Example 81 with IAuthorizationPrincipal
use of org.apereo.portal.security.IAuthorizationPrincipal in project uPortal by Jasig.
the class XalanAuthorizationHelperBean method hasPermission.
@Override
public boolean hasPermission(final String owner, final String activity, final String target) {
// owner & activity are required (but not target)
if (owner == null || activity == null) {
return false;
}
final HttpServletRequest currentRequest = portalRequestUtils.getCurrentPortalRequest();
final IPerson currentUser = personManager.getPerson((HttpServletRequest) currentRequest);
final IAuthorizationPrincipal authPrincipal = this.getUserPrincipal(currentUser.getUserName());
final boolean rslt = authPrincipal != null ? authPrincipal.hasPermission(owner, activity, target) : false;
return rslt;
}
Also used :
HttpServletRequest(javax.servlet.http.HttpServletRequest)
IPerson(org.apereo.portal.security.IPerson)
IAuthorizationPrincipal(org.apereo.portal.security.IAuthorizationPrincipal)
Example 82 with IAuthorizationPrincipal
use of org.apereo.portal.security.IAuthorizationPrincipal in project uPortal by Jasig.
the class PortletEventCoordinatationService method resolvePortletEvents.
@Override
public void resolvePortletEvents(HttpServletRequest request, PortletEventQueue portletEventQueue) {
final Queue<QueuedEvent> events = portletEventQueue.getUnresolvedEvents();
//Skip all processing if there are no new events.
if (events.isEmpty()) {
return;
}
//Get all the portlets the user is subscribed to
final IUserInstance userInstance = this.userInstanceManager.getUserInstance(request);
final IUserPreferencesManager preferencesManager = userInstance.getPreferencesManager();
final IUserLayoutManager userLayoutManager = preferencesManager.getUserLayoutManager();
//Make a local copy so we can remove data from it
final Set<String> allLayoutNodeIds = new LinkedHashSet<String>(userLayoutManager.getAllSubscribedChannels());
final Map<String, IPortletEntity> portletEntityCache = new LinkedHashMap<String, IPortletEntity>();
while (!events.isEmpty()) {
final QueuedEvent queuedEvent = events.poll();
if (queuedEvent == null) {
//no more queued events, done resolving
return;
}
final IPortletWindowId sourceWindowId = queuedEvent.getPortletWindowId();
final Event event = queuedEvent.getEvent();
final boolean globalEvent = isGlobalEvent(request, sourceWindowId, event);
final Set<IPortletDefinition> portletDefinitions = new LinkedHashSet<IPortletDefinition>();
if (globalEvent) {
portletDefinitions.addAll(this.portletDefinitionRegistry.getAllPortletDefinitions());
}
//Check each subscription to see what events it is registered to see
for (final Iterator<String> layoutNodeIdItr = allLayoutNodeIds.iterator(); layoutNodeIdItr.hasNext(); ) {
final String layoutNodeId = layoutNodeIdItr.next();
IPortletEntity portletEntity = portletEntityCache.get(layoutNodeId);
if (portletEntity == null) {
portletEntity = this.portletEntityRegistry.getOrCreatePortletEntity(request, userInstance, layoutNodeId);
// if portlet entity registry returned null, then portlet has been deleted - remove it (see UP-3378)
if (portletEntity == null) {
layoutNodeIdItr.remove();
continue;
}
final IPortletDefinitionId portletDefinitionId = portletEntity.getPortletDefinitionId();
final PortletDefinition portletDescriptor = this.portletDefinitionRegistry.getParentPortletDescriptor(portletDefinitionId);
if (portletDescriptor == null) {
//Missconfigured portlet, remove it from the list so we don't check again and ignore it
layoutNodeIdItr.remove();
continue;
}
final List<? extends EventDefinitionReference> supportedProcessingEvents = portletDescriptor.getSupportedProcessingEvents();
//Skip portlets that don't handle any events and remove them from the set so they are not checked again
if (supportedProcessingEvents == null || supportedProcessingEvents.size() == 0) {
layoutNodeIdItr.remove();
continue;
}
portletEntityCache.put(layoutNodeId, portletEntity);
}
final IPortletDefinition portletDefinition = portletEntity.getPortletDefinition();
final IPortletDefinitionId portletDefinitionId = portletDefinition.getPortletDefinitionId();
if (this.supportsEvent(event, portletDefinitionId)) {
this.logger.debug("{} supports event {}", portletDefinition, event);
//If this is the default portlet entity remove the definition from the all defs set to avoid duplicate processing
final IPortletEntity defaultPortletEntity = this.portletEntityRegistry.getOrCreateDefaultPortletEntity(request, portletDefinitionId);
if (defaultPortletEntity.equals(portletEntity)) {
portletDefinitions.remove(portletDefinition);
}
// Is this portlet permitted to receive events? (Or is it disablePortletEvents=true?)
