Package org.pentaho.platform.api.engine

Examples of org.pentaho.platform.api.engine.IAuthorizationPolicy


      throw new WebApplicationException( t );
    }
  }

  private boolean canAdminister() {
    IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
    return policy.isAllowed( RepositoryReadAction.NAME ) && policy.isAllowed( RepositoryCreateAction.NAME )
        && ( policy.isAllowed( AdministerSecurityAction.NAME ) );
  }
View Full Code Here


import javax.ws.rs.core.Response;

public class PasswordResourceTest {
  @Test
  public void testEncodePassword() throws Exception {
    final IAuthorizationPolicy policy = Mockito.mock( IAuthorizationPolicy.class );
    PasswordResource resource = getPasswordResource( policy );
    Mockito.when( policy.isAllowed( AdministerSecurityAction.NAME ) ).thenReturn( true );
    Response response = resource.encryptPassword( "password" );
    Assert.assertTrue( response.getEntity().toString().contains( "ENC:cGFzc3dvcmQ=" ) );
    Assert.assertEquals( 200, response.getStatus() );
    Assert.assertEquals( 200, resource.encryptionForm().getStatus() );
  }
View Full Code Here

    Assert.assertEquals( 200, resource.encryptionForm().getStatus() );
  }

  @Test
  public void testMustHaveAdminAccess() throws Exception {
    final IAuthorizationPolicy policy = Mockito.mock( IAuthorizationPolicy.class );
    PasswordResource resource = getPasswordResource( policy );
    Mockito.when( policy.isAllowed( AdministerSecurityAction.NAME ) ).thenReturn( false );
    Response response = resource.encryptPassword( "password" );
    Assert.assertEquals( 401, response.getStatus() );
    Assert.assertEquals( 401, resource.encryptionForm().getStatus() );
  }
View Full Code Here

    }
    return false;
  }

  private boolean canAdminister() {
    IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
    return policy.isAllowed( RepositoryReadAction.NAME ) && policy.isAllowed( RepositoryCreateAction.NAME )
        && ( policy.isAllowed( AdministerSecurityAction.NAME ) );
  }
View Full Code Here

    // don't return the actual list, otherwise the user could remove items without going through our api
    ArrayList<IPluginPerspective> allowedPerspectives = new ArrayList<IPluginPerspective>();

    for ( IPluginPerspective perspective : perspectives ) {
      ArrayList<String> actions = perspective.getRequiredSecurityActions();
      IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
      boolean allowed = true;
      if ( policy != null && actions != null && !actions.isEmpty() ) {
        // we're going to have to check the user
        for ( String actionName : actions ) {
          allowed = policy.isAllowed( actionName );
          if ( !allowed ) {
            // don't need to check anymore
            break;
          }
        }
View Full Code Here

  private Response processErrorResponse( String errMessage ) {
    return Response.ok( errMessage ).build();
  }

  private boolean canAdminister() {
    IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
    return policy.isAllowed( RepositoryReadAction.NAME ) && policy.isAllowed( RepositoryCreateAction.NAME )
        && ( policy.isAllowed( AdministerSecurityAction.NAME ) );
  }
View Full Code Here

        break;
      }
    }

    if ( validInput ) {
      IAuthorizationPolicy policy = getPolicy();
      isAllowed = policy.isAllowed( authAction );
    }
    return isAllowed;
  }
View Full Code Here

  public RoleListWrapper getExtraRolesList() {
    return new RoleListWrapper( getExtraRoles() );
  }

  protected boolean canAdminister() {
    IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
    return policy.isAllowed( RepositoryReadAction.NAME ) && policy.isAllowed( RepositoryCreateAction.NAME )
        && ( policy.isAllowed( AdministerSecurityAction.NAME ) );
  }
View Full Code Here

    }
    return Response.ok( new JaxbList<Setting>( settings ), MediaType.APPLICATION_JSON ).build();
  }

  private boolean canAdminister() {
    IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
    return policy.isAllowed( RepositoryReadAction.NAME ) && policy.isAllowed( RepositoryCreateAction.NAME )
        && ( policy.isAllowed( AdministerSecurityAction.NAME ) );
  }
View Full Code Here

      return Response.status( UNAUTHORIZED ).build();
    }
  }

  private boolean canAdminister() {
    IAuthorizationPolicy policy = PentahoSystem.get( IAuthorizationPolicy.class );
    return policy.isAllowed( RepositoryReadAction.NAME ) && policy.isAllowed( RepositoryCreateAction.NAME )
        && ( policy.isAllowed( AdministerSecurityAction.NAME ) );
  }
View Full Code Here

TOP

Related Classes of org.pentaho.platform.api.engine.IAuthorizationPolicy

Copyright © 2018 www.massapicom. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.