/*
* Aipo is a groupware program developed by TOWN, Inc.
* Copyright (C) 2004-2015 TOWN, Inc.
* http://www.aipo.com
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation, either version 3 of the
* License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
package com.aimluck.eip.services.accessctl.empty;
import java.util.ArrayList;
import java.util.List;
import org.apache.jetspeed.services.logging.JetspeedLogFactoryService;
import org.apache.jetspeed.services.logging.JetspeedLogger;
import org.apache.turbine.util.RunData;
import com.aimluck.eip.cayenne.om.security.TurbineUser;
import com.aimluck.eip.common.ALEipUser;
import com.aimluck.eip.orm.Database;
import com.aimluck.eip.orm.query.SQLTemplate;
import com.aimluck.eip.services.accessctl.ALAccessControlConstants;
import com.aimluck.eip.services.accessctl.ALAccessControlHandler;
/**
* アクセス権限を管理するクラスです。 <br />
*
*/
public class ALEmptyAccessControlHandler extends ALAccessControlHandler {
@SuppressWarnings("unused")
private static final JetspeedLogger logger = JetspeedLogFactoryService
.getLogger(ALEmptyAccessControlHandler.class.getName());
@Override
public boolean hasAuthority(int userId, String featerName, int aclType) {
if (ALAccessControlConstants.POERTLET_FEATURE_SCHEDULE_OTHER
.equals(featerName)) {
boolean updatable =
(aclType & ALAccessControlConstants.VALUE_ACL_UPDATE) == ALAccessControlConstants.VALUE_ACL_UPDATE;
boolean deletable =
(aclType & ALAccessControlConstants.VALUE_ACL_DELETE) == ALAccessControlConstants.VALUE_ACL_DELETE;
return (!updatable && !deletable);
}
return true;
}
@Override
public List<Integer> getAcceptUserIdsExceptLoginUser(int uid, String feat,
int acl_type) {
StringBuffer sb = new StringBuffer();
sb.append("SELECT ");
sb.append(TurbineUser.USER_ID_PK_COLUMN);
sb.append(" FROM turbine_user WHERE ");
sb.append(TurbineUser.USER_ID_PK_COLUMN);
sb.append(" != #bind($uid)");
String sqlString = sb.toString();
List<TurbineUser> list =
Database.sql(TurbineUser.class, sqlString).param(
"uid",
Integer.valueOf(uid)).fetchList();
List<Integer> userIds = new ArrayList<Integer>();
if ((list == null) || ((list.size()) < 1)) {
return userIds;
}
for (TurbineUser user : list) {
userIds.add(user.getUserId());
}
return userIds;
}
@Override
public List<Integer> getAcceptUserIdsInListExceptLoginUser(int uid,
String feat, int acl_type, List<ALEipUser> ulist) {
List<Integer> userIds = new ArrayList<Integer>();
int u_size;
if ((ulist == null) || (u_size = ulist.size()) < 1) {
return userIds;
}
StringBuffer sb = new StringBuffer();
sb.append("SELECT ");
sb.append(TurbineUser.USER_ID_PK_COLUMN);
sb.append(" FROM turbine_user WHERE (");
sb.append(TurbineUser.USER_ID_PK_COLUMN);
sb.append(" in (");
for (int i = 0; i < u_size; i++) {
sb.append("#bind($").append(Integer.toString(i)).append(")");
if (i + 1 < u_size) {
sb.append(",");
}
}
sb.append(")) AND (");
sb.append(TurbineUser.USER_ID_PK_COLUMN);
sb.append(" != #bind($uid)");
sb.append(")");
String sqlString = sb.toString();
SQLTemplate<TurbineUser> template =
Database.sql(TurbineUser.class, sqlString);
template.param("uid", Integer.valueOf(uid));
for (int i = 0; i < u_size; i++) {
ALEipUser member = ulist.get(i);
template.param(Integer.toString(i), Integer.valueOf((int) member
.getUserId()
.getValue()));
}
List<TurbineUser> list = template.fetchList();
if ((list == null) || ((list.size()) < 1)) {
return userIds;
}
for (TurbineUser tuser : list) {
userIds.add(tuser.getUserId());
}
return userIds;
}
@Override
public List<TurbineUser> getAuthorityUsersFromGroup(RunData rundata,
String feat, String groupname, boolean includeLoginuser) {
StringBuffer statement = new StringBuffer();
statement.append("SELECT DISTINCT ");
statement
.append("B.USER_ID, B.LOGIN_NAME, B.FIRST_NAME, B.LAST_NAME, D.POSITION ");
statement.append("FROM turbine_user_group_role as A ");
statement.append("LEFT JOIN turbine_user as B ");
statement.append("on A.USER_ID = B.USER_ID ");
statement.append("LEFT JOIN turbine_group as C ");
statement.append("on A.GROUP_ID = C.GROUP_ID ");
statement.append("LEFT JOIN eip_m_user_position as D ");
statement.append("on A.USER_ID = D.USER_ID ");
statement.append("WHERE B.DISABLED = 'F'");
statement.append(" AND C.GROUP_NAME = #bind($groupname) ");
statement.append("ORDER BY D.POSITION");
return Database.sql(TurbineUser.class, statement.toString()).param(
"groupname",
groupname).fetchList();
}
@Override
public void insertDefaultRole(int uid) throws Exception {
}
}