RM: Deprecation of RecordsManagementSecurityService in favour of better encapsulated services

* final deprecation of recordsManagementSecurityService * origional interface and implementation moved to compatibility area * deprecation context added * FilePlanPermission service added to handle file plan permissions git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/modules/recordsmanagement/HEAD@44829 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
2025-10-08 14:51:49 +00:00 · 2012-12-19 08:10:09 +00:00
parent a2d46ff862
commit e4ea0fe02d
7 changed files with 461 additions and 297 deletions
--- a/rm-server/config/alfresco/module/org_alfresco_module_rm/module-context.xml
+++ b/rm-server/config/alfresco/module/org_alfresco_module_rm/module-context.xml
@@ -145,6 +145,9 @@
   <!-- Import the RM action's -->
   <import resource="classpath:alfresco/module/org_alfresco_module_rm/rm-action-context.xml"/>
   <import resource="classpath:alfresco/module/org_alfresco_module_rm/action-context.xml"/>
+   
+   <!--  Import the deprecated beans -->
+   <import resource="classpath:alfresco/module/org_alfresco_module_rm/rm-deprecated-context.xml"/>

   <!--  Import the RM module patches -->
   <import resource="classpath:alfresco/module/org_alfresco_module_rm/rm-patch-context.xml"/>
--- a/rm-server/config/alfresco/module/org_alfresco_module_rm/rm-deprecated-context.xml
+++ b/rm-server/config/alfresco/module/org_alfresco_module_rm/rm-deprecated-context.xml
@@ -0,0 +1,62 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org/dtd/spring-beans.dtd'>
+
+<beans>
+
+	<!-- Records Management Security Service -->
+	<!-- @deprecated As of release 2.1       -->
+
+    <bean id="recordsManagementSecurityService"
+          class="org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityServiceImpl">
+        <property name="modelSecurityService" ref="modelSecurityService" />
+        <property name="filePlanRoleService" ref="FilePlanRoleService" />
+        <property name="filePlanPermissionService" ref="FilePlanPermissionService"/>
+    </bean>
+
+    <bean id="RecordsManagementSecurityService" class="org.springframework.aop.framework.ProxyFactoryBean">
+        <property name="proxyInterfaces">
+            <value>org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService</value>
+        </property>
+        <property name="target">
+            <ref bean="recordsManagementSecurityService"/>
+        </property>
+        <property name="interceptorNames">
+            <list>
+                <idref local="RecordsManagementSecurityService_transaction"/>
+                <idref bean="exceptionTranslator"/>
+                <idref local="RecordsManagementSecurityService_security"/>
+            </list>
+        </property>
+    </bean>
+
+    <bean id="RecordsManagementSecurityService_transaction" class="org.springframework.transaction.interceptor.TransactionInterceptor">
+        <property name="transactionManager">
+            <ref bean="transactionManager"/>
+        </property>
+        <property name="transactionAttributes">
+            <props>
+                <prop key="*">${server.transaction.mode.default}</prop>
+            </props>
+        </property>
+    </bean>
+
+    <bean id="RecordsManagementSecurityService_security" class="org.alfresco.repo.security.permissions.impl.acegi.MethodSecurityInterceptor">
+        <property name="authenticationManager">
+            <ref bean="authenticationManager"/>
+        </property>
+        <property name="accessDecisionManager">
+            <ref bean="accessDecisionManager"/>
+        </property>
+        <property name="afterInvocationManager">
+            <ref bean="afterInvocationManager"/>
+        </property>
+        <property name="objectDefinitionSource">
+            <value>
+                <![CDATA[
+    			org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.*=RM_ALLOW
+                ]]>
+            </value>
+        </property>
+    </bean>
+    
+</beans>    
--- a/rm-server/config/alfresco/module/org_alfresco_module_rm/rm-service-context.xml
+++ b/rm-server/config/alfresco/module/org_alfresco_module_rm/rm-service-context.xml
@@ -414,7 +414,66 @@
        </property>
    </bean>

