Coverage Report

Coverage Report - net.sourceforge.pebble.web.action.SaveBlogSecurityAction

Classes in this File

0/39

0/16

 /*
  * Copyright (c) 2003-2011, Simon Brown
  * All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions are met:
  *
  *   - Redistributions of source code must retain the above copyright
  *     notice, this list of conditions and the following disclaimer.
  *
  *   - Redistributions in binary form must reproduce the above copyright
  *     notice, this list of conditions and the following disclaimer in
  *     the documentation and/or other materials provided with the
  *     distribution.
  *
  *   - Neither the name of Pebble nor the names of its contributors may
  *     be used to endorse or promote products derived from this software
  *     without specific prior written permission.
  *
  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
  * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
  * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
  * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
  * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
  * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
  * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
  * POSSIBILITY OF SUCH DAMAGE.
  */
 package net.sourceforge.pebble.web.action;
 
 import net.sourceforge.pebble.Constants;
 import net.sourceforge.pebble.domain.Blog;
 import net.sourceforge.pebble.domain.BlogServiceException;
 import net.sourceforge.pebble.web.security.RequireSecurityToken;
 import net.sourceforge.pebble.web.view.RedirectView;
 import net.sourceforge.pebble.web.view.View;
 
 import javax.servlet.ServletException;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
 /**
  * Saves the security properties associated with the current Blog.
  *
  * @author    Simon Brown
  */
 @RequireSecurityToken
 public class SaveBlogSecurityAction extends SecureAction {
 
   /**
    * Peforms the processing associated with this action.
    *
    * @param request  the HttpServletRequest instance
    * @param response the HttpServletResponse instance
    * @return the name of the next view
    */
   public View process(HttpServletRequest request, HttpServletResponse response) throws ServletException {
     Blog blog = (Blog)getModel().get(Constants.BLOG_KEY);
 
     String privateBlog = request.getParameter("private");
     blog.setProperty(Blog.PRIVATE_KEY, privateBlog);
 
     String values[] = request.getParameterValues("blogOwners");
     StringBuffer blogOwners = new StringBuffer();
     if (values != null) {
       for (String value : values) {
         blogOwners.append(value);
         blogOwners.append(",");
       }
     }
     blog.setProperty(Blog.BLOG_OWNERS_KEY, blogOwners.toString());
 
     values = request.getParameterValues("blogPublishers");
     StringBuffer blogPublishers = new StringBuffer();
     if (values != null) {
       for (String value : values) {
         blogPublishers.append(value);
         blogPublishers.append(",");
       }
     }
     blog.setProperty(Blog.BLOG_PUBLISHERS_KEY, blogPublishers.toString());
 
     values = request.getParameterValues("blogContributors");
     StringBuffer blogContributors = new StringBuffer();
     if (values != null) {
       for (String value : values) {
         blogContributors.append(value);
         blogContributors.append(",");
       }
     }
     blog.setProperty(Blog.BLOG_CONTRIBUTORS_KEY, blogContributors.toString());
 
     values = request.getParameterValues("blogReaders");
     StringBuffer blogReaders = new StringBuffer();
     if (values != null) {
       for (String value : values) {
         blogReaders.append(value);
         blogReaders.append(",");
       }
     }
     blog.setProperty(Blog.BLOG_READERS_KEY, blogReaders.toString());
 
     try {
       blog.storeProperties();
       blog.info("Blog security settings saved.");
     } catch (BlogServiceException e) {
       throw new ServletException(e);
     }
 
     return new RedirectView(blog.getUrl() + "viewBlogSecurity.secureaction");
   }
 
   /**
    * Gets a list of all roles that are allowed to access this action.
    *
    * @return  an array of Strings representing role names
    * @param request   the originating request
    */
   public String[] getRoles(HttpServletRequest request) {
     return new String[]{
         Constants.BLOG_ADMIN_ROLE,
         Constants.BLOG_OWNER_ROLE
     };
   }
 
