diff --git a/config/alfresco/hibernate-context.xml b/config/alfresco/hibernate-context.xml
index ae6a3f0087..fd2b32af68 100644
--- a/config/alfresco/hibernate-context.xml
+++ b/config/alfresco/hibernate-context.xml
@@ -206,8 +206,12 @@
mustExist == false
- * @throws InvalidNodeRefException if the node must exist but doesn't
- */
- private Node getNode(NodeRef nodeRef, boolean mustExist)
- {
- Node node = nodeDaoService.getNode(nodeRef);
- if (node == null && mustExist)
- {
- throw new InvalidNodeRefException(nodeRef);
- }
- return node;
- }
-
public void deletePermissions(NodeRef nodeRef)
{
- Node node = getNode(nodeRef, false);
- if (node == null)
+ if (!nodeExists(nodeRef))
{
return;
}
- DbAccessControlList acl = getAccessControlList(node, false);
+ DbAccessControlList acl = getAccessControlList(nodeRef, false);
if (acl != null)
{
// maintain referencial integrity
- node.setAccessControlList(null);
+ getNodeService(nodeRef).setAccessControlList(nodeRef, null);
// delete the access control list - it will cascade to the entries
getHibernateTemplate().delete(acl);
}
@@ -277,12 +264,12 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
public void deletePermissions(final NodeRef nodeRef, final String authority)
{
- Node node = getNode(nodeRef, false);
- if (node == null)
+ if (!nodeExists(nodeRef))
{
return;
}
- DbAccessControlList acl = node.getAccessControlList();
+ DbAccessControlList acl =
+ getNodeService(nodeRef).getAccessControlList(nodeRef);
int deletedCount = 0;
if (acl != null)
{
@@ -304,12 +291,12 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
*/
public void deletePermission(NodeRef nodeRef, String authority, PermissionReference permission)
{
- Node node = getNode(nodeRef, false);
- if (node == null)
+ if (!nodeExists(nodeRef))
{
return;
}
- DbAccessControlList acl = node.getAccessControlList();
+ DbAccessControlList acl =
+ getNodeService(nodeRef).getAccessControlList(nodeRef);
int deletedCount = 0;
if (acl != null)
{
@@ -328,13 +315,12 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
public void setPermission(NodeRef nodeRef, String authority, PermissionReference permission, boolean allow)
{
- Node node = getNode(nodeRef, true);
// get the entry
- DbAccessControlEntry entry = getAccessControlEntry(node, authority, permission);
+ DbAccessControlEntry entry = getAccessControlEntry(nodeRef, authority, permission);
if (entry == null)
{
// need to create it
- DbAccessControlList dbAccessControlList = getAccessControlList(node, true);
+ DbAccessControlList dbAccessControlList = getAccessControlList(nodeRef, true);
DbPermission dbPermission = getPermission(permission, true);
DbAuthority dbAuthority = getAuthority(authority, true);
// set persistent objects
@@ -363,11 +349,11 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
* @return Returns all access control entries that match the criteria
*/
private DbAccessControlEntry getAccessControlEntry(
- Node node,
+ NodeRef nodeRef,
String authority,
PermissionReference permission)
{
- DbAccessControlList acl = getAccessControlList(node, false);
+ DbAccessControlList acl = getAccessControlList(nodeRef, false);
DbAccessControlEntry entry = null;
if (acl != null)
{
@@ -378,7 +364,7 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
if (logger.isDebugEnabled())
{
logger.debug("" + (entry == null ? "Did not find" : "Found") + " entry for criteria: \n" +
- " node: " + node.getId() + "\n" +
+ " node: " + nodeRef + "\n" +
" authority: " + authority + "\n" +
" permission: " + permission);
}
@@ -438,20 +424,19 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
public void setPermission(NodePermissionEntry nodePermissionEntry)
{
NodeRef nodeRef = nodePermissionEntry.getNodeRef();
- Node node = getNode(nodeRef, true);
// Get the access control list
// Note the logic here requires to know whether it was created or not
- DbAccessControlList acl = getAccessControlList(node, false);
+ DbAccessControlList acl = getAccessControlList(nodeRef, false);
if (acl != null)
{
// maintain referencial integrity
