Package com.dotmarketing.business

Source Code of com.dotmarketing.business.UserAPIImpl

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
package com.dotmarketing.business;

import java.util.Date;
import java.util.List;
import java.util.Map;

import com.dotmarketing.cms.factories.PublicCompanyFactory;
import com.dotmarketing.exception.DotDataException;
import com.dotmarketing.exception.DotRuntimeException;
import com.dotmarketing.exception.DotSecurityException;
import com.dotmarketing.util.Config;
import com.dotmarketing.util.UtilMethods;
import com.liferay.portal.ejb.UserManagerUtil;
import com.liferay.portal.model.Address;
import com.liferay.portal.model.User;
import com.liferay.portal.pwd.PwdToolkitUtil;
import com.liferay.portal.util.PropsUtil;
import com.liferay.util.Encryptor;
import com.liferay.util.GetterUtil;

/**
* UserAPIImpl is an API intended to be a helper class for class to get User entities from liferay's repository.  Classes within the dotCMS
* should use this API for user management.  The UserAPIImpl does not do cache management. It delegates this responsabilities
* to underlying classes.
* @author David Torres
* @author Carlos Rivas (crivas)
* @author Jason Tesser
* @version 1.9
* @since 1.6
*/
public class UserAPIImpl implements UserAPI {

  private UserFactory uf;
  private PermissionAPI perAPI;
  private UserProxyAPI upAPI;

  public UserAPIImpl() {
    uf = FactoryLocator.getUserFactory();
    perAPI = APILocator.getPermissionAPI();
    upAPI = APILocator.getUserProxyAPI();
  }

  public User loadUserById(String userId, User user, boolean respectFrontEndRoles) throws DotDataException, DotSecurityException,com.dotmarketing.business.NoSuchUserException {
    if(!UtilMethods.isSet(userId)){
      throw new DotDataException("You must specifiy an userId to search for");
    }
    User u = uf.loadUserById(userId);
    if(!UtilMethods.isSet(u)){
      throw new com.dotmarketing.business.NoSuchUserException("No user found with passed in email");
    }
    if(perAPI.doesUserHavePermission(upAPI.getUserProxy(u,APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_READ, user, respectFrontEndRoles)){
      return u;
    }else{
      throw new DotSecurityException("The User being passed in doesn't have permission to requested User");
    }
  }

  public User loadUserById(String userId) throws DotDataException, DotSecurityException,com.dotmarketing.business.NoSuchUserException {
    if(!UtilMethods.isSet(userId)){
      throw new DotDataException("You must specifiy an userId to search for");
    }
    User u = uf.loadUserById(userId);
    if(!UtilMethods.isSet(u)){
      throw new com.dotmarketing.business.NoSuchUserException("No user found with passed in email");
    }
    return u;
  }

  public User loadByUserByEmail(String email, User user, boolean respectFrontEndRoles) throws DotDataException, DotSecurityException, com.dotmarketing.business.NoSuchUserException {
    if(!UtilMethods.isSet(email)){
      throw new DotDataException("You must specifiy an email to search for");
    }
    User u = uf.loadByUserByEmail(email);
    if(!UtilMethods.isSet(u)){
      throw new com.dotmarketing.business.NoSuchUserException("No user found with passed in email");
    }
    if(perAPI.doesUserHavePermission(upAPI.getUserProxy(u,APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_READ, user, respectFrontEndRoles)){
      return u;
    }else{
      throw new DotSecurityException("The User being passed in doesn't have permission to requested User");
    }
  }

  /*
   * (non-Javadoc)
   * @see com.dotmarketing.business.UserAPI#encryptUserId(java.lang.String)
   */
  public String encryptUserId(String userId) throws DotStateException{
    try{
      return UserManagerUtil.encryptUserId(userId);
    }catch (Exception e) {
      throw new DotStateException("Unable to encrypt userID : ", e);
    }
  }

