inteligr8/alfresco-community-repo
1
0
Fork 0
mirror of https://github.com/Alfresco/alfresco-community-repo.git synced 2025-10-08 14:51:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
5730cefc7c1d45fbf424a7f336c207429ec4c47d
alfresco-community-repo/source/java/org/alfresco/repo/virtual/bundle/VirtualPermissionServiceExtension.java
Ancuta Morarasu f84a7bf2f3 Merged MNT-17845-5.2.N (5.2.2) to 5.2.N (5.2.2) 
137772 anechifor: REPO-2516 - MNT-17845 : Smart Folders - subtitute isReference with fromNodeRef


git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/BRANCHES/DEV/5.2.N/root@137782 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
2017-06-23 11:37:10 +00:00

580 lines
18 KiB
Java
Raw Blame History

/*
* #%L
* Alfresco Repository
* %%
* Copyright (C) 2005 - 2016 Alfresco Software Limited
* %%
* This file is part of the Alfresco software.
* If the software was purchased under a paid Alfresco license, the terms of
* the paid license agreement will prevail. Otherwise, the software is
* provided under the following open source license terms:
*
* Alfresco is free software: you can redistribute it and/or modify
* it under the terms of the GNU Lesser General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* Alfresco is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with Alfresco. If not, see <http://www.gnu.org/licenses/>.
* #L%
*/
package org.alfresco.repo.virtual.bundle;
import java.util.Collections;
import java.util.HashSet;
import java.util.LinkedList;
import java.util.List;
import java.util.Set;
import org.alfresco.repo.security.permissions.NodePermissionEntry;
import org.alfresco.repo.security.permissions.PermissionEntry;
import org.alfresco.repo.security.permissions.PermissionReference;
import org.alfresco.repo.security.permissions.impl.SimpleNodePermissionEntry;
import org.alfresco.repo.security.permissions.impl.traitextender.PermissionServiceExtension;
import org.alfresco.repo.security.permissions.impl.traitextender.PermissionServiceTrait;
import org.alfresco.repo.virtual.ref.Reference;
import org.alfresco.repo.virtual.store.VirtualStore;
import org.alfresco.service.cmr.repository.NodeRef;
import org.alfresco.service.cmr.repository.StoreRef;
import org.alfresco.service.cmr.security.AccessPermission;
import org.alfresco.service.cmr.security.AccessStatus;
import org.alfresco.service.cmr.security.PermissionContext;
import org.alfresco.service.namespace.QName;
import org.alfresco.traitextender.SpringBeanExtension;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
public class VirtualPermissionServiceExtension extends
SpringBeanExtension<PermissionServiceExtension, PermissionServiceTrait> implements
PermissionServiceExtension
{
private static Log logger = LogFactory.getLog(VirtualPermissionServiceExtension.class);
private VirtualStore smartStore;
public VirtualPermissionServiceExtension()
{
super(PermissionServiceTrait.class);
}
public void setSmartStore(VirtualStore smartStore)
{
this.smartStore = smartStore;
}
public AccessStatus hasPermission(NodeRef nodeRef, String perm)
{
PermissionServiceTrait theTrait = getTrait();
Reference reference = Reference.fromNodeRef(nodeRef);
if (reference == null)
{
return theTrait.hasPermission(nodeRef,
perm);
}
else
{
AccessStatus virtualAccessStatus = smartStore.hasPermission(reference,
perm);
if (!AccessStatus.UNDETERMINED.equals(virtualAccessStatus))
{
return virtualAccessStatus;
}
else
{
NodeRef nodeToAdhereTo = establishPermisisonAdherence(reference);
if (nodeToAdhereTo == null)
{
return AccessStatus.UNDETERMINED;
}
else
{
return theTrait.hasPermission(nodeToAdhereTo,
perm);
}
}
}
}
public AccessStatus hasPermission(NodeRef nodeRef, PermissionReference perm)
{
PermissionServiceTrait theTrait = getTrait();
Reference reference = Reference.fromNodeRef(nodeRef);
if (reference == null)
{
return theTrait.hasPermission(nodeRef,
perm);
}
else
{
AccessStatus virtualAccessStatus = smartStore.hasPermission(reference,
perm);
if (!AccessStatus.UNDETERMINED.equals(virtualAccessStatus))
{
return virtualAccessStatus;
}
else
{
NodeRef nodeToAdhereTo = establishPermisisonAdherence(reference);
if (nodeToAdhereTo == null)
{
return AccessStatus.UNDETERMINED;
}
else
{
return theTrait.hasPermission(nodeToAdhereTo,
perm);
}
}
}
}
@Override
public PermissionReference getAllPermissionReference()
{
return getTrait().getAllPermissionReference();
}
@Override
public Set<PermissionReference> getSettablePermissionReferences(QName type)
{
return getTrait().getSettablePermissionReferences(type);
}
@Override
