accesscontrol.java

基本设计思路： 协同编辑开始

package servercoedit;
import java.io.*;
import java.net.*;
import java.util.Vector;
import java.util.*;
import java.sql.*;
import javax.sql.*;
import java.io.*;
import oracle.jdbc.driver.*;
import javax.naming.*;

/**
 * <p>Title: CoEditServer</p>
 * <p>Description: 服务器</p>
 * <p>Copyright: Copyright (c) 2004</p>
 * <p>Company: zhhz</p>
 * @author 景栋盛
 * @version 1.0
 */

public class AccessControl {
  String queryString="";
  public AccessControl() {
  }
 public void ValidateFromACL(){}
public String getQuery(){
   return "";}
void ExcuteQuery(){}
boolean ISlegal(String roleobject,String firstword){  //test success;dgdu
   String roleObject = roleobject;
   String firstWord = firstword;
   DatabaseOperation dbo = new DatabaseOperation();
   Connection cn = dbo.getConnection();
   int permissionID = getPermissonIDbyWord(firstWord);
   boolean boolPermission=false;
   if(permissionID!=0){
 try{
    Statement sql = cn.createStatement();
      ResultSet rs = sql.executeQuery("select * from zhhz436.ACL");

      while (rs.next()) {
        if ((rs.getString(2).compareTo(roleObject) == 0) &&(rs.getInt(3)==permissionID)){
           boolPermission=true;
        }
      }}
    catch(Exception e){}
   }
   return boolPermission;
 }
 public int getPermissonIDbyWord(String word){  //
   String firstWord=word;
   if(firstWord.equalsIgnoreCase("GET"))return (12);
   else if(firstWord.equalsIgnoreCase("GETONLINE"))return (13);
   else if(firstWord.equalsIgnoreCase("GIVE"))return (14);
   else if(firstWord.equalsIgnoreCase("POST"))return (15);
   else if(firstWord.equalsIgnoreCase("GETDOCTREE"))return (16);
   else{return (0);}

 }

 public static void main(String[] args) {
     AccessControl t = new AccessControl();  //新建一个类
     //System.out.print(t.ISlegal("ROLE_WFSHAO", "GIVE"));  //测试方法
     System.out.print(t.ISlegal("ROLE_SBWANG", "GET"));
   }
}