package org.argeo.cms.e4.users; import java.util.ArrayList; import java.util.Collections; import java.util.Dictionary; import java.util.HashMap; import java.util.List; import java.util.Map; import java.util.Set; import java.util.TreeSet; import javax.transaction.Status; import javax.transaction.UserTransaction; import org.argeo.cms.CmsException; import org.argeo.node.NodeConstants; import org.argeo.osgi.useradmin.UserAdminConf; import org.osgi.service.useradmin.UserAdmin; import org.osgi.service.useradmin.UserAdminEvent; import org.osgi.service.useradmin.UserAdminListener; /** Centralise interaction with the UserAdmin in this bundle */ public class UserAdminWrapper { private UserAdmin userAdmin; // private ServiceReference userAdminServiceReference; private Set uris; private UserTransaction userTransaction; // First effort to simplify UX while managing users and groups public final static boolean COMMIT_ON_SAVE = true; // Registered listeners List listeners = new ArrayList(); /** * Starts a transaction if necessary. Should always been called together with * {@link UserAdminWrapper#commitOrNotifyTransactionStateChange()} once the * security model changes have been performed. */ public UserTransaction beginTransactionIfNeeded() { try { // UserTransaction userTransaction = getUserTransaction(); if (userTransaction.getStatus() == Status.STATUS_NO_TRANSACTION) { userTransaction.begin(); // UiAdminUtils.notifyTransactionStateChange(userTransaction); } return userTransaction; } catch (Exception e) { throw new CmsException("Unable to begin transaction", e); } } /** * Depending on the current application configuration, it will either commit the * current transaction or throw a notification that the transaction state has * changed (In the later case, it must be called from the UI thread). */ public void commitOrNotifyTransactionStateChange() { try { // UserTransaction userTransaction = getUserTransaction(); if (userTransaction.getStatus() == Status.STATUS_NO_TRANSACTION) return; if (UserAdminWrapper.COMMIT_ON_SAVE) userTransaction.commit(); else UiAdminUtils.notifyTransactionStateChange(userTransaction); } catch (Exception e) { throw new CmsException("Unable to clean transaction", e); } } // TODO implement safer mechanism public void addListener(UserAdminListener userAdminListener) { if (!listeners.contains(userAdminListener)) listeners.add(userAdminListener); } public void removeListener(UserAdminListener userAdminListener) { if (listeners.contains(userAdminListener)) listeners.remove(userAdminListener); } public void notifyListeners(UserAdminEvent event) { for (UserAdminListener listener : listeners) listener.roleChanged(event); } public Map getKnownBaseDns(boolean onlyWritable) { Map dns = new HashMap(); for (String uri : uris) { if (!uri.startsWith("/")) continue; Dictionary props = UserAdminConf.uriAsProperties(uri); String readOnly = UserAdminConf.readOnly.getValue(props); String baseDn = UserAdminConf.baseDn.getValue(props); if (onlyWritable && "true".equals(readOnly)) continue; if (baseDn.equalsIgnoreCase(NodeConstants.ROLES_BASEDN)) continue; dns.put(baseDn, uri); } return dns; } public UserAdmin getUserAdmin() { return userAdmin; } public UserTransaction getUserTransaction() { return userTransaction; } /* DEPENDENCY INJECTION */ public void setUserAdmin(UserAdmin userAdmin, Map properties) { this.userAdmin = userAdmin; this.uris = Collections.unmodifiableSortedSet(new TreeSet<>(properties.keySet())); } public void setUserTransaction(UserTransaction userTransaction) { this.userTransaction = userTransaction; } // public void setUserAdminServiceReference( // ServiceReference userAdminServiceReference) { // this.userAdminServiceReference = userAdminServiceReference; // } }