Merge branch 'master' of tkfftk@dev.intra.insomnia.fi:/data/bortal

Conflicts: code/LanBortalWeb/WebContent/WEB-INF/faces-config.xml

Merge branch 'master' of tkfftk@dev.intra.insomnia.fi:/data/bortal
Conflicts: code/LanBortalWeb/WebContent/WEB-INF/faces-config.xml
Tuukka Kivilahti
Commit ee1d7493 authored Mar 21, 2010 by Tuukka Kivilahti
Showing with 109 additions and 35 deletions
code/LanBortal/EarContent/lib/LanBortalDatabase.jar
code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/RoleBean.java
code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/SecurityBean.java
code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/SessionHandlerBean.java
code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/UserBean.java
code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/RoleBeanLocal.java → code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/RoleBeanLocal.java
code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/RolePermission.java → code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/RolePermission.java
code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/SecurityBeanLocal.java
code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/SessionHandlerBeanLocal.java → code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/SessionHandlerBeanLocal.java
code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/UserBeanLocal.java → code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/UserBeanLocal.java
code/LanBortalWeb/WebContent/WEB-INF/faces-config.xml
code/LanBortalWeb/WebContent/resources/tools/user/edit.xhtml
code/LanBortalWeb/src/fi/insomnia/bortal/exceptions/PermissionDeniedException.java
code/LanBortalWeb/src/fi/insomnia/bortal/handler/SessionHandler.java
code/LanBortalWeb/src/fi/insomnia/bortal/view/RoleView.java
code/LanBortalWeb/src/fi/insomnia/bortal/view/UserView.java
--- a/code/LanBortal/EarContent/lib/LanBortalDatabase.jar
+++ b/code/LanBortal/EarContent/lib/LanBortalDatabase.jar
--- a/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/RoleBean.java
+++ b/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/RoleBean.java
@@ -5,7 +5,6 @@
 package fi.insomnia.bortal.beans;
-import fi.insomnia.bortal.RoleBeanLocal;
 import fi.insomnia.bortal.facade.RoleFacade;
 import fi.insomnia.bortal.model.Role;
 import java.util.List;

--- a/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/SecurityBean.java
+++ b/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/SecurityBean.java
+package fi.insomnia.bortal.beans;
+import javax.ejb.Stateless;
+/**
+ * Session Bean implementation class SercurityBean
+ */
+@Stateless
+public class SecurityBean implements SecurityBeanLocal {
+    /**
+     * Default constructor. 
+     */
+    public SecurityBean() {
+        // TODO Auto-generated constructor stub
+    }
+    @Override
+    public void log(Exception permissionDeniedException) {
+        // TODO Auto-generated method stub
+    }
+}
--- a/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/SessionHandlerBean.java
+++ b/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/SessionHandlerBean.java
@@ -10,8 +10,6 @@ import javax.ejb.Stateless;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
-import fi.insomnia.bortal.RolePermission;
-import fi.insomnia.bortal.SessionHandlerBeanLocal;
 import fi.insomnia.bortal.facade.UserFacade;
 import fi.insomnia.bortal.model.Role;
 import fi.insomnia.bortal.model.RoleRight;

--- a/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/UserBean.java
+++ b/code/LanBortalBeans/ejbModule/fi/insomnia/bortal/beans/UserBean.java
@@ -9,7 +9,6 @@ import javax.ejb.Stateless;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
-import fi.insomnia.bortal.UserBeanLocal;
 import fi.insomnia.bortal.facade.UserFacade;
 import fi.insomnia.bortal.model.User;

--- a/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/RoleBeanLocal.java
+++ b/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/RoleBeanLocal.java
@@ -3,7 +3,7 @@
 * and open the template in the editor.
 */
-package fi.insomnia.bortal;
+package fi.insomnia.bortal.beans;
 import fi.insomnia.bortal.model.Role;
 import java.util.List;

--- a/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/RolePermission.java
+++ b/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/RolePermission.java
-package fi.insomnia.bortal;
+package fi.insomnia.bortal.beans;
 public enum RolePermission {
    READ, WRITE, EXECUTE

