Merged V2.2 to HEAD

8049: Fix for WCM-1033: Only admin users can create web projects
   8051: Merged V2.1 to V2.2
      8006: Merged V2.1-A to V2.1 (Virtual Server fixes)
         7723: The JMX server connector is now lazily instantiated in the server context.
         7734: Fix for WCM-934.
         7735: The linkvalidation service now provides a public API
         7742: Possible fix for ACT #361
      8012: Merged V2.1-A to V2.1
         7749: Fix stack overflow
         7955: Fix for issue ADB-18 Forward slash '/' in username causes Advanced Search failure
         7975: AR-1832: Allow setting of timeout value in the Java webservices client
         7995: Include the alf_child_assoc.type_qname in the check for duplicate children.
   8052: Build fix
   8054: Merged V2.1 to V2.2
      8045: Patch fix to solve WCM-1051 - also reruns fixed patch on previously patched repos (see CHK-2143)
   8058: Fixed compilation issues following merge


git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@8466 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261

source/java/org/alfresco/repo/admin/patch/impl/AVMWebProjectInheritPermissionsPatch.java

@@ -24,16 +24,21 @@
  */
 package org.alfresco.repo.admin.patch.impl;
 
+import java.util.List;
+
 import org.alfresco.i18n.I18NUtil;
+import org.alfresco.model.WCMAppModel;
 import org.alfresco.repo.admin.patch.AbstractPatch;
 import org.alfresco.repo.importer.ImporterBootstrap;
-import org.alfresco.repo.search.Indexer;
 import org.alfresco.repo.search.IndexerAndSearcher;
+import org.alfresco.service.cmr.repository.ChildAssociationRef;
+import org.alfresco.service.cmr.repository.NodeRef;
 import org.alfresco.service.cmr.search.ResultSet;
 import org.alfresco.service.cmr.search.ResultSetRow;
 import org.alfresco.service.cmr.search.SearchParameters;
 import org.alfresco.service.cmr.search.SearchService;
 import org.alfresco.service.cmr.security.PermissionService;
+import org.alfresco.service.namespace.RegexQNamePattern;
 
 /**
  * Patch to break the inheritance of permissions on AVM Web Project Folders.
@@ -81,7 +86,23 @@ public class AVMWebProjectInheritPermissionsPatch extends AbstractPatch
             rs = searchService.query(sp);
             for (ResultSetRow row : rs)
             {
+                // break permission inheritance for the Web Project nodes
                 this.permissionService.setInheritParentPermissions(row.getNodeRef(), false);
+                
+                // ensure that permissions are explicitly assigned for all Content Manager roles
+                List<ChildAssociationRef> userInfoRefs = this.nodeService.getChildAssocs(
+                        row.getNodeRef(), WCMAppModel.ASSOC_WEBUSER, RegexQNamePattern.MATCH_ALL);
+                for (ChildAssociationRef ref : userInfoRefs)
+                {
+                    NodeRef userInfoRef = ref.getChildRef();
+                    String username = (String)nodeService.getProperty(userInfoRef, WCMAppModel.PROP_WEBUSERNAME);
+                    String userrole = (String)nodeService.getProperty(userInfoRef, WCMAppModel.PROP_WEBUSERROLE);
+                    
+                    if ("ContentManager".equals(userrole))
+                    {
+                        this.permissionService.setPermission(row.getNodeRef(), username, "ContentManager", true);
+                    }
+                }
             }
         }
         finally

source/java/org/alfresco/repo/domain/hibernate/Node.hbm.xml

@@ -327,13 +327,14 @@
          assoc.id
    </query>
    
-   <query name="node.GetChildAssocIdByShortName">
+   <query name="node.GetChildAssocIdByTypeAndName">
       select
          assoc.id
       from
          org.alfresco.repo.domain.hibernate.ChildAssocImpl as assoc
       where
          assoc.parent = :parent and
+         assoc.typeQName = :typeQName and
          assoc.childNodeName = :childNodeName and
          assoc.childNodeNameCrc = :childNodeNameCrc
    </query>

source/java/org/alfresco/repo/node/db/hibernate/HibernateNodeDaoServiceImpl.java

@@ -99,7 +99,7 @@ public class HibernateNodeDaoServiceImpl extends HibernateDaoSupport implements
     private static final String QUERY_GET_PRIMARY_CHILD_NODE_STATUSES = "node.GetPrimaryChildNodeStatuses";
     private static final String QUERY_GET_CHILD_ASSOCS = "node.GetChildAssocs";
     private static final String QUERY_GET_CHILD_ASSOCS_BY_ALL = "node.GetChildAssocsByAll";
-    private static final String QUERY_GET_CHILD_ASSOC_ID_BY_NAME = "node.GetChildAssocIdByShortName";
+    private static final String QUERY_GET_CHILD_ASSOC_ID_TYPE_AND_BY_NAME = "node.GetChildAssocIdByTypeAndName";
     private static final String QUERY_GET_CHILD_ASSOC_BY_TYPE_AND_NAME = "node.GetChildAssocByTypeAndName";
     private static final String QUERY_GET_CHILD_ASSOC_REFS = "node.GetChildAssocRefs";
     private static final String QUERY_GET_CHILD_ASSOC_REFS_BY_QNAME = "node.GetChildAssocRefsByQName";
@@ -772,42 +772,17 @@ public class HibernateNodeDaoServiceImpl extends HibernateDaoSupport implements
             }
         }
         
