Package org.ametys.plugins.repository.jcr

Class ACLJCRAmetysObjectHelper

java.lang.Object

org.ametys.plugins.repository.jcr.ACLJCRAmetysObjectHelper

All Implemented Interfaces:

Component, Serviceable

public class ACLJCRAmetysObjectHelper
extends Object
implements Component, Serviceable

Helper for implementing ModifiableACLAmetysObject in JCR under its node.

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
(package private) static class	ACLJCRAmetysObjectHelper.ACLProfileExpression
(package private) static class	ACLJCRAmetysObjectHelper.AllowedProfileExpression
(package private) static class	ACLJCRAmetysObjectHelper.AnonymousAllowedProfileExpression
(package private) static class	ACLJCRAmetysObjectHelper.AnonymousDeniedProfileExpression
(package private) static class	ACLJCRAmetysObjectHelper.AnyConnectedAllowedProfileExpression
(package private) static class	ACLJCRAmetysObjectHelper.AnyConnectedDeniedProfileExpression
(package private) static class	ACLJCRAmetysObjectHelper.DeniedProfileExpression

Field Summary

Fields

Modifier and Type	Field	Description
private static String	__NODE_NAME_ACL_GROUPS
private static String	__NODE_NAME_ACL_USERS
private static String	__NODE_NAME_ROOT_ACL
private static String	__NODETYPE_ACL_GROUP
private static String	__NODETYPE_ACL_USER
private static String	__NODETYPE_ROOT_ACL
private static String	__NODETYPE_UNSTRUCTURED
private static String	__PROPERTY_NAME_ALLOWED_ANONYMOUS_PROFILES
private static String	__PROPERTY_NAME_ALLOWED_ANY_CONNECTED_PROFILES
private static String	__PROPERTY_NAME_ALLOWED_PROFILES
private static String	__PROPERTY_NAME_DENIED_ANONYMOUS_PROFILES
private static String	__PROPERTY_NAME_DENIED_ANY_CONNECTED_PROFILES
private static String	__PROPERTY_NAME_DENIED_PROFILES
private static String	__PROPERTY_NAME_DISALLOW_INHERITANCE
protected static Repository	_repository	The repository
protected static AmetysObjectResolver	_resolver	The AmetysObject resolver

Constructor Summary

Constructors

Constructor	Description
ACLJCRAmetysObjectHelper()

