lada/lada-server: src/main/java/de/intevation/lada/util/auth/HeaderAuthorization.java annotate

author	Raimund Renkert <raimund.renkert@intevation.de>
date	Fri, 14 Aug 2015 09:44:31 +0200
parents
children	a5c755b0cfda

rev	line source
721 6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	1 /* Copyright (C) 2013 by Bundesamt fuer Strahlenschutz
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	2 * Software engineering by Intevation GmbH
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	3 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	4 * This file is Free Software under the GNU GPL (v>=3)
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	5 * and comes with ABSOLUTELY NO WARRANTY! Check out
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	6 * the documentation coming with IMIS-Labordaten-Application for details.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	7 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	8 package de.intevation.lada.util.auth;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	9
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	10 import java.lang.reflect.InvocationTargetException;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	11 import java.lang.reflect.Method;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	12 import java.util.ArrayList;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	13 import java.util.Arrays;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	14 import java.util.List;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	15
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	16 import javax.inject.Inject;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	17 import javax.persistence.EntityManager;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	18 import javax.servlet.http.HttpServletRequest;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	19
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	20 import org.apache.log4j.Logger;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	21
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	22 import de.intevation.lada.model.land.LMessung;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	23 import de.intevation.lada.model.land.LProbe;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	24 import de.intevation.lada.model.stamm.Auth;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	25 import de.intevation.lada.util.annotation.AuthorizationConfig;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	26 import de.intevation.lada.util.annotation.RepositoryConfig;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	27 import de.intevation.lada.util.data.QueryBuilder;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	28 import de.intevation.lada.util.data.Repository;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	29 import de.intevation.lada.util.data.RepositoryType;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	30 import de.intevation.lada.util.rest.RequestMethod;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	31 import de.intevation.lada.util.rest.Response;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	32
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	33 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	34 * Authorize a user via HttpServletRequest attributes.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	35 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	36 * @author <a href="mailto:rrenkert@intevation.de">Raimund Renkert</a>
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	37 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	38 @AuthorizationConfig(type=AuthorizationType.HEADER)
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	39 public class HeaderAuthorization implements Authorization {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	40
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	41 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	42 * The logger used in this class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	43 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	44 @Inject
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	45 private Logger logger;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	46
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	47 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	48 * The Repository used to read from Database.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	49 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	50 @Inject
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	51 @RepositoryConfig(type=RepositoryType.RO)
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	52 private Repository repository;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	53
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	54 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	55 * Request user informations using the HttpServletRequest.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	56 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	57 * @param source The HttpServletRequest
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	58 * @return The UserInfo object containing username and groups.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	59 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	60 @Override
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	61 public UserInfo getInfo(Object source) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	62 if (source instanceof HttpServletRequest) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	63 HttpServletRequest request = (HttpServletRequest)source;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	64 String roleString =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	65 request.getAttribute("lada.user.roles").toString();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	66 String[] roles = roleString.split(",");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	67 UserInfo info = getGroupsFromDB(roleString);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	68 info.setRoles(new ArrayList<String>(Arrays.asList(roles)));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	69 info.setName(request.getAttribute("lada.user.name").toString());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	70 return info;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	71 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	72 return null;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	73 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	74
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	75 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	76 * Filter a list of data objects using the user informations contained in
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	77 * the HttpServletRequest.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	78 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	79 * @param source The HttpServletRequest
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	80 * @param data The Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	81 * @param clazz The data object class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	82 * @return The Response object containing the filtered data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	83 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	84 @Override
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	85 public <T> Response filter(Object source, Response data, Class<T> clazz) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	86 UserInfo userInfo = this.getInfo(source);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	87 if (userInfo == null) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	88 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	89 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	90 if (clazz == LProbe.class) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	91 return this.authorizeProbe(userInfo, data);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	92 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	93 if (clazz == LMessung.class) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	94 return this.authorizeMessung(userInfo, data);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	95 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	96 Method[] methods = clazz.getMethods();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	97 for (Method method: methods) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	98 if (method.getName().equals("getProbeId")) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	99 return this.authorizeWithProbeId(userInfo, data, clazz);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	100 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	101 if (method.getName().equals("getMessungsId")) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	102 return this.authorizeWithMessungsId(userInfo, data, clazz);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	103 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	104 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	105 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	106 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	107
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	108 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	109 * Check whether a user is authorized to operate on the given data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	110 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	111 * @param source The HttpServletRequest containing user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	112 * @param data The data to test.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	113 * @param method The Http request type.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	114 * @param clazz The data object class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	115 * @return True if the user is authorized else returns false.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	116 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	117 @Override
