You need manage access to view the access log.
" ); return; } int days = 7; try { days = Integer.parseInt(req.getParameter("days")); } catch (Exception e){} out.println(""); // Bound days between 1 and 31 days = (days < 1)?1:((days>31)?31:days); long from = System.currentTimeMillis() - (days * MILLI_SECONDS_PER_DAY); final Map lastAccessed = new HashMap(); try { Enumeration events = NavigationEvent.findEvents(req.getResource().getPrimaryKey(), from ); while (events.hasMoreElements()) { Event event = (NavigationEvent)events.nextElement(); PrimaryKey userId = event.getActiveUserId(); Timestamp last = (Timestamp)lastAccessed.get(userId); if (last == null) { lastAccessed.put(userId, event.getEventTime()); } else { if (last.before(event.getEventTime())) { lastAccessed.put(userId, event.getEventTime()); } } } Object keys[] = (lastAccessed.keySet().toArray()); Arrays.sort(keys, new Comparator() { public int compare(Object o1, Object o2) { return ((Comparable)lastAccessed.get(o2)).compareTo(lastAccessed.get(o1)); } }); out.println("
| ");
if (keys[index] == null)
out.print("Unknown User");
else
out.print(User.findUser((PrimaryKey)keys[index]).getName());
out.println(" "); out.print(""); out.println(DateFormatter.formatDuration(System.currentTimeMillis() -((Timestamp)lastAccessed.get(keys[index])).getTime())); out.print(" ago"); out.print(""); out.print(" |
"); out.println("Download accesslog.csv"); } catch (BuildingServerException bse) { log.warn("Problem loading objects from database.", bse); } } /** * Send a CSV file of the access log. */ public void sendAccesslog ( Request req, HttpServletResponse resp) throws IOException { final long MILLI_SECONDS_PER_DAY = 86400000L; if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE) ) { resp.sendError(HttpServletResponse.SC_FORBIDDEN, "You need manage access"); return; } resp.setContentType("text/comma-separated-values"); resp.setHeader("Content-Disposition","attachment; filename=\"accesslog.csv\""); CSVWriter out = new CSVWriter(resp.getWriter()); int days = 7; try { days = Integer.parseInt(req.getParameter("days")); } catch (Exception e){} // Bound days between 1 and 31 days = (days < 1)?1:((days>31)?31:days); long from = System.currentTimeMillis() - (days * MILLI_SECONDS_PER_DAY); try { Enumeration events = NavigationEvent.findEvents(req.getResource().getPrimaryKey(), from ); while (events.hasMoreElements()) { NavigationEvent event = (NavigationEvent)events.nextElement(); User user = event.getActiveUser(); out.write(DateFormatter.formatDate(event.getEventTime(), DateFormatter.DEFAULT)); out.write((user == null)?"Unknown User":user.getName()); out.writeln(); } } catch (BuildingServerException e) { log.warn("Problem loading events.", e); } } public boolean clearCacheEntry( Object d, boolean force ) { //no cached data so no clean up to do //sub classes will have to over ride this do do fancy stuff return true; } public void init( Integer i, ResourceCreator def, List contains ) { id=i; //deffacility=def; try { bundle = ResourceBundle.getBundle("facility-"+ facilityname); } catch (MissingResourceException mre) { log.error("Couldn't find resource bundle for:"+ facilityname); } this.contains = new ArrayList(contains.size()); this.contains.addAll(contains); } public boolean generateFile( Request req, HttpServletResponse res ) throws ServletException, IOException { // generate a file, or select a previously generated file try { log.debug( "Generated file requested: " + req.getPageName() ); if ( req.getPageName().equals( "filelisting.xml" ) ) { return generateFileListing( req, res ); } else if ( req.getPageName().equals( "menu.xml" ) ) { return generateResourceMenu( req, res ); } else if ( req.getPageName().equals( "metadata.xml" ) ) { log.debug( "Generated file metadata.xml requested." ); File d = req.getResource().getGeneratedFileFolder(); File man = new File( d, "metadata.xml" ); if ( !man.exists() ) { PrintWriter writer = new PrintWriter( new FileWriter( man ) ); writer.println( "Just testing!" ); writer.close(); } res.setContentType( "text/plain" ); return true; } } catch ( BuildingServerException bsex ) { log.error(bsex.getMessage(), bsex ); throw new ServletException( bsex.getMessage() ); } return false; } public boolean generateFileListing( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { BuildingSession session; log.debug( "Generated file filelisting.xml requested." ); session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); session.generateFileListing(); log.debug( "Generated file filelisting.xml generated." ); res.setContentType( "text/plain" ); return true; } public boolean generateResourceMenu( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { BuildingSession session; log.debug( "Generated file menu.xml requested." ); session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); session.generateResourceMenu(); log.debug( "Generated file menu.xml generated." ); res.setContentType( "text/plain" ); return true; } public void sendVirtualFile( Request req, HttpServletResponse res ) throws ServletException, IOException { try { if ( req.getPageName().equals( "author.css" ) ) { styleSheet.sendAuthorStyleSheet( req, res ); } // user style sheets may have varying names to force the browser to reload when // options are changed. else if ( req.getPageName().startsWith( "user" ) && req.getPageName().endsWith( ".css" ) ) { styleSheet.sendUserStyleSheet( req, res ); } else if ( req.getPageName().startsWith( "auto" ) && req.getPageName().endsWith( ".css" ) ) { styleSheet.sendAutoStyleSheet( req, res ); } else if ( req.getPageName().equals( "logout.html" ) ) { logout(req, res); } else if ( req.getPageName().equals( "uploadconfirm.txt" ) ) { sendUploadConfirmation( req, res ); } else if ( req.getPageName().equals( "menuconfirm.txt" ) ) { sendMenuConfirmation( req, res ); } else if ( req.getPageName().equals( "createfolderconfirm.txt" ) ) { sendCreateFolderConfirmation( req, res ); } else if ( req.getPageName().equals( "renameconfirm.txt" ) ) { sendRenameConfirmation( req, res ); } else if ( req.getPageName().equals( "deleteconfirm.txt" ) ) { sendDeleteConfirmation( req, res ); } else if ( req.getPageName().equals( "undeleteconfirm.txt" ) ) { sendUndeleteConfirmation( req, res ); } else if ( req.getPageName().equals( "userclientcert.cer" ) ) { sendUserClientCert( req, res ); } else if ( req.getPageName().equals("accesslog.csv")) { sendAccesslog(req, res); } //uhi:awc zips up webDocument content packages in resource tree else if ( req.getPageName().equals( "imsCP_WebDocuments.zip" ) ) { ResourceUtils.sendWebDocumentContentPackages(req, res); } else { res.setContentType( "text/plain" ); PrintWriter writer = new PrintWriter( res.getWriter() ); writer.println( "ERROR" ); writer.print( "Unknown virtual file requested: " ); writer.println( req.getPageName() ); writer.close(); } } catch ( BuildingServerException bsex ) { if (!(bsex instanceof BuildingServerUserException)) log.error( bsex.getMessage(), bsex ); try { res.setContentType( "text/plain" ); PrintWriter writer = new PrintWriter( res.getWriter() ); writer.println( "ERROR" ); writer.println( bsex.friendlyMessage() ); writer.close(); } catch ( Throwable th ) { throw new ServletException( th.getMessage() ); } } } public void writeClientX509( Request request, PrintWriter writer ) throws IOException { Object obj = request.getAttribute( "javax.servlet.request.X509Certificate" ); if ( obj == null ) { writer.println( "No client X509 certificate in page request." ); return; } if ( !(obj instanceof java.security.cert.X509Certificate[]) ) { writer.println( "Request attribute had wrong data type." ); return; } java.security.cert.X509Certificate[] certs = (java.security.cert.X509Certificate[])obj; for ( int i=0; i
You need sysadmin permission to change this.
"); return; } BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( val == null || val.length()==0 ) session.unspecifyProperty( name ); else session.specifyProperty( name, val ); out.print( "Saved property.
" ); } catch ( BuildingServerException bsex ) { log.error( bsex.getMessage(), bsex ); throw new ServletException( bsex.getMessage() ); } } public void sendMenuConfirmation( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { String file = req.getParameterFileLocation( "file" ); PrintWriter writer = new PrintWriter( res.getWriter() ); res.setContentType( "text/plain" ); if ( file == null || file.length()==0 ) { writer.println( "ERROR" ); writer.println( "No file was sent to the server." ); return; } BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); session.transferResourceMenu( file ); writer.println( "OK" ); } public void sendCreateFolderConfirmation( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { String newname = req.getParameter( "folder_name" ); PrintWriter writer = new PrintWriter( res.getWriter() ); res.setContentType( "text/plain" ); if ( newname == null || newname.length()==0 ) { writer.println( "ERROR" ); writer.println( "No folder name was sent to the server." ); return; } if ( newname.length()>255 ) { writer.println( "ERROR" ); writer.println( "Name is too long." ); return; } if ( newname.indexOf( '/' ) >=0 || newname.indexOf( '\\' ) >=0 ) { writer.println( "ERROR" ); writer.println( "Name cannot contain forward or backward slashes." ); return; } BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); String base = fileParameter( req ); if ( base.length()>0 && !base.endsWith( "/" ) ) base = base + "/"; session.getUploadedFileSession().createFolder( base + newname ); writer.println( "OK" ); } public void sendRenameConfirmation( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { String newname = req.getParameter( "file_name" ); PrintWriter writer = new PrintWriter( res.getWriter() ); res.setContentType( "text/plain" ); if ( newname == null || newname.length()==0 ) { writer.println( "ERROR" ); writer.println( "No file name was sent to the server." ); return; } if ( newname.length()>255 ) { writer.println( "ERROR" ); writer.println( "Name is too long." ); return; } if ( newname.indexOf( '/' ) >=0 || newname.indexOf( '\\' ) >=0 ) { writer.println( "ERROR" ); writer.println( "Name cannot contain forward or backward slashes." ); return; } BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); session.getUploadedFileSession().renameFile( fileParameter( req ), newname ); writer.println( "OK" ); } public void sendDeleteConfirmation( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { PrintWriter writer = new PrintWriter( res.getWriter() ); res.setContentType( "text/plain" ); BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); session.getUploadedFileSession().deleteFile( fileParameter( req ) ); writer.println( "OK" ); } public void sendUndeleteConfirmation( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { String recurse = req.getParameter( "recurse" ); PrintWriter writer = new PrintWriter( res.getWriter() ); res.setContentType( "text/plain" ); BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); session.getUploadedFileSession().undeleteFile( fileParameter( req ), recurse != null && recurse.length() > 0 ); writer.println( "OK" ); } public void sendUploadConfirmation( Request req, HttpServletResponse res ) throws IOException, BuildingServerException { PrintWriter out = new PrintWriter( res.getWriter() ); res.setContentType( "text/plain" ); StringBuffer dest_filename=new StringBuffer(); String file, file_name; BuildingSession session; UploadedFileSummary summary; file = req.getParameterFileLocation( "file" ); file_name = req.getParameterFileName( "file" ); if ( file_name == null || file_name.length() == 0 ) { out.println( "ERROR" ); out.println( "Upload failed because no file name was supplied in the form." ); return; } dest_filename.append( fileParameter( req ) ); if ( dest_filename.length()>0 ) dest_filename.append( "/" ); session = BuildingSessionManagerImpl.getSession( req.getResource() ); if ( session==null ) throw new BuildingServerException( "Unable to access the destination resource." ); if ( file!=null && file_name!=null ) { if ( file_name.indexOf( '/' )>=0 ) { out.println( "ERROR" ); out.println( "File names may not contain any slash characters." ); return; } dest_filename.append( file_name ); summary = session.getUploadedFileSession().transferFile( file, dest_filename.toString(), null ); out.println( "OK" ); UserFileEvent event = new UserFileEvent(UserFileEvent.EVENT_UPLOAD, req.getResource(), summary); event.save(); } } /** * Insert some output within the context of the current request. This method * will typically perform some logic and then write some content to the * writer object. Typically, this method is invoked from legacy templates * when abuilding element is encountered. The value of the
* command attribute corresponds to the command
* parameter of this method. Likewise for the (optional) name
* attribute. The command parameter typically refers to an
* internal method of the same name. The name parameter is
* intended as an additional (optional) parameter that can be passed to the
* command and as such its semantics are dependant on the command in
* question.
* @param req the request object.
* @param out The writer object, this will be null
* if the command is inside an if statement that isn't being executed.
* @param command the name of the command.
* @param name an additional parameter to pass to the command.
* @see org.bodington.servlet.template.LegacyTemplate
*/
public void insert( Request req, PrintWriter out, String command, String name )
throws ServletException, IOException
{
log.debug( getClass().getName() );
//if ( !getClass().getName().equals( "org.bodington.servlet.facilities.Facility" ) )
// return "\n";
if ( command.equalsIgnoreCase( "CREATE" ) )
{
if ( out!=null )
createconfirm( req, out, name, true );
return;
}
if ( command.equalsIgnoreCase( "modify" ) )
{
if ( out!=null )
confirmmodify( req, out );
return;
}
if ( command.equalsIgnoreCase( "MOVE" ) )
{
if ( out!=null )
moveconfirm( req, out );
return;
}
if ( command.equalsIgnoreCase( "copy" ) )
{
if ( out!=null )
copyconfirm( req, out );
return;
}
if ( command.equalsIgnoreCase( "delete" ) )
{
if ( out!=null )
deleteconfirm( req, out );
return;
}
if ( command.equalsIgnoreCase( "deletewarn" ) )
{
if ( out!=null )
deletewarn(req, out);
return;
}
if ( command.equalsIgnoreCase( "VARIABLE" ) )
{
if ( out!=null )
variable( req, out, name, false );
return;
}
if ( command.equalsIgnoreCase( "VARIABLEF" ) )
{
if ( out!=null )
variable( req, out, name, true );
return;
}
if ( command.equalsIgnoreCase( "NAVIGATION" ) )
{
if ( out!=null )
{
navigation( req, out, name );
}
return;
}
if ( command.equalsIgnoreCase( "resourcemenu" ) )
{
if ( out!=null )
{
resourceMenu( req, out );
}
return;
}
if ( command.equalsIgnoreCase( "stylesheet" ) )
{
if ( out!=null )
styleSheet.stylesheet( req, out );
return;
}
if ( command.equalsIgnoreCase( "javascript" ) )
{
if ( out != null )
javascript ( req, out );
return;
}
if ( command.equalsIgnoreCase( "usercreatelist" ) )
{
if ( out != null )
writeCreateMenu(out, req, false);
return;
}
if ( command.equalsIgnoreCase( "admincreatelist" ) )
{
if ( out != null )
writeCreateMenu(out, req, true);
return;
}
if ( command.equalsIgnoreCase( "userevent" ) )
{
if ( out!=null )
userevent( req, out );
return;
}
if ( command.equalsIgnoreCase( "eventlog" ) )
{
if ( out!=null )
eventlog( req, out );
return;
}
if ( command.equalsIgnoreCase("reorder") )
{
if ( out!=null )
reorder( req, out );
return;
}
if ( command.equalsIgnoreCase("reordercontrol") )
{
if ( out!=null )
reordercontrol( req, out );
return;
}
if ( command.equalsIgnoreCase( "ifcanreorder" ) )
{
ifcanreorder( req );
return;
}
if ( command.equalsIgnoreCase( "ifloggedin" ) )
{
ifloggedin( req );
return;
}
if ( command.equalsIgnoreCase( "IFACCESS" ) )
{
ifaccess( req, name );
return;
}
if ( command.equalsIgnoreCase( "ELSE" ) )
{
req.setSwitchedOff( !req.isSwitchedOff() );
return;
}
if ( command.equalsIgnoreCase( "ENDIF" ) )
{
req.setSwitchedOff( false );
return;
}
if ( command.equalsIgnoreCase( "parentaclform" ) )
{
if ( out!=null )
parentaclform( req, out );
return;
}
if ( command.equalsIgnoreCase( "acl" ) )
{
if ( out!=null )
acl( req, out );
return;
}
if ( command.equalsIgnoreCase( "aclentry" ) )
{
if ( out!=null )
aclentry( req, out );
return;
}
if ( command.equalsIgnoreCase( "addaclentry" ) )
{
if ( out!=null )
addaclentry( req, out );
return;
}
if ( command.equalsIgnoreCase( "accessoperation" ) )
{
if ( out!=null )
accessoperation( req, out );
return;
}
if ( command.equalsIgnoreCase( "groupmenu" ) )
{
if ( out!=null )
groupmenu( req, out );
return;
}
if ( command.equalsIgnoreCase( "groupoperation" ) )
{
if ( out!=null )
groupoperation( req, out );
return;
}
if ( command.equalsIgnoreCase( "rawfileindex" ) )
{
if ( out!=null )
{
rawfileindex( req, out );
}
return;
}
if ( command.equalsIgnoreCase( "fileindex" ) )
{
if ( out!=null )
{
boolean show_root = req.getInsertAttribute( "root", "no" ).equalsIgnoreCase( "yes" );
boolean hide_deleted = req.getInsertAttribute( "hidedeleted", "yes" ).equalsIgnoreCase( "yes" );
int link_type = 0;
if ( req.getInsertAttribute( "link", "download" ).equalsIgnoreCase( "info" ) )
link_type=1;
String target = req.getInsertAttribute( "target", null );
fileindex( req, out, null, show_root, hide_deleted, link_type, target );
}
return;
}
if ( command.equalsIgnoreCase( "fileinfo" ) )
{
if ( out!=null )
fileinfo( req, out );
return;
}
if ( command.equalsIgnoreCase( "filerename" ) )
{
if ( out!=null )
filerename( req, out );
return;
}
if ( command.equalsIgnoreCase( "fileisdeleted" ) )
{
req.setSwitchedOff( !fileisdeleted( req ) );
return;
}
if ( command.equalsIgnoreCase( "foldercreate" ) )
{
if ( out!=null )
foldercreate( req, out );
return;
}
if ( command.equalsIgnoreCase( "upload" ) )
{
if ( out!=null )
{
if ("expand".equalsIgnoreCase( name ))
uploadzip( req, out );
else
upload( req, out, ("raw").equalsIgnoreCase(name) );
}
return;
}
if ( command.equalsIgnoreCase( "filedelete" ) )
{
if ( out!=null )
filedelete( req, out, true );
return;
}
if ( command.equalsIgnoreCase( "fileundelete" ) )
{
if ( out!=null )
filedelete( req, out, false );
return;
}
if ( command.equalsIgnoreCase( "metadata" ) )
{
if ( out!=null )
metadata( req, out );
return;
}
if ( command.equalsIgnoreCase( "metadataupload" ) )
{
if ( out!=null )
metadataupload( req, out );
return;
}
if ( command.equalsIgnoreCase( "metadatasearch" ) )
{
if ( out!=null )
metadatasearch( req, out );
return;
}
if ( command.equalsIgnoreCase( "importresource" ) )
{
if ( out!=null )
importresource( req, out, name );
return;
}
if ( command.equalsIgnoreCase( "generatemanifest" ) )
{
if ( out!=null )
generatemanifest( req, out );
return;
}
if ( command.equalsIgnoreCase( "refresh" ) )
{
if ( out!=null )
{
outputPostSessionRefresh(req, out);
}
return;
}
if ( command.equalsIgnoreCase( "zonecontrol" ) )
{
if ( out!=null )
zonecontrol( req, out );
return;
}
if ( command.equalsIgnoreCase( "zoneconfirm" ) )
{
if ( out!=null )
zoneconfirm( req, out );
return;
}
if ( command.equalsIgnoreCase( "approot" ) )
{
if ( out!=null )
approot(req, out);
return;
}
// uhi:awc: added insert command to return username
if ( command.equalsIgnoreCase( "username" ) )
{
if ( out!=null )
{
String username = getUsername(req);
if ( username == null )
username = "anonymous";
out.print( username );
}
return;
}
if (command.equalsIgnoreCase("uploadlimit"))
{
if ( out != null )
uploadLimit( req, out );
return;
}
if (command.equalsIgnoreCase("tinyurl"))
{
if ( out != null )
tinyUrl( req, out );
return;
}
if (command.equalsIgnoreCase("allowedtags"))
{
if ( out != null )
allowedTags( req, out );
return;
}
// uhi:awc: added insert command to return url with username appended to query - url supplied by insertname
if ( command.equalsIgnoreCase( "usernameloginurl" ) )
{
if ( out!=null )
{
String loginUrl = getUsernameLoginUrl(req, name);
out.print( loginUrl );
}
return;
}
// http or
* https.
* @param action the handler for the form, e.g.
* bs_template_login_step1.html.
*/
public void loginShowFormTag( Request req, PrintWriter out, String protocol, String action )
{
loginOpenFormTag( req, out, protocol, action, "post" );
}
/*
* WebLearn additions. [28/02/05] Alexis O'Connor. --->>>
*
* Numerous methods
* added to get WebLearn / WebAuth login to work. These methods are generic
* servlet related functions as opposed to the existing methods, many of
* which encapsulate business logic.
*/
/**
* Is the parameter true. The value of a parameter is true if
* it is present and equal to YES, otherwise it is
* false.
* @param request the request object.
* @param name the name of the parameter.
* @return true if the value of the parameter is
* YES, otherwise false.
*/
public boolean isParameterTrue( Request request, String name )
{
String value = request.getParameter( name );
return (value == null) ? false : "YES".equals( value );
}
/**
* Indicates whether the parameter is present in the request. This method
* just checks to see whether a given parameter is present in the request,
* regardless of it's actual value. This method is case-sensitive.
