1   /**
2    * Copyright (c) 2000-2009 Liferay, Inc. All rights reserved.
3    *
4    * Permission is hereby granted, free of charge, to any person obtaining a copy
5    * of this software and associated documentation files (the "Software"), to deal
6    * in the Software without restriction, including without limitation the rights
7    * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8    * copies of the Software, and to permit persons to whom the Software is
9    * furnished to do so, subject to the following conditions:
10   *
11   * The above copyright notice and this permission notice shall be included in
12   * all copies or substantial portions of the Software.
13   *
14   * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15   * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16   * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17   * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18   * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19   * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20   * SOFTWARE.
21   */
22  
23  package com.liferay.portal.servlet.taglib.security;
24  
25  import com.liferay.portal.kernel.util.HttpUtil;
26  import com.liferay.portal.kernel.util.Validator;
27  import com.liferay.portal.model.Company;
28  import com.liferay.portal.model.Layout;
29  import com.liferay.portal.theme.ThemeDisplay;
30  import com.liferay.portal.util.PortalUtil;
31  import com.liferay.portal.util.WebKeys;
32  import com.liferay.util.Encryptor;
33  
34  import javax.servlet.http.HttpServletRequest;
35  import javax.servlet.jsp.JspException;
36  import javax.servlet.jsp.PageContext;
37  import javax.servlet.jsp.tagext.TagSupport;
38  
39  /**
40   * <a href="DoAsURLTagUtil.java.html"><b><i>View Source</i></b></a>
41   *
42   * @author Brian Wing Shun Chan
43   *
44   */
45  public class DoAsURLTagUtil extends TagSupport {
46  
47      public static String doEndTag(
48              long doAsUserId, String var, boolean writeOutput,
49              PageContext pageContext)
50          throws JspException {
51  
52          try {
53              HttpServletRequest request =
54                  (HttpServletRequest)pageContext.getRequest();
55  
56              ThemeDisplay themeDisplay = (ThemeDisplay)request.getAttribute(
57                  WebKeys.THEME_DISPLAY);
58  
59              Company company = themeDisplay.getCompany();
60              Layout layout = themeDisplay.getLayout();
61  
62              String doAsURL = PortalUtil.getLayoutURL(
63                  layout, themeDisplay, false);
64  
65              if (doAsUserId <= 0) {
66                  doAsUserId = company.getDefaultUser().getUserId();
67              }
68  
69              String encDoAsUserId = Encryptor.encrypt(
70                  company.getKeyObj(), String.valueOf(doAsUserId));
71  
72              doAsURL = HttpUtil.addParameter(
73                  doAsURL, "doAsUserId", encDoAsUserId);
74  
75              if (Validator.isNotNull(var)) {
76                  pageContext.setAttribute(var, doAsURL);
77              }
78              else if (writeOutput) {
79                  pageContext.getOut().print(doAsURL);
80              }
81  
82              return doAsURL;
83          }
84          catch (Exception e) {
85              throw new JspException(e);
86          }
87      }
88  
89  }