public Set<PermissionReference> getSettablePermissionReferences(NodeRef nodeRef)
{
Reference reference = Reference.fromNodeRef(nodeRef);
if (reference == null)
{
return getTrait().getSettablePermissionReferences(nodeRef);
}
else
{
return Collections.emptySet();
}
}
@Override
public NodePermissionEntry getSetPermissions(NodeRef nodeRef)
{
PermissionServiceTrait theTrait = getTrait();
Reference reference = Reference.fromNodeRef(nodeRef);
if (reference == null)
{
return theTrait.getSetPermissions(nodeRef);
}
else
{
NodePermissionEntry virtualSetPermissions = smartStore.getSetPermissions(reference);
NodeRef nodeToAdhereTo = establishPermisisonAdherence(reference);
List<? extends PermissionEntry> actualPermissionEntries;
boolean inheritPermissions = false;
if (nodeToAdhereTo != null)
{
NodePermissionEntry actualSetPermissions = theTrait.getSetPermissions(nodeToAdhereTo);
actualPermissionEntries = actualSetPermissions.getPermissionEntries();
inheritPermissions = actualSetPermissions.inheritPermissions();
}
else
{
actualPermissionEntries = Collections.emptyList();
inheritPermissions = false;
}
List<PermissionEntry> mergedEntries = new LinkedList<>();
List<? extends PermissionEntry> virtualPermissionEntries = virtualSetPermissions.getPermissionEntries();
Set<QName> overridenPermissions = new HashSet<>();
for (PermissionEntry permissionEntry : virtualPermissionEntries)
{
overridenPermissions.add(permissionEntry.getPermissionReference().getQName());
mergedEntries.add(permissionEntry);
}
for (PermissionEntry permissionEntry : actualPermissionEntries)
{
if (!overridenPermissions.contains(permissionEntry.getPermissionReference().getQName()))
{
mergedEntries.add(permissionEntry);
}
}
return new SimpleNodePermissionEntry(nodeRef,
inheritPermissions,
mergedEntries);
}
}
private NodeRef establishPermisisonAdherence(Reference reference)
{
NodeRef nodeToAdhereTo = smartStore.adhere(reference,
VirtualStore.FILING_OR_MATERIAL_ADHERENCE);
if (logger.isDebugEnabled())
{
if (nodeToAdhereTo == null)
{
logger.debug("Could not establish permission adherence for " + reference.toString());
}
}
return nodeToAdhereTo;
}
@Override
public NodePermissionEntry explainPermission(NodeRef nodeRef, PermissionReference perm)
{
return getTrait().explainPermission(smartStore.materializeIfPossible(nodeRef),
perm);
}
@Override
public void deletePermissions(NodePermissionEntry nodePermissionEntry)
{
if (Reference.fromNodeRef(nodePermissionEntry.getNodeRef()) == null)
{
getTrait().deletePermissions(nodePermissionEntry);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void deletePermission(PermissionEntry permissionEntry)
{
if (Reference.fromNodeRef(permissionEntry.getNodeRef()) == null)
{
getTrait().deletePermission(permissionEntry);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void setPermission(PermissionEntry permissionEntry)
{
if (Reference.fromNodeRef(permissionEntry.getNodeRef())==null)
{
getTrait().setPermission(permissionEntry);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void setPermission(NodePermissionEntry nodePermissionEntry)
{
if (Reference.fromNodeRef(nodePermissionEntry.getNodeRef()) == null)
{
getTrait().setPermission(nodePermissionEntry);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public PermissionReference getPermissionReference(QName qname, String permissionName)
{
return getTrait().getPermissionReference(permissionName);
}
@Override
public PermissionReference getPermissionReference(String permissionName)
{
return getTrait().getPermissionReference(permissionName);
}
@Override
public String getPermission(PermissionReference permissionReference)
{
return getTrait().getPermission(permissionReference);
}
@Override
public void deletePermissions(String recipient)
{
getTrait().deletePermissions(recipient);
}
@Override
public NodePermissionEntry getSetPermissions(StoreRef storeRef)
{
return getTrait().getSetPermissions(storeRef);
}
@Override
public String getOwnerAuthority()
{
return getTrait().getOwnerAuthority();
}
@Override
public String getAllAuthorities()
{
return getTrait().getAllAuthorities();
}
@Override
public String getAllPermission()
{
return getTrait().getAllPermission();
}
@Override
public Set<AccessPermission> getPermissions(NodeRef nodeRef)
{
PermissionServiceTrait theTrait = getTrait();
Reference reference = Reference.fromNodeRef(nodeRef);
if (reference == null)
{
return theTrait.getPermissions(nodeRef);
}
else
{
Set<AccessPermission> virtualSetPermissions = smartStore.getAllSetPermissions(reference);
NodeRef nodeToAdhereTo = establishPermisisonAdherence(reference);