Method Summary

Modifier and Type	Method	Description
private static void	_addProperty(Node node, String propertyName, String profileToAdd)
private static void	_checkLock(Node node)
private static Set<String>	_convertNodeToPath(Set<? extends Object> rootNodes)
private static Node	_getACLNode(Node node)
protected static Set<String>	_getAllowedProfiles(GroupIdentity group, String rootPath)	Returns the allowed profiles for the group on any ACL Ametys object (and not denied on the same object)
protected static Set<String>	_getAllowedProfiles(UserIdentity user, String rootPath)	Returns the allowed profiles for the user on any ACL Ametys object (and not denied on the same object)
protected static Set<String>	_getAnonymousAllowedProfiles(String rootPath)	Returns the allowed profiles for anonymous on any ACL Ametys object (and not denied on the same object)
protected static Set<String>	_getAnyConnectedAllowedProfiles(String rootPath)	Returns the allowed profiles for any connected user on any ACL Ametys object (and not denied on the same object)
private static Node	_getGroupsNode(Node node)
private static Node	_getOrCreateACLNode(Node node)
private static Node	_getOrCreateGroupNode(Node node, GroupIdentity groupIdentity)
private static Node	_getOrCreateGroupsNode(Node node)
private static Node	_getOrCreateUserNode(Node node, UserIdentity userIdentity)
private static Node	_getOrCreateUsersNode(Node node)
private static Set<String>	_getProperty(Node node, String propertyName)
private static Node	_getUserNode(Node node, UserIdentity user)
private static Node	_getUsersNode(Node node)
private static NodeIterator	_query(String jcrQuery)
private static void	_removeProperty(Node node, String propertyName, String profileToRemove)
private static void	_save(Node node)
private static void	_setProperty(Node node, String propertyName, Set<String> profiles)
static void	addAllowedGroups(Set<GroupIdentity> groups, Node node, String profileId)	Helper for ModifiableACLAmetysObject.addAllowedGroups(Set, String)
static void	addAllowedProfilesForAnonymous(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.addAllowedProfilesForAnonymous(Set)
static void	addAllowedProfilesForAnyConnectedUser(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.addAllowedProfilesForAnyConnectedUser(Set)
static void	addAllowedUsers(Set<UserIdentity> users, Node node, String profileId)	Helper for ModifiableACLAmetysObject.addAllowedUsers(Set, String)
static void	addDeniedGroups(Set<GroupIdentity> groups, Node node, String profileId)	Helper for ModifiableACLAmetysObject.addDeniedGroups(Set, String)
static void	addDeniedProfilesForAnonymous(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.addDeniedProfilesForAnyConnectedUser(Set)
static void	addDeniedProfilesForAnyConnectedUser(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.addDeniedProfilesForAnyConnectedUser(Set)
static void	addDeniedUsers(Set<UserIdentity> users, Node node, String profileId)	Helper for ModifiableACLAmetysObject.addDeniedUsers(Set, String)
static void	disallowInheritance(Node node, boolean disallow)	Helper for ModifiableACLAmetysObject.disallowInheritance(boolean)
static NodeIterator	getACLGroups(GroupIdentity group, String rootPath)	Returns all ACL objects for a given group (ametys:acl-group nodes)
static NodeIterator	getACLGroups(GroupIdentity group, String rootPath, Expression predicat)	Returns all ACL objects for a given group (ametys:acl-group nodes)
static NodeIterator	getACLGroups(Expression predicat)	Returns all ACL objects for groups (ametys:acl-group nodes)
static NodeIterator	getACLRoots(String rootPath)	Returns all ACL root objects (ametys:acl nodes)
static NodeIterator	getACLRoots(String rootPath, Expression predicat)	Returns all ACL root objects (ametys:acl nodes)
static NodeIterator	getACLUsers()	Returns all ACL objects for users (ametys:acl-user nodes)
static NodeIterator	getACLUsers(UserIdentity user, String rootPath)	Returns all ACL objects for a given user (ametys:acl-user nodes)
static NodeIterator	getACLUsers(UserIdentity user, String rootPath, Expression predicat)	Returns all ACL objects for a given user (ametys:acl-user nodes)
static NodeIterator	getACLUsers(Expression predicat)	Returns all ACL objects for users (ametys:acl-user nodes)
static Set<GroupIdentity>	getAllowedGroups(Node node, String profileId)	Helper for ACLAmetysObject.getAllowedGroups(String)
static Set<String>	getAllowedProfilesForAnonymous(Node node)	Helper for ACLAmetysObject.getAllowedProfilesForAnonymous()
static Set<String>	getAllowedProfilesForAnyConnectedUser(Node node)	Helper for ACLAmetysObject.getAllowedProfilesForAnyConnectedUser()
static Map<GroupIdentity,Set<String>>	getAllowedProfilesForGroups(Node node)	Helper for ACLAmetysObject.getAllowedProfilesForGroups()
static Set<String>	getAllowedProfilesForUser(Node node, UserIdentity user)	Helper for ACLAmetysObject.getAllowedProfilesForUser(UserIdentity)
