Example 6 with RightModifier
use of com.zimbra.cs.account.accesscontrol.RightModifier in project zm-mailbox by Zimbra.
the class GrantRight method handle.
@Override
public Element handle(Element request, Map<String, Object> context) throws ServiceException {
ZimbraSoapContext zsc = getZimbraSoapContext(context);
GrantRightRequest grReq = JaxbUtil.elementToJaxb(request);
RightModifierInfo modifierInfo = grReq.getRight();
if (modifierInfo == null) {
throw ServiceException.INVALID_REQUEST("No information specified on what right to assign", null);
}
RightModifier rightModifier = getRightModifier(modifierInfo);
// right checking is done in RightCommand
EffectiveRightsTargetSelector erTargSel = grReq.getTarget();
RightCommand.grantRight(Provisioning.getInstance(), getAuthenticatedAccount(zsc), erTargSel, grReq.getGrantee(), modifierInfo.getValue(), rightModifier);
// Bug 100965 Avoid Cross server delegate admin being broken after initial creation due to stale caches
if (com.zimbra.soap.type.TargetType.domain == erTargSel.getType()) {
TargetBy by = erTargSel.getBy();
if ((TargetBy.id == by) || (TargetBy.name == by)) {
CacheSelector cacheSel = new CacheSelector(true, /* allServers */
CacheEntryType.domain.toString());
CacheEntrySelector ceSel = new CacheEntrySelector((TargetBy.id == erTargSel.getBy()) ? CacheEntryBy.id : CacheEntryBy.name, erTargSel.getValue());
cacheSel.addEntry(ceSel);
FlushCacheRequest fcReq = new FlushCacheRequest(cacheSel);
try {
FlushCache.doFlushCache(this, context, fcReq);
} catch (ServiceException se) {
ZimbraLog.acl.info("Problem flushing acl cache for domain %s/%s after granting rights", erTargSel.getBy(), erTargSel.getValue(), se);
}
}
}
Element response = zsc.createElement(AdminConstants.GRANT_RIGHT_RESPONSE);
return response;
}
Also used :
CacheSelector(com.zimbra.soap.admin.type.CacheSelector)
RightModifierInfo(com.zimbra.soap.admin.type.RightModifierInfo)
GrantRightRequest(com.zimbra.soap.admin.message.GrantRightRequest)
CacheEntrySelector(com.zimbra.soap.admin.type.CacheEntrySelector)
ServiceException(com.zimbra.common.service.ServiceException)
ZimbraSoapContext(com.zimbra.soap.ZimbraSoapContext)
Element(com.zimbra.common.soap.Element)
RightModifier(com.zimbra.cs.account.accesscontrol.RightModifier)
FlushCacheRequest(com.zimbra.soap.admin.message.FlushCacheRequest)
TargetBy(com.zimbra.soap.type.TargetBy)
EffectiveRightsTargetSelector(com.zimbra.soap.admin.type.EffectiveRightsTargetSelector)
Aggregations
RightModifier (com.zimbra.cs.account.accesscontrol.RightModifier)6
ServiceException (com.zimbra.common.service.ServiceException)3
Element (com.zimbra.common.soap.Element)2
AccountServiceException (com.zimbra.cs.account.AccountServiceException)2
DistributionList (com.zimbra.cs.account.DistributionList)2
NamedEntry (com.zimbra.cs.account.NamedEntry)2
GranteeType (com.zimbra.cs.account.accesscontrol.GranteeType)2
Right (com.zimbra.cs.account.accesscontrol.Right)2
ZimbraACE (com.zimbra.cs.account.accesscontrol.ZimbraACE)2
ZimbraSoapContext (com.zimbra.soap.ZimbraSoapContext)2
TargetBy (com.zimbra.soap.type.TargetBy)2
Group (com.zimbra.cs.account.Group)1
RightCommand (com.zimbra.cs.account.accesscontrol.RightCommand)1
FlushCacheRequest (com.zimbra.soap.admin.message.FlushCacheRequest)1
GrantRightRequest (com.zimbra.soap.admin.message.GrantRightRequest)1
RevokeRightRequest (com.zimbra.soap.admin.message.RevokeRightRequest)1
CacheEntrySelector (com.zimbra.soap.admin.type.CacheEntrySelector)1
CacheSelector (com.zimbra.soap.admin.type.CacheSelector)1
EffectiveRightsTargetSelector (com.zimbra.soap.admin.type.EffectiveRightsTargetSelector)1
GranteeBy (com.zimbra.soap.admin.type.GranteeSelector.GranteeBy)1
