/**
* Copyright (c) 2000-present Liferay, Inc. All rights reserved.
*
* This library is free software; you can redistribute it and/or modify it under
* the terms of the GNU Lesser General Public License as published by the Free
* Software Foundation; either version 2.1 of the License, or (at your option)
* any later version.
*
* This library is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
* FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more
* details.
*/
package com.liferay.portlet.social.service.permission;
import com.liferay.portal.kernel.exception.PortalException;
import com.liferay.portal.kernel.security.auth.PrincipalException;
import com.liferay.portal.kernel.security.permission.ActionKeys;
import com.liferay.portal.kernel.security.permission.PermissionChecker;
import com.liferay.social.kernel.model.SocialRequest;
import com.liferay.social.kernel.service.SocialRequestLocalServiceUtil;
import com.liferay.social.kernel.service.permission.SocialRequestPermission;
/**
* @author Shinn Lok
*/
public class SocialRequestPermissionImpl implements SocialRequestPermission {
@Override
public void check(
PermissionChecker permissionChecker, long requestId,
String actionId)
throws PortalException {
if (!contains(permissionChecker, requestId, actionId)) {
throw new PrincipalException.MustHavePermission(
permissionChecker, SocialRequest.class.getName(), requestId,
actionId);
}
}
@Override
public boolean contains(
PermissionChecker permissionChecker, long requestId,
String actionId)
throws PortalException {
if (permissionChecker.isOmniadmin()) {
return true;
}
if (actionId.equals(ActionKeys.UPDATE)) {
SocialRequest request =
SocialRequestLocalServiceUtil.getSocialRequest(requestId);
if (permissionChecker.getUserId() == request.getReceiverUserId()) {
return true;
}
}
return false;
}
}