Source code

001/*
002 * (C) Copyright 2011 Nuxeo SAS (http://nuxeo.com/) and contributors.
003 *
004 * All rights reserved. This program and the accompanying materials
005 * are made available under the terms of the GNU Lesser General Public License
006 * (LGPL) version 2.1 which accompanies this distribution, and is available at
007 * http://www.gnu.org/licenses/lgpl.html
008 *
009 * This library is distributed in the hope that it will be useful,
010 * but WITHOUT ANY WARRANTY; without even the implied warranty of
011 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
012 * Lesser General Public License for more details.
013 * Contributors:
014 * Nuxeo - initial API and implementation
015 */
016
017package org.nuxeo.ecm.user.registration;
018
019import static org.nuxeo.ecm.user.registration.DocumentRegistrationInfo.ACL_NAME;
020
021import org.apache.commons.lang.StringUtils;
022import org.apache.commons.logging.Log;
023import org.apache.commons.logging.LogFactory;
024import org.nuxeo.ecm.core.api.CoreSession;
025import org.nuxeo.ecm.core.api.DocumentModel;
026import org.nuxeo.ecm.core.api.IdRef;
027import org.nuxeo.ecm.core.api.security.ACE;
028import org.nuxeo.ecm.user.invite.DefaultInvitationUserFactory;
029import org.nuxeo.ecm.user.invite.UserRegistrationConfiguration;
030import org.nuxeo.ecm.user.invite.UserRegistrationException;
031
032import java.util.Calendar;
033
034public class DefaultRegistrationUserFactory extends DefaultInvitationUserFactory implements RegistrationUserFactory {
035
036    private static final Log log = LogFactory.getLog(DefaultRegistrationUserFactory.class);
037
038    @Override
039    public DocumentModel doAddDocumentPermission(CoreSession session, DocumentModel registrationDoc,
040            UserRegistrationConfiguration configuration) {
041        String docId = (String) registrationDoc.getPropertyValue(DocumentRegistrationInfo.DOCUMENT_ID_FIELD);
042
043        if (StringUtils.isEmpty(docId)) {
044            log.info("No document rights needed");
045            return null;
046        }
047        String login = (String) registrationDoc.getPropertyValue(configuration.getUserInfoUsernameField());
048        String permission = (String) registrationDoc.getPropertyValue(DocumentRegistrationInfo.DOCUMENT_RIGHT_FIELD);
049        Calendar beginCal = (Calendar) registrationDoc.getPropertyValue(DocumentRegistrationInfo.DOCUMENT_BEGIN_FIELD);
050        Calendar endCal = (Calendar) registrationDoc.getPropertyValue(DocumentRegistrationInfo.DOCUMENT_END_FIELD);
051        if (StringUtils.isEmpty(permission)) {
052            throw new UserRegistrationException("Permission must be specified");
053        }
054
055        DocumentModel document = session.getDocument(new IdRef(docId));
056        if (!document.getACP().getAccess(login, permission).toBoolean()) {
057            ACE ace = ACE.builder(login, permission).isGranted(true).begin(beginCal).end(endCal).build();
058            // Always append ACL to the first place to be after the block
059            // rights inheritance ACE.
060            document.getACP().getOrCreateACL(ACL_NAME).add(0, ace);
061
062            session.setACP(document.getRef(), document.getACP(), true);
063        } else {
064            log.info(String.format("User %s already have %s on doc %s", login, permission, docId));
065        }
066
067        return document;
068    }
069
070    @Override
071    public void doPostAddDocumentPermission(CoreSession session, DocumentModel registrationDoc, DocumentModel document)
072            {
073        // Nothing to do in the default implementation
074    }
075}