequestHistoryServiceImpl) historyService).initialiseChangeHistory(request);
    }
    // Kick off the workflow process
    workflowService.startProcessInstance(request);
    return request;
}