    /* (non-Javadoc)
   * @see com.dotmarketing.business.UserAPI#getUsersByName(java.lang.String, int, int)
   */
    public List<User> getUsersByName(String filter, int start,int limit, User user, boolean respectFrontEndRoles) throws DotDataException {
      return uf.getUsersByName(filter, start, limit);
    }

  public User createUser(String userId, String email) throws DotDataException, DuplicateUserException {
    return uf.createUser(userId, email);
  }

  public User getDefaultUser() throws DotDataException {
    try {
      return uf.loadDefaultUser();
    } catch (Exception e) {
      throw new DotDataException("getting default user user failed", e);
    }
  }

  public User getSystemUser() throws DotDataException {
    User user = null;
    RoleAPI roleAPI = com.dotmarketing.business.APILocator.getRoleAPI();
    //Role cmsAdminRole = roleAPI.loadRoleByKey(Config.getStringProperty("CMS_ADMINISTRATOR_ROLE"));
    Role cmsAdminRole = roleAPI.loadCMSAdminRole();
    try {
      user = uf.loadUserById("system");
    } catch (NoSuchUserException e) {
        user = createUser("system", "system@dotcmsfakeemail.org");
            user.setUserId("system");
            user.setFirstName("system user");
            user.setLastName("system user");
            user.setCreateDate(new java.util.Date());
            user.setCompanyId(PublicCompanyFactory.getDefaultCompanyId());
            uf.saveUser(user);
    }
    if(!roleAPI.doesUserHaveRole(user, cmsAdminRole))
      roleAPI.addRoleToUser(cmsAdminRole.getId(), user);

    return user;
  }

  public User getAnonymousUser() throws DotDataException {
    User user = null;
    try {
        user = uf.loadUserById("anonymous");
    } catch (DotDataException e) {
      user = createUser("anonymous", "anonymous@dotcmsfakeemail.org");
      user.setUserId("anonymous");
      user.setFirstName("anonymous user");
      user.setCreateDate(new java.util.Date());
      user.setCompanyId(PublicCompanyFactory.getDefaultCompanyId());
      uf.saveUser(user);
      com.dotmarketing.business.APILocator.getRoleAPI().addRoleToUser(com.dotmarketing.business.APILocator.getRoleAPI().loadRoleByKey(Config.getStringProperty("CMS_ANONYMOUS_ROLE")).getId(), user);
    } catch (NoSuchUserException e) {
      user = createUser("anonymous", "anonymous@dotcmsfakeemail.org");
      user.setUserId("anonymous");
      user.setFirstName("anonymous user");
      user.setCreateDate(new java.util.Date());
      user.setCompanyId(PublicCompanyFactory.getDefaultCompanyId());
      uf.saveUser(user);
      com.dotmarketing.business.APILocator.getRoleAPI().addRoleToUser(com.dotmarketing.business.APILocator.getRoleAPI().loadCMSAnonymousRole().getId(), user);
    }
    return user;
  }

  public boolean userExistsWithEmail(String email) throws DotDataException {
    return uf.userExistsWithEmail(email);
  }

  public List<User> findAllUsers(int begin, int end) throws DotDataException {
    return uf.findAllUsers(begin, end);
  }

  public List<User> findAllUsers() throws DotDataException {
    return uf.findAllUsers();
  }

  public long getCountUsersByNameOrEmail(String filter) throws DotDataException {
    return uf.getCountUsersByNameOrEmail(filter);
  }

  public List<User> getUsersByNameOrEmail(String filter, int page, int pageSize) throws DotDataException {
    return uf.getUsersByNameOrEmail(filter, page, pageSize);
  }

    public List<String> getUsersIdsByCreationDate ( Date filterDate, int page, int pageSize ) throws DotDataException {
        return uf.getUsersIdsByCreationDate( filterDate, page, pageSize );
    }

    public long getCountUsersByNameOrEmailOrUserID(String filter) throws DotDataException {
    return uf.getCountUsersByNameOrEmailOrUserID(filter);
  }

  public List<User> getUsersByNameOrEmailOrUserID(String filter, int page, int pageSize) throws DotDataException {
    return uf.getUsersByNameOrEmailOrUserID(filter, page, pageSize);
  }

