diff --git a/core/connector/src/main/java/org/exoplatform/portal/webui/util/NavigationUtils.java b/core/connector/src/main/java/org/exoplatform/portal/webui/util/NavigationUtils.java
new file mode 100644
index 00000000000..7c978d2ff39
--- /dev/null
+++ b/core/connector/src/main/java/org/exoplatform/portal/webui/util/NavigationUtils.java
@@ -0,0 +1,124 @@
+/**
+ * Copyright (C) 2003-2024 eXo Platform SAS.
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Affero General Public License
+ * as published by the Free Software Foundation; either version 3
+ * of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, see.
+ */
+package org.exoplatform.portal.webui.util;
+
+import java.lang.reflect.Constructor;
+import java.util.Map;
+
+import org.exoplatform.container.ExoContainerContext;
+import org.exoplatform.portal.config.UserACL;
+import org.exoplatform.portal.config.UserPortalConfig;
+import org.exoplatform.portal.config.UserPortalConfigService;
+import org.exoplatform.portal.mop.SiteKey;
+import org.exoplatform.portal.mop.SiteType;
+import org.exoplatform.portal.mop.navigation.NavigationContext;
+import org.exoplatform.portal.mop.navigation.Scope;
+import org.exoplatform.portal.mop.service.LayoutService;
+import org.exoplatform.portal.mop.user.UserNavigation;
+import org.exoplatform.portal.mop.user.UserPortal;
+import org.exoplatform.portal.mop.user.UserPortalImpl;
+import org.exoplatform.services.log.ExoLogger;
+import org.exoplatform.services.log.Log;
+import org.exoplatform.services.security.ConversationState;
+
+/**
+ * Created by The eXo Platform SAS Author : Phan Le Thanh Chuong
+ * chuong.phan@exoplatform.com, phan.le.thanh.chuong@gmail.com Nov 21, 2008
+ */
+public class NavigationUtils {
+
+ public static final Scope ECMS_NAVIGATION_SCOPE = Scope.CHILDREN;
+
+ private static ThreadLocal> gotNavigationKeeper = new ThreadLocal>();
+
+ private static Constructor userNavigationCtor = null;
+
+ private static final Log LOG = ExoLogger.getLogger(NavigationUtils.class.getName());
+ static {
+ try {
+ // reflection here to get UserNavigation to avoid for using such as:
+ // spaceNav = userPortal.getNavigation(SiteKey.group(groupId));
+ userNavigationCtor = UserNavigation.class.getDeclaredConstructor(
+ new Class[] { UserPortalImpl.class,
+ NavigationContext.class, boolean.class });
+ userNavigationCtor.setAccessible(true);
+ } catch (Exception e) {
+ if (LOG.isErrorEnabled()) {
+ LOG.error(e);
+ }
+ }
+ } // of static reflection
+
+ public static boolean gotNavigation(String portal, String user) {
+ return gotNavigation(portal, user, "");
+ }
+
+ public static boolean gotNavigation(String portal, String user, String scope) {
+ Map navigations = gotNavigationKeeper.get();
+ if (navigations == null)
+ return false;
+ String navigation = navigations.get(portal + " " + user + " " + scope);
+ return (navigation != null);
+ }
+
+ public static UserNavigation getUserNavigationOfPortal(UserPortal userPortal, String portalName) throws Exception {
+ UserACL userACL = ExoContainerContext.getService(UserACL.class);
+ UserPortalConfigService userPortalConfigService = ExoContainerContext.getService(UserPortalConfigService.class);
+ NavigationContext portalNav = userPortalConfigService.getNavigationService()
+ .loadNavigation(new SiteKey(SiteType.PORTAL, portalName));
+ if (portalNav == null) {
+ return null;
+ }
+ UserPortalConfig userPortalCfg = userPortalConfigService.getUserPortalConfig(portalName,
+ ConversationState.getCurrent()
+ .getIdentity()
+ .getUserId());
+ return userNavigationCtor.newInstance(
+ userPortal,
+ portalNav,