 }

1		/*
2		* Copyright (c) 2003-2011, Simon Brown
3		* All rights reserved.
4		*
5		* Redistribution and use in source and binary forms, with or without
6		* modification, are permitted provided that the following conditions are met:
7		*
8		* - Redistributions of source code must retain the above copyright
9		* notice, this list of conditions and the following disclaimer.
10		*
11		* - Redistributions in binary form must reproduce the above copyright
12		* notice, this list of conditions and the following disclaimer in
13		* the documentation and/or other materials provided with the
14		* distribution.
15		*
16		* - Neither the name of Pebble nor the names of its contributors may
17		* be used to endorse or promote products derived from this software
18		* without specific prior written permission.
19		*
20		* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21		* AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22		* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23		* ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
24		* LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
25		* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26		* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27		* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28		* CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29		* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30		* POSSIBILITY OF SUCH DAMAGE.
31		*/
32		package net.sourceforge.pebble.web.action;
33
34		import net.sourceforge.pebble.Constants;
35		import net.sourceforge.pebble.domain.Blog;
36		import net.sourceforge.pebble.domain.BlogServiceException;
37		import net.sourceforge.pebble.web.security.RequireSecurityToken;
38		import net.sourceforge.pebble.web.view.RedirectView;
39		import net.sourceforge.pebble.web.view.View;
40
41		import javax.servlet.ServletException;
42		import javax.servlet.http.HttpServletRequest;
43		import javax.servlet.http.HttpServletResponse;
44
45		/**
46		* Saves the security properties associated with the current Blog.
47		*
48		* @author Simon Brown
49		*/
50		@RequireSecurityToken
51	0	public class SaveBlogSecurityAction extends SecureAction {
52
53		/**
54		* Peforms the processing associated with this action.
55		*
56		* @param request the HttpServletRequest instance
57		* @param response the HttpServletResponse instance
58		* @return the name of the next view
59		*/
60		public View process(HttpServletRequest request, HttpServletResponse response) throws ServletException {
61	0	Blog blog = (Blog)getModel().get(Constants.BLOG_KEY);
62
63	0	String privateBlog = request.getParameter("private");
64	0	blog.setProperty(Blog.PRIVATE_KEY, privateBlog);
65
66	0	String values[] = request.getParameterValues("blogOwners");
67	0	StringBuffer blogOwners = new StringBuffer();
68	0	if (values != null) {
69	0	for (String value : values) {
70	0	blogOwners.append(value);
71	0	blogOwners.append(",");
72		}
73		}
74	0	blog.setProperty(Blog.BLOG_OWNERS_KEY, blogOwners.toString());
75
76	0	values = request.getParameterValues("blogPublishers");
77	0	StringBuffer blogPublishers = new StringBuffer();
78	0	if (values != null) {
79	0	for (String value : values) {
80	0	blogPublishers.append(value);
81	0	blogPublishers.append(",");
82		}
83		}
84	0	blog.setProperty(Blog.BLOG_PUBLISHERS_KEY, blogPublishers.toString());
85
86	0	values = request.getParameterValues("blogContributors");
87	0	StringBuffer blogContributors = new StringBuffer();
88	0	if (values != null) {
89	0	for (String value : values) {
90	0	blogContributors.append(value);
91	0	blogContributors.append(",");
92		}
93		}
94	0	blog.setProperty(Blog.BLOG_CONTRIBUTORS_KEY, blogContributors.toString());
95
96	0	values = request.getParameterValues("blogReaders");
97	0	StringBuffer blogReaders = new StringBuffer();
98	0	if (values != null) {
99	0	for (String value : values) {
100	0	blogReaders.append(value);
101	0	blogReaders.append(",");
102		}
103		}
104	0	blog.setProperty(Blog.BLOG_READERS_KEY, blogReaders.toString());
105
106		try {
107	0	blog.storeProperties();
108	0	blog.info("Blog security settings saved.");
109	0	} catch (BlogServiceException e) {
110	0	throw new ServletException(e);
111	0	}
112
113	0	return new RedirectView(blog.getUrl() + "viewBlogSecurity.secureaction");
114		}
115
116		/**
117		* Gets a list of all roles that are allowed to access this action.
118		*
119		* @return an array of Strings representing role names
120		* @param request the originating request
121		*/
122		public String[] getRoles(HttpServletRequest request) {
123	0	return new String[]{
124		Constants.BLOG_ADMIN_ROLE,
125		Constants.BLOG_OWNER_ROLE
126		};
127		}
128
129		}