/** * Check if an Lutece user should be visible to the user according its workgroup * * @param user the Lutece user * @param adminUser the admin user * @param plugin the plugin * @return true if the Lutece user should be visible, false otherwise */ public boolean isAuthorized(DatabaseUser user, AdminUser adminUser, Plugin plugin) { boolean bHasRole = false; List<String> userRoleKeyList = DatabaseHome.findUserRolesFromLogin(user.getLogin(), plugin); for (String userRoleKey : userRoleKeyList) { bHasRole = true; Role role = RoleHome.findByPrimaryKey(userRoleKey); if (AdminWorkgroupService.isAuthorized(role, adminUser)) { return true; } } List<String> userGroupKeyList = DatabaseHome.findUserGroupsFromLogin(user.getLogin(), plugin); for (String userGroupKey : userGroupKeyList) { List<String> groupRoleKeyList = GroupRoleHome.findGroupRoles(userGroupKey, plugin); for (String groupRoleKey : groupRoleKeyList) { bHasRole = true; Role role = RoleHome.findByPrimaryKey(groupRoleKey); if (AdminWorkgroupService.isAuthorized(role, adminUser)) { return true; } } } return !bHasRole; }
/** * Login automatically the database user * * @param request the HTTP request * @param DatabaseUser databaseUser * @param plugin the plugin */ public void doAutoLoginDatabaseUser( HttpServletRequest request, DatabaseUser databaseUser, Plugin plugin) { if (_baseAuthentication != null) { BaseUser user = DatabaseHome.findLuteceUserByLogin(databaseUser.getLogin(), plugin, _baseAuthentication); SecurityService.getInstance().registerUser(request, user); } }
/** * Get a XML string describing a given user * * @param user The user to get the XML of. * @param bExportRoles True to export roles of the user, false otherwise. * @param bExportGroups True to export groups of the user, false otherwise. * @param bExportAttributes True to export attributes of the user, false otherwise. * @param listAttributes The list of attributes to export. * @param locale The locale * @return A string of XML with the information of the user. */ public String getXmlFromUser( DatabaseUser user, boolean bExportRoles, boolean bExportGroups, boolean bExportAttributes, List<IAttribute> listAttributes, Locale locale) { Plugin databasePlugin = PluginService.getPlugin(DatabasePlugin.PLUGIN_NAME); Plugin mylutecePlugin = PluginService.getPlugin(MyLutecePlugin.PLUGIN_NAME); StringBuffer sbXml = new StringBuffer(); DateFormat dateFormat = new SimpleDateFormat(); XmlUtil.beginElement(sbXml, CONSTANT_XML_USER); XmlUtil.addElement(sbXml, CONSTANT_XML_ACCESS_CODE, user.getLogin()); XmlUtil.addElement(sbXml, CONSTANT_XML_LAST_NAME, user.getLastName()); XmlUtil.addElement(sbXml, CONSTANT_XML_FIRST_NAME, user.getFirstName()); XmlUtil.addElement(sbXml, CONSTANT_XML_EMAIL, user.getEmail()); XmlUtil.addElement(sbXml, CONSTANT_XML_STATUS, Integer.toString(user.getStatus())); String strPasswordMaxValidDate = StringUtils.EMPTY; if (user.getPasswordMaxValidDate() != null) { strPasswordMaxValidDate = dateFormat.format(user.getPasswordMaxValidDate()); } XmlUtil.addElement(sbXml, CONSTANT_XML_PASSWORD_MAX_VALID_DATE, strPasswordMaxValidDate); String strAccountMaxValidDate = StringUtils.EMPTY; if (user.getAccountMaxValidDate() != null) { strAccountMaxValidDate = dateFormat.format(user.getAccountMaxValidDate()); } XmlUtil.addElement(sbXml, CONSTANT_XML_ACCOUNT_MAX_VALID_DATE, strAccountMaxValidDate); if (bExportRoles) { List<String> listRoles = DatabaseHome.findUserRolesFromLogin(user.getLogin(), databasePlugin); XmlUtil.beginElement(sbXml, CONSTANT_XML_ROLES); for (String strRole : listRoles) { XmlUtil.addElement(sbXml, CONSTANT_XML_ROLE, strRole); } XmlUtil.endElement(sbXml, CONSTANT_XML_ROLES); } if (bExportGroups) { List<String> listGroups = DatabaseHome.findUserGroupsFromLogin(user.getLogin(), databasePlugin); XmlUtil.beginElement(sbXml, CONSTANT_XML_GROUPS); for (String strGoup : listGroups) { XmlUtil.addElement(sbXml, CONSTANT_XML_GROUP, strGoup); } XmlUtil.endElement(sbXml, CONSTANT_XML_GROUPS); } if (bExportAttributes) { XmlUtil.beginElement(sbXml, CONSTANT_XML_ATTRIBUTES); for (IAttribute attribute : listAttributes) { List<MyLuteceUserField> listUserFields = MyLuteceUserFieldHome.selectUserFieldsByIdUserIdAttribute( user.getUserId(), attribute.getIdAttribute(), mylutecePlugin); for (MyLuteceUserField userField : listUserFields) { XmlUtil.beginElement(sbXml, CONSTANT_XML_ATTRIBUTE); XmlUtil.addElement( sbXml, CONSTANT_XML_ATTRIBUTE_ID, Integer.toString(attribute.getIdAttribute())); XmlUtil.addElement( sbXml, CONSTANT_XML_ATTRIBUTE_FIELD_ID, userField.getAttributeField().getIdField()); XmlUtil.addElement(sbXml, CONSTANT_XML_ATTRIBUTE_VALUE, userField.getValue()); XmlUtil.endElement(sbXml, CONSTANT_XML_ATTRIBUTE); } } XmlUtil.endElement(sbXml, CONSTANT_XML_ATTRIBUTES); } XmlUtil.endElement(sbXml, CONSTANT_XML_USER); return sbXml.toString(); }
/** * Check whether a user must change his password * * @param databaseUser The user to check * @param plugin The plugin * @return True if a user must change his password, false otherwise. */ public boolean mustUserChangePassword(LuteceUser databaseUser, Plugin plugin) { return DatabaseHome.findResetPasswordFromLogin(databaseUser.getName(), plugin); }