GroupAdminController.java

/*
 * Copyright (c) JForum Team. All rights reserved.
 *
 * The software in this package is published under the terms of the LGPL
 * license a copy of which has been included with this distribution in the
 * license.txt file.
 *
 * The JForum Project
 * http://www.jforum.net
 */
package net.jforum.controllers;

import java.util.ArrayList;
import java.util.Arrays;
import java.util.Enumeration;
import java.util.HashMap;
import java.util.List;
import java.util.Map;

import javax.servlet.http.HttpServletRequest;

import net.jforum.actions.helpers.Domain;
import net.jforum.core.SecurityConstraint;
import net.jforum.entities.Group;
import net.jforum.entities.UserSession;
import net.jforum.repository.CategoryRepository;
import net.jforum.repository.GroupRepository;
import net.jforum.security.AdministrationRule;
import net.jforum.security.RoleManager;
import net.jforum.services.GroupService;
import br.com.caelum.vraptor.Path;
import br.com.caelum.vraptor.Resource;
import br.com.caelum.vraptor.Result;

/**
 * @author Rafael Steil
 */
@Resource
@Path(Domain.GROUPS_ADMIN)
@SecurityConstraint(value = AdministrationRule.class, displayLogin = true)
public class GroupAdminController {
	private GroupRepository groupRepository;
	private CategoryRepository categoryRepository;
	private GroupService service;
	private final Result result;
	private final UserSession userSession;
	private final HttpServletRequest request;

	public GroupAdminController(GroupService service, GroupRepository repository,
			CategoryRepository categoryRepository, Result result, UserSession userSession,
			HttpServletRequest request) {
		this.service = service;
		this.groupRepository = repository;
		this.categoryRepository = categoryRepository;
		this.userSession = userSession;
		this.result = result;
		this.request = request;
	}

	/**
	 * Shows the page to set permissions for a specific group
	 *
	 * @param groupId the group id
	 */
	public void permissions(int groupId) {
		Group group = this.groupRepository.get(groupId);
		RoleManager roleManager = this.userSession.getRoleManager();

		if (!roleManager.isAdministrator() && !roleManager.isGroupManager(groupId)) {
			this.result.redirectTo(this).list();
		}
		else {
			this.result.include("group", group);
			this.result.include("groups", this.groupRepository.getAllGroups());
			this.result.include("categories", this.categoryRepository.getAllCategories());

			RoleManager groupRoleManager = new RoleManager();
			groupRoleManager.setGroups(Arrays.asList(group));
			this.result.include("roleManager", groupRoleManager);
		}
	}

	/**
	 * Save the permissions for this group
	 *
	 * @param groupId the id of the group to save
	 * @param permissions the set of permissions of this group
	 */
	public void permissionsSave(int groupId) {
		RoleManager roleManager = this.userSession.getRoleManager();

		if (roleManager.isAdministrator() || roleManager.isGroupManager(groupId)) {
			this.service.savePermissions(groupId, extractPermissionsFromRequest());
		}

		this.result.redirectTo(this).list();
	}

	private Map<String, Map<String, List<?>>> extractPermissionsFromRequest() {
		Map<String, Map<String, List<?>>> m = new HashMap<String, Map<String,List<?>>>();
		m.put("boolean", new HashMap<String, List<?>>());
		m.put("multiple", new HashMap<String, List<?>>());

		for (Enumeration<?> e = request.getParameterNames(); e.hasMoreElements(); ) {
			String fieldName = (String)e.nextElement();

			if (fieldName.startsWith("role_")) {
				String key = fieldName.substring(7);

				if (fieldName.startsWith("role_b$")) {
					m.get("boolean").put(key, Arrays.asList("true".equals(request.getParameter(fieldName))));
				}
				else {
					List<Integer> l = new ArrayList<Integer>();
					for (String v : request.getParameterValues(fieldName)) {
						l.add(Integer.parseInt(v));
					}
					m.get("multiple").put(key, l);
				}
			}
		}

		return m;
	}

	/**
	 * List all existing groups
	 */
	public void list() {
		this.result.include("groups", this.groupRepository.getAllGroups());
	}

	/**
	 * Shows the page to add a new group
	 */
	public void add() {
		RoleManager roleManager = this.userSession.getRoleManager();

		if (!roleManager.isAdministrator()) {
			this.result.redirectTo(this).list();
		}
	}

	/**
	 * Delete one or more groups
	 *
	 * @param groupId
	 *            the id of the groups to delete
	 */
	public void delete(int... groupId) {
		RoleManager roleManager = this.userSession.getRoleManager();

		if (roleManager.isAdministrator()) {
			this.service.delete(groupId);
		}

		this.result.redirectTo(this).list();
	}

	/**
	 * Shows the page to edit a group
	 *
	 * @param groupId
	 */
	public void edit(int groupId) {
		RoleManager roleManager = this.userSession.getRoleManager();

		if (!roleManager.isAdministrator() && !roleManager.isGroupManager(groupId)) {
			this.result.redirectTo(this).list();
		}
		else {
			this.result.include("group", this.groupRepository.get(groupId));
			this.result.forwardTo(this).add();
		}
	}

	/**
	 * Saves the new information of an existing group
	 *
	 * @param group
	 */
	public void editSave(Group group) {
		RoleManager roleManager = this.userSession.getRoleManager();

		if (roleManager.isAdministrator() || roleManager.isGroupManager(group.getId())) {
			this.service.update(group);
		}

		this.result.redirectTo(this).list();
	}

	/**
	 * Save a new grop
	 *
	 * @param group
	 */
	public void addSave(Group group) {
		RoleManager roleManager = this.userSession.getRoleManager();

		if (roleManager.isAdministrator()) {
			this.service.add(group);
		}

		this.result.redirectTo(this).list();
	}
}