static Map<UserIdentity,Set<String>>	getAllowedProfilesForUsers(Node node)	Helper for ACLAmetysObject.getAllowedProfilesForUsers()
static Set<UserIdentity>	getAllowedUsers(Node node, String profileId)	Helper for ACLAmetysObject.getAllowedUsers(String)
static Set<GroupIdentity>	getDeniedGroups(Node node, String profileId)	Helper for ACLAmetysObject.getDeniedGroups(String)
static Set<String>	getDeniedProfilesForAnonymous(Node node)	Helper for ACLAmetysObject.getDeniedProfilesForAnonymous()
static Set<String>	getDeniedProfilesForAnyConnectedUser(Node node)	Helper for ACLAmetysObject.getDeniedProfilesForAnyConnectedUser()
static Map<GroupIdentity,Set<String>>	getDeniedProfilesForGroups(Node node)	Helper for ACLAmetysObject.getDeniedProfilesForGroups()
static Set<String>	getDeniedProfilesForUser(Node node, UserIdentity user)	Helper for ACLAmetysObject.getDeniedProfilesForUser(UserIdentity)
static Map<UserIdentity,Set<String>>	getDeniedProfilesForUsers(Node node)	Helper for ACLAmetysObject.getDeniedProfilesForUsers()
static Set<UserIdentity>	getDeniedUsers(Node node, String profileId)	Helper for ACLAmetysObject.getDeniedUsers(String)
static boolean	hasAnonymousAllowedProfile(Set<? extends Object> rootNodes, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as allowed for anonymous
static boolean	hasAnonymousDeniedProfile(Set<? extends Object> rootNodes, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as denied for anonymous
static boolean	hasAnyConnectedAllowedProfile(Set<? extends Object> rootNodes, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as allowed for any connected user
static boolean	hasAnyConnectedDeniedProfile(Set<? extends Object> rootNodes, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as denied for any connected user
static boolean	hasGroupAllowedProfile(Set<? extends Object> rootNodes, GroupIdentity group, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as allowed for the group
static boolean	hasGroupDeniedProfile(Set<? extends Object> rootNodes, GroupIdentity group, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as denied for the group
static boolean	hasUserAllowedProfile(Set<? extends Object> rootNodes, UserIdentity user, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as allowed for the user
static boolean	hasUserDeniedProfile(Set<? extends Object> rootNodes, UserIdentity user, Set<String> profileIds)	Returns true if any ACL Ametys object has one of the given profiles as denied for the user
static boolean	isInheritanceDisallowed(Node node)	Helper for ACLAmetysObject.isInheritanceDisallowed()
static void	removeAllowedGroups(Set<GroupIdentity> groups, Node node)	Helper for ModifiableACLAmetysObject.removeAllowedGroups(Set)
static void	removeAllowedGroups(Set<GroupIdentity> groups, Node node, String profileId)	Helper for ModifiableACLAmetysObject.removeAllowedGroups(Set, String)
static void	removeAllowedProfilesForAnonymous(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.removeAllowedProfilesForAnonymous(Set)
static void	removeAllowedProfilesForAnyConnectedUser(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.removeAllowedProfilesForAnyConnectedUser(Set)
static void	removeAllowedUsers(Set<UserIdentity> users, Node node)	Helper for ModifiableACLAmetysObject.removeAllowedGroups(Set)
static void	removeAllowedUsers(Set<UserIdentity> users, Node node, String profileId)	Helper for ModifiableACLAmetysObject.removeAllowedUsers(Set, String)
static void	removeDeniedGroups(Set<GroupIdentity> groups, Node node)	Helper for ModifiableACLAmetysObject.removeDeniedGroups(Set)
static void	removeDeniedGroups(Set<GroupIdentity> groups, Node node, String profileId)	Helper for ModifiableACLAmetysObject.removeDeniedGroups(Set, String)
static void	removeDeniedProfilesForAnonymous(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.removeDeniedProfilesForAnyConnectedUser(Set)
static void	removeDeniedProfilesForAnyConnectedUser(Node node, Set<String> profileIds)	Helper for ModifiableACLAmetysObject.removeDeniedProfilesForAnyConnectedUser(Set)
static void	removeDeniedUsers(Set<UserIdentity> users, Node node)	Helper for ModifiableACLAmetysObject.removeDeniedUsers(Set)
static void	removeDeniedUsers(Set<UserIdentity> users, Node node, String profileId)	Helper for ModifiableACLAmetysObject.removeDeniedUsers(Set, String)
static void	removeGroup(GroupIdentity group)	Helper for ModifiableACLAmetysObjectProfileAssignmentStorage.removeGroup(GroupIdentity)
static void	removeProfile(String profileId)	Helper for ModifiableACLAmetysObjectProfileAssignmentStorage.removeProfile(String)
static void	removeUser(UserIdentity user)	Helper for ModifiableACLAmetysObjectProfileAssignmentStorage.removeUser(UserIdentity)
void	service(ServiceManager manager)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

