RM-2123 Give clearance to the admin and system users.

Make sure this is executed as a patch and also bootstrapped into a clean
system using the BootstrapImporterModuleComponent.

Also restrict access to the classification levels (via the get API) to
only the levels that the user has clearance to.

+review RM

git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/modules/recordsmanagement/HEAD@104376 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261

rm-server/config/alfresco/module/org_alfresco_module_rm/classified-content-context.xml

@@ -41,6 +41,7 @@
          class="org.alfresco.module.org_alfresco_module_rm.classification.ClassificationServiceImpl"
          parent="baseService" init-method="init">
       <property name="classificationServiceBootstrap" ref="classificationServiceBootstrap"/>
+      <property name="securityClearanceService" ref="securityClearanceService"/>
    </bean>
 
    <bean id="ClassificationService" class="org.springframework.aop.framework.ProxyFactoryBean">

rm-server/config/alfresco/module/org_alfresco_module_rm/module-context.xml

@@ -23,6 +23,7 @@
       <property name="nodeService" ref="nodeService" />
       <property name="modulePatchExecuter" ref="rm.modulePatchExecuter" />
       <property name="recordContributorsGroupBootstrapComponent" ref="recordContributorsGroupBootstrapComponent"/>
+      <property name="clearancesForSpecialUsersBootstrapComponent" ref="clearancesForSpecialUsersBootstrapComponent"/>
       <property name="moduleId" value="org_alfresco_module_rm"/>
       <property name="name" value="org_alfresco_module_rm_bootstrapData"/>
       <property name="description" value="Bootstrap records management data"/>
@@ -39,12 +40,21 @@
       </property>
    </bean>
 
-	<!-- Record contributors group bootstrap component -->
-	<bean id="recordContributorsGroupBootstrapComponent"
-          class="org.alfresco.module.org_alfresco_module_rm.bootstrap.RecordContributorsGroupBootstrapComponent">
-       <property name="authorityService" ref="AuthorityService" />
-       <property name="authenticationUtil" ref="rm.authenticationUtil"/>
-    </bean>
+   <!-- Record contributors group bootstrap component -->
+   <bean id="recordContributorsGroupBootstrapComponent"
+         class="org.alfresco.module.org_alfresco_module_rm.bootstrap.RecordContributorsGroupBootstrapComponent">
+      <property name="authorityService" ref="AuthorityService" />
+      <property name="authenticationUtil" ref="rm.authenticationUtil"/>
+   </bean>
+
+   <!-- Clearances for special users bootstrap component -->
+   <bean id="clearancesForSpecialUsersBootstrapComponent"
+         class="org.alfresco.module.org_alfresco_module_rm.bootstrap.ClearancesForSpecialUsersBootstrapComponent">
+      <property name="authenticationUtil" ref="rm.authenticationUtil"/>
+      <property name="personService" ref="PersonService"/>
+      <property name="nodeService" ref="NodeService"/>
+      <property name="classificationServiceBootstrap" ref="classificationServiceBootstrap"/>
+   </bean>
 
    <!--  Bootstrap the message property files -->
    <bean id="org_alfresco_module_rm_resourceBundles" class="org.alfresco.i18n.ResourceBundleBootstrapComponent">

rm-server/config/alfresco/module/org_alfresco_module_rm/patch/rm-patch-context.xml

@@ -4,34 +4,35 @@
 <beans>
 
    <!--  rm module patch executer -->
-   <bean id="rm.modulePatchExecuter" parent="module.baseComponent" class="org.alfresco.module.org_alfresco_module_rm.patch.ModulePatchExecuterImpl">   
+   <bean id="rm.modulePatchExecuter" parent="module.baseComponent" class="org.alfresco.module.org_alfresco_module_rm.patch.ModulePatchExecuterImpl">
       <property name="moduleId" value="org_alfresco_module_rm"/>
       <property name="description" value="RM patch executer"/>
       <property name="sinceVersion" value="2.2"/>
       <property name="executeOnceOnly" value="false"/>
-      <property name="moduleSchema" value="1012"/>      
-      <property name="attributeService" ref="AttributeService" />   
+      <property name="moduleSchema" value="2001"/>
+      <property name="attributeService" ref="AttributeService" />
       <property name="dependsOn">
-      	<list>
-      	   <ref bean="org_alfresco_module_rm_bootstrapData" />
-      	</list>
-      </property> 
+         <list>
+            <ref bean="org_alfresco_module_rm_bootstrapData" />
+         </list>
+      </property>
    </bean>
-   
+
    <!-- rm module patch parent bean -->
    <bean id="rm.parentModulePatch" abstract="true" init-method="init">
       <property name="moduleId" value="org_alfresco_module_rm"/>
       <property name="fixesFromSchema" value="0"/>
       <property name="modulePatchExecuter" ref="rm.modulePatchExecuter"/>
-      <property name="transactionService" ref="transactionService"/>     
+      <property name="transactionService" ref="transactionService"/>
    </bean>
-   
+
    <!-- import patch implementations -->
-   
+
    <import resource="classpath:alfresco/module/org_alfresco_module_rm/patch/rm-patch-v20-context.xml"/>
    <import resource="classpath:alfresco/module/org_alfresco_module_rm/patch/rm-patch-v21-context.xml"/>
    <import resource="classpath:alfresco/module/org_alfresco_module_rm/patch/rm-patch-v22-context.xml"/>
    <import resource="classpath:alfresco/module/org_alfresco_module_rm/patch/rm-patch-v23-context.xml"/>
+   <import resource="classpath:alfresco/module/org_alfresco_module_rm/patch/rm-patch-v30-context.xml"/>
 
    <!-- compatibility beans -->
 

rm-server/config/alfresco/module/org_alfresco_module_rm/patch/rm-patch-v30-context.xml

@@ -0,0 +1,17 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org/dtd/spring-beans.dtd'>
+
+<beans>
+
+   <!-- RM v3.0 Patches -->
+
+   <bean id="rm.clearancesForSpecialUsers"
+         parent="rm.parentModulePatch"
+         class="org.alfresco.module.org_alfresco_module_rm.patch.v30.RMv30ClearancesForSpecialUsers">
+      <property name="description" value="Provide security clearance to the admin and system users."/>
+      <property name="fixesToSchema" value="1012"/>
+      <property name="targetSchema" value="2001"/>
+      <property name="bootstrapComponent" ref="clearancesForSpecialUsersBootstrapComponent"/>
+   </bean>
+
+</beans>