Package org.olat.basesecurity

Examples of org.olat.basesecurity.Manager

164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
   */
  private void saveFormData(UserRequest ureq, Identity myIdentity, SystemRolesAndRightsForm form) {
    Map configuration = BaseSecurityModule.getConfiguration();
    boolean iAmOlatAdmin = ureq.getUserSession().getRoles().isOLATAdmin();
    boolean iAmUserManager = ureq.getUserSession().getRoles().isUserManager();
    Manager secMgr = ManagerFactory.getManager();
    // 1) general user type - anonymous or user
    // anonymous users
    boolean isAnonymous = false;
    Boolean canGuestsByConfig = (Boolean) configuration.get(BaseSecurityModule.CONFIG_USERMANAGER_CAN_MANAGE_GUESTS)
    if (canGuestsByConfig.booleanValue() || iAmOlatAdmin) {
      SecurityGroup anonymousGroup = secMgr.findSecurityGroupByName(Constants.GROUP_ANONYMOUS);
      boolean hasBeenAnonymous = secMgr.isIdentityInSecurityGroup(myIdentity, anonymousGroup);
      isAnonymous = form.isAnonymous();
      updateSecurityGroup(myIdentity, secMgr, anonymousGroup, hasBeenAnonymous, isAnonymous);
      // system users - oposite of anonymous users
      SecurityGroup usersGroup = secMgr.findSecurityGroupByName(Constants.GROUP_OLATUSERS);
      boolean hasBeenUser = secMgr.isIdentityInSecurityGroup(myIdentity, usersGroup);
      boolean isUser = !form.isAnonymous();
      updateSecurityGroup(myIdentity, secMgr, usersGroup, hasBeenUser, isUser);
    }
    // 2) system roles
    // group manager
    Boolean canGroupmanagerByConfig = (Boolean) configuration.get(BaseSecurityModule.CONFIG_USERMANAGER_CAN_MANAGE_GROUPMANAGERS)
    if (canGroupmanagerByConfig.booleanValue() || iAmOlatAdmin) {
      SecurityGroup groupManagerGroup = secMgr.findSecurityGroupByName(Constants.GROUP_GROUPMANAGERS);
      boolean hasBeenGroupManager = secMgr.isIdentityInSecurityGroup(myIdentity, groupManagerGroup);
      boolean isGroupManager = form.isGroupmanager();
      updateSecurityGroup(myIdentity, secMgr, groupManagerGroup, hasBeenGroupManager, isGroupManager);
    }
    // author
    Boolean canAuthorByConfig = (Boolean) configuration.get(BaseSecurityModule.CONFIG_USERMANAGER_CAN_MANAGE_AUTHORS)
    if (canAuthorByConfig.booleanValue() || iAmOlatAdmin) {
      SecurityGroup authorGroup = secMgr.findSecurityGroupByName(Constants.GROUP_AUTHORS);
      boolean hasBeenAuthor = secMgr.isIdentityInSecurityGroup(myIdentity, authorGroup);
      boolean isAuthor = form.isAuthor() || form.isInstitutionalResourceManager();
      updateSecurityGroup(myIdentity, secMgr, authorGroup, hasBeenAuthor, isAuthor);
    }
    // user manager, only allowed by admin
    if (iAmOlatAdmin) {
      SecurityGroup userManagerGroup = secMgr.findSecurityGroupByName(Constants.GROUP_USERMANAGERS);
      boolean hasBeenUserManager = secMgr.isIdentityInSecurityGroup(myIdentity, userManagerGroup);
      boolean isUserManager = form.isUsermanager();
      updateSecurityGroup(myIdentity, secMgr, userManagerGroup, hasBeenUserManager, isUserManager);
    }
     // institutional resource manager, only allowed by admin
    if (iAmUserManager || iAmOlatAdmin) {
      SecurityGroup institutionalResourceManagerGroup = secMgr.findSecurityGroupByName(Constants.GROUP_INST_ORES_MANAGER);
      boolean hasBeenInstitutionalResourceManager = secMgr.isIdentityInSecurityGroup(myIdentity, institutionalResourceManagerGroup);
      boolean isInstitutionalResourceManager = form.isInstitutionalResourceManager();
      updateSecurityGroup(myIdentity, secMgr, institutionalResourceManagerGroup, hasBeenInstitutionalResourceManager, isInstitutionalResourceManager);
    }
    // system administrator, only allowed by admin
    if (iAmOlatAdmin) {
      SecurityGroup adminGroup = secMgr.findSecurityGroupByName(Constants.GROUP_ADMIN);
      boolean hasBeenAdmin = secMgr.isIdentityInSecurityGroup(myIdentity, adminGroup);
      boolean isAdmin = form.isAdmin();
      updateSecurityGroup(myIdentity, secMgr, adminGroup, hasBeenAdmin, isAdmin);   
    }
    if (iAmOlatAdmin &&  !myIdentity.getStatus().equals(form.getStatus()) ) {
      secMgr.saveIdentityStatus(myIdentity, form.getStatus());
    }
  }
View Full Code Here
317
318
319
320
321
322
323
324
325
326
327
328
329
330
              CourseRights.RIGHT_ASSESSMENT));
          final List<Identity> coachedUsers = new ArrayList<Identity>();
          if (!hasFullAccess) {
            // initialize list of users, only when user has not full access
            List<BusinessGroup> coachedGroups = cgm.getOwnedLearningGroupsFromAllContexts(identity);
            Manager securityManager = ManagerFactory.getManager();
            for (Iterator<BusinessGroup> iter = coachedGroups.iterator(); iter.hasNext();) {
              BusinessGroup group = iter.next();
              coachedUsers.addAll(securityManager.getIdentitiesOfSecurityGroup(group.getPartipiciantGroup()));
            }
          }

