001/*
002 * (C) Copyright 2006-2007 Nuxeo SA (http://nuxeo.com/) and others.
003 *
004 * Licensed under the Apache License, Version 2.0 (the "License");
005 * you may not use this file except in compliance with the License.
006 * You may obtain a copy of the License at
007 *
008 *     http://www.apache.org/licenses/LICENSE-2.0
009 *
010 * Unless required by applicable law or agreed to in writing, software
011 * distributed under the License is distributed on an "AS IS" BASIS,
012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 * See the License for the specific language governing permissions and
014 * limitations under the License.
015 *
016 * Contributors:
017 *     Nuxeo - initial API and implementation
018 *
019 * $Id: JOOoConvertPluginImpl.java 18651 2007-05-13 20:28:53Z sfermigier $
020 */
021
022package org.nuxeo.ecm.webapp.contentbrowser;
023
024import static org.jboss.seam.ScopeType.*;
025
026import java.security.Principal;
027import java.util.ArrayList;
028import java.util.List;
029
030import org.jboss.seam.annotations.In;
031import org.jboss.seam.annotations.Name;
032import org.jboss.seam.annotations.Scope;
033import org.nuxeo.ecm.core.api.security.SecurityConstants;
034import org.nuxeo.ecm.platform.usermanager.UserManager;
035import org.nuxeo.ecm.webapp.documenttemplates.DocumentTemplatesActions;
036import org.nuxeo.ecm.webapp.security.SecurityActions;
037
038@Name("isolatedWorkspaceCreator")
039@Scope(STATELESS)
040public class IsolatedWorkspaceCreatorBean {
041
042    @In(create = true)
043    protected transient Principal currentUser;
044
045    @In(create = true)
046    protected transient DocumentTemplatesActions documentTemplatesActions;
047
048    @In(create = true)
049    protected transient UserManager userManager;
050
051    @In(create = true)
052    protected transient SecurityActions securityActions;
053
054    public String createIsolatedWorkspace() {
055
056        String result = documentTemplatesActions.createDocumentFromTemplate();
057        // String result = documentActions.saveDocument();
058        List<String> principalsName = new ArrayList<String>();
059        principalsName.add(currentUser.getName());
060        principalsName.addAll(userManager.getAdministratorsGroups());
061
062        // Grant to principalList
063        for (String principalName : principalsName) {
064            securityActions.addPermission(principalName, SecurityConstants.EVERYTHING, true);
065        }
066
067        // DENY at root
068        securityActions.addPermission(SecurityConstants.EVERYONE, SecurityConstants.EVERYTHING, false);
069        securityActions.updateSecurityOnDocument();
070
071        return result;
072    }
073
074}