PageRenderTime 36ms CodeModel.GetById 13ms RepoModel.GetById 0ms app.codeStats 0ms

/jira-project/jira-components/jira-core/src/main/java/com/atlassian/jira/web/action/admin/user/GroupBrowser.java

https://bitbucket.org/ahmed_bilal_360factors/jira7-core
Java | 262 lines | 201 code | 35 blank | 26 comment | 23 complexity | d6a27cd02e1b43cc96b79356ed70404f MD5 | raw file
Possible License(s): Apache-2.0 
    

  1. package com.atlassian.jira.web.action.admin.user;
    2. 

  2. 

  3. import com.atlassian.core.util.StringUtils;
    4. 

  4. import com.atlassian.crowd.embedded.api.CrowdDirectoryService;
    5. 

  5. import com.atlassian.crowd.embedded.api.CrowdService;
    6. 

  6. import com.atlassian.crowd.embedded.api.Directory;
    7. 

  7. import com.atlassian.crowd.embedded.api.Group;
    8. 

  8. import com.atlassian.crowd.embedded.impl.ImmutableGroup;
    9. 

  9. import com.atlassian.crowd.exception.OperationNotPermittedException;
    10. 

  10. import com.atlassian.crowd.exception.embedded.InvalidGroupException;
    11. 

  11. import com.atlassian.crowd.exception.runtime.OperationFailedException;
    12. 

  12. import com.atlassian.jira.bc.JiraServiceContext;
    13. 

  13. import com.atlassian.jira.bc.JiraServiceContextImpl;
    14. 

  14. import com.atlassian.jira.bc.group.GroupService;
    15. 

  15. import com.atlassian.jira.component.ComponentAccessor;
    16. 

  16. import com.atlassian.jira.scheme.Scheme;
    17. 

  17. import com.atlassian.jira.security.groups.GroupManager;
    18. 

  18. import com.atlassian.jira.security.util.GroupToPermissionSchemeMapper;
    19. 

  19. import com.atlassian.jira.security.xsrf.RequiresXsrfCheck;
    20. 

  20. import com.atlassian.jira.user.util.UserManager;
    21. 

  21. import com.atlassian.jira.util.ErrorCollection;
    22. 

  22. import com.atlassian.jira.util.GlobalPermissionGroupAssociationUtil;
    23. 

  23. import com.atlassian.jira.util.SimpleErrorCollection;
    24. 

  24. import com.atlassian.jira.web.SessionKeys;
    25. 

  25. import com.atlassian.jira.web.action.AbstractBrowser;
    26. 

  26. import com.atlassian.jira.web.bean.GroupBrowserFilter;
    27. 

  27. import com.atlassian.jira.web.bean.PagerFilter;
    28. 

  28. import com.atlassian.jira.web.component.admin.group.GroupLabelView;
    29. 

  29. import com.atlassian.jira.web.component.admin.group.GroupLabelsService;
    30. 

  30. import com.atlassian.sal.api.websudo.WebSudoRequired;
    31. 

  31. import org.ofbiz.core.entity.GenericEntityException;
    32. 

  32. import webwork.action.ActionContext;
    33. 

  33. import webwork.util.BeanUtil;
    34. 

  34. 

  35. import javax.annotation.Nonnull;
    36. 

  36. import java.util.Collection;
    37. 

  37. import java.util.Collections;
    38. 

  38. import java.util.List;
    39. 

  39. import java.util.Optional;
    40. 

  40. 

  41. @WebSudoRequired
    42. 

  42. public class GroupBrowser extends AbstractBrowser {
    43. 

  43.     private List<Group> groups;
    44. 

  44.     private String addName;
    45. 

  45.     private GroupToPermissionSchemeMapper groupPermissionSchemeMapper;
    46. 

  46.     private final GlobalPermissionGroupAssociationUtil globalPermissionGroupAssociationUtil;
    47. 

  47.     private final CrowdService crowdService;
    48. 

  48.     private final GroupManager groupManager;
    49. 

  49.     private final UserManager userManager;
    50. 

  50.     private final CrowdDirectoryService crowdDirectoryService;
    51. 

  51.     private final GroupService groupService;
    52. 

  52.     private final GroupLabelsService groupLabels;
    53. 

  53. 

  54.     public GroupBrowser(GroupToPermissionSchemeMapper groupToPermissionSchemeMapper, UserManager userManager,
    55. 

  55.                         GlobalPermissionGroupAssociationUtil globalPermissionGroupAssociationUtil, CrowdService crowdService,
    56. 

  56.                         CrowdDirectoryService crowdDirectoryService, GroupManager groupManager, GroupService groupService,
    57. 

  57.                         GroupLabelsService groupLabels) {
    58. 

  58.         this.globalPermissionGroupAssociationUtil = globalPermissionGroupAssociationUtil;
    59. 

  59.         this.crowdService = crowdService;
    60. 

  60.         this.crowdDirectoryService = crowdDirectoryService;
    61. 

  61.         this.groupService = groupService;
    62. 

  62.         this.groupManager = groupManager;
    63. 

  63.         this.userManager = userManager;
    64. 

