Examples of org.apache.turbine.util.security.AccessControlList

• org.apache.turbine.util.security.AccessControlList
  This interface describes a control class that makes it easy to find out if a particular User has a given Permission. It also determines if a User has a a particular Role. @author John D. McNally @author Brett McLaughlin @author Greg Ritter @author Rafal Krzewski @author Marco Knüttel @author Henning P. Schmiedehausen @version $Id: AccessControlList.java 264152 2005-08-29 14:50:22Z henning $

        if (!TurbineSecurity.isAnonymousUser(user)
            && user.hasLoggedIn())
        {
            log.debug("Fetching ACL for " + user.getName());
            AccessControlList acl = (AccessControlList)
                    data.getSession().getAttribute(
                            AccessControlList.SESSION_KEY);
            if (acl == null)
            {
                log.debug("No ACL found in Session, building fresh ACL");

        }

        Map roles = new HashMap();
        Map permissions = new HashMap();

        AccessControlList aclTest =
          TurbineSecurity.getService().getAclInstance(roles, permissions);

        if(aclTest == null)
        {
          fail("Security Service failed to deliver a " + aclClass.getName()

        assertNotNull(global);

        Role app = ss.getRoleByName("User");
        assertNotNull(app);

        AccessControlList acl = ss.getACL(admin);
        assertFalse(acl.hasRole(app, global));

        ss.grant(admin, global, app);

        AccessControlList acl2 = ss.getACL(admin);
        assertTrue(acl2.hasRole(app, global));

        // Get existing ACL modified?
        assertFalse(acl.hasRole(app, global));

        try

        assertNotNull(global);

        Role app = ss.getRoleByName("User");
        assertNotNull(app);

        AccessControlList acl = ss.getACL(admin);
        assertTrue(acl.hasRole(app, global));

        ss.revoke(admin, global, app);

        AccessControlList acl2 = ss.getACL(admin);
        assertFalse(acl2.hasRole(app, global));

        // Get existing ACL modified?
        assertTrue(acl.hasRole(app, global));

         try

        assertNotNull(admin);

        Group turbine = ss.getGroupByName("Turbine");
        assertNotNull(turbine);

        AccessControlList acl = ss.getACL(admin);
        assertEquals(1, acl.getRoles(turbine).size());

        ss.revokeAll(admin);

        AccessControlList acl2 = ss.getACL(admin);
        assertEquals(0, acl2.getRoles(turbine).size());
    }

        SecurityService ss = TurbineSecurity.getService();

        User admin = ss.getUser("admin");
        assertNotNull(admin);

        AccessControlList acl = ss.getACL(admin);
        assertNotNull(acl);

        assertFalse(acl.hasRole("Admin", "global"));
        assertTrue(acl.hasRole("Admin", "Turbine"));
        assertFalse(acl.hasRole("User", "global"));
        assertFalse(acl.hasRole("User", "Turbine"));

        assertFalse(acl.hasPermission("Admin", "global"));
        assertTrue(acl.hasPermission("Admin", "Turbine"));
        assertFalse(acl.hasPermission("Login", "global"));
        assertFalse(acl.hasPermission("Login", "Turbine"));
        assertFalse(acl.hasPermission("Application", "global"));
        assertFalse(acl.hasPermission("Application", "Turbine"));
    }

        SecurityService ss = TurbineSecurity.getService();

        User admin = ss.getUser("user");
        assertNotNull(admin);

        AccessControlList acl = ss.getACL(admin);
        assertNotNull(acl);

        assertFalse(acl.hasRole("Admin", "global"));
        assertFalse(acl.hasRole("Admin", "Turbine"));
        assertFalse(acl.hasRole("User", "global"));
        assertTrue(acl.hasRole("User", "Turbine"));

        assertFalse(acl.hasPermission("Admin", "global"));
        assertFalse(acl.hasPermission("Admin", "Turbine"));
        assertFalse(acl.hasPermission("Login", "global"));
        assertTrue(acl.hasPermission("Login", "Turbine"));
        assertFalse(acl.hasPermission("Application", "global"));
        assertTrue(acl.hasPermission("Application", "Turbine"));
    }

        SecurityService ss = TurbineSecurity.getService();

        User user = ss.getUser("user");
        assertNotNull(user);

        AccessControlList acl = ss.getACL(user);
        assertNotNull(acl);

        Group turbine = ss.getGroupByName("Turbine");
        assertNotNull(turbine);

        assertEquals(0, acl.getRoles().size());
        assertEquals(1, acl.getRoles(turbine).size());
        assertEquals(0, acl.getPermissions().size());
        assertEquals(2, acl.getPermissions(turbine).size());
    }

    public AccessControlList getAclInstance(Map roles, Map permissions)
            throws UnknownEntityException
    {
        Object[] objects = {roles, permissions};
        String[] signatures = {Map.class.getName(), Map.class.getName()};
        AccessControlList accessControlList;

        try
        {
            accessControlList =
                    (AccessControlList) aclFactoryService.getInstance(aclClass.getName(),

                    groupPermissions.add(rolePermissions);
                }
                // put the Set into permissions(group)
                permissions.put(group, groupPermissions);
            }
            return new AccessControlList(roles, permissions);
        }
        catch(Exception e)
        {
            throw new DataBackendException("Failed to build ACL for user '" +
                                    user.getUserName() + "'" , e);