Пример #1
0
  public List<Authorization> find(final Application application, final User user)
      throws RequiredException {
    this.validateFind(application, user);

    final List<Authorization> result = new ArrayList<Authorization>();
    final List<Authorization> allowed = this.authorizationManager.find(application, user, true);
    final List<Authorization> revoked = this.authorizationManager.find(application, user, false);

    boolean valid;
    for (final Authorization authorization : allowed) {
      valid = true;

      for (final Authorization deniedAuthorization : revoked) {
        if (authorization.getPermission().equals(deniedAuthorization.getPermission())) {
          valid = false;
          break;
        }
      }

      if (valid) {
        result.add(authorization);
      }
    }

    return result;
  }
Пример #2
0
 private void validatePersist(final Authorization authorization) throws RequiredException {
   this.serviceValidator.validateRequired("authorization", authorization);
   this.serviceValidator.validateRequired(
       "authorization.permission", authorization.getPermission());
   this.serviceValidator.validateRequired("authorization.role", authorization.getRole());
   this.serviceValidator.validateRequired(
       "authorization.permission.operation", authorization.getPermission().getOperation());
   this.serviceValidator.validateRequired(
       "authorization.permission.resource", authorization.getPermission().getResource());
   this.serviceValidator.validateRequired(
       "authorization.role.id", authorization.getRole().getId());
   this.serviceValidator.validateRequired(
       "authorization.permission.operation.id",
       authorization.getPermission().getOperation().getId());
   this.serviceValidator.validateRequired(
       "authorization.permission.resource.id",
       authorization.getPermission().getResource().getId());
 }
Пример #3
0
  @Transactional(TransactionPropagationType.REQUIRED)
  public void delete(final Authorization authorization) throws RequiredException {
    this.validateDelete(authorization);

    final Authorization authz = this.load(authorization.getPermission(), authorization.getRole());

    if (authz != null) {
      this.authorizationManager.delete(authorization);
    }
  }
Пример #4
0
  @Transactional(TransactionPropagationType.REQUIRED)
  public void insert(final Authorization authorization) throws RequiredException {
    this.validatePersist(authorization);

    final Authorization authz = this.load(authorization.getPermission(), authorization.getRole());

    if (authz == null) {
      this.authorizationManager.insert(authorization);

    } else if (authz.isAllowed() != authorization.isAllowed()) {
      this.authorizationManager.update(authorization);
    }
  }