PermissionFilter4Menu.java example

Explorer
jinhe-tss-master
/* ==================================================================   
 * Created [2011-11-03 下午11:32:55] by Jon.King 
 * ==================================================================  
 * TSS 
 * ================================================================== 
 * mailTo:jinpujun@hotmail.com
 * Copyright (c) Jon.King, 2009-2012 
 * ================================================================== 
 */
package com.jinhe.tss.portal.permission;

import java.util.Iterator;
import java.util.List;

import com.jinhe.tss.portal.PortalConstants;
import com.jinhe.tss.portal.entity.Navigator;
import com.jinhe.tss.um.UMConstants;
import com.jinhe.tss.um.permission.PermissionHelper;
import com.jinhe.tss.um.permission.filter.IPermissionFilter;
import com.jinhe.tss.um.permission.filter.PermissionTag;

/**
 * 菜单权限过滤拦截器。
 * 分两层过滤： 
 *  1、菜单本身授权过滤 
 *  2、如果菜单里应用到门户实例，则需要根据登陆用户门户实例的授权信息的再对菜单进行一次过滤
 */
public class PermissionFilter4Menu implements IPermissionFilter {

	@Override
	public void doFilter(Object args[], Object returnValue, PermissionTag tag, PermissionHelper helper) {
        List<?> resources = (List<?>) returnValue;
        
        String application = UMConstants.TSS_APPLICATION_ID;
        String menuResourceType = PortalConstants.MENU_RESOURCE_TYPE;
        String psResourceType = PortalConstants.PORTAL_RESOURCE_TYPE;
        
        List<Long> menuPermissions = helper.getResourceIdsByOperation(application, menuResourceType, PortalConstants.MENU_VIEW_OPERRATION);
        List<Long> psPermissions   = helper.getResourceIdsByOperation(application, psResourceType, PortalConstants.PORTAL_BROWSE_OPERRATION);
        
        for(Iterator<?> it = resources.iterator(); it.hasNext();) { 
            Navigator menu = (Navigator) it.next();
            
            // 菜单本身授权过滤。
            if( !menuPermissions.contains(menu.getId()) ){
                it.remove();
                continue;
            }
            
            //对菜单引用到的portlet实例（门户结构的一种）进行过滤
            if(menu.getType().equals(Navigator.TYPE_MENU)) continue;
            
            if(menu.getContentId() == null && menu.getTargetId() == null) continue;
            
            if(menu.getContentId() == null && psPermissions.contains(menu.getTargetId())) continue;
            
            if(psPermissions.contains(menu.getContentId()) && menu.getTargetId() == null) continue;  
            
            if(psPermissions.contains(menu.getContentId()) && psPermissions.contains(menu.getTargetId())) continue;
            
            it.remove();
        }
	}

}