Introduce index resource with first links

2025-11-17 18:51:10 +01:00 · 2018-09-26 17:00:13 +02:00
parent b645901704
commit 357ccc7ddb
7 changed files with 148 additions and 7 deletions
--- a/scm-webapp/src/main/java/sonia/scm/security/DefaultAuthorizationCollector.java
+++ b/scm-webapp/src/main/java/sonia/scm/security/DefaultAuthorizationCollector.java
@@ -56,6 +56,7 @@ import sonia.scm.plugin.Extension;
 import sonia.scm.repository.Repository;
 import sonia.scm.repository.RepositoryDAO;
 import sonia.scm.user.User;
+import sonia.scm.user.UserPermissions;
 import sonia.scm.util.Util;

 import java.util.List;
@@ -74,7 +75,7 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector

  // TODO move to util class
  private static final String SEPARATOR = System.getProperty("line.separator", "\n");
-  
+
  /** Field description */
  private static final String ADMIN_PERMISSION = "*";

@@ -88,7 +89,7 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector
    LoggerFactory.getLogger(DefaultAuthorizationCollector.class);

  //~--- constructors ---------------------------------------------------------
-  
+
  /**
   * Constructs ...
   *
@@ -209,7 +210,7 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector
          String perm = permission.getType().getPermissionPrefix().concat(repository.getId());
          if (logger.isTraceEnabled())
          {
-            logger.trace("add repository permission {} for user {} at repository {}", 
+            logger.trace("add repository permission {} for user {} at repository {}",
              perm, user.getName(), repository.getName());
          }

@@ -254,6 +255,7 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector

      collectGlobalPermissions(builder, user, groups);
      collectRepositoryPermissions(builder, user, groups);
+      builder.add(canReadOwnUser(user));
      permissions = builder.build();
    }

@@ -262,6 +264,10 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector
    return info;
  }

+  private String canReadOwnUser(User user) {
+    return "user:" + UserPermissions.ACTION_READ + ":" + user.getName();
+  }
+
  //~--- get methods ----------------------------------------------------------

  private boolean isUserPermitted(User user, GroupNames groups,
@@ -272,7 +278,7 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector
      || ((!perm.isGroupPermission()) && user.getName().equals(perm.getName()));
    //J+
  }
-  
+
  @Subscribe
  public void invalidateCache(AuthorizationChangedEvent event) {
    if (event.isEveryUserAffected()) {
@@ -281,12 +287,12 @@ public class DefaultAuthorizationCollector implements AuthorizationCollector
      invalidateCache();
    }
  }
-  
+
  private void invalidateUserCache(final String username) {
    logger.info("invalidate cache for user {}, because of a received authorization event", username);
    cache.removeAll((CacheKey item) -> username.equalsIgnoreCase(item.username));
  }
-  
+
  private void invalidateCache() {
    logger.info("invalidate cache, because of a received authorization event");
    cache.clear();