- node.setAccessControlList(null);
+ getNodeService(nodeRef).setAccessControlList(nodeRef, null);
// drop the list
getHibernateTemplate().delete(acl);
}
// create the access control list
- acl = createAccessControlList(node);
+ acl = createAccessControlList(nodeRef);
// set attributes
acl.setInherits(nodePermissionEntry.inheritPermissions());
@@ -473,18 +458,16 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
public void setInheritParentPermissions(NodeRef nodeRef, boolean inheritParentPermissions)
{
- Node node = getNode(nodeRef, true);
-
DbAccessControlList acl = null;
if (!inheritParentPermissions)
{
// Inheritance == true is the default, so only force a create of the ACL if the value false
- acl = getAccessControlList(node, true);
+ acl = getAccessControlList(nodeRef, true);
acl.setInherits(false);
}
else
{
- acl = getAccessControlList(node, false);
+ acl = getAccessControlList(nodeRef, false);
if (acl != null)
{
acl.setInherits(true);
@@ -494,13 +477,12 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
public boolean getInheritParentPermissions(NodeRef nodeRef)
{
- Node node = getNode(nodeRef, false);
- if (node == null)
+ if (!nodeExists(nodeRef))
{
return INHERIT_PERMISSIONS_DEFAULT;
}
- DbAccessControlList acl = getAccessControlList(node, false);
+ DbAccessControlList acl = getAccessControlList(nodeRef, false);
if (acl == null)
{
return true;
@@ -514,14 +496,15 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
// Utility methods to create simple detached objects for the outside world
// We do not pass out the hibernate objects
- private SimpleNodePermissionEntry createSimpleNodePermissionEntry(Node node)
+ private SimpleNodePermissionEntry createSimpleNodePermissionEntry(NodeRef nodeRef)
{
- DbAccessControlList acl = node.getAccessControlList();
+ DbAccessControlList acl =
+ getNodeService(nodeRef).getAccessControlList(nodeRef);
if (acl == null)
{
// there isn't an access control list for the node - spoof a null one
SimpleNodePermissionEntry snpe = new SimpleNodePermissionEntry(
- node.getNodeRef(),
+ nodeRef,
true,
Collections. emptySet());
return snpe;
@@ -530,9 +513,9 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
{
Set entries = acl.getEntries();
SimpleNodePermissionEntry snpe = new SimpleNodePermissionEntry(
- node.getNodeRef(),
+ nodeRef,
acl.getInherits(),
- createSimplePermissionEntries(node, entries));
+ createSimplePermissionEntries(nodeRef, entries));
return snpe;
}
}
@@ -541,7 +524,8 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
* @param entries access control entries
* @return Returns a unique set of entries that can be given back to the outside world
*/
- private Set createSimplePermissionEntries(Node node, Collection entries)
+ private Set createSimplePermissionEntries(NodeRef nodeRef,
+ Collection entries)
{
if (entries == null)
{
@@ -552,20 +536,21 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
{
for (DbAccessControlEntry entry : entries)
{
- spes.add(createSimplePermissionEntry(node, entry));
+ spes.add(createSimplePermissionEntry(nodeRef, entry));
}
}
return spes;
}
- private static SimplePermissionEntry createSimplePermissionEntry(Node node, DbAccessControlEntry ace)
+ private static SimplePermissionEntry createSimplePermissionEntry(NodeRef nodeRef,
+ DbAccessControlEntry ace)
{
if (ace == null)
{
return null;
}
return new SimplePermissionEntry(
- node.getNodeRef(),
+ nodeRef,
createSimplePermissionReference(ace.getPermission()),
ace.getAuthority().getRecipient(),
ace.isAllowed() ? AccessStatus.ALLOWED : AccessStatus.DENIED);
@@ -581,4 +566,29 @@ public class PermissionsDaoComponentImpl extends HibernateDaoSupport implements
perm.getTypeQname(),
perm.getName());
}
+
+ /**
+ * Helper to check node existence.
+ * @param nodeRef The node ref to check.
+ * @return Whether the node exists.
+ */
+ private boolean nodeExists(NodeRef nodeRef)
+ {
+ return getNodeService(nodeRef).exists(nodeRef);
+ }
+
+ /**
+ * Helper to choose appropriate NodeService for the given NodeRef
+ * @param nodeRef The NodeRef to dispatch from.
