| GroupPermissionImpl.java |
1 /**
2 * Copyright (c) 2000-2008 Liferay, Inc. All rights reserved.
3 *
4 * Permission is hereby granted, free of charge, to any person obtaining a copy
5 * of this software and associated documentation files (the "Software"), to deal
6 * in the Software without restriction, including without limitation the rights
7 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8 * copies of the Software, and to permit persons to whom the Software is
9 * furnished to do so, subject to the following conditions:
10 *
11 * The above copyright notice and this permission notice shall be included in
12 * all copies or substantial portions of the Software.
13 *
14 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20 * SOFTWARE.
21 */
22
23 package com.liferay.portal.service.permission;
24
25 import com.liferay.portal.PortalException;
26 import com.liferay.portal.SystemException;
27 import com.liferay.portal.model.Group;
28 import com.liferay.portal.model.Organization;
29 import com.liferay.portal.security.auth.PrincipalException;
30 import com.liferay.portal.security.permission.ActionKeys;
31 import com.liferay.portal.security.permission.PermissionChecker;
32 import com.liferay.portal.service.GroupLocalServiceUtil;
33 import com.liferay.portal.service.OrganizationLocalServiceUtil;
34
35 import java.util.List;
36
37 /**
38 * <a href="GroupPermissionImpl.java.html"><b><i>View Source</i></b></a>
39 *
40 * @author Brian Wing Shun Chan
41 *
42 */
43 public class GroupPermissionImpl implements GroupPermission {
44
45 public void check(
46 PermissionChecker permissionChecker, long groupId,
47 String actionId)
48 throws PortalException, SystemException {
49
50 if (!contains(permissionChecker, groupId, actionId)) {
51 throw new PrincipalException();
52 }
53 }
54
55 public boolean contains(
56 PermissionChecker permissionChecker, long groupId, String actionId)
57 throws PortalException, SystemException {
58
59 if (actionId.equals(ActionKeys.MANAGE_LAYOUTS)) {
60 Group group = GroupLocalServiceUtil.getGroup(groupId);
61
62 if (group.isOrganization()) {
63 long organizationId = group.getClassPK();
64
65 return OrganizationPermissionUtil.contains(
66 permissionChecker, organizationId, actionId);
67 }
68 else if (group.isUser()) {
69
70 // An individual user would never reach this block because he
71 // would be an administrator of his own layouts. However, a user
72 // who manages a set of organizations may be modifying pages of
73 // a user he manages.
74
75 long userId = group.getClassPK();
76
77 List<Organization> organizations =
78 OrganizationLocalServiceUtil.getUserOrganizations(
79 userId);
80
81 for (Organization organization : organizations) {
82 if (OrganizationPermissionUtil.contains(
83 permissionChecker, organization.getOrganizationId(),
84 ActionKeys.MANAGE_USERS)) {
85
86 return true;
87 }
88 }
89 }
90 }
91
92 // Group id must be set so that users can modify their personal pages
93
94 return permissionChecker.hasPermission(
95 groupId, Group.class.getName(), groupId, actionId);
96 }
97
98 }