* @param request the request object.
* @param name the name of the parameter.
* @return true if the value of the specified parameter is
* not null, otherwise false.
*/
public boolean isParameterPresent(Request request, String name)
{
return request.getParameter( name ) != null;
}
/**
* Hide the specified parameter. This will write an HTML input control of
* the type hidden. This will hide the specified parameter,
* acquiring its value from the current request. This should be called
* within the body of an HTML form.
* @param request the request object.
* @param writer the writer object (output stream).
* @param name the name of the parameter.
* @param escape specify whether or not to escape the parameter
* for HTML entities.
*/
public void hideParameter( Request request, PrintWriter writer, String name, boolean escape )
{
String value = request.getParameter( name );
hideParameter( writer, name, value, escape );
}
/**
* Hide the specified parameter. This will write an HTML input control of
* the type hidden. This should be called within the body of
* an HTML form.
* @param writer the writer object (output stream).
* @param name the name of the parameter.
* @param value the value of the parameter.
* @param escape specify whether or not to escape the parameter
* for HTML entities.
*/
public void hideParameter( PrintWriter writer, String name, String value, boolean escape )
{
value = escape ? EscapedHtmlWriter.filter(value) : value;
writer.print( "" );
}
/**
* Hide all of the parameters. This takes all the parameters that it can
* find in the request and outputs them as hidden variables. Each parameter
* name-value pair is output as an HTML input control of the type
* hidden. This must be called within the body of an HTML
* form.
* @param request the request object.
* @param writer the writer object (output stream).
* @param escape specify whether or not to escape the parameter
* for HTML entities.
*/
public void hideParameters( Request request, PrintWriter writer, boolean escape )
{
Enumeration parameters = request.getParameterNames();
while ( parameters.hasMoreElements() )
{
String name = (String) parameters.nextElement();
hideParameter( writer, name, request.getParameter( name), escape );
}
}
/**
* Checks to see if the specified username and password are OK. Intended
* purely as a debugging method. Essentially if
* password.equals("iam" + username) then true
* is returned.
* @param username the username.
* @param password the corresponding password.
* @return true if the username and password match, otherwise
* false.
*/
public boolean isUsernameAndPasswordGoodToGo( String username,
String password )
{
return password.equals( "iam" + username );
}
/**
* Send a redirect request to the client user agent.
* @param response the response object
* @param path the target path of the redirect.
*/
public void redirect( Response response, String path )
{
try
{
response.sendRedirect( response.encodeRedirectURL( path ) );
}
catch ( IOException e )
{
e.printStackTrace();
}
}
/**
* Get the value of the specified parameter. Where a parameter has no
* matching value, the blank string ("") is returned.
* @param request the request object.
* @param name the name of the parameter.
* @return the value of the requested parameter.
*/
public String getParameter( Request request, String name )
{
String value = request.getParameter( name );
return (value != null) ? value : "";
}
/**
* Write a textfield object. This will write an HTML input control of the
* type text. This should be called within the body of an
* HTML form.
* @param writer the writer object (output stream).
* @param name the name of the parameter.
* @param value the value of the parameter.
*/
public void textField( PrintWriter writer, String name, String value )
{
writer.print( "" );
}
/**
* Append a query to the specified path. This will append the specified
* name-value query pair to the path whether or not query parameters already
* exist.
* @param path the current target URL.
* @param name the name of the parameter.
* @param value the value of the parameter.
* @return a path with the specified name-value query pair appended to it.
*/
public String appendQuery( String path, String name, String value )
{
path += (path.lastIndexOf( '?' ) == -1) ? '?' : '&';
path += name + '=' + value;
return path;
}
/**
* Set a value within the current session.
* @param request the request object.
* @param name the name of the parameter.
* @param value the value of the parameter.
*/
void setSessionValue( Request request, String name, Object value )
{
javax.servlet.http.HttpSession session = request.getSession();
request.setAttribute( name, value );
}
/**
* Get a value from within the current session. If no matching value is
* found, then null is returned.
* @param request the request object.
* @param name the name of the parameter.
* @return the session value matching the name, or null if
* none exists.
*/
Object sessionValue( Request request, String name )
{
javax.servlet.http.HttpSession session = request.getSession();
return session.getAttribute( name );
}
/**
* Set a value within the current session.
* @param request the request object.
* @param name the name of the parameter.
* @param value the value of the parameter.
*/
public void setSessionValue( Request request, String name, boolean value )
{
setSessionValue( request, name, value ? Boolean.TRUE : Boolean.FALSE );
}
/**
* Set a value within the current session.
* @param request the request object.
* @param name the name of the parameter.
* @param value the value of the parameter.
*/
public void setSessionValue( Request request, String name, String value )
{
setSessionValue( request, name, (Object)value );
}
/**
* Get a value from within the current session. If no matching value is
* found, then the blank string ("") is returned.
* @param request the request object.
* @param name the name of the parameter.
* @return the session value matching the name, or "" if none
* exists.
*/
public String getSessionValue( Request request, String name )
{
Object value = sessionValue( request, name );
return (value != null) ? (String)value : "";
}
/**
* Get a value from within the current session. If no matching value is
* found, then the value false is returned.
* @param request the request object.
* @param name the name of the parameter.
* @return the session value matching the name, or false if
* none exists.
*/
public boolean isSessionValue( Request request, String name )
{
Object value = sessionValue( request, name );
return (value != null) ? ((Boolean)value).booleanValue() : false;
}
/**
* Is the name a user in the system (Bodington). This checks to see whether
* the specified name is that of a user that Bodington already knows about.
* @deprecated Does this presentation layer need this?
* @param username the name of the user.
* @return true if this user is a name in the system,
* otherwise false.
*/
public boolean isSystemUser( String username )
{
try
{
return PassPhrase.findPassPhraseByUserName( username ) != null;
}
catch ( BuildingServerException e )
{
return false;
}
}
/**
* Is the name a user in the WebAuth system. This checks to see whether the
* specified name is that of a user that WebAuth knows about. The possible
* values are:
* -
*
YES: they are an Oxford / WebAuth user. *NO: they are not an Oxford / WebAuth user. *FAIL: there was some problem with the Delmonte * service. *
* (WebLearn (addition) [03/03/05] Alexis O'Connor).
* @param username the name of the user.
* @return either the value YES, NO or
* FAIL.
*/
public String delmonteSay( String username )
{
if (isWebAuthEnabled())
{
try
{
return WebAuthUser.findWebAuthUserByUserName( username ) != null ? "YES" : "NO";
}
catch ( BuildingServerException e )
{
return "FAIL";
}
}
else
return "NO";
}
/**
* Indicates whether this application is utilizing WebAuth for
* authentication.
* @return trueif the application is utilizing WebAuth for
* authentication, otherwise false.
*/
public boolean isWebAuthEnabled()
{
return "true".equalsIgnoreCase( BuildingContext.getProperty(
"weblearn.webauth.authentication", "true" ) );
}
/**
* Write a login form to the response.
* @param req the request.
* @param out the object to write the response to.
* @param protocol the protocol being used, e.g. http or
* https. If the Bodington installation doesn't have https
* we fall back to http.
* @param action the handler for the form, e.g.
* bs_template_login_step1.html.
* @param method the http method, e.g. post or get.
*/
public void loginOpenFormTag( Request req, PrintWriter out, String protocol, String action, String method )
{
// target="_top" ensures that following login page fills window
// may be important if user ends up in sub frame by accident when they
// log in.
out.print( "
* (WebLearn (addition) [03/03/05] Alexis O'Connor). * @param request the request object. * @return true if the user authenticated via WebAuth, otherwise false. */ public boolean isWebAuthAuthenticated( Request request ) { try { NavigationSession session = request.getServerNavigationSession(); return session.isAuthenticated() && WebAuthAuthenticator.ALIAS.equals(session .getAuthenticatorAlias()); } catch (BuildingServerException e) { log.error("Should Never Happen", e); } return false; } /** * Write a hyperlink. This will write an HTML 'A' element. * @param writer the writer object (output stream). * @param href the URI of the desination web resource. * @param content the text of the link. */ public void hyperlink( PrintWriter writer, String href, String content ) { writer.print( "" + content + "" ); } /** * Write a hyperlink. This will write an HTML 'A' element. * @param writer the writer object (output stream). * @param href the URI of the desination web resource. * @param content the text of the link. * @param target the target frame for the destination. */ public void hyperlink( PrintWriter writer, String href, String content, String target ) { writer.print( "" + content + "" ); } /** * Indicates whether the current resource is at the default URL. * The default URL is the URL that is built by concatenating the * name of resources in their hierarchical structure to form an * absolute URL. This method is intended as a override point for facilities * that handle resources for which there is effectively no logical default * URL, or put another way do not render a page in response to being accessed * via their default URL. These typically take the form of resources that * are rendered within the resource menu of another container resource. *
* NOTE: This method is intended to be called from templates. *
* @returntrue if the current resource is at the default
* URL, otherwise false.
* @see Resource#getFullName()
*/
public boolean isResourceAtDefaultURL()
{
return true;
}
/**
* Write out a hyperlink to the current resource. This method will write
* out a hyperlink which uses the label parameter as the
* label.
* * NOTE: This method is intended to be called from templates. *
* @param request the current request. * @param out an object to write to. * @param label the label for the hyperlink (the visible string). */ public void linkToResource( Request request, PrintWriter out, String label ) { /* * TODO: Under construction! */ /* * NOTES: if templates could handle maps, then this method could have * a map argument, which would enable passing arbitrary quantities of * additional attributes such as target, title, etc as name-value pairs. * In the absence of which, attributes such as these have to be * "hard-wired" for the sake of pragmatism / sanity! */ try { out.print("" + label + "" ); } catch ( BuildingServerException bsex ) { } } /** * Write out a hyperlink to the parent resource. This method will write * out a hyperlink which uses thelabel parameter as the
* label.
* * NOTE: This method is intended to be called from templates. *
* @param request the current request. * @param out an object to write to. * @param label the label for the hyperlink (the visible string). */ public void linkToParent( Request request, PrintWriter out, String label ) { /* * NOTES: if templates could handle maps, then this method could have * a map argument, which would enable passing arbitrary quantities of * additional attributes such as target, title, etc as name-value pairs. * In the absence of which, attributes such as these have to be * "hard-wired" for the sake of pragmatism / sanity! */ try { out.print("" + label + "" ); } catch ( BuildingServerException bsex ) { } } /* * <<<--- WebLearn additions. [28/02/05] Alexis O'Connor. */ public boolean loginHelpRequested( Request request ) { String param = request.getParameter( "org_bodington_servlet_help" ); return param != null && param.length() > 0; } /** * Write a hyperlink to the entry path out to the print writer. The label * will take the value of thelabel parameter.
* @param req the request.
* @param out the object to write to.
* @param label the label for the hyperlink.
*/
public void loginOriginalLink( Request req, PrintWriter out, String label )
{
String original_path = loginEntryPath( req );
out.print( "" );
out.print( label );
out.print( "" );
}
/**
* Uses http url connection to external application for logout
* uhi:awc
* @param out The PrintWriter.
* @param logoutUrl The url of external application for logout.
*/
public void externalLogout( PrintWriter out, String logoutUrl )
{
int response = 0;
try
{
URL url = new URL(logoutUrl);
HttpURLConnection connection = (HttpURLConnection)url.openConnection();
response = connection.getResponseCode();
//uhi:awc log response if not successful
}
catch ( Exception e )
{
log.info("External logout failed (URL: " + logoutUrl
+ " response: " + response + ") " + e.getMessage(), e);
}
}
/**
* Make the logout link always be https if the user is logged in through
* WebAuth as the webauth module doesn't clean the cookes out otherwise.
*/
public void logoutLink ( Request request, PrintWriter out )
{
out.print("Logout");
}
private void logout ( Request req, HttpServletResponse resp ) throws IOException
{
boolean webAuth = isWebAuthAuthenticated( req );
String logoutURL = BuildingContext.getProperty("weblearn.webauth.logout");
boolean canLogout = !webAuth || ( logoutURL != null && logoutURL.length() > 0);
if (canLogout)
{
logout ( req, resp.getWriter() );
if (webAuth)
resp.sendRedirect(logoutURL);
else
resp.sendRedirect(new BodingtonURL(req).getResourceUrl(req.getResource()));
}
else
resp.sendRedirect("bs_template_logout_wa.html");
}
public void logout( Request req, PrintWriter out )
{
try
{
NavigationSession nav_session = req.getServerNavigationSession();
if ( nav_session == null )
return;
nav_session.clearAuthenticationCredentials();
// This should clear up the HttpSession and prevent preferences
// crossing sessions.
// XXX: Check that this really is sensible
org.bodington.servlet.HttpSession session = (org.bodington.servlet.HttpSession)req.getSession( false );
if (session != null)
session.cleanout();
}
catch ( Exception e )
{
if ( out != null )
out.print( "It was not possible to log you out for technical reasons.
" ); log.error( e.getMessage(), e ); } } private void parentaclform( Request breq, PrintWriter out ) throws IOException { boolean is_owners, is_local; String name; if ( !breq.isAuthenticated() ) { out.println( "You haven't checked in to the building so you can't control access.
" ); return; } if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE ) ) { out.println( "
You need manage access to control access for others.
" ); return; } out.println( "
You haven't checked in to the building so you can't control access.
" ); return; } if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE ) ) { out.println( "
You need manage access to control access for others.
" ); return; } out.println( "
| " );
out.println( "
You haven't checked in to the building so you can't change access rights.
" ); return; } if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE) ) { out.println( "
You need manage access rights to view access rights.
" ); return; } try { Resource resource = breq.getResource(); org.bodington.server.realm.Acl acl = resource.getAcl(); //out.println( "
" + acl.toString() );
//Enumeration enumeration = acl.entries();
AclEntry aclentry;
out.println( "" );
out.print( "" );
aclentry=acl.getAclEntry( group_id, false );
if ( aclentry==null )
{
out.println( "The selected access control entry no longer exists." );
return;
}
Group group =aclentry.getGroup();
out.println( "" );
out.println( "" );
if ( group.isLocalGroup() )
out.print( group.getLocalName() );
else
out.print( group.getName() );
out.println( " " );
out.println( "" );
out.print( group.getDescription() );
out.println( " " );
out.println( "" );
if ( group.isOwnersGroup() )
{
out.print( "You cannot remove see, view or manage access from the owners group.
" );
}
Enumeration enumeration = Permission.permissions();
Permission p;
boolean first=true;
while ( enumeration.hasMoreElements() )
{
p = (Permission)enumeration.nextElement();
if ( group.isOwnersGroup() && ( p.equals( Permission.SEE ) ||
p.equals( Permission.VIEW ) ||
p.equals( Permission.MANAGE ) ) )
continue;
if ( p.equals( Permission.ADMINISTER ) || p.equals( Permission.SYSADMIN ) )
{
if ( !resource.checkPermission( Permission.SYSADMIN ) )
continue;
}
if ( !first ) out.println( "
" );
first=false;
out.print( "" );
out.print( "" );
out.print( p.toString() );
out.println( "" );
}
out.println( " " );
return;
}
catch ( Exception ex )
{
out.println( "" + ex + "
" );
return;
}
}
private void addaclentry( Request breq, PrintWriter out )
throws IOException
{
Group group;
int i;
if ( !breq.isAuthenticated() )
{
out.println( "
You haven't checked in to the building so you can't change access rights.
" );
return;
}
if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE) )
{
out.println( "
You need manage access rights to view access rights.
" );
return;
}
String base = breq.getParameter( "base" );
String parent = null;
if ( base != null )
{
if ( !base.endsWith( "*" ) )
base = null;
else
{
base = base.substring( 0, base.length()-1 );
int secondLastDot = base.lastIndexOf('.', base.lastIndexOf('.')-1 );
if (secondLastDot != -1)
{
parent = base.substring(0, secondLastDot+1) + "*";
}
}
}
try
{
Resource resource = breq.getResource();
org.bodington.server.realm.Acl acl = resource.getAcl();
//out.println( "" + acl.toString() );
//Enumeration enumeration = acl.entries();
AclEntry aclentry;
Vector groups = new Vector();
Vector headings = new Vector();
Enumeration enumeration;
if ( base==null || base.length()==0 )
{
enumeration = Group.findGroups( "name LIKE 'localgroup." +
resource.getResourceId() +
".%'", "name" );
while ( enumeration.hasMoreElements() )
groups.addElement( enumeration.nextElement() );
}
if ( base==null || base.length()==0 )
enumeration = org.bodington.server.realm.Group.findGroups( "name NOT LIKE 'localgroup.%'", "name" );
else
enumeration = org.bodington.server.realm.Group.findGroups( "name LIKE '" + base + "%'", "name" );
String name;
int dot_offset;
while ( enumeration.hasMoreElements() )
{
if ( base==null )
groups.addElement( enumeration.nextElement() );
else
{
group = (org.bodington.server.realm.Group)enumeration.nextElement();
name = group.getName();
if ( !name.startsWith( base ) )
continue;
dot_offset = name.indexOf( '.', base.length() );
if ( dot_offset < 0 || (base.length()==0 && name.startsWith( "localgroup." ) ) )
groups.addElement( group );
else
{
name = base+name.substring( base.length(), dot_offset )+".*";
if ( !headings.contains( name ) )
headings.addElement( name );
}
}
}
out.print( "" );
for ( i=0; i" + ex + "" ); return; } } /** *Entry point for ACL chenges. * @param breq The request through which the change is being made * @param out The Writer to print messages to. * @throws IOException Could probably go, but used method throw it. */ private void accessoperation( Request breq, PrintWriter out ) throws IOException { String op=breq.getParameter( "operation" ); if ( op==null ) return; op=op.trim(); if ( op.length()==0 ) return; if (!breq.getResource().checkPermission(Permission.MANAGE)) { out.println( "
| " ); out.println( "You don't have manage access."); out.println( " |
| " ); out.println( "Change to use of containing location: " ); String str = breq.getParameter( "parentacl" ); try { breq.getResource().setUseParentAcl( str!=null && str.equalsIgnoreCase( "yes" ) ); breq.getResource().save(); out.println( "CONFIRMED" ); } catch ( BuildingServerException bsex ) { out.println( "Technical problem trying to save option change: " + bsex.toString() ); } out.println( ". |
| " ); out.println( "" ); g=breq.getParameter( "group_id" ); if ( g==null ) { out.println( " Problem: no group_id was specified. |
" + ex + "" ); return; } } private void aclentrychange( Request breq, PrintWriter out, PrimaryKey group_id ) throws IOException { String box; out.println( "Access Change: " ); try { Resource resource = breq.getResource(); org.bodington.server.realm.Acl acl = resource.getAcl(); //out.println( "
" + acl.toString() );
AclEntry aclentry;
aclentry=acl.getAclEntry( group_id, false );
if ( aclentry==null )
{
out.println( "The selected access control entry no longer exists." );
return;
}
Enumeration enumeration = Permission.permissions();
Permission p;
while ( enumeration.hasMoreElements() )
{
p = (Permission)enumeration.nextElement();
if ( aclentry.getGroup().isOwnersGroup() && ( p.equals( Permission.SEE ) ||
p.equals( Permission.VIEW ) ||
p.equals( Permission.MANAGE ) ) )
continue;
if ( p.equals( Permission.ADMINISTER ) || p.equals( Permission.SYSADMIN ) )
{
if ( !resource.checkPermission( Permission.SYSADMIN ) )
continue;
}
box = breq.getParameter( p.toString() );
if ( box!=null && box.equals( "on" ) )
aclentry.addPermission( p );
else
aclentry.removePermission( p );
}
aclentry.save();
out.println( " CONFIRMED." );
return;
}
catch ( Exception ex )
{
out.println( " Problem: " + ex + "
" );
return;
}
}
private void aclentryremove( Request breq, PrintWriter out, PrimaryKey group_id )
throws IOException
{
String box;
out.println( "Remove access : " );
try
{
Resource resource = breq.getResource();
org.bodington.server.realm.Acl acl = resource.getAcl();
//out.println( "" + acl.toString() );
AclEntry aclentry;
aclentry=acl.getAclEntry( group_id, false );
if ( aclentry==null )
{
out.println( "The selected access control entry no longer exists." );
return;
}
if ( aclentry.getGroup().isOwnersGroup() )
{
out.println( "You can't remove the owners group from the access control." );
return;
}
acl.removeEntry( aclentry );
acl.save();
out.println( " CONFIRMED." );
return;
}
catch ( Exception ex )
{
out.println( " Problem: " + ex + "
" );
return;
}
}
private void groupmenu( Request breq, PrintWriter out )
throws IOException
{
String g;
PrimaryKey group_id;
org.bodington.server.realm.Group group;
g=breq.getParameter( "group_id" );
if ( g==null )
{
out.println( "Problem: no group_id was specified." );
return;
}
try
{
group_id = new PrimaryKey( Integer.parseInt( g ) );
}
catch ( NumberFormatException nfex )
{
out.println( "Problem: invalid group_id was specified." );
return;
}
if ( !breq.isAuthenticated() )
{
out.println( "
You haven't checked in to the building so you can't work with this group." );
return;
}
try
{
group = org.bodington.server.realm.Group.findGroup( group_id );
if ( group==null )
{
out.println( "Problem: the specified group wasn't found." );
return;
}
//There will be more access checking on the groups when
//the user tries to edit them.
if ( !group.checkPermission( Permission.forName( "see" ) ) )
{
out.println( "
You lack the see access right for this group." );
return;
}
out.println( "| Name | " ); out.println( "Description | " ); out.println( "Access Rights | " ); out.println( "|||
| " ); if ( group.isLocalGroup() ) out.print( group.getLocalName() ); else out.print( group.getName() ); out.println( " | " ); out.print( "" ); out.print( group.getDescription() ); out.println( " | " ); out.println( "You can select the " ); out.println( "group in your access control lists" ); if ( group.checkPermission( Permission.forName( "view" ) ) ) out.println( ", list membership of the group" ); if ( group.checkPermission( Permission.forName( "edit" ) ) ) out.println( ", edit membership of the group" ); if ( group.checkPermission( Permission.forName( "manage" ) ) ) out.println( ", control the rights of others to access the group" ); out.println( ". | |||
|
" + ex + "" ); return; } } private void groupoperation( Request breq, PrintWriter out ) throws IOException { Integer temp_int; String g; PrimaryKey group_id; g = breq.getParameter("group_id"); if (g == null) { out.println("Problem: no group_id was specified."); return; } try { group_id = new PrimaryKey(Integer.parseInt(g)); } catch (NumberFormatException nfex) { out.println("Problem: invalid group_id was specified."); return; } out.println( "
Please wait for the selected operation to complete before you " ); out.println( "select further operations or navigate away from this window.
