001// -------------------------------------------------------------------------------- 002// Copyright 2002-2026 Echo Three, LLC 003// 004// Licensed under the Apache License, Version 2.0 (the "License"); 005// you may not use this file except in compliance with the License. 006// You may obtain a copy of the License at 007// 008// http://www.apache.org/licenses/LICENSE-2.0 009// 010// Unless required by applicable law or agreed to in writing, software 011// distributed under the License is distributed on an "AS IS" BASIS, 012// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 013// See the License for the specific language governing permissions and 014// limitations under the License. 015// -------------------------------------------------------------------------------- 016 017package com.echothree.control.user.security.server.command; 018 019import com.echothree.control.user.security.common.edit.SecurityEditFactory; 020import com.echothree.control.user.security.common.edit.SecurityRoleGroupEdit; 021import com.echothree.control.user.security.common.form.EditSecurityRoleGroupForm; 022import com.echothree.control.user.security.common.result.EditSecurityRoleGroupResult; 023import com.echothree.control.user.security.common.result.SecurityResultFactory; 024import com.echothree.control.user.security.common.spec.SecurityRoleGroupSpec; 025import com.echothree.model.control.party.common.PartyTypes; 026import com.echothree.model.control.security.common.SecurityRoleGroups; 027import com.echothree.model.control.security.common.SecurityRoles; 028import com.echothree.model.control.security.server.control.SecurityControl; 029import com.echothree.model.data.security.server.entity.SecurityRoleGroup; 030import com.echothree.model.data.user.common.pk.UserVisitPK; 031import com.echothree.util.common.message.ExecutionErrors; 032import com.echothree.util.common.validation.FieldDefinition; 033import com.echothree.util.common.validation.FieldType; 034import com.echothree.util.common.command.EditMode; 035import com.echothree.util.server.control.BaseAbstractEditCommand; 036import com.echothree.util.server.control.CommandSecurityDefinition; 037import com.echothree.util.server.control.PartyTypeDefinition; 038import com.echothree.util.server.control.SecurityRoleDefinition; 039import com.echothree.util.server.persistence.Session; 040import java.util.List; 041import javax.enterprise.context.Dependent; 042 043@Dependent 044public class EditSecurityRoleGroupCommand 045 extends BaseAbstractEditCommand<SecurityRoleGroupSpec, SecurityRoleGroupEdit, EditSecurityRoleGroupResult, SecurityRoleGroup, SecurityRoleGroup> { 046 047 private final static CommandSecurityDefinition COMMAND_SECURITY_DEFINITION; 048 private final static List<FieldDefinition> SPEC_FIELD_DEFINITIONS; 049 private final static List<FieldDefinition> EDIT_FIELD_DEFINITIONS; 050 051 static { 052 COMMAND_SECURITY_DEFINITION = new CommandSecurityDefinition(List.of( 053 new PartyTypeDefinition(PartyTypes.UTILITY.name(), null), 054 new PartyTypeDefinition(PartyTypes.EMPLOYEE.name(), List.of( 055 new SecurityRoleDefinition(SecurityRoleGroups.SecurityRoleGroup.name(), SecurityRoles.Edit.name()) 056 )) 057 )); 058 059 SPEC_FIELD_DEFINITIONS = List.of( 060 new FieldDefinition("SecurityRoleGroupName", FieldType.ENTITY_NAME, true, null, null) 061 ); 062 063 EDIT_FIELD_DEFINITIONS = List.of( 064 new FieldDefinition("SecurityRoleGroupName", FieldType.ENTITY_NAME, true, null, null), 065 new FieldDefinition("ParentSecurityRoleGroupName", FieldType.ENTITY_NAME, false, null, null), 066 new FieldDefinition("IsDefault", FieldType.BOOLEAN, true, null, null), 067 new FieldDefinition("SortOrder", FieldType.SIGNED_INTEGER, true, null, null), 068 new FieldDefinition("Description", FieldType.STRING, false, 1L, 132L) 069 ); 070 } 071 072 /** Creates a new instance of EditSecurityRoleGroupCommand */ 073 public EditSecurityRoleGroupCommand() { 074 super(COMMAND_SECURITY_DEFINITION, SPEC_FIELD_DEFINITIONS, EDIT_FIELD_DEFINITIONS); 075 } 076 077 @Override 078 public EditSecurityRoleGroupResult getResult() { 079 return SecurityResultFactory.getEditSecurityRoleGroupResult(); 080 } 081 082 @Override 083 public SecurityRoleGroupEdit getEdit() { 084 return SecurityEditFactory.getSecurityRoleGroupEdit(); 085 } 086 087 @Override 088 public SecurityRoleGroup getEntity(EditSecurityRoleGroupResult result) { 089 var securityControl = Session.getModelController(SecurityControl.class); 090 SecurityRoleGroup securityRoleGroup; 091 var securityRoleGroupName = spec.getSecurityRoleGroupName(); 092 093 if(editMode.equals(EditMode.LOCK) || editMode.equals(EditMode.ABANDON)) { 094 securityRoleGroup = securityControl.getSecurityRoleGroupByName(securityRoleGroupName); 095 } else { // EditMode.UPDATE 096 securityRoleGroup = securityControl.getSecurityRoleGroupByNameForUpdate(securityRoleGroupName); 097 } 098 099 if(securityRoleGroup != null) { 