Search in sources :

Example 1 with Invitation

use of org.alfresco.service.cmr.invitation.Invitation in project alfresco-remote-api by Alfresco.

the class SiteMembershipRequestsImpl method createSiteMembershipRequest.

@Override
public SiteMembershipRequest createSiteMembershipRequest(String inviteeId, final SiteMembershipRequest siteInvite) {
    SiteMembershipRequest request = null;
    inviteeId = people.validatePerson(inviteeId, true);
    // Note that the order of error checking is important. The server first needs to check for the status 404
    // conditions before checking for status 400 conditions. Otherwise the server is open to a probing attack.
    String siteId = siteInvite.getId();
    final SiteInfo siteInfo = sites.validateSite(siteId);
    if (siteInfo == null) {
        // site does not exist
        throw new RelationshipResourceNotFoundException(inviteeId, siteId);
    }
    // set the site id to the short name (to deal with case sensitivity issues with using the siteId from the url)
    siteId = siteInfo.getShortName();
    final SiteVisibility siteVisibility = siteInfo.getVisibility();
    if (siteVisibility.equals(SiteVisibility.PRIVATE)) {
        // note: security, no indication that this is a private site
        throw new RelationshipResourceNotFoundException(inviteeId, siteId);
    }
    // Is the invitee already a member of the site?
    boolean isMember = siteService.isMember(siteId, inviteeId);
    if (isMember) {
        // yes
        throw new InvalidArgumentException(inviteeId + " is already a member of site " + siteId);
    }
    // Is there an outstanding site invite request for the (invitee, site)?
    Invitation invitation = getSiteInvitation(inviteeId, siteId);
    if (invitation != null) {
        // yes
        throw new InvalidArgumentException(inviteeId + " is already invited to site " + siteId);
    }
    final String inviteeRole = DEFAULT_ROLE;
    String message = siteInvite.getMessage();
    if (message == null) {
        // the invitation service ignores null messages so convert to an empty message.
        message = "";
    }
    if (siteVisibility.equals(SiteVisibility.MODERATED)) {
        request = inviteToModeratedSite(message, inviteeId, siteId, inviteeRole);
    } else if (siteVisibility.equals(SiteVisibility.PUBLIC)) {
        request = inviteToPublicSite(siteInfo, message, inviteeId, inviteeRole);
    } else {
        // note: security, no indication that this is a private site
        throw new RelationshipResourceNotFoundException(inviteeId, siteId);
    }
    return request;
}
Also used : RelationshipResourceNotFoundException(org.alfresco.rest.framework.core.exceptions.RelationshipResourceNotFoundException) SiteInfo(org.alfresco.service.cmr.site.SiteInfo) InvalidArgumentException(org.alfresco.rest.framework.core.exceptions.InvalidArgumentException) ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) Invitation(org.alfresco.service.cmr.invitation.Invitation) SiteMembershipRequest(org.alfresco.rest.api.model.SiteMembershipRequest) SiteVisibility(org.alfresco.service.cmr.site.SiteVisibility)

Example 2 with Invitation

use of org.alfresco.service.cmr.invitation.Invitation in project alfresco-remote-api by Alfresco.

the class SiteMembershipRequestsImpl method cancelSiteMembershipRequest.

@Override
public void cancelSiteMembershipRequest(String inviteeId, String siteId) {
    inviteeId = people.validatePerson(inviteeId);
    SiteInfo siteInfo = sites.validateSite(siteId);
    if (siteInfo == null) {
        // site does not exist
        throw new RelationshipResourceNotFoundException(inviteeId, siteId);
    }
    // set the site id to the short name (to deal with case sensitivity issues with using the siteId from the url)
    siteId = siteInfo.getShortName();
    Invitation invitation = getSiteInvitation(inviteeId, siteId);
    if (invitation == null) {
        // no such invitation
        throw new RelationshipResourceNotFoundException(inviteeId, siteId);
    }
    invitationService.cancel(invitation.getInviteId());
}
Also used : RelationshipResourceNotFoundException(org.alfresco.rest.framework.core.exceptions.RelationshipResourceNotFoundException) SiteInfo(org.alfresco.service.cmr.site.SiteInfo) ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) Invitation(org.alfresco.service.cmr.invitation.Invitation)

