2 * This document is a part of the source code and related artifacts
3 * for CollectionSpace, an open source collections management system
4 * for museums and related institutions:
6 * http://www.collectionspace.org
7 * http://wiki.collectionspace.org
9 * Copyright 2009 University of California at Berkeley
11 * Licensed under the Educational Community License (ECL), Version 2.0.
12 * You may not use this file except in compliance with this License.
14 * You may obtain a copy of the ECL 2.0 License at
16 * https://source.collectionspace.org/collection-space/LICENSE.txt
18 * Unless required by applicable law or agreed to in writing, software
19 * distributed under the License is distributed on an "AS IS" BASIS,
20 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
21 * See the License for the specific language governing permissions and
22 * limitations under the License.
24 package org.collectionspace.services.authorization.storage;
26 import java.util.ArrayList;
27 import java.util.List;
28 import java.util.UUID;
30 import org.collectionspace.services.authorization.Role;
31 import org.collectionspace.services.authorization.RolesList;
33 import org.collectionspace.services.client.RoleClient;
34 import org.collectionspace.services.common.document.BadRequestException;
35 import org.collectionspace.services.common.document.DocumentFilter;
36 import org.collectionspace.services.common.document.DocumentWrapper;
37 import org.collectionspace.services.common.document.JaxbUtils;
38 import org.collectionspace.services.common.security.SecurityUtils;
39 import org.collectionspace.services.common.storage.jpa.JpaDocumentHandler;
41 import org.slf4j.Logger;
42 import org.slf4j.LoggerFactory;
45 * Document handler for Role
48 public class RoleDocumentHandler
49 extends JpaDocumentHandler<Role, RolesList, Role, List> {
50 private final Logger logger = LoggerFactory.getLogger(RoleDocumentHandler.class);
52 private RolesList rolesList;
55 public void handleCreate(DocumentWrapper<Role> wrapDoc) throws Exception {
56 String id = UUID.randomUUID().toString();
57 Role role = wrapDoc.getWrappedObject();
59 // Synthesize the display name if it was not passed in.
60 String displayName = role.getDisplayName();
61 boolean displayNameEmpty = true;
62 if (displayName != null) {
63 displayNameEmpty = displayName.trim().isEmpty();
65 if (displayNameEmpty == true) {
66 role.setDisplayName(role.getRoleName());
70 role.setRoleName(fixRoleName(role.getRoleName(),
73 // We do not allow creation of locked roles through the services.
74 role.setMetadataProtection(null);
75 role.setPermsProtection(null);
79 public void handleUpdate(DocumentWrapper<Role> wrapDoc) throws Exception {
80 Role roleFound = wrapDoc.getWrappedObject();
81 Role roleReceived = getCommonPart();
82 // If marked as metadata immutable, do not do update
83 if(!RoleClient.IMMUTABLE.equals(roleFound.getMetadataProtection())) {
84 roleReceived.setRoleName(fixRoleName(roleReceived.getRoleName(),
85 roleFound.getTenantId()));
86 merge(roleReceived, roleFound);
91 * merge manually merges the from from to the to role
92 * -this method is created due to inefficiency of JPA EM merge
97 private Role merge(Role from, Role to) throws Exception {
98 //role name cannot be changed
99 if (!(from.getRoleName().equalsIgnoreCase(to.getRoleName()))) {
100 String msg = "Role name cannot be changed " + to.getRoleName();
102 throw new BadRequestException(msg);
104 if (from.getDisplayName() != null) {
105 to.setDisplayName(from.getDisplayName());
107 if (from.getRoleGroup() != null) {
108 to.setRoleGroup(from.getRoleGroup());
110 if (from.getDescription() != null) {
111 to.setDescription(from.getDescription());
113 // Note that we do not allow update of locks
114 if (logger.isDebugEnabled()) {
115 logger.debug("merged role=" + JaxbUtils.toString(to, Role.class));
121 public void completeUpdate(DocumentWrapper<Role> wrapDoc) throws Exception {
122 Role upAcc = wrapDoc.getWrappedObject();
123 getServiceContext().setOutput(upAcc);
128 public void handleGet(DocumentWrapper<Role> wrapDoc) throws Exception {
129 setCommonPart(extractCommonPart(wrapDoc));
130 sanitize(getCommonPart());
131 getServiceContext().setOutput(role);
135 public void handleGetAll(DocumentWrapper<List> wrapDoc) throws Exception {
136 RolesList rolesList = extractCommonPartList(wrapDoc);
137 setCommonPartList(rolesList);
138 getServiceContext().setOutput(getCommonPartList());
142 public Role extractCommonPart(
143 DocumentWrapper<Role> wrapDoc)
145 return wrapDoc.getWrappedObject();
149 public void fillCommonPart(Role obj, DocumentWrapper<Role> wrapDoc)
151 throw new UnsupportedOperationException("operation not relevant for AccountDocumentHandler");
155 public RolesList extractCommonPartList(
156 DocumentWrapper<List> wrapDoc)
159 RolesList rolesList = new RolesList();
160 List<Role> list = new ArrayList<Role>();
161 rolesList.setRoles(list);
162 for (Object obj : wrapDoc.getWrappedObject()) {
163 Role role = (Role) obj;
171 public Role getCommonPart() {
176 public void setCommonPart(Role role) {
181 public RolesList getCommonPartList() {
186 public void setCommonPartList(RolesList rolesList) {
187 this.rolesList = rolesList;
191 public String getQProperty(
197 public DocumentFilter createDocumentFilter() {
198 DocumentFilter filter = new RoleJpaFilter(this.getServiceContext());
203 * sanitize removes data not needed to be sent to the consumer
206 private void sanitize(Role role) {
207 if (!SecurityUtils.isCSpaceAdmin()) {
208 role.setTenantId(null);
212 private String fixRoleName(String role, String tenantId) {
213 String roleName = role.toUpperCase();
214 String rolePrefix = "ROLE_" + tenantId + "_";
215 if (!roleName.startsWith(rolePrefix)) {
216 roleName = rolePrefix + roleName;
221 private void setTenant(Role role) {
222 //set tenant only if not available from input
223 if (role.getTenantId() == null || role.getTenantId().isEmpty()) {
224 role.setTenantId(getServiceContext().getTenantId());
projects / tmp / jakarta-migration.git / blob