          List<IQTESTCourseNode> testNodes = getCourseTestNodes(course);
          Translator translator = Util.createPackageTranslator(AssessmentNotificationsHandler.class, locale);
View Full Code Here
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
   *
   * @param ureq
   * @return a contact form controller for this group
   */
  private ContactFormController createContactFormController(UserRequest ureq) {
    Manager scrtMngr = ManagerFactory.getManager();

    ContactMessage cmsg = new ContactMessage(ureq.getIdentity());
    // two named ContactLists, the new way using the contact form
    // the same name as in the checkboxes are taken as contactlist names
    ContactList ownerCntctLst;// = new ContactList(translate("sendtochooser.form.chckbx.owners"));
    ContactList partipCntctLst;// = new ContactList(translate("sendtochooser.form.chckbx.partip"));
    ContactList waitingListContactList;// = new ContactList(translate("sendtochooser.form.chckbx.waitingList"));
    if (flags.isEnabled(BGConfigFlags.GROUP_OWNERS)) {
      if (sendToChooserForm.ownerChecked().equals(BusinessGroupSendToChooserForm.NLS_RADIO_ALL)) {
        ownerCntctLst = new ContactList(translate("sendtochooser.form.radio.owners.all"));
        SecurityGroup owners = businessGroup.getOwnerGroup();
        List<Identity> ownerList = scrtMngr.getIdentitiesOfSecurityGroup(owners);
        ownerCntctLst.addAllIdentites(ownerList);
        cmsg.addEmailTo(ownerCntctLst);
      } else {
        if (sendToChooserForm.ownerChecked().equals(BusinessGroupSendToChooserForm.NLS_RADIO_CHOOSE)) {
          ownerCntctLst = new ContactList(translate("sendtochooser.form.radio.owners.choose"));
          SecurityGroup owners = businessGroup.getOwnerGroup();
          List<Identity> ownerList = scrtMngr.getIdentitiesOfSecurityGroup(owners);
          List<Identity> changeableOwnerList = scrtMngr.getIdentitiesOfSecurityGroup(owners);
          for (Identity identity : ownerList) {
            boolean keyIsSelected = false;
            for (Long key : sendToChooserForm.getSelectedOwnerKeys()) {
              if (key.equals(identity.getKey())) {
                keyIsSelected = true;
                break;
              }
            }
            if (!keyIsSelected) {
              changeableOwnerList.remove(changeableOwnerList.indexOf(identity));
            }
          }
          ownerCntctLst.addAllIdentites(changeableOwnerList);
          cmsg.addEmailTo(ownerCntctLst);
        }
      }
    }
    if (sendToChooserForm != null) {
      if  (sendToChooserForm.participantChecked().equals(BusinessGroupSendToChooserForm.NLS_RADIO_ALL)) {
        partipCntctLst  = new ContactList(translate("sendtochooser.form.radio.partip.all"));
        SecurityGroup participants = businessGroup.getPartipiciantGroup();
        List<Identity> participantsList = scrtMngr.getIdentitiesOfSecurityGroup(participants);
        partipCntctLst.addAllIdentites(participantsList);
        cmsg.addEmailTo(partipCntctLst);
      } else {
        if (sendToChooserForm.participantChecked().equals(BusinessGroupSendToChooserForm.NLS_RADIO_CHOOSE)) {
          partipCntctLst  = new ContactList(translate("sendtochooser.form.radio.partip.choose"));
          SecurityGroup participants = businessGroup.getPartipiciantGroup();
          List<Identity> participantsList = scrtMngr.getIdentitiesOfSecurityGroup(participants);
          List<Identity> changeableParticipantsList = scrtMngr.getIdentitiesOfSecurityGroup(participants);
          for (Identity identity : participantsList) {
            boolean keyIsSelected = false;
            for (Long key : sendToChooserForm.getSelectedPartipKeys()) {
              if (key.equals(identity.getKey())) {
                keyIsSelected = true;
                break;
              }
            }
            if (!keyIsSelected) {
              changeableParticipantsList.remove(changeableParticipantsList.indexOf(identity));
            }
          }
          partipCntctLst.addAllIdentites(changeableParticipantsList);
          cmsg.addEmailTo(partipCntctLst);
        }
      }
     
