import java.security.PrivilegedAction;
import java.security.PrivilegedActionException;
import java.security.PrivilegedExceptionAction;
-import java.security.acl.Group;
import java.util.HashSet;
+import java.util.Locale;
import java.util.Set;
import java.util.UUID;
import javax.security.auth.Subject;
import javax.security.auth.x500.X500Principal;
-import org.apache.commons.logging.Log;
-import org.apache.commons.logging.LogFactory;
+import org.argeo.api.NodeConstants;
import org.argeo.cms.CmsException;
import org.argeo.cms.internal.auth.CmsSessionImpl;
-import org.argeo.eclipse.ui.specific.UiContext;
-import org.argeo.node.NodeConstants;
+import org.argeo.cms.internal.auth.ImpliedByPrincipal;
+import org.argeo.cms.internal.kernel.Activator;
import org.osgi.service.useradmin.Authorization;
/**
* context.
*/
public final class CurrentUser {
- private final static Log log = LogFactory.getLog(CurrentUser.class);
-// private final static BundleContext bc = FrameworkUtil.getBundle(CurrentUser.class).getBundleContext();
+ // private final static Log log = LogFactory.getLog(CurrentUser.class);
+ // private final static BundleContext bc =
+ // FrameworkUtil.getBundle(CurrentUser.class).getBundleContext();
/*
* CURRENT USER API
*/
/**
* Technical username of the currently authenticated user.
*
- * @return the authenticated username or null if not authenticated /
- * anonymous
+ * @return the authenticated username or null if not authenticated / anonymous
*/
public static String getUsername() {
return getUsername(currentSubject());
}
/**
- * Human readable name of the currently authenticated user (typically first
- * name and last name).
+ * Human readable name of the currently authenticated user (typically first name
+ * and last name).
*/
public static String getDisplayName() {
return getDisplayName(currentSubject());
return isAnonymous(currentSubject());
}
+ /** Locale of the current user */
+ public final static Locale locale() {
+ return locale(currentSubject());
+ }
+
/** Roles of the currently logged-in user */
public final static Set<String> roles() {
return roles(currentSubject());
public final static Set<String> roles(Subject subject) {
Set<String> roles = new HashSet<String>();
roles.add(getUsername(subject));
- for (Principal group : subject.getPrincipals(Group.class)) {
+ for (Principal group : subject.getPrincipals(ImpliedByPrincipal.class)) {
roles.add(group.getName());
}
return roles;
}
+ public final static Locale locale(Subject subject) {
+ Set<Locale> locales = subject.getPublicCredentials(Locale.class);
+ if (locales.isEmpty()) {
+ Locale defaultLocale = Activator.getNodeState().getDefaultLocale();
+ return defaultLocale;
+ } else
+ return locales.iterator().next();
+ }
+
/** Whether this user is currently authenticated. */
public static boolean isAnonymous(Subject subject) {
if (subject == null)
String username = getUsername(subject);
return username == null || username.equalsIgnoreCase(NodeConstants.ROLE_ANONYMOUS);
}
+
+ public CmsSession getCmsSession() {
+ Subject subject = currentSubject();
+ CmsSessionId cmsSessionId = subject.getPrivateCredentials(CmsSessionId.class).iterator().next();
+ return CmsSessionImpl.getByUuid(cmsSessionId.getUuid());
+ }
+
/*
* HELPERS
*/
-
private static Subject currentSubject() {
- CmsAuthenticated cmsView = getNodeAuthenticated();
- if (cmsView != null)
- return cmsView.getSubject();
- Subject subject = Subject.getSubject(AccessController.getContext());
+ // CmsAuthenticated cmsView = getNodeAuthenticated();
+ // if (cmsView != null)
+ // return cmsView.getSubject();
+ Subject subject = getAccessControllerSubject();
if (subject != null)
return subject;
throw new CmsException("Cannot find related subject");
}
+ private static Subject getAccessControllerSubject() {
+ return Subject.getSubject(AccessController.getContext());
+ }
+
+ // public static boolean isAuthenticated() {
+ // return getAccessControllerSubject() != null;
+ // }
+
/**
* The node authenticated component (typically a CMS view) related to this
- * display, or null if none is available from this call. <b>Not API: Only
- * for low-level access.</b>
+ * display, or null if none is available from this call. <b>Not API: Only for
+ * low-level access.</b>
*/
- private static CmsAuthenticated getNodeAuthenticated() {
- return UiContext.getData(CmsAuthenticated.KEY);
- }
+ // private static CmsAuthenticated getNodeAuthenticated() {
+ // return UiContext.getData(CmsAuthenticated.KEY);
+ // }
private static Authorization getAuthorization(Subject subject) {
return subject.getPrivateCredentials(Authorization.class).iterator().next();
nodeSessionId = subject.getPrivateCredentials(CmsSessionId.class).iterator().next().getUuid();
else
return false;
- CmsSessionImpl cmsSession = (CmsSessionImpl) CmsSessionImpl.getByUuid(nodeSessionId.toString());
+ CmsSessionImpl cmsSession = CmsSessionImpl.getByUuid(nodeSessionId.toString());
cmsSession.close();
- // Collection<ServiceReference<CmsSession>> srs;
- // try {
- // srs = bc.getServiceReferences(CmsSession.class, "(" +
- // CmsSession.SESSION_UUID + "=" + nodeSessionId + ")");
- // } catch (InvalidSyntaxException e) {
- // throw new CmsException("Cannot retrieve CMS session #" +
- // nodeSessionId, e);
- // }
- //
- // if (srs.size() == 0) {
- // // if (log.isTraceEnabled())
- // // log.warn("No CMS web session found for http session " +
- // // nodeSessionId);
- // return false;
- // } else if (srs.size() > 1)
- // throw new CmsException(srs.size() + " CMS web sessions found for http
- // session " + nodeSessionId);
- //
- // WebCmsSessionImpl cmsSession = (WebCmsSessionImpl)
- // bc.getService(srs.iterator().next());
-// cmsSession.cleanUp();
- // subject.getPrivateCredentials().removeAll(subject.getPrivateCredentials(CmsSessionId.class));
- if (log.isDebugEnabled())
- log.debug("Logged out CMS session " + cmsSession.getUuid());
+ // if (log.isDebugEnabled())
+ // log.debug("Logged out CMS session " + cmsSession.getUuid());
return true;
}
projects / lgpl / argeo-commons.git / blobdiff