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	118 public <T> boolean isAuthorized(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	119 Object source,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	120 Object data,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	121 RequestMethod method,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	122 Class<T> clazz
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	123 ) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	124 UserInfo userInfo = this.getInfo(source);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	125 if (userInfo == null) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	126 return false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	127 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	128 if (clazz == LProbe.class) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	129 LProbe probe = (LProbe)data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	130 if (method == RequestMethod.POST) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	131 return getAuthorization(userInfo, probe);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	132 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	133 else if (method == RequestMethod.PUT \|\|
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	134 method == RequestMethod.DELETE) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	135 return !isReadOnly(probe.getId());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	136 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	137 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	138 return false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	139 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	140 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	141 else if (clazz == LMessung.class) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	142 LMessung messung = (LMessung)data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	143 Response response =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	144 repository.getById(LProbe.class, messung.getProbeId(), "land");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	145 LProbe probe = (LProbe)response.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	146 if (method == RequestMethod.POST) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	147 return getAuthorization(userInfo, probe);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	148 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	149 else if (method == RequestMethod.PUT \|\|
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	150 method == RequestMethod.DELETE) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	151 Response messResponse =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	152 repository.getById(LMessung.class, messung.getId(), "land");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	153 LMessung messungDb = (LMessung)messResponse.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	154 boolean fertigChanged =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	155 !messung.getFertig().equals(messungDb.getFertig());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	156 logger.warn("changed " + fertigChanged);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	157 return (!messung.getFertig() \|\| fertigChanged) &&
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	158 getAuthorization(userInfo, probe);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	159 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	160 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	161 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	162 Method[] methods = clazz.getMethods();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	163 for (Method m: methods) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	164 if (m.getName().equals("getProbeId")) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	165 Integer id;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	166 try {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	167 id = (Integer) m.invoke(data);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	168 } catch (IllegalAccessException \| IllegalArgumentException
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	169 \| InvocationTargetException e) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	170 logger.warn(e.getCause() + ": " + e.getMessage());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	171 return false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	172 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	173 Response response =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	174 repository.getById(LProbe.class, id, "land");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	175 LProbe probe = (LProbe)response.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	176 return !isReadOnly(id) && getAuthorization(userInfo, probe);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	177
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	178 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	179 if (m.getName().equals("getMessungsId")) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	180 Integer id;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	181 try {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	182 id = (Integer) m.invoke(data);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	183 } catch (IllegalAccessException \| IllegalArgumentException
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	184 \| InvocationTargetException e) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	185 logger.warn(e.getCause() + ": " + e.getMessage());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	186 return false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	187 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	188 Response mResponse =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	189 repository.getById(LMessung.class, id, "land");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	190 LMessung messung = (LMessung)mResponse.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	191 Response pResponse =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	192 repository.getById(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	193 LProbe.class,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	194 messung.getProbeId(),
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	195 "land");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	196 LProbe probe = (LProbe)pResponse.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	197 return !messung.getFertig() &&
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	198 getAuthorization(userInfo, probe);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	199 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	200 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	201 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	202 return true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	203 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	204
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	205 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	206 * Get the authorization of a single probe.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	207 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	208 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	209 * @param probe The probe to authorize.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	210 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	211 private boolean getAuthorization(UserInfo userInfo, LProbe probe) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	212 if (userInfo.getMessstellen().contains(probe.getMstId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	213 return true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	214 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	215 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	216 return false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	217 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	218 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	219
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	220 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	221 * Request the lada specific groups.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	222 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	223 * @param roles The roles defined in the OpenId server.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	224 * @return The UserInfo contianing roles and user name.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	225 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	226 private UserInfo getGroupsFromDB(String roles) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	227 QueryBuilder<Auth> builder = new QueryBuilder<Auth>(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	228 repository.entityManager("stamm"),
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	229 Auth.class);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	230 builder.andIn("ldapGroup", Arrays.asList(roles.split(",")));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	231 Response response = repository.filter(builder.getQuery(), "stamm");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	232 @SuppressWarnings("unchecked")
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	233 List<Auth> auth = (List<Auth>)response.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	234 List<String> netzbetreiber = new ArrayList<String>();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	235 List<String> messstellen = new ArrayList<String>();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	236 for (Auth a : auth) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	237 if (a.getNetzBetreiber() != null) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	238 netzbetreiber.add(a.getNetzBetreiber());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	239 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	240 if (a.getMessStelle() != null) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	241 messstellen.add(a.getMessStelle());
