DemoAuthorizationStrategy.java example

Explorer

brix-cms-plugins-master
- brix-markupeditor-codepress
  - src
    - main
      - java
        brix
        codepress
        CodePressEnabler.java
        CodePressMarkupEditorFactory.java
- brix-markupeditor-tinymce
  - src
    - main
      - java
        brix
        tinymce
        TinyMceEnabler.java
        TinyMceMarkupEditorFactory.java
- brix-plugin-content
  - src
    - main
      - java
        org
        brixcms
        plugin
        content
        ContentPlugin.java
        ContentPluginLocator.java
        ContentRootNode.java
        auth
        ContentPluginAuthorizationStrategy.java
        PostNodeAction.java
        blog
        post
        ManagePostNodeTabFactory.java
        PostNode.java
        PostNodePlugin.java
        PostNodeTreeRenderer.java
        admin
        CreatePostPanel.java
        PostEditTab.java
        PostViewTab.java
        editor
        PostEditorFactory.java
        SimplePostEditorFactory.java
        SimplePostEditorPanel.java
        TinymcePostEditorFactory.java
        TinymcePostEditorPanel.java
        resource
        PostResourcePanel.java
        PostResourcesPanel.java
        ResourceConverter.java
        comment
        CommentNode.java
        Commentable.java
        tile
        BaseBlogContainer.java
        BaseBlogPanel.java
        BaseBlogTileEditorPanel.java
        BlogPanel.java
        BlogTile.java
        BlogTileEditorPanel.java
        archive
        ArchiveContainer.java
        ArchiveLinkPanel.java
        ArchivePanel.java
        ArchiveTileEditorPanel.java
        BlogArchiveTile.java
        navigation
        BootstrapAjaxPagingNavigation.java
        BootstrapAjaxPagingNavigator.java
        StatelessPager.java
        StatelessPagination.java
        StatelessPagingNavigationIncrementLink.java
        StatelessPagingNavigationLink.java
        post
        PostContainer.java
        PostDataProvider.java
        PostPanel.java
        PostsPanel.java
        comment
        AddCommentPanel.java
        CommentPanel.java
        CommentsLinkPanel.java
        CommentsPanel.java
        breadcrumb
        BreadcrumbContributor.java
        BreadcrumbRenderer.java
        BreadcrumbTile.java
        BreadcrumbTileEditor.java
        folder
        CreateFolderNodePanel.java
        FolderNode.java
        FolderNodeEditTab.java
        FolderNodePlugin.java
        resource
        FileResourceReference.java
        ResourceUtils.java
        admin
        ManageResourceNodeTabFactory.java
        ResourceNodePlugin.java
        UploadResourcesPanel.java
        ViewPropertiesTab.java
        image
        admin
        ManageImageTabFactory.java
        ViewImagePanel.java
- brix-plugin-hierarchical-node
  - src
    - main
      - java
        org
        brixcms
        plugin
        hierarchical
        HierarchicalNodePlugin.java
        HierarchicalPluginLocator.java
        HierarchicalRepoInitializer.java
        NodeChildFilter.java
        admin
        CreateTitledNodePanel.java
        HierarchicalNodeManagerPanel.java
        NodeEditorPanel.java
        NodeEditorPlugin.java
        NodeEditorPluginEntriesModel.java
        NodeEditorPluginEntry.java
        NodeTreeParentComponent.java
        auth
        AccessHierarchicalNodePluginAction.java
        folder
        FolderDataSource.java
        ListFolderNodesTab.java
        ManageFolderNodeTabFactory.java
        nodes
        SimpleFolderNode.java
        TitledNode.java
- brix-plugin-jpa
  - src
    - main
      - java
        org
        brixcms
        plugin
        jpa
        JpaPlugin.java
        JpaPluginLocator.java
        Persistable.java
        auth
        AccessJpaPluginAction.java
        web
        admin
        EntityManagerEditorPanel.java
        EntityManagerPanel.java
        EntityModel.java
        EntityPlugin.java
        GridDataSource.java
        GridPanel.java
        ManageEntityTabFactory.java
        filter
        FilterPanel.java
        FilterPlugin.java
- brix-plugin-usermgmt
  - src
    - main
      - java
        org
        brixcms
        plugin
        usermgmt
        AbstractManagementService.java
        BaseEntity.java
        BaseEntityFilter.java
        BaseManagementPlugin.java
        ManagementService.java
        role
        Permission.java
        PermissionRepository.java
        Role.java
        RoleFilter.java
        RolePlugin.java
        RolePluginLocator.java
        RoleRepository.java
        admin
        CreateRolePanel.java
        EditTab.java
        ManageRoleTabFactory.java
        RoleEntityPlugin.java
        RolePermissionsEditTab.java
        RolePermissionsTab.java
        ViewTab.java
        filter
        RoleFilterPanel.java
        RoleFilterPlugin.java
        service
        RoleService.java
        RoleServiceImpl.java
        user
        User.java
        UserFilter.java
        UserPlugin.java
        UserPluginLocator.java
        UserRepository.java
        admin
        CreateUserPanel.java
        EditTab.java
        ManageUserTabFactory.java
        UserEntityPlugin.java
        UserRolesEditTab.java
        UserRolesTab.java
        ViewTab.java
        filter
        UserFilterPanel.java
        UserFilterPlugin.java
        service
        UserService.java
        UserServiceImpl.java
- brix-plugins-demo
  - src
    - main
      - java
        org
        brixcms
        plugin
        demo
        ApplicationProperties.java
        BrixApplication.java
        WebInitializer.java
        web
        AbstractWicketApplication.java
        AuthenticatedSession.java
        DemoAuthorizationStrategy.java
        DemoBrix.java
        DemoThreadLocalSessionFactory.java
        WarInitializer.java
        WicketRequestCycleListener.java
        admin
        AdminPage.java
        dav
        ItemFilter.java
        JcrServlet.java
        SimpleServlet.java
        SiteRootLocatorFactory.java
        signin
        BrixSignInPage.java
        BrixSignInPanel.java
        BrixSignOutPage.java