  @SuppressWarnings("deprecation")
  public Map<String, Object> getUsersAnRolesByName(String filter, int start, int limit) throws DotDataException {
    return uf.getUsersAnRolesByName(filter, start, limit);
  }

  public void save(User userToSave, User user, boolean respectFrontEndRoles) throws DotDataException, DotSecurityException,DuplicateUserException {
    if (userToSave.getUserId() == null) {
      throw new DotDataException("Can't save a user without a userId");
    }
    if(!perAPI.doesUserHavePermission(upAPI.getUserProxy(userToSave,APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_EDIT, user, respectFrontEndRoles)){
      throw new DotSecurityException("User doesn't have permission to save the user which is trying to be saved");
    }
    uf.saveUser(userToSave);
    APILocator.getRoleAPI().getUserRole(userToSave);
  }

  public void delete(User userToDelete, User user, boolean respectFrontEndRoles) throws DotDataException,  DotSecurityException {
    if (userToDelete.getUserId() == null) {
      throw new DotDataException("Can't delete a user without a userId");
    }
    if(!perAPI.doesUserHavePermission(upAPI.getUserProxy(userToDelete,APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_EDIT, user, respectFrontEndRoles)){
      throw new DotSecurityException("User doesn't have permission to userToDelete the user which is trying to be saved");
    }
    RoleAPI roleAPI = APILocator.getRoleAPI();
    roleAPI.removeAllRolesFromUser(userToDelete);
    uf.delete(userToDelete);
  }

  public void saveAddress(User user, Address ad, User currentUser, boolean respectFrontEndRoles) throws DotDataException, DotRuntimeException, DotSecurityException {
    if(!perAPI.doesUserHavePermission(upAPI.getUserProxy(user,APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_EDIT, currentUser, respectFrontEndRoles)){
      throw new DotSecurityException("User doesn't have permission to userToDelete the user which is trying to be saved");
    }
    uf.saveAddress(user, ad);
  }

  public Address loadAddressById(String addressId, User currentUser, boolean respectFrontEndRoles) throws DotDataException, DotSecurityException {
    Address ad = uf.loadAddressById(addressId);
    if(!perAPI.doesUserHavePermission(upAPI.getUserProxy(ad.getUserId(),APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_READ, currentUser, respectFrontEndRoles)){
      throw new DotSecurityException("User doesn't have permission to userToDelete the user which is trying to be saved");
    }
    return ad;
  }

  public void deleteAddress(Address ad, User currentUser, boolean respectFrontEndRoles) throws DotDataException, DotRuntimeException, DotSecurityException {
    if(!perAPI.doesUserHavePermission(upAPI.getUserProxy(ad.getUserId(),APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_EDIT, currentUser, respectFrontEndRoles)){
      throw new DotSecurityException("User doesn't have permission to userToDelete the user which is trying to be saved");
    }
    uf.deleteAddress(ad);
  }

  public List<Address> loadUserAddresses(User user, User currentUser, boolean respectFrontEndRoles) throws DotDataException, DotRuntimeException, DotSecurityException {
    if(!perAPI.doesUserHavePermission(upAPI.getUserProxy(user,APILocator.getUserAPI().getSystemUser(), false), PermissionAPI.PERMISSION_READ, currentUser, respectFrontEndRoles)){
      throw new DotSecurityException("User doesn't have permission to userToDelete the user which is trying to be saved");
    }
    return uf.loadUserAddresses(user);
  }

  public boolean isCMSAdmin(User user) throws DotDataException {
    RoleAPI roleAPI = APILocator.getRoleAPI();
    return roleAPI.doesUserHaveRole(user, roleAPI.loadCMSAdminRole());
  }

    @Override
    public void updatePassword(User user, String newpass, User currentUser, boolean respectFrontEndRoles) throws DotDataException, DotInvalidPasswordException, DotSecurityException {
        if(!PwdToolkitUtil.validate(newpass)) {
            throw new DotInvalidPasswordException("Invalid password");
        }
        user.setPassword(Encryptor.digest(newpass));
        user.setPasswordEncrypted(true);
        user.setIcqId("");
        user.setPasswordReset(GetterUtil.getBoolean(
                PropsUtil.get(PropsUtil.PASSWORDS_CHANGE_ON_FIRST_USE)));
        save(user, currentUser, respectFrontEndRoles);

    }


}
TOP

Related Classes of com.dotmarketing.business.UserAPIImpl

  • com.liferay.portal.model.Address
  • com.liferay.portal.model.User
  • com.dotmarketing.exception.DotDataException
  • com.dotmarketing.exception.DotSecurityException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.