Security editor

Author: rickx1

com.ecmdeveloper.plugin.cmis/plugin.xml

@@ -147,6 +147,30 @@
             </visibleWhen>
          </command>
       </menuContribution>
+      <menuContribution
+            locationURI="menu:com.ecmdeveloper.plugin.security.editor.toolbar?after=additions">
+         <command
+               commandId="com.ecmdeveloper.plugin.cmis.scripting.executeClass"
+               icon="icons/application_go.png"
+               style="push">
+            <visibleWhen
+                  checkEnabled="false">
+               <with
+                     variable="selection">
+                  <iterate>
+                     <or>
+                        <instanceof
+                              value="com.ecmdeveloper.plugin.cmis.model.Document">
+                        </instanceof>
+                        <instanceof
+                              value="com.ecmdeveloper.plugin.cmis.model.Folder">
+                        </instanceof>
+                     </or>
+                  </iterate>
+               </with>
+            </visibleWhen>
+         </command>
+      </menuContribution>
    </extension>
    <extension
          point="org.eclipse.ui.commands">

com.ecmdeveloper.plugin.cmis/src/com/ecmdeveloper/plugin/cmis/model/security/AccessControlEntries.java

@@ -196,11 +196,14 @@ private AccessControlEntry createAccessControlEntry(SecurityPrincipal principal,
 
 	private IAccessLevel getAccessLevel(String permission) {
 		for ( IAccessLevel accessLevel : accessLevels) {
+			System.out.println(((AccessLevel)accessLevel).getId() );
 			if ( permission.equalsIgnoreCase( ((AccessLevel)accessLevel).getId() ) ) {
 				return accessLevel;
 			}
 		}
-		return null;
+		AccessLevel accessLevel = new AccessLevel(permission);
+		accessLevels.add(accessLevel);
+		return accessLevel;
 	}
 
 	public void addAccessLevel(AccessLevel accessLevel) {

com.ecmdeveloper.plugin.cmis/src/com/ecmdeveloper/plugin/cmis/model/security/AccessLevel.java

@@ -62,12 +62,17 @@ private void addAccessRights(Map<String, PermissionMapping> permissionMappings)
 	    }
 	}
 
+	public AccessLevel(String id) {
+		this.id = id;
+		this.name = id;
+		this.defaultLevel = false;
+		
+		accessRights = new ArrayList<IAccessRight>();
+	}
+	
 	private boolean isGranted(String permission, PermissionMapping permissionMapping) {
 		for (String p : permissionMapping.getPermissions() ) {
-			if (p.equalsIgnoreCase(permission)
-					|| (permission.equals(CMIS_ALL_PERMISSION) && 
-							(isGranted(CMIS_READ_PERMISSION, permissionMapping) || 
-							 isGranted(CMIS_WRITE_PERMISSION,permissionMapping)) ) ) {
+			if (p.equalsIgnoreCase(permission) ) {
 				return true;
 			}
 		}

com.ecmdeveloper.plugin.cmis/src/com/ecmdeveloper/plugin/cmis/model/tasks/security/SaveAccessControlEntriesTask.java

@@ -22,14 +22,17 @@
 
 import java.util.ArrayList;
 import java.util.Collection;
+import java.util.HashSet;
 import java.util.List;
+import java.util.Set;
 
 import org.apache.chemistry.opencmis.client.api.CmisObject;
 import org.apache.chemistry.opencmis.client.api.Folder;
 import org.apache.chemistry.opencmis.client.api.OperationContext;
 import org.apache.chemistry.opencmis.client.api.Session;
 import org.apache.chemistry.opencmis.client.runtime.OperationContextImpl;
 import org.apache.chemistry.opencmis.commons.data.Ace;
+import org.apache.chemistry.opencmis.commons.data.Acl;
 import org.apache.chemistry.opencmis.commons.enums.AclPropagation;
 
 import com.ecmdeveloper.plugin.cmis.model.ObjectStoreItem;
@@ -58,12 +61,102 @@ public SaveAccessControlEntriesTask(ObjectStoreItem objectStoreItem, AccessContr
 