--- a/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/SecurityBeanLocal.java
+++ b/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/beans/SecurityBeanLocal.java
+package fi.insomnia.bortal.beans;
+import javax.ejb.Local;
+@Local
+public interface SecurityBeanLocal {
+    void log(Exception permissionDeniedException);
+}
--- a/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/SessionHandlerBeanLocal.java
+++ b/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/SessionHandlerBeanLocal.java
-package fi.insomnia.bortal;
+package fi.insomnia.bortal.beans;
 import javax.ejb.Local;
 import fi.insomnia.bortal.model.User;

--- a/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/UserBeanLocal.java
+++ b/code/LanBortalBeansClient/ejbModule/fi/insomnia/bortal/UserBeanLocal.java
-package fi.insomnia.bortal;
+package fi.insomnia.bortal.beans;
 import java.util.List;

--- a/code/LanBortalWeb/WebContent/WEB-INF/faces-config.xml
+++ b/code/LanBortalWeb/WebContent/WEB-INF/faces-config.xml
 <?xml version="1.0"?>
-<faces-config xmlns="http://java.sun.com/xml/ns/javaee"
+<faces-config
-	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xmlns="http://java.sun.com/xml/ns/javaee"
-	xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-            http://java.sun.com/xml/ns/javaee/web-facesconfig_2_0.xsd"
+    xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
-	version="2.0">
+    http://java.sun.com/xml/ns/javaee/web-facesconfig_2_0.xsd"
-	<application>
+    version="2.0"
-		<resource-bundle>
+    >
-			<base-name>i18n</base-name>
+    <application>
-			<var>i18n</var>
+        <resource-bundle>
-		</resource-bundle>
+            <base-name>i18n</base-name>
-		<message-bundle>resources.i18n</message-bundle>
+            <var>i18n</var>
-		<!-- Legal Country codes: http://www.iso.org/iso/country_codes/iso_3166_code_lists/english_country_names_and_code_elements.htm -->
+        </resource-bundle>
-		<!-- Assigned Country codes: -->
+        <message-bundle>resources.i18n</message-bundle>
-		<!-- Insomnia: IN (INDIA) -->
+        <!-- Legal Country codes: http://www.iso.org/iso/country_codes/iso_3166_code_lists/english_country_names_and_code_elements.htm -->
-		<!-- Stream: ST (SAO TOME AND PRINCIPE ) -->
+                <!-- Assigned Country codes: -->
-		<!-- Vector VE (VENEZUELA, BOLIVARIAN REPUBLIC OF) -->
+                <!-- Insomnia: IN (INDIA) -->
-		<locale-config>
+                <!-- Stream: ST (SAO TOME AND PRINCIPE ) -->
-			<default-locale>fi</default-locale>
+                <!-- Vector VE (VENEZUELA, BOLIVARIAN REPUBLIC OF) -->
-			<supported-locale>fi_IN_XII</supported-locale>
+        <locale-config>
-			<supported-locale>en_ST_v7</supported-locale>
+            <default-locale>fi</default-locale>
+            <supported-locale>fi_IN_XII</supported-locale>
+            <supported-locale>en_ST_v7</supported-locale>
-		</locale-config>
+        </locale-config>
-	</application>
+    </application>
    <navigation-rule>
        <from-view-id>/user/list.xhtml</from-view-id>
        <navigation-case>
@@ -57,6 +60,14 @@
            <to-view-id>/modulePossibleReturnValues.xhtml</to-view-id>
        </navigation-case>
    </navigation-rule>
+    <navigation-rule>
+        <from-view-id>*</from-view-id>
+        <navigation-case>
+            <from-outcome>permissionDenied</from-outcome>
+            <to-view-id>/permissionDenied.xhtml</to-view-id>
+        </navigation-case>
+    </navigation-rule>
 </faces-config>

--- a/code/LanBortalWeb/WebContent/resources/tools/user/edit.xhtml
+++ b/code/LanBortalWeb/WebContent/resources/tools/user/edit.xhtml
@@ -15,7 +15,7 @@
    </composite:interface>
    <composite:implementation>
        <h:form>
            <h:panelGrid columns="2">
                <h:outputLabel value="#{i18n['user.nick']}:" /><h:outputLabel value="#{userView.user.nick}" />

--- a/code/LanBortalWeb/src/fi/insomnia/bortal/exceptions/PermissionDeniedException.java
+++ b/code/LanBortalWeb/src/fi/insomnia/bortal/exceptions/PermissionDeniedException.java
+package fi.insomnia.bortal.exceptions;
+import fi.insomnia.bortal.beans.SecurityBeanLocal;
+public class PermissionDeniedException extends RuntimeException {
+    public PermissionDeniedException(String message, SecurityBeanLocal bean) {
+        super(message);
+        bean.log(this);
+    }
+    /**
+     * 
+     */
+    private static final long serialVersionUID = 7909254489997475124L;
+}
--- a/code/LanBortalWeb/src/fi/insomnia/bortal/handler/SessionHandler.java
+++ b/code/LanBortalWeb/src/fi/insomnia/bortal/handler/SessionHandler.java
@@ -10,8 +10,8 @@ import javax.ejb.EJB;
 import javax.enterprise.context.SessionScoped;
 import javax.faces.bean.ManagedBean;
-import fi.insomnia.bortal.RolePermission;
+import fi.insomnia.bortal.beans.RolePermission;
-import fi.insomnia.bortal.SessionHandlerBeanLocal;
+import fi.insomnia.bortal.beans.SessionHandlerBeanLocal;
 import fi.insomnia.bortal.model.User;
 /**

--- a/code/LanBortalWeb/src/fi/insomnia/bortal/view/RoleView.java
+++ b/code/LanBortalWeb/src/fi/insomnia/bortal/view/RoleView.java
@@ -5,7 +5,7 @@
 package fi.insomnia.bortal.view;
-import fi.insomnia.bortal.RoleBeanLocal;
+import fi.insomnia.bortal.beans.RoleBeanLocal;
 import fi.insomnia.bortal.model.Role;
 import fi.insomnia.bortal.model.User;
 import java.util.List;

--- a/code/LanBortalWeb/src/fi/insomnia/bortal/view/UserView.java
+++ b/code/LanBortalWeb/src/fi/insomnia/bortal/view/UserView.java
@@ -4,19 +4,27 @@ import java.util.List;
 import javax.ejb.EJB;
 import javax.faces.bean.ManagedBean;
+import javax.faces.bean.ManagedProperty;
 import javax.faces.bean.SessionScoped;
 import javax.faces.model.ListDataModel;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
-import fi.insomnia.bortal.UserBeanLocal;
+import fi.insomnia.bortal.beans.SecurityBeanLocal;
+import fi.insomnia.bortal.beans.UserBeanLocal;
+import fi.insomnia.bortal.exceptions.PermissionDeniedException;
+import fi.insomnia.bortal.handler.SessionHandler;
 import fi.insomnia.bortal.model.User;
 @ManagedBean(name = "userView")
 @SessionScoped
 public class UserView {
+    @ManagedProperty("#{sessionHandler}")
+    private SessionHandler sessionhandler;
    @EJB
    private UserBeanLocal userBean;
    private static final Logger logger = LoggerFactory.getLogger(UserView.class);
@@ -24,6 +32,8 @@ public class UserView {
    private ListDataModel<User> items;
    private String nick;
    private String password;
+    @EJB
+    private SecurityBeanLocal securitybean;
    public String edit() {
        setUser(items.getRowData());
@@ -35,6 +45,11 @@ public class UserView {
    }
    public String createUser() {
+        if (!sessionhandler.canWrite("userManagement")) {
+            // Give message to administration what happened here.
+            throw new PermissionDeniedException("User " + sessionhandler.getUser() + " does not have permission to create user!",securitybean);
+        }
        logger.info("Saving user");
        // Luodaan uusi kÔøΩyttÔøΩjÔøΩ UserBeanin funktiolla createNewUser jolle
        // annetaan parametrina pakolliset tiedot ( nick ja salasana )