/ - Diff - Metacat - Ecoinformatics Redmine

« Previous | Next »

Revision 5104

Added by ben leinfelder about 15 years ago

handle multiple <principal> elements in the allow/deny blocks

     package edu.ucsb.nceas.metacat;
     import java.util.Stack;
     import java.util.Vector;
     import java.util.Hashtable;
-...
     	private String _docId;
     	private boolean _inPrincipal = false;
     	private boolean _inPermission = false;
     	private boolean _inAllow = false;
     	private boolean _inDeny = false;
     	private Vector<XMLAccessDAO> xmlAccessDAOList = new Vector<XMLAccessDAO>();
     	private Stack<XMLAccessDAO> xmlAccessDAOStack = new Stack<XMLAccessDAO>();
     	public DocInfoHandler() {
+    	}
-...
     			if (_accessPermOrder == null) {
     				_accessPermOrder = attributes.getValue("order");
+    			}
     		} else if (_currentTag.equals(AccessControlInterface.ALLOW)) {
     			_inAllow = true;
     		} else if (_currentTag.equals(AccessControlInterface.DENY)) {
     			_inDeny = true;
     		} else if (_currentTag.equals(AccessControlInterface.PERMISSION)) {
     			_inPermission = true;
     		} else if (_currentTag.equals(AccessControlInterface.PRINCIPAL)) {
     			// new principal means new DAO for storing it
     			_inPrincipal = true;
     			_currentAccessDAO = new XMLAccessDAO();
     			_currentAccessDAO.setDocId(_docId);
     			_currentAccessDAO.setPermOrder(_accessPermOrder);
     		} else if (_currentTag.equals(AccessControlInterface.PRINCIPAL)) {
     			_inPrincipal = true;
     		} else if (_currentTag.equals(AccessControlInterface.PERMISSION)) {
     			_inPermission = true;
     			if (_inAllow) {
     				_currentAccessDAO.setPermType(AccessControlInterface.ALLOW);
+    			}
     			if (_inDeny) {
     				_currentAccessDAO.setPermType(AccessControlInterface.DENY);
+    			}
+    		}
+    	}
     	public void endElement(String uri, String localName, String qName)
     			throws SAXException {
     		if (localName.equals("access")) {
     			if (_currentAccessDAO != null) {
     				xmlAccessDAOList.add(_currentAccessDAO);
+    			}
     			_currentAccessDAO = null;
     		} else if (qName.equals(AccessControlInterface.ALLOW)) {
     			if (_currentAccessDAO != null) {
     				_currentAccessDAO.setPermType(AccessControlInterface.ALLOW);
+    			}
     		} else if (qName.equals(AccessControlInterface.DENY)) {
     			if (_currentAccessDAO != null) {
     				_currentAccessDAO.setPermType(AccessControlInterface.DENY);
+    			}
     		if (localName.equals(AccessControlInterface.ALLOW)) {
     			_inAllow = false;
     		} else if (localName.equals(AccessControlInterface.DENY)) {
     			_inDeny = false;
     		} else if (_currentTag.equals(AccessControlInterface.PRINCIPAL)) {
     			_inPrincipal = false;
     			xmlAccessDAOStack.push(_currentAccessDAO);
     		} else if (_currentTag.equals(AccessControlInterface.PERMISSION)) {
     			_inPermission = false;
+    		}
     		//end of a section for allow/deny
     		if (
     			localName.equals(AccessControlInterface.ALLOW)
     			||
     			localName.equals(AccessControlInterface.DENY)
     			) {
     			//get all the DAOs for this section and add them to the overall list
     			xmlAccessDAOList.addAll(xmlAccessDAOStack);
     			xmlAccessDAOStack.clear();
+    		}
+    	}
       /**
-...
     		if (_currentAccessDAO != null) {
     			String permString = new String(ch, start, length);
     			Long permLong = Long.valueOf(AccessControlList.intValue(permString));
     			_currentAccessDAO.addPermission(permLong);
     			//add this permission for each DAO in the stack
     			for (int i = 0; i < xmlAccessDAOStack.size(); i++) {
     				xmlAccessDAOStack.get(i).addPermission(permLong);
+    			}
+    		}
+    	}
+      }

Also available in: Unified diff

Project

General

Profile

Metacat

Revision 5104

Added by ben leinfelder about 15 years ago