package net.sourceforge.blogentis.modules.actions;
   
   //-----------------------------------------------------------------------
   //Blogentis - a blog publishing platform.
   //Copyright (C) 2004 Tassos Bassoukos <abassouk@gmail.com>
   //
   //This library is free software; you can redistribute it and/or
   //modify it under the terms of the GNU Lesser General Public
   //License as published by the Free Software Foundation; either
  //version 2.1 of the License, or (at your option) any later version.
  //
  //This library is distributed in the hope that it will be useful,
  //but WITHOUT ANY WARRANTY; without even the implied warranty of
  //MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  //Lesser General Public License for more details.
  //
  //You should have received a copy of the GNU Lesser General Public
  //License along with this library; if not, write to the Free Software
  //Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
  //-----------------------------------------------------------------------
  //
  //$Id: BlogUserMod.java,v 1.2 2004/10/31 07:16:22 tassos Exp $
  //
  
  import net.sourceforge.blogentis.turbine.BlogParameterParser;
  import net.sourceforge.blogentis.turbine.SecureBlogAction;
  import net.sourceforge.blogentis.utils.BlogConstants;
  
  import org.apache.turbine.om.security.Group;
  import org.apache.turbine.om.security.Role;
  import org.apache.turbine.om.security.User;
  import org.apache.turbine.services.security.TurbineSecurity;
  import org.apache.turbine.util.RunData;
  import org.apache.turbine.util.security.AccessControlList;
  import org.apache.turbine.util.security.DataBackendException;
  import org.apache.turbine.util.security.UnknownEntityException;
  import org.apache.velocity.context.Context;
  
  public class BlogUserMod extends SecureBlogAction {
  
      protected User getUser(RunData data)
              throws DataBackendException, UnknownEntityException {
          User user = null;
          String userName = data.getParameters().getString("userName", null);
          if (userName == null) {
              data.setMessage("Parameter userId was missing from the request");
              return null;
          }
          user = TurbineSecurity.getUser(userName);
          if (user == null) {
              data.setMessage("Could not find the given user");
          }
          return user;
      }
  
      protected Role getRole(RunData data, String paramName)
              throws DataBackendException, UnknownEntityException {
          Role role = null;
          String roleName = data.getParameters().getString(paramName, null);
          if (roleName == null) {
              data.setMessage("Parameter roleName was missing from the request");
              return null;
          }
          role = TurbineSecurity.getRoleByName(roleName);
          if (role == null) {
              data.setMessage("Could not find the given role");
          }
          return role;
      }
  
      protected Role getRole(RunData data)
              throws DataBackendException, UnknownEntityException {
          return getRole(data, "roleName");
      }
  
      protected Group getGroup(RunData data)
              throws DataBackendException, UnknownEntityException {
          BlogParameterParser bparam = (BlogParameterParser)(data.getParameters());
          return TurbineSecurity.getGroupByName(bparam.getBlog().getName());
      }
  
      public void doAdd(RunData data, Context context)
              throws Exception {
          User user = getUser(data);
          Role role = getRole(data);
          Group group = getGroup(data);
          if (user == null || role == null || group == null)
              return;
          if (TurbineSecurity.getACL(user).hasRole(role, group)) {
              data.setMessage(user.getFirstName() + " " + user.getLastName()
                              + " can already " + role.getName());
              return;
          }
          TurbineSecurity.grant(user, group, role);
      }
  
      public void doUpdate(RunData data, Context context)
              throws DataBackendException, UnknownEntityException {
          User user = getUser(data);
         Role oldRole = getRole(data);
         Role newRole = getRole(data, "newRoleName");
         Group group = getGroup(data);
         AccessControlList acl = TurbineSecurity.getACL(user);
         if (!acl.hasRole(oldRole, group)) {
             data.setMessage(user.getFirstName() + " " + user.getLastName()
                             + " cannot " + oldRole.getName());
             return;
         }
         if (acl.hasRole(newRole, group)) {
             data.setMessage(user.getFirstName() + " " + user.getLastName()
                             + " can already " + newRole.getName());
             return;
         }
         TurbineSecurity.grant(user, group, newRole);
         TurbineSecurity.revoke(user, group, oldRole);
     }
 
     public void doRemove(RunData data, Context context)
             throws DataBackendException, UnknownEntityException {
         User user = getUser(data);
         Role role = getRole(data);
         Group group = getGroup(data);
         if (user == null || role == null || group == null)
             return;
         if (!TurbineSecurity.getACL(user).hasRole(role, group)) {
             data.setMessage(user.getFirstName() + " " + user.getLastName()
                             + " cannot " + role.getName());
             return;
         }
         TurbineSecurity.revoke(user, group, role);
     }
 
     public void doPerform(RunData data, Context context)
             throws Exception {
         data.setMessage("Hmm... Unknown action requested!");
     }
 
     protected String[] getPermissions() {
         return new String[]{BlogConstants.PERM_ADMIN_BLOG};
     }
 }