+ userACL.hasEditPermission(userPortalCfg.getPortalConfig(),
+ ConversationState.getCurrent()
+ .getIdentity()));
+ }
+
+ /**
+ * Get UserNavigation of a specified element
+ *
+ * @param userPortal
+ * @param siteKey Key
+ * @return UserNavigation of group
+ */
+ public static UserNavigation getUserNavigation(UserPortal userPortal, SiteKey siteKey) throws Exception {
+ if (siteKey.getTypeName().equalsIgnoreCase(SiteType.PORTAL.getName())) {
+ return getUserNavigationOfPortal(userPortal, siteKey.getName());
+ }
+ UserACL userACL = ExoContainerContext.getService(UserACL.class);
+ UserPortalConfigService userPortalConfigService = ExoContainerContext.getService(UserPortalConfigService.class);
+ // userPortalConfigService.get
+ NavigationContext portalNav = userPortalConfigService.getNavigationService().loadNavigation(siteKey);
+ if (portalNav == null) {
+ return null;
+ } else {
+ LayoutService layoutService = ExoContainerContext.getService(LayoutService.class);
+ return userNavigationCtor.newInstance(userPortal,
+ portalNav,
+ userACL.hasEditPermission(layoutService.getPortalConfig(siteKey),
+ ConversationState.getCurrent()
+ .getIdentity()));
+ }
+ }
+}
\ No newline at end of file
diff --git a/core/connector/src/main/java/org/exoplatform/wcm/connector/fckeditor/PortalLinkConnector.java b/core/connector/src/main/java/org/exoplatform/wcm/connector/fckeditor/PortalLinkConnector.java
index 922d3947c8f..9f63d771735 100644
--- a/core/connector/src/main/java/org/exoplatform/wcm/connector/fckeditor/PortalLinkConnector.java
+++ b/core/connector/src/main/java/org/exoplatform/wcm/connector/fckeditor/PortalLinkConnector.java
@@ -214,8 +214,7 @@ public int compare(PortalConfig pconfig1, PortalConfig pconfig2) {
rootElement.appendChild(foldersElement);
for (Object object : pageList.getAll()) {
PortalConfig config = (PortalConfig) object;
-// if (!portalUserACL.hasPermission(config, userId)) {
- if (!portalUserACL.hasPermission(config)) {
+ if (!portalUserACL.hasAccessPermission(config, ConversationState.getCurrent().getIdentity())) {
continue;
}
Element folderElement = rootElement.getOwnerDocument().createElement("Folder");
diff --git a/core/publication-plugins/src/main/java/org/exoplatform/services/wcm/publication/lifecycle/stageversion/ui/UIPublicationPagesContainer.java b/core/publication-plugins/src/main/java/org/exoplatform/services/wcm/publication/lifecycle/stageversion/ui/UIPublicationPagesContainer.java
index d522b7e733c..9554ddd6923 100644
--- a/core/publication-plugins/src/main/java/org/exoplatform/services/wcm/publication/lifecycle/stageversion/ui/UIPublicationPagesContainer.java
+++ b/core/publication-plugins/src/main/java/org/exoplatform/services/wcm/publication/lifecycle/stageversion/ui/UIPublicationPagesContainer.java
@@ -27,6 +27,7 @@
import org.exoplatform.portal.config.UserACL;
import org.exoplatform.portal.config.model.PortalConfig;
import org.exoplatform.portal.webui.util.Util;
+import org.exoplatform.services.security.ConversationState;
import org.exoplatform.services.wcm.utils.WCMCoreUtils;
import org.exoplatform.webui.config.annotation.ComponentConfig;
import org.exoplatform.webui.core.UIContainer;
@@ -79,7 +80,7 @@ private List getRunningPortals(String userId) throws Exception {
UserACL userACL = WCMCoreUtils.getService(UserACL.class);
for(Object object:pageList.getAll()) {
PortalConfig portalConfig = (PortalConfig)object;
- if(userACL.hasPermission(portalConfig)) {
+ if(userACL.hasAccessPermission(portalConfig, ConversationState.getCurrent().getIdentity())) {
listPortalName.add(portalConfig.getName());
}
}