 	@Override
 	public Object call() throws Exception {
+		
 	    Session session = objectStoreItem.getObjectStore().getSession();
 	    CmisObject cmisObject = objectStoreItem.getCmisObject();
-		cmisObject.addAcl(createAces(session), AclPropagation.REPOSITORYDETERMINED );
+		Acl acl = getOldAcl(session, cmisObject);
+	
+		List<Ace> aceListAdd = new ArrayList<Ace>();
+		List<Ace> aceListRemove = new ArrayList<Ace>();
+
+		if ( acl != null ) {
+			
+			for (Ace ace : acl.getAces() ) {
+
+				System.out.println( ace.toString() );
+				if ( !ace.isDirect() ) {
+					continue;
+				}
+
+				ISecurityPrincipal principal = getPrincipal( ace );
+				if ( principal == null ) {
+					aceListRemove.add( ace );
+				} else {
+
+					if ( isDifferent(ace, principal) ) {
+						aceListAdd.add( createAce(session, principal) );
+						aceListRemove.add( ace );
+					} 
+				}
+			}
+	
+			for ( ISecurityPrincipal principal : accessControlEntries.getPrincipals() ) {
+				if ( getAce(principal, acl) == null ) {
+					Ace createAce = createAce(session, principal);
+					if ( !createAce.getPermissions().isEmpty() ) {
+						aceListAdd.add(createAce );
+					}
+				}
+			}
+		}
+	
+//		cmisObject.applyAcl(aceListAdd, aceListRemove, AclPropagation.REPOSITORYDETERMINED);
+		cmisObject.applyAcl(aceListAdd, aceListRemove, AclPropagation.OBJECTONLY);
+		
 	    return null;
 	}
 
+	private Acl getOldAcl(Session session, CmisObject cmisObject) {
+		OperationContext operationContext = new OperationContextImpl();
+	    operationContext.setIncludeAcls(true);	    
+	    CmisObject cmisObject2 = session.getObject(cmisObject, operationContext);
+		Acl acl = cmisObject2.getAcl();
+		return acl;
+	}
+
+	private Ace getAce(ISecurityPrincipal principal, Acl acl) {
+		for ( Ace ace : acl.getAces() ) {
+			if ( ace.isDirect() ) {
+				if ( principal.getName().equals( ace.getPrincipalId() ) ) {
+					return ace;
+				}
+			}
+		}
+		return null;
+	}
+
+    private boolean isDifferent(Ace ace, ISecurityPrincipal principal) {
+		Set<String> permissions = getPermissions(principal);
+		if ( permissions.size() != ace.getPermissions().size() ) {
+			return true;
+		}
+		permissions.removeAll( ace.getPermissions() );
+		return !permissions.isEmpty();
+	}
+
+	private Set<String> getPermissions(ISecurityPrincipal principal) {
+		
+		Set<String> permissionSet = new HashSet<String>();
+		
+		for (IAccessControlEntry accessControlEntry : principal.getAccessControlEntries() ) {
+			if ( accessControlEntry.getSource().equals(AccessControlEntrySource.DIRECT ) ) {
+				IAccessLevel accessLevel = accessControlEntry.getAccessLevel();
+				permissionSet.add( ((AccessLevel)accessLevel).getId() );
+			}
+		}
+
+		return permissionSet;
+	}
+		
+	private ISecurityPrincipal getPrincipal(Ace ace) {
+		for ( ISecurityPrincipal principal : accessControlEntries.getPrincipals() ) {
+			if ( principal.getName().equals( ace.getPrincipalId() ) ) {
+				return principal;
+			}
+		}
+		return null;
+	}
+
 	private List<Ace> createAces(Session session) {
 		List<Ace> aceListIn = new ArrayList<Ace>();
 	    for ( ISecurityPrincipal principal : accessControlEntries.getPrincipals() ) {
@@ -77,6 +170,7 @@ private List<Ace> createAces(Session session) {
 	}
 
 	private Ace createAce(Session session, ISecurityPrincipal principal) {
+		
 		List<String> permissions = new ArrayList<String>();
 		for (IAccessControlEntry accessControlEntry : principal.getAccessControlEntries() ) {
 			if ( accessControlEntry.getSource().equals(AccessControlEntrySource.DIRECT ) ) {

com.ecmdeveloper.plugin.core/src/com/ecmdeveloper/plugin/core/model/constants/AccessControlEntrySource.java

@@ -45,7 +45,7 @@ public String toString() {
 		}
 	};
 
