2 * Copyright 2005 the original author or authors.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
16 package org.wamblee.photos.model.authorization;
18 import java.io.IOException;
19 import java.io.InputStream;
20 import java.util.ArrayList;
21 import java.util.List;
22 import java.util.logging.Logger;
24 import javax.enterprise.context.SessionScoped;
25 import javax.inject.Inject;
26 import javax.servlet.http.HttpSession;
28 import org.wamblee.cache.Cache;
29 import org.wamblee.cache.CachedObject;
30 import org.wamblee.photos.model.Album;
31 import org.wamblee.photos.model.Path;
32 import org.wamblee.photos.model.Photo;
33 import org.wamblee.photos.model.PhotoEntry;
34 import org.wamblee.photos.model.plumbing.AllPhotos;
35 import org.wamblee.photos.model.plumbing.AuthorizedPhotos;
36 import org.wamblee.photos.model.plumbing.PhotoCache;
37 import org.wamblee.security.authorization.AllOperation;
38 import org.wamblee.security.authorization.AuthorizationService;
39 import org.wamblee.security.authorization.DeleteOperation;
40 import org.wamblee.security.authorization.ReadOperation;
41 import org.wamblee.security.authorization.WriteOperation;
44 * Decorator for an album providing defined behavior when used in a concurrent
49 public class AuthorizedAlbum extends AuthorizedPhotoEntry implements Album {
51 private static final Logger LOGGER = Logger.getLogger(AuthorizedAlbum.class.getName());
53 private AuthorizationService _authorizer;
55 private CachedObject<String, ArrayList<PhotoEntry>> _authorizedEntries;
57 private HttpSession _session;
60 * Constructs concurrent album as a decorator for an album implementation.
62 * @param aAlbum Album to decorate.
65 public AuthorizedAlbum(@AllPhotos Album aAlbum, AuthorizationService aService,
66 @PhotoCache Cache<String, ArrayList<PhotoEntry>> aCache, HttpSession aSession) {
68 _authorizer = aService;
69 _authorizedEntries = new CachedObject<String, ArrayList<PhotoEntry>>(aCache,
70 "session:" + aSession.getId() + "/" + aAlbum.getPath(),
71 new CachedObject.Computation<String, ArrayList<PhotoEntry>>() {
72 public ArrayList<PhotoEntry> getObject(String aObjectKey) {
73 return AuthorizedAlbum.this.compute();
80 * Computes the cache of photo entries to which read access is allowed.
82 * @return Photo entries to which read access is allowed.
84 private synchronized ArrayList<PhotoEntry> compute() {
85 LOGGER.info("Refreshing cache " + getPath());
86 ArrayList<PhotoEntry> result = new ArrayList<PhotoEntry>();
87 for (int i = 0; i < decorated().size(); i++) {
88 PhotoEntry entry = decorated().getEntry(i);
89 if (_authorizer.isAllowed(entry, new ReadOperation())) {
90 result.add(decorate(entry)); // subscription will take place
95 throw new RuntimeException("Result is null");
100 private Album decorated() {
101 return (Album) getEntry();
105 * Creates a decorate for the photo entry to make it safe for concurrent
108 * @param aEntry Entry to decorate
109 * @return Decorated photo.
111 private <T extends PhotoEntry> T decorate(T aEntry) {
112 if (aEntry == null) {
114 } else if (aEntry instanceof Photo) {
115 return (T) new AuthorizedPhoto((Photo) aEntry);
116 } else if (aEntry instanceof Album) {
117 return (T) new AuthorizedAlbum((Album) aEntry, _authorizer, _authorizedEntries.getCache(), _session);
119 throw new IllegalArgumentException("Entry is neither a photo nor an album: " + aEntry);
126 * @see org.wamblee.photos.model.Album#getEntry(java.lang.String)
128 public PhotoEntry getEntry(String aPath) {
129 return getEntry(new Path(aPath));
135 * @see org.wamblee.photos.model.Album#getEntry(org.wamblee.photos.model.Path)
137 public PhotoEntry getEntry(Path aPath) {
138 if (aPath.isRoot()) {
141 List<PhotoEntry> cache = _authorizedEntries.get();
142 String id = aPath.getPart(0);
143 Path remainder = aPath.remainder();
144 for (PhotoEntry entry : cache) {
145 if (entry.getId().equals(id)) {
146 if (remainder.isRoot()) {
149 if (!(entry instanceof Album)) {
150 throw new IllegalArgumentException(getPath() + " " +
153 return ((Album) entry).getEntry(remainder);
163 * @see org.wamblee.photos.model.Album#getEntry(int)
165 public PhotoEntry getEntry(int aIndex) {
166 return _authorizedEntries.get().get(aIndex);
172 * @see org.wamblee.photos.model.Album#size()
175 return _authorizedEntries.get().size();
181 * @see org.wamblee.photos.model.Album#addImage(java.lang.String,
182 * java.io.InputStream)
184 public void addImage(String aId, InputStream aImage) throws IOException {
185 _authorizer.check(this, new WriteOperation());
186 int oldsize = _authorizedEntries.get().size();
187 _authorizedEntries.invalidate();
188 decorated().addImage(aId, aImage);
189 int newsize = _authorizedEntries.get().size();
190 if (newsize != oldsize + 1) {
191 throw new RuntimeException("cache was not refreshed property");
198 * @see org.wamblee.photos.model.Album#addAlbum(java.lang.String)
200 public void addAlbum(String aId) throws IOException {
201 _authorizer.check(this, new WriteOperation());
202 _authorizedEntries.invalidate();
203 decorated().addAlbum(aId);
209 * @see org.wamblee.photos.model.Album#removeEntry(java.lang.String)
211 public void removeEntry(String aId) throws IOException {
212 // Check whether deletion is allowed.
213 PhotoEntry entry = _authorizer.check(decorated().getEntry("/" + aId), new DeleteOperation());
214 _authorizedEntries.invalidate();
215 decorated().removeEntry(aId);
218 public Photo findPhotoBefore(String aId) {
219 Photo entry = decorated().findPhotoBefore(aId);
220 while (entry != null && !_authorizer.isAllowed(entry, new AllOperation())) {
221 entry = decorated().findPhotoBefore(entry.getId());
223 return decorate(entry);
226 public Photo findPhotoAfter(String aId) {
227 Photo entry = decorated().findPhotoAfter(aId);
228 while (entry != null && !_authorizer.isAllowed(entry, new AllOperation())) {
229 entry = decorated().findPhotoAfter(entry.getId());
231 return decorate(entry);
237 * @see java.lang.Object#toString()
240 public String toString() {
241 return "AuthorizedAlbum(path = '" + decorated().getPath() + "')";