[New] Added privilege checking for StrolchQueries

2014-09-08 13:35:57 +02:00 · 2014-09-08 13:35:57 +02:00 · 376278cc25
parent 71973e8597
commit 376278cc25
5 changed files with 14 additions and 4 deletions
--- a/src/main/java/li/strolch/persistence/postgresql/PostgreSqlPersistenceHandler.java
+++ b/src/main/java/li/strolch/persistence/postgresql/PostgreSqlPersistenceHandler.java
@ -131,7 +131,7 @@ public class PostgreSqlPersistenceHandler extends StrolchComponent implements Pe

 	@Override
 	public StrolchTransaction openTx(StrolchRealm realm, Certificate certificate, String action) {
-		return new PostgreSqlStrolchTransaction(realm, certificate, action, this);
+		return new PostgreSqlStrolchTransaction(getContainer().getPrivilegeHandler(), realm, certificate, action, this);
 	}

 	Connection getConnection(String realm) {
--- a/src/main/java/li/strolch/persistence/postgresql/PostgreSqlStrolchTransaction.java
+++ b/src/main/java/li/strolch/persistence/postgresql/PostgreSqlStrolchTransaction.java
@ -24,6 +24,7 @@ import li.strolch.persistence.api.OrderDao;
 import li.strolch.persistence.api.PersistenceHandler;
 import li.strolch.persistence.api.ResourceDao;
 import li.strolch.persistence.api.TransactionResult;
+import li.strolch.runtime.privilege.PrivilegeHandler;

 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@ -40,9 +41,9 @@ public class PostgreSqlStrolchTransaction extends AbstractTransaction {
 	private AuditDao auditDao;
 	private Connection connection;

-	public PostgreSqlStrolchTransaction(StrolchRealm realm, Certificate certificate, String action,
-			PostgreSqlPersistenceHandler persistenceHandler) {
-		super(realm, certificate, action);
+	public PostgreSqlStrolchTransaction(PrivilegeHandler privilegeHandler, StrolchRealm realm, Certificate certificate,
+			String action, PostgreSqlPersistenceHandler persistenceHandler) {
+		super(privilegeHandler, realm, certificate, action);
 		this.persistenceHandler = persistenceHandler;
 	}

--- a/src/test/resources/cachedruntime/config/PrivilegeModel.xml
+++ b/src/test/resources/cachedruntime/config/PrivilegeModel.xml
@ -31,6 +31,9 @@
 			<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
 				<AllAllowed>true</AllAllowed>
 			</Privilege>
+			<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
+				<AllAllowed>true</AllAllowed>
+			</Privilege>
 		</Role>
 	</Roles>
 </UsersAndRoles>
--- a/src/test/resources/realmtest/config/PrivilegeModel.xml
+++ b/src/test/resources/realmtest/config/PrivilegeModel.xml
@ -31,6 +31,9 @@
 			<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
 				<AllAllowed>true</AllAllowed>
 			</Privilege>
+			<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
+				<AllAllowed>true</AllAllowed>
+			</Privilege>
 		</Role>
 	</Roles>
 </UsersAndRoles>
--- a/src/test/resources/transactionalruntime/config/PrivilegeModel.xml
+++ b/src/test/resources/transactionalruntime/config/PrivilegeModel.xml
@ -31,6 +31,9 @@
 			<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
 				<AllAllowed>true</AllAllowed>
 			</Privilege>
+			<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
+				<AllAllowed>true</AllAllowed>
+			</Privilege>
 		</Role>
 	</Roles>
 </UsersAndRoles>