Changeset 15

Timestamp:

Oct 21, 2009, 1:04:41 PM (13 years ago)

Author:

duh

Message:

-added initial implementation of authorization code

Location:

trunk

Files:

• application.properties (modified) (1 diff)
• grails-app/conf/BootStrap.groovy (modified) (1 diff)
• grails-app/controllers/AuthActionController.groovy (added)
• grails-app/controllers/AuthGroupController.groovy (added)
• grails-app/controllers/AuthRoleController.groovy (added)
• grails-app/controllers/AuthUserController.groovy (added)
• grails-app/controllers/BaseController.groovy (modified) (5 diffs)
• grails-app/controllers/ErrorController.groovy (modified) (1 diff)
• grails-app/controllers/TestController.groovy (modified) (1 diff)
• grails-app/domain/AuthAction.groovy (added)
• grails-app/domain/AuthGroup.groovy (added)
• grails-app/domain/AuthRole.groovy (added)
• grails-app/domain/AuthUser.groovy (added)
• grails-app/services/AuthorizationService.groovy (moved) (moved from trunk/grails-app/services/Authorization.groovy) (2 diffs)
• grails-app/services/Debug.groovy (deleted)
• grails-app/views/authAction (added)
• grails-app/views/authGroup (added)
• grails-app/views/authRole (added)
• grails-app/views/authUser (added)
• test/unit/AuthActionControllerTests.groovy (added)
• test/unit/AuthActionTests.groovy (added)
• test/unit/AuthGroupControllerTests.groovy (added)
• test/unit/AuthGroupTests.groovy (added)
• test/unit/AuthRoleControllerTests.groovy (added)
• test/unit/AuthRoleTests.groovy (added)
• test/unit/AuthUserControllerTests.groovy (added)
• test/unit/AuthUserTests.groovy (added)
• web-app (modified) (1 prop)
• web-app/js (modified) (1 prop)

trunk/application.properties

@@ -1 +1 @@
 #utf-8
-#Fri Oct 16 23:34:11 CEST 2009
+#Wed Oct 21 11:40:24 CEST 2009
 app.version=0.1
+plugins.jquery=1.3.2.4
 app.servlet.version=2.4
 app.grails.version=1.1.1

trunk/grails-app/conf/BootStrap.groovy

@@ +1 @@
+import org.codehaus.groovy.grails.commons.GrailsApplication
+import grails.util.GrailsUtil
+
+/**
+ * Application Bootstrapper
+ * @Author  Jeroen Wesbeek
+ * @Since   20091021
+ *
+ * Revision information:
+ * $Rev$
+ * $Author$
+ * $Date$
+ */
 class BootStrap {
+     def init = { servletContext ->
+         // check if we're in development
+         if (GrailsUtil.environment == GrailsApplication.ENV_DEVELOPMENT) {
+             printf("development bootstrapping....\n\n");
 
-     def init = { servletContext ->
+             // add roles
+             def AuthRole1 = new AuthRole(name:'Administrator', description:'Super user').save();
+             def AuthRole2 = new AuthRole(name:'Group Administrator', description:'Group Super user').save();
+             def AuthRole3 = new AuthRole(name:'Study Owner', description:'The creator of a study').save();
+             
+             // add actions
+             def AuthAction1 = new AuthAction(controller:'test', action:'index').save();
+             def AuthAction2 = new AuthAction(controller:'test', action:'sayHello').save();
+             def AuthAction3 = new AuthAction(controller:'test', action:'sayWeather').save();
+             
+             // authorize super user for everything
+             AuthRole1.addToActions(AuthAction1).save();
+             AuthRole1.addToActions(AuthAction2).save();
+             AuthRole1.addToActions(AuthAction3).save();
+
+             // authorize group admin only for index and hello
+             AuthRole2.addToActions(AuthAction1).save();
+             AuthRole2.addToActions(AuthAction2).save();
+
+             // authorize study owner only for index
+             AuthRole3.addToActions(AuthAction1).save();
+
+             // add users
+             def User1 = new AuthUser(username:'admin', password:'admin', firstName:'super', lastName:'User', email:'info@osx.eu').save();
+             def User2 = new AuthUser(username:'duh', password:'duh', firstname:'Jeroen', lastname:'Wesbeek', email:'j.a.m.wesbeek@umail.leidenuniv.nl').save();
+
+             // add group structure
+             def AuthGroup1 = new AuthGroup(name:'root', description:'the root of everything').save();
+             def AuthGroup2 = new AuthGroup(name:'TNO', description:'TNO - nation wide company').save();
+             def AuthGroup3 = new AuthGroup(name:'KVL', description:'TNO - quality of life').save();
+             def AuthGroup4 = new AuthGroup(name:'BSC', description:'BioSciences').save();
+
+             // create group tree 4 -> 3 -> 2 -> 1
+             AuthGroup4.addToGroups(AuthGroup3).save();
+             AuthGroup3.addToGroups(AuthGroup2).save();
+             AuthGroup2.addToGroups(AuthGroup1).save();
+
+             // add users to groups
+             //User1.addToGroups(AuthGroup1).save();
+             //User2.addToGroups(AuthGroup4).save();
+
+             
+         }
      }
      def destroy = {