Example 3 with Invitation

use of org.alfresco.service.cmr.invitation.Invitation in project alfresco-remote-api by Alfresco.

the class SiteMembershipRequestsImpl method getSiteInvitation.

private Invitation getSiteInvitation(String inviteeId, String siteId) {
    // Is there an outstanding site invite request for the invitee?
    InvitationSearchCriteriaImpl criteria = new InvitationSearchCriteriaImpl();
    criteria.setInvitationType(InvitationType.MODERATED);
    criteria.setInvitee(inviteeId);
    criteria.setResourceName(siteId);
    criteria.setResourceType(ResourceType.WEB_SITE);
    List<Invitation> invitations = invitationService.searchInvitation(criteria);
    if (invitations.size() > 1) {
        // TODO exception
        throw new AlfrescoRuntimeException("There should be only one outstanding site invitation");
    }
    return (invitations.size() == 0 ? null : invitations.get(0));
}
Also used : ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) Invitation(org.alfresco.service.cmr.invitation.Invitation) InvitationSearchCriteriaImpl(org.alfresco.repo.invitation.InvitationSearchCriteriaImpl) AlfrescoRuntimeException(org.alfresco.error.AlfrescoRuntimeException)

Example 4 with Invitation

use of org.alfresco.service.cmr.invitation.Invitation in project alfresco-remote-api by Alfresco.

the class SiteMembershipRequestsImpl method toSiteMembershipRequests.

private List<SiteMembershipRequest> toSiteMembershipRequests(List<Invitation> invitations, boolean includePersonDetails) {
    List<SiteMembershipRequest> siteMembershipRequests = new ArrayList<SiteMembershipRequest>(invitations.size());
    for (Invitation invitation : invitations) {
        if (invitation instanceof ModeratedInvitation) {
            ModeratedInvitation moderatedInvitation = (ModeratedInvitation) invitation;
            SiteMembershipRequest siteMembershipRequest = getSiteMembershipRequest(moderatedInvitation, includePersonDetails);
            if (siteMembershipRequest != null) {
                // note: siteMembershipRequest may be null if the site is now no longer a moderated site
                // or if the invitation is malformed and does not refer to a site.
                siteMembershipRequests.add(siteMembershipRequest);
            }
        } else {
        // just ignore, shouldn't happen because getSiteInvitations filters by ModeratedInvitation
        }
    }
    return siteMembershipRequests;
}
Also used : ArrayList(java.util.ArrayList) ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) Invitation(org.alfresco.service.cmr.invitation.Invitation) ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) SiteMembershipRequest(org.alfresco.rest.api.model.SiteMembershipRequest)

Example 5 with Invitation

use of org.alfresco.service.cmr.invitation.Invitation in project alfresco-remote-api by Alfresco.

the class SiteMembershipRequestsImpl method approveSiteMembershipRequest.