-    <!-- Records Management Security Service -->
+	<!--  File Plan Permission Service -->
+	
+	<bean id="filePlanPermissionService"
+          class="org.alfresco.module.org_alfresco_module_rm.security.FilePlanPermissionServiceImpl"
+          init-method="init">
+        <property name="permissionService" ref="PermissionService"/>
+        <property name="nodeService" ref="NodeService"/>
+        <property name="policyComponent" ref="policyComponent"/>
+        <property name="recordsManagementService" ref="RecordsManagementService"/>
+    </bean>
+
+    <bean id="FilePlanPermissionService" class="org.springframework.aop.framework.ProxyFactoryBean">
+        <property name="proxyInterfaces">
+            <value>org.alfresco.module.org_alfresco_module_rm.security.FilePlanPermissionService</value>
+        </property>
+        <property name="target">
+            <ref bean="filePlanPermissionService"/>
+        </property>
+        <property name="interceptorNames">
+            <list>
+                <idref local="FilePlanPermissionService_transaction"/>
+                <idref bean="exceptionTranslator"/>
+                <idref local="FilePlanPermissionService_security"/>
+            </list>
+        </property>
+    </bean>
+
+    <bean id="FilePlanPermissionService_transaction" class="org.springframework.transaction.interceptor.TransactionInterceptor">
+        <property name="transactionManager">
+            <ref bean="transactionManager"/>
+        </property>
+        <property name="transactionAttributes">
+            <props>
+                <prop key="*">${server.transaction.mode.default}</prop>
+            </props>
+        </property>
+    </bean>
+
+    <bean id="FilePlanPermissionService_security" class="org.alfresco.repo.security.permissions.impl.acegi.MethodSecurityInterceptor">
+        <property name="authenticationManager">
+            <ref bean="authenticationManager"/>
+        </property>
+        <property name="accessDecisionManager">
+            <ref bean="accessDecisionManager"/>
+        </property>
+        <property name="afterInvocationManager">
+            <ref bean="afterInvocationManager"/>
+        </property>
+        <property name="objectDefinitionSource">
+            <value>
+                <![CDATA[
+                org.alfresco.module.org_alfresco_module_rm.security.FilePlanPermissionService.setPermission=RM_ALLOW
+                org.alfresco.module.org_alfresco_module_rm.security.FilePlanPermissionService.deletePermission=RM_ALLOW
+    			org.alfresco.module.org_alfresco_module_rm.security.FilePlanPermissionService.*=RM_DENY
+                ]]>
+            </value>
+        </property>
+    </bean>
+
+    <!-- File Plan Role Service -->

    <bean id="filePlanRoleService"
          class="org.alfresco.module.org_alfresco_module_rm.role.FilePlanRoleServiceImpl"
@@ -483,80 +542,7 @@
        </property>
    </bean>

-    <!-- Records Management Security Service -->
-
-    <bean id="recordsManagementSecurityService"
-          class="org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityServiceImpl"
-          depends-on="org_alfresco_module_rm_dictionaryBootstrap"
-          init-method="init">
-        <property name="permissionService" ref="PermissionService"/>
-        <property name="nodeService" ref="NodeService"/>
-        <property name="policyComponent" ref="policyComponent"/>
-        <property name="recordsManagementService" ref="RecordsManagementService"/>
-        <property name="modelSecurityService" ref="modelSecurityService" />
-        <property name="filePlanRoleService" ref="FilePlanRoleService" />
-    </bean>
-
-    <bean id="RecordsManagementSecurityService" class="org.springframework.aop.framework.ProxyFactoryBean">
-        <property name="proxyInterfaces">
-            <value>org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService</value>
-        </property>
-        <property name="target">
-            <ref bean="recordsManagementSecurityService"/>
-        </property>
-        <property name="interceptorNames">
-            <list>
-                <idref local="RecordsManagementSecurityService_transaction"/>
-                <idref bean="exceptionTranslator"/>
-                <idref local="RecordsManagementSecurityService_security"/>
-            </list>
-        </property>
-    </bean>
-
-    <bean id="RecordsManagementSecurityService_transaction" class="org.springframework.transaction.interceptor.TransactionInterceptor">
-        <property name="transactionManager">
-            <ref bean="transactionManager"/>
-        </property>
-        <property name="transactionAttributes">
-            <props>
-                <prop key="*">${server.transaction.mode.default}</prop>
-            </props>
-        </property>
-    </bean>
-
-    <bean id="RecordsManagementSecurityService_security" class="org.alfresco.repo.security.permissions.impl.acegi.MethodSecurityInterceptor">
-        <property name="authenticationManager">
-            <ref bean="authenticationManager"/>
-        </property>
-        <property name="accessDecisionManager">
-            <ref bean="accessDecisionManager"/>
-        </property>
-        <property name="afterInvocationManager">
-            <ref bean="afterInvocationManager"/>
-        </property>
-        <property name="objectDefinitionSource">
-            <value>
-                <![CDATA[
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.getProtectedAspects=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.getProtectedProperties=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.setPermission=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.deletePermission=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.bootstrapDefaultRoles=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.getRoles=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.getRolesByUser=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.getRole=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.existsRole=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.hasRMAdminRole=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.createRole=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.updateRole=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.deleteRole=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.assignRoleToAuthority=RM_ALLOW
-                org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.getAllRolesContainerGroup=RM_ALLOW
-    			org.alfresco.module.org_alfresco_module_rm.security.RecordsManagementSecurityService.*=RM_DENY
-                ]]>
-            </value>
-        </property>
-    </bean>
+    

    <!--  Records Management Extended Security Service -->