_resolver

protected static AmetysObjectResolver _resolver

The AmetysObject resolver

_repository

protected static Repository _repository

The repository

__NODE_NAME_ROOT_ACL

private static final String __NODE_NAME_ROOT_ACL

See Also:

Constant Field Values

__NODETYPE_ROOT_ACL

private static final String __NODETYPE_ROOT_ACL

See Also:

Constant Field Values

__NODE_NAME_ACL_USERS

private static final String __NODE_NAME_ACL_USERS

See Also:

Constant Field Values

__NODE_NAME_ACL_GROUPS

private static final String __NODE_NAME_ACL_GROUPS

See Also:

Constant Field Values

__NODETYPE_ACL_USER

private static final String __NODETYPE_ACL_USER

See Also:

Constant Field Values

__NODETYPE_ACL_GROUP

private static final String __NODETYPE_ACL_GROUP

See Also:

Constant Field Values

__NODETYPE_UNSTRUCTURED

private static final String __NODETYPE_UNSTRUCTURED

See Also:

Constant Field Values

__PROPERTY_NAME_ALLOWED_ANY_CONNECTED_PROFILES

private static final String __PROPERTY_NAME_ALLOWED_ANY_CONNECTED_PROFILES

See Also:

Constant Field Values

__PROPERTY_NAME_DENIED_ANY_CONNECTED_PROFILES

private static final String __PROPERTY_NAME_DENIED_ANY_CONNECTED_PROFILES

See Also:

Constant Field Values

__PROPERTY_NAME_ALLOWED_ANONYMOUS_PROFILES

private static final String __PROPERTY_NAME_ALLOWED_ANONYMOUS_PROFILES

See Also:

Constant Field Values

__PROPERTY_NAME_DENIED_ANONYMOUS_PROFILES

private static final String __PROPERTY_NAME_DENIED_ANONYMOUS_PROFILES

See Also:

Constant Field Values

__PROPERTY_NAME_ALLOWED_PROFILES

private static final String __PROPERTY_NAME_ALLOWED_PROFILES

See Also:

Constant Field Values

__PROPERTY_NAME_DENIED_PROFILES

private static final String __PROPERTY_NAME_DENIED_PROFILES

See Also:

Constant Field Values

__PROPERTY_NAME_DISALLOW_INHERITANCE

private static final String __PROPERTY_NAME_DISALLOW_INHERITANCE

See Also:

Constant Field Values

Constructor Detail

ACLJCRAmetysObjectHelper

public ACLJCRAmetysObjectHelper()

Method Detail

service

public void service(ServiceManager manager)
             throws ServiceException

Specified by:

service in interface Serviceable

Throws:

ServiceException

_convertNodeToPath

private static Set<String> _convertNodeToPath(Set<? extends Object> rootNodes)

hasUserDeniedProfile

public static boolean hasUserDeniedProfile(Set<? extends Object> rootNodes,
                                           UserIdentity user,
                                           Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as denied for the user

Parameters:

user - The user

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as denied for the user

hasUserAllowedProfile

public static boolean hasUserAllowedProfile(Set<? extends Object> rootNodes,
                                            UserIdentity user,
                                            Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as allowed for the user

Parameters:

user - The user

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as allowed for the user

hasGroupDeniedProfile

public static boolean hasGroupDeniedProfile(Set<? extends Object> rootNodes,
                                            GroupIdentity group,
                                            Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as denied for the group

Parameters:

group - The group

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as denied for the group

hasGroupAllowedProfile

public static boolean hasGroupAllowedProfile(Set<? extends Object> rootNodes,
                                             GroupIdentity group,
                                             Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as allowed for the group

Parameters:

group - The group

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as allowed for the group

hasAnyConnectedDeniedProfile

public static boolean hasAnyConnectedDeniedProfile(Set<? extends Object> rootNodes,
                                                   Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as denied for any connected user

Parameters:

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as denied for any connected user

hasAnyConnectedAllowedProfile

public static boolean hasAnyConnectedAllowedProfile(Set<? extends Object> rootNodes,
                                                    Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as allowed for any connected user

Parameters:

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as allowed for any connected user

hasAnonymousDeniedProfile

public static boolean hasAnonymousDeniedProfile(Set<? extends Object> rootNodes,
                                                Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as denied for anonymous

Parameters:

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as denied for anonymous

hasAnonymousAllowedProfile

public static boolean hasAnonymousAllowedProfile(Set<? extends Object> rootNodes,
                                                 Set<String> profileIds)

Returns true if any ACL Ametys object has one of the given profiles as allowed for anonymous

Parameters:

profileIds - The ids of the profiles

rootNodes - The JCR root nodes where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

true if any ACL Ametys object has one of the given profiles as allowed for anonymous

getACLRoots

public static NodeIterator getACLRoots(String rootPath)

Returns all ACL root objects (ametys:acl nodes)

Parameters:

rootPath - The root path to restrict the search. Can be null.

