+ ArgeoUser argeoUser = securityService.getSecurityDao().getCurrentUser();
+ if (argeoUser == null)
+ return new SimpleArgeoUser();
+ else
+ return argeoUser;
+ }
+
+ @RequestMapping("/getUsersList.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public List<ArgeoUser> getUsersList() {
+ return securityService.getSecurityDao().listUsers();
+ }
+
+ @RequestMapping("/userExists.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public BooleanAnswer userExists(@RequestParam("username") String username) {
+ return new BooleanAnswer(securityService.getSecurityDao().userExists(
+ username));
+ }
+
+ @RequestMapping("/createUser.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ArgeoUser createUser(Reader reader) {
+ ArgeoUser user = userDeserializer.deserialize(reader,
+ SimpleArgeoUser.class);
+ // cleanUserBeforeCreate(user);
+ securityService.newUser(user);
+ return securityService.getSecurityDao().getUser(user.getUsername());
+ }
+
+ @RequestMapping("/updateUser.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ArgeoUser updateUser(Reader reader) {
+ ArgeoUser user = userDeserializer.deserialize(reader,
+ SimpleArgeoUser.class);
+ securityService.updateUser(user);
+ return securityService.getSecurityDao().getUser(user.getUsername());
+ }
+
+ @RequestMapping("/updateUserSelf.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ /** Will only update the user natures.*/
+ public ArgeoUser updateUserSelf(Reader reader) {
+ ArgeoUser user = securityService.getSecurityDao().getCurrentUser();
+ ArgeoUser userForNatures = userDeserializer.deserialize(reader,
+ SimpleArgeoUser.class);
+ user.updateUserNatures(userForNatures.getUserNatures());
+ securityService.updateUser(user);
+ return securityService.getSecurityDao().getUser(user.getUsername());
+ }
+
+ @RequestMapping("/deleteUser.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ServerAnswer deleteUser(@RequestParam("username") String username) {
+ securityService.getSecurityDao().delete(username);
+ return ServerAnswer.ok("User " + username + " deleted");
+ }
+
+ @RequestMapping("/getUserDetails.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ArgeoUser getUserDetails(@RequestParam("username") String username) {
+ return securityService.getSecurityDao().getUser(username);
+ }
+
+ /* ROLE */
+ @RequestMapping("/getRolesList.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public List<String> getEditableRolesList() {
+ return securityService.getSecurityDao().listEditableRoles();
+ }
+
+ @RequestMapping("/createRole.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ServerAnswer createRole(@RequestParam("role") String role) {
+ securityService.newRole(role);
+ return ServerAnswer.ok("Role " + role + " created");
+ }
+
+ @RequestMapping("/deleteRole.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ServerAnswer deleteRole(@RequestParam("role") String role) {
+ securityService.getSecurityDao().deleteRole(role);
+ return ServerAnswer.ok("Role " + role + " deleted");
+ }
+
+ @RequestMapping("/updateUserPassword.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ServerAnswer updateUserPassword(
+ @RequestParam("username") String username,
+ @RequestParam("password") String password) {
+ securityService.updateUserPassword(username, password);
+ return ServerAnswer.ok("Password updated for user " + username);
+ }
+
+ @RequestMapping("/updatePassword.security")
+ @ModelAttribute(ANSWER_MODEL_KEY)
+ public ServerAnswer updatePassword(
+ @RequestParam("oldPassword") String oldPassword,
+ @RequestParam("password") String password) {
+ securityService.updateCurrentUserPassword(oldPassword, password);
+ return ServerAnswer.ok("Password updated");
+ }
+
+ public void setUserDeserializer(Deserializer userDeserializer) {
+ this.userDeserializer = userDeserializer;
+ }