+ * @return The appropriate NodeService.
+ */
+ private NodeService getNodeService(NodeRef nodeRef)
+ {
+ NodeService ret = protocolToNodeService.get(nodeRef.getStoreRef().getProtocol());
+ if (ret == null)
+ {
+ return defaultNodeService;
+ }
+ return ret;
+ }
}
diff --git a/source/java/org/alfresco/repo/node/archive/ArchiveAndRestoreTest.java b/source/java/org/alfresco/repo/node/archive/ArchiveAndRestoreTest.java
index 489b65a72f..d689dd9912 100644
--- a/source/java/org/alfresco/repo/node/archive/ArchiveAndRestoreTest.java
+++ b/source/java/org/alfresco/repo/node/archive/ArchiveAndRestoreTest.java
@@ -120,7 +120,7 @@ public class ArchiveAndRestoreTest extends TestCase
// Create the work store
workStoreRef = nodeService.createStore(StoreRef.PROTOCOL_WORKSPACE, getName() + System.currentTimeMillis());
workStoreRootNodeRef = nodeService.getRootNode(workStoreRef);
- archiveStoreRef = nodeService.createStore("archive", getName() + System.currentTimeMillis());
+ archiveStoreRef = nodeService.createStore(StoreRef.PROTOCOL_WORKSPACE, "archive" + getName() + System.currentTimeMillis());
archiveStoreRootNodeRef = nodeService.getRootNode(archiveStoreRef);
// Map the work store to the archive store. This will already be wired into the NodeService.
diff --git a/source/java/org/alfresco/repo/node/db/DbNodeServiceImpl.java b/source/java/org/alfresco/repo/node/db/DbNodeServiceImpl.java
index 85a214f845..2a3ee6ad82 100644
--- a/source/java/org/alfresco/repo/node/db/DbNodeServiceImpl.java
+++ b/source/java/org/alfresco/repo/node/db/DbNodeServiceImpl.java
@@ -33,6 +33,7 @@ import org.alfresco.error.AlfrescoRuntimeException;
import org.alfresco.model.ContentModel;
import org.alfresco.repo.avm.AVMContext;
import org.alfresco.repo.domain.ChildAssoc;
+import org.alfresco.repo.domain.DbAccessControlList;
import org.alfresco.repo.domain.Node;
import org.alfresco.repo.domain.NodeAssoc;
import org.alfresco.repo.domain.NodeStatus;
@@ -1794,7 +1795,6 @@ public class DbNodeServiceImpl extends AbstractNodeServiceImpl
*
* @param assocTypeQName the type of the child association
* @param childNode the child node being added. The name will be extracted from it, if necessary.
- * @return Returns the value to be put on the child association for uniqueness, or null if
*/
private void setChildUniqueName(Node childNode)
{
@@ -1840,4 +1840,26 @@ public class DbNodeServiceImpl extends AbstractNodeServiceImpl
" name: " + useName);
}
}
+
+ /**
+ * Set the ACL on a node.
+ * @param nodeRef The reference to the node.
+ * @param acl The ACL to set.
+ */
+ public void setAccessControlList(NodeRef nodeRef, DbAccessControlList acl)
+ {
+ Node node = getNodeNotNull(nodeRef);
+ node.setAccessControlList(acl);
+ }
+
+ /**
+ * Get the ACL on a node.
+ * @param nodeRef The reference to the node.
+ * @return The ACL.
+ */
+ public DbAccessControlList getAccessControlList(NodeRef nodeRef)
+ {
+ Node node = getNodeNotNull(nodeRef);
+ return node.getAccessControlList();
+ }
}
diff --git a/source/java/org/alfresco/repo/version/NodeServiceImpl.java b/source/java/org/alfresco/repo/version/NodeServiceImpl.java
index 0de161ca00..344e2322ed 100644
--- a/source/java/org/alfresco/repo/version/NodeServiceImpl.java
+++ b/source/java/org/alfresco/repo/version/NodeServiceImpl.java
@@ -27,6 +27,7 @@ import java.util.Map;
import java.util.Set;
import org.alfresco.model.ContentModel;
+import org.alfresco.repo.domain.DbAccessControlList;
import org.alfresco.service.cmr.dictionary.DictionaryService;
import org.alfresco.service.cmr.dictionary.InvalidAspectException;
import org.alfresco.service.cmr.repository.AssociationExistsException;
@@ -556,4 +557,24 @@ public class NodeServiceImpl implements NodeService, VersionModel
{
throw new UnsupportedOperationException(MSG_UNSUPPORTED);
}
+
+ /**
+ * Set the access control list on a node. Defer to DbNodeService.
