PermissionFilter4Branch.java example

Explorer
jinhe-tss-master
/* ==================================================================   
 * Created [2011-11-03 下午11:32:55] by Jon.King 
 * ==================================================================  
 * TSS 
 * ================================================================== 
 * mailTo:jinpujun@hotmail.com
 * Copyright (c) Jon.King, 2009-2012 
 * ================================================================== 
 */
package com.jinhe.tss.um.permission.filter;

import java.util.Iterator;
import java.util.List;

import com.jinhe.tss.core.exception.BusinessException;
import com.jinhe.tss.core.persistence.IEntity;
import com.jinhe.tss.um.permission.PermissionHelper;

/**
 * 某一树枝类型（包括所有子节点 或 包括所有父节点）的过滤拦截器。
 * 如果发现对该树枝某一节点没有权限，则抛出异常。
 * 一般用于停用、启用、删除等操作时的权限判断。
 */
public class PermissionFilter4Branch implements IPermissionFilter {

	@Override
    public void doFilter(Object args[], Object returnValue, PermissionTag tag, PermissionHelper helper) {

	    if(args.length < 2 || !(args[1] instanceof String)) return;
	    
	    List<?> resources = (List<?>) returnValue;
	    String operation = (String) args[1];
	    
        List<Long> permitedResourceIds = helper.getResourceIdsByOperation(tag.application(), tag.resourceType(), operation);
 
        for( Iterator<?> it = resources.iterator(); it.hasNext(); ) {
            IEntity resource = (IEntity)it.next();
            if( !permitedResourceIds.contains(resource.getId()) ) {
                throw new BusinessException("操作失败，您对被操作节点的子节点（或父节点）至少有一个没有相应操作权限！");
            }
        }
	}

}