" ); out.flush(); String op=breq.getParameter( "operation" ); if ( op==null ) { listusers(out, false, null, null, null, null, g,g, "user_id" ,null); return; } op=op.trim(); if ( op.length()==0 ) return; if ( op.equalsIgnoreCase( "noop" ) ) { return; } if ( op.equalsIgnoreCase( "list" ) ) { out.println( "Users in this Group
" ); listusers( breq, out, false ); return; } if ( op.equalsIgnoreCase( "remove" ) ) { out.println( "" ); return; } if ( op.equalsIgnoreCase( "removeconfirm" ) ) { org.bodington.server.realm.Group group; org.bodington.server.realm.User user; org.bodington.server.realm.User current_user; current_user=(org.bodington.server.realm.User)BuildingContext.getContext().getUser(); if ( !breq.isAuthenticated() ) { out.println( "You haven't checked in to the building so you can't change access rights." ); return; } try { group = org.bodington.server.realm.Group.findGroup( group_id ); if ( group==null ) { out.println( "Problem: the specified group wasn't found." ); return; } if ( !group.checkPermission( Permission.EDIT ) ) { out.println( "
You need edit access rights to the selected group to edit membership." ); return; } Enumeration plist = breq.getParameterNames(); String pname, remove_id; StringBuffer where_clause = new StringBuffer(); where_clause.append( "user_id IN (" ); boolean first=true; while ( plist.hasMoreElements() ) { pname = (String)plist.nextElement(); if ( !pname.startsWith( "user_id_" ) ) continue; remove_id=pname.substring( 8 ); try { temp_int = new Integer( remove_id ); } catch ( NumberFormatException nfex ) { continue; } if ( !first ) where_clause.append( ", " ); where_clause.append( temp_int.toString() ); first=false; } where_clause.append( " ) " ); if (first) { out.println( "No users were selected so none were removed from the group." ); return; } Enumeration enumeration=org.bodington.server.realm.User.findUsers( where_clause.toString(), "surname, initials" ); int n=0; while ( enumeration.hasMoreElements() ) { user = (org.bodington.server.realm.User)enumeration.nextElement(); if ( group.isOwnersGroup() && user.equals( current_user ) ) out.println( "Can't remove self" ); else { group.removeMemberChecked( user ); n++; } } group.save(); out.println( "
Removed " + n + " user(s).
" ); } catch ( Exception ex ) { out.println( "" + ex + "" ); } listusers(out, false, null, null, null, null, g,g, "user_id" ,null); } if ( op.equalsIgnoreCase( "add" ) ) { out.println( "" ); return; } if ( op.equalsIgnoreCase( "addconfirm" ) ) { org.bodington.server.realm.Group group; org.bodington.server.realm.User user; if ( !breq.isAuthenticated() ) { out.println( "
You haven't checked in to the building so you can't change access rights." ); return; } try { group = org.bodington.server.realm.Group.findGroup( group_id ); if ( group==null ) { out.println( "Problem: the specified group wasn't found." ); return; } if ( !group.checkPermission( Permission.EDIT ) ) { out.println( "
You need edit access rights to the selected group to edit membership." ); return; } Enumeration plist = breq.getParameterNames(); String pname, remove_id; StringBuffer where_clause = new StringBuffer(); where_clause.append( "user_id IN (" ); boolean first=true; while ( plist.hasMoreElements() ) { pname = (String)plist.nextElement(); if ( !pname.startsWith( "user_id_" ) ) continue; remove_id=pname.substring( 8 ); try { temp_int = new Integer( remove_id ); } catch ( NumberFormatException nfex ) { continue; } if ( !first ) where_clause.append( ", " ); where_clause.append( temp_int.toString() ); first=false; } where_clause.append( " ) " ); if (first) { out.println( "No users were selected so none were added to the group." ); return; } Enumeration enumeration=org.bodington.server.realm.User.findUsers( where_clause.toString(), "surname, initials" ); int n=0; while ( enumeration.hasMoreElements() ) { user = (org.bodington.server.realm.User)enumeration.nextElement(); group.addMember( user ); n++; } group.save(); out.println( "
Added " + n + " user(s)
" ); listusers(out, false, null, null, null, null, g,g, "user_id" ,null); } catch ( Exception ex ) { out.println( "" + ex + "" ); return; } } if ( op.equalsIgnoreCase( "addform" ) || op.equalsIgnoreCase( "addform2" ) ) { if (op.equalsIgnoreCase("addform")) { out.println(""); } userSearchFields(breq, out, group_id, op.equalsIgnoreCase("addform2"), false); } } public void listusers( Request req, PrintWriter out, boolean link_to_user ) throws IOException { listusers(out, link_to_user, req.getParameter("operation"), req.getParameter("output_format"), req.getParameter("in_zone"), req.getParameter( "search_group_name" ), req.getParameter( "search_group_id" ), req.getParameter( "group_id" ), req.getParameter( "identifier" ), req.getParameter( "values" ) ); } /** * Prints out a list of users. * * @param out The output to write the HTML/XML to. * @param link_to_user If true then the users name will be a link (HTML). * @param operation The operation to perform. (add or remove). * Can be null. * @param format The output format (html or xml). * Can be null. * @param zone The zone to search in. Can be null. * @param group_name * @param g * @param gg The group ID. * @param identifier The field we should be searching in. * @param idlist The values to search for. */ public void listusers(PrintWriter out, boolean link_to_user, String operation, String format, String zone, String group_name, String g, String gg, String identifier, String idlist) { try { boolean in_zone=false; String wildstring; Integer temp_int; PrimaryKey search_group_id=null, group_id = null; Vector user_ids = new Vector(); org.bodington.server.realm.Group group=null; org.bodington.server.realm.User user = null; User currentuser = (User)BuildingContext.getContext().getUser(); Group search_group=null; boolean xml_output, html_output; int i, j, n, cols=0; org.bodington.server.realm.User current_user; current_user=(org.bodington.server.realm.User)BuildingContext.getContext().getUser(); if ( operation!=null ) { operation=operation.trim(); if ( operation.length()==0 ) operation=null; } xml_output = format != null && format.equalsIgnoreCase( "xml" ); html_output = !xml_output && !(format != null && format.equalsIgnoreCase( "text" )); in_zone = zone!=null && zone.equalsIgnoreCase( "zone_restricted" ); if ( group_name!=null && group_name.length() == 0 ) group_name=null; try { if ( g!=null ) search_group_id = new PrimaryKey( Integer.parseInt( g ) ); } catch ( NumberFormatException nfex ) { search_group_id = null; } try { if ( gg!=null && gg.length()>0 ) group_id = new PrimaryKey( Integer.parseInt( gg ) ); } catch ( NumberFormatException nfex2 ) { out.println( "Technical problem finding group." + nfex2 ); return; } if ( identifier==null ) { out.println( "You must select a type of identifier." ); return; } if ( idlist==null ) idlist=""; idlist=idlist.trim(); if ( idlist.length()==0 ) { if ( search_group_id == null && group_name == null ) { out.println( "Invalid input: you have to select a group and/or type something into the search for box." ); return; } idlist = "*"; } StringTokenizer tok = new StringTokenizer( idlist ); StringBuffer where_clause = new StringBuffer( idlist.length() ); if ( in_zone && currentuser!=null ) { where_clause.append( "zone_id = " ); where_clause.append( currentuser.getZoneId() ); where_clause.append( " AND " ); } try { if ( search_group_id != null ) { search_group = Group.findGroup( search_group_id ); } else if ( group_name != null ) { search_group = Group.findGroupByName(group_name); } } catch ( BuildingServerException bsexg ) { out.println( "Technical problem finding search group." + bsexg ); return; } try { if ( group_id != null ) { group = Group.findGroup( group_id ); } } catch ( BuildingServerException bsexg ) { out.println( "Technical problem finding group." + bsexg ); return; } if ( search_group!=null ) { if ( !search_group.checkPermission( Permission.VIEW ) ) { out.println( "
You need view access rights to the 'search in' group to list it's membership.
" ); return; } String w = search_group.whereMembers(); if ( w!=null ) { where_clause.append( w ); where_clause.append( " AND " ); } } if ( tok.countTokens() == 1 ) { wildstring = tok.nextToken(); wildstring=wildstring.replace( '*', '%' ); if ( identifier.equals( "user_id" ) ) { if ( wildstring.equals( "%" ) ) { if ( search_group != null ) where_clause.append( "user_id IS NOT NULL" ); else { out.println( "You can only wild card bodington user IDs when you search for users within a group.
" ); return; } } else { try { Integer.parseInt( wildstring ); } catch ( NumberFormatException nfex ) { out.println( "Invalid identifier type.
" ); return; } where_clause.append( "user_id = " + wildstring ); } } else { if ( identifier.equals( "surname" ) ) where_clause.append( "surname LIKE " ); else { if ( identifier.equals( "user_name" ) ) where_clause.append( "user_id IN ( SELECT user_id FROM pass_phrases WHERE user_name LIKE " ); else if ( ("webauth_user_name").equals( identifier) ) where_clause.append( "user_id IN ( SELECT user_id FROM web_auth_user WHERE user_name LIKE " ); else { try { temp_int = new Integer( identifier ); } catch ( NumberFormatException nfex ) { out.println( "Invalid identifier type." ); return; } where_clause.append( "user_id IN (SELECT user_id FROM alias_entries WHERE alias_id = " ); where_clause.append( temp_int.toString() ); where_clause.append( " AND user_alias LIKE " ); } } } if ( !identifier.equals( "user_id" ) ) { where_clause.append( SqlDatabase.quotedSQL( wildstring ) ); if ( !identifier.equals( "surname" ) ) where_clause.append( " )" ); } } else { if ( identifier.equals( "surname" ) ) where_clause.append( "surname IN ( " ); else { if ( identifier.equals( "user_name" ) ) where_clause.append( "user_id IN ( SELECT user_id FROM pass_phrases WHERE user_name IN ( " ); else if ( ("webauth_user_name").equals( identifier) ) where_clause.append( "user_id IN ( SELECT user_id FROM web_auth_user WHERE user_name IN ( " ); else { if ( identifier.equals( "user_id" ) ) where_clause.append( "user_id IN ( " ); else { try { temp_int = new Integer( identifier ); } catch ( NumberFormatException nfex ) { out.println( "Invalid identifier type - must be numeric." ); return; } where_clause.append( "user_id IN (SELECT user_id FROM alias_entries WHERE alias_id = " ); where_clause.append( temp_int.toString() ); where_clause.append( " AND user_alias IN (" ); } } } boolean first=true; while ( tok.hasMoreTokens() ) { if ( !first ) where_clause.append( ", " ); first=false; if ( identifier.equals( "user_id" ) ) { try { temp_int = new Integer( tok.nextToken() ); } catch ( NumberFormatException nfex ) { out.println( "Invalid user id: must be a number." ); return; } where_clause.append( temp_int.toString() ); } else where_clause.append( SqlDatabase.quotedSQL( tok.nextToken() ) ); } if ( !identifier.equals( "user_id" ) && !identifier.equals( "surname" ) ) where_clause.append( " ) " ); where_clause.append( " ) " ); } try { // look for aliases that could be included // at present narrow it down by using only primary // aliases that can be used to create students. Enumeration enumeration=Alias.findAliases( "alias_id IS NOT NULL" ); Alias alias; AliasEntry alias_entry; Vector aliases = new Vector(); PassPhrase pass_phrase; WebAuthUser web_auth_user; while ( enumeration.hasMoreElements() ) { alias = (Alias)enumeration.nextElement(); if ( alias.isPrimary() && (alias.hasUserCategory( "student" ) || alias.hasUserCategory( "students" ) ) ) aliases.addElement( alias ); } enumeration=org.bodington.server.realm.User.findUserPrimaryKeys( where_clause.toString(), "name, user_id" ); while ( enumeration.hasMoreElements() ) { user_ids.addElement( enumeration.nextElement() ); } if ( html_output ) { out.print( "" ); out.print( user_ids.size() ); out.print( " user" + (user_ids.size() > 1 ? "s" : "") ); out.print(" found.
" ); } if ( user_ids.size() > 2000 ) { out.println( "It is not possible to list more than 2000 users on this page.
" ); return; } if ( xml_output ) { out.println( "" ); if ( search_group == null ) out.println( "| Select | " ); cols=5; } else cols=4; out.println( "WebLearn User ID | " ); out.println( "Name | " ); out.println( "External User Name | " ); out.println( "Oxford User Name | " ); } else out.print( "user_id\tname\tuser_name\twebauth" ); for ( j=0; j
| " ); out.println( "" ); out.println( "" ); out.println( " |
| Select | " ); } out.println( "User ID | " ); out.println( "Name | " ); out.println( "External User Name | " ); out.println( "Oxford User Name | " ); for ( j=0; j|||
| " ); out.println( "" ); out.println( "" ); out.println( " | |||||||
| " ); if ( html_output ) { if ( operation!=null && operation.equals( "add" ) ) { if ( group.isMember( user ) ) out.println( "Already member." ); else { if ( user.getSurname().equals( "Anonymous" ) ) out.println( "Can't add. | " ); else if (user_ids.size() == 1 ) n = 1; else { out.print( "" ); out.println( " | "); n++; } } } if ( operation!=null && operation.equals( "remove" ) ) { if ( group.isOwnersGroup() && user.equals( currentuser ) ) { out.println( "Can't remove. | " ); } else if (user_ids.size() == 1 ) n = 1; else { out.print( "" ); out.println( " | ");
n++;
}
}
}
out.print( user.getUserId().toString() );
if ( xml_output )
out.print( "\n\t\t | " ); if ( link_to_user ) { out.print( "" ); } } else out.print( "\t" ); out.print( user.getName() ); if ( xml_output ) out.println( "" ); else if ( html_output ) { if ( link_to_user ) out.println( "" ); out.println( " | " ); } pass_phrase = PassPhrase.findPassPhrase( user ); if ( xml_output ) { if ( pass_phrase!=null && pass_phrase.getUserName()!=null ) { out.print( "\t\t" ); else out.print( "\t" ); if ( pass_phrase!=null && pass_phrase.getUserName()!=null ) out.print( pass_phrase.getUserName() ); if ( html_output ) out.print( " | " ); } web_auth_user = WebAuthUser.findWebAuthUser( user ); if ( xml_output ) { if ( web_auth_user!=null && web_auth_user.getUserName()!=null ) { out.print( "\t\t" ); else out.print( "\t" ); if ( web_auth_user!=null && web_auth_user.getUserName()!=null ) out.print( web_auth_user.getUserName() ); if ( html_output ) out.print( " | " ); } for ( j=0; j
" + ex + "" ); return; } if ( xml_output ) out.println( "
There was a problem finding users.
\n" ); return; } } // Puts in a table and form input fields for searching for users. // Doesn't put in public void userSearchFields( Request breq, PrintWriter out, boolean withGroups, boolean withOutputOpts ) throws IOException { int i; Group group; User user; user=(User)BuildingContext.getContext().getUser(); try { out.println( "
| Find Users | ||
| Administrative Zone | " );
out.println( "Search entire site. " ); out.println( "Search within " ); out.println( user.getZone().getName() ); out.print( " | " ); out.print( "" ); if ( withGroups ) { out.println( " |
| Search within group: | " ); try { Enumeration enumeration = org.bodington.server.realm.Group.findGroups( "name NOT LIKE 'localgroup.%'", "name" ); out.println( " | |
| " ); out.println( "Search By Name or Unique Identifier: | " ); out.println( " | |
| Search For: " ); out.println("(Enter a list of values one per line or a single" + "value with or without a * wildcard."); out.println("Use the _ underscore character to represent the " + "space between unhyphenated double-barrelled surnames.)"); out.println(" | " ); out.println( "" ); out.println( " | |
| Output: | " );
out.println( "Web Page " ); out.println( "TAB delimited text " ); out.println( "XML file " ); out.println( " | |
* (WebLearn; A Corfield 02/12/2003) */ private void userSearchFields( Request breq, PrintWriter out, PrimaryKey group_id, boolean withGroups, boolean withOutputOpts ) throws IOException { int i; Group group; User user; user=(User)BuildingContext.getContext().getUser(); try { out.println( "
| Find Users | ||
You haven't checked in to the building so you can't change access rights. | ||
You need manage access rights to view access rights.
" + acl.toString() );
//Enumeration enumeration = acl.entries();
AclEntry aclentry;
Vector groups = new Vector();
Vector headings = new Vector();
Enumeration enumeration;
if (base == null || base.length() == 0) {
enumeration = org.bodington.server.realm.Group.findGroups(
"name LIKE 'localgroup." + resource.getResourceId() + ".%'", "name");
while (enumeration.hasMoreElements())
groups.addElement(enumeration.nextElement());
}
if (base == null || base.length() == 0)
enumeration = org.bodington.server.realm.Group.findGroups(
"name NOT LIKE 'localgroup.%'", "name");
else
enumeration = org.bodington.server.realm.Group.findGroups(
"name LIKE '" + base + "%'", "name");
String name;
int dot_offset;
while (enumeration.hasMoreElements()) {
if (base == null)
groups.addElement(enumeration.nextElement());
else {
group = (org.bodington.server.realm.Group) enumeration.nextElement();
name = group.getName();
if (!name.startsWith(base))
continue;
dot_offset = name.indexOf('.', base.length());
if (dot_offset < 0 ||
(base.length() == 0 && name.startsWith("localgroup.")))
groups.addElement(group);
else {
name = base + name.substring(base.length(), dot_offset) + ".*";
if (!headings.contains(name))
headings.addElement(name);
}
}
}
out.println("Search within group: ");
out.print(" ");
out.println("");
out.println(" ");
}
catch (Exception ex) {
out.println("" + ex + "
");
return;
}
}
else {
out.println("");
}
catch (BuildingServerException bsex) {
out.println("Technical error trying to produce form: ");
logException(out, "Facility", "userSearchFields",
"Technical error trying to produce form: ",
bsex);
}
}
/* (non-Javadoc)
* @see org.bodington.servlet.facilities.ResourceCreator#createCheck(org.bodington.servlet.Request, java.io.PrintWriter)
*/
public List validate( Resource newResource )throws BuildingServerException
{
List errors = new LinkedList();
String url = newResource.getName();
if ( url == null || url.length()<1 )
{
errors.add("Name cannot be empty");
}
else if (!url.matches("[0-9a-z][0-9a-z_]+"))
{
errors.add("Name can only contain the characters a to z, 0 to 9 and underscore");
}
String title = newResource.getTitle();
if (title == null || title.length() == 0)
{
errors.add("Title cannot be empty");
}
Parser parser;
ReportingVisitor visitor;
parser = HtmlFilterFactory.getParser(newResource.getDescription());
visitor = HtmlFilterFactory.filter(parser,
HtmlFilterFactory.FRAGMENT);
if (visitor.getMessages().size() > 0)
{
for(Iterator it = visitor.getMessages().iterator(); it.hasNext();)
{
errors.add("Problem with Description: "+ it.next());
}
}
parser = HtmlFilterFactory.getParser(newResource.getIntroduction());
visitor = HtmlFilterFactory.filter(parser,
HtmlFilterFactory.BODY);
if (visitor.getMessages().size() > 0)
{
for(Iterator it = visitor.getMessages().iterator(); it.hasNext();)
{
errors.add("Problem with Introduction: "+ it.next());
}
}
return errors;
}
/*
* (non-Javadoc)
* @see org.bodington.servlet.facilities.ResourceCreator#create(org.bodington.servlet.Request,
* java.io.PrintWriter, java.sql.Connection,
* org.bodington.server.resources.Resource)
*/
public List postCreate(Request breq, Resource newResource) throws Exception
{
String show = breq.getParameter("show");
if (show != null && show.length() > 0)
{
Group publicGroup = Group.findGroupByName("public");
if (publicGroup != null)
{
Acl acl = newResource.getAcl();
AclEntry publicAcl = new AclEntry();
publicAcl.addPermission(Permission.SEE);
publicAcl.setGroup(publicGroup);
acl.addEntry(publicAcl);
acl.save();
}
else
{
log.error("Couldn't find public group.");
}
}
return Collections.EMPTY_LIST;
}
/**
* Attempt to create a new resource. This checks that the caller has
* permission to create the resource.