100 result.setSecurityRoleGroup(securityControl.getSecurityRoleGroupTransfer(getUserVisit(), securityRoleGroup)); 101 } else { 102 addExecutionError(ExecutionErrors.UnknownSecurityRoleGroupName.name(), securityRoleGroupName); 103 } 104 105 return securityRoleGroup; 106 } 107 108 @Override 109 public SecurityRoleGroup getLockEntity(SecurityRoleGroup securityRoleGroup) { 110 return securityRoleGroup; 111 } 112 113 @Override 114 public void fillInResult(EditSecurityRoleGroupResult result, SecurityRoleGroup securityRoleGroup) { 115 var securityControl = Session.getModelController(SecurityControl.class); 116 117 result.setSecurityRoleGroup(securityControl.getSecurityRoleGroupTransfer(getUserVisit(), securityRoleGroup)); 118 } 119 120 SecurityRoleGroup parentSecurityRoleGroup = null; 121 122 @Override 123 public void doLock(SecurityRoleGroupEdit edit, SecurityRoleGroup securityRoleGroup) { 124 var securityControl = Session.getModelController(SecurityControl.class); 125 var securityRoleGroupDescription = securityControl.getSecurityRoleGroupDescription(securityRoleGroup, getPreferredLanguage()); 126 var securityRoleGroupDetail = securityRoleGroup.getLastDetail(); 127 128 parentSecurityRoleGroup = securityRoleGroupDetail.getParentSecurityRoleGroup(); 129 if(parentSecurityRoleGroup != null && SecurityRoleGroups.ROOT.name().equals(parentSecurityRoleGroup.getLastDetail().getSecurityRoleGroupName())) { 130 parentSecurityRoleGroup = null; 131 } 132 133 edit.setSecurityRoleGroupName(securityRoleGroupDetail.getSecurityRoleGroupName()); 134 edit.setParentSecurityRoleGroupName(parentSecurityRoleGroup == null? null: parentSecurityRoleGroup.getLastDetail().getSecurityRoleGroupName()); 135 edit.setIsDefault(securityRoleGroupDetail.getIsDefault().toString()); 136 edit.setSortOrder(securityRoleGroupDetail.getSortOrder().toString()); 137 138 if(securityRoleGroupDescription != null) { 139 edit.setDescription(securityRoleGroupDescription.getDescription()); 140 } 141 } 142 143 @Override 144 public void canUpdate(SecurityRoleGroup securityRoleGroup) { 145 var securityControl = Session.getModelController(SecurityControl.class); 146 var securityRoleGroupName = edit.getSecurityRoleGroupName(); 147 var duplicateSecurityRoleGroup = securityControl.getSecurityRoleGroupByName(securityRoleGroupName); 148 149 if(duplicateSecurityRoleGroup == null || securityRoleGroup.equals(duplicateSecurityRoleGroup)) { 150 var parentSecurityRoleGroupName = edit.getParentSecurityRoleGroupName(); 151 152 parentSecurityRoleGroup = securityControl.getSecurityRoleGroupByName(parentSecurityRoleGroupName == null? SecurityRoleGroups.ROOT.name(): parentSecurityRoleGroupName); 153 154 if(parentSecurityRoleGroup != null) { 155 if(!securityControl.isParentSecurityRoleGroupSafe(securityRoleGroup, parentSecurityRoleGroup)) { 156 addExecutionError(ExecutionErrors.InvalidParentSecurityRoleGroup.name()); 157 } 158 } else { 159 addExecutionError(ExecutionErrors.UnknownParentSecurityRoleGroupName.name(), parentSecurityRoleGroupName); 160 } 161 } else { 162 addExecutionError(ExecutionErrors.DuplicateSecurityRoleGroupName.name(), securityRoleGroupName); 163 } 164 } 165 166 @Override 167 public void doUpdate(SecurityRoleGroup securityRoleGroup) { 168 var securityControl = Session.getModelController(SecurityControl.class); 169 var partyPK = getPartyPK(); 170 var securityRoleGroupDetailValue = securityControl.getSecurityRoleGroupDetailValueForUpdate(securityRoleGroup); 171 var securityRoleGroupDescription = securityControl.getSecurityRoleGroupDescriptionForUpdate(securityRoleGroup, getPreferredLanguage()); 172 var description = edit.getDescription(); 173 174 securityRoleGroupDetailValue.setSecurityRoleGroupName(edit.getSecurityRoleGroupName()); 175 securityRoleGroupDetailValue.setParentSecurityRoleGroupPK(parentSecurityRoleGroup == null? null: parentSecurityRoleGroup.getPrimaryKey()); 176 securityRoleGroupDetailValue.setIsDefault(Boolean.valueOf(edit.getIsDefault())); 177 securityRoleGroupDetailValue.setSortOrder(Integer.valueOf(edit.getSortOrder())); 178 179 securityControl.updateSecurityRoleGroupFromValue(securityRoleGroupDetailValue, partyPK); 180 181 if(securityRoleGroupDescription == null && description != null) { 182 securityControl.createSecurityRoleGroupDescription(securityRoleGroup, getPreferredLanguage(), description, partyPK); 183 } else if(securityRoleGroupDescription != null && description == null) { 184 securityControl.deleteSecurityRoleGroupDescription(securityRoleGroupDescription, partyPK); 185 } else if(securityRoleGroupDescription != null && description != null) { 186 var securityRoleGroupDescriptionValue = securityControl.getSecurityRoleGroupDescriptionValue(securityRoleGroupDescription); 187 188 securityRoleGroupDescriptionValue.setDescription(description); 189 securityControl.updateSecurityRoleGroupDescriptionFromValue(securityRoleGroupDescriptionValue, partyPK); 190 } 191 } 192 193}