Example 11 with RoleEntity
use of fi.otavanopisto.muikku.model.users.RoleEntity in project muikku by otavanopisto.
the class PermissionsPluginController method processPermissions.
public void processPermissions() {
logger.log(Level.INFO, "Starting permission gathering");
for (SystemRoleType systemRoleType : SystemRoleType.values()) {
if (systemRoleEntityDAO.findByRoleType(systemRoleType) == null)
systemRoleEntityDAO.create(systemRoleType.name(), systemRoleType);
}
for (MuikkuPermissionCollection collection : permissionCollections) {
logger.log(Level.INFO, "Processing permission collection " + collection.getClass().getSimpleName());
List<String> permissions = collection.listPermissions();
for (String permissionName : permissions) {
Permission permission = permissionDAO.findByName(permissionName);
if (permission == null) {
logger.log(Level.INFO, "Recording new permission " + permissionName);
try {
final String permissionScope = collection.getPermissionScope(permissionName);
if (permissionScope != null) {
permission = permissionDAO.create(permissionName, permissionScope);
if (!PermissionScope.PERSONAL.equals(permissionScope)) {
String[] pseudoRoles = collection.getDefaultPseudoRoles(permissionName);
EnvironmentRoleArchetype[] environmentRoles = collection.getDefaultEnvironmentRoles(permissionName);
WorkspaceRoleArchetype[] workspaceRoles = collection.getDefaultWorkspaceRoles(permissionName);
List<RoleEntity> roles = new ArrayList<RoleEntity>();
if (pseudoRoles != null) {
for (String pseudoRole : pseudoRoles) {
RoleEntity roleEntity = roleEntityDAO.findByName(pseudoRole);
if (roleEntity != null)
roles.add(roleEntity);
}
}
if (environmentRoles != null) {
for (EnvironmentRoleArchetype envRole : environmentRoles) {
List<EnvironmentRoleEntity> envRoles = environmentRoleEntityDAO.listByArchetype(envRole);
roles.addAll(envRoles);
}
}
if (workspaceRoles != null) {
for (WorkspaceRoleArchetype arc : workspaceRoles) {
List<WorkspaceRoleEntity> wsRoles = workspaceRoleEntityDAO.listByArchetype(arc);
roles.addAll(wsRoles);
}
}
switch(permissionScope) {
case PermissionScope.ENVIRONMENT:
case PermissionScope.WORKSPACE:
for (RoleEntity role : roles) {
rolePermissionDAO.create(role, permission);
}
break;
case PermissionScope.USERGROUP:
List<UserGroupEntity> userGroups = userGroupDAO.listAll();
for (RoleEntity role : roles) {
// TODO Workspace creation & templates - is this necessary and bulletproof?
for (UserGroupEntity userGroup : userGroups) {
userGroupRolePermissionDAO.create(userGroup, role, permission);
}
}
break;
default:
permissionDiscoveredEvent.select(new PermissionScopeBinding() {
private static final long serialVersionUID = 9009824962970938515L;
@Override
public String value() {
return permissionScope;
}
}).fire(new PermissionDiscoveredEvent(permission));
break;
}
}
} else
logger.log(Level.WARNING, "PermissionScope null for " + permissionName);
} catch (Exception e) {
logger.log(Level.SEVERE, "Permission handling failed for " + permissionName);
}
}
}
}
logger.log(Level.INFO, "Finished permission gathering");
}
Also used :
EnvironmentRoleEntity(fi.otavanopisto.muikku.model.users.EnvironmentRoleEntity)
EnvironmentRoleArchetype(fi.otavanopisto.muikku.model.users.EnvironmentRoleArchetype)
SystemRoleType(fi.otavanopisto.muikku.model.users.SystemRoleType)
MuikkuPermissionCollection(fi.otavanopisto.muikku.security.MuikkuPermissionCollection)
ArrayList(java.util.ArrayList)
UserGroupEntity(fi.otavanopisto.muikku.model.users.UserGroupEntity)
WorkspaceRoleEntity(fi.otavanopisto.muikku.model.workspace.WorkspaceRoleEntity)
RoleEntity(fi.otavanopisto.muikku.model.users.RoleEntity)
EnvironmentRoleEntity(fi.otavanopisto.muikku.model.users.EnvironmentRoleEntity)
WorkspaceRoleEntity(fi.otavanopisto.muikku.model.workspace.WorkspaceRoleEntity)
RolePermission(fi.otavanopisto.muikku.model.security.RolePermission)
Permission(fi.otavanopisto.muikku.model.security.Permission)
WorkspaceRoleArchetype(fi.otavanopisto.muikku.model.workspace.WorkspaceRoleArchetype)
Example 12 with RoleEntity
use of fi.otavanopisto.muikku.model.users.RoleEntity in project muikku by otavanopisto.
the class ForumPermissionResolver method hasEveryonePermission.
@Override
public boolean hasEveryonePermission(String permission, ContextReference contextReference) {
ForumArea forumArea = getForumArea(contextReference);
RoleEntity userRole = getEveryoneRole();
Permission perm = permissionDAO.findByName(permission);
if (forumArea == null)
return false;
return resourceUserRolePermissionDAO.hasResourcePermissionAccess(resourceRightsController.findResourceRightsById(forumArea.getRights()), userRole, perm);
}
Also used :
RoleEntity(fi.otavanopisto.muikku.model.users.RoleEntity)
Permission(fi.otavanopisto.muikku.model.security.Permission)
WorkspaceForumArea(fi.otavanopisto.muikku.plugins.forum.model.WorkspaceForumArea)
ForumArea(fi.otavanopisto.muikku.plugins.forum.model.ForumArea)
Example 13 with RoleEntity
use of fi.otavanopisto.muikku.model.users.RoleEntity in project muikku by otavanopisto.
the class WorkspaceController method findWorkspaceRoleEntityByDataSourceAndIdentifier.
