Examples of SpringSecurityRolePrincipal

org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityRolePrincipal
In Spring Security, there are users and roles. This class represents a Spring Security role. This class is the Jackrabbit representation of a {@code org.springframework.security.acls.sid.GrantedAuthoritySid}. This class was required as no {@link Group} implementations were found that could re-used.
Why Group and not Principal? Group is more like a Spring Security role in that there can be "members" that have that role assigned. On the client side, there is code that tests to see if the principal is a group and if so creates a Spring Security role.
@author mlowery

Examples of org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityRolePrincipal

    // add entries to now empty list but only if not inheriting; force user to start with clean slate
    if ( !acl.isEntriesInheriting() ) {
      for ( RepositoryFileAce ace : acl.getAces() ) {
        Principal principal = null;
        if ( RepositoryFileSid.Type.ROLE == ace.getSid().getType() ) {
          principal = new SpringSecurityRolePrincipal( JcrTenantUtils.getTenantedRole( ace.getSid().getName() ) );
        } else {
          principal = new SpringSecurityUserPrincipal( JcrTenantUtils.getTenantedUser( ace.getSid().getName() ) );
        }
        IPermissionConversionHelper permissionConversionHelper = new DefaultPermissionConversionHelper( session );
        acList.addAccessControlEntry( principal, permissionConversionHelper.pentahoPermissionsToPrivileges( session,

View Full Code Here

Examples of org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityRolePrincipal

            AccessControlEntry[] acEntries = acList.getAccessControlEntries();
            List<AccessControlEntry> cleanedAcEntries =
                JcrRepositoryFileAclUtils.removeAclMetadata( Arrays.asList( acEntries ) );
            for ( AccessControlEntry acEntry : cleanedAcEntries ) {
              if ( !acEntry.getPrincipal().equals(
                  new SpringSecurityRolePrincipal( JcrTenantUtils.getTenantedRole( tenantAdminAuthorityName ) ) ) ) {
                aces.add( toAce( session, acEntry ) );
              }
            }
            return aces;
          }
        }


        // none are entriesInheriting=false so root aces are the effective aces
        AccessControlList acList = (AccessControlList) acPolicies[acPolicies.length - 1];
        List<RepositoryFileAce> aces = new ArrayList<RepositoryFileAce>();
        AccessControlEntry[] acEntries = acList.getAccessControlEntries();
        List<AccessControlEntry> cleanedAcEntries =
            JcrRepositoryFileAclUtils.removeAclMetadata( Arrays.asList( acEntries ) );
        for ( AccessControlEntry acEntry : cleanedAcEntries ) {
          if ( !acEntry.getPrincipal().equals(
              new SpringSecurityRolePrincipal( JcrTenantUtils.getTenantedRole( tenantAdminAuthorityName ) ) ) ) {
            aces.add( toAce( session, acEntry ) );
          }
        }
        return aces;
      }

View Full Code Here

Examples of org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityRolePrincipal

    List<AccessControlEntry> cleanedAcEntries =
        JcrRepositoryFileAclUtils.removeAclMetadata( Arrays.asList( acList.getAccessControlEntries() ) );


    for ( AccessControlEntry acEntry : cleanedAcEntries ) {
      if ( !acEntry.getPrincipal().equals(
          new SpringSecurityRolePrincipal( JcrTenantUtils.getTenantedRole( tenantAdminAuthorityName ) ) ) ) {
        aclBuilder.ace( toAce( session, acEntry ) );
      }
    }
    return aclBuilder.build();

View Full Code Here

Examples of org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityRolePrincipal

        if ( RepositoryFileSid.Type.ROLE == ace.getSid().getType() ) {
          String principalName = JcrTenantUtils.getRoleNameUtils().getPrincipleName( ace.getSid().getName() );
          if ( tenantAdminAuthorityName.equals( principalName ) ) {
            adminPrincipalExist = true;
          }
          principal = new SpringSecurityRolePrincipal( JcrTenantUtils.getTenantedRole( ace.getSid().getName() ) );
        } else {
          principal = new SpringSecurityUserPrincipal( JcrTenantUtils.getTenantedUser( ace.getSid().getName() ) );
        }
        acList.addAccessControlEntry( principal, permissionConversionHelper.pentahoPermissionsToPrivileges( session,
            ace.getPermissions() ) );
      }
      if ( !adminPrincipalExist ) {
        if ( acl.getAces() != null && acl.getAces().size() > 0 ) {
          principalTenant = JcrTenantUtils.getRoleNameUtils().getTenant( acl.getAces().get( 0 ).getSid().getName() );
        }


        if ( principalTenant == null || principalTenant.getId() == null ) {
          principalTenant = JcrTenantUtils.getTenant();
        }


        List<RepositoryFilePermission> permissionList = new ArrayList<RepositoryFilePermission>();
        permissionList.add( RepositoryFilePermission.ALL );
        Principal adminPrincipal =
            new SpringSecurityRolePrincipal( JcrTenantUtils.getRoleNameUtils().getPrincipleId( principalTenant,
                tenantAdminAuthorityName ) );
        acList.addAccessControlEntry( adminPrincipal, permissionConversionHelper.pentahoPermissionsToPrivileges(
            session, EnumSet.copyOf( permissionList ) ) );
      }

View Full Code Here

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.