    }
    if (sendToChooserForm != null && isAdmin && businessGroup.getWaitingListEnabled().booleanValue()) {
      if (sendToChooserForm.waitingListChecked().equals(BusinessGroupSendToChooserForm.NLS_RADIO_ALL)) {
        waitingListContactList = new ContactList(translate("sendtochooser.form.radio.waitings.all"));
        SecurityGroup waitingList = businessGroup.getWaitingGroup();
        List<Identity> waitingListIdentities = scrtMngr.getIdentitiesOfSecurityGroup(waitingList);
        waitingListContactList.addAllIdentites(waitingListIdentities);
        cmsg.addEmailTo(waitingListContactList);
      } else {
        if (sendToChooserForm.waitingListChecked().equals(BusinessGroupSendToChooserForm.NLS_RADIO_CHOOSE)) {
          waitingListContactList = new ContactList(translate("sendtochooser.form.radio.waitings.choose"));
          SecurityGroup waitingList = businessGroup.getWaitingGroup();
          List<Identity> waitingListIdentities = scrtMngr.getIdentitiesOfSecurityGroup(waitingList);
          List<Identity> changeableWaitingListIdentities = scrtMngr.getIdentitiesOfSecurityGroup(waitingList);
          for (Identity indentity : waitingListIdentities) {
            boolean keyIsSelected = false;
            for (Long key : sendToChooserForm.getSelectedWaitingKeys()) {
              if (key.equals(indentity.getKey())) {
                keyIsSelected = true;
View Full Code Here
69
70
71
72
73
74
75
76
77
78
79
80
81
82
   */
  public BusinessGroupModifiedEvent(String command, BusinessGroup group, Identity identity) {
    super(command);
    this.groupKey = group.getKey();
    this.identityKey = (identity == null ? null : identity.getKey());
    Manager securityManager = ManagerFactory.getManager();
    if (identity != null) {
      if (command.equals(MYSELF_ASOWNER_REMOVED_EVENT)) {
        isTutor = true; // Removed myself as tutor/owner from group
      } else {
        isTutor = securityManager.isIdentityInSecurityGroup(identity, group.getOwnerGroup());
      }
    }
  }
View Full Code Here
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
    this.course = course;
    this.allIdentities = new ArrayList<Identity>();
    this.notInGroupIdentities = new ArrayList<Identity>();
    this.lstGroups = new ArrayList<BusinessGroup>();
   