diff --git a/core/publication/src/test/java/org/exoplatform/services/wcm/publication/DumpPublicationPlugin.java b/core/publication/src/test/java/org/exoplatform/services/wcm/publication/DumpPublicationPlugin.java
index 872ee0a0389..b17ee595d0d 100644
--- a/core/publication/src/test/java/org/exoplatform/services/wcm/publication/DumpPublicationPlugin.java
+++ b/core/publication/src/test/java/org/exoplatform/services/wcm/publication/DumpPublicationPlugin.java
@@ -53,6 +53,7 @@
import org.exoplatform.services.ecm.publication.PublicationService;
import org.exoplatform.services.jcr.ext.common.SessionProvider;
import org.exoplatform.services.resources.ResourceBundleService;
+import org.exoplatform.services.security.ConversationState;
import org.exoplatform.services.wcm.portal.LivePortalManagerService;
import org.exoplatform.services.wcm.utils.WCMCoreUtils;
import org.exoplatform.webui.core.UIComponent;
@@ -244,7 +245,7 @@ private List getRunningPortals(String userId) throws Exception {
List portalConfigs = WCMCoreUtils.getAllElementsOfListAccess(pageList);
UserACL userACL = WCMCoreUtils.getService(UserACL.class);
for(PortalConfig portalConfig : portalConfigs) {
- if(userACL.hasPermission(portalConfig)) {
+ if(userACL.hasAccessPermission(portalConfig, ConversationState.getCurrent().getIdentity())) {
listPortalName.add(portalConfig.getName());
}
}
diff --git a/core/search/src/main/java/org/exoplatform/services/wcm/search/FileSearchRestService.java b/core/search/src/main/java/org/exoplatform/services/wcm/search/FileSearchRestService.java
index 35aa71bae99..fae8a0c0d8d 100644
--- a/core/search/src/main/java/org/exoplatform/services/wcm/search/FileSearchRestService.java
+++ b/core/search/src/main/java/org/exoplatform/services/wcm/search/FileSearchRestService.java
@@ -114,7 +114,7 @@ public Response searchRecentDocuments(@Parameter(description = "Query string") @
}
recentFilters.add(getFileTypesFilter(myWork));
UserACL userACL = PortalContainer.getInstance().getComponentInstanceOfType(UserACL.class);
- if (!userACL.isSuperUser() && !userACL.isUserInGroup(userACL.getAdminGroups())) {
+ if (!userACL.isSuperUser(ConversationState.getCurrent().getIdentity()) && !userACL.isUserInGroup(ConversationState.getCurrent().getIdentity(), userACL.getAdminGroups())) {
recentFilters.add(getPathsFilter(Arrays.asList(Utils.SPACES_NODE_PATH, getUserPrivateNode().getPath())));
}
if (StringUtils.isNotBlank(query)) {
diff --git a/core/search/src/test/java/org/exoplatform/services/wcm/search/DumpPublicationPlugin.java b/core/search/src/test/java/org/exoplatform/services/wcm/search/DumpPublicationPlugin.java
index 23ba0dbeccb..bf404f962f7 100644
--- a/core/search/src/test/java/org/exoplatform/services/wcm/search/DumpPublicationPlugin.java
+++ b/core/search/src/test/java/org/exoplatform/services/wcm/search/DumpPublicationPlugin.java
@@ -51,6 +51,8 @@
import org.exoplatform.services.ecm.publication.IncorrectStateUpdateLifecycleException;
import org.exoplatform.services.ecm.publication.PublicationService;
import org.exoplatform.services.jcr.ext.common.SessionProvider;
+import org.exoplatform.services.security.ConversationState;
+import org.exoplatform.services.security.Identity;
import org.exoplatform.services.wcm.portal.LivePortalManagerService;
import org.exoplatform.services.wcm.publication.PublicationDefaultStates;
import org.exoplatform.services.wcm.publication.PublicationUtil;
@@ -247,7 +249,7 @@ private List getRunningPortals(String userId) throws Exception {
List portalConfigs = WCMCoreUtils.getAllElementsOfListAccess(pageList);
UserACL userACL = WCMCoreUtils.getService(UserACL.class);
