| GroupPermissionImpl.java |
1 /**
2 * Copyright (c) 2000-2009 Liferay, Inc. All rights reserved.
3 *
4 *
5 *
6 *
7 * The contents of this file are subject to the terms of the Liferay Enterprise
8 * Subscription License ("License"). You may not use this file except in
9 * compliance with the License. You can obtain a copy of the License by
10 * contacting Liferay, Inc. See the License for the specific language governing
11 * permissions and limitations under the License, including but not limited to
12 * distribution rights of the Software.
13 *
14 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20 * SOFTWARE.
21 */
22
23 package com.liferay.portal.service.permission;
24
25 import com.liferay.portal.PortalException;
26 import com.liferay.portal.SystemException;
27 import com.liferay.portal.model.Group;
28 import com.liferay.portal.model.Organization;
29 import com.liferay.portal.security.auth.PrincipalException;
30 import com.liferay.portal.security.permission.ActionKeys;
31 import com.liferay.portal.security.permission.PermissionChecker;
32 import com.liferay.portal.service.GroupLocalServiceUtil;
33 import com.liferay.portal.service.OrganizationLocalServiceUtil;
34
35 import java.util.List;
36
37 /**
38 * <a href="GroupPermissionImpl.java.html"><b><i>View Source</i></b></a>
39 *
40 * @author Brian Wing Shun Chan
41 *
42 */
43 public class GroupPermissionImpl implements GroupPermission {
44
45 public void check(
46 PermissionChecker permissionChecker, long groupId,
47 String actionId)
48 throws PortalException, SystemException {
49
50 if (!contains(permissionChecker, groupId, actionId)) {
51 throw new PrincipalException();
52 }
53 }
54
55 public boolean contains(
56 PermissionChecker permissionChecker, long groupId, String actionId)
57 throws PortalException, SystemException {
58
59 Group group = GroupLocalServiceUtil.getGroup(groupId);
60
61 if (group.isStagingGroup()) {
62 group = group.getLiveGroup();
63 }
64
65 if (group.isOrganization()) {
66 long organizationId = group.getClassPK();
67
68 return OrganizationPermissionUtil.contains(
69 permissionChecker, organizationId, actionId);
70 }
71 else if (group.isUser()) {
72
73 // An individual user would never reach this block because he would
74 // be an administrator of his own layouts. However, a user who
75 // manages a set of organizations may be modifying pages of a user
76 // he manages.
77
78 long userId = group.getClassPK();
79
80 List<Organization> organizations =
81 OrganizationLocalServiceUtil.getUserOrganizations(userId);
82
83 for (Organization organization : organizations) {
84 if (OrganizationPermissionUtil.contains(
85 permissionChecker, organization.getOrganizationId(),
86 ActionKeys.MANAGE_USERS)) {
87
88 return true;
89 }
90 }
91 }
92
93 // Group id must be set so that users can modify their personal pages
94
95 return permissionChecker.hasPermission(
96 groupId, Group.class.getName(), groupId, actionId);
97 }
98
99 }