001 /*
002 * Copyright 2007-2008 The Kuali Foundation
003 *
004 * Licensed under the Educational Community License, Version 2.0 (the "License");
005 * you may not use this file except in compliance with the License.
006 * You may obtain a copy of the License at
007 *
008 * http://www.opensource.org/licenses/ecl2.php
009 *
010 * Unless required by applicable law or agreed to in writing, software
011 * distributed under the License is distributed on an "AS IS" BASIS,
012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 * See the License for the specific language governing permissions and
014 * limitations under the License.
015 */
016 package org.kuali.rice.kim.rules.ui;
017
018 import java.util.HashMap;
019 import java.util.Map;
020
021 import org.apache.commons.lang.StringUtils;
022 import org.kuali.rice.core.util.RiceKeyConstants;
023 import org.kuali.rice.kim.bo.ui.PersonDocumentGroup;
024 import org.kuali.rice.kim.document.IdentityManagementPersonDocument;
025 import org.kuali.rice.kim.rule.event.ui.AddGroupEvent;
026 import org.kuali.rice.kim.rule.ui.AddGroupRule;
027 import org.kuali.rice.kim.util.KimConstants;
028 import org.kuali.rice.krad.rules.DocumentRuleBase;
029 import org.kuali.rice.krad.util.GlobalVariables;
030
031 /**
032 * This is a description of what this class does - shyu don't forget to fill this in.
033 *
034 * @author Kuali Rice Team (rice.collab@kuali.org)
035 *
036 */
037 public class PersonDocumentGroupRule extends DocumentRuleBase implements AddGroupRule {
038 protected static final String NEW_GROUP = "newGroup";
039 protected static final String GROUP_ID_ERROR_PATH = NEW_GROUP+".groupId";
040
041 public boolean processAddGroup(AddGroupEvent addGroupEvent) {
042 IdentityManagementPersonDocument document = (IdentityManagementPersonDocument)addGroupEvent.getDocument();
043 PersonDocumentGroup newGroup = addGroupEvent.getGroup();
044 boolean rulePassed = true;
045 rulePassed = validAssignGroup(document, newGroup);
046 // List<String> groupIds = KIMServiceLocatorInternal.getUiDocumentService().getPopulatableGroupIds();
047
048 if (newGroup == null || StringUtils.isBlank(newGroup.getGroupId())) {
049 rulePassed = false;
050 GlobalVariables.getMessageMap().putError(GROUP_ID_ERROR_PATH, RiceKeyConstants.ERROR_EMPTY_ENTRY, new String[] {"Group"});
051
052 } else {
053 for (PersonDocumentGroup group : document.getGroups()) {
054 if (group.getGroupId().equals(newGroup.getGroupId())) {
055 rulePassed = false;
056 GlobalVariables.getMessageMap().putError(GROUP_ID_ERROR_PATH, RiceKeyConstants.ERROR_DUPLICATE_ENTRY, new String[] {"Group"});
057
058 }
059 }
060 }
061
062 // if (rulePassed) {
063 // if (groupIds.isEmpty() || !groupIds.contains(newGroup.getGroupId())) {
064 // errorMap.putError(errorPath+".groupId", RiceKeyConstants.ERROR_POPULATE_GROUP, new String[] {newGroup.getGroupId()});
065 // rulePassed = false;
066 // }
067 // }
068 // check it before save ??
069 //rulePassed &= validateActiveDate(newGroup.getActiveFromDate(), newGroup.getActiveToDate());
070 return rulePassed;
071 }
072
073 protected boolean validAssignGroup(IdentityManagementPersonDocument document, PersonDocumentGroup newGroup){
074 boolean rulePassed = true;
075 Map<String,String> additionalPermissionDetails = new HashMap<String,String>();
076 additionalPermissionDetails.put(KimConstants.AttributeConstants.NAMESPACE_CODE, newGroup.getNamespaceCode());
077 additionalPermissionDetails.put(KimConstants.AttributeConstants.GROUP_NAME, newGroup.getGroupName());
078 if(!getDocumentHelperService().getDocumentAuthorizer(document).isAuthorizedByTemplate(
079 document, KimConstants.NAMESPACE_CODE, KimConstants.PermissionTemplateNames.POPULATE_GROUP,
080 GlobalVariables.getUserSession().getPrincipalId(), additionalPermissionDetails, null)){
081 GlobalVariables.getMessageMap().putError(GROUP_ID_ERROR_PATH,
082 RiceKeyConstants.ERROR_ASSIGN_GROUP,
083 new String[] {newGroup.getNamespaceCode(), newGroup.getGroupName()});
084 rulePassed = false;
085 }
086 return rulePassed;
087 }
088
089 }