/ - Diff - Metacat - Ecoinformatics Redmine

« Previous | Next »

Revision 1408

Added by Jing Tao almost 22 years ago

Access control for documents level works.

          super(conn, action, docid, user, groups, pub, serverCode);
+       }
         /** Construct an instance of the handler class
         * In this constructor, user can specify the version need to upadate
+        *
         * @param conn the JDBC connection to which information is written
         * @param action - "INSERT" or "UPDATE"
         * @param docid to be inserted or updated into JDBC connection
         * @param revision, the user specified the revision need to be update
         * @param user the user connected to MetaCat servlet and owns the document
         * @param groups the groups to which user belongs
         * @param pub flag for public "read" access on document
         * @param serverCode the serverid from xml_replication on which this document
         *        resides.
+        *
         */
        public EmlSAXHandler(DBConnection conn, String action, String docid,
          String revision, String user, String[] groups, String pub, int serverCode)
+       {
          super(conn, action, docid, revision, user, groups, pub, serverCode);
+       }
        /** SAX Handler that is called at the start of each XML element */
        public void startElement(String uri, String localName,
                                 String qName, Attributes atts)
-...
+           }
+         }
          // handle access stuff
          if (localName.equals(ACCESS))
+         {
-...
+           }
            // create access object
             accessObject = new AccessSection();
+         }
          // Set up accesssection object permorder and id
          if ( currentNode.getTagName().equals(ACCESS) )
+         {
            // set permission order
              // set permission order
            String permOrder = currentNode.getAttribute(ORDER);
            accessObject.setPermissionOrder(permOrder);
            // set access id
-...
+         }
          // Set up a access rule
          if (parentNode.getTagName().equals(ACCESS) &&
              currentNode.getTagName().equals(ALLOW))
          if (parentNode.getTagName() != null &&
            (parentNode.getTagName()).equals(ACCESS) && localName.equals(ALLOW))
+         {
            accessRule = new AccessRule();
            accessRule = new AccessRule();
            //set permission type "allow"
            accessRule.setPermissionType(ALLOW);
+         }
          // set up an access rule
          if (parentNode.getTagName().equals(ACCESS) &&
              currentNode.getTagName().equals(DENY))
          if (parentNode.getTagName() != null
            && (parentNode.getTagName()).equals(ACCESS) && localName.equals(DENY))
+         {
            accessRule = new AccessRule();
            //set permission type "allow"
            accessRule.setPermissionType(DENY);
+         }
          // Add the node to the stack, so that any text data can be
          // added as it is encountered
          nodeStack.push(currentNode);
-...
       public void characters(char[] cbuf, int start, int len) throws SAXException
+      {
          super.characters(cbuf, start, len);
          // access stuff
          DBSAXNode currentNode = (DBSAXNode)nodeStack.peek();
          String currentTag = currentNode.getTagName();
-...
         // for top document level
         AccessSection accessSection = (AccessSection)
                                               topLevelAccessControlMap.get(docid);
         // if accessSection is null stop it
         if( accessSection == null)
+        {
           return;
+        }
         String permOrder = accessSection.getPermissionOrder();
         String sql = "INSERT INTO xml_access (docid, principal_name, permission, "+
                      "perm_type, perm_order, accessfileid) VALUES " +

Also available in: Unified diff

Project

General

Profile

Metacat

Revision 1408

Added by Jing Tao almost 22 years ago