Package ch.entwine.weblounge.taglib.security

Source Code of ch.entwine.weblounge.taglib.security.IfNotAuthenticatedTag

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
/*
*  Weblounge: Web Content Management System
*  Copyright (c) 2003 - 2011 The Weblounge Team
*  http://entwinemedia.com/weblounge
*
*  This program is free software; you can redistribute it and/or
*  modify it under the terms of the GNU Lesser General Public License
*  as published by the Free Software Foundation; either version 2
*  of the License, or (at your option) any later version.
*
*  This program is distributed in the hope that it will be useful,
*  but WITHOUT ANY WARRANTY; without even the implied warranty of
*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
*  GNU Lesser General Public License for more details.
*
*  You should have received a copy of the GNU Lesser General Public License
*  along with this program; if not, write to the Free Software Foundation
*  Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
*/

package ch.entwine.weblounge.taglib.security;

import ch.entwine.weblounge.common.impl.security.Guest;
import ch.entwine.weblounge.common.impl.security.SecurityUtils;
import ch.entwine.weblounge.common.impl.security.SystemRole;
import ch.entwine.weblounge.common.security.Role;
import ch.entwine.weblounge.common.security.User;
import ch.entwine.weblounge.taglib.WebloungeTag;

import java.util.Set;

import javax.servlet.jsp.JspException;

/**
* Checks if a user is NOT authenticated. The body content is only evaluated, if
* the user is NOT logged in.
*/
public class IfNotAuthenticatedTag extends WebloungeTag {

  /** serial version uid */
  private static final long serialVersionUID = -8597788169489696028L;

  /**
   * @see javax.servlet.jsp.tagext.BodyTagSupport#doStartTag()
   */
  @Override
  public int doStartTag() throws JspException {
    super.doStartTag();
    User user = getRequest().getUser();

    // If the user object is Guest, no more questions will be asked
    if (user instanceof Guest)
      return SKIP_BODY;

    // If the user has more than one role, or that one role is not
    // SystemRole.Guest, we are on the safe side
    Set<Object> roles = user.getPublicCredentials(Role.class);
    if (roles.size() > 1 || !SecurityUtils.userHasRole(user, SystemRole.GUEST))
      return SKIP_BODY;

    return EVAL_BODY_INCLUDE;
  }

}
TOP

Related Classes of ch.entwine.weblounge.taglib.security.IfNotAuthenticatedTag

  • ch.entwine.weblounge.common.security.User
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.