* Default values can be specified in the calling template, which will be
* used if the form field has been left blank.
* If the name supplied for the new resource is already in use at this
* location, a modified version of the name is used.
* @param breq The {@link Request}from which the resource values are
* pulled.
* @param out PrintWriter to write any messages.
* @param name The shortname of the resource to create. This should refer to
* the facility name in the {@link FacilityList}.
* @param navigation_links Flag to indicate whether to display links to
* new resource and parent after creation.
* @return The newly created resource, or null.
* @throws IOException
*/
protected Resource createconfirm( Request breq, PrintWriter out, String name, boolean navigation_links )
throws IOException
{
FacilityList fl;
Facility f;
Connection con=null;
ResourceHierarchy tree=null;
String url, str;
String title, description, introduction;
boolean parentacl;
Resource new_resource=null;
boolean completed=false;
BuildingContext context = BuildingContext.getContext();
if ( !BuildingContext.getContext().checkPermission( Permission.CREATE ) )
{
out.println( "You don't have permission to create resources here.
\n" );
return null;
}
if ( !breq.isAuthenticated() )
{
out.println( "
Problem finding user." );
return null;
}
fl=FacilityList.getFacilities();
if ( fl==null )
{
out.println( "
Problem finding facilities." );
return null;
}
f=fl.get( name );
if ( f==null )
{
out.println( "
Unable to create this type of resource." );
return null;
}
try
{
tree = new ResourceHierarchyImpl();
new_resource=f.newResource();
new_resource.setHttpFacilityNo( f.id.intValue() );
// XXX Evil hack but the resource restrictions need to be sorted out.
boolean groupInGroup =
Resource.RESOURCE_GROUPCONTAIN == new_resource.getResourceType()
&&
Resource.RESOURCE_GROUPCONTAIN == breq.getResource().getResourceType();
if (!groupInGroup
&& ( f.isSysadmin()
&& !breq.getResource().checkPermission(Permission.SYSADMIN)))
{
out.println( "
Unable to create new resource.");
out.println( "
You need to have Sysadmin rights to create this resource." );
return null;
}
if (!willAcceptFacility(f))
{
out.println("
Unable to create resource.
" );
out.println("You cannot create that resource here.");
return null;
}
if (!f.isCreate())
{
out.println("
Unable to create resource.
" );
out.println("You cannot create new resources of this type.");
}
List errors;
errors = f.initResource(breq, new_resource);
if (errors.size() != 0)
{
printErrors(out, errors.iterator());
return null;
}
errors = f.validate(new_resource);
if (errors.size() != 0)
{
printErrors(out, errors.iterator());
return null;
}
if (ResourceTreeManager.getInstance().findResource(breq.getResource().getFullName()+"/"+new_resource.getName())!= null)
{
out.println( "
Unable to create new location - an item already exists here with the a name the same as the one you specified for the new item.
" );
out.println( "Please use the backtrack facility of your browser to return to the form." );
return null;
}
if (!tree.addResource( breq.getResource(), new_resource ))
{
throw new BuildingServerException("Problem adding resource to tree.");
}
//specific creation stuff
errors = f.postCreate(breq, new_resource);
if ( errors.size() != 0)
{
printErrors(out, errors.iterator());
throw new BuildingServerException( "Problem creating resource specific data in database." );
}
completed=true;
out.println( "New resource created successfully." );
if ( navigation_links )
{
// uhi:awc start update look & feel
out.print("
Go to New resource");
out.print(" or back to Menu of resources");
// uhi:awc end update look & feel
}
}
catch (QuotaExceededException qee)
{
out.println("
Sorry the resource could not be created "
+ "because you have reached your maximum quota of "
+ qee.getQuota().getQuota()+ " resources");
}
catch ( Exception ex )
{
out.println( "
Unable to create resource." + ex );
logException( out, "Facility", "createConfirm",
"Unable to create resource.",
ex );
//just drop through;
}
if ( breq.getParameter( "keywords" ) != null )
{
String []keywords =
XMLMetadataUtils.extractKeywordsFromString( breq.getParameter( "keywords" ) );
try
{
BuildingSession session = BuildingSessionManagerImpl.getSession(new_resource);
session.updateMetadataKeywords(keywords, "en");
}
catch (BuildingServerException bse)
{
log.warn("Failed to update keywords");
}
}
return new_resource;
}
/**
* Gets the value of the named request parameter.
* If it has no value, a default hidden parameter value is used, if present.
* Responsible for trimming param value, and checking that it is not an empty string.
* @param breq the Request object.
* @param paramName The name of the parameter to check.
*/
protected String getParamValue( HttpServletRequest breq, String paramName)
{
String returnValue;
String defaultParamName = "default" + paramName;
if ( breq.getParameter(paramName) != null )
{
returnValue = breq.getParameter(paramName).trim();
if ( returnValue.length() > 0 )
return returnValue;
}
if ( breq.getParameter( defaultParamName ) != null )
{
returnValue = breq.getParameter(defaultParamName).trim();
if ( returnValue.length() > 0 )
return returnValue;
}
return null;
}
protected void confirmmodify( Request breq, PrintWriter out )
{
Resource resource, parent, otherresource;
ResourceTree tree;
if ( !checkModifyTemplateParameters( breq, out ) )
return;
if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE ) )
{
out.println( "You don't have permission to modify this location.
\n" );
return;
}
if ( !breq.isAuthenticated() )
{
out.println( "
Problem finding user.
" );
return;
}
try
{
resource = BuildingContext.getContext().getResource();
tree = ResourceTreeManager.getInstance();
String url, title, description, introduction, keywords;
url=breq.getParameter( "url" );
if ( url==null ) url="";
else url=url.trim();
if ( url.length()<1 )
{
out.println( "
Unable to modify location - you must supply a name.
" );
return;
}
if ( url.length()>12 )
{
out.println( "
Unable to modify location - name is more than 12 characters.
" );
return;
}
for ( int i=0; i='0' && c<='9' )
continue;
if ( c>='a' && c<='z' )
continue;
if ( c != '_' )
{
out.println( "
Unable to modify location - the name contains invalid characters.
" );
return;
}
}
//test new url to see if it exists
parent = resource.getParent();
if ( parent!=null )
{
String new_full_name = parent.getFullName() + url + "/";
otherresource = tree.findResource( new_full_name );
if ( otherresource!=null && otherresource!=resource )
{
out.println( "
Unable to modify location - the name is already in use.
" );
return;
}
}
title=breq.getParameter( "title" ).trim();
description=breq.getParameter( "description" ).trim();
introduction=breq.getParameter( "introduction" ).trim();
keywords=breq.getParameter( "keywords" );
if ( title.length()==0 )
{
out.println( "
Unable to modify location - there must be text for title.
" );
return;
}
Parser parser;
ReportingVisitor visitor;
parser = HtmlFilterFactory.getParser(description);
visitor = HtmlFilterFactory.filter(parser,
HtmlFilterFactory.FRAGMENT);
if (visitor.getMessages().size() > 0)
{
printErrors(out, "Description", visitor.getMessages()
.iterator());
return;
}
parser = HtmlFilterFactory.getParser(introduction);
visitor = HtmlFilterFactory.filter(parser,
HtmlFilterFactory.BODY);
if (visitor.getMessages().size() > 0)
{
printErrors(out, "Introduction", visitor.getMessages()
.iterator());
return;
}
parser = HtmlFilterFactory.getParser(keywords);
visitor = HtmlFilterFactory.filter(parser,
HtmlFilterFactory.FRAGMENT);
if (visitor.getMessages().size() > 0)
{
printErrors(out, "Keywords", visitor.getMessages()
.iterator());
return;
}
resource.setName( url );
resource.setTitle( EscapedHtmlWriter.filter(title) );
resource.setIntroduction( introduction );
resource.setDescription( description );
resource.save();
// modify metadata record
try
{
refreshMetadata(resource, XMLMetadataUtils.extractKeywordsFromString(keywords));
}
catch ( BuildingServerException bsex )
{
logException( out, "Facility", "confirmmodify",
"Unable to save the metadata: " +bsex.getMessage(),
bsex );
}
ResourceEvent event = new ResourceEvent(ResourceEvent.EVENT_EDIT, resource);
event.setActiveUser((User)BuildingContext.getContext().getUser());
event.save();
out.println("Resource modified successfully.
" );
out.println("
Please use one of the links below to reload all frames " +
"(the pages you are looking at may not reflect the new URL of the resource)
" );
out.print("Return to current resource");
if (breq.getResource().getParent() != null)
{
out.print(", or back to containing ");
out.print("parent resource");
}
out.println(".");
return;
}
catch ( BuildingServerException bex )
{
out.println( "
Unable to modify resource due to technical problem." );
}
}
/**
* Check the template parameters of the modify request. This is called from
* the method {@link #confirmmodify(Request, PrintWriter)}. If this method
* returns true, the calling method proceeds. If this method
* returns false, then the calling method will exit. By
* default, if any template parameters are found then this method will
* return false, as this probably reflects the fact that
* these are not template parameters as such, but in fact form the path to a
* non-existent or already modified resource. However, this method is
* provided as an override point to subclasses, as this method will clearly
* fail for facilities that use template parameters as a normal part of
* their operation.
* @param request the current request.
* @param out an object to write any message to.
* @return true if the template parameters of the modify
* request are legitimate, otherwise false.
* @see #confirmmodify(Request, PrintWriter)
* @see Request#getTemplateParameterCount()
* @see Request#getTemplateParameter(int)
*/
protected boolean checkModifyTemplateParameters( Request request,
PrintWriter out )
{
if ( request.getTemplateParameterCount() > 0 )
{
out.println( "
The resource was NOT modified because the web "
+ "address of the 'modify resource' page you came from is "
+ "invalid. This may have happened because you already "
+ "changed the resource and you backtracked to an out-of-date "
+ "page. Please use the navigation bar to exit from here and "
+ "review what changes have been made.
" );
return false;
}
return true;
}
/**
* Prints out errors in validation associated with a field.
* @param out The printwriter to write to.
* @param field The field that the user should edit.
* @param iterator An iterator containing the errors to write.
*/
protected void printErrors(PrintWriter out, String field, Iterator iterator)
{
out.println("
");
out.println(field);
out.println(" is not valid.");
EscapedHtmlWriter htmlOut = new EscapedHtmlWriter(out);
for (; iterator.hasNext();)
{
htmlOut.print(iterator.next().toString());
out.println("
");
}
out.println("
");
}
/**
* Prints out errors.
* @param out The printwriter to write to.
* @param iterator An iterator containing the errors to write.
*/
protected void printErrors(PrintWriter out, Iterator iterator)
{
out.println("
");
EscapedHtmlWriter htmlOut = new EscapedHtmlWriter(out);
for (; iterator.hasNext();)
{
htmlOut.print(iterator.next().toString());
out.println("
");
}
out.println("
");
}
/**
* Used to handle timed resource date properties on the current resource.
* This can be used to set and get timed resource date properties. This
* method is invoked from
* {@link #insert(Request, PrintWriter, String, String)}.
* @param breq the request object.
* @param out the writer object.
* @param name parameter which can accept the values open_field,
* close_field and set.
* @see Resource#getOpenDate()
* @see Resource#getCloseDate()
* @see #insert(Request, PrintWriter, String, String)
*/
private void releaseDate( Request breq, PrintWriter out, String name )
throws IOException
{
Resource resource = null;
java.util.Date openDate = null, closeDate = null;
String open_date = null, close_date = null;
try
{
resource = BuildingContext.getContext().getResource();
}
catch ( BuildingServerException bex )
{
out.println( "
Unable to modify resource due to technical "
+ "problem - resource not found
" );
return;
}
if ( name.equalsIgnoreCase( "open_field" ) )
{
openDate = resource.getOpenDate();
if ( openDate == null )
open_date = "none";
else
open_date = DateFormatter.formatDate(openDate, DateFormatter.MEDIUM );
out.print( "" );
return;
}
if ( name.equalsIgnoreCase( "close_field" ) )
{
closeDate = resource.getCloseDate();
if ( closeDate == null )
close_date = "none";
else
close_date = DateFormatter.formatDate(closeDate, DateFormatter.MEDIUM );
out.print( "" );
return;
}
if ( name.equalsIgnoreCase( "set" ) )
{
if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE ) )
{
out.println( "You do not have permission to modify this "
+ "location." );
return;
}
if ( !breq.isAuthenticated() )
{
out.println( "
Problem finding user." );
return;
}
try
{
boolean openOk = false, closeOk = false;
java.sql.Timestamp openTimestamp = null, closeTimestamp = null;
open_date = breq.getParameter( "open_date" );
if ( open_date != null && open_date.length() > 0 )
{
open_date = open_date.trim();
if ( open_date.equalsIgnoreCase( "none" ) )
openOk = true;
else
{
openDate = DateParser.parse( open_date );
if ( openDate != null )
{
openTimestamp = new Timestamp( openDate.getTime() );
open_date = DateFormatter.formatDate( openDate, DateFormatter.MEDIUM );
openOk = true;
}
}
}
close_date = breq.getParameter( "close_date" );
if ( close_date != null && close_date.length() > 0 )
{
close_date = close_date.trim();
if ( close_date.equalsIgnoreCase( "none" ) )
closeOk = true;
else
{
closeDate = DateParser.parse( close_date );
if ( closeDate != null )
{
closeTimestamp = new Timestamp( closeDate.getTime() );
close_date = DateFormatter.formatDate( closeDate, DateFormatter.MEDIUM );
closeOk = true;
}
}
}
if ( openTimestamp != null && closeTimestamp != null
&& closeTimestamp.compareTo( openTimestamp ) < 1 )
{
openOk = false;
closeOk = false;
}
if ( !(openOk && closeOk) )
{
if ( openTimestamp != null && closeTimestamp != null )
out.print( "
Unable to modify location - the close "
+ "date and time must be later than the open date" );
else
out.print( "
Unable to modify location - the date "
+ "and time may not have been formatted correctly" );
if ( !openOk )
out.print( "
open date: " + open_date );
if ( !closeOk )
out.print( "
close date: " + close_date );
out.print( "
Enter the date and time as "
+ "dd/mm/yy hh:mm or \"none\" if no date is set");
return;
}
resource.setOpenTimestamp( openTimestamp );
resource.setCloseTimestamp( closeTimestamp );
resource.save();
out.print( "Resource modified successfully.
"
+ "Select this link to reload all frames." );
if ( openTimestamp == null && closeTimestamp == null )
{
out.print( "
This resource will always be available - "
+ "neither an open time nor a close time has been set." );
}
else
{
if ( closeTimestamp == null )
out.print( "
This resource will be available from "
+ open_date + " - no close time has been set." );
else if ( openTimestamp == null )
out.print( "
This resource is available until "
+ close_date + " - no open time has been set." );
else
out.print( "
This resource will be available from "
+ open_date + " until " + close_date + "." );
if ( openTimestamp != null
&& openTimestamp.getTime() <= System.currentTimeMillis() )
out.print( "
N.B. The open date has already "
+ "passed." );
if ( closeTimestamp != null
&& closeTimestamp.getTime() <= System.currentTimeMillis() )
out.print( "
N.B. The close date has already "
+ "passed." );
}
}
catch ( BuildingServerException bex )
{
out.println( "
Unable to modify resource due to technical "
+ "problem." );
}
catch ( NumberFormatException nfex )
{
out.println( "
Unable to modify resource due to invalid "
+ "ordinal." );
}
}
}
public boolean willAcceptFacility( Facility f )
{
return contains.contains(f);
}
private void moveconfirm( Request breq, PrintWriter out )
throws IOException
{
String item, dst;
Resource srcres, itemres = null;
Resource dstres;
if ( breq.getTemplateParameterCount() > 0 )
{
out.println( "
The resource was NOT moved because it seems the destination resource has been " +
"changed while you were filling in the form. Please use the navigation bar to reset " +
"your view onto the location where you want to move resources." );
return;
}
try
{
dstres = BuildingContext.getContext().getResource();
log.debug( "moveconfirm() A" );
item=breq.getParameter( "source" );
dst=breq.getParameter( "destination" );
if ( dst!=null )
{
out.println( "
Moving objects by pushing is no longer supported." );
return;
}
if ( item==null )
{
out.println( "
Item to be moved must be specified." );
return;
}
if ( !item.endsWith( "/" ) )
item= item + "/";
BodingtonURL bodURL = new BodingtonURL( breq );
if (bodURL.isBodingtonUrl( item ))
itemres = bodURL.getResource( item );
else
{
if ( !item.startsWith( "/" ) )
item= "/" + item;
if ( item.length() < 3 )
{
out.println( "
Name too short." );
return;
}
itemres=ResourceTreeManager.getInstance().findResource( item );
}
if ( itemres==null )
{
out.println( "
The item you want to move wasn't found." );
return;
}
srcres=itemres.getParent();
if ( srcres==null )
{
out.println( "
The source location you specified wasn't found." );
return;
}
if ( dstres==null )
{
out.println( "
The destination location you specified wasn't found." );
return;
}
// does the destination facility accept this type of facility?
// (e.g. you can't put a discussion room inside an MCQ test paper)
FacilityList fl = FacilityList.getFacilities();
Facility dstfac = fl.get( new Integer( dstres.getHttpFacilityNo() ) );
Facility itemfac = fl.get( new Integer( itemres.getHttpFacilityNo() ) );
if ( !dstfac.willAcceptFacility( itemfac ) )
{
out.println( "
The destination location cannot contain the type of resource you want to move." );
return;
}
if ( !itemres.checkPermission( Permission.MANAGE ) )
{
out.println( "
You don't have management permission for the item to be moved." );
return;
}
if ( !dstres.checkPermission( Permission.CREATE ) )
{
out.println( "
You don't have creation permission for the destination location." );
return;
}
// we have to check whether dstloc is 'inside' itemloc
if ( dstres.isInside( itemres ) )
{
out.println( "
The destination location you specified is inside the item being moved." );
return;
}
if ( dstres.findChild(itemres.getName()) != null )
{
out.println( "
The destination location already contains an item with the same name as the item you are trying to move." );
return;
}
ResourceTreeManager.getInstance().moveResource( dstres, itemres );
out.println( "
The requested item was moved." );
return;
}
catch ( BuildingServerException bex )
{
out.println( "
There was an unexpected problem moving the item.
" + bex );
}
return;
}
/**
* Makes a copy of an existing Resource. It is possible to copy a resource
* to the same location as the original, and multiple copies can be made.
*
* If a resource already exists at the destination location with the same
* name as the resource to be copied, a number is appended to the duplicated
* resource name (which is truncated if necessary).
* Request parameters are used to set the number of copies to be made, and
* whether to copy child resources, access permissions, content and uploaded
* files.
* @param breq The building HTTP request, which is used to determine which
* type of content to copy.
* @param out A Print writer, to display messages to the user interface.
*/
private void copyconfirm( Request breq, PrintWriter out )
{
if ( breq.getTemplateParameterCount() > 0 )
{
out.println( "
The resource was NOT copied because it seems the destination resource has been " +
"changed while you were filling in the form. Please use the navigation bar to reset " +
"your view onto the location where you want to copy resources." );
return;
}
if ( copy_in_progress )
{
out.println( "
A copy operation is in progress on this web site and another cannot be started until it has completed." );
return;
}
String sourceURL;
Resource original = null, destination;
FacilityList facilityList;
Facility facility;
int multiple_copies;
log.debug( "starting copyconfirm()" );
sourceURL=breq.getParameter( "source" );
if ( sourceURL == null )
{
out.println( "
Item to be copied must be specified." );
return;
}
try
{
BodingtonURL bodURL = new BodingtonURL( breq );
if (bodURL.isBodingtonUrl( sourceURL ))
original = bodURL.getResource( sourceURL );
else
{
if ( !sourceURL.startsWith( "/" ) )
sourceURL = "/" + sourceURL;
if ( sourceURL.length() < 3 )
{
out.println( "
Name too short.
" );
return;
}
original = ResourceTreeManager.getInstance().findResource( sourceURL );
}
if ( original == null )
{
out.println( "
The item you want to copy wasn't found." );
return;
}
BuildingContext context = BuildingContext.getContext();
destination = context.getResource();
facilityList = FacilityList.getFacilities();
if ( facilityList==null )
{
out.println( "
Problem finding facilities." );
return;
}
if ( destination==null )
{
out.println( "
The destination location wasn't found." );
return;
}
if ( destination.isInside( original ) )
{
out.println( "
The destination location you specified is inside the item being copied." );
return;
}
if ( destination.equals( original ) )
{
out.println( "
The destination location you specified is inside the item being copied and is not allowed.