for(PortalConfig portalConfig : portalConfigs) {
- if(userACL.hasPermission(portalConfig)) {
+ if(userACL.hasAccessPermission(portalConfig, getCurrentIdentity())) {
listPortalName.add(portalConfig.getName());
}
}
@@ -357,4 +359,10 @@ public void updateLifecyleOnChangeContent(Node node, String remoteUser, String n
changeState(node, newState, context);
}
+
+ private static Identity getCurrentIdentity() {
+ ConversationState conversationState = ConversationState.getCurrent();
+ return conversationState == null ? null : conversationState.getIdentity();
+ }
+
}
diff --git a/core/search/src/test/resources/conf/wcm/test-search-configuration.xml b/core/search/src/test/resources/conf/wcm/test-search-configuration.xml
index 2d2f74cb3b6..893b14dbc4d 100644
--- a/core/search/src/test/resources/conf/wcm/test-search-configuration.xml
+++ b/core/search/src/test/resources/conf/wcm/test-search-configuration.xml
@@ -442,21 +442,6 @@
org.exoplatform.services.resources.ResourceBundleManager
-
- org.gatein.api.oauth.OAuthProviderAccessor
- org.gatein.api.oauth.BasicOAuthProviderAccessorImpl
-
-
-
- org.gatein.security.oauth.spi.OAuthProviderTypeRegistry
- org.gatein.security.oauth.registry.OAuthProviderTypeRegistryImpl
-
-
-
- org.gatein.security.oauth.spi.SocialNetworkService
- org.gatein.security.oauth.data.SocialNetworkServiceImpl
-
-
org.exoplatform.web.security.codec.CodecInitializer
diff --git a/core/webui/src/main/java/org/exoplatform/wcm/webui/Utils.java b/core/webui/src/main/java/org/exoplatform/wcm/webui/Utils.java
index 3e6cd54ce8b..e1514e87334 100644
--- a/core/webui/src/main/java/org/exoplatform/wcm/webui/Utils.java
+++ b/core/webui/src/main/java/org/exoplatform/wcm/webui/Utils.java
@@ -70,6 +70,7 @@
import org.exoplatform.services.jcr.core.ExtendedNode;
import org.exoplatform.services.log.ExoLogger;
import org.exoplatform.services.log.Log;
+import org.exoplatform.services.security.ConversationState;
import org.exoplatform.services.security.Identity;
import org.exoplatform.services.security.IdentityRegistry;
import org.exoplatform.services.security.MembershipEntry;
@@ -913,9 +914,10 @@ public static boolean hasEditPermissionOnPage() throws Exception {
UserACL userACL = portalApp.getApplicationComponent(UserACL.class);
if (uiPage != null) {
- return userACL.hasEditPermissionOnPage(uiPage.getOwnerType(),
- uiPage.getOwnerId(),
- uiPage.getEditPermission());
+ return userACL.hasEditPermission(ConversationState.getCurrent().getIdentity(),
+ uiPage.getOwnerType(),
+ uiPage.getOwnerId(),
+ uiPage.getEditPermission());
}
UIPortal currentUIPortal = portalApp. findComponentById(UIPortalApplication.UI_WORKING_WS_ID)
.findFirstComponentOfType(UIPortal.class);
@@ -929,7 +931,7 @@ public static boolean hasEditPermissionOnPage() throws Exception {
if (page == null) {
return false;
}
- return userACL.hasEditPermission(page);
+ return userACL.hasEditPermission(page, ConversationState.getCurrent().getIdentity());
}
public static boolean hasEditPermissionOnNavigation() throws Exception {
@@ -943,9 +945,10 @@ public static boolean hasEditPermissionOnPortal() throws Exception {
UIPortal currentUIPortal = portalApp. findComponentById(UIPortalApplication.UI_WORKING_WS_ID)
.findFirstComponentOfType(UIPortal.class);
UserACL userACL = portalApp.getApplicationComponent(UserACL.class);
- return userACL.hasEditPermissionOnPortal(currentUIPortal.getSiteKey().getTypeName(),
- currentUIPortal.getSiteKey().getName(),
- currentUIPortal.getEditPermission());
+ return userACL.hasEditPermission(ConversationState.getCurrent().getIdentity(),
+ currentUIPortal.getSiteKey().getTypeName(),