package org.brixcms.plugin.demo.web;

import java.util.Set;

import org.apache.wicket.injection.Injector;
import org.apache.wicket.spring.injection.annot.SpringBean;
import org.brixcms.auth.Action;
import org.brixcms.auth.AuthorizationStrategy;
import org.brixcms.auth.ViewWorkspaceAction;
import org.brixcms.plugin.content.ContentPlugin;
import org.brixcms.plugin.content.auth.ContentPluginAuthorizationStrategy;
import org.brixcms.plugin.site.SitePlugin;
import org.brixcms.plugin.usermgmt.role.PermissionRepository;
import org.brixcms.plugin.usermgmt.user.User;
import org.brixcms.plugin.usermgmt.user.UserRepository;

/**
 * Implementation of {@link AuthorizationStrategy} that allows everything for
 * the purposes of the demo
 *
 * @author dan.simko@gmail.com
 */
public class DemoAuthorizationStrategy extends ContentPluginAuthorizationStrategy {

    public static final String ViewSiteWorkspaceAction = "ViewSiteWorkspaceAction";
    public static final String ViewContentWorkspaceAction = "ViewContentWorkspaceAction";

    @SpringBean
    private UserRepository userRepository;

    @SpringBean
    private PermissionRepository permissionRepository;

    public DemoAuthorizationStrategy() {
        Injector.get().inject(this);
    }

    /**
     * {@inheritDoc}
     */
    @Override
    public boolean isActionAuthorized(Action action) {
        if (!super.isActionAuthorized(action)) {
            return false;
        }
        String permissionName = action.getClass().getSimpleName();
        if (isManagedPermission(permissionName) || action instanceof ViewWorkspaceAction) {
            User user = AuthenticatedSession.get().getUser();
            if (user == null) {
                return false;
            }
            Set<String> permissions = userRepository.getPermissionsNames(user);
            if (action instanceof ViewWorkspaceAction) {
                ViewWorkspaceAction workspaceAction = (ViewWorkspaceAction) action;
                if (SitePlugin.get().isSiteWorkspace(workspaceAction.getWorkspace())) {
                    return permissions.contains(ViewSiteWorkspaceAction);
                } else if (ContentPlugin.get().isContentWorkspace(workspaceAction.getWorkspace())) {
                    return permissions.contains(ViewContentWorkspaceAction);
                }
            }
            return permissions.contains(permissionName);
        }
        return true;
    }

    private boolean isManagedPermission(String permissionName) {
        return permissionRepository.getAllPermissionsNames().contains(permissionName);
    }
}