/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.cocoon.auth;
import java.io.Serializable;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import java.util.StringTokenizer;
/**
* This object represents the current user. Each user must have a unique
* identifier (per {@link org.apache.cocoon.auth.SecurityHandler}).
*
* @version $Id$
*/
public class StandardUser
implements User, Serializable {
/** The unique id of the user. */
protected String id;
/** The user attributes. */
protected final Map attributes = new HashMap();
/** Cache the roles info. */
protected List roles;
/**
* Create a new user object.
* @param userId The unique identifier for this user.
*/
public StandardUser(final String userId) {
this.id = userId;
}
/**
* Create a new user object.
* If you use this constructor, you have to ensure that the id of the user
* is set accordingly before the user object is used
*/
public StandardUser() {
// nothing to do here, we have to ensure that the id is set!
}
/**
* @see org.apache.cocoon.auth.User#getId()
*/
public String getId() {
return this.id;
}
/**
* @see org.apache.cocoon.auth.User#setAttribute(java.lang.String, java.lang.Object)
*/
public void setAttribute(final String key, final Object value) {
this.attributes.put(key, value);
}
/**
* @see org.apache.cocoon.auth.User#removeAttribute(java.lang.String)
*/
public void removeAttribute(final String key) {
this.attributes.remove(key);
}
/**
* @see org.apache.cocoon.auth.User#getAttribute(java.lang.String)
*/
public Object getAttribute(final String key) {
return this.attributes.get(key);
}
/**
* @see org.apache.cocoon.auth.User#getAttributeNames()
*/
public Iterator getAttributeNames() {
return this.attributes.keySet().iterator();
}
/**
* Check if the user is in a given role. This default implementation
* checks the two attributes "roles" and "role". If the incomming role
* is found in one of the two attributes, true is returned.
* Subclasses should override this method.
*
* @param role The role to test.
* @return Returns true if the user has the role, otherwise false.
* @see org.apache.cocoon.auth.User#isUserInRole(java.lang.String)
*/
public boolean isUserInRole(final String role) {
if ( this.roles == null ) {
this.roles = new ArrayList();
final Object allRoles = this.getAttribute("roles");
if ( allRoles != null && allRoles instanceof String ) {
final StringTokenizer st = new StringTokenizer( (String)allRoles, ",");
while ( st.hasMoreElements() ) {
this.roles.add(st.nextElement());
}
}
final Object singleRole = this.getAttribute("role");
if ( singleRole != null && singleRole instanceof String ) {
this.roles.add(singleRole);
}
}
return this.roles.contains( role );
}
}