1   /**
2    * Copyright (c) 2000-2009 Liferay, Inc. All rights reserved.
3    *
4    * The contents of this file are subject to the terms of the Liferay Enterprise
5    * Subscription License ("License"). You may not use this file except in
6    * compliance with the License. You can obtain a copy of the License by
7    * contacting Liferay, Inc. See the License for the specific language governing
8    * permissions and limitations under the License, including but not limited to
9    * distribution rights of the Software.
10   *
11   * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
12   * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
13   * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
14   * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
15   * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
16   * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
17   * SOFTWARE.
18   */
19  
20  package com.liferay.portlet.shopping.service.permission;
21  
22  import com.liferay.portal.PortalException;
23  import com.liferay.portal.SystemException;
24  import com.liferay.portal.security.auth.PrincipalException;
25  import com.liferay.portal.security.permission.PermissionChecker;
26  import com.liferay.portlet.shopping.model.ShoppingCategory;
27  import com.liferay.portlet.shopping.model.ShoppingItem;
28  import com.liferay.portlet.shopping.service.ShoppingItemLocalServiceUtil;
29  
30  /**
31   * <a href="ShoppingItemPermission.java.html"><b><i>View Source</i></b></a>
32   *
33   * @author Brian Wing Shun Chan
34   *
35   */
36  public class ShoppingItemPermission {
37  
38      public static void check(
39              PermissionChecker permissionChecker, long itemId, String actionId)
40          throws PortalException, SystemException {
41  
42          if (!contains(permissionChecker, itemId, actionId)) {
43              throw new PrincipalException();
44          }
45      }
46  
47      public static void check(
48              PermissionChecker permissionChecker, ShoppingItem item,
49              String actionId)
50          throws PortalException {
51  
52          if (!contains(permissionChecker, item, actionId)) {
53              throw new PrincipalException();
54          }
55      }
56  
57      public static boolean contains(
58              PermissionChecker permissionChecker, long itemId, String actionId)
59          throws PortalException, SystemException {
60  
61          ShoppingItem item = ShoppingItemLocalServiceUtil.getItem(itemId);
62  
63          return contains(permissionChecker, item, actionId);
64      }
65  
66      public static boolean contains(
67          PermissionChecker permissionChecker, ShoppingItem item,
68          String actionId) {
69  
70          if (permissionChecker.hasOwnerPermission(
71                  item.getCompanyId(), ShoppingItem.class.getName(),
72                  item.getItemId(), item.getUserId(), actionId)) {
73  
74              return true;
75          }
76  
77          ShoppingCategory category = item.getCategory();
78  
79          return permissionChecker.hasPermission(
80              category.getGroupId(), ShoppingItem.class.getName(),
81              item.getItemId(), actionId);
82      }
83  
84  }