| GroupPermissionImpl.java |
1 /**
2 * Copyright (c) 2000-2009 Liferay, Inc. All rights reserved.
3 *
4 * Permission is hereby granted, free of charge, to any person obtaining a copy
5 * of this software and associated documentation files (the "Software"), to deal
6 * in the Software without restriction, including without limitation the rights
7 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8 * copies of the Software, and to permit persons to whom the Software is
9 * furnished to do so, subject to the following conditions:
10 *
11 * The above copyright notice and this permission notice shall be included in
12 * all copies or substantial portions of the Software.
13 *
14 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20 * SOFTWARE.
21 */
22
23 package com.liferay.portal.service.permission;
24
25 import com.liferay.portal.PortalException;
26 import com.liferay.portal.SystemException;
27 import com.liferay.portal.model.Group;
28 import com.liferay.portal.model.Organization;
29 import com.liferay.portal.security.auth.PrincipalException;
30 import com.liferay.portal.security.permission.ActionKeys;
31 import com.liferay.portal.security.permission.PermissionChecker;
32 import com.liferay.portal.service.GroupLocalServiceUtil;
33 import com.liferay.portal.service.OrganizationLocalServiceUtil;
34
35 import java.util.List;
36
37 /**
38 * <a href="GroupPermissionImpl.java.html"><b><i>View Source</i></b></a>
39 *
40 * @author Brian Wing Shun Chan
41 *
42 */
43 public class GroupPermissionImpl implements GroupPermission {
44
45 public void check(
46 PermissionChecker permissionChecker, long groupId,
47 String actionId)
48 throws PortalException, SystemException {
49
50 if (!contains(permissionChecker, groupId, actionId)) {
51 throw new PrincipalException();
52 }
53 }
54
55 public boolean contains(
56 PermissionChecker permissionChecker, long groupId, String actionId)
57 throws PortalException, SystemException {
58
59 Group group = GroupLocalServiceUtil.getGroup(groupId);
60
61 if (group.isStagingGroup()) {
62 group = group.getLiveGroup();
63 }
64
65 if (group.isOrganization()) {
66 long organizationId = group.getClassPK();
67
68 return OrganizationPermissionUtil.contains(
69 permissionChecker, organizationId, actionId);
70 }
71 else if (group.isUser()) {
72
73 // An individual user would never reach this block because he would
74 // be an administrator of his own layouts. However, a user who
75 // manages a set of organizations may be modifying pages of a user
76 // he manages.
77
78 long userId = group.getClassPK();
79
80 List<Organization> organizations =
81 OrganizationLocalServiceUtil.getUserOrganizations(userId);
82
83 for (Organization organization : organizations) {
84 if (OrganizationPermissionUtil.contains(
85 permissionChecker, organization.getOrganizationId(),
86 ActionKeys.MANAGE_USERS)) {
87
88 return true;
89 }
90 }
91 }
92
93 // Group id must be set so that users can modify their personal pages
94
95 return permissionChecker.hasPermission(
96 groupId, Group.class.getName(), groupId, actionId);
97 }
98
99 }