ReleasePackageAuthorizationChecker.java example

Explorer

MLDS-master
- src
  - main
    - java
      - ca
        intelliware
        ihtsdo
        mlds
        Application.java
        ApplicationWebXml.java
        aop
        logging
        LoggingAspect.java
        async
        ExceptionHandlingAsyncTaskExecutor.java
        package-info.java
        config
        AsyncConfiguration.java
        CacheConfiguration.java
        Constants.java
        DatabaseConfiguration.java
        JacksonConfigurer.java
        LocaleConfiguration.java
        LoggingAspectConfiguration.java
        MailConfiguration.java
        MetricsConfiguration.java
        MultipartConfiguration.java
        RemoteAuthenticationConfiguration.java
        ReplacementJHipsterReloaderAutoConfiguration.java
        S3ClientConfiguration.java
        SearchConfiguration.java
        SecurityConfiguration.java
        ThymeleafConfiguration.java
        WebConfigurer.java
        audit
        AuditEventConverter.java
        package-info.java
        locale
        AngularCookieLocaleResolver.java
        package-info.java
        metrics
        DatabaseHealthCheckIndicator.java
        HealthCheckIndicator.java
        JHipsterHealthIndicatorConfiguration.java
        JavaMailHealthCheckIndicator.java
        package-info.java
        package-info.java
        domain
        AbstractAuditingEntity.java
        Affiliate.java
        AffiliateDetails.java
        AffiliateSubType.java
        AffiliateType.java
        AgreementType.java
        Application.java
        ApplicationErrorCodes.java
        ApprovalState.java
        Authority.java
        BaseEntity.java
        CommercialUsage.java
        CommercialUsageCountry.java
        CommercialUsageEntry.java
        CommercialUsagePeriod.java
        Country.java
        Event.java
        ExtensionApplication.java
        File.java
        ImportApplication.java
        MailingAddress.java
        Member.java
        MemberSerializer.java
        OrganizationType.java
        PasswordResetToken.java
        PersistentAuditEvent.java
        PersistentToken.java
        PrimaryApplication.java
        ReleaseFile.java
        ReleasePackage.java
        ReleaseVersion.java
        StandingState.java
        UsageContext.java
        UsageReportState.java
        User.java
        application
        ApplicationChangeEdit.java
        ClassMatchChecker.java
        ExtensionApplicationUpdateStrategy.java
        UserApprovalStateChangeStrategy.java
        json
        ApplicationCollection.java
        InternalPrivacyFilter.java
        MLDSJacksonModule.java
        MemberJsonDeserializer.java
        ReleaseFileSerializer.java
        package-info.java
        util
        CustomLocalDateSerializer.java
        registration
        DomainBlacklist.java
        DomainBlacklistRespository.java
        DomainBlacklistService.java
        repository
        AffiliateDetailsRepository.java
        AffiliateRepository.java
        AffiliateSearchRepository.java
        ApplicationRepository.java
        AuthorityRepository.java
        BlobHelper.java
        CommercialUsageCountryRepository.java
        CommercialUsageEntryRepository.java
        CommercialUsageRepository.java
        CountryRepository.java
        CustomAuditEventRepository.java
        FileRepository.java
        MemberRepository.java
        PageableUtil.java
        PasswordResetTokenRepository.java
        PersistenceAuditEventRepository.java
        PersistentTokenRepository.java
        ReleaseFileRepository.java
        ReleasePackageRepository.java
        ReleaseVersionRepository.java
        UserRepository.java
        package-info.java
        search
        AffiliateTypeFieldBridge.java
        AngularTranslateService.java
        OrganizationTypeFieldBridge.java
        StandingStateFieldBridge.java
        TranslatedEnumFieldBridge.java
        security
        AjaxAuthenticationFailureHandler.java
        AjaxAuthenticationSuccessHandler.java
        AjaxLogoutSuccessHandler.java
        AuthoritiesConstants.java
        CustomPersistentRememberMeServices.java
        Http401UnauthorizedEntryPoint.java
        SecurityUtils.java
        SpringSecurityAuditorAware.java
        UserNotActivatedException.java
        ihtsdo
        AuthorityConverter.java
        AuthorizationChecker.java
        CentralAuthUserInfo.java
        CentralAuthUserPermission.java
        CurrentSecurityContext.java
        DBUserDetailsService.java
        HttpAuthAdaptor.java
        HttpAuthAuthenticationProvider.java
        PostRequestBuilder.java
        RemoteUserDetails.java
        UserStandingCalculator.java
        package-info.java
        package-info.java
        service
        AffiliateAuditEvents.java
        AffiliateDeleter.java
        AffiliateDetailsDifferenceCalculator.java
        AffiliateDetailsResetter.java
        AffiliateMembershipCalculator.java
        ApplicationService.java
        ApprovalTransition.java
        AuditDataBuilder.java
        AuditEventService.java
        AutologinService.java
        CommercialUsageAuditEvents.java
        CommercialUsageAuthorizationChecker.java
        CommercialUsageResetter.java
        CommercialUsageService.java
        MavenWebappMetadataLookup.java
        PasswordResetService.java
        ReleasePackagePrioritizer.java
        SpringEnabledMavenWebappMetadataLookup.java
        UsageReportTransition.java
        UserMembershipAccessor.java
        UserMembershipCalculator.java
        UserService.java
        affiliatesimport
        Accessor.java
        AffiliateFileFormat.java
        AffiliateImportAuditEvents.java
        AffiliatesExporterService.java
        AffiliatesImportGenerator.java
        AffiliatesImportSpec.java
        AffiliatesImporterService.java
        AffiliatesMapper.java
        BaseAffiliatesGenerator.java
