| UserPermissionImpl.java |
1 /**
2 * Copyright (c) 2000-2007 Liferay, Inc. All rights reserved.
3 *
4 * Permission is hereby granted, free of charge, to any person obtaining a copy
5 * of this software and associated documentation files (the "Software"), to deal
6 * in the Software without restriction, including without limitation the rights
7 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8 * copies of the Software, and to permit persons to whom the Software is
9 * furnished to do so, subject to the following conditions:
10 *
11 * The above copyright notice and this permission notice shall be included in
12 * all copies or substantial portions of the Software.
13 *
14 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20 * SOFTWARE.
21 */
22
23 package com.liferay.portal.service.permission;
24
25 import com.liferay.portal.kernel.security.permission.ActionKeys;
26 import com.liferay.portal.kernel.security.permission.PermissionChecker;
27 import com.liferay.portal.model.Location;
28 import com.liferay.portal.model.Organization;
29 import com.liferay.portal.model.User;
30 import com.liferay.portal.security.auth.PrincipalException;
31 import com.liferay.portal.security.permission.PermissionCheckerImpl;
32
33 /**
34 * <a href="UserPermissionImpl.java.html"><b><i>View Source</i></b></a>
35 *
36 * @author Charles May
37 *
38 */
39 public class UserPermissionImpl implements UserPermission {
40
41 public void check(
42 PermissionChecker permissionChecker, long userId,
43 long organizationId, long locationId, String actionId)
44 throws PrincipalException {
45
46 if (!contains(
47 permissionChecker, userId, organizationId, locationId,
48 actionId)) {
49
50 throw new PrincipalException();
51 }
52 }
53
54 public boolean contains(
55 PermissionChecker permissionChecker, long userId, long organizationId,
56 long locationId, String actionId) {
57
58 PermissionCheckerImpl permissionCheckerImpl =
59 (PermissionCheckerImpl)permissionChecker;
60
61 String organizationActionId = actionId + "_USER";
62
63 if (actionId.equals(ActionKeys.ADD_USER)) {
64 organizationActionId = actionId;
65 }
66
67 if (permissionCheckerImpl.getUserId() == userId) {
68 return true;
69 }
70 else if (permissionChecker.hasPermission(
71 0, User.class.getName(), userId, actionId)) {
72
73 return true;
74 }
75 else if ((organizationId > 0) &&
76 permissionChecker.hasPermission(
77 0, Organization.class.getName(), organizationId,
78 organizationActionId)) {
79
80 return true;
81 }
82 else if ((locationId > 0) &&
83 permissionChecker.hasPermission(
84 0, Location.class.getName(), locationId,
85 organizationActionId)) {
86
87 return true;
88 }
89
90 return false;
91 }
92
93 }