IPortletDefinitionParameter disablePortletEvents = portletDefinition.getParameter(PortletExecutionManager.DISABLE_PORTLET_EVENTS_PARAMETER);
if (disablePortletEvents != null && Boolean.parseBoolean(disablePortletEvents.getValue())) {
logger.info("Ignoring portlet events for portlet '{}' because they have been disabled.", portletDefinition.getFName());
continue;
}
final IPortletEntityId portletEntityId = portletEntity.getPortletEntityId();
final Set<IPortletWindow> portletWindows = this.portletWindowRegistry.getAllPortletWindowsForEntity(request, portletEntityId);
for (final IPortletWindow portletWindow : portletWindows) {
this.logger.debug("{} resolved target {}", event, portletWindow);
final IPortletWindowId portletWindowId = portletWindow.getPortletWindowId();
final Event unmarshalledEvent = this.unmarshall(portletWindow, event);
portletEventQueue.offerEvent(portletWindowId, new QueuedEvent(sourceWindowId, unmarshalledEvent));
}
} else {
portletDefinitions.remove(portletDefinition);
}
}
if (!portletDefinitions.isEmpty()) {
final IPerson user = userInstance.getPerson();
final EntityIdentifier ei = user.getEntityIdentifier();
final IAuthorizationPrincipal ap = AuthorizationService.instance().newPrincipal(ei.getKey(), ei.getType());
//If the event is global there might still be portlet definitions that need targeting
for (final IPortletDefinition portletDefinition : portletDefinitions) {
// Is this portlet permitted to receive events? (Or is it disablePortletEvents=true?)
IPortletDefinitionParameter disablePortletEvents = portletDefinition.getParameter(PortletExecutionManager.DISABLE_PORTLET_EVENTS_PARAMETER);
if (disablePortletEvents != null && Boolean.parseBoolean(disablePortletEvents.getValue())) {
logger.info("Ignoring portlet events for portlet '{}' because they have been disabled.", portletDefinition.getFName());
continue;
}
final IPortletDefinitionId portletDefinitionId = portletDefinition.getPortletDefinitionId();
//Check if the user can render the portlet definition before doing event tests
if (ap.canRender(portletDefinitionId.getStringId())) {
if (this.supportsEvent(event, portletDefinitionId)) {
this.logger.debug("{} supports event {}", portletDefinition, event);
final IPortletEntity portletEntity = this.portletEntityRegistry.getOrCreateDefaultPortletEntity(request, portletDefinitionId);
final IPortletEntityId portletEntityId = portletEntity.getPortletEntityId();
final Set<IPortletWindow> portletWindows = this.portletWindowRegistry.getAllPortletWindowsForEntity(request, portletEntityId);
for (final IPortletWindow portletWindow : portletWindows) {
this.logger.debug("{} resolved target {}", event, portletWindow);
final IPortletWindowId portletWindowId = portletWindow.getPortletWindowId();
final Event unmarshalledEvent = this.unmarshall(portletWindow, event);
portletEventQueue.offerEvent(portletWindowId, new QueuedEvent(sourceWindowId, unmarshalledEvent));
}
}
}
}
}
}
}
Also used :
LinkedHashSet(java.util.LinkedHashSet)
EntityIdentifier(org.apereo.portal.EntityIdentifier)
IPortletWindow(org.apereo.portal.portlet.om.IPortletWindow)
LinkedHashMap(java.util.LinkedHashMap)
IUserInstance(org.apereo.portal.user.IUserInstance)
IPerson(org.apereo.portal.security.IPerson)
IPortletEntity(org.apereo.portal.portlet.om.IPortletEntity)
IPortletDefinitionParameter(org.apereo.portal.portlet.om.IPortletDefinitionParameter)
IAuthorizationPrincipal(org.apereo.portal.security.IAuthorizationPrincipal)
IUserPreferencesManager(org.apereo.portal.IUserPreferencesManager)
IUserLayoutManager(org.apereo.portal.layout.IUserLayoutManager)
IPortletEntityId(org.apereo.portal.portlet.om.IPortletEntityId)
IPortletDefinition(org.apereo.portal.portlet.om.IPortletDefinition)
IPortletDefinition(org.apereo.portal.portlet.om.IPortletDefinition)
PortletDefinition(org.apache.pluto.container.om.portlet.PortletDefinition)
IPortletDefinitionId(org.apereo.portal.portlet.om.IPortletDefinitionId)
Event(javax.portlet.Event)
IPortletWindowId(org.apereo.portal.portlet.om.IPortletWindowId)
Example 83 with IAuthorizationPrincipal
use of org.apereo.portal.security.IAuthorizationPrincipal in project uPortal by Jasig.
