Gitblit devel
blame | history | patch | commit | commitdiff | ignore whitespace
James Moger
2011-04-16 01bd346efe98af0f05f23f897c0819d2df8d856c 
 src/com/gitblit/wicket/AuthorizationStrategy.java


@@ -5,6 +5,8 @@


import org.apache.wicket.authorization.IUnauthorizedComponentInstantiationListener;



import org.apache.wicket.authorization.strategies.page.AbstractPageAuthorizationStrategy;







import com.gitblit.GitBlit;



import com.gitblit.Keys;



import com.gitblit.wicket.pages.RepositoriesPage;







public class AuthorizationStrategy extends AbstractPageAuthorizationStrategy implements IUnauthorizedComponentInstantiationListener {



@@ -15,31 +17,48 @@


   @SuppressWarnings({ "unchecked", "rawtypes" })



   @Override



   protected boolean isPageAuthorized(Class pageClass) {



      if (BasePage.class.isAssignableFrom(pageClass))



         return isAuthorized(pageClass);



      // Return contruction by default



      if (BasePage.class.isAssignableFrom(pageClass)) {



         boolean authenticateView = GitBlit.self().settings().getBoolean(Keys.web.authenticateViewPages, true);



         boolean authenticateAdmin = GitBlit.self().settings().getBoolean(Keys.web.authenticateAdminPages, true);



         boolean allowAdmin = GitBlit.self().settings().getBoolean(Keys.web.allowAdministration, true);



			


         GitBlitWebSession session = GitBlitWebSession.get();			


         if (authenticateView && !session.isLoggedIn()) {



            // authentication required



            return false;



         }



			


         User user = session.getUser();



         if (pageClass.isAnnotationPresent(AdminPage.class)) {



            // admin page



            if (allowAdmin) {



               if (authenticateAdmin) {



                  // authenticate admin



                  if (user != null) {



                     return user.canAdmin();



                  }



                  return false;



               } else {



                  // no admin authentication required



                  return true;



               }



            } else {



               //admin prohibited



               return false;



            }



         }



      }



      return true;



   }







   @Override



   public void onUnauthorizedInstantiation(Component component) {



      if (component instanceof BasePage) {			


         GitBlitWebSession session = GitBlitWebSession.get();			


      if (component instanceof BasePage) {



         GitBlitWebSession session = GitBlitWebSession.get();



         if (!session.isLoggedIn())



            throw new RestartResponseAtInterceptPageException(LoginPage.class);



         else



            throw new RestartResponseAtInterceptPageException(RepositoriesPage.class);



      }



   }







   protected boolean isAuthorized(Class<? extends BasePage> pageClass) {



      GitBlitWebSession session = GitBlitWebSession.get();



      if (!session.isLoggedIn())



         return false;



      User user = session.getUser();



      if (pageClass.isAnnotationPresent(AdminPage.class)) {



			


      }



      return true;



   }



}