All Downloads are FREE. Search and download functionalities are using the official Maven repository.

com.cognifide.cq.cqsm.foundation.actions.allow.Allow Maven / Gradle / Ivy

There is a newer version: 3.2.0
Show newest version
/*-
 * ========================LICENSE_START=================================
 * AEM Permission Management
 * %%
 * Copyright (C) 2013 Cognifide Limited
 * %%
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * 
 *      http://www.apache.org/licenses/LICENSE-2.0
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 * =========================LICENSE_END==================================
 */
package com.cognifide.cq.cqsm.foundation.actions.allow;

import com.cognifide.cq.cqsm.api.actions.Action;
import com.cognifide.cq.cqsm.api.actions.ActionResult;
import com.cognifide.cq.cqsm.api.exceptions.ActionExecutionException;
import com.cognifide.cq.cqsm.api.executors.Context;
import com.cognifide.cq.cqsm.core.utils.MessagingUtils;
import com.cognifide.cq.cqsm.foundation.permissions.PermissionActionHelper;
import com.cognifide.cq.cqsm.foundation.permissions.exceptions.PermissionException;

import org.apache.commons.lang.StringUtils;
import org.apache.jackrabbit.api.security.user.Authorizable;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import java.util.Collections;
import java.util.List;

import javax.jcr.PathNotFoundException;
import javax.jcr.RepositoryException;

public class Allow implements Action {

	private static final Logger LOGGER = LoggerFactory.getLogger(Allow.class);

	private final String path;

	private final String glob;

	private final boolean ignoreInexistingPaths;

	private final List permissions;

	public Allow(String path, String glob, boolean ignoreInexistingPaths, final List permissions) {
		this.path = path;
		this.glob = glob;
		this.ignoreInexistingPaths = ignoreInexistingPaths;
		this.permissions = permissions;
	}

	@Override
	public ActionResult simulate(final Context context) {
		return process(context, true);
	}

	@Override
	public ActionResult execute(final Context context) {
		return process(context, false);
	}

	private ActionResult process(final Context context, boolean simulate) {
		ActionResult actionResult = new ActionResult();
		try {
			Authorizable authorizable = context.getCurrentAuthorizable();
			actionResult.setAuthorizable(authorizable.getID());
			context.getSession().getNode(path);
			final PermissionActionHelper permissionActionHelper = new PermissionActionHelper(
					context.getValueFactory(), path, glob, permissions);
			LOGGER.info(String.format("Adding permissions %s for authorizable with id = %s for path = %s %s",
					permissions.toString(), context.getCurrentAuthorizable().getID(), path,
					StringUtils.isEmpty(glob) ? "" : ("glob = " + glob)));
			if (simulate) {
				permissionActionHelper.checkPermissions(context.getAccessControlManager());
			} else {
				permissionActionHelper
						.applyPermissions(context.getAccessControlManager(), authorizable.getPrincipal(),
								true);
			}
			actionResult.logMessage("Added allow privilege for " + authorizable.getID() + " on " + path);
			if (permissions.contains("MODIFY")) {
				String preparedGlob = "";
				if (!StringUtils.isBlank(glob)) {
					preparedGlob = glob;
					if (StringUtils.endsWith(glob, "*")) {
						preparedGlob = StringUtils.substring(glob, 0, StringUtils.lastIndexOf(glob, '*'));
					}
				}
				new Allow(path, preparedGlob + "*/jcr:content*", ignoreInexistingPaths,
						Collections.singletonList("MODIFY_PAGE")).process(context, simulate);
			}
		} catch (final PathNotFoundException e) {
			if (ignoreInexistingPaths) {
				actionResult.logWarning("Path " + path + " not found");
			} else {
				actionResult.logError("Path " + path + " not found");
				return actionResult;
			}
		} catch (RepositoryException | PermissionException | ActionExecutionException e) {
			actionResult.logError(MessagingUtils.createMessage(e));
		}
		return actionResult;
	}

	@Override
	public boolean isGeneric() {
		return false;
	}

}




© 2015 - 2024 Weber Informatics LLC | Privacy Policy