[portal.git] /

/*-\r
 * ================================================================================\r
 * ECOMP Portal\r
 * ================================================================================\r
 * Copyright (C) 2017 AT&T Intellectual Property\r
 * ================================================================================\r
 * Licensed under the Apache License, Version 2.0 (the "License");\r
 * you may not use this file except in compliance with the License.\r
 * You may obtain a copy of the License at\r
 * \r
 *      http://www.apache.org/licenses/LICENSE-2.0\r
 * \r
 * Unless required by applicable law or agreed to in writing, software\r
 * distributed under the License is distributed on an "AS IS" BASIS,\r
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
 * See the License for the specific language governing permissions and\r
 * limitations under the License.\r
 * ================================================================================\r
 */\r
package org.openecomp.portalapp.portal.service;\r
\r
import java.util.List;\r
\r
import org.springframework.beans.factory.annotation.Autowired;\r
import org.springframework.context.annotation.EnableAspectJAutoProxy;\r
import org.springframework.stereotype.Service;\r
import org.springframework.transaction.annotation.Transactional;\r
\r
import org.openecomp.portalsdk.core.logging.logic.EELFLoggerDelegate;\r
import org.openecomp.portalsdk.core.service.DataAccessService;\r
import org.openecomp.portalapp.portal.domain.EPApp;\r
import org.openecomp.portalapp.portal.domain.EPUser;\r
import org.openecomp.portalapp.portal.domain.EPUserApp;\r
import org.openecomp.portalapp.portal.domain.PersUserAppSelection;\r
import org.openecomp.portalapp.portal.logging.aop.EPMetricsLog;\r
\r
@Service("persUserAppService")\r
@Transactional\r
@org.springframework.context.annotation.Configuration\r
@EnableAspectJAutoProxy\r
@EPMetricsLog\r
public class PersUserAppServiceImpl implements PersUserAppService {\r
\r
        private static EELFLoggerDelegate logger = EELFLoggerDelegate.getLogger(PersUserAppServiceImpl.class);\r
\r
        @Autowired\r
        private DataAccessService dataAccessService;\r
        @Autowired\r
        private AdminRolesService adminRolesService;\r
        @Autowired\r
        private UserRolesService userRolesService;\r
\r
        /*\r
         * (non-Javadoc)\r
         * \r
         * @see org.openecomp.portalapp.portal.service.UserAppSelectService#\r
         * setAppCatalogSelection(org.openecomp.portalapp.portal.domain.EPUser,\r
         * org.openecomp.portalapp.portal.transport.AppCatalogSelection)\r
         */\r
        @Override\r
        public void setPersUserAppValue(EPUser user, EPApp app, boolean select, boolean pending) {\r
                if (user == null || app == null)\r
                        throw new IllegalArgumentException("setPersUserAppValue: Null values");\r
\r
                // Find the record for this user-app combo, if any\r
                String filter = " where user_id = " + Long.toString(user.getId()) + " and app_id = "\r
                                + Long.toString(app.getId());\r
                @SuppressWarnings("unchecked")\r
                List<PersUserAppSelection> persList = dataAccessService.getList(PersUserAppSelection.class, filter, null, null);\r
\r
                // Key constraint limits to 1 row\r
                PersUserAppSelection persRow = null;\r
                if (persList.size() == 1)\r
                        persRow = persList.get(0);\r
                else\r
                        persRow = new PersUserAppSelection(null, user.getId(), app.getId(), null);\r
\r
                if (app.getOpen()) {\r
                        // Pending status is not meaningful for open apps.\r
                        if (pending)\r
                                logger.error(EELFLoggerDelegate.errorLogger,\r
                                                "setPersUserAppValue: invalid request, ignoring set-pending for open app");\r
\r
                        // Open apps have same behavior for regular and admin users\r
                        if (select) {\r
                                // Selection of an open app requires a record\r
                                persRow.setStatusCode("S"); // show\r
                                dataAccessService.saveDomainObject(persRow, null);\r
                        } else {\r
                                // De-selection of an open app requires no record\r
                                if (persRow.getId() != null)\r
                                        dataAccessService.deleteDomainObject(persRow, null);\r
                        }\r
                } else {\r
                        // Non-open app.\r
\r
                        // Pending overrides select.\r
                        if (pending) {\r
                                persRow.setStatusCode("P");\r
                                dataAccessService.saveDomainObject(persRow, null);\r
                        } else {\r
                                // Behavior depends on Portal (super) admin status, bcos an\r
                                // admin can force an app onto the dashboard.\r
                                boolean isPortalAdmin = adminRolesService.isSuperAdmin(user);\r
                                boolean adminUserHasAppRole = false;\r
                                if (isPortalAdmin) {\r
                                        List<EPUserApp> roles = userRolesService.getCachedAppRolesForUser(app.getId(), user.getId());\r
                                        adminUserHasAppRole = (roles.size() > 0);\r
                                        logger.debug(EELFLoggerDelegate.debugLogger, "setPersUserAppValue: app {}, admin user {}, role count {}",\r
                                                        app.getId(), user.getId(), roles.size());\r
                                }\r
\r
                                if (select) {\r
                                        if (isPortalAdmin && !adminUserHasAppRole) {\r
                                                // The special case: portal admin, no role\r
                                                persRow.setStatusCode("S"); // show\r
                                                dataAccessService.saveDomainObject(persRow, null);\r
                                        } else {\r
                                                // User has role-based access to the app.\r
                                                // Showing an accessible app requires no record.\r
                                                if (persRow.getId() != null)\r
                                                        dataAccessService.deleteDomainObject(persRow, null);\r
                                        }\r
                                } // select\r
                                else {\r
                                        if (isPortalAdmin && !adminUserHasAppRole) {\r
                                                // The special case: portal admin, no role\r
                                                if (persRow.getId() != null)\r
                                                        dataAccessService.deleteDomainObject(persRow, null);\r
                                        } else {\r
                                                // User has role-based access to the app.\r
                                                // Hiding an accessible app requires a record\r
                                                persRow.setStatusCode("H"); // hide\r
                                                dataAccessService.saveDomainObject(persRow, null);\r
                                        }\r
                                } // deselect\r
                        }\r
                }\r
        }\r
\r
}\r