@Override
public void approveSiteMembershipRequest(String siteId, String inviteeId, SiteMembershipApproval siteMembershipApproval) {
    SiteInfo siteInfo = sites.validateSite(siteId);
    if (siteInfo == null) {
        throw new EntityNotFoundException(siteId);
    }
    // Set the site id to the short name (to deal with case sensitivity issues with
    // using the siteId from the url)
    siteId = siteInfo.getShortName();
    // Validate invitation.
    Invitation invitation = getSiteInvitation(inviteeId, siteId);
    if (invitation == null || !(invitation instanceof ModeratedInvitation)) {
        throw new RelationshipResourceNotFoundException(siteId, inviteeId);
    }
    ModeratedInvitation moderatedInvitation = (ModeratedInvitation) invitation;
    ResourceType resourceType = moderatedInvitation.getResourceType();
    if (!resourceType.equals(ResourceType.WEB_SITE) || !SiteVisibility.MODERATED.equals(siteInfo.getVisibility())) {
        // note: security, no indication that this has a different visibility
        throw new RelationshipResourceNotFoundException(siteId, inviteeId);
    }
    try {
        invitationService.approve(invitation.getInviteId(), "");
    } catch (InvitationExceptionForbidden ex) {
        throw new PermissionDeniedException();
    }
    // approval role differs from default one.
    if (siteMembershipApproval != null && !(siteMembershipApproval.getRole() == null || siteMembershipApproval.getRole().isEmpty())) {
        String role = siteMembershipApproval.getRole();
        // Check if role chosen by moderator differs from the invite role.
        if (!moderatedInvitation.getRoleName().equals(role)) {
            String currentUserId = AuthenticationUtil.getFullyAuthenticatedUser();
            // Update invitation with new role.
            try {
                addSiteMembership(invitation.getInviteeUserName(), siteId, role, currentUserId);
            } catch (UnknownAuthorityException e) {
                logger.debug("addSiteMember:  UnknownAuthorityException " + siteId + " person " + invitation.getInviteId() + " role " + role);
                throw new InvalidArgumentException("Unknown role '" + role + "'");
            }
        }
    }
}
Also used : RelationshipResourceNotFoundException(org.alfresco.rest.framework.core.exceptions.RelationshipResourceNotFoundException) SiteInfo(org.alfresco.service.cmr.site.SiteInfo) InvalidArgumentException(org.alfresco.rest.framework.core.exceptions.InvalidArgumentException) ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) Invitation(org.alfresco.service.cmr.invitation.Invitation) ModeratedInvitation(org.alfresco.service.cmr.invitation.ModeratedInvitation) InvitationExceptionForbidden(org.alfresco.service.cmr.invitation.InvitationExceptionForbidden) ResourceType(org.alfresco.service.cmr.invitation.Invitation.ResourceType) PermissionDeniedException(org.alfresco.rest.framework.core.exceptions.PermissionDeniedException) EntityNotFoundException(org.alfresco.rest.framework.core.exceptions.EntityNotFoundException) UnknownAuthorityException(org.alfresco.repo.security.authority.UnknownAuthorityException)

Aggregations

Invitation (org.alfresco.service.cmr.invitation.Invitation)16 ModeratedInvitation (org.alfresco.service.cmr.invitation.ModeratedInvitation)10 SiteInfo (org.alfresco.service.cmr.site.SiteInfo)6 RelationshipResourceNotFoundException (org.alfresco.rest.framework.core.exceptions.RelationshipResourceNotFoundException)5 InvitationSearchCriteriaImpl (org.alfresco.repo.invitation.InvitationSearchCriteriaImpl)4 WebScriptException (org.springframework.extensions.webscripts.WebScriptException)4 ArrayList (java.util.ArrayList)3 HashMap (java.util.HashMap)3 SiteMembershipRequest (org.alfresco.rest.api.model.SiteMembershipRequest)3 EntityNotFoundException (org.alfresco.rest.framework.core.exceptions.EntityNotFoundException)3 InvalidArgumentException (org.alfresco.rest.framework.core.exceptions.InvalidArgumentException)3 PermissionDeniedException (org.alfresco.rest.framework.core.exceptions.PermissionDeniedException)3 InvitationExceptionForbidden (org.alfresco.service.cmr.invitation.InvitationExceptionForbidden)3 List (java.util.List)2 AlfrescoRuntimeException (org.alfresco.error.AlfrescoRuntimeException)2 UnknownAuthorityException (org.alfresco.repo.security.authority.UnknownAuthorityException)2 ResourceType (org.alfresco.service.cmr.invitation.Invitation.ResourceType)2 NominatedInvitation (org.alfresco.service.cmr.invitation.NominatedInvitation)2 ParseException (java.text.ParseException)1 WorkflowModelNominatedInvitation (org.alfresco.repo.invitation.WorkflowModelNominatedInvitation)1