1
22
23 package com.liferay.portlet.shopping.service.permission;
24
25 import com.liferay.portal.PortalException;
26 import com.liferay.portal.SystemException;
27 import com.liferay.portal.security.auth.PrincipalException;
28 import com.liferay.portal.security.permission.ActionKeys;
29 import com.liferay.portal.security.permission.PermissionChecker;
30 import com.liferay.portlet.shopping.model.ShoppingOrder;
31 import com.liferay.portlet.shopping.service.ShoppingOrderLocalServiceUtil;
32
33
39 public class ShoppingOrderPermission {
40
41 public static void check(
42 PermissionChecker permissionChecker, long groupId, long orderId,
43 String actionId)
44 throws PortalException, SystemException {
45
46 if (!contains(permissionChecker, groupId, orderId, actionId)) {
47 throw new PrincipalException();
48 }
49 }
50
51 public static void check(
52 PermissionChecker permissionChecker, long groupId,
53 ShoppingOrder order, String actionId)
54 throws PortalException {
55
56 if (!contains(permissionChecker, groupId, order, actionId)) {
57 throw new PrincipalException();
58 }
59 }
60
61 public static boolean contains(
62 PermissionChecker permissionChecker, long groupId, long orderId,
63 String actionId)
64 throws PortalException, SystemException {
65
66 ShoppingOrder order =
67 ShoppingOrderLocalServiceUtil.getOrder(orderId);
68
69 return contains(permissionChecker, groupId, order, actionId);
70 }
71
72 public static boolean contains(
73 PermissionChecker permissionChecker, long groupId, ShoppingOrder order,
74 String actionId) {
75
76 if (ShoppingPermission.contains(
77 permissionChecker, groupId, ActionKeys.MANAGE_ORDERS)) {
78
79 return true;
80 }
81 else {
82 if (permissionChecker.hasOwnerPermission(
83 order.getCompanyId(), ShoppingOrder.class.getName(),
84 order.getOrderId(), order.getUserId(), actionId)) {
85
86 return true;
87 }
88
89 return permissionChecker.hasPermission(
90 order.getGroupId(), ShoppingOrder.class.getName(),
91 order.getOrderId(), actionId);
92 }
93 }
94
95 }