UserManager.java

/**
 * Revenue Settlement and Sharing System GE
 * Copyright (C) 2015, CoNWeT Lab., Universidad Politécnica de Madrid
 * 
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as
 * published by the Free Software Foundation, either version 3 of the
 * License, or (at your option) any later version.
 * 
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU Affero General Public License for more details.
 * 
 * You should have received a copy of the GNU Affero General Public License
 * along with this program. If not, see <http://www.gnu.org/licenses/>.
 */

package es.upm.fiware.rss.service;

import es.upm.fiware.rss.common.properties.AppProperties;
import java.util.Iterator;

import es.upm.fiware.rss.dao.UserDao;
import es.upm.fiware.rss.exception.RSSException;
import es.upm.fiware.rss.exception.UNICAExceptionType;
import es.upm.fiware.rss.model.RSUser;
import es.upm.fiware.rss.model.Role;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;

/**
 *
 * @author fdelavega
 */
@Service
@Transactional
public class UserManager {

    @Autowired
    UserDao userDao;

    @Autowired
    @Qualifier(value = "oauthProperties")
    private AppProperties oauthProperties;

    /**
     * Returns the current user
     * @return RSUser object containig the info of the current user
     * @throws RSSException, if there is not a user object attached to the session
     */
    public RSUser getCurrentUser() throws RSSException {
        RSUser user = userDao.getCurrentUser();

        if (user == null) {
            throw new RSSException(
                    UNICAExceptionType.NON_EXISTENT_RESOURCE_ID,
                    "Your user is not authorized to access the RSS");
        }
        return user;
    }

    /**
     * Checks whether the current user contains a given role
     * @param role
     * @return true if the user contains the given role
     * @throws RSSException, if there is not a user object attached to the session
     */
    public boolean checkRole(String role) throws RSSException{
        boolean found = false;
        RSUser user = this.getCurrentUser();
        Iterator<Role> roles = user.getRoles().iterator();

        while (roles.hasNext() && !found) {
            if (roles.next().getName().equalsIgnoreCase(role)) {
                found = true;
            }
        }
        return found;
    }

    /**
     * Check whether a user contains the role specified in the properties file 
     * as admin of the system
     * @return true, if the role is found
     * @throws RSSException, if there is not a user object attached to the session
     */
    public boolean isAdmin() throws RSSException{
        return this.checkRole(
            oauthProperties.getProperty("config.grantedRole"));
    }
}