1
14
15 package com.liferay.portal.workflow;
16
17 import com.liferay.portal.security.auth.PrincipalException;
18 import com.liferay.portal.security.permission.PermissionChecker;
19 import com.liferay.portal.security.permission.PermissionThreadLocal;
20
21 import org.aspectj.lang.ProceedingJoinPoint;
22
23
28 public class WorkflowPermissionAdvice {
29
30 public Object invoke(ProceedingJoinPoint proceedingJoinPoint)
31 throws Throwable {
32
33 String methodName = proceedingJoinPoint.getSignature().getName();
34 Object[] arguments = proceedingJoinPoint.getArgs();
35
36 if (methodName.equals(_ASSIGN_WORKFLOW_TASK_TO_USER_METHOD_NAME)) {
37 long userId = (Long)arguments[1];
38
39 PermissionChecker permissionChecker =
40 PermissionThreadLocal.getPermissionChecker();
41
42 if (permissionChecker.getUserId() != userId) {
43 throw new PrincipalException();
44 }
45 }
46
47 return proceedingJoinPoint.proceed();
48 }
49
50 private static final String _ASSIGN_WORKFLOW_TASK_TO_USER_METHOD_NAME =
51 "assignWorkflowTaskToUser";
52
53 }