Examples of org.opentides.bean.user.SessionUser

• org.opentides.bean.user.SessionUser
  This class is used by ACEGI to represent the currently logged user for the session. To retrieve the SessionUser object use SecurityUtil.getSessionUser(); @author allantan

  private String getSecurityFilter() {
    // retrieve list of available security filters
    for (String key:securityFilter.keySet()) {
      if (SecurityUtil.currentUserHasPermission(key)) {
        String filterClause = securityFilter.get(key);
        SessionUser sessionUser = SecurityUtil.getSessionUser();
        // allanctan: 12/12/2011 - Removed query from db, instead use sessionUser
        // BaseUser user = getEntityManager().find(BaseUser.class, sessionUser.getId());
        return CrudUtil.replaceSQLParameters(filterClause, sessionUser);
      }
    }

    }
    if (ApplicationStartupListener.isApplicationStarted()) {
      if (userId==null) {
        _log.warn("No userId specified for audit logging on object ["+entity.getClass().getName()
              + "] for message ["+message+"]. Retrieving user from interceptor.");
        SessionUser user = SecurityUtil.getSessionUser();
        userId = user.getRealId();
        officeName = user.getOffice();
        username = user.getUsername();
      }
    } else {
      userId = new Long(0);
      officeName = "System Evolve";
    }

  @Override
  public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException, DataAccessException {
    try {
            UserDetails user = super.loadUserByUsername(username);
            DateFormat format = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss");
            SessionUser sessUser = new SessionUser(user.getUsername(), user.getPassword(), user.isEnabled(), user.getAuthorities());
            Map<String,Object> result = getJdbcTemplate().queryForMap(loadUserByUsernameQuery.replace("?", "'"+username+"'"));
            sessUser.setFirstName(""+result.get("FIRSTNAME"));
            sessUser.setLastName(""+result.get("LASTNAME"));
            sessUser.setEmailAddress(""+result.get("EMAIL"));
      sessUser.setOffice(""+result.get("OFFICE"));
            sessUser.setPosition(""+result.get("POSITION"));
            sessUser.setCompany(""+result.get("COMPANY"));
            sessUser.setPictureUrl(""+result.get("PICTUREURL"));
            sessUser.setId((Long) result.get("ID"));
            if (result.get("LASTLOGIN") != null) {
        try {
          sessUser.setLastLogin(format.parse(result.get("LASTLOGIN").toString()));
        } catch (ParseException e) {
          sessUser.setLastLogin(Calendar.getInstance().getTime());
        }
      }
            return sessUser;
    } catch (UsernameNotFoundException ex1) {
      _log.error(ex1);

    }
        if (debug) {
            // in debug mode, we provide temporary Acegi user
            Collection<GrantedAuthority> auths = new ArrayList<GrantedAuthority>();
            auths.add(new GrantedAuthorityImpl("SUPER_USER"));
            SessionUser user = new SessionUser("debug","debug",true, auths);
            user.setId(999999l);
            user.setFirstName("Superuser");
            user.setLastName("Debugger");
            return user;
        }
        return null;

  }

   * to given permission.
   * @param permission
   * @return
   */
  public static boolean currentUserHasPermission(String permission) {
    SessionUser user = SecurityUtil.getSessionUser();
    if (user!=null) {
        for (GrantedAuthority auth: user.getAuthorities()) {
            if (permission.equals(auth.getAuthority()))
                return true;
        }
    }
    return false;

  @Override
  public void updateLogout(Authentication auth) {
    if (auth==null) return;
    Object userObj = auth.getPrincipal();
    if (userObj instanceof SessionUser) {
      SessionUser sessionUser = (SessionUser) userObj;
      String username = sessionUser.getUsername();
      String completeName = sessionUser.getCompleteName() + " ["
          + username + "] ";
      UserDAO userDAO = (UserDAO) getDao();
      // also add log to audit history log
      BaseUser user = userDAO.loadByUsername(username);
      // force the audit user details

  @Override
  public void forceLogout(String username) {
    // let's logout all sessions of this user
    for (Object prince : sessionRegistry.getAllPrincipals())
      if (prince instanceof SessionUser) {
        SessionUser user = (SessionUser) prince;
        if (user.getUsername().equals(username))
          for (SessionInformation si : sessionRegistry
              .getAllSessions(prince, false))
            si.expireNow();
      }
  }

     */
    public final void setUserId() {
        if (this.auditUserId == null
                && SecurityContextHolder.getContext() != null
                && SecurityContextHolder.getContext().getAuthentication() != null) {
            final SessionUser user = SecurityUtil.getSessionUser();
            this.auditUserId = user.getRealId();
            this.auditOfficeName = user.getOffice();
            this.auditUsername = user.getUsername();
        }
    }