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	242 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	243 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	244 UserInfo userInfo = new UserInfo();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	245 userInfo.setNetzbetreiber(netzbetreiber);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	246 userInfo.setMessstellen(messstellen);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	247 return userInfo;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	248 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	249
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	250 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	251 * Authorize data that has a messungsId Attribute.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	252 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	253 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	254 * @param data The Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	255 * @param clazz The data object class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	256 * @return A Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	257 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	258 @SuppressWarnings("unchecked")
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	259 private <T> Response authorizeWithMessungsId(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	260 UserInfo userInfo,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	261 Response data,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	262 Class<T> clazz
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	263 ) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	264 if (data.getData() instanceof List<?>) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	265 List<Object> objects = new ArrayList<Object>();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	266 for (Object object :(List<Object>)data.getData()) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	267 objects.add(authorizeSingleWithMessungsId(userInfo, object, clazz));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	268 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	269 data.setData(objects);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	270 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	271 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	272 Object object = data.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	273 data.setData(authorizeSingleWithMessungsId(userInfo, object, clazz));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	274 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	275 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	276 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	277
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	278 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	279 * Authorize data that has a probeId Attribute.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	280 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	281 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	282 * @param data The Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	283 * @param clazz The data object class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	284 * @return A Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	285 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	286 @SuppressWarnings("unchecked")
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	287 private <T> Response authorizeWithProbeId(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	288 UserInfo userInfo,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	289 Response data,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	290 Class<T> clazz
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	291 ) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	292 if (data.getData() instanceof List<?>) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	293 List<Object> objects = new ArrayList<Object>();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	294 for (Object object :(List<Object>)data.getData()) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	295 objects.add(authorizeSingleWithProbeId(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	296 userInfo,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	297 object,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	298 clazz));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	299 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	300 data.setData(objects);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	301 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	302 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	303 Object object = data.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	304 data.setData(authorizeSingleWithProbeId(userInfo, object, clazz));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	305 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	306 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	307 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	308
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	309 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	310 * Authorize a single data object that has a messungsId Attribute.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	311 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	312 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	313 * @param data The Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	314 * @param clazz The data object class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	315 * @return A Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	316 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	317 private <T> Object authorizeSingleWithMessungsId(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	318 UserInfo userInfo,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	319 Object data,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	320 Class<T> clazz
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	321 ) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	322 try {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	323 Method getMessungsId = clazz.getMethod("getMessungsId");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	324 Integer id = (Integer)getMessungsId.invoke(data);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	325 LMessung messung =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	326 (LMessung)repository.getById(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	327 LMessung.class, id, "land").getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	328 LProbe probe =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	329 (LProbe)repository.getById(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	330 LProbe.class, messung.getProbeId(), "land").getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	331
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	332 boolean readOnly = true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	333 boolean owner = false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	334 if (!userInfo.getNetzbetreiber().contains(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	335 probe.getNetzbetreiberId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	336 owner = false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	337 readOnly = true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	338 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	339 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	340 if (userInfo.getMessstellen().contains(probe.getMstId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	341 owner = true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	342 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	343 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	344 owner = false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	345 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	346 readOnly = messung.getFertig();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	347 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	348
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	349 Method setOwner = clazz.getMethod("setOwner", boolean.class);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	350 Method setReadonly = clazz.getMethod("setReadonly", boolean.class);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	351 setOwner.invoke(data, owner);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	352 setReadonly.invoke(data, readOnly);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	353 } catch (NoSuchMethodException \| SecurityException
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	354 \| IllegalAccessException \| IllegalArgumentException
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	355 \| InvocationTargetException e) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	356 return null;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	357 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	358 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	359 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	360
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	361 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	362 * Authorize a single data object that has a probeId Attribute.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	363 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	364 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	365 * @param data The Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	366 * @param clazz The data object class.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	367 * @return A Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	368 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	369 private <T> Object authorizeSingleWithProbeId(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	370 UserInfo userInfo,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	371 Object data,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	372 Class<T> clazz
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	373 ) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	374 try {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	375 Method getProbeId = clazz.getMethod("getProbeId");
