package org.argeo.security.ui;
-import org.argeo.ArgeoException;
-import org.argeo.security.ArgeoUser;
-import org.argeo.security.UserNature;
-import org.argeo.security.nature.SimpleUserNature;
import org.eclipse.jface.resource.ImageDescriptor;
import org.eclipse.ui.plugin.AbstractUIPlugin;
import org.osgi.framework.BundleContext;
public static ImageDescriptor getImageDescriptor(String path) {
return imageDescriptorFromPlugin(PLUGIN_ID, path);
}
-
- /*
- * SECURITY UTILITIES
- */
- public final static SimpleUserNature findSimpleUserNature(ArgeoUser user,
- String simpleNatureType) {
- SimpleUserNature simpleNature = null;
- if (simpleNatureType != null)
- simpleNature = (SimpleUserNature) user.getUserNatures().get(
- simpleNatureType);
- else
- for (UserNature userNature : user.getUserNatures().values())
- if (userNature instanceof SimpleUserNature)
- simpleNature = (SimpleUserNature) userNature;
-
- if (simpleNature == null)
- throw new ArgeoException("No simple user nature in user " + user);
- return simpleNature;
- }
}
super(editor, ID, "Main");
this.securityService = securityService;
this.user = user;
- this.simpleNature = SecurityUiPlugin.findSimpleUserNature(user,
+ this.simpleNature = SimpleUserNature.findSimpleUserNature(user,
simpleNatureType);
}
public String getColumnText(Object element, int columnIndex) {
String currentUsername = CurrentUser.getUsername();
ArgeoUser user = (ArgeoUser) element;
- SimpleUserNature simpleNature = SecurityUiPlugin
+ SimpleUserNature simpleNature = SimpleUserNature
.findSimpleUserNature(user, simpleNatureType);
switch (columnIndex) {
case 0:
public void deleteRole(String role);
+ /** List all users having this role. */
+ public List<ArgeoUser> listUsersInRole(String role);
+
public Boolean userExists(String username);
public ArgeoUser getUser(String username);
package org.argeo.security;
+import java.util.List;
+
/**
* High level access to the user referential (independent from the underlying
* storage).
public ArgeoSecurityDao getSecurityDao();
public Runnable wrapWithSystemAuthentication(final Runnable runnable);
+
+ /** List users having this role (except the super user). */
+ public List<ArgeoUser> listUsersInRole(String role);
+
}
package org.argeo.security.core;
+import java.util.Iterator;
+import java.util.List;
+
import org.argeo.ArgeoException;
import org.argeo.security.ArgeoSecurity;
import org.argeo.security.ArgeoSecurityDao;
};
}
+ public List<ArgeoUser> listUsersInRole(String role) {
+ List<ArgeoUser> lst = securityDao.listUsersInRole(role);
+ Iterator<ArgeoUser> it = lst.iterator();
+ while (it.hasNext()) {
+ if (it.next().getUsername()
+ .equals(argeoSecurity.getSuperUsername())) {
+ it.remove();
+ break;
+ }
+ }
+ return lst;
+ }
+
public void setArgeoSecurity(ArgeoSecurity argeoSecurity) {
this.argeoSecurity = argeoSecurity;
}
});
}
+ @SuppressWarnings("unchecked")
+ public List<ArgeoUser> listUsersInRole(String role) {
+ return (List<ArgeoUser>) ldapTemplate.lookup(
+ buildGroupDn(convertRoleToGroup(role)), new ContextMapper() {
+ public Object mapFromContext(Object ctxArg) {
+ DirContextAdapter ctx = (DirContextAdapter) ctxArg;
+ String[] userDns = ctx
+ .getStringAttributes(groupMemberAttributeName);
+ List<ArgeoUser> lst = new ArrayList<ArgeoUser>();
+ for (String userDn : userDns) {
+ DistinguishedName dn = new DistinguishedName(userDn);
+ String username = dn
+ .getValue(usernameAttributeName);
+ lst.add(createSimpleArgeoUser(getDetails(username)));
+ }
+ return lst;
+ }
+ });
+ }
+
public synchronized void update(ArgeoUser user) {
ArgeoUserDetails argeoUserDetails = new ArgeoUserDetails(user);
userDetailsManager.updateUser(new ArgeoUserDetails(user));
package org.argeo.security.nature;
+import org.argeo.ArgeoException;
import org.argeo.security.AbstractUserNature;
+import org.argeo.security.ArgeoUser;
+import org.argeo.security.UserNature;
public class SimpleUserNature extends AbstractUserNature {
/**
this.description = description;
}
+ /*
+ * SECURITY UTILITIES
+ */
+ /**
+ * Finds a user nature extending {@link SimpleUserNature} in the provided
+ * user.
+ *
+ * @param user
+ * the user to scan
+ * @param simpleNatureType
+ * the type under which a {@link SimpleUserNature} is registered,
+ * useful if there are many. can be null.
+ * @return the {@link SimpleUserNature}
+ * @throws ArgeoException
+ * if no simple user nature was found
+ */
+ public final static SimpleUserNature findSimpleUserNature(ArgeoUser user,
+ String simpleNatureType) {
+ SimpleUserNature simpleNature = null;
+ if (simpleNatureType != null)
+ simpleNature = (SimpleUserNature) user.getUserNatures().get(
+ simpleNatureType);
+ else
+ for (UserNature userNature : user.getUserNatures().values())
+ if (userNature instanceof SimpleUserNature)
+ simpleNature = (SimpleUserNature) userNature;
+
+ if (simpleNature == null)
+ throw new ArgeoException("No simple user nature in user " + user);
+ return simpleNature;
+ }
+
}