+ currentUIPortal.getSiteKey().getName(),
+ currentUIPortal.getEditPermission());
}
public static UserNavigation getSelectedNavigation() throws Exception {
@@ -1134,7 +1137,7 @@ public static String toLowerCase(String st, int n) {
*/
public static boolean isAdministratorUser() {
UserACL userACL = WCMCoreUtils.getService(UserACL.class);
- return userACL.isUserInGroup(userACL.getAdminGroups());
+ return userACL.isUserInGroup(ConversationState.getCurrent().getIdentity(), userACL.getAdminGroups());
}
public static String getProfileLink(String userId) {
diff --git a/ecms-social-integration/src/main/java/org/exoplatform/social/space/customization/SpaceCustomizationService.java b/ecms-social-integration/src/main/java/org/exoplatform/social/space/customization/SpaceCustomizationService.java
index 85fb1d3d315..824a6a47e5f 100644
--- a/ecms-social-integration/src/main/java/org/exoplatform/social/space/customization/SpaceCustomizationService.java
+++ b/ecms-social-integration/src/main/java/org/exoplatform/social/space/customization/SpaceCustomizationService.java
@@ -316,11 +316,7 @@ public void createSpaceHomePage(String spacePrettyName, String spaceGroupId, Exo
customSpaceHomePage.getFactoryId(),
customSpaceHomePage.getAccessPermissions() != null ? Arrays.asList(customSpaceHomePage.getAccessPermissions())
: null,
- customSpaceHomePage.getEditPermission(),
- customSpaceHomePage.getMoveAppsPermissions() != null ? Arrays.asList(customSpaceHomePage.getMoveAppsPermissions())
- : null,
- customSpaceHomePage.getMoveContainersPermissions() != null ? Arrays.asList(customSpaceHomePage.getMoveContainersPermissions())
- : null);
+ customSpaceHomePage.getEditPermission());
pageService.savePage(new PageContext(pageKey, pageState));
dataStorageService.save(customSpaceHomePage);
diff --git a/ext/authoring/services/src/main/java/org/exoplatform/services/wcm/extensions/publication/lifecycle/authoring/AuthoringPublicationPlugin.java b/ext/authoring/services/src/main/java/org/exoplatform/services/wcm/extensions/publication/lifecycle/authoring/AuthoringPublicationPlugin.java
index 72270f35187..c746919749b 100644
--- a/ext/authoring/services/src/main/java/org/exoplatform/services/wcm/extensions/publication/lifecycle/authoring/AuthoringPublicationPlugin.java
+++ b/ext/authoring/services/src/main/java/org/exoplatform/services/wcm/extensions/publication/lifecycle/authoring/AuthoringPublicationPlugin.java
@@ -43,6 +43,8 @@
import org.exoplatform.services.log.ExoLogger;
import org.exoplatform.services.log.Log;
import org.exoplatform.services.resources.ResourceBundleService;
+import org.exoplatform.services.security.ConversationState;
+import org.exoplatform.services.security.Identity;
import org.exoplatform.services.security.IdentityConstants;
import org.exoplatform.services.wcm.extensions.publication.impl.PublicationManagerImpl;
import org.exoplatform.services.wcm.extensions.publication.lifecycle.authoring.ui.UIPublicationContainer;
@@ -653,10 +655,15 @@ private List getRunningPortals(String userId) throws Exception {
UserACL userACL = WCMCoreUtils.getService(UserACL.class);
for(Object object:pageList.getAll()) {
PortalConfig portalConfig = (PortalConfig)object;
- if(userACL.hasPermission(portalConfig)) {
+ if(userACL.hasAccessPermission(portalConfig, getCurrentIdentity())) {
listPortalName.add(portalConfig.getName());
}
}
return listPortalName;
}
+
+ private Identity getCurrentIdentity() {
+ ConversationState conversationState = ConversationState.getCurrent();
+ return conversationState == null ? null : conversationState.getIdentity();
+ }
}