+ * @param nodeRef The reference to the node.
+ * @param acl The list to set.
+ */
+ public void setAccessControlList(NodeRef nodeRef, DbAccessControlList acl)
+ {
+ dbNodeService.setAccessControlList(nodeRef, acl);
+ }
+
+ /**
+ * Get the access control list on a node. Defer to DbNodeService.
+ * @param nodeRef The reference to the node.
+ * @return The list.
+ */
+ public DbAccessControlList getAccessControlList(NodeRef nodeRef)
+ {
+ return dbNodeService.getAccessControlList(nodeRef);
+ }
}
diff --git a/source/java/org/alfresco/service/cmr/avm/AVMService.java b/source/java/org/alfresco/service/cmr/avm/AVMService.java
index db14ee4ca7..4466bda3ad 100644
--- a/source/java/org/alfresco/service/cmr/avm/AVMService.java
+++ b/source/java/org/alfresco/service/cmr/avm/AVMService.java
@@ -24,6 +24,7 @@ import java.util.List;
import java.util.Map;
import java.util.SortedMap;
+import org.alfresco.repo.domain.DbAccessControlList;
import org.alfresco.repo.domain.PropertyValue;
import org.alfresco.service.cmr.repository.ContentData;
import org.alfresco.service.namespace.QName;
@@ -587,4 +588,19 @@ public interface AVMService
* @return Whether the given node has the given aspect.
*/
public boolean hasAspect(int version, String path, QName aspectName);
+
+ /**
+ * Get the ACL on a given node.
+ * @param version The version to look under.
+ * @param path The path to the node.
+ * @return The ACL.
+ */
+ public DbAccessControlList getACL(int version, String path);
+
+ /**
+ * Set the ACL on a given node.
+ * @param path The path to the node.
+ * @param acl The ACL to set.
+ */
+ public void setACL(String path, DbAccessControlList acl);
}
diff --git a/source/java/org/alfresco/service/cmr/repository/NodeService.java b/source/java/org/alfresco/service/cmr/repository/NodeService.java
index 130e67f4ab..53b9527bb6 100644
--- a/source/java/org/alfresco/service/cmr/repository/NodeService.java
+++ b/source/java/org/alfresco/service/cmr/repository/NodeService.java
@@ -21,6 +21,7 @@ import java.util.List;
import java.util.Map;
import java.util.Set;
+import org.alfresco.repo.domain.DbAccessControlList;
import org.alfresco.service.Auditable;
import org.alfresco.service.PublicService;
import org.alfresco.service.cmr.dictionary.InvalidAspectException;
@@ -296,7 +297,6 @@ public interface NodeService
*
* @param parentRef the parent end of the association
* @param childRef the child end of the association
- * @return Returns a collection of deleted entities - both associations and node references.
* @throws InvalidNodeRefException if the parent or child nodes could not be found
*/
@Auditable(key = Auditable.Key.ARG_0 ,parameters = {"parentRef", "childRef"})
@@ -561,4 +561,20 @@ public interface NodeService
NodeRef destinationParentNodeRef,
QName assocTypeQName,
QName assocQName);
+
+ /**
+ * Get the access control list associated with a Node.
+ * @param nodeRef The reference to the Node.
+ * @return The access control list.
+ */
+ @Auditable(key = Auditable.Key.ARG_0, parameters = {"nodeRef"})
+ public DbAccessControlList getAccessControlList(NodeRef nodeRef);
+
+ /**
+ * Set the access control list on a node.
+ * @param nodeRef The node reference.
+ * @param acl The list to set.
+ */
+ @Auditable(key = Auditable.Key.ARG_0, parameters = {"nodeRef", "acl"})
+ public void setAccessControlList(NodeRef nodeRef, DbAccessControlList acl);
}