-	private static final String INHERITED_STRING = "inherited entry";
-	private static final String DIRECT_STRING = "direct entry";
-	private static final String DEFAULT_STRING = "direct entry from the default instance security";
+	private static final String INHERITED_STRING = "an inherited entry";
+	private static final String DIRECT_STRING = "a direct entry";
+	private static final String DEFAULT_STRING = "a direct entry from the default instance security";
 }

com.ecmdeveloper.plugin.security/src/com/ecmdeveloper/plugin/security/editor/BaseDetailsPage.java

@@ -45,7 +45,7 @@
 public abstract class BaseDetailsPage implements IDetailsPage {
 
 	private static final String PERIOD = ".";
-	private static final String ACE_DESCRIPTION_2 = "'. This is a ";
+	private static final String ACE_DESCRIPTION_2 = "'. This is ";
 	private static final String ACE_DESCRIPTION_1 = "Access Control Entry for principal '";
 	protected IManagedForm form;
 	private Section section;

com.ecmdeveloper.plugin.security/src/com/ecmdeveloper/plugin/security/editor/CmisEntryDetailsEditPage.java

@@ -51,7 +51,12 @@ public class CmisEntryDetailsEditPage extends BaseDetailsPage {
 	private ComboViewer levelCombo;
 	private Label applyToLabel;
 	private Label typeLabel;
+	private final SecurityEditorBlock securityEditorBlock;
 
+	public CmisEntryDetailsEditPage(SecurityEditorBlock securityEditorBlock) {
+		this.securityEditorBlock = securityEditorBlock;
+	}
+
 	protected void createClientContent(Composite client) {
 		super.createClientContent(client);
 
@@ -115,7 +120,7 @@ protected void setDirty(boolean isDirty) {
 
 		if ( isDirty ) {
 			form.dirtyStateChanged();
-//			securityEditorBlock.refresh(accessControlEntry);
+			securityEditorBlock.refresh(accessControlEntry);
 			setTitleImage(accessControlEntry);
 			commit(false);
 		}

com.ecmdeveloper.plugin.security/src/com/ecmdeveloper/plugin/security/editor/SecurityInputDetailsPageProvider.java

@@ -33,13 +33,15 @@
 public class SecurityInputDetailsPageProvider implements IDetailsPageProvider {
 
 	private static final String CMIS_ENTRY_VIEW_PAGE_KEY = "cmisControlEntryPage";
+	private static final String CMIS_ENTRY_EDIT_PAGE_KEY = "cmisControlEntryEditPage";
 	private static final String ACCESS_CONTROL_ENTRY_VIEW_PAGE_KEY = "accessControlEntryPage";
 	private static final String ACCESS_CONTROL_ENTRY_EDIT_PAGE_KEY = "accessControlEditEntryPage";
 	private static final String PRINCIPAL_PAGE_KEY = "principalPage";
 	private IDetailsPage unknownDetailsPage;
 	private IDetailsPage accessControlEntryDetailsViewPage;
 	private IDetailsPage accessControlEntryDetailsEditPage;
 	private IDetailsPage cmisEntryDetailsViewPage;
+	private IDetailsPage cmisEntryDetailsEditPage;
 	private final SecurityEditorBlock securityEditorBlock;
 	private IDetailsPage securityPrincipalDetailsPage;
 
@@ -63,6 +65,11 @@ public IDetailsPage getPage(Object key) {
 		if ( CMIS_ENTRY_VIEW_PAGE_KEY.equals(key) ) {
 			return getCmisEntryDetailsViewPage();
 		}
+
+		if ( CMIS_ENTRY_EDIT_PAGE_KEY.equals(key) ) {
+			return getCmisEntryDetailsEditPage();
+		}
+
 		if ( unknownDetailsPage == null ) {
 			unknownDetailsPage = new PermissionDetailsPage();
 		}
@@ -71,11 +78,18 @@ public IDetailsPage getPage(Object key) {
 
 	private IDetailsPage getCmisEntryDetailsViewPage() {
 		if ( cmisEntryDetailsViewPage == null) {
-			cmisEntryDetailsViewPage = new CmisEntryDetailsEditPage();
+			cmisEntryDetailsViewPage = new CmisEntryDetailsViewPage();
 		}
 		return cmisEntryDetailsViewPage;
 	}
 