-        /*
-         * The parent node is explicitly locked.  A query is then issued to ensure that there
-         * are no duplicates in the index on the child assoc table.  The child association is
-         * then modified, although not directly in the database.  The lock guards against other
-         * transactions modifying the unique index without this transaction's knowledge.
-         */
         final Node parentNode = childAssoc.getParent();
-//        if (loggerChildAssoc.Enabled())
-//        {
-//            loggerChildAssoc.debug(
-//                    "Locking parent node for modifying child assoc: \n" +
-//                    "   Parent:      " + parentNode + "\n" +
-//                    "   Child Assoc: " + childAssoc + "\n" +
-//                    "   New Name:    " + childNameNew);
-//        }
-//        for (int i = 0; i < maxLockRetries; i++)
-//        {
-//            try
-//            {
-//                getSession().lock(parentNode, LockMode.UPGRADE);
-//                // The lock was good, proceed
-//                break;
-//            }
-//            catch (LockAcquisitionException e) {}
-//            catch (ConcurrencyFailureException e) {}
-//            // We can retry after a short pause that gets potentially longer each time
-//            try { Thread.sleep(randomWaitTime.nextInt(500 * i + 500)); } catch (InterruptedException ee) {}
-//        }
+        final QNameEntity assocTypeQName = childAssoc.getTypeQName();
         // We have the lock, so issue the query to check
         HibernateCallback callback = new HibernateCallback()
         {
             public Object doInHibernate(Session session)
             {
                 Query query = session
-                    .getNamedQuery(HibernateNodeDaoServiceImpl.QUERY_GET_CHILD_ASSOC_ID_BY_NAME)
+                    .getNamedQuery(HibernateNodeDaoServiceImpl.QUERY_GET_CHILD_ASSOC_ID_TYPE_AND_BY_NAME)
                     .setParameter("parent", parentNode)
+                    .setParameter("typeQName", assocTypeQName)
                     .setParameter("childNodeName", childNameNewShort)
                     .setLong("childNodeNameCrc", childNameNewCrc);
                 return query.uniqueResult();
@@ -822,15 +797,14 @@ public class HibernateNodeDaoServiceImpl extends HibernateDaoSupport implements
                 logger.debug(
                         "Duplicate child association detected: \n" +
                         "   Existing Child Assoc: " + childAssocIdExisting + "\n" +
-                        "   Assoc Name:           " + childName);
+                        "   Child Name:           " + childName);
             }
             throw new DuplicateChildNodeNameException(
                     parentNode.getNodeRef(),
                     childAssoc.getTypeQName().getQName(),
                     childName);
         }
-        // We got past that, so we can just update the entity and know that no other transaction
-        // can lock the parent.
+        // We got past that, so we can just update the entity
         childAssoc.setChildNodeName(childNameNewShort);
         childAssoc.setChildNodeNameCrc(childNameNewCrc);
         

source/java/org/alfresco/repo/policy/ServiceBehaviourBinding.java

@@ -83,7 +83,7 @@ public class ServiceBehaviourBinding implements BehaviourBinding
     @Override
     public String toString()
     {
-        return "ServiceBinding[service=" + this + "]";
+        return "ServiceBinding[service=" + service + "]";
     }
 
 }

source/java/org/alfresco/repo/security/permissions/impl/PermissionServiceTest.java

@@ -112,13 +112,13 @@ public class PermissionServiceTest extends AbstractPermissionTest
         AuthenticationUtil.setSystemUserAsCurrentUser();
         try
         {
-            assertFalse(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.CONSUMER) == AccessStatus.ALLOWED);
+            assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.CONSUMER) == AccessStatus.ALLOWED);
             assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.DELETE) == AccessStatus.ALLOWED);
             assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.READ) == AccessStatus.ALLOWED);
             assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.ADD_CHILDREN) == AccessStatus.ALLOWED);
-            assertFalse(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.CANCEL_CHECK_OUT) == AccessStatus.ALLOWED);
+            assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.CANCEL_CHECK_OUT) == AccessStatus.ALLOWED);
             assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.CHECK_OUT) == AccessStatus.ALLOWED);
-            assertFalse(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.COORDINATOR) == AccessStatus.ALLOWED);
+            assertTrue(serviceRegistry.getPermissionService().hasPermission(rootNodeRef, PermissionService.COORDINATOR) == AccessStatus.ALLOWED);
         }
         finally
         {