        CountryValueConverter.java
        EnumValueConverter.java
        FieldMapping.java
        ImportResult.java
        LineRecord.java
        MemberValueConverter.java
        ValueConverter.java
        mail
        AnnouncementEmailSender.java
        ApplicationApprovedEmailSender.java
        ApplicationPendingEmailSender.java
        ClientLinkBuilder.java
        DuplicateRegistrationEmailSender.java
        EmailVariables.java
        MailService.java
        PasswordResetEmailSender.java
        ReleasePackageUpdatedEmailSender.java
        TemplateEvaluator.java
        package-info.java
        package-info.java
        util
        RandomUtil.java
        web
        RouteLinkBuilder.java
        SessionService.java
        filter
        CachingHttpHeadersFilter.java
        StaticResourcesProductionFilter.java
        gzip
        GZipResponseUtil.java
        GZipServletFilter.java
        GZipServletOutputStream.java
        GZipServletResponseWrapper.java
        GzipResponseHeadersNotModifiableException.java
        package-info.java
        package-info.java
        propertyeditors
        LocaleDateTimeEditor.java
        package-info.java
        rest
        AccountResource.java
        AffiliatePublicResource.java
        AffiliateResource.java
        AnnouncementAuthorizationChecker.java
        AnnouncementResource.java
        ApplicationApprovalStateChangeNotifier.java
        ApplicationAuditEvents.java
        ApplicationAuthorizationChecker.java
        ApplicationResource.java
        AuditResource.java
        BadRequestControllerAdvice.java
        CommercialUsageResource.java
        CountriesResource.java
        DomainBlacklistResource.java
        LogsResource.java
        MemberResource.java
        PasswordResetResource.java
        ReleaseFilePrivacyFilter.java
        ReleaseFilesResource.java
        ReleasePackageAuditEvents.java
        ReleasePackageAuthorizationChecker.java
        ReleasePackagesResource.java
        ReleaseVersionsResource.java
        Routes.java
        SortBuilder.java
        UriDownloader.java
        UserNotifier.java
        UserResource.java
        VersionResource.java
        dto
        AffiliateCheckDTO.java
        AnnouncementDTO.java
        FileDTO.java
        LoggerDTO.java
        MemberDTO.java
        UserDTO.java
        package-info.java
        package-info.java
  - test
    - java
      - ca
        intelliware
        ihtsdo
        mlds
        design
        ControllerMethodTraversal.java
        LiqubaseVerification.java
        RequestMappingSecurityTest.java
        developer
        HibernateSearchIndexer.java
        MigrationSuggestionGenerator.java
        PasswordGenerator.java
        domain
        PasswordResetTokenTest.java
        application
        ClassMatchCheckerTest.java
        ExtensionApplicationUpdateStrategyTest.java
        json
        AffiliateJsonTest.java
        ObjectMapperTestBuilder.java
        ReleaseFileJsonTest.java
        SerialiationCycleTest.java
        UsageJsonTest.java
        repository
        AffiliateFullTextSearchTest.java
        AffiliateRepositoryTest.java
        search
        AngularTranslateServiceSetup.java
        EnumFieldBridgeTest.java
        security
        ihtsdo
        AuthorityConverterTest.java
        AuthorizationCheckerTest.java
        HttpAuthAdaptorTest.java
        HttpAuthAuthenticationProviderTest.java
        HttpAuthIntegrationTest.java
        SecurityContextSetup.java
        UserStandingCalculatorTest.java
        service
        AffiliateAuditEventsTest.java
        AffiliateDeleterTest.java
        AffiliateDetailsDifferenceCalculatorTest.java
        AffiliateMembershipCalculatorTest.java
        AuditEventServiceTest.java
        CommercialUsageAuthorizationCheckerTest.java
        CommercialUsageServiceTest.java
        ReleasePackagePrioritizerTest.java
        UserMembershipAccessorTest.java
        UserMembershipCalculationTest.java
        affiliatesimport
        AccessorTest.java
        AffiliatesExporterServiceTest.java
        AffiliatesImportGeneratorIntegrationTest.java
        AffiliatesImportGeneratorTest.java
        AffiliatesImporterServiceTest.java
        CountryValueConverterTest.java
        EnumValueConverterTest.java
        MemberValueConverterTest.java
        ValueConverterTest.java
        web
        rest
        AccountResourceTest.java
        AccountResource_Register_Test.java
        AffiliatePublicResourceTest.java
        AffiliateResourceTest.java
        AffiliateResource_AffiliatesFilter_Test.java
        AnnouncementAuthorizationCheckerTest.java
        AnnouncementResourceTest.java
        AnnouncementResource_Load_Test.java
        ApplicationApprovalStateChangeNotifierTest.java
        ApplicationAuditEventsTest.java
        ApplicationAuthorizationCheckerTest.java
        ApplicationResource_ApproveApplication_Test.java
        ApplicationResource_CreateApplication_Test.java
        ApplicationResource_SubmitApplication_Test.java
        ApplicationUpdateTest.java
        AuditResourceTest.java
        CommercialUsageResource_CreateNewSubmission_Test.java
        CommercialUsageResource_GetUsageReports_Test.java
        CommercialUsageResource_TransitionCommercialUsageApproval_Test.java
        CountriesResourceTest.java
        MemberResourceTest.java
        MockMvcJacksonTestSupport.java
        PartialCopyTest.java
        PasswordResetResourceTest.java
        ReleaseFilesResourceTest.java
        ReleasePackageAuditEventsTest.java
        ReleasePackageAuthorizationCheckerTest.java
        ReleasePackagesResourceTest.java
        ReleaseVersionsResourceTest.java
        RouteLinkBuilderTest.java
        TestUtil.java
        UriDownloaderTest.java
        UserNotifierTest.java
        UserNotifier_Load_Test.java
        UserResourceTest.java