Returns:

The ACL root objects

getACLRoots

public static NodeIterator getACLRoots(String rootPath,
                                       Expression predicat)

Returns all ACL root objects (ametys:acl nodes)

Parameters:

rootPath - The root path to restrict the search. Can be null.

predicat - The predicat expression. Can be null.

Returns:

The ACL root objects

getACLUsers

public static NodeIterator getACLUsers(UserIdentity user,
                                       String rootPath)

Returns all ACL objects for a given user (ametys:acl-user nodes)

Parameters:

user - The user

rootPath - The root path to restrict the search. Can be null.

Returns:

The ACL user objects for user

getACLUsers

public static NodeIterator getACLUsers(UserIdentity user,
                                       String rootPath,
                                       Expression predicat)

Returns all ACL objects for a given user (ametys:acl-user nodes)

Parameters:

user - The user

rootPath - The root path to restrict the search. Can be null.

predicat - The predicat expression. Can be null.

Returns:

The ACL user objects for user

getACLUsers

public static NodeIterator getACLUsers()

Returns all ACL objects for users (ametys:acl-user nodes)

Returns:

The ACL user objects for users

getACLUsers

public static NodeIterator getACLUsers(Expression predicat)

Returns all ACL objects for users (ametys:acl-user nodes)

Parameters:

predicat - The predicat expression. Can be null.

Returns:

The ACL user objects for users

getACLGroups

public static NodeIterator getACLGroups(Expression predicat)

Returns all ACL objects for groups (ametys:acl-group nodes)

Parameters:

predicat - The predicat expression. Can be null.

Returns:

The ACL group objects for groups

getACLGroups

public static NodeIterator getACLGroups(GroupIdentity group,
                                        String rootPath)

Returns all ACL objects for a given group (ametys:acl-group nodes)

Parameters:

group - The group

rootPath - The root path to restrict the search. Can be null.

Returns:

The ACL user objects for groups

getACLGroups

public static NodeIterator getACLGroups(GroupIdentity group,
                                        String rootPath,
                                        Expression predicat)

Returns all ACL objects for a given group (ametys:acl-group nodes)

Parameters:

group - The group

rootPath - The root path to restrict the search. Can be null.

predicat - The predicat expression. Can be null.

Returns:

The ACL user objects for groups

_getAllowedProfiles

protected static Set<String> _getAllowedProfiles(UserIdentity user,
                                                 String rootPath)

Returns the allowed profiles for the user on any ACL Ametys object (and not denied on the same object)

Parameters:

user - The user

rootPath - The JCR root path where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

the allowed profiles for the user on any ACL Ametys object (and not denied on the same object)

_getAllowedProfiles

protected static Set<String> _getAllowedProfiles(GroupIdentity group,
                                                 String rootPath)

Returns the allowed profiles for the group on any ACL Ametys object (and not denied on the same object)

Parameters:

group - The group

rootPath - The JCR root path where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

Returns the allowed profiles for the group on any ACL Ametys object (and not denied on the same object)

_getAnyConnectedAllowedProfiles

protected static Set<String> _getAnyConnectedAllowedProfiles(String rootPath)

Returns the allowed profiles for any connected user on any ACL Ametys object (and not denied on the same object)

Parameters:

rootPath - The JCR root path where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

the allowed profiles for any connected user on any ACL Ametys object (and not denied on the same object)

_getAnonymousAllowedProfiles

protected static Set<String> _getAnonymousAllowedProfiles(String rootPath)

Returns the allowed profiles for anonymous on any ACL Ametys object (and not denied on the same object)

Parameters:

rootPath - The JCR root path where starts the query search (must be something like "//element(myNode, ametys:collection)"), it will be the beginning of the JCR query. Can be null to not restrict the search.