");
out.println( "If you have a query about this, then please contact the Administrator or Help Desk for this web site." );
return;
}
Facility dstfac = facilityList.get( new Integer( destination.getHttpFacilityNo() ) );
facility = facilityList.get( new Integer( original.getHttpFacilityNo() ) );
if ( !dstfac.willAcceptFacility( facility ) )
{
out.println( "
The destination location cannot contain the type of resource you want to copy." );
return;
}
if ( !original.checkPermission( Permission.MANAGE ) )
{
out.println( "
You don't have management permission for the item to be copied." );
return;
}
if ( !destination.checkPermission( Permission.CREATE ) )
{
out.println( "
You don't have creation permission for the destination location." );
return;
}
// JRM added check for resources that can't be copied.
if ( !facility.canCopy( original ) )
{
out.println( "
The selected resource is of a type that cannot be copied." );
return;
}
if ( "true".equalsIgnoreCase( breq.getParameter("recursive") ) &&
!facility.canCopyWithChildren( original ) )
{
out.println( "
The selected resource contains one or more resources that cannot be copied because you don't have manage access or they are of a type that cannot be copied." );
return;
}
// JRM added sanity check for resource to be copied
if ( "true".equalsIgnoreCase( breq.getParameter("recursive") ) )
{
int descendents = ResourceTreeManager.getInstance().countDescendents( original.getResourceId() );
if ( descendents<0 )
{
out.println( "
Error determining how many resources need to be copied." );
return;
}
if ( descendents>100 )
{
out.println( "
You opted to copy resources inside the selected resource but there are too many ("+descendents+") and the limit is 100." );
return;
}
}
}
catch ( BuildingServerException ex )
{
out.println( "
Unable to copy resource (Copying not started)
" + ex );
logException( out, "Facility", "copyConfirm",
"Unable to copy resource.", ex );
return;
}
try
{
log.debug( "copyconfirm(), starting to copy resources... " );
// JRM - added checks to user input here in case a different template
// form is used in the future and in case some user puts together their
// own form to make a denial of service attack.
try
{
multiple_copies=Integer.parseInt(breq.getParameter( "multiple" ));
}
catch ( NumberFormatException nfe )
{
out.println( "
Unable to determine the number of copies of resource to make." );
logException( out, "Facility", "copyConfirm",
"Unable to determine the number of copies of resource to make.", nfe );
return;
}
if ( multiple_copies<1 )
{
out.println( "
Unable to determine the number of copies of resource to make." );
log.error( "Unable to determine the number of copies of resource to make." );
return;
}
if ( multiple_copies>20 )
{
out.println( "
Unable to make that many copies." );
log.error( "Unable to make that many copies." );
return;
}
String originalName = original.getName();
out.println( "");
for ( int i = 1; i <= multiple_copies; i++ )
{
String name = breq.getBuildingSession().findUniqueName(originalName);
// impossible for two threads to enter this block of code
synchronized ( copy_synch )
{
try
{
copy_in_progress = true;
copyResource( original, destination, breq, name, out );
}
finally
{
copy_in_progress = false;
}
}
if ( multiple_copies>1 )
{
out.println( "
Completed " + i + (i==1?" copy":" copies") + "." );
out.flush();
}
}
if ( multiple_copies>1 )
out.println( "
All copies completed." );
else
out.println( "
New resource/s copied successfully." );
out.println( "
");
}
catch ( BuildingServerException ex )
{
out.println( "
Error in attempting to copy resource.
" );
logException( out, "Facility", "copyConfirm",
"Error in attempting to copy resource.", ex );
}
}
/**
* Copy a resource. Depending on the values of the specified parameters,
* this can be recursive, include access permissions and uploaded content.
* Used by {@link #copyconfirm(Request, PrintWriter)}.
* @param original The resource to be copied.
* @param destination The resource which will be the parent of the newly
* created resource.
* @param breq The building HTTP request, which is used to determine which
* type of content to copy.
* @param name The name to be used for the new resource (or null if the name
* is to be copied from the original.)
* @param out A Print writer, to display messages to the user interface.
* @exception BuildingServerException Thrown if there is any problem copying
* the resource.
*/
private void copyResource( Resource original, Resource destination, Request breq, String name, PrintWriter out )
throws BuildingServerException
{
ResourceTree tree = null;
BuildingContext context = BuildingContext.getContext();
FacilityList facilityList = FacilityList.getFacilities();
Facility facility = facilityList.get( new Integer( original.getHttpFacilityNo() ) );
Resource new_resource = null;
Connection con = null;
try
{
tree = ResourceTreeManager.getInstance();
synchronized ( tree ) // some comments copied from createconfirm() method...
{
new_resource = facility.newResource();
new_resource.setZoneId( original.getZoneId() ); // added JRM
if ( name==null )
name = original.getName();
new_resource.setName( name );
new_resource.setTitle( original.getTitle() );
new_resource.setDescription( original.getDescription() );
new_resource.setIntroduction( original.getIntroduction() );
new_resource.setHttpFacilityNo( original.getHttpFacilityNo() );
new_resource.setHttpUIStyle( original.getHttpUIStyle() );
new_resource.setHasCustomMenu( original.getHasCustomMenu() ); // added JRM
// initResource sets fields in subclass of Resource BEFORE saving it.
//new version of initResource(), takes original as arg:
facility.initResource( original, new_resource );
con = context.getConnection();
//may need to rollback after several operations
con.setAutoCommit( false );
tree.addResource( destination, new_resource );
//tree.updateIndices();
//tree.saveAll();
//specific creation stuff
con.commit();
con.setAutoCommit( true );
}
}
catch (QuotaExceededException qee)
{
// Special case as we don't want to try to create any more.
try
{
tree.removeResource( new_resource );
con.rollback();
}
catch ( Exception ex2 )
{
log.error( "Failed to rollback.", ex2);
}
throw qee;
}
catch ( Exception ex )
{
String message = "Resource creation failed, ";
try
{
tree.removeResource( new_resource );
con.rollback();
}
catch ( Exception ex2 )
{
message += "unable to roll back database operations.";
log.error( message );
throw new BuildingServerException(ex.getMessage(), message );
}
message += "database rolled back.";
log.error( message );
throw new BuildingServerException(ex.getMessage(), message );
}
if ( breq.getParameter("permissions") != null )
copyAccessPermissions( original, new_resource, out );
if ( breq.getParameter("uploaded") != null )
copyUploadedContent( original, new_resource, out, breq);
// copy authored content and user data:
try
{
facility.copyContent( original, new_resource, breq );
}
catch (BuildingServerException ex)
{
String message = "Error copying content for: "+ new_resource.getName();
// using getFullName() could throw another exception...
out.print( "
"+ message +"
"+ ex.getMessage());
log.warn( message + ex.getMessage() );
}
// create metadata record
try
{
BuildingSession session = BuildingSessionManagerImpl.getSession( original );
String[] keywords = session.getFieldValuesFromMetadata( "keywords" );
refreshMetadata(new_resource, keywords);
}
catch ( Exception ex )// BuildingServerException
{
out.print( "
Unable to save the associated metadata for the newly created item.");
}
if ( breq.getParameter("recursive").equalsIgnoreCase("true") )
{
Enumeration enumeration = original.findChildren();
while ( enumeration.hasMoreElements() )
{
Resource child = (Resource)enumeration.nextElement();
if ( !child.equals(new_resource) )
try
{
copyResource( child, new_resource, breq, null, out );
}
catch (QuotaExceededException qee)
{
// If we hit quota problems stop straight away.
throw qee;
}
catch (BuildingServerException ex)
{
String message = "Error copying child resource: "+ child.getName();
out.print( "
"+ message +"
"+ ex.friendlyMessage());
log.error( message + ex.getMessage() );
}
}
}
}
/**
* Update the metadata on a resource.
* @param resource The resource to update the metadata on.
* @param keywords The keywords associated with the resource, maybe null
*/
protected void refreshMetadata(Resource resource, String[] keywords)
throws BuildingServerException
{
BuildingSession newSession = BuildingSessionManagerImpl.getSession( resource );
newSession.updateBasicMetadata( );
if (keywords != null)
newSession.updateMetadataKeywords(keywords, "en");
}
/**
* Copies uploaded files from one resource to another. Used by
* {@link #copyconfirm(Request, PrintWriter)}.
* @param original The resource with uploaded files to be copied.
* @param new_resource The resource to add the uploaded files to.
* @param out A Print writer, to display messages to the user interface.
* @param request The request through which this action was made.
*/
private void copyUploadedContent( Resource original, Resource new_resource, PrintWriter out, Request request)
{
try
{
BuildingSession orig_session = BuildingSessionManagerImpl.getSession( original );
BuildingSession new_session = BuildingSessionManagerImpl.getSession( new_resource );
UploadedFileSummary[] summaries = orig_session.getUploadedFileSession().getFileAndDescendentSummaries( null, true );
UploadedFile f;
String path_to_source_in_os, name_rel_to_res, mime_type;
File source_filestore = original.getWebPublishFolder();
File source;
// better to fix the fault in BuildingSessionImpl - done
//createRootFolder( new_resource );//shouldn't be necessary, see method for notes:
// there a simpler way to work out the paths using
// convenient methods in UploadedFile and Resource
for ( int i = 0; i < summaries.length; i++ )
{
f = UploadedFile.findUploadedFile(summaries[i].getUploadedFileId());
// don't copy deleted files and folders!
if ( f==null || f.isDeleted() )
continue;
mime_type = f.getMimeType();
// this is the actual file
source = new File( source_filestore, f.getRealNameInResource() );
path_to_source_in_os = source.getAbsolutePath();
// Bodington style relative name is same for source and destination
name_rel_to_res = f.getNameInResource();
if ( f.isFolder() )
new_session.getUploadedFileSession().createFolder( name_rel_to_res );
else
new_session.getUploadedFileSession().copyFile( path_to_source_in_os, name_rel_to_res, mime_type );
}
// don't forget to copy custom menu file if there is one.....
if ( original.getHasCustomMenu() )
{
new_session.transferResourceMenu( original.getGeneratedFileFolder() + "menu.xml" );
}
}
catch (QuotaExceededException qee)
{
out.print( "
Error copying uploaded files for: "+ new_resource.getName()+ " quota exceeded.");
}
catch ( Exception ex ) // BuildingServerException
{
log.error( ex.getMessage(), ex );
String message = "Error copying uploaded files for : "+ new_resource.getName();
out.print( "
"+ message +"
"+ ex.getMessage());
}
}
/**
* Copies the access permissions from one resource to another. Used
* by {@link #copyconfirm(Request, PrintWriter)}.
* @param original The resource with permissions to be copied.
* @param new_resource The resource whose premissions are to be modified.
* @param out A Print writer, to display messages to the user interface.
*/
private void copyAccessPermissions( Resource original, Resource new_resource, PrintWriter out )
{
try
{
Acl acl, new_acl;
AclEntry entry, new_entry;
Group group, new_group, owner_group, new_ownergroup;
String new_name;
int offset;
User user;
Enumeration members;
new_resource.setUseParentAcl( original.getUseParentAcl() );
new_resource.save();
acl = original.getAcl();
new_acl = new_resource.getAcl();
// copy local groups if not already done
Vector copy_groups = new Vector();
Enumeration groups = Group.findGroups( "resource_id = " + original.getResourceId() );
while ( groups.hasMoreElements() )
{
group = (Group)groups.nextElement();
if ( ! group.isLocalGroup()) continue;
new_name = "localgroup." + new_resource.getResourceId() + "." + group.getLocalName();
// exists already?
new_group = Group.findGroup( "resource_id = " + new_resource.getResourceId() + " AND name = " + SqlDatabase.quotedSQL( new_name ) );
// no, needs to be created.
if ( new_group == null )
{
new_group = new Group();
new_group.setResourceId( new_resource.getResourceId() );
new_group.setName( new_name );
new_group.setDescription( group.getDescription() );
new_group.save();
}
if ( ! group.isOwnersGroup() )
{
copy_groups.addElement( group );
copy_groups.addElement( new_group );
}
}
// copy members of local groups but exluding owners group
for ( int i=0; i
"+ ex.getMessage());
log.warn( message + ex.getMessage() );
}
}
private void deleteconfirm( Request breq, PrintWriter out )
throws IOException
{
//String item, dst;
Resource srcres, itemres;
int n;
Connection con=null;
ResourceTree tree;
Resource dstres;
String confirm1, confirm2;
if ( !checkDeleteTemplateParameters( breq, out ) )
return;
confirm1 = breq.getParameter( "confirm1" );
confirm2 = breq.getParameter( "confirm2" );
if ( confirm1==null || !confirm1.equalsIgnoreCase( "yes" ) ||
(confirm2!=null && confirm2.equalsIgnoreCase( "yes" ) ) )
{
out.println( "Resource was not deleted because you didn't confirm without doubt your intention to delete." );
return;
}
out.flush();
try
{
Enumeration enumeration = Resource.findResources( "http_facility_no = 30", "left_index" );
if ( !enumeration.hasMoreElements() || (dstres=(Resource)enumeration.nextElement())==null )
{
out.println( "Unable to locate the recycling building." );
return;
}
itemres = breq.getResource();
srcres = itemres.getParent();
if ( srcres == null )
{
out.println( "Unable to delete resource because it is the root resource of the site." );
return;
}
tree = ResourceTreeManager.getInstance();
log.debug( "deleteconfirm() A" );
if ( !itemres.checkPermission( Permission.MANAGE ) )
{
out.println( "You don't have management permission for the item to be deleted." );
return;
}
if ( !dstres.checkPermission( Permission.CREATE ) )
{
out.println( "You don't have permission to put things in the recycle building so you can't delete resources." );
return;
}
// we have to check whether dstloc is 'inside' itemloc
if ( dstres.isInside( itemres ) )
{
out.println( "The resource you want to delete contains the recycle building to you can't delete it." );
return;
}
//change name to avoid clashes
itemres.setName( itemres.getResourceId().toString() );
itemres.save();
//To do...
//remove all groups other than owners from ACL
//remove all "notification" flags so noone gets events anymore?????
//check for clashes anyway
if ( dstres.findChild(itemres.getName()) != null)
{
out.println( "
The destination location already contains an item with the same name as the item you are trying to move." );
return;
}
tree.moveResource( dstres, itemres );
out.println("Resource deleted successfully.
" );
out.println("
Select the link below to move out to the containing resource " +
"(Please DO NOT use the backtrack facility of your browser as the pages you are looking at are no longer valid)
" );
out.print("Back to parent resource");
return;
}
catch ( BuildingServerException bex )
{
out.println( "There was an unexpected problem deleting the item.
" + bex );
}
return;
}
/**
* Check the template parameters of the delete request. This is called from
* the method {@link #deleteconfirm(Request, PrintWriter)}. If this method
* returns true, the calling method proceeds. If this method
* returns false, then the calling method will exit. By
* default, if any template parameters are found then this method will
* return false, as this probably reflects the fact that
* these are not template parameters as such, but in fact form the path to a
* non-existent or already modified resource. However, this method is
* provided as an override point to subclasses, as this method will clearly
* fail for facilities that use template parameters as a normal part of
* their operation.
* @param request the current request.
* @param out an object to write any message to.
* @return true if the template parameters of the delete
* request are legitimate, otherwise false.
* @see #deleteconfirm(Request, PrintWriter)
* @see Request#getTemplateParameterCount()
* @see Request#getTemplateParameter(int)
*/
protected boolean checkDeleteTemplateParameters( Request request, PrintWriter out )
{
if ( request.getTemplateParameterCount() > 0 )
{
out.println( "No resource was deleted because the web address of the 'delete resource' " +
"page you came from is invalid. This may have happened because you already deleted " +
"the resource and you backtracked to an out-of-date page. Please use the navigation " +
"bar to exit from here." );
return false;
}
return true;
}
private void deletewarn(Request breq, PrintWriter out)
{
try
{
int resources = ResourceTreeManager.getInstance().countDescendents(
breq.getResource().getPrimaryKey()) + 1;
if (resources > 10)
out.print("Warning: ");
out.print("You are about to delete ");
out.print(resources);
out.print(" resource");
out.print((resources>1)?"s.":".");
}
catch (BuildingServerException e)
{
out.print("Failed to discover the number of resources being deleted.");
log.warn("Failed to find number of resource being deleted.", e);
}
}
private void ifloggedin( Request breq )
throws IOException
{
breq.setSwitchedOff( !breq.isAuthenticated() );
return;
}
private void ifaccess( Request breq, String name )
throws IOException
{
breq.setSwitchedOff( !BuildingContext.getContext().checkPermission( name ) );
}
public boolean hasPermission( String name )
throws IOException
{
return BuildingContext.getContext().checkPermission( name );
}
/**
* Checks the permission for all of the named access levels for this user.
* Returns true if anyone of the permissions is true.
* uhi:awc
* @param name1 access name
* @param name2 access name
* @param name3 access name
* @return true if the permission for any one of the named access levels for this user is true.
* @throws IOException
*/
public boolean hasPermission( String name1, String name2, String name3 )
throws IOException
{
return ( BuildingContext.getContext().checkPermission( name1 ) ||
BuildingContext.getContext().checkPermission( name2 ) ||
BuildingContext.getContext().checkPermission( name3 ) );
}
private void ifcanreorder( Request breq )
throws IOException
{
BuildingContext context;
Resource resource;
context = BuildingContext.getContext();
int i;
if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE ) )
{
breq.setSwitchedOff( true );
return;
}
try
{
resource = context.getResource();
Enumeration enumeration=resource.findChildren();
for ( i=0; enumeration.hasMoreElements(); i++ )
{
enumeration.nextElement();
}
breq.setSwitchedOff( (i<2) );
}
catch ( BuildingServerException bsex )
{
breq.setSwitchedOff( true );
}
return;
}
/**
* Indicates whether or not there other child resources for the current user
* to sort. This method first of all checks that the current user has
* MANAGE access. If so, the children of the resource
* associated with the request are examined. If there are 2
* or more children, then these can be sorted and this method returns
* true.
*
* NOTE: This method is intended to be called from templates.
*
* @param request the request object.
* @return true if there are associated objects to sort,
* otherwise false.
*/
public boolean isCanReorder( Request request )
{
try
{
ifcanreorder( request );
return !request.isSwitchedOff();
}
catch ( IOException e )
{
}
return false;
}
/**
* Write the property of a resource associated with the current request.
* Typically this resource is the associated instance of
* {@link org.bodington.server.resources.Resource}. If so, the
* name parameter can take the values title,
* introduction and description. Another
* useful value is nameofuser which prints out the full name
* of the current user ({@link org.bodington.server.realm.User#getName()}).
* This method is typically called from within
* {@link #insert(Request, PrintWriter, String, String)}.
* @param breq the request object.
* @param out the writer object.
* @param name the name of the variable.
* @throws IOException
* @see #insert(Request, PrintWriter, String, String)
*/
public void variable( Request breq, PrintWriter out, String name )
throws IOException
{
variable( breq, out, name, false );
}
/**
* Write the property of a resource associated with the current request.
* Typically this resource is the associated instance of
* {@link org.bodington.server.resources.Resource}. If so, the
* name parameter can take the values title,
* introduction and description. Another
* useful value is nameofuser which prints out the full name
* of the current user ({@link org.bodington.server.realm.User#getName()}).
* The form indicates whether or not the characters
* <, > & &
* should be escaped. It does this by using a special kind of writer object ({@link org.bodington.servlet.EscapedHtmlWriter}).
* This method is typically called from within
* {@link #insert(Request, PrintWriter, String, String)}.
* @param breq the request object.
* @param out the writer object.
* @param name the name of the variable.
* @param form if true the characters <,
* > & & should be escaped.