trunk/grails-app/controllers/BaseController.groovy

@@ -1 +1 @@
 import org.codehaus.groovy.grails.commons.GrailsApplication
 import grails.util.GrailsUtil
-//import org.apache.log4j.*
 
 /**
@@ -23 +22 @@
      * @visibility public
      */
-    public def Authorization;
-    public def scaffold = false;
+    public def authorizationService;
+
+    /**
+     * @var boolean scaffolding default
+     * @visibility public
+     */
+    def scaffold = false;
 
     /**
      * class constructor
+     * @visibility protected
      * @void
      */
     protected BaseController() {
-        // instantiate Authorization class
-        this.Authorization = new Authorization();
+        // debug line for now
+        printf("instantiated %s\n",this.class.name);
+
+        // instantiate Authorization service
+        this.authorizationService = new AuthorizationService();
 
         // dynamically set scaffolding
@@ -39 +47 @@
 
     /**
-     * Render default output to the browser, overload this in extended classes
-     * @void
-     */
-    def index = {
-        render(sprintf("default index for %s @ %s environment :: nothing to see here! :)",this.class.name,GrailsUtil.environment));
-    }
-
-    /**
      * intercept any method calls in extended classes
+     * @visibility public
      * @see http://www.grails.org/Controllers+-+Interceptors
      */
@@ -53 +54 @@
         def controller = params.controller;
         def action = params.action;
-        
+
         // check if the user is Authorized to call this method
-        if (Authorization.isAuthorized(controller,action)) {
+        if (this.authorizationService.isAuthorized(controller,action)) {
             // user is not authorized to use this functionality
-            printf("authorized call to action: %s->%s(...)\n",controller,action);
+            printf("authorized call to action: %s->%s(...)\n",this.class.name,action);
         } else {
-            // user is not authorized to use this functionality
-            printf("!! unauthorized call to action: %s-->%s(...)\n",controller,action);
+            // user is not authorized to use this controller + method
+            printf("!! unauthorized call to action: %s-->%s(...)\n",this.class.name,action);
 
             // redirect to error page
@@ -67 +68 @@
         }
     }
-
-    /**
-     * after interception
-     * @param object model
-     * @param object modelAndView
-     * @see http://www.grails.org/Controllers+-+Interceptors
-     */
-    def afterInterceptor = {
-        // nothing here yet
-    }
 }

trunk/grails-app/controllers/ErrorController.groovy

@@ -9 +9 @@
  * $Date$
  */
-public class ErrorController {
+public class ErrorController extends BaseController {
     /**
      * render the flash message

trunk/grails-app/controllers/TestController.groovy

@@ -15 +15 @@
      */
     public def TestController() {
-        // debug line for now
-        printf("instantiated %s\n",this.class.name);
+        // nothing yet
+    }
+
+    /**
+     * render dummy text when executed
+     * @void
+     */
+    def index = {
+        render(sprintf("this is %s",this.class.name));
+    }
+
+    /**
+     * dummy method
+     */
+    def sayHello = {
+        render("Hello World!");
+    }
+
+    /**
+     * another dummy method
+     */
+    def sayWeather = {
+        render("The weather is pretty good!");
     }
 }

trunk/grails-app/services/AuthorizationService.groovy

@@ -9 +9 @@
  * $Date$
  */
-public class Authorization {
+public class AuthorizationService {
     /**
      * class constructor
      * @void
      */
-    public def Authorization() {
+    public def AuthorizationService() {
         // debug line for now
         printf("instantiated %s\n",this.class.name);
@@ -23 +23 @@
      * @return boolean
      */
-    def isAuthorized(controller,action) {
+    public def isAuthorized(controller,action) {
         // logic should be implemented here containing:
         //      user / sessions