Package gwtappcontainer.server.apis.admin

Source Code of gwtappcontainer.server.apis.admin.GateKeeper

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
package gwtappcontainer.server.apis.admin;

import gwtappcontainer.server.apis.admin.Roles.Role;
import gwtappcontainer.server.apps.APIException;
import gwtappcontainer.shared.apis.APIResponse.Status;
import gwtappcontainer.shared.apis.admin.RoleProp;
import gwtappcontainer.shared.apis.admin.UserProp;

import com.google.appengine.api.users.User;

public class GateKeeper
 
  public boolean ensureRole(User user, Role... roles) {
   
    String[] roleStrings = new String[roles.length];   
    for (int i = 0; i < roleStrings.length; i++) {
      roleStrings[i] = roles[i].toString();
    }
   
    return ensureRole(user, roleStrings);   
  }
 
  public boolean ensureValidUser(User user) {
    //should be logged in
    if (null == user)      
      throw new APIException(Status.ERROR_LOGIN_REQUIRED, "User not logged in");
   
    UserProp prop = getUserProp(user);
   
    //should be a valid user
    if (null == prop)
      throw new APIException(Status.ERROR_INVALID_USER,
          "Invalid user [" + user.getEmail() + "]");   
   
    return true;
  }
 
  public boolean ensureRole(User user, String... roles) {
   
    //should be logged in
    if (null == user)      
      throw new APIException(Status.ERROR_LOGIN_REQUIRED, "User not logged in");
   
    UserProp prop = getUserProp(user);
   
    //should be a valid user
    if (null == prop)
      throw new APIException(Status.ERROR_INVALID_USER,
          "Invalid user [" + user.getEmail() + "]");   
                                   
    for (String role : roles) {
      if (hasRole(prop, role))
        return true
    }
     
    //user does not have any of the specified roles, so throw exception
     
    //construct proper error message
    StringBuilder sb = new StringBuilder();
    for (String role : roles) {     
      sb.append(role + ", ");       
    }     
    String errMessage = "Logged in user [" + prop.email +
        "] does not have any of the role(s) - [" + sb.toString() + "]";
   
    throw new APIException(Status.ERROR_INSUFFICIENT_PERMISSION, errMessage);   
  }
     
  protected UserProp getUserProp(User user) {               
    UserProp prop = new UserRepository().getUserByEmail(user.getEmail());               
    return prop;
  }
   
  private boolean hasRole(UserProp userProp, String role) {
    if (null == userProp.roles) {
      return false;
    }
   
    role = role.toUpperCase();
    for (RoleProp roleProp : userProp.roles) {
      if (roleProp.name.toUpperCase().equals(role))
        return true;
    }
   
    return false;
  }
}
TOP

Related Classes of gwtappcontainer.server.apis.admin.GateKeeper

  • gwtappcontainer.server.apis.admin.GateKeeperTest
  • gwtappcontainer.shared.apis.admin.UserProp
  • gwtappcontainer.server.apps.APIException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.