Classes in this File | Line Coverage | Branch Coverage | Complexity | ||||
AbstractConfirmationStrategy |
|
| 3.0;3 |
1 | /* | |
2 | * Copyright (c) 2003-2011, Simon Brown | |
3 | * All rights reserved. | |
4 | * | |
5 | * Redistribution and use in source and binary forms, with or without | |
6 | * modification, are permitted provided that the following conditions are met: | |
7 | * | |
8 | * - Redistributions of source code must retain the above copyright | |
9 | * notice, this list of conditions and the following disclaimer. | |
10 | * | |
11 | * - Redistributions in binary form must reproduce the above copyright | |
12 | * notice, this list of conditions and the following disclaimer in | |
13 | * the documentation and/or other materials provided with the | |
14 | * distribution. | |
15 | * | |
16 | * - Neither the name of Pebble nor the names of its contributors may | |
17 | * be used to endorse or promote products derived from this software | |
18 | * without specific prior written permission. | |
19 | * | |
20 | * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" | |
21 | * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | |
22 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | |
23 | * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE | |
24 | * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR | |
25 | * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF | |
26 | * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS | |
27 | * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN | |
28 | * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | |
29 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE | |
30 | * POSSIBILITY OF SUCH DAMAGE. | |
31 | */ | |
32 | ||
33 | package net.sourceforge.pebble.confirmation; | |
34 | ||
35 | import net.sourceforge.pebble.PluginProperties; | |
36 | import net.sourceforge.pebble.api.event.comment.CommentEvent; | |
37 | import net.sourceforge.pebble.api.event.comment.CommentListener; | |
38 | import net.sourceforge.pebble.api.confirmation.CommentConfirmationStrategy; | |
39 | import net.sourceforge.pebble.api.confirmation.TrackBackConfirmationStrategy; | |
40 | import net.sourceforge.pebble.domain.Blog; | |
41 | import net.sourceforge.pebble.domain.Comment; | |
42 | import net.sourceforge.pebble.event.response.ContentSpamListener; | |
43 | import net.sourceforge.pebble.event.response.IpAddressListener; | |
44 | import net.sourceforge.pebble.event.response.LinkSpamListener; | |
45 | import net.sourceforge.pebble.event.response.SpamScoreListener; | |
46 | import net.sourceforge.pebble.util.SecurityUtils; | |
47 | ||
48 | /** | |
49 | * Starting point for ConfirmationStrategy implementations. | |
50 | * | |
51 | * @author Simon Brown | |
52 | */ | |
53 | 5440 | public abstract class AbstractConfirmationStrategy implements CommentConfirmationStrategy, TrackBackConfirmationStrategy { |
54 | ||
55 | /** the name of the required override property */ | |
56 | public static final String REQUIRED_KEY = "CommentConfirmationStrategy.required"; | |
57 | ||
58 | /** | |
59 | * Called to determine whether confirmation is required. This default | |
60 | * implementation returns false if the user is authenticated. Otherwise, | |
61 | * it runs the default set of comment listeners to determine | |
62 | * whether the comment is spam. If so, true is returned. | |
63 | * | |
64 | * @param comment the Comment being confirmed | |
65 | * @return true if the comment should be confirmed, false otherwise | |
66 | */ | |
67 | public boolean confirmationRequired(Comment comment) { | |
68 | 16 | PluginProperties props = comment.getBlogEntry().getBlog().getPluginProperties(); |
69 | 16 | String required = props.getProperty(REQUIRED_KEY); |
70 | ||
71 | 16 | Blog blog = comment.getBlogEntry().getBlog(); |
72 | 16 | if (SecurityUtils.isUserAuthorisedForBlog(blog)) { |
73 | 12 | return false; |
74 | } else { | |
75 | // run a subset of the default comment listeners to figure out whether | |
76 | // the comment is spam | |
77 | 4 | CommentListener listener1 = new IpAddressListener(); |
78 | 4 | CommentListener listener2 = new LinkSpamListener(); |
79 | 4 | CommentListener listener3 = new ContentSpamListener(); |
80 | 4 | CommentListener listener4 = new SpamScoreListener(); |
81 | 4 | CommentEvent event = new CommentEvent(comment, CommentEvent.COMMENT_ADDED); |
82 | ||
83 | 4 | listener1.commentAdded(event); |
84 | 4 | listener2.commentAdded(event); |
85 | 4 | listener3.commentAdded(event); |
86 | 4 | listener4.commentAdded(event); |
87 | ||
88 | 4 | return (required != null && required.equalsIgnoreCase("true")) || !comment.isApproved(); |
89 | } | |
90 | } | |
91 | ||
92 | /** | |
93 | * Called to determine whether confirmation is required. | |
94 | * | |
95 | * @param blog the owning Blog | |
96 | * @return true if the confirmation is required, false otherwise | |
97 | */ | |
98 | public boolean confirmationRequired(Blog blog) { | |
99 | 0 | return !SecurityUtils.isUserAuthorisedForBlog(blog); |
100 | } | |
101 | ||
102 | } |