001/* 002 * (C) Copyright 2006-2007 Nuxeo SA (http://nuxeo.com/) and others. 003 * 004 * Licensed under the Apache License, Version 2.0 (the "License"); 005 * you may not use this file except in compliance with the License. 006 * You may obtain a copy of the License at 007 * 008 * http://www.apache.org/licenses/LICENSE-2.0 009 * 010 * Unless required by applicable law or agreed to in writing, software 011 * distributed under the License is distributed on an "AS IS" BASIS, 012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 013 * See the License for the specific language governing permissions and 014 * limitations under the License. 015 * 016 * Contributors: 017 * Nuxeo - initial API and implementation 018 * 019 * $Id: JOOoConvertPluginImpl.java 18651 2007-05-13 20:28:53Z sfermigier $ 020 */ 021 022package org.nuxeo.ecm.webapp.contentbrowser; 023 024import static org.jboss.seam.ScopeType.*; 025 026import java.security.Principal; 027import java.util.ArrayList; 028import java.util.List; 029 030import org.jboss.seam.annotations.In; 031import org.jboss.seam.annotations.Name; 032import org.jboss.seam.annotations.Scope; 033import org.nuxeo.ecm.core.api.security.SecurityConstants; 034import org.nuxeo.ecm.platform.usermanager.UserManager; 035import org.nuxeo.ecm.webapp.documenttemplates.DocumentTemplatesActions; 036import org.nuxeo.ecm.webapp.security.SecurityActions; 037 038@Name("isolatedWorkspaceCreator") 039@Scope(STATELESS) 040public class IsolatedWorkspaceCreatorBean { 041 042 @In(create = true) 043 protected transient Principal currentUser; 044 045 @In(create = true) 046 protected transient DocumentTemplatesActions documentTemplatesActions; 047 048 @In(create = true) 049 protected transient UserManager userManager; 050 051 @In(create = true) 052 protected transient SecurityActions securityActions; 053 054 public String createIsolatedWorkspace() { 055 056 String result = documentTemplatesActions.createDocumentFromTemplate(); 057 // String result = documentActions.saveDocument(); 058 List<String> principalsName = new ArrayList<String>(); 059 principalsName.add(currentUser.getName()); 060 principalsName.addAll(userManager.getAdministratorsGroups()); 061 062 // Grant to principalList 063 for (String principalName : principalsName) { 064 securityActions.addPermission(principalName, SecurityConstants.EVERYTHING, true); 065 } 066 067 // DENY at root 068 securityActions.addPermission(SecurityConstants.EVERYONE, SecurityConstants.EVERYTHING, false); 069 securityActions.updateSecurityOnDocument(); 070 071 return result; 072 } 073 074}