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	376 Integer id = null;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	377 if (getProbeId != null) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	378 id = (Integer) getProbeId.invoke(data);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	379 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	380 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	381 return null;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	382 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	383 LProbe probe =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	384 (LProbe)repository.getById(LProbe.class, id, "land").getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	385
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	386 boolean readOnly = true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	387 boolean owner = false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	388 if (!userInfo.getNetzbetreiber().contains(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	389 probe.getNetzbetreiberId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	390 owner = false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	391 readOnly = true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	392 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	393 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	394 if (userInfo.getMessstellen().contains(probe.getMstId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	395 owner = true;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	396 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	397 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	398 owner = false;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	399 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	400 readOnly = this.isReadOnly(id);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	401 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	402
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	403 Method setOwner = clazz.getMethod("setOwner", boolean.class);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	404 Method setReadonly = clazz.getMethod("setReadonly", boolean.class);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	405 setOwner.invoke(data, owner);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	406 setReadonly.invoke(data, readOnly);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	407 } catch (NoSuchMethodException \| SecurityException
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	408 \| IllegalAccessException \| IllegalArgumentException
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	409 \| InvocationTargetException e) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	410 return null;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	411 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	412 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	413 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	414
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	415 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	416 * Authorize probe objects.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	417 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	418 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	419 * @param data The Response object containing the probe objects.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	420 * @return A Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	421 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	422 @SuppressWarnings("unchecked")
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	423 private Response authorizeProbe(UserInfo userInfo, Response data) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	424 if (data.getData() instanceof List<?>) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	425 List<LProbe> proben = new ArrayList<LProbe>();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	426 for (LProbe probe :(List<LProbe>)data.getData()) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	427 proben.add(authorizeSingleProbe(userInfo, probe));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	428 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	429 data.setData(proben);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	430 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	431 else if (data.getData() instanceof LProbe) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	432 LProbe probe = (LProbe)data.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	433 data.setData(authorizeSingleProbe(userInfo, probe));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	434 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	435 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	436 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	437
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	438 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	439 * Authorize a sinle probe object.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	440 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	441 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	442 * @param probe The probe object.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	443 * @return The probe.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	444 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	445 private LProbe authorizeSingleProbe(UserInfo userInfo, LProbe probe) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	446 if (!userInfo.getNetzbetreiber().contains(probe.getNetzbetreiberId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	447 probe.setOwner(false);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	448 probe.setReadonly(true);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	449 return probe;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	450 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	451 if (userInfo.getMessstellen().contains(probe.getMstId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	452 probe.setOwner(true);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	453 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	454 else {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	455 probe.setOwner(false);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	456 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	457 probe.setReadonly(this.isReadOnly(probe.getId()));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	458 return probe;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	459 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	460
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	461 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	462 * Authorize messung objects.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	463 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	464 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	465 * @param data The Response object containing the messung objects.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	466 * @return A Response object containing the data.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	467 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	468 @SuppressWarnings("unchecked")
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	469 private Response authorizeMessung(UserInfo userInfo, Response data) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	470 if (data.getData() instanceof List<?>) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	471 List<LMessung> messungen = new ArrayList<LMessung>();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	472 for (LMessung messung :(List<LMessung>)data.getData()) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	473 messungen.add(authorizeSingleMessung(userInfo, messung));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	474 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	475 data.setData(messungen);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	476 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	477 else if (data.getData() instanceof LMessung) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	478 LMessung messung = (LMessung)data.getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	479 data.setData(authorizeSingleMessung(userInfo, messung));
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	480 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	481 return data;
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	482 }
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	483
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	484 /**
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	485 * Authorize a sinle messung object.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	486 *
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	487 * @param userInfo The user information.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	488 * @param messung The messung object.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	489 * @return The messung.
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	490 */
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	491 private LMessung authorizeSingleMessung(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	492 UserInfo userInfo,
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	493 LMessung messung
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	494 ) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	495 LProbe probe =
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	496 (LProbe)repository.getById(
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	497 LProbe.class, messung.getProbeId(), "land").getData();
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	498 if (!userInfo.getNetzbetreiber().contains(probe.getNetzbetreiberId())) {
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	499 messung.setOwner(false);
6eed8b5decb1 Added shibboleth authorization. Raimund Renkert <raimund.renkert@intevation.de> parents: diff changeset	500 messung.setReadonly(true);

721

6eed8b5decb1 Added shibboleth authorization.