Package org.odata4j.exceptions

Examples of org.odata4j.exceptions.NotAuthorizedException

51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
  }

  public static void checkAccess(DatastoreService datastore, Entity e, AccessType accessType) {
    UserService userService = UserServiceFactory.getUserService();
    if (!userService.isUserLoggedIn()) {
      throw new NotAuthorizedException();
    }
    if (e == null) {
      return;
    }
    if (userService.isUserAdmin()) {
      return;
    }

    // Check read access by kind
    if (accessType == AccessType.READ) {
      Query q = new Query(KIND_ACCESS_CONTROL_KIND);
      Filter filter = new FilterPredicate("Kind", FilterOperator.EQUAL, e.getKind());
      q.setFilter(filter);
      Entity kac = datastore.prepare(q).asSingleEntity();
      if (kac != null) {
        Long access = (Long) kac.getProperty("Access");
        if (access.equals(UserGroup.USER.groupId)) {
          return;
        }
      }
    }
    // Check write access by entity
    else if (accessType == AccessType.WRITE) {
      Query q = new Query(ENTITY_ACCESS_CONTROL_KIND);
      Filter filter = new FilterPredicate("Entity", FilterOperator.EQUAL, e);
      q.setFilter(filter);
      Entity eac = datastore.prepare(q).asSingleEntity();

      User owner = (User) eac.getProperty("owner");
      if (owner.compareTo(userService.getCurrentUser()) == 0) {
        return;
      }
    }
    throw new NotAuthorizedException();
  }
View Full Code Here
TOP

Related Classes of org.odata4j.exceptions.NotAuthorizedException

  • org.odata.appengine.AccessControl
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.