List of usage examples for com.liferay.portal.kernel.service.permission UserGroupPermissionUtil check
public static void check(PermissionChecker permissionChecker, long userGroupId, String actionId) throws PrincipalException
From source file:eu.gerhards.liferay.services.angular.service.impl.AngularTeamServiceImpl.java
License:Open Source License
@Override public java.util.List<com.liferay.portal.kernel.model.Team> getTeamsForUserGroup(long userGroupId) throws PortalException { _log.info("Getting user group teams for user group " + String.valueOf(userGroupId)); _log.debug(" ... security check ..."); this.checkPersonalPermission(AngularActionKeys.LIST_TEAMS); // Check if user has the right to view the group UserGroupPermissionUtil.check(getPermissionChecker(), userGroupId, ActionKeys.VIEW); java.util.List<com.liferay.portal.kernel.model.Team> teams = TeamLocalServiceUtil .getUserGroupTeams(userGroupId); if (teams != null) { for (com.liferay.portal.kernel.model.Team team : teams) { // All teams have also the right to be shown? this.hasResourcePermission(team.getTeamId(), ActionKeys.VIEW); }//from w w w. j av a 2 s . c o m } _log.debug(" ... returning team list => " + teams); return teams; }
From source file:eu.gerhards.liferay.services.angular.service.impl.AngularUserGroupServiceImpl.java
License:Open Source License
public long[] checkUserGroupIds(long userId, long[] userGroupIds) throws PortalException { long[] oldUserGroupIds = null; PermissionChecker permissionChecker = getPermissionChecker(); if (userId != CompanyConstants.SYSTEM) { // Add back any user groups that the administrator does not have the // rights to remove or that have a mandatory membership List<UserGroup> oldUserGroups = UserGroupLocalServiceUtil.getUserUserGroups(userId); oldUserGroupIds = new long[oldUserGroups.size()]; for (int i = 0; i < oldUserGroups.size(); i++) { UserGroup userGroup = oldUserGroups.get(i); if (!ArrayUtil.contains(userGroupIds, userGroup.getUserGroupId()) && (!UserGroupPermissionUtil .contains(permissionChecker, userGroup.getUserGroupId(), ActionKeys.ASSIGN_MEMBERS) || UserGroupMembershipPolicyUtil.isMembershipRequired(userId, userGroup.getUserGroupId()))) { userGroupIds = ArrayUtil.append(userGroupIds, userGroup.getUserGroupId()); }/* w w w .j a v a2 s.c o m*/ oldUserGroupIds[i] = userGroup.getUserGroupId(); } } // Check that the administrator has the permission to add a new user // group and that the user group membership is allowed for (long userGroupId : userGroupIds) { if ((oldUserGroupIds == null) || !ArrayUtil.contains(oldUserGroupIds, userGroupId)) { UserGroupPermissionUtil.check(permissionChecker, userGroupId, ActionKeys.ASSIGN_MEMBERS); } } return userGroupIds; }
From source file:eu.gerhards.liferay.services.angular.service.impl.AngularUserGroupServiceImpl.java
License:Open Source License
protected void hasResourcePermission(long userGroupId, String actionId) throws PortalException { _log.debug(" ... " + actionId + " right on resource team " + userGroupId); PermissionChecker permissionChecker = getPermissionChecker(); if (!permissionChecker.isOmniadmin() && permissionChecker.isSignedIn()) { UserGroupPermissionUtil.check(getPermissionChecker(), userGroupId, actionId); } else if (!permissionChecker.isSignedIn()) { throw new PrincipalException.MustBeAuthenticated(this.getGuestOrUserId()); }/*from w w w.j av a 2 s .com*/ }