rights_delaction.java

J2EE架构的权限系统

//Created by MyEclipse Struts
// XSL source (default): platform:/plugin/com.genuitec.eclipse.cross.easystruts.eclipse_3.8.4/xslt/JavaClass.xsl

package com.infosys.struts.action;

import java.io.IOException;
import java.util.List;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import net.sf.hibernate.HibernateException;
import net.sf.hibernate.Session;
import net.sf.hibernate.Transaction;

import org.apache.struts.action.Action;
import org.apache.struts.action.ActionForm;
import org.apache.struts.action.ActionForward;
import org.apache.struts.action.ActionMapping;
import org.infosys.entity.Db2Private;
import org.infosys.security.Check;
import org.infosys.util.RecordLog;

import com.infosys.Hibernate.PPrivilege;
import com.infosys.Hibernate.SessionFactory;

/** 
 * MyEclipse Struts
 * Creation date: 08-24-2005
 * 
 * XDoclet definition:
 * @struts:action
 */
public class Rights_delAction extends Action {

	// --------------------------------------------------------- Instance Variables

	// --------------------------------------------------------- Methods

	/** 
	 * Method execute
	 * @param mapping
	 * @param form
	 * @param request
	 * @param response
	 * @return ActionForward
	 */
	public ActionForward execute(
		ActionMapping mapping,
		ActionForm form,
		HttpServletRequest request,
		HttpServletResponse response) {
		//验证登录以及权限
		String isrights=Check.isRights(request,response,"rights_man.do");
		if(!isrights.equals("OK")){
			org.infosys.security.Check.redirectErr(request,response,"err.do?errmsg="+isrights);
			return null;
		}else{
			String ids[]=request.getParameterValues("id");
			if(ids!=null && ids.length>0){
				Transaction tx;
				Session session;
				try {
					session = SessionFactory.currentSession();
					tx=session.beginTransaction();
					List checkRight,checkSys;
					for(int i=0;i<ids.length;i++){
						//检测是否系统基础菜单
						checkSys=session.find("from PPrivilege p where p.issys=1 and p.prvid='"+ids[i]+"'");
						if(checkSys==null || checkSys.size()==0){
							//检测权限点是否隶属于一个权限组,是就不能删除
							checkRight=session.find("from PGroupPrv g where g.id.privilege='"+ids[i]+"'");
							if(checkRight==null || checkRight.size()==0){
								session.delete(new PPrivilege(ids[i]));
								RecordLog.log(request,"Del rights:"+ids[i],session);
							}
						}
					}
					tx.commit();
				} catch (HibernateException e) {
					e.printStackTrace();
				} finally {
					try {
						SessionFactory.closeSession();
					} catch (HibernateException e1) {
						e1.printStackTrace();
					}
					Db2Private.setFatherRights(); //刷新父节点持久数据
				}
			}
			
			try {
				response.sendRedirect("rights_man.do");
			} catch (IOException e) {
				// TODO 自动生成 catch 块
				e.printStackTrace();
			}
			return null;
		}
	}

}