/* WorkspaceRoleEntity */
public WorkspaceRoleEntity findWorkspaceRoleEntityByDataSourceAndIdentifier(String schoolDataSource, String roleIdentifier) {
SchoolDataSource dataSource = schoolDataSourceDAO.findByIdentifier(schoolDataSource);
if (dataSource == null) {
logger.log(Level.SEVERE, "Could not find school data source '" + schoolDataSource + "'");
return null;
}
RoleSchoolDataIdentifier roleSchoolDataIdentifier = roleSchoolDataIdentifierDAO.findByDataSourceAndIdentifier(dataSource, roleIdentifier);
if (roleSchoolDataIdentifier != null) {
RoleEntity roleEntity = roleSchoolDataIdentifier.getRoleEntity();
if (roleEntity.getType() == UserRoleType.WORKSPACE) {
return (WorkspaceRoleEntity) roleEntity;
}
}
return null;
}
Also used :
WorkspaceRoleEntity(fi.otavanopisto.muikku.model.workspace.WorkspaceRoleEntity)
RoleEntity(fi.otavanopisto.muikku.model.users.RoleEntity)
RoleSchoolDataIdentifier(fi.otavanopisto.muikku.model.users.RoleSchoolDataIdentifier)
SchoolDataSource(fi.otavanopisto.muikku.model.base.SchoolDataSource)
WorkspaceRoleEntity(fi.otavanopisto.muikku.model.workspace.WorkspaceRoleEntity)
Example 14 with RoleEntity
use of fi.otavanopisto.muikku.model.users.RoleEntity in project muikku by otavanopisto.
the class RoleEntityDAO method findByName.
public RoleEntity findByName(String roleName) {
EntityManager entityManager = getEntityManager();
CriteriaBuilder criteriaBuilder = entityManager.getCriteriaBuilder();
CriteriaQuery<RoleEntity> criteria = criteriaBuilder.createQuery(RoleEntity.class);
Root<RoleEntity> root = criteria.from(RoleEntity.class);
criteria.select(root);
criteria.where(criteriaBuilder.equal(root.get(RoleEntity_.name), roleName));
return getSingleResult(entityManager.createQuery(criteria));
}
Also used :
CriteriaBuilder(javax.persistence.criteria.CriteriaBuilder)
RoleEntity(fi.otavanopisto.muikku.model.users.RoleEntity)
EntityManager(javax.persistence.EntityManager)
Example 15 with RoleEntity
use of fi.otavanopisto.muikku.model.users.RoleEntity in project muikku by otavanopisto.
the class LocalUserSchoolDataBridge method listRoles.
/**
* {@inheritDoc}
*/
@Override
public List<Role> listRoles() throws SchoolDataBridgeInternalException {
List<Role> result = new ArrayList<>();
List<RoleEntity> roleEntities = localUserSchoolDataController.listCoreRoleEntities();
for (RoleEntity roleEntity : roleEntities) {
result.add(toLocalRoleEntity(roleEntity));
}
return result;
}
Also used :
EnvironmentRole(fi.otavanopisto.muikku.schooldata.entity.EnvironmentRole)
WorkspaceRole(fi.otavanopisto.muikku.schooldata.entity.WorkspaceRole)
Role(fi.otavanopisto.muikku.schooldata.entity.Role)
WorkspaceRoleEntity(fi.otavanopisto.muikku.model.workspace.WorkspaceRoleEntity)
RoleEntity(fi.otavanopisto.muikku.model.users.RoleEntity)
EnvironmentRoleEntity(fi.otavanopisto.muikku.model.users.EnvironmentRoleEntity)
ArrayList(java.util.ArrayList)
Aggregations
RoleEntity (fi.otavanopisto.muikku.model.users.RoleEntity)16
Permission (fi.otavanopisto.muikku.model.security.Permission)9
EnvironmentRoleEntity (fi.otavanopisto.muikku.model.users.EnvironmentRoleEntity)8
WorkspaceRoleEntity (fi.otavanopisto.muikku.model.workspace.WorkspaceRoleEntity)8
RolePermission (fi.otavanopisto.muikku.model.security.RolePermission)4
SchoolDataSource (fi.otavanopisto.muikku.model.base.SchoolDataSource)3
EnvironmentRoleArchetype (fi.otavanopisto.muikku.model.users.EnvironmentRoleArchetype)3
RoleSchoolDataIdentifier (fi.otavanopisto.muikku.model.users.RoleSchoolDataIdentifier)3
WorkspaceRoleArchetype (fi.otavanopisto.muikku.model.workspace.WorkspaceRoleArchetype)3
ArrayList (java.util.ArrayList)3
SystemRoleEntity (fi.otavanopisto.muikku.model.users.SystemRoleEntity)2
WorkspaceEntity (fi.otavanopisto.muikku.model.workspace.WorkspaceEntity)2
ForumArea (fi.otavanopisto.muikku.plugins.forum.model.ForumArea)2
WorkspaceForumArea (fi.otavanopisto.muikku.plugins.forum.model.WorkspaceForumArea)2
MuikkuPermissionCollection (fi.otavanopisto.muikku.security.MuikkuPermissionCollection)2
RequestAction (org.ocpsoft.rewrite.annotation.RequestAction)2
EnvironmentUser (fi.otavanopisto.muikku.model.users.EnvironmentUser)1
SystemRoleType (fi.otavanopisto.muikku.model.users.SystemRoleType)1
UserEntity (fi.otavanopisto.muikku.model.users.UserEntity)1
UserGroupEntity (fi.otavanopisto.muikku.model.users.UserGroupEntity)1