    Manager secMgr = ManagerFactory.getManager();
    loadData();
   
   
    cgm = course.getCourseEnvironment().getCourseGroupManager();
    Identity identity = ureq.getIdentity();
    boolean isAdmin = ureq.getUserSession().getRoles().isOLATAdmin() || cgm.isIdentityCourseAdministrator(identity);
    if(cgm.isIdentityCourseAdministrator(identity)) {
      // collect all identities with results
      HashSet<Identity> identitiesWithResult = new HashSet<Identity>();
      for( Checkpoint checkpoint : this.checklist.getCheckpoints() ) {
        for( CheckpointResult result : checkpoint.getResults() ) {
          identitiesWithResult.add(secMgr.loadIdentityByKey(result.getIdentityId()));
        }
      }
     
      // collect all identities in learning groups
      HashSet<Identity> identitiesInGroups = new HashSet<Identity>();
View Full Code Here
108
109
110
111
112
113
114
115
116
117
118
119
   * @param wControl
   * @param identity
   */
  public UserAdminController(UserRequest ureq, WindowControl wControl, Identity identity) {
    super(ureq, wControl);
    Manager mgr = ManagerFactory.getManager();
    if (!mgr.isIdentityPermittedOnResourceable(
        ureq.getIdentity(),
        Constants.PERMISSION_ACCESS,
        OresHelper.lookupType(this.getClass())))
      throw new OLATSecurityException("Insufficient permissions to access UserAdminController");
   
View Full Code Here
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
  private boolean allowedToManageUser(UserRequest ureq, Identity identity) {
    boolean isOlatAdmin = ureq.getUserSession().getRoles().isOLATAdmin();
    if (isOlatAdmin) return true;

    Map configuration = BaseSecurityModule.getConfiguration();
    Manager secmgr = ManagerFactory.getManager();
    // only admins can administrate admin and usermanager users
    boolean isAdmin = secmgr.isIdentityPermittedOnResourceable(identity, Constants.PERMISSION_HASROLE, Constants.ORESOURCE_ADMIN);
    boolean isUserManager = secmgr.isIdentityPermittedOnResourceable(identity, Constants.PERMISSION_HASROLE, Constants.ORESOURCE_USERMANAGER);
    if (isAdmin || isUserManager) return false;
    // if user is author ony allowed to edit if configured
    boolean isAuthor = secmgr.isIdentityPermittedOnResourceable(identity, Constants.PERMISSION_HASROLE, Constants.ORESOURCE_AUTHOR);
    Boolean canManageAuthor = (Boolean) configuration.get(BaseSecurityModule.CONFIG_USERMANAGER_CAN_MANAGE_AUTHORS);
    if (isAuthor && !canManageAuthor.booleanValue()) return false;
    // if user is groupmanager ony allowed to edit if configured
    boolean isGroupManager = secmgr.isIdentityPermittedOnResourceable(identity, Constants.PERMISSION_HASROLE, Constants.ORESOURCE_GROUPMANAGER);
    Boolean canManageGroupmanager = (Boolean) configuration.get(BaseSecurityModule.CONFIG_USERMANAGER_CAN_MANAGE_GROUPMANAGERS);
    if (isGroupManager && !canManageGroupmanager.booleanValue()) return false;
    // if user is guest ony allowed to edit if configured
    boolean isGuestOnly = secmgr.isIdentityPermittedOnResourceable(identity, Constants.PERMISSION_HASROLE, Constants.ORESOURCE_GUESTONLY);
    Boolean canManageGuest = (Boolean) configuration.get(BaseSecurityModule.CONFIG_USERMANAGER_CAN_MANAGE_GUESTS);
    if (isGuestOnly && !canManageGuest.booleanValue()) return false;
    // passed all tests, current user is allowed to edit given identity
    return true;
  }
View Full Code Here
79
80
81
82
83
84
85
86
87
88
89
90
   * @param ureq
   * @param wControl
   */
  public UserCreateController (UserRequest ureq, WindowControl wControl, boolean canCreateOLATPassword) {
    super(ureq,wControl);
    Manager mgr = ManagerFactory.getManager();
    if (!mgr.isIdentityPermittedOnResourceable(
        ureq.getIdentity(),
        Constants.PERMISSION_ACCESS,
        OresHelper.lookupType(this.getClass())))
      throw new OLATSecurityException("Insufficient permissions to access UserCreateController");
       