  64.         this.groupLabels = groupLabels;
    65. 

  65.         if (groupToPermissionSchemeMapper != null) {
    66. 

  66.             this.groupPermissionSchemeMapper = groupToPermissionSchemeMapper;
    67. 

  67.         } else {
    68. 

  68.             addErrorMessage(getText("groupbrowser.error.retrieve.group"));
    69. 

  69.         }
    70. 

  70.     }
    71. 

  71. 

  72.     public GroupBrowser(GroupManager groupManager, UserManager userManager, CrowdService crowdService,
    73. 

  73.                         CrowdDirectoryService crowdDirectoryService,
    74. 

  74.                         GlobalPermissionGroupAssociationUtil globalPermissionGroupAssociationUtil, GroupService groupService,
    75. 

  75.                         GroupLabelsService groupLabels)
    76. 

  76.             throws GenericEntityException {
    77. 

  77.         this(new GroupToPermissionSchemeMapper(ComponentAccessor.getPermissionSchemeManager(),
    78. 

  78.                         ComponentAccessor.getPermissionManager()),
    79. 

  79.                 userManager,
    80. 

  80.                 globalPermissionGroupAssociationUtil,
    81. 

  81.                 crowdService,
    82. 

  82.                 crowdDirectoryService,
    83. 

  83.                 groupManager,
    84. 

  84.                 groupService,
    85. 

  85.                 groupLabels);
    86. 

  86.     }
    87. 

  87. 

  88.     protected String doExecute() throws Exception {
    89. 

  89.         resetPager();
    90. 

  90. 

  91.         BeanUtil.setProperties(params, getFilter());
    92. 

  92. 

  93.         return SUCCESS;
    94. 

  94.     }
    95. 

  95. 

  96.     @RequiresXsrfCheck
    97. 

  97.     public String doAdd() throws Exception {
    98. 

  98.         if (!addNewGroup()) {
    99. 

  99.             return ERROR;
    100. 

  100.         }
    101. 

  101.         return doExecute();
    102. 

  102.     }
    103. 

  103. 

  104.     private boolean addNewGroup() {
    105. 

  105.         if (org.apache.commons.lang.StringUtils.isEmpty(addName)) {
    106. 

  106.             addError("addName", getText("admin.errors.cannot.add.groups.invalid.group.name"));
    107. 

  107.             return false;
    108. 

  108.         }
    109. 

  109. 

  110.         //JRA-12112: If external *user* management is enabled, we do not allow the addtion of a new user.
    111. 

  111.         if (!userManager.hasGroupWritableDirectory()) {
    112. 

  112.             addErrorMessage(getText("admin.errors.cannot.add.groups.directories.read.only"));
    113. 

  113.             return false;
    114. 

  114.         }
    115. 

  115. 

  116.         if (crowdService.getGroup(addName) == null) {
    117. 

  117.             try {
    118. 

  118.                 crowdService.addGroup(new ImmutableGroup(addName));
    119. 

  119.             } catch (OperationNotPermittedException | InvalidGroupException | OperationFailedException e) {
    120. 

  120.                 addError("addName", getText("groupbrowser.error.add", addName));
    121. 

  121.                 log.error("Error occurred adding group : " + addName, e);
    122. 

  122.             }
    123. 

  123.             addName = null;
    124. 

  124.         } else {
    125. 

  125.             addError("addName", getText("groupbrowser.error.group.exists"));
    126. 

  126.         }
    127. 

  127.         return true;
    128. 

  128.     }
    129. 

  129. 

  130.     public PagerFilter getPager() {
    131. 

  131.         return getFilter();
    132. 

  132.     }
    133. 

  133. 

  134.     public void resetPager() {
    135. 

  135.         ActionContext.getSession().put(SessionKeys.GROUP_FILTER, null);
    136. 

  136.     }
    137. 

  137. 

  138.     public GroupBrowserFilter getFilter() {
    139. 

  139.         GroupBrowserFilter filter = (GroupBrowserFilter) ActionContext.getSession().get(SessionKeys.GROUP_FILTER);
    140. 

  140. 

  141.         if (filter == null) {
    142. 

  142.             filter = new GroupBrowserFilter();
    143. 

  143.             ActionContext.getSession().put(SessionKeys.GROUP_FILTER, filter);
    144. 

  144.         }
    145. 

  145. 

  146.         return filter;
    147. 

  147.     }
    148. 

  148. 

  149.     /**
    150. 

  150.      * Return the current 'page' of issues (given max and start) for the current filter
    151. 

  151.      */
    152. 

  152.     public List getCurrentPage() {
    153. 

  153.         return getFilter().getCurrentPage(getBrowsableItems());
    154. 

  154.     }
    155. 

  155. 

  156.     public List getBrowsableItems() {
    157. 

  157.         if (groups == null) {
    158. 

  158.             try {
    159. 

  159.                 groups = getFilter().getFilteredGroups();
    160. 

  160.             } catch (Exception e) {
    161. 

  161.                 log.error("Exception getting groups: " + e, e);
    162. 

  162.                 return Collections.emptyList();
    163. 

