@Override public RaptureEntitlement addEntitlement(String entitlementName,String initialGroup) { RaptureEntitlement ret = api.addEntitlement(callingCtx, entitlementName, initialGroup); return ret; }
@Override public RaptureEntitlementGroup addEntitlementGroup(String groupName) { RaptureEntitlementGroup ret = api.addEntitlementGroup(callingCtx, groupName); return ret; }
@Override public RaptureEntitlement addGroupToEntitlement(String entitlementName,String groupName) { RaptureEntitlement ret = api.addGroupToEntitlement(callingCtx, entitlementName, groupName); return ret; }
List<RaptureEntitlement> entsHere = entitlement.getEntitlements(ContextFactory.getKernelUser()); for (RaptureEntitlement ent : entsHere) { entitlementNames.remove(ent.getName()); log.info(Messages.getString("DefaultEntitlementCreator.Entitlement") + checkEntitlement //$NON-NLS-1$ + Messages.getString("DefaultEntitlementCreator.NotPresent")); //$NON-NLS-1$ entitlement.addEntitlement(ContextFactory.getKernelUser(), checkEntitlement, null);
Boolean canAddGroupToEntitlement(CallingContext context, String entitlementName, String groupName) { // When creating an entitlement, null can be passed for the initial group, and if so, this // does not create lockout even if there are no other groups assigned. if (giveFreePass(context) || !isEntitlementSensitive(entitlementName) || groupName == null) { return true; } // If this user is in the group, it's cool. No lockout. RaptureEntitlementGroup group = api.getEntitlementGroup(ContextFactory.getKernelUser(), groupName); if (group != null && group.getUsers().contains(context.getUser())) { return true; } // If this sensitive entitlement doesn't exist officially yet, then adding a group // that this user is not in will create lockout. RaptureEntitlement entitlement = api.getEntitlement(ContextFactory.getKernelUser(), entitlementName); if (entitlement == null) { logLockoutProhibited(entitlementName, context.getUser()); return false; } return userHasAlternateAccess(context.getUser(), groupName, entitlement); }
@Override public List<RaptureEntitlement> findEntitlementsByGroup(String groupname) { List<RaptureEntitlement> ret = api.findEntitlementsByGroup(callingCtx, groupname); return ret; }
@Override public RaptureEntitlement getEntitlement(String entitlementName) { RaptureEntitlement ret = api.getEntitlement(callingCtx, entitlementName); return ret; }
@Override public List<RaptureEntitlement> findEntitlementsByUser(String username) { List<RaptureEntitlement> ret = api.findEntitlementsByUser(callingCtx, username); return ret; }
@Override public RaptureEntitlementGroup addUserToEntitlementGroup(String groupName,String userName) { RaptureEntitlementGroup ret = api.addUserToEntitlementGroup(callingCtx, groupName, userName); return ret; }
@Override public List<RaptureEntitlement> findEntitlementsBySelf() { List<RaptureEntitlement> ret = api.findEntitlementsBySelf(callingCtx); return ret; }
@Override public void deleteEntitlement(String entitlementName) { api.deleteEntitlement(callingCtx, entitlementName); }
@Override public void deleteEntitlementGroup(String groupName) { api.deleteEntitlementGroup(callingCtx, groupName); }
Boolean canRemoveUserFromEntitlementGroup(CallingContext context, String groupName, String userName) { if (giveFreePass(context) || !userName.equals(context.getUser())) { return true; } for (RaptureEntitlement entitlement: api.findEntitlementsByGroup(ContextFactory.getKernelUser(), groupName)) { if (isEntitlementSensitive(entitlement.getName()) && !userHasAlternateAccess(userName, groupName, entitlement)) { // Logged from userHasAlternateAccess return false; } } return true; }
Boolean canRemoveGroupFromEntitlement(CallingContext context, String entitlementName, String groupName) { if (giveFreePass(context) || !isEntitlementSensitive(entitlementName)) { return true; } RaptureEntitlement entitlement = api.getEntitlement(ContextFactory.getKernelUser(), entitlementName); return isOnlyGroupForEntitlement(groupName, entitlement) || userHasAlternateAccess(context.getUser(), groupName, entitlement); }
Boolean canDeleteEntitlementGroup(CallingContext context, String groupName) { if (giveFreePass(context)) { return true; } for (RaptureEntitlement entitlement: api.findEntitlementsByGroup(ContextFactory.getKernelUser(), groupName)) { if (isEntitlementSensitive(entitlement.getName()) && !isOnlyGroupForEntitlement(groupName, entitlement) && !userHasAlternateAccess(context.getUser(), groupName, entitlement)) { // logged from userHasAlternateAccess return false; } } return true; }