View Full Code Here
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
        int allCourses = repoMgr.countByTypeLimitAccess(CourseModule.ORES_TYPE_COURSE, RepositoryEntry.ACC_OWNERS);
        int publishedCourses = repoMgr.countByTypeLimitAccess(CourseModule.ORES_TYPE_COURSE, RepositoryEntry.ACC_USERS);
        msgProperties.setProperty("courseCountAll", String.valueOf(allCourses));
        msgProperties.setProperty("courseCountPublished", String.valueOf(publishedCourses));
        // User counts
        Manager secMgr = ManagerFactory.getManager();
        SecurityGroup olatuserGroup = secMgr.findSecurityGroupByName(Constants.GROUP_OLATUSERS);
        int users = secMgr.countIdentitiesOfSecurityGroup(olatuserGroup);
        int disabled = secMgr.getIdentitiesByPowerSearch(null, null, true, null, null, null, null, null, Identity.STATUS_LOGIN_DENIED)
            .size();
        msgProperties.setProperty("usersEnabled", String.valueOf(users - disabled));
       
        PermissionOnResourceable[] permissions = { new PermissionOnResourceable(Constants.PERMISSION_HASROLE, Constants.ORESOURCE_AUTHOR) };
        List<Identity> authorsList = secMgr.getIdentitiesByPowerSearch(null, null, true, null, permissions, null, null, null, null);
        int authors = authorsList.size();
        msgProperties.setProperty("usersAuthors", String.valueOf(authors));
        // Activity
        Calendar lastLoginLimit = Calendar.getInstance();
        lastLoginLimit.add(Calendar.DAY_OF_YEAR, -6); // -1 - 6 = -7 for last
                                                      // week
        msgProperties.setProperty("activeUsersLastWeek", String.valueOf(secMgr.countUniqueUserLoginsSince(lastLoginLimit.getTime())));
        lastLoginLimit.add(Calendar.MONTH, -1);
        msgProperties.setProperty("activeUsersLastMonth", String.valueOf(secMgr.countUniqueUserLoginsSince(lastLoginLimit.getTime())));
        // Groups
        BGContextManager groupMgr = BGContextManagerImpl.getInstance();
        int buddyGroups = groupMgr.countGroupsOfType(BusinessGroup.TYPE_BUDDYGROUP);
        msgProperties.setProperty("groupCountBuddyGroups", String.valueOf(buddyGroups));
        int learningGroups = groupMgr.countGroupsOfType(BusinessGroup.TYPE_LEARNINGROUP);
View Full Code Here
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
  /**
   * @return List of all course participants
   */
  List<Identity> getAllIdentitisFromGroupmanagement() {
    List<Identity> allUsersList = new ArrayList<Identity>();
    Manager secMgr = ManagerFactory.getManager();
    Iterator<BusinessGroup> iter = this.coachedGroups.iterator();
    while (iter.hasNext()) {
      BusinessGroup group = iter.next();
      SecurityGroup secGroup = group.getPartipiciantGroup();
      List<Identity> identities = secMgr.getIdentitiesOfSecurityGroup(secGroup);
      for (Iterator<Identity> identitiyIter = identities.iterator(); identitiyIter.hasNext();) {
        Identity identity = identitiyIter.next();
        if (!PersistenceHelper.listContainsObjectByKey(allUsersList, identity)) {
          // only add if not already in list
          allUsersList.add(identity);
View Full Code Here
TOP

Related Classes of org.olat.basesecurity.Manager

  • ch.unizh.campusmgnt.controller.InOutWizardController
  • ch.unizh.portal.zsuz.ZsuzStepUserDataForm
  • de.bps.course.nodes.den.DENManager
  • de.bps.olat.modules.cl.ChecklistManageCheckpointsController
  • de.bps.olat.repository.controllers.RepositorySearchMultiSelectController
  • de.bps.olat.repository.controllers.WizardAddOwnersController
  • org.olat.admin.properties.AdvancedPropertySearchForm
  • org.olat.admin.quota.GenericQuotaEditController
  • org.olat.admin.quota.QuotaController
  • org.olat.admin.registration.SystemRegistrationManager
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.