package ca.intelliware.ihtsdo.mlds.web.rest;

import javax.annotation.Resource;

import org.springframework.stereotype.Service;

import com.google.common.base.Objects;

import ca.intelliware.ihtsdo.mlds.domain.Member;
import ca.intelliware.ihtsdo.mlds.domain.ReleasePackage;
import ca.intelliware.ihtsdo.mlds.domain.ReleaseVersion;
import ca.intelliware.ihtsdo.mlds.security.ihtsdo.AuthorizationChecker;
import ca.intelliware.ihtsdo.mlds.security.ihtsdo.UserStandingCalculator;
import ca.intelliware.ihtsdo.mlds.service.UserMembershipAccessor;

@Service
public class ReleasePackageAuthorizationChecker extends AuthorizationChecker {

	@Resource UserMembershipAccessor userMembershipAccessor;
	@Resource UserStandingCalculator userStandingCalculator;
	
	public void checkCanCreateReleasePackages() {
		if (isStaffOrAdmin()) {
			return;
		}
		failCheck("User not authorized to access release packages.");
	}

	public void checkCanEditReleasePackage(ReleasePackage releasePackage) {
		if (currentSecurityContext.isAdmin() 
				|| currentSecurityContext.isStaffFor(releasePackage.getMember())) {
			return;
		}
		failCheck("User not authorized to access release packages.");
	}

	boolean shouldSeeOfflinePackages() {
		return currentSecurityContext.isMemberOrStaffOrAdmin();
	}

	public void checkCanAccessReleaseVersion(ReleaseVersion releaseVersion) {
		if (releaseVersion.isOnline() || shouldSeeOfflinePackages()) {
			return;
		}
		failCheck("User not authorized to access offline release version.");
	}

	public void checkCanDownloadReleaseVersion(ReleaseVersion releaseVersion) {
		if (isStaffOrAdmin()) {
			return;
		} else if (isMember()
				&& Objects.equal(releaseVersion.getReleasePackage().getMember().getKey(), Member.KEY_IHTSDO)) {
			return;
		} else if (releaseVersion.isOnline() 
				&& !userStandingCalculator.isLoggedInUserAffiliateDeactivated()
				&& !userStandingCalculator.isLoggedInUserAffiliateDeregistered()
				&& !userStandingCalculator.isLoggedInUserAffiliatePendingInvoice()
				&& userMembershipAccessor.isAffiliateMemberApplicationAccepted(releaseVersion.getReleasePackage().getMember())) {
			return;
		}
		failCheck("User not authorized to download release version.");
	}


}