the class MarketplaceService method browseableNonEmptyPortletCategoriesFor.
@Override
public Set<PortletCategory> browseableNonEmptyPortletCategoriesFor(final IPerson user, final Set<PortletCategory> categories) {
final IAuthorizationPrincipal principal = AuthorizationPrincipalHelper.principalFromUser(user);
final Set<MarketplaceEntry> browseablePortlets = browseableMarketplaceEntriesFor(user, categories);
final Set<PortletCategory> browseableCategories = new HashSet<PortletCategory>();
// categories containing zero browseable portlets are excluded.
for (final MarketplaceEntry entry : browseablePortlets) {
IPortletDefinition portletDefinition = entry.getMarketplacePortletDefinition();
for (final PortletCategory category : this.portletCategoryRegistry.getParentCategories(portletDefinition)) {
final String categoryId = category.getId();
if (mayBrowse(principal, categoryId)) {
browseableCategories.add(category);
} else {
logger.trace("Portlet {} is browseable by {} but it is in category {} " + "which is not browseable by that user. " + "This may be as intended, " + "or it may be that that portlet category ought to be more widely browseable.", portletDefinition, user, category);
}
}
}
logger.trace("These categories {} are browseable by {}.", browseableCategories, user);
return browseableCategories;
}
Also used :
MarketplaceEntry(org.apereo.portal.rest.layout.MarketplaceEntry)
IAuthorizationPrincipal(org.apereo.portal.security.IAuthorizationPrincipal)
HashSet(java.util.HashSet)
PortletCategory(org.apereo.portal.portlet.om.PortletCategory)
IPortletDefinition(org.apereo.portal.portlet.om.IPortletDefinition)
Aggregations
IAuthorizationPrincipal (org.apereo.portal.security.IAuthorizationPrincipal)83
EntityIdentifier (org.apereo.portal.EntityIdentifier)31
IPerson (org.apereo.portal.security.IPerson)21
ArrayList (java.util.ArrayList)17
IPortletDefinition (org.apereo.portal.portlet.om.IPortletDefinition)17
RequestMapping (org.springframework.web.bind.annotation.RequestMapping)15
IEntityGroup (org.apereo.portal.groups.IEntityGroup)14
IPermission (org.apereo.portal.security.IPermission)13
IGroupMember (org.apereo.portal.groups.IGroupMember)12
HashSet (java.util.HashSet)11
AuthorizationService (org.apereo.portal.services.AuthorizationService)9
ModelAndView (org.springframework.web.servlet.ModelAndView)9
JsonEntityBean (org.apereo.portal.layout.dlm.remoting.JsonEntityBean)8
PortletCategory (org.apereo.portal.portlet.om.PortletCategory)7
EntityEnum (org.apereo.portal.portlets.groupselector.EntityEnum)7
HashMap (java.util.HashMap)5
Locale (java.util.Locale)4
HttpServletRequest (javax.servlet.http.HttpServletRequest)4
AuthorizationException (org.apereo.portal.AuthorizationException)4
MarketplaceEntry (org.apereo.portal.rest.layout.MarketplaceEntry)4
