001
014
015 package com.liferay.portlet.journal.service.permission;
016
017 import com.liferay.portal.kernel.exception.PortalException;
018 import com.liferay.portal.kernel.exception.SystemException;
019 import com.liferay.portal.kernel.staging.permission.StagingPermissionUtil;
020 import com.liferay.portal.kernel.workflow.permission.WorkflowPermissionUtil;
021 import com.liferay.portal.security.auth.PrincipalException;
022 import com.liferay.portal.security.permission.ActionKeys;
023 import com.liferay.portal.security.permission.PermissionChecker;
024 import com.liferay.portal.util.PortletKeys;
025 import com.liferay.portal.util.PropsValues;
026 import com.liferay.portlet.journal.NoSuchFolderException;
027 import com.liferay.portlet.journal.model.JournalArticle;
028 import com.liferay.portlet.journal.model.JournalFolder;
029 import com.liferay.portlet.journal.model.JournalFolderConstants;
030 import com.liferay.portlet.journal.service.JournalArticleLocalServiceUtil;
031 import com.liferay.portlet.journal.service.JournalFolderLocalServiceUtil;
032
033
037 public class JournalArticlePermission {
038
039 public static void check(
040 PermissionChecker permissionChecker, JournalArticle article,
041 String actionId)
042 throws PortalException, SystemException {
043
044 if (!contains(permissionChecker, article, actionId)) {
045 throw new PrincipalException();
046 }
047 }
048
049 public static void check(
050 PermissionChecker permissionChecker, long resourcePrimKey,
051 String actionId)
052 throws PortalException, SystemException {
053
054 if (!contains(permissionChecker, resourcePrimKey, actionId)) {
055 throw new PrincipalException();
056 }
057 }
058
059 public static void check(
060 PermissionChecker permissionChecker, long groupId, String articleId,
061 double version, String actionId)
062 throws PortalException, SystemException {
063
064 if (!contains(
065 permissionChecker, groupId, articleId, version, actionId)) {
066
067 throw new PrincipalException();
068 }
069 }
070
071 public static void check(
072 PermissionChecker permissionChecker, long groupId, String articleId,
073 int status, String actionId)
074 throws PortalException, SystemException {
075
076 if (!contains(
077 permissionChecker, groupId, articleId, status, actionId)) {
078
079 throw new PrincipalException();
080 }
081 }
082
083 public static void check(
084 PermissionChecker permissionChecker, long groupId, String articleId,
085 String actionId)
086 throws PortalException, SystemException {
087
088 if (!contains(permissionChecker, groupId, articleId, actionId)) {
089 throw new PrincipalException();
090 }
091 }
092
093 public static boolean contains(
094 PermissionChecker permissionChecker, JournalArticle article,
095 String actionId)
096 throws PortalException, SystemException {
097
098 Boolean hasPermission = StagingPermissionUtil.hasPermission(
099 permissionChecker, article.getGroupId(),
100 JournalArticle.class.getName(), article.getResourcePrimKey(),
101 PortletKeys.JOURNAL, actionId);
102
103 if (hasPermission != null) {
104 return hasPermission.booleanValue();
105 }
106
107 if (article.isDraft() || article.isScheduled()) {
108 if (actionId.equals(ActionKeys.VIEW) &&
109 !contains(permissionChecker, article, ActionKeys.UPDATE)) {
110
111 return false;
112 }
113 }
114 else if (article.isPending()) {
115 hasPermission = WorkflowPermissionUtil.hasPermission(
116 permissionChecker, article.getGroupId(),
117 JournalArticle.class.getName(), article.getResourcePrimKey(),
118 actionId);
119
120 if (hasPermission != null) {
121 return hasPermission.booleanValue();
122 }
123 }
124
125 if (actionId.equals(ActionKeys.VIEW) &&
126 PropsValues.PERMISSIONS_VIEW_DYNAMIC_INHERITANCE) {
127
128 long folderId = article.getFolderId();
129
130 if (folderId != JournalFolderConstants.DEFAULT_PARENT_FOLDER_ID) {
131 try {
132 JournalFolder folder =
133 JournalFolderLocalServiceUtil.getFolder(folderId);
134
135 if (!JournalFolderPermission.contains(
136 permissionChecker, folder, ActionKeys.ACCESS) &&
137 !JournalFolderPermission.contains(
138 permissionChecker, folder, ActionKeys.VIEW)) {
139
140 return false;
141 }
142 }
143 catch (NoSuchFolderException nsfe) {
144 if (!article.isInTrash()) {
145 throw nsfe;
146 }
147 }
148 }
149 }
150
151 if (permissionChecker.hasOwnerPermission(
152 article.getCompanyId(), JournalArticle.class.getName(),
153 article.getResourcePrimKey(), article.getUserId(), actionId)) {
154
155 return true;
156 }
157
158 return permissionChecker.hasPermission(
159 article.getGroupId(), JournalArticle.class.getName(),
160 article.getResourcePrimKey(), actionId);
161 }
162
163 public static boolean contains(
164 PermissionChecker permissionChecker, long resourcePrimKey,
165 String actionId)
166 throws PortalException, SystemException {
167
168 JournalArticle article =
169 JournalArticleLocalServiceUtil.getLatestArticle(resourcePrimKey);
170
171 return contains(permissionChecker, article, actionId);
172 }
173
174 public static boolean contains(
175 PermissionChecker permissionChecker, long groupId, String articleId,
176 double version, String actionId)
177 throws PortalException, SystemException {
178
179 JournalArticle article = JournalArticleLocalServiceUtil.getArticle(
180 groupId, articleId, version);
181
182 return contains(permissionChecker, article, actionId);
183 }
184
185 public static boolean contains(
186 PermissionChecker permissionChecker, long groupId, String articleId,
187 int status, String actionId)
188 throws PortalException, SystemException {
189
190 JournalArticle article =
191 JournalArticleLocalServiceUtil.getLatestArticle(
192 groupId, articleId, status);
193
194 return contains(permissionChecker, article, actionId);
195 }
196
197 public static boolean contains(
198 PermissionChecker permissionChecker, long groupId, String articleId,
199 String actionId)
200 throws PortalException, SystemException {
201
202 JournalArticle article = JournalArticleLocalServiceUtil.getArticle(
203 groupId, articleId);
204
205 return contains(permissionChecker, article, actionId);
206 }
207
208 }