PermissionManager permissionMgr = new PermissionManager(locale, session);
List<String> permissionValues = new ArrayList<String>();
AccessControlledEntry entry = permissionMgr.getAccessControlledEntry(Long.parseLong(idParam));
if (entry == null) {
throw new InputException(getResources(req).getMessage(locale, "um.AccessControlledEntryNotFound", idParam));
}
LOGGER.debug("preparing editing of permissions for AccessControlledEntry #`"+entry.getId()+"`");
req.setAttribute("entry", entry);
req.setAttribute("name", nameParam);
LOGGER.debug("about to fetch list of permissions for AccessControlledClass `"+entry.getAccessControlledClass().getName()+"`...");
List<Permission> permissions = permissionMgr.getPermissions(entry.getAccessControlledClass().getName());
LOGGER.debug("successfully fetched list of permissions.");
LOGGER.debug("about to prepare for display...");
List<KeyValueContainer> displayablePermissions = new ArrayList<KeyValueContainer>();
for (Permission p : permissions) {
try {
String s = this.getResources(req).getMessage(locale,"um.AccessPermission_"+p.getValue());
displayablePermissions.add(new KeyValueContainer(p.getId(), s));
LOGGER.debug("added displayable permission `"+s+"`");
} catch (Exception e) {
String msg = getResources(req).getMessage(locale,"um.missingAccessPermissionName", p.getValue());
throw new ConfigurationException(msg);
}
}
req.setAttribute("permissions", displayablePermissions);
LOGGER.debug("about to fetch anonymous permissions...");
/* anonymous permissions */
Set<Long> anonymousPermissions = permissionMgr.getAnonymousPermissions(entry);
for (Permission p : permissions) {
if (anonymousPermissions.contains(p.getId())) {
permissionValues.add("anonymous_"+p.getId());
}
}
LOGGER.debug("successfully fetched anonymous permissions.");
LOGGER.debug("about to fetch role permissions...");
/* role permissions */
UserManager userMgr = new UserManager(locale,session);
Role[] roles = null;
if (req.isUserInRole(UserManagerBase.ADMINISTRATOR)) {
roles = userMgr.getRoles();
} else if (req.isUserInRole(UserManagerBase.GROUP_ADMINISTRATOR)) {
roles = webUser.getRoles().toArray(new Role[0]); // only show the own roles
} else {
LOGGER.error("insufficient rights - user must be GROUP_ADMINISTRATOR or ADMINISTRATOR to edit permissions.");
throw new InputException(getResources(req).getMessage(locale, "um.insufficientRights"));
}
req.setAttribute("roles", roles);
for (Role r : roles) {
Set<Long> rolePermissions = permissionMgr.getRolePermissions(entry, r);
for (Permission p : permissions) {
if (rolePermissions.contains(p.getId())) {
permissionValues.add("role_"+r.getId()+"_"+p.getId());
}
}
}
LOGGER.debug("successfully fetched role permissions.");
LOGGER.debug("about to fetch userset permissions...");
/* userset permissions */
UserSet[] userSets = entry.getGroup().getUserSets().toArray(new UserSet[0]);
req.setAttribute("usersets", userSets);
for (UserSet s : userSets) {
Set<Long> userSetPermissions = permissionMgr.getUserSetPermissions(entry, s);
for (Permission p : permissions) {
if (userSetPermissions.contains(p.getId())) {
permissionValues.add("userset_"+s.getId()+"_"+p.getId());
}
}
}
LOGGER.debug("sucessfully fetched userset permissions.");
LOGGER.debug("about to fetch user permissions.");
/* user permissions */
User[] users = userMgr.getUsers(entry.getGroup(), false); // get all users with a username
if (users != null && users.length > 100) {
req.setAttribute("tooManyUsers", getLocalizedMessage("application", "um.tooManyUsersForPermissions", 100));
} else {
req.setAttribute("users", users);
for (User u : users) {