permissionprocesshelper.java

个人认为是最好的Java论坛源码

/*
 * Copyright (c) 2003, Rafael Steil
 * All rights reserved.
 * 
 * Redistribution and use in source and binary forms, 
 * with or without modification, are permitted provided 
 * that the following conditions are met:
 * 
 * 1) Redistributions of source code must retain the above 
 * copyright notice, this list of conditions and the 
 * following  disclaimer.
 * 2)  Redistributions in binary form must reproduce the 
 * above copyright notice, this list of conditions and 
 * the following disclaimer in the documentation and/or 
 * other materials provided with the distribution.
 * 3) Neither the name of "Rafael Steil" nor 
 * the names of its contributors may be used to endorse 
 * or promote products derived from this software without 
 * specific prior written permission.
 * 
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT 
 * HOLDERS AND CONTRIBUTORS "AS IS" AND ANY 
 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, 
 * BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF 
 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR 
 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL 
 * THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE 
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, 
 * EXEMPLARY, OR CONSEQUENTIAL DAMAGES 
 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 
 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, 
 * OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER 
 * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER 
 * IN CONTRACT, STRICT LIABILITY, OR TORT 
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN 
 * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF 
 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE
 * 
 * This file creation date: 17/03/2004 - 21:19:29
 * The JForum Project
 * http://www.jforum.net
 */
package net.jforum.view.admin;

import java.util.ArrayList;
import java.util.Arrays;
import java.util.Enumeration;
import java.util.List;

import net.jforum.JForum;
import net.jforum.model.DataAccessDriver;
import net.jforum.model.security.UserSecurityModel;
import net.jforum.security.PermissionControl;
import net.jforum.security.Role;
import net.jforum.security.RoleValue;
import net.jforum.security.RoleValueCollection;

/**
 * @author Rafael Steil
 * @version $Id: PermissionProcessHelper.java,v 1.7 2005/01/10 00:03:55 rafaelsteil Exp $
 */
class PermissionProcessHelper 
{
	private PermissionControl pc;
	private UserSecurityModel umodel;
	private int id;
	private boolean isGroup;
	
	public PermissionProcessHelper(PermissionControl pc, int id, boolean isGroup) throws Exception
	{
		this.id = id;
		this.pc = pc;
		
		this.isGroup = isGroup;
		if (this.isGroup) {
			umodel = DataAccessDriver.getInstance().newUserSecurityModel();
		}
		
		this.init();
	}
	
	public PermissionProcessHelper(PermissionControl pc, int id) throws Exception
	{
		this(pc, id, false);
	}
	
	public void processData() throws Exception
	{
		Enumeration e = JForum.getRequest().getParameterNames();
		while (e.hasMoreElements()) {
			String paramName = (String)e.nextElement();
			
			if (paramName.startsWith("perm_")) {
				if (paramName.endsWith("$single")) {
					String paramValue = JForum.getRequest().getParameter(paramName);

					paramName = paramName.substring(0, paramName.indexOf('$'));
					
					if (isGroup) {
						if (JForum.getRequest().getParameter("OverrideUser" + paramName) != null) {
							this.umodel.deleteUserRoleByGroup(id, paramName);
						}
					}
					
					Role role = new Role();
					role.setName(paramName);
					
					if (paramValue.equals("deny")) {
						role.setType(PermissionControl.ROLE_DENY);
					}
					else {
						role.setType(PermissionControl.ROLE_ALLOW);
					}
					
					this.pc.addRole(this.id, role);
				}
				else {
					String[] paramValues = JForum.getRequest().getParameterValues(paramName);
					
					if (isGroup) {
						if (JForum.getRequest().getParameter("OverrideUser"+ paramName) != null) {
							this.umodel.deleteUserRoleByGroup(id, paramName);
						}
					}
					
					RoleValueCollection roleValues = new RoleValueCollection();
					if (paramValues[0].equals("all") == false) {
						// Deny
						for (int i = 0; i < paramValues.length; i++) {
							roleValues.add(this.createRoleValue(paramValues[i], PermissionControl.ROLE_DENY));
						}
						
						// Allow
						List allowList = new ArrayList(Arrays.asList(this.getSplitedValues("all" + paramName))); 
						allowList.removeAll(Arrays.asList(paramValues));
						
						this.addRoleValues(roleValues, allowList.toArray(), PermissionControl.ROLE_ALLOW);
					}
					else {
						this.addRoleValues(roleValues, this.getSplitedValues("all" + paramName), 
								PermissionControl.ROLE_ALLOW);
					}
					
					Role role = new Role();
					role.setName(paramName);
					this.pc.addRole(this.id, role, roleValues);
				}
			}
		}
	}
	
	private String[] getSplitedValues(String paramName)
	{
		String[] allValues = JForum.getRequest().getParameter(paramName).split(";");
		String[] returnValues = new String[allValues.length];
		
		for (int i = 0, counter = 0; i < allValues.length; i++) {
			if (allValues[i].trim().equals("")) {
				continue;
			}
			
			returnValues[counter++] = allValues[i];
		}
		
		return returnValues;
	}
	
	private void addRoleValues(RoleValueCollection roleValues, Object[] allValues, int permissionType)
	{
		for (int i = 0; i < allValues.length; i++) {
			String value = (String)allValues[i];
			if (value == null || value.equals("")) {
				continue;
			}

			roleValues.add(this.createRoleValue((String)allValues[i], permissionType));
		}
	}
	
	private RoleValue createRoleValue(String value, int type)
	{
		RoleValue rv = new RoleValue();
		rv.setType(type);
		rv.setValue(value);
		
		return rv;
	}
	
	private void init() throws Exception
	{
		this.pc.deleteAllRoles(this.id);
	}
}