Returns:

the allowed profiles for anonymous on any ACL Ametys object (and not denied on the same object)

_query

private static NodeIterator _query(String jcrQuery)

getAllowedProfilesForAnyConnectedUser

public static Set<String> getAllowedProfilesForAnyConnectedUser(Node node)

Helper for ACLAmetysObject.getAllowedProfilesForAnyConnectedUser()

Parameters:

node - The JCR node for the Ametys object

Returns:

the allowed profiles any connected user has on the given node

addAllowedProfilesForAnyConnectedUser

public static void addAllowedProfilesForAnyConnectedUser(Node node,
                                                         Set<String> profileIds)

Helper for ModifiableACLAmetysObject.addAllowedProfilesForAnyConnectedUser(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to add

removeAllowedProfilesForAnyConnectedUser

public static void removeAllowedProfilesForAnyConnectedUser(Node node,
                                                            Set<String> profileIds)

Helper for ModifiableACLAmetysObject.removeAllowedProfilesForAnyConnectedUser(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to remove

getDeniedProfilesForAnyConnectedUser

public static Set<String> getDeniedProfilesForAnyConnectedUser(Node node)

Helper for ACLAmetysObject.getDeniedProfilesForAnyConnectedUser()

Parameters:

node - The JCR node for the Ametys object

Returns:

the denied profiles any connected user has on the given node

addDeniedProfilesForAnyConnectedUser

public static void addDeniedProfilesForAnyConnectedUser(Node node,
                                                        Set<String> profileIds)

Helper for ModifiableACLAmetysObject.addDeniedProfilesForAnyConnectedUser(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to add

removeDeniedProfilesForAnyConnectedUser

public static void removeDeniedProfilesForAnyConnectedUser(Node node,
                                                           Set<String> profileIds)

Helper for ModifiableACLAmetysObject.removeDeniedProfilesForAnyConnectedUser(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to remove

getAllowedProfilesForAnonymous

public static Set<String> getAllowedProfilesForAnonymous(Node node)

Helper for ACLAmetysObject.getAllowedProfilesForAnonymous()

Parameters:

node - The JCR node for the Ametys object

Returns:

the allowed profiles an anonymous user has on the given node

addAllowedProfilesForAnonymous

public static void addAllowedProfilesForAnonymous(Node node,
                                                  Set<String> profileIds)

Helper for ModifiableACLAmetysObject.addAllowedProfilesForAnonymous(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to add

removeAllowedProfilesForAnonymous

public static void removeAllowedProfilesForAnonymous(Node node,
                                                     Set<String> profileIds)

Helper for ModifiableACLAmetysObject.removeAllowedProfilesForAnonymous(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to remove

getDeniedProfilesForAnonymous

public static Set<String> getDeniedProfilesForAnonymous(Node node)

Helper for ACLAmetysObject.getDeniedProfilesForAnonymous()

Parameters:

node - The JCR node for the Ametys object

Returns:

the denied profiles an anonymous user has on the given node

addDeniedProfilesForAnonymous

public static void addDeniedProfilesForAnonymous(Node node,
                                                 Set<String> profileIds)

Helper for ModifiableACLAmetysObject.addDeniedProfilesForAnyConnectedUser(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to add

removeDeniedProfilesForAnonymous

public static void removeDeniedProfilesForAnonymous(Node node,
                                                    Set<String> profileIds)

Helper for ModifiableACLAmetysObject.removeDeniedProfilesForAnyConnectedUser(Set)

Parameters:

node - The JCR node for the Ametys object

profileIds - The profiles to remove

getAllowedProfilesForUser

public static Set<String> getAllowedProfilesForUser(Node node,
                                                    UserIdentity user)

Helper for ACLAmetysObject.getAllowedProfilesForUser(UserIdentity)

Parameters:

node - The JCR node for the Ametys object

user - The user

Returns:

The denied profiles

getAllowedProfilesForUsers

public static Map<UserIdentity,Set<String>> getAllowedProfilesForUsers(Node node)

Helper for ACLAmetysObject.getAllowedProfilesForUsers()

Parameters:

node - The JCR node for the Ametys object

Returns:

The map of allowed users (keys) with their assigned profiles (values)

getAllowedUsers

public static Set<UserIdentity> getAllowedUsers(Node node,
                                                String profileId)

Helper for ACLAmetysObject.getAllowedUsers(String)

