/*
* JBoss, Home of Professional Open Source.
* Copyright 2008, Red Hat Middleware LLC, and individual contributors
* as indicated by the @author tags. See the copyright.txt file in the
* distribution for a full listing of individual contributors.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.jboss.test.jacc.test.portal;
import org.jboss.logging.Logger;
import java.io.Serializable;
import java.security.Permission;
import java.security.PermissionCollection;
import java.util.StringTokenizer;
/**
* Portal permission class for authorisation checks.
* <p>This class is an extension to the JACC mechanism to allow configurable and dynamically modifiable permissions.</p>
* <p/>
* Note: for now this is a final class. We might want to have subclasses of it later though.
*
* @author <a href="mailto:mholzner@novell.com">Martin Holzner</a>
* @version $Revision: 81036 $
*/
public class PortalObjectPermission extends PortalPermission implements Serializable
{
private static Logger log = Logger.getLogger(PortalObjectPermission.class);
/**
* The view action.
*/
public static final String VIEW = "view";
private static final int VIEW_MASK = 0x00000001;
private final String uri;
private final int mask;
private final String actions;
private boolean trace;
/**
* Create a permission for the specified resource.
*
* @param uri handle of the resource that is being protected.
* @param actions the allowed actions (or the actions to check for access) as a comma separated list
* @throws IllegalArgumentException if the provided arguments are null or the actions string
* doesn't contain any valid actions
*/
public PortalObjectPermission(String uri, String actions)
{
super(uri);
//
if (uri == null || actions == null)
{
throw new IllegalArgumentException("Arguments must not be null [" + uri + "][" + actions + "]");
}
//
int mask = 0;
StringTokenizer tokens = new StringTokenizer(actions, ",");
while (tokens.hasMoreTokens())
{
String action = tokens.nextToken().trim();
if (VIEW.equals(action))
{
mask |= VIEW_MASK;
}
else
{
log.warn("Unknown action in string [" + action + "] will be ignored");
}
}
//
this.mask = mask;
this.uri = uri;
this.actions = actions;
this.trace = log.isTraceEnabled();
}
public boolean equals(Object o)
{
if (this == o)
{
return true;
}
if (o == null || getClass() != o.getClass())
{
return false;
}
final PortalObjectPermission that = (PortalObjectPermission)o;
if (!uri.equals(that.uri))
{
return false;
}
if (that.mask != this.mask)
{
return false;
}
return true;
}
public int hashCode()
{
int result;
result = mask;
result = 29 * result + uri.hashCode();
return result;
}
public String toString()
{
return "PortalObjectPermission[" + uri + "] [" + actions + "]";
}
public String getActions()
{
return actions;
}
public String getURI()
{
return uri;
}
public boolean implies(Permission permission)
{
if (trace)
{
log.trace("implies ? " + getURI() + ": [" + permission + "]");
}
if (permission instanceof PortalObjectPermission)
{
PortalObjectPermission other = (PortalObjectPermission)permission;
/*
* return uri.equals(other.uri) && (this.mask & other.mask) == other.mask;
*/
/**Anil changed the implies of this portalobjectpermission */
return (uri.equals(other.uri) || other.uri.startsWith(uri)) &&
(this.mask & other.mask) == other.mask ;
}
else
{
return false;
}
}
public PermissionCollection newPermissionCollection()
{
//return new PortalObjectPermissionCollection();
return new LazyPermissionCollection();
}
public String getType()
{
return "portalobject";
}
}