* @throws IOException
* @see org.bodington.servlet.EscapedHtmlWriter
* @see #insert(Request, PrintWriter, String, String)
*/
private void variable( Request breq, PrintWriter out, String name, boolean form )
throws IOException
{
if ( out == null )
return;
Resource resource;
try
{
resource = BuildingContext.getContext().getResource();
EscapedHtmlWriter t_out = new EscapedHtmlWriter( out );
if ( name.equalsIgnoreCase( "url" ) )
{
if ( resource.getName()!=null )
out.print( resource.getName() );
return;
}
if ( name.equalsIgnoreCase( "ordinal" ) )
{
//if ( breq.location.ordinal!=null )
// out.print( breq.location.ordinal.toString() );
return;
}
if ( name.equalsIgnoreCase( "title" ) )
{
if ( resource.getTitle()!=null )
{
AlreadyEscapedHtmlWriter checkOut = new AlreadyEscapedHtmlWriter(out);
checkOut.print( resource.getTitle() );
}
return;
}
if ( name.equalsIgnoreCase( "description" ) )
{
if ( resource.getDescription()!=null )
{
if ( form )
t_out.print( resource.getDescription() );
else
out.print( resource.getDescription() );
}
return;
}
if ( name.equalsIgnoreCase( "introduction" ) )
{
if ( resource.getIntroduction()!=null )
{
if ( form )
t_out.print( resource.getIntroduction() );
else
out.print( resource.getIntroduction() );
}
return;
}
if ( name.equalsIgnoreCase( "keywords" ) )
{
BuildingSession session = BuildingSessionManagerImpl.getSession( resource );
String[] fields = session.getFieldValuesFromMetadata( "keywords" );
if ( form )
{
t_out.print(XMLMetadataUtils.getKeywordStringFromArray( fields ));
}
else
{
out.print(XMLMetadataUtils.getKeywordStringFromArray( fields ));
}
return;
}
if ( name.equalsIgnoreCase( "nameofuser" ) && breq.isAuthenticated() )
{
User user = (User)BuildingContext.getContext().getUser();
if ( user!=null && user.getName()!=null )
{
out.print( user.getName() );
}
return;
}
if ( name.equalsIgnoreCase( "resource_id" ) )
{
if ( breq.getResource().getResourceId()==null )
out.print( "No resource id for this location." );
else
out.print( "Resource id = " + breq.getResource().getResourceId() );
return;
}
if ( name.substring( 0, 4 ).equalsIgnoreCase( "type" ) )
{
if ( name.equalsIgnoreCase( "typeca" ) )
{
out.print( getTitle( true, true ) );
return;
}
if ( name.equalsIgnoreCase( "typea" ) )
{
out.print( getTitle( false, true ) );
return;
}
if ( name.equalsIgnoreCase( "typec" ) )
{
out.print( getTitle( true, false ) );
return;
}
out.print( getTitle( false, false ) );
return;
}
if ( name.equalsIgnoreCase( "zone_name" ) )
{
Zone zone = breq.getResource().getEffectiveZone();
if ( zone == null )
out.print( "(undefined)" );
else
out.print( zone.getName() );
return;
}
}
catch ( BuildingServerException bsex )
{
return;
}
out.print( "" );
}
private void reordercontrol( Request breq, PrintWriter out )
throws IOException
{
BuildingContext context;
Resource resource, current;
context = BuildingContext.getContext();
try
{
resource = context.getResource();
Enumeration enumeration=resource.findChildren();
for ( int i=0; enumeration.hasMoreElements(); i++ )
{
current=(Resource)enumeration.nextElement();
if ( !current.checkPermission( Permission.SEE ) )
continue;
out.print( "" );
}
}
catch ( BuildingServerException bsex )
{
return;
}
}
private void reorder( Request breq, PrintWriter out )
throws IOException
{
BuildingContext context;
Resource resource, current;
context = BuildingContext.getContext();
Vector key_list = new Vector();
String strrid;
int r;
PrimaryKey key;
String list=breq.getParameter( "thelist" );
StringTokenizer tok = new StringTokenizer( list, "," );
while ( tok.hasMoreTokens() )
{
strrid = tok.nextToken();
try
{
r = Integer.parseInt( strrid );
}
catch ( Exception ex )
{
continue;
}
key = new PrimaryKey( r );
key_list.addElement( key );
}
try
{
resource = context.getResource();
resource.sortChildren( key_list );
ResourceTree tree = ResourceTreeManager.getInstance();
//tree.updateIndices();
//tree.saveAll();
out.println( "Confirmation
" );
out.println( "Resources have been put in the following order:
" );
out.println( "" );
for ( int i=0; i" );
out.print( current.getTitle() );
out.println( "" );
}
out.println( "
" );
}
catch ( BuildingServerException bsex )
{
out.println( "There was a technical problem attempting to reorder resources
" );
out.println( bsex.toString() );
return;
}
}
protected void resourceMenuItem( Object gen_item, Request breq, PrintWriter out, ResourceMenuOutputState state, int depth, int highlight )
throws IOException, BuildingServerException {
if (gen_item instanceof MenuItem) {
MenuItem item = (MenuItem) gen_item;
resourceMenuItem(item, breq, out, state, depth, highlight);
}
else if (gen_item instanceof Resource) {
Resource resource = (Resource) gen_item;
Facility facility = state.fl.get(new Integer(resource.getHttpFacilityNo()));
facility.resourceMenuItem(resource, breq, out, state, depth, highlight);
}
}
protected void resourceMenuItem(MenuItem menu_item, Request breq, PrintWriter out, ResourceMenuOutputState state, int depth, int highlight)
throws IOException, BuildingServerException
{
String href=null, icon_src=null, title=null, target=null;
// determine href
href = menu_item.getHRef();
target = state.target;
if ( menu_item.getType().equals( "container" ) )
icon_src = state.folder_url;
else
icon_src = state.file_url;
title = menu_item.getTitle();
// heading level for title line matches depth but there are only
// six heading levels in HTML so stop there.
int hlevel = (depth>6)?6:depth;
int level = ((depth-1)%10)+1;
// title in heading with appropriate class attribute
out.print( " " );
// optional link around whole title (inc. icon)
if ( href != null )
{
out.print( "" );
}
/*
* WebLearn modification [26/01/05] Alexis
* O'Connor. Renders more accurate / accessible value for
* alt attribute.
*/
out.print( "![\"Icon](\"");)
.
out.print( icon_src );
out.print( "\" " );
if ( depth==1 )
out.print( "class=\"" + state.css_class_prefix + "_node_icon_without_stalk\" />" );
else
out.print( "class=\"" + state.css_class_prefix + "_node_icon_no_expander\" />" );
// span is used to get everything on one line in browsers that
// lack CSS but CSS redfines as block.
out.print( "" );
if ( title != null )
out.print( title );
else
if ( href != null )
out.print( href );
else
out.print( "{untitled item}" );
if ( menu_item.getSize() != 0 )
{
out.print( " (");
out.print( Utils.toHumanReadableSize(menu_item.getSize()) );
out.print( ")");
}
out.print( "" );
if( href != null )
out.print( "" );
out.print( " " );
// files have no further content in the node.
// but resources have descriptions or introductions
// amendment - if big icons files have an empty content section
// to take up space next to icon and prevent next (floating)
// icon coming up next to current one.
if ( state.big_icons )
{
String content = " ";
out.print( "" );
out.print( content );
out.print( "" );
}
out.print( " \n");
}
protected void resourceMenuItem(Resource resource, Request breq, PrintWriter out, ResourceMenuOutputState state, int depth, int highlight)
throws IOException, BuildingServerException
{
Facility facility;
Template template;
String href=null, icon_src=null, title=null, target=null;
boolean italic=false; // should really use a redefinable style
boolean deny = false;
// determine href
href = ( !state.rootless && depth==1 )?null:
( breq.getContextPath() +breq.getServletPath() + resource.getFullName() );
target = "_top";
// using getTemplateGifUrl doesn't work for descendant resources - need to
// reference proper resource.
facility = state.fl.get( new Integer( resource.getHttpFacilityNo() ) );
if ( facility!=null )
{
template = Template.get( facility.facilityname, resource.getImplicitHttpUIStyle(), resource.getResourceId(), state.big_icons?"icon.gif":"iconsmall.gif" );
if ( template != null )
icon_src = breq.getContextPath() + state.gif_url + template.getUrl() + state.colour_code;
}
title = resource.getTitle();
if ( !resource.checkPermission( Permission.VIEW ) )
{
if ( state.anon )
// anonymous users are allowed to see link because
// they get a message about logging in if they enter
italic=true;
else
{
// logged in but no access - don't give link
href=null;
deny = true;
}
}
// heading level for title line matches depth but there are only
// six heading levels in HTML so stop there.
int hlevel = (depth>6)?6:depth;
int level = ((depth-1)%10)+1;
// title in heading with appropriate class attribute
out.print( " " );
// optional link around whole title (inc. icon)
if ( href != null )
{
out.print( "" );
}
/*
* WebLearn modification [26/01/05]
* Alexis O'Connor. Renders more accurate /
* accessible value for alt attribute.
*/
String resourceName = ResourceUtils.getFacility(resource).getName();
out.print( "![\"Icon](\"")
.
out.print( icon_src );
out.print( "\" " );
if ( depth==1 )
out.print( "class=\"" + state.css_class_prefix + "_node_icon_without_stalk\" />" );
else
out.print( "class=\"" + state.css_class_prefix + "_node_icon_no_expander\" />" );
// span is used to get everything on one line in browsers that
// lack CSS but CSS redfines as block.
out.print( "" );
if ( italic )
out.print( "" );
if ( title != null )
out.print( title );
else
if ( href != null )
out.print( href );
else
out.print( "{untitled item}" );
if ( italic )
out.print( "" );
out.print( "" );
if ( href != null )
out.print( "" );
out.print( " " );
String content;
if ( !state.rootless && depth==1 )
content = resource.getIntroduction();
else
content = resource.getDescription();
if ( deny )
content = "You are not included on the access list for this item.
" + content;
StringBuffer toOutput = new StringBuffer();
if (content != null && content.length()>0)
toOutput.append(content);
String markup = timedResourceText(resource);
if (markup != null && markup.length()>0)
{
if(toOutput.length() > 0)
toOutput.append("
");
toOutput.append(markup);
}
if (toOutput.length() == 0)
{
// This is a hack for IE7 so that the text always displays.
// The problem is that it means the display doesn't shrink when
// small icons are selected and there is no description.
toOutput.append(" ");
}
out.print( "" );
out.print(toOutput);
out.print( "" );
out.print( " \n");
}
/**
* Create a string that describes any time restraint on the resource. If
* there is no time constraint on this resource, this method returns
* null. Otherwise, this method returns a string that
* describes when this resource becomes available and when it is no longer
* available (as appropriate).
* @param resource the resource to be annotated.
* @return a string that describes any time restraint on the resource.
*/
protected String timedResourceText( Resource resource ) throws IOException
{
java.util.Date openDate = resource.getOpenDate();
java.util.Date closeDate = resource.getCloseDate();
if ( openDate == null && closeDate == null )
return null;
String markup = null;
markup = "This resource is available";
markup += (openDate != null)
? " from " + DateFormatter.formatDate( openDate, DateFormatter.MEDIUM ) : "";
markup += (closeDate != null)
? " until " + DateFormatter.formatDate( closeDate, DateFormatter.MEDIUM ) : "";
return markup;
}
protected void resourceMenuItemChildren( Object gen_item, Request breq, PrintWriter out, ResourceMenuOutputState state, int depth, int parent_highlight )
throws IOException, BuildingServerException {
if (gen_item instanceof MenuItem) {
MenuItem item = (MenuItem) gen_item;
resourceMenuItemChildren(item, breq, out, state, depth, parent_highlight);
}
else if (gen_item instanceof Resource) {
Resource resource = (Resource) gen_item;
Facility facility = state.fl.get(new Integer(resource.getHttpFacilityNo()));
facility.resourceMenuItemChildren(resource, breq, out, state, depth,
parent_highlight);
}
}
protected void resourceMenuItemChildren( Resource resource, Request breq, PrintWriter out, ResourceMenuOutputState state, int depth, int parent_highlight )
throws IOException, BuildingServerException
{
int i, highlight, level = ((depth-1)%10)+1;
Menu menu;
MenuItem item=null;
Resource resource_child=null;
Object gen_child=null;
MenuItem child; //, sibling;
Vector children=null, grandchildren=null;
boolean child_has_visible_child_resources = false;
boolean is_heading = false;
// start with interactive resource children
if ( state.full && resource != null && (level<=state.recursion_depth) )
children = getVisibleChildResourcesForMenu( resource );
else
children = new Vector();
// menuitems for root only
if ( state.rootless?depth==1:depth==2 )
{
menu = state.session.getResourceMenu();
item = (MenuItem)menu.getRoot();
}
for ( i=0; item!=null && i" );
if ( state.detached_root )
{
out.println( " " );
out.println( " " );
out.println( "Where you can go from here" );
out.println( " " );
out.println( " " );
}
}
else
{
out.print( indent );
out.print( " " );
}
for ( i=0; istate.recursion_depth )
child_has_visible_child_resources=false;
else
{
grandchildren = getVisibleChildResourcesForMenu( resource_child );
child_has_visible_child_resources = grandchildren.size()>0;
}
}
//highlight = (((state.root_highlight-1) ^ (depth-1) ^ i) & 1) + 1;
highlight = (((parent_highlight-1) ^ (i+1)) & 1) + 1;
// put every child in a branch
// (every branch in branch border)
out.print( indent );
out.print( " " );
out.print( indent );
out.print( " " );
// put every child other than headings in a node too
if ( !is_heading )
{
out.print( indent );
out.print( " 0)?"y":"n" );
out.print( "_lev" );
out.print( level );
out.print( "_hl" );
out.print( highlight );
out.println( "\">" );
}
out.print( indent );
resourceMenuItem( gen_child, breq, out, state, depth, highlight );
if ( !is_heading )
out.println( " " ); // end of node
if ( resource_child!=null && (depth+1)<=state.recursion_depth )
resourceMenuItemChildren( resource_child, breq, out, state, depth+1, highlight );
if ( child!=null && child.getChildCount()>0 )
resourceMenuItemChildren( child, breq, out, state, depth+1, highlight );
out.println( " " ); // end of branch
out.println( " " ); // end of branch border
}
if ( !state.rootless || level != 1 )
out.print( " " );
out.println( " " ); // end siblings or tree
}
private void resourceMenuItemChildren( MenuItem menu_item, Request breq, PrintWriter out, ResourceMenuOutputState state, int depth, int parent_highlight )
throws IOException, BuildingServerException
{
int i, highlight, level = ((depth-1)%10)+1;
Resource resource_child = null;
Object gen_child=null;
MenuItem child; //, sibling;
Vector children=null, grandchildren=null;
boolean child_has_visible_child_resources = false;
children = new Vector();
for ( i=0; i" );
if ( state.detached_root )
{
out.println( " " );
out.println( " " );
out.println( "Where you can go from here" );
out.println( " " );
out.println( " " );
}
}
else
{
out.print( indent );
out.print( " " );
}
for ( i=0; i state.recursion_depth)
child_has_visible_child_resources = false;
else
{
grandchildren = getVisibleChildResourcesForMenu(resource_child);
child_has_visible_child_resources = grandchildren.size() > 0;
}
}
//highlight = (((state.root_highlight-1) ^ (depth-1) ^ i) & 1) + 1;
highlight = ( ( (parent_highlight - 1) ^ (i + 1)) & 1) + 1;
// put every child in a branch
// (every branch in branch border)
out.print(indent);
out.print(" ");
out.print(indent);
out.print(" ");
// put every child other than headings in a node too
out.print(indent);
out.print(" 0) ? "y" : "n");
out.print("_lev");
out.print(level);
out.print("_hl");
out.print(highlight);
out.println("\">");
out.print(indent);
resourceMenuItem(gen_child, breq, out, state, depth, highlight);
out.println(" "); // end of node
if (resource_child != null && (depth + 1) <= state.recursion_depth)
resourceMenuItemChildren( resource_child, breq, out, state, depth+1, highlight );
if (child != null && child.getChildCount() > 0)
resourceMenuItemChildren(child, breq, out, state, depth + 1, highlight);
out.println(" "); // end of branch
out.println(" "); // end of branch border
}
if ( !state.rootless || level != 1 )
out.print( " " );
out.println( " " ); // end siblings or tree
}
// inner class used to pass some state information through recursive methods
class ResourceMenuOutputState
{
int root_highlight;
boolean rootless;
boolean detached_root;
boolean full;
boolean anon;
boolean big_icons;
String css_class_prefix;
int recursion_depth;
String target;
String gif_url;
String file_url;
String folder_url;
String colour_code;
BuildingSession session;
FacilityList fl;
}
private Vector getVisibleChildResourcesForMenu( Resource resource )
throws BuildingServerException
{
Vector children = new Vector();
// can't see children if can't enter parent
if ( !resource.checkPermission( Permission.VIEW ) )
return children;
Enumeration enumeration = resource.findChildren();
while ( enumeration.hasMoreElements() )
{
resource = (Resource)enumeration.nextElement();
if ( resource.checkPermission( Permission.SEE ) )
children.addElement( resource );
}
return children;
}
public void fullResourceMenu( Request breq, PrintWriter out )
throws IOException
{
fullResourceMenu( breq, out, null );
}
// outputs integrated menu of interactive resources and uploaded files
// including introductory text of requested resource
public void fullResourceMenu( Request breq, PrintWriter out, String target )
throws IOException
{
try
{
resourceMenu( breq, out, true, target );
}
catch ( BuildingServerException e )
{
log.error( e.getMessage(), e );
throw new IOException( e.getMessage() );
}
}
// For compatibility with old templates this outputs just uploaded files.
public void resourceMenu( Request breq, PrintWriter out )
throws IOException
{
try
{
resourceMenu( breq, out, false, null );
}
catch ( BuildingServerException e )
{
log.error( e.getMessage(), e );
throw new IOException( e.getMessage() );
}
}
// outputs menu of uploaded files and optionally interactive resources
// so far output of interactive resources isn't implemented so full is
// ignored.
public void resourceMenu( Request breq, PrintWriter out, boolean full, String target )
throws IOException, BuildingServerException
{
int i, max_depth=1;
Menu menu;
MenuItem item, child;
Vector visible_children;
try
{
ResourceMenuOutputState state = new ResourceMenuOutputState();
state.full = full;
state.root_highlight = 1;
state.target = target;
state.colour_code = styleSheet.getTemplateGifColourMapperCode( breq, "bodington_navigation_page" );
state.gif_url = "/processedgif/templates";
state.session = breq.getBuildingSession();
String big_icons = state.session.getProperty( "ui_navigation_menu_big_icons", "no" );
String prefered_big_icons = getAutomaticPreferenceByScreenSize(
breq, "preference.navigation.menu.big_icons", "no", big_icons );
state.big_icons = "yes".equalsIgnoreCase( prefered_big_icons );
state.file_url = this.getTemplateGifUrl( breq, "bodington_navigation_page", state.big_icons?"bs_template_file.gif":"bs_template_file-small.gif", false );
state.folder_url = this.getTemplateGifUrl( breq, "bodington_navigation_page", state.big_icons?"bs_template_folder.gif":"bs_template_folder-small.gif", false );
state.css_class_prefix = state.big_icons?"res_tree_big":"res_tree";
state.fl = FacilityList.getFacilities();
state.anon = breq.getServerNavigationSession().isAnonymous();
String type = state.session.getProperty( "ui_navigation_menu_type", "plain" );
String prefered_type = getPreference( breq, "preference.navigation.menu.type" );
if ( "plain".equalsIgnoreCase( prefered_type ) ||
"attached".equalsIgnoreCase( prefered_type ) ||
"detached".equalsIgnoreCase( prefered_type ) )
type = prefered_type;
//boolean tree = "tree".equalsIgnoreCase( getPreference( breq, "preference.navigation.menu.tree" ) );
boolean tree = "attached".equals( type );
state.detached_root = "detached".equals( type );
// resource property switches on recursion
max_depth=1;
try
{
String prop = state.session.getProperty( "ui_navigation_menu_ancestors", "1" );
max_depth = Integer.parseInt( prop );
if ( max_depth<1 ) max_depth = 1;
if ( max_depth>5 ) max_depth = 5;
}
catch ( NumberFormatException nfe )
{
max_depth=1;
}
// but user can switch off
if ( "suppress".equalsIgnoreCase( getPreference( breq, "preference.navigation.menu.ancestors" ) ) )
max_depth=1;
// suppress tree if old style files only menu
if ( !full ) {tree = false; max_depth=1;}
// actually this is just the uploaded files in the form of an
// IMS style contents page or full file listing
// it doesn't include interactive resources - should be integrated
// some time.
menu = state.session.getResourceMenu();
item = (MenuItem)menu.getRoot();
visible_children = getVisibleChildResourcesForMenu( breq.getResource() );
// in tree mode the node representing the resource itself is shown.
if ( tree )
{
state.recursion_depth = max_depth+1; // add 1 to include root
state.rootless = false;
out.println( "" );
out.println( " " );
out.print( " " );
out.print( "Where you are" );
if ( item.getChildCount() > 0 || visible_children.size() > 0 )
out.print( " and where you can go from here" );
out.println( " " );
out.println( " " );
out.println( " " );
out.println( " " );
out.println( " 0 || !visible_children.isEmpty())?"y":"n") +
"_lev1_hl1\">" );
resourceMenuItem( breq.getResource(), breq, out, state, 1, 1 );
out.println( " " );
// method will only output div elements if there is at least
// one node to display
resourceMenuItemChildren( breq.getResource(), breq, out, state, 2, 1 );
out.println( " " );
out.println( " " );
out.println( "" );
}
else
// otherwise each top level item is output in its own tree.
{
state.recursion_depth = max_depth;
if ( full )
{
if ( state.detached_root )
{
out.println( "" );
out.println( " " );
out.println( " " );
out.println( "Where you are" );
out.println( " " );
out.println( " " );
out.println( " " );
out.println( " " );
out.println( " " );
resourceMenuItem( breq.getResource(), breq, out, state, 1, 1 );
out.println( " " );
// method will only output div elements if there is at least
// one node to display
out.println( " " );
out.println( " " );
out.println( "" );
out.println( "" );
}
else
{
out.print( "" );
out.print( breq.getResource().getIntroduction() );
out.println( "" );
}
}
state.rootless = true;
// method will only output div elements if there is at least
// one node to display
resourceMenuItemChildren( breq.getResource(), breq, out, state, 1, 2 );
}
}
catch ( BuildingServerException bsex )
{
logException( out, "Facility", "resourceMenu",
"A technical problem occurred.",
bsex );
return;
}
}
/**
* Writes html anchor tag with href attribute that has username appended to query part of URL.
* uhi:awc
* @param breq The Building HTTP request.
* @param out The PrintWriter.
* @param url The url used by href attribute.
* @param text The link text.
*/
public void writeTemplateUsernameLoginTag( Request breq, PrintWriter out, String target, String url, String text)
throws IOException
{
String loginUrl = getUsernameLoginUrl(breq, url);
if (target != null && (target.length() == 0 || target.equalsIgnoreCase("null")))
target = null;
out.print( "" );
out.print(text);
out.print( "" );
}
public void writeTemplateGifUrl( Request breq, PrintWriter out, String html_body_class, String name )
throws IOException
{
String url = getTemplateGifUrl( breq, html_body_class, name );
out.print( url );
}
public void writeTemplateGifTag( Request breq, PrintWriter out, String html_body_class, String tag, String name, String attributes )
throws IOException
{
String url = getTemplateGifUrl( breq, html_body_class, name );
out.print( "<" );
out.print( tag );
out.print( " " );
out.print( attributes );
out.print( " src=\"" );
out.print( url );
out.print( "\" />" );
}
public String getTemplateGifUrl( Request breq, String html_body_class, String name )
{
return getTemplateGifUrl( breq, html_body_class, name, false );
}
public String getTemplateGifUrl( Request breq, String html_body_class, String name, boolean rel_to_context )
{
if ( !name.startsWith( "bs_template_" ) )
return name;
BuildingContext context = BuildingContext.getContext();
Resource resource = null;
String colour_mapper_code="";
Template template = null;
try
{
// get colour mapper for resource properties and user prefs.
colour_mapper_code = styleSheet.getTemplateGifColourMapperCode( breq, html_body_class );
// get current resource
resource = context.getResource();
if ( resource == null )
return name;
// template from current resource, not style root resource
template = Template.get(
this.facilityname,
resource.getImplicitHttpUIStyle(),
resource.getResourceId(),
name.substring( "bs_template_".length() ) );
}
catch ( Exception ex )
{
log.error( ex.getMessage(), ex );
}
if ( template == null )
return name;
StringBuffer rname = new StringBuffer( 128 );
if ( !rel_to_context )
rname.append( breq.getContextPath() );
rname.append( "/processedgif/templates" );
rname.append( template.getUrl() );
rname.append( colour_mapper_code );
return rname.toString();
}
private void navigation( Request breq, PrintWriter out, String name )
throws IOException
{
// this method is only called from legacy templates and we
// have to assume that the html page class has been given
// us in an attribuate to the BUILDING tag but we expect
// the default to be a navigation page.
