Sebastian Sdorra avatar Sebastian Sdorra committed 54fdc47

added security constants

Comments (0)

Files changed (3)

scm-core/src/main/java/sonia/scm/security/RepositoryPermission.java

 {
 
   /** Field description */
+  public static final String WILDCARD = "*";
+
+  /** Field description */
   private static final long serialVersionUID = 3832804235417228043L;
 
   //~--- constructors ---------------------------------------------------------
       RepositoryPermission rp = (RepositoryPermission) p;
 
       //J-
-      result = (repositoryId.equals("*") || repositoryId.equals(rp.repositoryId)) 
+      result = (repositoryId.equals(WILDCARD) || repositoryId.equals(rp.repositoryId)) 
                 && (permissionType.getValue() >= rp.permissionType.getValue());
       //J+
     }

scm-core/src/main/java/sonia/scm/security/Role.java

+/**
+ * Copyright (c) 2010, Sebastian Sdorra All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright notice,
+ * this list of conditions and the following disclaimer. 2. Redistributions in
+ * binary form must reproduce the above copyright notice, this list of
+ * conditions and the following disclaimer in the documentation and/or other
+ * materials provided with the distribution. 3. Neither the name of SCM-Manager;
+ * nor the names of its contributors may be used to endorse or promote products
+ * derived from this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+ * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR
+ * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+ * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+ * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+ * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+ * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ *
+ * http://bitbucket.org/sdorra/scm-manager
+ *
+ */
+
+
+
+package sonia.scm.security;
+
+/**
+ *
+ * @author Sebastian Sdorra
+ * @since 1.21
+ */
+public final class Role
+{
+
+  /** Field description */
+  public static final String ADMIN = "admin";
+
+  /** Field description */
+  public static final String USER = "user";
+}

scm-webapp/src/main/java/sonia/scm/security/ScmRealm.java

   private static final String NAME = "scm";
 
   /** Field description */
-  private static final String ROLE_ADMIN = "admin";
-
-  /** Field description */
-  private static final String ROLE_USER = "user";
-
-  /** Field description */
   private static final String SCM_CREDENTIALS = "SCM_CREDENTIALS";
 
   /**
     Set<String> roles = Sets.newHashSet();
     List<org.apache.shiro.authz.Permission> permissions = null;
 
-    roles.add(ROLE_USER);
+    roles.add(Role.USER);
 
     if (user.isAdmin())
     {
         logger.debug("grant admin role for user {}", user.getName());
       }
 
-      roles.add(ROLE_ADMIN);
+      roles.add(Role.ADMIN);
       permissions = Lists.newArrayList();
-      permissions.add(new RepositoryPermission("*", PermissionType.OWNER));
+      permissions.add(new RepositoryPermission(RepositoryPermission.WILDCARD,
+        PermissionType.OWNER));
     }
     else
     {
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.