Source code

001/*
002 *  Copyright 2020 Anyware Services
003 *
004 *  Licensed under the Apache License, Version 2.0 (the "License");
005 *  you may not use this file except in compliance with the License.
006 *  You may obtain a copy of the License at
007 *
008 *      http://www.apache.org/licenses/LICENSE-2.0
009 *
010 *  Unless required by applicable law or agreed to in writing, software
011 *  distributed under the License is distributed on an "AS IS" BASIS,
012 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 *  See the License for the specific language governing permissions and
014 *  limitations under the License.
015 */
016package org.ametys.plugins.mobileapp.action;
017
018import java.util.HashMap;
019import java.util.Map;
020
021import org.apache.avalon.framework.service.ServiceException;
022import org.apache.avalon.framework.service.ServiceManager;
023import org.apache.cocoon.environment.Request;
024
025import org.ametys.core.user.CurrentUserProvider;
026import org.ametys.runtime.authentication.AccessDeniedException;
027
028/**
029 * An action that requires to be logged in
030 */
031abstract class AbstractLoggedAction extends AbstractPostAction
032{
033    /** The current user provider */
034    protected CurrentUserProvider _currentUserProvider;
035    
036    @Override
037    public void service(ServiceManager smanager) throws ServiceException
038    {
039        super.service(smanager);
040        _currentUserProvider = (CurrentUserProvider) smanager.lookup(CurrentUserProvider.ROLE);
041    }
042    
043    @Override
044    public Map<String, Object> doAction(Request request, Map<String, Object> jsonParams)
045    {
046        Map<String, Object> result = new HashMap<>();
047        
048        if (_currentUserProvider.getUser() != null)
049        {
050            result = doLoggedInAction(request, jsonParams);
051            
052            // If no code is set, code is 200 (OK)
053            if (!result.containsKey("code"))
054            {
055                result.put("code", 200);
056            }
057        }
058        else
059        {
060            result.put("code", 403);
061            throw new AccessDeniedException();
062        }
063        
064        return result;
065    }
066    
067    /**
068     * Execute the action that requires to be logged in
069     * @param request the request
070     * @param jsonParams map of parameters passed in the post body as json
071     * @return the json map to return
072     */
073    protected abstract Map<String, Object> doLoggedInAction(Request request, Map<String, Object> jsonParams);
074}