String html_body_class = breq.getInsertAttribute( "html_body_class", "bodington_navigation_page" );
navigation( breq, out, html_body_class, name );
}
public void navigation( Request breq, Response response, String name )
throws IOException
{
// this method is only called from legacy templates and we
// have to assume that the html page class has been given
// us in an attribuate to the BUILDING tag but we expect
// the default to be a navigation page.
String html_body_class = response.getHtmlBodyClass();
PrintWriter out = response.getWriter();
navigation( breq, out, html_body_class, name );
}
/**
* Write out markup concerned with navigating the system. This method is
* driven by the hierarchical arrangement of resources in the system
* (e.g. buildings, floors and rooms), to render the view to enable a
* user to navigate the system. The name parameter can
* take the values links, linkout,
* managelink and notifyswitch. This
* method is typically called from within
* {@link #insert(Request, PrintWriter, String, String)}.
* @param breq the request object.
* @param out the writer object.
* @param html_body_class the html body class (see
* {@link org.bodington.servlet.Response#getHtmlBodyClass()}).
* @param name the name of the parameter.
* @throws IOException
* @see org.bodington.servlet.Response#getHtmlBodyClass()
* @see #insert(Request, PrintWriter, String, String)
*/
public void navigation( Request breq, PrintWriter out, String html_body_class, String name )
throws IOException
{
// TODO: Simplify the way links are handled here.
// -> create a Link superclass or Interface.
if ( out == null )
return;
String icon, smliconurl, iconurl, spacerurl, parentsmliconurl, description, target, available_date;
boolean range, link, italic, heading, quicklink, sentientlink, newWindow, isDescription;
boolean textblock, newsfeed, blog;
int n;
BuildingContext context;
Resource resource, parent, current, next;
context = BuildingContext.getContext();
FacilityList fl = FacilityList.getFacilities();
Facility facility;
Template template;
String colour_mapper_code="";
java.util.Date openDate, closeDate;
org.bodington.servlet.HttpSession http_session = (org.bodington.servlet.HttpSession)breq.getSession( false );
NavigationSession nav_session = breq.getServerNavigationSession();
try
{
StyleSheetSessionData sssd = styleSheet.getStyleSheetSessionData( http_session );
ColourPreferenceMapper colour_mapper = sssd.getUserColourPreferenceMapper( http_session );
BuildingSession session = breq.getBuildingSession();
Color f;
Color b;
if ( "bodington_navigation_page".equals( html_body_class ) )
{
f = session.getPropertyColor( "style_navigation_graphic_foreground_colour", new Color( 0xeeeeee ) );
b = session.getPropertyColor( "style_navigation_graphic_background_colour", new Color( 0x111111 ) );
}
else
{
f = session.getPropertyColor( "style_graphic_foreground_colour", new Color( 0xeeeeee ) );
b = session.getPropertyColor( "style_graphic_background_colour", new Color( 0x111111 ) );
}
colour_mapper.setReferenceColours( b, f );
colour_mapper_code = "?code=" + colour_mapper.toString();
}
catch ( BuildingServerException bsex )
{
logException( out, "Facility", "navigation",
"A technical problem occurred.",
bsex );
colour_mapper_code = "";
}
String tree_attribute = (String)breq.getInsertAttribute( "tree", null );
boolean tree = tree_attribute == null ||
tree_attribute.equalsIgnoreCase( "yes" ) ||
tree_attribute.equalsIgnoreCase( "true" ) ;
try
{
resource = context.getResource();
parent = resource.getParent();
if ( name.substring( 0, 5 ).equalsIgnoreCase( "links" ) )
{
parentsmliconurl = "bs_template_navigation_iconsmall.gif";
template = Template.get( this.facilityname, resource.getImplicitHttpUIStyle(), resource.getResourceId(), "iconsmall.gif" );
if ( template != null )
parentsmliconurl = breq.getContextPath() + "/processedgif/templates" + template.getUrl() + colour_mapper_code;
Enumeration enumeration=resource.findChildren();
n=0;
current=null;
while ( enumeration.hasMoreElements() )
{
current = (Resource)enumeration.nextElement();
if ( current.checkPermission( Permission.SEE ) )
break;
current=null;
}
while( current!=null )
{
next=null;
while ( enumeration.hasMoreElements() )
{
next = (Resource)enumeration.nextElement();
if ( next.checkPermission( Permission.SEE ) )
break;
next=null;
}
// find url of small icon for current resource
smliconurl = current.getName() + "/bs_template_navigation_iconsmall.gif";
facility = fl.get( new Integer( current.getHttpFacilityNo() ) );
if ( facility!=null )
{
template = Template.get( facility.facilityname, current.getImplicitHttpUIStyle(), current.getResourceId(), "iconsmall.gif" );
if ( template != null )
smliconurl = breq.getContextPath() + "/processedgif/templates" + template.getUrl() + colour_mapper_code;
}
if ( n==0 )
{
// if we have found a resource to list start off the table
out.print( "" );
if ( tree )
{
// first display
// icon for containing resource
out.print( "" );
out.print( "" );
//out.print( " " );
out.println( " " );
out.print( "" );
out.println( "
" + available_date);
out.println( "" );
if ( tree )
{
if ( next==null )
out.println( "" );
else
out.println( " " );
if ( current.getResourceType() != Resource.RESOURCE_HEADING )
out.println( " + )
" );
else
out.println( "" );
out.println( " " );
}
if ( current.getResourceType() == Resource.RESOURCE_HEADING )
{
out.print( "" );
out.print( "" );
out.print( current.getTitle() );
out.print( "
" );
target = " >";
if (isDescription) {
out.println("");
out.print(description);
if (current.checkPermission(Permission.MANAGE)) {
out.print(target);
if (available_date != null)
out.println(available_date);
}
out.println( "" );
}
if ( !isDescription && current.checkPermission( Permission.MANAGE ) ) {
out.print( target );
if (available_date != null)
out.println(available_date);
}
//if ( next!=null && next.getResourceType() != Resource.RESOURCE_HEADING )
out.println( " " );
}
else if ( blog || newsfeed ) /** @todo add textblock.... */
{
// out.println( current.getMenuItemDisplay( current, smliconurl ) );/** @todo make method static? */
}
else
{
out.print( "" );
//out.println( "
" );
/*
* WebLearn inserted code; A Corfield 10/12/03
* Handles QuickLink newWindow property
*/
if ( link ) {
if ( quicklink ) {
String href = QuickLinkFacility.getLink((QuickLink)current, breq, true);
if (href.equals("") || !newWindow)
target = "";
else
target = "";
} else if ( sentientlink ) {
String href = ((SentientLink)current).getUrl();
if (href.equals("") || !newWindow)
target = "";
else
target = "";
} else
target = "";
out.print( target );
} else
target = null;
out.print( "" );
if ( link )
out.print( "" );
out.println( " " );
out.print( "" );
//out.println( "
" );
if ( link )
out.print( "" );
//out.print( "" );
out.print( "" );
if ( italic )
out.print( "" );
out.print( current.getTitle() );
if ( italic )
out.print( "" );
//out.println( " " );
out.println( "" );
if ( link )
out.print( "" );
else
out.println( "
You are not included on the access list for this item." );
if (quicklink || sentientlink)/* @todo link directly to manage.html? */
target = " >";
if (isDescription) {
out.print( "" );
out.print( current.getDescription() );
if (current.checkPermission(Permission.MANAGE)) {
if (quicklink || sentientlink)
out.print(target);
if (available_date != null)
out.println(available_date);
}
out.print( "" );
}
if (!isDescription && current.checkPermission(Permission.MANAGE)) {
if (quicklink || sentientlink)
out.println(target);
if (available_date != null)
out.println(available_date);
}
out.println( " " );
}
out.println( " " );
current = next;
}
if ( n>0 )
out.println( "
" );
return;
}
if ( name.equalsIgnoreCase( "linkout" ) )
{
String nav_bar_height = getAutomaticPreferenceByScreenSize(
breq, "preference.navigation.nav_bar_height", "small", "big" );
boolean small_bar = "small".equalsIgnoreCase( nav_bar_height );
String nav_bar_icons = getAutomaticPreferenceByScreenSize(
breq, "preference.navigation.nav_bar_icon_list", "reduced", "full" );
boolean reduced_icons = "reduced".equalsIgnoreCase( nav_bar_icons );
String absurl= breq.getContextPath() +
breq.getServletPath() + "/";
Enumeration branch;
try
{
branch = resource.findAncestors();
}
catch ( BuildingServerException bsex )
{
out.println( bsex.toString() );
return;
}
//make sure there is no white space between tags
//to prevent line breaks.
//iterate the location tree adding icons to backtrack out
//include the current location and put a link on it (which
//will reload current location)
template = Template.get( this.facilityname, resource.getImplicitHttpUIStyle(), resource.getResourceId(), "spacer.gif" );
if ( template != null )
spacerurl = breq.getContextPath() + "/processedgif/templates" + template.getUrl() + colour_mapper_code;
else
spacerurl = "bs_template_navigation_spacer.gif";
out.print( "" );
for ( int i=0; branch.hasMoreElements(); i++ )
{
current=(Resource)branch.nextElement();
if ( current.getParentResourceId() != null )
absurl=absurl+current.getName()+"/";
// skip if reduced list of icons option on
// and this is neither selected resource or parent
if ( reduced_icons && current!=resource && current != parent )
continue;
iconurl = absurl + (small_bar?"bs_template_navigation_iconsmall.gif":"bs_template_navigation_icon.gif");
facility = fl.get( new Integer( current.getHttpFacilityNo() ) );
if ( facility!=null )
{
template = Template.get( facility.facilityname, current.getImplicitHttpUIStyle(), current.getResourceId(),
(small_bar?"iconsmall.gif":"icon.gif") );
if ( template != null )
iconurl = breq.getContextPath() + "/processedgif/templates" + template.getUrl() + colour_mapper_code;
}
if ( !small_bar )
{
out.print( "" );
}
out.print( "" );
out.print( "" );
out.print( "" );
}
out.println( " " );
return;
}
if ( name.equalsIgnoreCase( "MANAGELINK" ) )
{
out.println( "Manage this resource." );
}
if ( name.equalsIgnoreCase( "notifyswitch" ) )
{
User user = (User)context.getUser();
if ( nav_session.isAnonymous() )
return;
UserEventSetup ues=null;
try
{
ues = UserEventSetup.findOrCreate(user);
//check input to see if it is switched
String str=breq.getParameter( "switch.x" );
if ( str!=null )
{
if ( ues.containsResource( breq.getResource() ) )
{
ues.removeResource( breq.getResource() );
out.println( "" );
}
else
{
ues.addResource( breq.getResource() );
out.println( "" );
}
}
out.print("");
if ( ues.containsResource( breq.getResource() ) )
out.print("Don't Notify Me");
else
out.print("Notify Me");
out.print( "" );
}
catch ( Exception ex )
{
//do nowt
return;
}
}
}
catch ( BuildingServerException bsex )
{
return;
}
out.print( "" );
}
/**
* Utility method for displaying the icon ALT text.
* @param resource The resource to display the alt text for.
* @return The string for the alt text.
*/
public static String iconName(Resource resource)
{
String resourceName = ResourceUtils.getFacility(resource).getName();
return "Icon for "
+ (TextUtils.beginsWithVowel(resourceName) ? "an" : "a") + " "
+ resourceName + ".";
}
public String fileParameter( Request req )
{
String url;
StringBuffer dest_filename = new StringBuffer();
for ( int i=0; i" );
file = req.getParameterFileLocation( "file" );
file_name = req.getParameterFileName( "file" );
if ( file_name == null || file_name.length() == 0 )
{
if ( rawconfirmation )
out.print( "ERROR:\t" );
out.println( "Upload failed because no file name was supplied in the form." );
if ( rawconfirmation )
out.println( "" );
return false;
}
dest_filename.append( fileParameter( req ) );
if ( dest_filename.length()>0 )
dest_filename.append( "/" );
try
{
session = BuildingSessionManagerImpl.getSession( parent );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
if ( file!=null && file_name!=null )
{
if ( file_name.indexOf( '/' )>=0 || file_name.indexOf( '\\' )>=0 )
{
if ( rawconfirmation )
out.print( "ERROR:\t" );
out.println( "File names may not contain any slash or backslash characters." );
if ( rawconfirmation )
out.println( "" );
return false;
}
dest_filename.append( file_name );
summary = session.getUploadedFileSession().transferFile( file, dest_filename.toString(), null );
if ( rawconfirmation )
out.println( "OK" );
else
out.println( "
File upload succeeded." );
UserFileEvent event = new UserFileEvent(
UserFileEvent.EVENT_UPLOAD, req.getResource(), summary);
event.save();
}
}
catch (BuildingServerUserException bsue)
{
if (rawconfirmation)
Utils.writeUserExceptionRaw(bsue, out);
else
Utils.writeUserExceptionHTML(bsue, out);
}
catch ( Exception ex )
{
if ( rawconfirmation )
{
out.println( "ERROR: Exception: " + ex.getMessage() );
logException( null, "Facility", "upload",
"A technical problem occurred.",
ex );
}
else
logException( out, "Facility", "upload",
"A technical problem occurred.",
ex );
return false;
}
if ( rawconfirmation )
out.println( "" );
return true;
}
/**
* Upload a zipfile into the resource.
* Currently this doesn't use
* {@link UploadedFileSession#transferZipFile(ZipFile, String)} because it wants
* to give the user feedback as the unpacking progresses.
* @param req The servlet request.
* @param out The PrintWriter to output the progress messages to.
*/
private void uploadzip( Request req, PrintWriter out )
throws ServletException, IOException
{
String dest_filename;
String zipfile, file, file_name, mime_type, startfilename;
BuildingSession session;
PrimaryKey id;
UploadedFileSummary summary;
ZipFile archive=null;
ZipEntry zipentry;
InputStream zipinput;
OutputStream fout;
byte buffer[] = new byte[1024];
zipfile = req.getParameterFileLocation( "file" );
startfilename = fileParameter( req );
if ( startfilename.length()>0 )
startfilename = startfilename + "/";
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
}
catch ( Exception ex )
{
logException( out, "Facility", "uploadzip",
"A technical problem occurred.",
ex );
return;
}
out.println( "Zip file uploaded, started to unpack.
" );
try
{
archive = new ZipFile( zipfile );
}
catch (ZipException e)
{
out.println("There was a problem expanding the zip file. Maybe it "
+ "isn't a zip file?");
log.error("Problem expanding zip file: " + zipfile);
return;
}
for ( Enumeration enumeration=archive.entries(); enumeration.hasMoreElements(); )
{
zipentry = (ZipEntry)enumeration.nextElement();
log.debug( "ZIP Entry = [" + zipentry + "]" );
//ignore directories - don't create empty folders
file_name = zipentry.getName();
if ( zipentry.isDirectory() || file_name==null )
continue;
log.debug( "ZIP file = [" + file_name + "]" );
if ( file_name.indexOf( '\\' ) >=0 )
{
out.print( "
Skipped ZIP file entry \"" );
out.print( file_name );
out.print( "\" because the name contained a back slash.
" );
continue;
}
if ( file_name.startsWith( "/" ) )
dest_filename = startfilename + file_name.substring( 1 );
else
dest_filename = startfilename + file_name;
zipinput = new BufferedInputStream(archive.getInputStream( zipentry ));
if ( zipinput==null )
{
out.println( "Unreadable ZIP file entry: " );
out.println( zipentry.toString() );
out.println( "
" );
continue;
}
file = BuildingContext.createTempFile( "zipentry", ".zbin" ).getAbsolutePath();
fout = new BufferedOutputStream(new FileOutputStream( file ));
int bytesRead;
while ( (bytesRead = zipinput.read(buffer)) >= 0 )
fout.write(buffer, 0, bytesRead);
fout.close();
zipinput.close();
try
{
summary = session.getUploadedFileSession().transferFile( file, dest_filename, null );
out.println( "Unpacked another file, looking for next....
" );
out.flush();
UserFileEvent event = new UserFileEvent(
UserFileEvent.EVENT_UPLOAD, req.getResource(), summary);
event.save();
}
catch (BuildingServerUserException bsue)
{
out.print("Problem with file: "+ dest_filename);
Utils.writeUserExceptionHTML(bsue, out);
}
catch ( Exception ex )
{
logException( out, "Facility", "uploadzip",
"A technical problem occurred.",
ex );
return;
}
}
out.println( "Finished unpacking the ZIP file." );
out.println( "" );
out.flush();
archive.close();
(new File( zipfile )).delete();
}
/**
* Gets details about an uploaded file.
* @param req The request.
* @param out The ouput to write HTML to.
* @throws ServletException Shouldn't be thrown
* @throws IOException Thrown when we have problems doing RMI.
*/
private void fileinfo( Request req, PrintWriter out )
throws ServletException, IOException
{
String dest_filename=null;
String dest_url=null;
String property, url;
BuildingSession session;
Object attribute;
PrimaryKey id;
UploadedFileSummary summary;
property = req.getInsertAttribute( "property", null );
if ( property==null )
return;
try
{
session = req.getBuildingSession();
summary = (UploadedFileSummary)req.getRequestProperty( "uploadedfilesummary" );
if ( summary==null )
{
dest_filename = fileParameter( req );
log.debug( "File url is " + dest_filename.toString() );
summary = session.getUploadedFileSession().getFileSummary( dest_filename.toString() );
// pretend there's a root folder even if there isn't one.
if ( summary==null && dest_filename.length()==0 )
{
log.debug( "making pretend root folder" );
UploadedFile uploadedFile = new UploadedFile();
uploadedFile.setFlags(UploadedFileSummary.FLAG_FOLDER);
summary = uploadedFile.getSummary();
}
if ( summary==null )
{
if ( property.equalsIgnoreCase( "name" ) )
out.print( "file not found" );
log.info("Unable to find uploaded file summary");
return;
}
// if its a made up root folder the url is blank
// otherwise the session can provide the url
if ( summary.getUploadedFileId() == null )
dest_url = "";
else
dest_url = session.getUploadedFileSession().getPublishedURL( summary.getUploadedFileId() );
req.setRequestProperty( "uploadedfilepath", dest_url );
req.setRequestProperty( "uploadedfilesummary", summary );
}
else
dest_url = (String)req.getRequestProperty( "uploadedfilepath" );
/*
* WebLearn inserted code; A Corfield 02/12/2003
* Prints UploadedFileId
*/
if ( property.equalsIgnoreCase( "id" ) )
{
if ( summary.getParentUploadedFileId()==null )
out.print( "Root folder for this resource" );
else
out.print( summary.getUploadedFileId() );
}
if ( property.equalsIgnoreCase( "name" ) )
{
if ( summary.getParentUploadedFileId()==null )
out.print( "Root folder for this resource" );
else
out.print( summary.getName() );
}
if ( property.equalsIgnoreCase( "url" ) )
{
if ( summary.getParentUploadedFileId()==null )
out.print( "Root folder for this resource" );
else
out.print( summary.getUrl() );
}
if ( property.equalsIgnoreCase( "webaddress" ) )
{
BodingtonURL bodUrl = new BodingtonURL(req);
if (summary.getParentUploadedFileId() == null)
out.print(bodUrl.getResourceUrl(req.getResource()));
else
{
UploadedFile file = UploadedFile.findUploadedFile(summary.getUploadedFileId());
out.print( bodUrl.getUploadedFileUrl(file) );
}
}
if ( property.equalsIgnoreCase( "size" ) )
out.print( Utils.toHumanReadableSize(summary.getSize()) );
if ( property.equalsIgnoreCase( "updatedtime" ) )
{
if ( summary.getUpdatedTime() != null )
/* WebLearn (Bug-fix) A O'Connor [13/12/04]
* Displays date in more user-oriented way */
out.print( DateFormatter.formatDate( summary.getUpdatedTime(), DateFormatter.MEDIUM) );
else
out.print( "
~ " );
}
if ( property.equalsIgnoreCase( "updateuser" ) )
{
PrimaryKey uid = summary.getUpdateUserId();
if ( uid!=null )
out.print( session.getNameOfUser( uid ) );
else
out.print( "~ " );
}
if ( property.equalsIgnoreCase( "mimetype" ) )
{
String mimeType = summary.getMimeType();
if (mimeType != null && mimeType.length() > 0)
out.print(mimeType);
else
out.print("auto");
}
}
catch ( Exception ex )
{
logException( out, "Facility", "fileinfo",
"A technical problem occurred.",
ex );
}
}
private void filerename( Request req, PrintWriter out )
throws ServletException, IOException
{
StringBuffer dest_filename=null;
String newname;
BuildingSession session;
Object attribute;
PrimaryKey id;
UploadedFileSummary summary;
newname = req.getParameter( "name" );
if ( newname==null || newname.length()==0 )
{
out.println( "You have to supply a name
" );
return;
}
if ( newname.length()>255 )
{
out.println( "Name is too long
" );
return;
}
if ( newname.indexOf( '/' ) >=0 || newname.indexOf( '\\' ) >=0 )
{
out.println( "Name cannot contain forward or backward slashes.