+	private IDetailsPage getCmisEntryDetailsEditPage() {
+		if ( cmisEntryDetailsEditPage == null) {
+			cmisEntryDetailsEditPage = new CmisEntryDetailsEditPage(securityEditorBlock);
+		}
+		return cmisEntryDetailsEditPage;
+	}
+	
 	private IDetailsPage getSecurityPrincipalDetailsPage() {
 		if (securityPrincipalDetailsPage == null ) {
 			securityPrincipalDetailsPage = new SecurityPrincipalDetailsPage( securityEditorBlock.getShell() );
@@ -110,7 +124,11 @@ public Object getPageKey(Object object) {
 					return ACCESS_CONTROL_ENTRY_VIEW_PAGE_KEY;
 				}
 			} else {
-				return CMIS_ENTRY_VIEW_PAGE_KEY; 
+				if ( accessControlEntry.isEditable() ) {
+					return CMIS_ENTRY_EDIT_PAGE_KEY; 
+				} else {
+					return CMIS_ENTRY_VIEW_PAGE_KEY; 
+				}
 			}
 		}
 		return null;

com.ecmdeveloper.plugin.security/src/com/ecmdeveloper/plugin/security/editor/SecurityPage.java

@@ -24,6 +24,7 @@
 import org.eclipse.jface.action.Separator;
 import org.eclipse.jface.action.ToolBarManager;
 import org.eclipse.ui.IEditorInput;
+import org.eclipse.ui.IWorkbenchActionConstants;
 import org.eclipse.ui.forms.IManagedForm;
 import org.eclipse.ui.forms.editor.FormEditor;
 import org.eclipse.ui.forms.editor.FormPage;
@@ -72,10 +73,12 @@ private void setFormTitle(IManagedForm managedForm) {
 	private void setFormToolbar(IManagedForm managedForm) {
 		ToolBarManager manager = (ToolBarManager) managedForm.getForm().getToolBarManager();
 		Separator action = new Separator("Actions");
+		Separator action2 = new Separator(IWorkbenchActionConstants.MB_ADDITIONS);
 		IMenuService menuService = (IMenuService) Activator.getDefault().getWorkbench().getService(IMenuService.class);
 		menuService.populateContributionManager(manager, "popup:formsToolBar");
 		manager.update(true);
 		manager.add(action );
+		manager.add(action2);
 	}
 
 

com.ecmdeveloper.plugin.ui/plugin.xml

@@ -627,6 +627,13 @@
                style="push">
          </command>
       </menuContribution>
+      <menuContribution
+            locationURI="popup:com.ecmdeveloper.plugin.views.ObjectStoreFavorites?after=other">
+         <command
+               commandId="org.eclipse.ui.file.properties"
+               style="push">
+         </command>
+      </menuContribution>
       <menuContribution
             locationURI="popup:org.eclipse.search.ui.views.SearchView?after=additions">
          <command
@@ -728,6 +735,13 @@
                style="push">
          </command>
       </menuContribution>
+      <menuContribution
+            locationURI="popup:org.eclipse.search.ui.views.SearchView?after=other">
+         <command
+               commandId="org.eclipse.ui.file.properties"
+               style="push">
+         </command>
+      </menuContribution>
       <menuContribution
             locationURI="popup:com.ecmdeveloper.plugin.ui.parentFolderView?after=additions">
          <command
@@ -829,6 +843,13 @@
                style="push">
          </command>
       </menuContribution>
+      <menuContribution
+            locationURI="popup:com.ecmdeveloper.plugin.ui.parentFolderView?after=other">
+         <command
+               commandId="org.eclipse.ui.file.properties"
+               style="push">
+         </command>
+      </menuContribution>
       <menuContribution
             locationURI="toolbar:com.ecmdeveloper.plugin.views.ObjectStoresView?after=additions">
          <command
@@ -935,6 +956,13 @@
             </visibleWhen>
          </command>
       </menuContribution>
+      <menuContribution
+            locationURI="menu:com.ecmdeveloper.plugin.security.editor.toolbar?after=additions">
+         <command
+               commandId="org.eclipse.ui.file.properties"
+               style="push">
+         </command>
+      </menuContribution>
    </extension>
    <extension
          point="org.eclipse.core.expressions.propertyTesters">