Parameters:

node - The JCR node for the Ametys object

profileId - The id of the profile

Returns:

The allowed users with that profile on that ametys object

addAllowedUsers

public static void addAllowedUsers(Set<UserIdentity> users,
                                   Node node,
                                   String profileId)

Helper for ModifiableACLAmetysObject.addAllowedUsers(Set, String)

Parameters:

users - The users to add

node - The JCR node for the Ametys object

profileId - The id of the profile

removeAllowedUsers

public static void removeAllowedUsers(Set<UserIdentity> users,
                                      Node node,
                                      String profileId)

Helper for ModifiableACLAmetysObject.removeAllowedUsers(Set, String)

Parameters:

users - The users to remove

node - The JCR node for the Ametys object

profileId - The id of the profile

removeAllowedUsers

public static void removeAllowedUsers(Set<UserIdentity> users,
                                      Node node)

Helper for ModifiableACLAmetysObject.removeAllowedGroups(Set)

Parameters:

users - The users to remove

node - The JCR node for the Ametys object

getAllowedProfilesForGroups

public static Map<GroupIdentity,Set<String>> getAllowedProfilesForGroups(Node node)

Helper for ACLAmetysObject.getAllowedProfilesForGroups()

Parameters:

node - The JCR node for the Ametys object

Returns:

The map of allowed groups (keys) with their assigned profiles (values)

getAllowedGroups

public static Set<GroupIdentity> getAllowedGroups(Node node,
                                                  String profileId)

Helper for ACLAmetysObject.getAllowedGroups(String)

Parameters:

node - The JCR node for the Ametys object

profileId - The id of the profile

Returns:

The allowed groups with that profile on that ametys object

addAllowedGroups

public static void addAllowedGroups(Set<GroupIdentity> groups,
                                    Node node,
                                    String profileId)

Helper for ModifiableACLAmetysObject.addAllowedGroups(Set, String)

Parameters:

groups - The groups to add

node - The JCR node for the Ametys object

profileId - The id of the profile

removeAllowedGroups

public static void removeAllowedGroups(Set<GroupIdentity> groups,
                                       Node node,
                                       String profileId)

Helper for ModifiableACLAmetysObject.removeAllowedGroups(Set, String)

Parameters:

groups - The groups to remove

node - The JCR node for the Ametys object

profileId - The id of the profile

removeAllowedGroups

public static void removeAllowedGroups(Set<GroupIdentity> groups,
                                       Node node)

Helper for ModifiableACLAmetysObject.removeAllowedGroups(Set)

Parameters:

groups - The groups to remove

node - The JCR node for the Ametys object

getDeniedProfilesForUser

public static Set<String> getDeniedProfilesForUser(Node node,
                                                   UserIdentity user)

Helper for ACLAmetysObject.getDeniedProfilesForUser(UserIdentity)

Parameters:

node - The JCR node for the Ametys object

user - The user

Returns:

The denied profiles

getDeniedProfilesForUsers

public static Map<UserIdentity,Set<String>> getDeniedProfilesForUsers(Node node)

Helper for ACLAmetysObject.getDeniedProfilesForUsers()

Parameters:

node - The JCR node for the Ametys object

Returns:

The map of denied users (keys) with their assigned profiles (values)

getDeniedUsers

public static Set<UserIdentity> getDeniedUsers(Node node,
                                               String profileId)

Helper for ACLAmetysObject.getDeniedUsers(String)

Parameters:

node - The JCR node for the Ametys object

profileId - The id of the profile

Returns:

The denied users with that profile on that ametys object

addDeniedUsers

public static void addDeniedUsers(Set<UserIdentity> users,
                                  Node node,
                                  String profileId)

Helper for ModifiableACLAmetysObject.addDeniedUsers(Set, String)

Parameters:

users - The users to add

node - The JCR node for the Ametys object

profileId - The id of the profile

removeDeniedUsers

public static void removeDeniedUsers(Set<UserIdentity> users,
                                     Node node,
                                     String profileId)

Helper for ModifiableACLAmetysObject.removeDeniedUsers(Set, String)

Parameters:

users - The users to remove

node - The JCR node for the Ametys object

profileId - The id of the profile

removeDeniedUsers

public static void removeDeniedUsers(Set<UserIdentity> users,
                                     Node node)

