mirrors
/
gitblit
mirror of https://github.com/gitblit/gitblit.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 43 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
76 Commits
11 Branches
Tree: f13c4c5a35
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f13c4c5a35'
${ noResults }
gitblit/src/com/gitblit/wicket/AuthorizationStrategy.java

AuthorizationStrategy.java 2.7KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. /*

  2.  * Copyright 2011 gitblit.com.

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *     http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. package com.gitblit.wicket;

  17. 

  18. import org.apache.wicket.Component;

  19. import org.apache.wicket.RestartResponseAtInterceptPageException;

  20. import org.apache.wicket.authorization.IUnauthorizedComponentInstantiationListener;

  21. import org.apache.wicket.authorization.strategies.page.AbstractPageAuthorizationStrategy;

  22. 

  23. import com.gitblit.GitBlit;

  24. import com.gitblit.Keys;

  25. import com.gitblit.wicket.models.UserModel;

  26. import com.gitblit.wicket.pages.RepositoriesPage;

  27. 

  28. public class AuthorizationStrategy extends AbstractPageAuthorizationStrategy implements IUnauthorizedComponentInstantiationListener {

  29. 

  30. 	public AuthorizationStrategy() {

  31. 	}

  32. 

  33. 	@SuppressWarnings({ "unchecked", "rawtypes" })

  34. 	@Override

  35. 	protected boolean isPageAuthorized(Class pageClass) {

  36. 		if (BasePage.class.isAssignableFrom(pageClass)) {

  37. 			boolean authenticateView = GitBlit.self().settings().getBoolean(Keys.web.authenticateViewPages, true);

  38. 			boolean authenticateAdmin = GitBlit.self().settings().getBoolean(Keys.web.authenticateAdminPages, true);

  39. 			boolean allowAdmin = GitBlit.self().settings().getBoolean(Keys.web.allowAdministration, true);

  40. 			

  41. 			GitBlitWebSession session = GitBlitWebSession.get();			

  42. 			if (authenticateView && !session.isLoggedIn()) {

  43. 				// authentication required

  44. 				return false;

  45. 			}

  46. 			

  47. 			UserModel user = session.getUser();

  48. 			if (pageClass.isAnnotationPresent(AdminPage.class)) {

  49. 				// admin page

  50. 				if (allowAdmin) {

  51. 					if (authenticateAdmin) {

  52. 						// authenticate admin

  53. 						if (user != null) {

  54. 							return user.canAdmin();

  55. 						}

  56. 						return false;

  57. 					} else {

  58. 						// no admin authentication required

  59. 						return true;

  60. 					}

  61. 				} else {

  62. 					//admin prohibited

  63. 					return false;

  64. 				}

  65. 			}

  66. 		}

  67. 		return true;

  68. 	}

  69. 

  70. 	@Override

  71. 	public void onUnauthorizedInstantiation(Component component) {

  72. 		if (component instanceof BasePage) {

  73. 			GitBlitWebSession session = GitBlitWebSession.get();

  74. 			if (!session.isLoggedIn())

  75. 				throw new RestartResponseAtInterceptPageException(LoginPage.class);

  76. 			else

  77. 				throw new RestartResponseAtInterceptPageException(RepositoriesPage.class);

  78. 		}

  79. 	}

  80. }