  163.             }
    164. 

  164.         }
    165. 

  165. 

  166.         return groups;
    167. 

  167.     }
    168. 

  168. 

  169.     public String getAddName() {
    170. 

  170.         return addName;
    171. 

  171.     }
    172. 

  172. 

  173.     public void setAddName(String addName) {
    174. 

  174.         this.addName = addName.trim();
    175. 

  175.     }
    176. 

  176. 

  177.     public String escapeAmpersand(String str) {
    178. 

  178.         return StringUtils.replaceAll(str, "&", "%26");
    179. 

  179.     }
    180. 

  180. 

  181.     public int getUsersInGroupCount(Group group) {
    182. 

  182.         return groupManager.getUsersInGroupCount(group);
    183. 

  183.     }
    184. 

  184. 

  185.     public Collection<Scheme> getPermissionSchemes(String groupName) {
    186. 

  186.         if (groupPermissionSchemeMapper != null) {
    187. 

  187.             return groupPermissionSchemeMapper.getMappedValues(groupName);
    188. 

  188.         } else {
    189. 

  189.             return Collections.emptyList();
    190. 

  190.         }
    191. 

  191.     }
    192. 

  192. 

  193.     private Boolean hasGroupWritableDirectory = null;
    194. 

  194. 

  195.     public boolean hasGroupWritableDirectory() {
    196. 

  196.         if (hasGroupWritableDirectory == null) {
    197. 

  197.             hasGroupWritableDirectory = new Boolean(userManager.hasGroupWritableDirectory());
    198. 

  198.         }
    199. 

  199.         return hasGroupWritableDirectory.booleanValue();
    200. 

  200.     }
    201. 

  201. 

  202.     /**
    203. 

  203.      * Test if the current user has the necessary permissions to permit deletion of given group.
    204. 

  204.      */
    205. 

  205.     public boolean isUserAbleToDeleteGroup(String groupName) {
    206. 

  206.         return globalPermissionGroupAssociationUtil.isUserAbleToDeleteGroup(
    207. 

  207.                 getLoggedInUser(), groupName);
    208. 

  208.     }
    209. 

  209. 

  210.     /**
    211. 

  211.      * Returns the empty string if the given group (name) is potentially deletable, otherwise returns the
    212. 

  212.      * reason why it's not. Note that this is a different test than {@link #isUserAbleToDeleteGroup(String)}.
    213. 

  213.      *
    214. 

  214.      * @return reason why group would not be deletable, otherwise the empty string.
    215. 

  215.      * @see GroupService#validateDelete
    216. 

  216.      */
    217. 

  217.     @Nonnull
    218. 

  218.     public String isGroupDeletable(@Nonnull String groupName) {
    219. 

  219.         JiraServiceContext currentRequest = getJiraServiceContext();
    220. 

  220.         ErrorCollection potentialDeleteErrors = new SimpleErrorCollection();
    221. 

  221.         JiraServiceContext potentialDelete = new JiraServiceContextImpl(
    222. 

  222.                 currentRequest.getLoggedInApplicationUser(), potentialDeleteErrors, currentRequest.getI18nBean());
    223. 

  223. 

  224.         // if group delete would fail, then passed ErrorCollection will be non-empty
    225. 

  225.         groupService.validateDelete(potentialDelete, groupName, null);
    226. 

  226. 

  227.         if (potentialDeleteErrors.hasAnyErrors()) {
    228. 

  228.             // then delete is expected to fail.
    229. 

  229. 

  230.             // special case: if there are comments/worklogs associated to this group, then validateDelete
    231. 

  231.             // will return false. however the group is still potentially deletable on the delete confirm
    232. 

  232.             // page via assignment to a swap group.
    233. 

  233.             if (groupService.getCommentsAndWorklogsGuardedByGroupCount(groupName) > 0) {
    234. 

  234.                 // delete could still succeed
    235. 

  235.                 return "";
    236. 

  236.             }
    237. 

  237. 

  238.             return potentialDeleteErrors.getErrorMessages().iterator().next();
    239. 

  239.         } else {
    240. 

  240.             // then delete should succeed
    241. 

  241.             return "";
    242. 

  242.         }
    243. 

  243.     }
    244. 

  244. 

  245.     /**
    246. 

  246.      * Return true if any directory supports nested groups.
    247. 

  247.      *
    248. 

  248.      * @return true if any directory supports nested groups.
    249. 

  249.      */
    250. 

  250.     public boolean isNestedGroupsEnabledForAnyDirectory() {
    251. 

  251.         for (Directory directory : crowdDirectoryService.findAllDirectories()) {
    252. 

  252.             if (crowdDirectoryService.supportsNestedGroups(directory.getId())) {
    253. 

  253.                 return true;
    254. 

  254.             }
    255. 

  255.         }
    256. 

  256.         return false;
    257. 

  257.     }
    258. 

  258. 

  259.     public List<GroupLabelView> getGroupLabels(Group group) {
    260. 

  260.         return groupLabels.getGroupLabels(group, Optional.<Long>empty());
    261. 

  261.     }
    262. 

  262. }
    263. 

  263.