-
Notifications
You must be signed in to change notification settings - Fork 14
/
OrgUnitNewUserGroupBean.java
53 lines (43 loc) · 1.6 KB
/
OrgUnitNewUserGroupBean.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
/*
* Copyright 2010-2014 Glencoe Software, Inc. All rights reserved.
* Use is subject to license terms supplied in LICENSE.txt
*/
package ome.security.auth;
import java.util.ArrayList;
import java.util.List;
import ome.security.SecuritySystem;
import org.springframework.ldap.core.DistinguishedName;
import org.springframework.ldap.core.LdapOperations;
import org.springframework.ldap.core.LdapRdn;
/**
* Handles the ":ou:" specifier from omero-server.properties by adding the user
* to a group named by the final organizational unit. For example, if a user
* is in the group, "ou=HookeLab,ou=biology,ou=example", then the user will
* be added to the "HookeLab" group.
*
* @author Josh Moore, josh at glencoesoftware.com
* @see SecuritySystem
* @since Beta4.2
*/
public class OrgUnitNewUserGroupBean implements NewUserGroupBean {
private final DistinguishedName dn;
public OrgUnitNewUserGroupBean(DistinguishedName dn) {
this.dn = dn;
}
@SuppressWarnings("unchecked")
public List<Long> groups(String username, LdapConfig config,
LdapOperations ldap, RoleProvider provider,
final AttributeSet attrSet) {
final List<Long> groups = new ArrayList<Long>();
final List<LdapRdn> names = dn.getNames();
for (int i = names.size(); i > 0; i--) {
LdapRdn name = names.get(i-1);
if ("ou".equals(name.getKey())) {
final String grpName = name.getValue("ou");
groups.add(provider.createGroup(grpName, null, false, true));
break;
}
}
return groups;
}
}