/*******************************************************************************
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*******************************************************************************/
package org.apache.ofbiz.minilang.method.conditional;
import java.util.Collections;
import java.util.List;
import org.apache.ofbiz.base.util.UtilValidate;
import org.apache.ofbiz.base.util.UtilXml;
import org.apache.ofbiz.base.util.string.FlexibleStringExpander;
import org.apache.ofbiz.entity.GenericValue;
import org.apache.ofbiz.minilang.MiniLangException;
import org.apache.ofbiz.minilang.MiniLangValidate;
import org.apache.ofbiz.minilang.SimpleMethod;
import org.apache.ofbiz.minilang.artifact.ArtifactInfoContext;
import org.apache.ofbiz.minilang.method.MethodContext;
import org.apache.ofbiz.minilang.method.MethodOperation;
import org.apache.ofbiz.security.Security;
import org.w3c.dom.Element;
/**
* Implements the <if-has-permission> element.
*
* @see <a href="https://cwiki.apache.org/confluence/display/OFBADMIN/Mini+Language+-+minilang+-+simple-method+-+Reference">Mini-language Reference</a>
*/
public final class HasPermissionCondition extends MethodOperation implements Conditional {
private final FlexibleStringExpander actionFse;
private final FlexibleStringExpander permissionFse;
// Sub-operations are used only when this is a method operation.
private final List<MethodOperation> elseSubOps;
private final List<MethodOperation> subOps;
public HasPermissionCondition(Element element, SimpleMethod simpleMethod) throws MiniLangException {
super(element, simpleMethod);
if (MiniLangValidate.validationOn()) {
MiniLangValidate.attributeNames(simpleMethod, element, "permission", "action");
MiniLangValidate.requiredAttributes(simpleMethod, element, "permission");
MiniLangValidate.constantPlusExpressionAttributes(simpleMethod, element, "permission", "action");
}
this.permissionFse = FlexibleStringExpander.getInstance(element.getAttribute("permission"));
this.actionFse = FlexibleStringExpander.getInstance(element.getAttribute("action"));
Element childElement = UtilXml.firstChildElement(element);
if (childElement != null && !"else".equals(childElement.getTagName())) {
this.subOps = Collections.unmodifiableList(SimpleMethod.readOperations(element, simpleMethod));
} else {
this.subOps = null;
}
Element elseElement = UtilXml.firstChildElement(element, "else");
if (elseElement != null) {
this.elseSubOps = Collections.unmodifiableList(SimpleMethod.readOperations(elseElement, simpleMethod));
} else {
this.elseSubOps = null;
}
}
@Override
public boolean checkCondition(MethodContext methodContext) throws MiniLangException {
GenericValue userLogin = methodContext.getUserLogin();
if (userLogin != null) {
Security security = methodContext.getSecurity();
String permission = permissionFse.expandString(methodContext.getEnvMap());
String action = actionFse.expandString(methodContext.getEnvMap());
if (!action.isEmpty()) {
if (security.hasEntityPermission(permission, action, userLogin)) {
return true;
}
} else {
if (security.hasPermission(permission, userLogin)) {
return true;
}
}
}
return false;
}
@Override
public boolean exec(MethodContext methodContext) throws MiniLangException {
if (checkCondition(methodContext)) {
if (this.subOps != null) {
return SimpleMethod.runSubOps(subOps, methodContext);
}
} else {
if (elseSubOps != null) {
return SimpleMethod.runSubOps(elseSubOps, methodContext);
}
}
return true;
}
@Override
public void gatherArtifactInfo(ArtifactInfoContext aic) {
if (this.subOps != null) {
for (MethodOperation method : this.subOps) {
method.gatherArtifactInfo(aic);
}
}
if (this.elseSubOps != null) {
for (MethodOperation method : this.elseSubOps) {
method.gatherArtifactInfo(aic);
}
}
}
public void prettyPrint(StringBuilder messageBuffer, MethodContext methodContext) {
messageBuffer.append("has-permission[");
messageBuffer.append(this.permissionFse);
if (UtilValidate.isNotEmpty(this.actionFse)) {
messageBuffer.append(":");
messageBuffer.append(this.actionFse);
}
messageBuffer.append("]");
}
@Override
public String toString() {
StringBuilder sb = new StringBuilder("<if-has-permission ");
if (!this.permissionFse.isEmpty()) {
sb.append("permission=\"").append(this.permissionFse).append("\" ");
}
if (!this.actionFse.isEmpty()) {
sb.append("action=\"").append(this.actionFse).append("\" ");
}
sb.append("/>");
return sb.toString();
}
/**
* A <if-has-permission> element factory.
*/
public static final class HasPermissionConditionFactory extends ConditionalFactory<HasPermissionCondition> implements Factory<HasPermissionCondition> {
@Override
public HasPermissionCondition createCondition(Element element, SimpleMethod simpleMethod) throws MiniLangException {
return new HasPermissionCondition(element, simpleMethod);
}
@Override
public HasPermissionCondition createMethodOperation(Element element, SimpleMethod simpleMethod) throws MiniLangException {
return new HasPermissionCondition(element, simpleMethod);
}
@Override
public String getName() {
return "if-has-permission";
}
}
}