com.aoindustries.website.PermissionAction Maven / Gradle / Ivy
/*
* aoweb-struts-core - Core API for legacy Struts-based site framework with AOServ Platform control panels.
* Copyright (C) 2007-2009, 2016, 2018, 2019 AO Industries, Inc.
* [email protected]
* 7262 Bull Pen Cir
* Mobile, AL 36695
*
* This file is part of aoweb-struts-core.
*
* aoweb-struts-core is free software: you can redistribute it and/or modify
* it under the terms of the GNU Lesser General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* aoweb-struts-core is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with aoweb-struts-core. If not, see List<AOServConnector> and returns mapping for "permissionDenied".
* Otherwise, if all the permissions have been granted, calls executePermissionGranted.
*
* The default implementation of this new executePermissionGranted method simply returns the mapping
* of "success".
*
* @author AO Industries, Inc.
*/
abstract public class PermissionAction extends AuthenticatedAction {
@Override
final public ActionForward execute(
ActionMapping mapping,
ActionForm form,
HttpServletRequest request,
HttpServletResponse response,
SiteSettings siteSettings,
Locale locale,
Skin skin,
AOServConnector aoConn
) throws Exception {
List permissions = getPermissions();
// No permissions defined, default to denied
if(permissions==null || permissions.isEmpty()) {
List aoPerms = Collections.emptyList();
return executePermissionDenied(
mapping,
form,
request,
response,
siteSettings,
locale,
skin,
aoConn,
aoPerms
);
}
Administrator thisBA = aoConn.getThisBusinessAdministrator();
// Return denied on first missing permission
for(Permission.Name permission : permissions) {
if(!thisBA.hasPermission(permission)) {
List aoPerms = new ArrayList<>(permissions.size());
for(Permission.Name requiredPermission : permissions) {
Permission aoPerm = aoConn.getMaster().getPermission().get(requiredPermission);
if(aoPerm==null) throw new SQLException("Unable to find AOServPermission: "+requiredPermission);
aoPerms.add(aoPerm);
}
return executePermissionDenied(
mapping,
form,
request,
response,
siteSettings,
locale,
skin,
aoConn,
aoPerms
);
}
}
// All permissions found, consider granted
return executePermissionGranted(mapping, form, request, response, siteSettings, locale, skin, aoConn);
}
/**
* Called when permission has been granted. By default,
* returns mapping for "success".
*/
public ActionForward executePermissionGranted(
ActionMapping mapping,
ActionForm form,
HttpServletRequest request,
HttpServletResponse response,
SiteSettings siteSettings,
Locale locale,
Skin skin,
AOServConnector aoConn
) throws Exception {
return mapping.findForward("success");
}
/**
* Called when the permissions has been denied. By default,
* sets request attribute Constants.PERMISSION_DENIED
* and returns mapping for "permission-denied".
*/
public ActionForward executePermissionDenied(
ActionMapping mapping,
ActionForm form,
HttpServletRequest request,
HttpServletResponse response,
SiteSettings siteSettings,
Locale locale,
Skin skin,
AOServConnector aoConn,
List permissions
) throws Exception {
request.setAttribute(Constants.PERMISSION_DENIED, permissions);
return mapping.findForward("permission-denied");
}
/**
* Gets the list of permissions that are required for this action. Returning a null or empty list will result in nothing being allowed.
*
* @see Permission
*/
// TODO: Should this be EnumSet?
abstract public List getPermissions();
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy