001 //$HeadURL: https://svn.wald.intevation.org/svn/deegree/base/branches/2.4_testing/src/org/deegree/portal/standard/security/control/InitRoleEditorListener.java $
002 /*----------------------------------------------------------------------------
003 This file is part of deegree, http://deegree.org/
004 Copyright (C) 2001-2009 by:
005 Department of Geography, University of Bonn
006 and
007 lat/lon GmbH
008
009 This library is free software; you can redistribute it and/or modify it under
010 the terms of the GNU Lesser General Public License as published by the Free
011 Software Foundation; either version 2.1 of the License, or (at your option)
012 any later version.
013 This library is distributed in the hope that it will be useful, but WITHOUT
014 ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
015 FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more
016 details.
017 You should have received a copy of the GNU Lesser General Public License
018 along with this library; if not, write to the Free Software Foundation, Inc.,
019 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
020
021 Contact information:
022
023 lat/lon GmbH
024 Aennchenstr. 19, 53177 Bonn
025 Germany
026 http://lat-lon.de/
027
028 Department of Geography, University of Bonn
029 Prof. Dr. Klaus Greve
030 Postfach 1147, 53001 Bonn
031 Germany
032 http://www.geographie.uni-bonn.de/deegree/
033
034 e-mail: info@deegree.org
035 ----------------------------------------------------------------------------*/
036 package org.deegree.portal.standard.security.control;
037
038 import static org.deegree.i18n.Messages.get;
039
040 import org.deegree.enterprise.control.AbstractListener;
041 import org.deegree.enterprise.control.FormEvent;
042 import org.deegree.framework.log.ILogger;
043 import org.deegree.framework.log.LoggerFactory;
044 import org.deegree.security.GeneralSecurityException;
045 import org.deegree.security.drm.SecurityAccess;
046
047 /**
048 * This <code>Listener</code> reacts on 'initRoleGroupEditor' events and passes the roles to be displayed on the JSP.
049 *
050 * Access constraints:
051 * <ul>
052 * <li>only users that have the 'SEC_ADMIN'-role are allowed</li>
053 * </ul>
054 *
055 * @author <a href="mschneider@lat-lon.de">Markus Schneider </a>
056 * @author last edited by: $Author: mschneider $
057 *
058 * @version $Revision: 18195 $, $Date: 2009-06-18 17:55:39 +0200 (Do, 18. Jun 2009) $
059 */
060 public class InitRoleEditorListener extends AbstractListener {
061
062 private static final ILogger LOG = LoggerFactory.getLogger( InitRoleEditorListener.class );
063
064 @Override
065 public void actionPerformed( FormEvent event ) {
066
067 try {
068 // perform access check
069 SecurityAccess access = SecurityHelper.acquireAccess( this );
070 if ( access == null ) {
071 getRequest().setAttribute( "SOURCE", this.getClass().getName() );
072 getRequest().setAttribute( "MESSAGE", get( "IGEO_STD_SEC_ERROR_UNAUTHORIZED_ACCESS" ) );
073 setNextPage( "error.jsp" );
074 return;
075 }
076 SecurityHelper.checkForAdminRole( access );
077
078 // submit data objects for the JSP
079 getRequest().setAttribute( "ROLES", access.getRolesByNS( null ) );
080 getRequest().setAttribute( "GROUPS", access.getAllGroups() );
081 getRequest().setAttribute( "ACCESS", access );
082 } catch ( GeneralSecurityException e ) {
083 getRequest().setAttribute( "SOURCE", this.getClass().getName() );
084 getRequest().setAttribute( "MESSAGE", get( "IGEO_STD_SEC_FAIL_INIT_ROLE_EDITOR", e.getMessage() ) );
085 setNextPage( "error.jsp" );
086 LOG.logError( e.getMessage(), e );
087 }
088 }
089 }