Set<AccessPermission> mergedEntries = new HashSet<>(virtualSetPermissions);
if (nodeToAdhereTo != null)
{
Set<AccessPermission> actualSetPermissions = theTrait.getPermissions(nodeToAdhereTo);
mergedEntries.addAll(actualSetPermissions);
}
return mergedEntries;
}
}
@Override
public Set<AccessPermission> getAllSetPermissions(NodeRef nodeRef)
{
PermissionServiceTrait theTrait = getTrait();
Reference reference = Reference.fromNodeRef(nodeRef);
if (reference == null)
{
return theTrait.getAllSetPermissions(nodeRef);
}
else
{
Set<AccessPermission> virtualSetPermissions = smartStore.getAllSetPermissions(reference);
NodeRef nodeToAdhereTo = establishPermisisonAdherence(reference);
Set<AccessPermission> actualSetPermissions;
if (nodeToAdhereTo != null)
{
actualSetPermissions = theTrait.getAllSetPermissions(nodeToAdhereTo);
}
else
{
actualSetPermissions = Collections.emptySet();
}
Set<String> overridenPermissions = new HashSet<>();
Set<AccessPermission> mergedEntries = new HashSet<>();
for (AccessPermission permission : virtualSetPermissions)
{
overridenPermissions.add(permission.getPermission());
mergedEntries.add(permission);
}
for (AccessPermission permission : actualSetPermissions)
{
if (!overridenPermissions.contains(permission.getPermission()))
{
mergedEntries.add(permission);
}
}
return mergedEntries;
}
}
@Override
public Set<String> getSettablePermissions(NodeRef nodeRef)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
return getTrait().getSettablePermissions(nodeRef);
}
else
{
return Collections.emptySet();
}
}
@Override
public Set<String> getSettablePermissions(QName type)
{
return getTrait().getSettablePermissions(type);
}
@Override
public AccessStatus hasReadPermission(NodeRef nodeRef)
{
return getTrait().hasReadPermission(nodeRef);
}
@Override
public Set<String> getReaders(Long aclId)
{
return getTrait().getReaders(aclId);
}
@Override
public Set<String> getReadersDenied(Long aclId)
{
return getTrait().getReadersDenied(aclId);
}
@Override
public AccessStatus hasPermission(Long aclID, PermissionContext context, String permission)
{
return getTrait().hasPermission(aclID,
context,
permission);
}
@Override
public void deletePermissions(NodeRef nodeRef)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
getTrait().deletePermissions(nodeRef);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void clearPermission(NodeRef nodeRef, String authority)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
getTrait().clearPermission(nodeRef,
authority);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void deletePermission(NodeRef nodeRef, String authority, String permission)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
getTrait().deletePermission(nodeRef,
authority,
permission);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void setPermission(NodeRef nodeRef, String authority, String permission, boolean allow)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
getTrait().setPermission(nodeRef,
authority,
permission,
allow);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public void setInheritParentPermissions(NodeRef nodeRef, boolean inheritParentPermissions)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
getTrait().setInheritParentPermissions(nodeRef,
inheritParentPermissions);
}
else
{
// no action taken on virtual nodes
}
}
@Override
public boolean getInheritParentPermissions(NodeRef nodeRef)
{
if (Reference.fromNodeRef(nodeRef) == null)
{
return getTrait().getInheritParentPermissions(nodeRef);
}
else
{
return false;
}
}
@Override
public void setPermission(StoreRef storeRef, String authority, String permission, boolean allow)
{
getTrait().setPermission(storeRef,
authority,
permission,
allow);
}
@Override
public void deletePermission(StoreRef storeRef, String authority, String permission)
{
getTrait().deletePermission(storeRef,
authority,
permission);
}
@Override
public void clearPermission(StoreRef storeRef, String authority)
{
getTrait().clearPermission(storeRef,
authority);
}
@Override
public void deletePermissions(StoreRef storeRef)
{
getTrait().deletePermissions(storeRef);
}
@Override
public Set<AccessPermission> getAllSetPermissions(StoreRef storeRef)
{
return getTrait().getAllSetPermissions(storeRef);
}
@Override
public Set<String> getAuthorisations()
{
return getTrait().getAuthorisations();
}
@Override
public void setInheritParentPermissions(NodeRef nodeRef, boolean inheritParentPermissions, boolean asyncCall)
{
getTrait().setInheritParentPermissions(nodeRef, inheritParentPermissions, asyncCall);
}
}
Reference in New Issue View Git Blame Copy Permalink