Helper for ModifiableACLAmetysObject.removeDeniedUsers(Set)

Parameters:

users - The users to remove

node - The JCR node for the Ametys object

getDeniedProfilesForGroups

public static Map<GroupIdentity,Set<String>> getDeniedProfilesForGroups(Node node)

Helper for ACLAmetysObject.getDeniedProfilesForGroups()

Parameters:

node - The JCR node for the Ametys object

Returns:

The map of denied groups (keys) with their assigned profiles (values)

getDeniedGroups

public static Set<GroupIdentity> getDeniedGroups(Node node,
                                                 String profileId)

Helper for ACLAmetysObject.getDeniedGroups(String)

Parameters:

node - The JCR node for the Ametys object

profileId - The id of the profile

Returns:

The denied groups with that profile on that ametys object

addDeniedGroups

public static void addDeniedGroups(Set<GroupIdentity> groups,
                                   Node node,
                                   String profileId)

Helper for ModifiableACLAmetysObject.addDeniedGroups(Set, String)

Parameters:

groups - The groups to add

node - The JCR node for the Ametys object

profileId - The id of the profile

removeDeniedGroups

public static void removeDeniedGroups(Set<GroupIdentity> groups,
                                      Node node,
                                      String profileId)

Helper for ModifiableACLAmetysObject.removeDeniedGroups(Set, String)

Parameters:

groups - The groups to remove

node - The JCR node for the Ametys object

profileId - The id of the profile

removeDeniedGroups

public static void removeDeniedGroups(Set<GroupIdentity> groups,
                                      Node node)

Helper for ModifiableACLAmetysObject.removeDeniedGroups(Set)

Parameters:

groups - The groups to remove

node - The JCR node for the Ametys object

removeProfile

public static void removeProfile(String profileId)

Helper for ModifiableACLAmetysObjectProfileAssignmentStorage.removeProfile(String)

Parameters:

profileId - The id of the profile

removeUser

public static void removeUser(UserIdentity user)

Helper for ModifiableACLAmetysObjectProfileAssignmentStorage.removeUser(UserIdentity)

Parameters:

user - The user

removeGroup

public static void removeGroup(GroupIdentity group)

Helper for ModifiableACLAmetysObjectProfileAssignmentStorage.removeGroup(GroupIdentity)

Parameters:

group - The group

isInheritanceDisallowed

public static boolean isInheritanceDisallowed(Node node)

Helper for ACLAmetysObject.isInheritanceDisallowed()

Parameters:

node - The JCR node for the Ametys object

Returns:

true if the inheritance is disallow of the given node

disallowInheritance

public static void disallowInheritance(Node node,
                                       boolean disallow)

Helper for ModifiableACLAmetysObject.disallowInheritance(boolean)

Parameters:

node - The JCR node for the Ametys object

disallow - true to disallow the inheritance, false otherwise

_checkLock

private static void _checkLock(Node node)
                        throws AmetysRepositoryException

Throws:

AmetysRepositoryException

_getOrCreateACLNode

private static Node _getOrCreateACLNode(Node node)

_getACLNode

private static Node _getACLNode(Node node)

_getOrCreateUsersNode

private static Node _getOrCreateUsersNode(Node node)

_getUserNode

private static Node _getUserNode(Node node,
                                 UserIdentity user)

_getUsersNode

private static Node _getUsersNode(Node node)

_getOrCreateGroupsNode

private static Node _getOrCreateGroupsNode(Node node)

_getGroupsNode

private static Node _getGroupsNode(Node node)

_getOrCreateUserNode

private static Node _getOrCreateUserNode(Node node,
                                         UserIdentity userIdentity)

_getOrCreateGroupNode

private static Node _getOrCreateGroupNode(Node node,
                                          GroupIdentity groupIdentity)

_getProperty

private static Set<String> _getProperty(Node node,
                                        String propertyName)

_setProperty

private static void _setProperty(Node node,
                                 String propertyName,
                                 Set<String> profiles)

_addProperty

private static void _addProperty(Node node,
                                 String propertyName,
                                 String profileToAdd)

_removeProperty

private static void _removeProperty(Node node,
                                    String propertyName,
                                    String profileToRemove)

_save

private static void _save(Node node)