return projektDao.getProjekt(kundeId, kost2); } else if (nummernkreis.equals("5") == true) { final KundeDO kunde = kundeDao.getById(kundeId); if (kunde == null) { return null;
/** * @see #format(KundeDO, boolean, boolean) */ public String format(final Integer kundeId, final boolean showOnlyNumber) { KundeDO kunde = null; try { kunde = kundeDao.getById(kundeId); } catch (AccessException ex) { log.info(ex.getMessage()); return getNotVisibleString(); } return format(kunde, showOnlyNumber); }
private void checkNoAccess(Serializable id, KundeDO kunde, String who) { try { BaseSearchFilter filter = new BaseSearchFilter(); kundeDao.getList(filter); fail("AccessException expected: " + who + " users should not have select list access to customers."); } catch (AccessException ex) { // OK } try { kundeDao.getById(id); fail("AccessException expected: " + who + " users should not have select access to customers."); } catch (AccessException ex) { // OK } checkNoHistoryAccess(id, kunde, who); checkNoWriteAccess(id, kunde, who); }
@Test public void checkAccess() { logon(TEST_FINANCE_USER); KundeDO kunde = new KundeDO(); kunde.setName("ACME"); kunde.setId(42); Serializable id = kundeDao.save(kunde); kunde = kundeDao.getById(id); kunde.setDescription("Test"); kundeDao.update(kunde); logon(TEST_CONTROLLING_USER); kundeDao.getById(id); checkNoWriteAccess(id, kunde, "Controlling"); logon(TEST_USER); checkNoAccess(id, kunde, "Other"); logon(TEST_PROJECT_MANAGER_USER); checkNoWriteAccess(id, kunde, "Project manager"); checkNoHistoryAccess(id, kunde, "Project manager"); logon(TEST_ADMIN_USER); checkNoAccess(id, kunde, "Admin "); }