" );
return;
}
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
dest_filename=new StringBuffer();
dest_filename.append( fileParameter( req ) );
session.getUploadedFileSession().renameFile( dest_filename.toString(), newname );
}
catch (BuildingServerUserException bsue)
{
out.write(bsue.getMessage());
}
catch ( Exception ex )
{
logException( out, "Facility", "filerename",
"A technical problem occurred.",
ex );
}
}
private boolean fileisdeleted( Request req )
throws ServletException, IOException
{
StringBuffer dest_filename=null;
String property;
BuildingSession session;
Object attribute;
PrimaryKey id;
UploadedFileSummary summary;
try
{
session = req.getBuildingSession();
summary = (UploadedFileSummary)req.getRequestProperty( "uploadedfilesummary" );
if ( summary==null )
{
dest_filename=new StringBuffer();
dest_filename.append( fileParameter( req ) );
summary = session.getUploadedFileSession().getFileSummary( dest_filename.toString() );
// pretend there's a root folder even if there isn't one.
if ( summary==null && dest_filename.length()==0 )
{
UploadedFile uploadedFile = new UploadedFile();
uploadedFile.setFlags(UploadedFileSummary.FLAG_FOLDER);
summary = uploadedFile.getSummary();
}
if ( summary==null )
{
return false;
}
if ( summary.isFolder() )
dest_filename.append( "/" );
req.setRequestProperty( "uploadedfilepath", dest_filename.toString() );
req.setRequestProperty( "uploadedfilesummary", summary );
}
if ( dest_filename==null )
{
dest_filename = new StringBuffer();
dest_filename.append( req.getRequestProperty( "uploadedfilepath" ) );
}
return summary.isDeleted();
}
catch ( Exception ex )
{
logException( null, "Facility", "fileisdeleted",
"A technical problem occurred.",
ex );
}
return false;
}
private void foldercreate( Request req, PrintWriter out )
throws ServletException, IOException
{
StringBuffer dest_filename=new StringBuffer();
String folder;
BuildingSession session;
UploadedFileSummary summary;
folder = req.getParameter( "subfolder" );
if ( folder==null || folder.length()<=0 )
{
out.println( "Folder name must have one or more characters.
" );
return;
}
if ( folder.length()>255 )
{
out.println( "Name is too long
" );
return;
}
dest_filename.append( fileParameter( req ) );
if ( dest_filename.length()>0 )
dest_filename.append( "/" );
dest_filename.append( folder );
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
summary = session.getUploadedFileSession().createFolder( dest_filename.toString() );
UserFileEvent event = new UserFileEvent(UserFileEvent.EVENT_FOLDER_CREATED,
req.getResource(), summary);
event.save();
}
catch ( Exception ex )
{
logException( out, "Facility", "foldercreate",
"A technical problem occurred.",
ex );
}
}
protected void rawfileproperties( PrintWriter out, Vector path )
throws IOException
{
UploadedFileSummary ufs=null;
if ( path.size()<2 )
{
return;
}
for ( int i=1; i< path.size(); i++ )
{
ufs = (UploadedFileSummary)path.elementAt( i );
out.print( "/" );
out.print( ufs.getUrl() );
}
if ( ufs.isFolder() )
out.print( "/" );
out.print( "\t" );
out.print( ufs.getSize() );
out.print( "\t" );
out.print( ufs.getUpdatedTime().toGMTString() );
out.print( "\n" );
}
protected void rawfileindex( Request req, PrintWriter out )
throws IOException, ServletException
{
int i, j, k, n;
StringBuffer address= new StringBuffer();
BuildingSession session;
UploadedFileSummary[] summaries;
UploadedFileSummary parent;
Vector path = new Vector();
out.println( "" );
try
{
session = req.getBuildingSession();
//get ALL files including those marked as deleted.
summaries = session.getUploadedFileSession().getFileAndDescendentSummaries( null, false );
}
catch ( Exception ex )
{
out.println( "ERROR:\tTechnical Problem finding file list " + ex );
out.println( "" );
return;
}
if ( summaries.length == 0 )
{
summaries = new UploadedFileSummary[1];
UploadedFile uploadedFile = new UploadedFile();
uploadedFile.setFlags(UploadedFileSummary.FLAG_FOLDER);
summaries[0] = uploadedFile.getSummary();
}
path.addElement( summaries[0] );
for ( i=1; i=0; j-- )
{
parent = (UploadedFileSummary)path.elementAt(j);
if ( summaries[i].getLeftIndex() > parent.getLeftIndex() &&
summaries[i].getRightIndex() < parent.getRightIndex() )
break;
}
// j indexes parent or is -1
path.setSize( j+1 );
path.addElement( summaries[i] );
rawfileproperties( out, path );
}
out.println( "" );
}
/**
* Outputs a tree diagram of files in the resource.
*
* @param req The building HTTP request.
* @param out The output stream.
* @exception java.io.IOException Thrown if there is a problem outputting the HTML.
*/
protected void fileindextitle( Request req, PrintWriter out, String basepath )
throws IOException, ServletException
{
//out.print( "Filespace for this location." );
}
/**
* Outputs a tree diagram of files in the resource.
*
* @param req The building HTTP request.
* @param out The output stream.
* @exception java.io.IOException Thrown if there is a problem outputting the HTML.
*/
protected void fileindex( Request req, PrintWriter out, String basepath, boolean show_root, boolean hide_deleted, int link_type, String target )
throws IOException, ServletException
{
int i, j, k, old_level, top_level;
StringBuffer address= new StringBuffer();
BuildingSession session;
UploadedFileSummary[] summaries;
UploadedFileSummary parent;
Vector path = new Vector();
if ( basepath==null )
basepath = "/";
if ( !basepath.endsWith( "/" ) )
basepath = basepath + "/";
if ( !basepath.startsWith( "/" ) )
basepath = "/" + basepath;
try
{
session = req.getBuildingSession();
summaries = session.getUploadedFileSession().getFileAndDescendentSummaries( basepath, hide_deleted );
}
catch ( Exception ex )
{
out.println( "
Technical Problem finding file list" + ex );
return;
}
if ( summaries.length == 0 )
{
summaries = new UploadedFileSummary[1];
UploadedFile uploadedFile = new UploadedFile();
uploadedFile.setFlags(UploadedFileSummary.FLAG_FOLDER);
summaries[0] = uploadedFile.getSummary();
}
out.print( "" );
if ( show_root )
{
out.println( "" );
if ( link_type==1 )
{
out.print( "" );
}
out.print( "
");
if (summaries[0].isDeleted())
out.print("/");
else
out.print("/");
out.print( "  + )
" );
out.println( "This resource contains no uploaded files.
" );
return;
}
}
else
top_level=2;
path.addElement( summaries[0] );
old_level=1;
for ( i=1; i=0; j-- )
{
parent = (UploadedFileSummary)path.elementAt(j);
if ( summaries[i].getLeftIndex() > parent.getLeftIndex() &&
summaries[i].getRightIndex() < parent.getRightIndex() )
break;
}
// j indexes parent or is -1
path.setSize( j+1 );
path.addElement( summaries[i] );
//work out first whether we need a continuation line from previous
//node onto a later sibling of that node.
for ( j=i+1; j1 && summaries[i-1].getParentUploadedFileId().equals(
summaries[j].getParentUploadedFileId() ) )
break;
// make a new row with continuation bar in first cell and
// put table in second cell if this file within previous
// (except first top level node)
if ( path.size()>old_level && path.size()>top_level )
{
out.print( "" );
if ( j == summaries.length || old_level<=top_level )
{
out.println( "" );
}
else
{
out.println( " " );
out.println( "" );
}
out.println( " " );
}
//close tables until back to level of this message
for ( k=path.size(); k" );
}
old_level = path.size();
out.println( "" );
//work out first whether we need a continuation line from
//node onto a later sibling.
for ( j=i+1; j" );
else
out.println( "" );
//choose icon depending on whether node has children
//later we will need to cope with nodes that are closed and
//need a plus icon.
//if ( (summaries[i].getLeftIndex()+1) == summaries[i].getRightIndex() )
if ( path.size()>top_level )
out.println( "" );
//else
// out.print( "" );
out.print( " " );
out.println( "
" );
if ( !summaries[i].isFolder() || link_type==1 )
{
address.setLength( 0 );
address.append( req.absoluteURL() );
address.setLength( address.length()-1 ); //to trim off last slash
address.append( basepath );
for ( j=1; j1 )
address.append( "/" );
address.append( parent.getUrl() );
}
if ( link_type==1 )
{
if ( summaries[i].isFolder() )
address.append( "/bs_template_managefolder.html" );
else
address.append( "/bs_template_managefileinfo.html" );
}
out.print( "" );
}
out.print( "" );
if ( summaries[i].isFolder() )
out.print( " " );
else
out.print( "
" );
if ( summaries[i].isDeleted() )
out.print( "" );
out.print( summaries[i].getName() );
if ( summaries[i].isDeleted() )
out.print( "" );
out.print( " " );
if ( !summaries[i].isFolder() || link_type==1 )
out.print( "" );
out.println( " " );
}
//close tables
for ( i=top_level; i" );
}
out.print( "
" );
}
private void filedelete( Request req, PrintWriter out, boolean delete )
throws ServletException, IOException
{
StringBuffer dest_filename=null;
BuildingSession session;
Object attribute;
PrimaryKey id;
UploadedFileSummary summary;
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
dest_filename=new StringBuffer();
dest_filename.append( fileParameter( req ) );
if ( delete )
session.getUploadedFileSession().deleteFile( dest_filename.toString() );
else
session.getUploadedFileSession().undeleteFile(
dest_filename.toString(),
req.getInsertAttribute( "recurse", "no" ).equalsIgnoreCase( "yes" ) );
}
catch ( Exception ex )
{
logException( out, "Facility", "filedelete",
"A technical problem occurred.",
ex );
}
}
private void metadataupload( Request req, PrintWriter out )
throws IOException
{
BuildingSession session;
String file = req.getParameterFileLocation( "file" );
if ( file == null || file.length() == 0 )
{
out.println( "Import failed: no file was supplied.
" );
return;
}
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
session.importMetadata( file );
out.println( "DONE" );
}
catch ( BuildingServerException bsex )
{
out.println( "" );
out.println( bsex.getMessage() );
out.println( "" );
}
return;
}
private void metadata( Request req, PrintWriter out )
throws IOException
{
BuildingSession session;
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
String file_name = session.exportMetadata();
if ( file_name == null )
{
out.println( "There is currently no metadata defined for this resource.
" );
return;
}
InputStreamReader in = new InputStreamReader( new FileInputStream ( file_name ), "UTF8" );
out.print( "" );
in.close();
File f = new File( file_name );
f.delete();
}
catch ( BuildingServerException bsex )
{
out.println( "" );
out.println( bsex.getMessage() );
out.println( "" );
}
return;
}
private void metadatasearch( Request req, PrintWriter out )
throws IOException
{
BuildingSession nav_session;
HttpSession http_session;
Hashtable search_settings;
Vector list;
try
{
nav_session = req.getBuildingSession();
http_session = (HttpSession)req.getSession();
// no submit button pressed, display last set of results in Advanced Search window:
if (req.getParameter( "search" ) == null)
{
list = (Vector)http_session.getAttribute( "org.bodington.servlet.search_results" );
displayMetadataSearchResults( req, out, list );
return;
}
search_settings = SearchFacility.getSearchSettings( req );
String search_terms = (String)search_settings.get( "search_terms" );
if ( search_terms.length() < 1 )
{
displayMetadataSearchResults( req, out, null );
http_session.setAttribute( "org.bodington.servlet.search_results", new Vector() );
return;
}
StringTokenizer tok = new StringTokenizer( search_terms );
if ( tok.countTokens() > 3 )
{
out.print("The maximum number of search terms that can be used is"
+ " currently limited to 3.");
http_session.setAttribute( "org.bodington.servlet.search_results", new Vector() );
return;
}
String[] fields = (String[])search_settings.get( "fields" );
String any_all_opt = (String)search_settings.get( "any_all_opt" );
String general_strength = (String)search_settings.get( "general_strength" );
int strength;
XMLRepository rep = BuildingContext.getContext().getXMLRepository();
XMLQuery q_model = rep.getQueryInstance();
if ( any_all_opt == null || any_all_opt.equals( "any" ) )
q_model.combination = XMLQuery.COMBINE_UNION;
else
q_model.combination = XMLQuery.COMBINE_INTERCEPT;
if ( general_strength == null || general_strength.equalsIgnoreCase( "primary" ) )
strength = java.text.Collator.PRIMARY;
else if ( general_strength.equalsIgnoreCase( "secondary" ) )
strength = java.text.Collator.SECONDARY;
else if ( general_strength.equalsIgnoreCase( "tertiary" ) )
strength = java.text.Collator.TERTIARY;
else
strength = java.text.Collator.IDENTICAL;
q_model.word_strength = strength;
q_model.title_criterion = "? = 'resource_id'"; //search only for metadata attached to resources
q_model.relationship = XMLQuery.RELATE_CHILD;
while ( tok.hasMoreTokens() )
{
q_model.words.addElement( tok.nextToken() );
}
XMLQuery q_top = rep.getQueryInstance();
q_top.combination = XMLQuery.COMBINE_UNION;
for (int i = 0; i < fields.length; i++)
{
XMLQuery q_string = (XMLQuery)q_model.clone();
if ( fields[i].equalsIgnoreCase( "title") ||
fields[i].equalsIgnoreCase( "description"))
{
buildGeneralXMLQuery( q_string, fields[i]);
}
else if ( fields[i].equalsIgnoreCase( "keywords") )
{
buildClassificationXMLQuery( q_string, fields[i]);
}
if ( fields.length == 1)
{
q_top = (XMLQuery)q_string.clone();
continue;
}
q_top.addElement( q_string );
}
list = nav_session.searchMetadata( q_top );
displayMetadataSearchResults(req, out, list );
http_session.setAttribute( "org.bodington.servlet.search_results", list );
}
catch ( BuildingServerException bsex )
{
out.println( "" );
out.println( bsex.getMessage() );
out.println( "
" );
}
return;
}
private XMLQuery buildGeneralXMLQuery( XMLQuery q_string, String field )
{
XMLQuery q_langstring, q_field, q_general;
q_langstring = metadatasearchChildComponent( "langstring" );
q_string.addElement( q_langstring );
q_field = metadatasearchChildComponent( field );
q_langstring.addElement( q_field );
q_general = metadatasearchGeneralComponent();
q_field.addElement( q_general );
return q_string;
}
private XMLQuery buildClassificationXMLQuery( XMLQuery q_string, String field )
{
XMLQuery q_langstring, q_field, q_classification;
q_langstring = metadatasearchChildComponent( "langstring" );
q_string.addElement( q_langstring );
q_field = metadatasearchChildComponent( field );
q_langstring.addElement( q_field );
q_classification = metadatasearchClassificationComponent();
q_field.addElement( q_classification );
return q_string;
}
/**
* Takes a list of XMLObjectRecords, and displays the Title as a link, and the
* description of each one.
* Display options are passed in as a Hashtable (hiding deleted resources,
* resources of a certain type, etc).
* Links produced for Headings, QuickLinks, TextBlocks and ImageBlocks are to the parent resource.
* Maximum of 100 records displayed.
* @param req The web request.
* @param out The PrintWriter to output the HTML to.
* @param resultsList Vector of XMLObjectRecords matching query
* @throws BuildingServerException
*/
private void displayMetadataSearchResults(Request req, PrintWriter out, Vector resultsList)
throws BuildingServerException
{
XMLObjectRecord record;
ResourceTree tree;
Resource resource;
Hashtable displayOptions;
List displayList, displayResourceTypes;
String resourceType, name;
boolean displayDeleted, displayDescription, displayKeywords;
boolean viewable;
if ( resultsList == null || resultsList.size()<1 )
{
out.println( "No records were found.
" );
if ( req.isAnonymous() )
out.print( "Searching after logging in may return more results.
" );
return;
}
// extract display options:
displayOptions = SearchFacility.getDisplayOptions( req );
// contains the short names of any resource types that would normally be
// excluded from the display of results, but that should be included:
displayResourceTypes = (List)displayOptions.get( "displayResourceTypes" );
// flags to control display of deleted resources, descriptions and keywords:
displayDeleted = displayOptions.containsKey( "displayDeleted" );
displayDescription = displayOptions.containsKey( "displayDescription" );
displayKeywords = displayOptions.containsKey( "displayKeywords" );
tree = ResourceTreeManager.getInstance();
displayList = new Vector();
// retrieve Resource objects for each reference in resultsList that satisfies
// the display requirements, and add it to the list of resources to be displayed.
// NB: Limit of 101 resources set in BuildingSsessionImpl, but enforced here too, to 100:
for ( int i=0; iSome search results are hidden. This is either because you don't have access" );
if ( req.isAnonymous() )
out.print( ", are not logged in," );
out.println( " or need to change the display options in Advanced Search." );
}
if ( resultsList.size()>100 )
{
out.println( "A total of more than one hundred resources were found." +
"You should refine your search.
");
out.println(" Displaying "+ displayList.size() + " of more than 100 resources found." );
}
else
out.println( "Displaying "+ displayList.size()+ " of " + resultsList.size() + " resources found.
" );
for ( int i=0; i" );
out.print( "" );
if ( viewable )
{
if ( resource.getResourceType() == Resource.RESOURCE_HEADING
|| resource.getResourceType() == Resource.RESOURCE_QUICKLINK
|| resource.getResourceType() == Resource.RESOURCE_TEXTBLOCK
|| resource.getResourceType() == Resource.RESOURCE_IMAGEBLOCK )
{
name = resource.getParent().getFullName();
}
else
{
name = resource.getFullName();
}
out.print( "" );
}
out.print( resource.getTitle() );
if ( viewable )
out.println( "" );
out.print( "
" );
if ( !viewable )
out.println( "You are not on the access list for this item.
" );
if ( displayDescription )
{
out.print( "" );
out.print( resource.getDescription() );
out.println( "
" );
}
if ( displayKeywords )
{
BuildingSession session = BuildingSessionManagerImpl.getSession( resource );
try
{
String[] keywords = session.getFieldValuesFromMetadata( "keywords" );
String string = XMLMetadataUtils.getKeywordStringFromArray( keywords );
if ( string.length() > 0 )
{
out.print( "" );
out.print( "keywords: ");
out.print( string );
out.println( "
" );
}
}
catch ( Exception e )
{
log.error( "Problem getting keywords to display in search results." );
displayKeywords = false; // Avoid attempting this for rest of results in list
}
}
}
}
/**
* Display of keywords with links to execute search.
* Method called from template to display current resource's keywords,
* with links to execute a keyword search for each of them.
*
* @param req Request being processed by template
* @param out PrintWriter to write HTML to interface
*/
public void displayKeywordswithLinkToSearch ( Request req, PrintWriter out )
{
StringBuffer linkset = new StringBuffer();
String link;
String[] keywords;
try
{
BuildingSession session = BuildingSessionManagerImpl.getSession( req.getResource() );
keywords = session.getFieldValuesFromMetadata( "keywords" );
}
catch ( BuildingServerException e )
{
// do nothing, not even log...
return;
}
if ( keywords.length == 0) out.print( "(none)" );
for (int i = 0; i < keywords.length; i++)
{
link = ""
+ keywords[i] + "";
if (i>0) linkset.append(", ");
linkset.append( link );
}
out.print( linkset.toString() );
}
private XMLQuery metadatasearchChildComponent( String elementName )
{
XMLRepository rep = BuildingContext.getContext().getXMLRepository();
XMLQuery query = rep.getQueryInstance();
query.element_name = elementName;
query.relationship = XMLQuery.RELATE_CHILD;
return query;
}
private XMLQuery metadatasearchGeneralComponent()
{
XMLRepository rep = BuildingContext.getContext().getXMLRepository();
XMLQuery query = rep.getQueryInstance();
query.element_name = "general";
return query;
}
private XMLQuery metadatasearchClassificationComponent()
{
XMLRepository rep = BuildingContext.getContext().getXMLRepository();
XMLQuery query = rep.getQueryInstance();
query.element_name = "classification";
return query;
}
private void importresource( Request req, PrintWriter out, String name )
throws ServletException, IOException
{
if ( name.equals( "imspackage" ) )
{
importimspackage( req, out );
return;
}
out.println( "Unknown resource import option.
" );
}
private void importimspackage( Request req, PrintWriter out )
throws ServletException, IOException
{
String zipfile, str;
boolean parentacl;
BuildingSession session;
String url=req.getParameter( "url" );
zipfile = req.getParameterFileLocation( "file" );
if ( zipfile==null || zipfile.length()<1 )
{
out.println( "No package was uploaded for import." );
return;
}
str = req.getParameter( "parentacl" );
parentacl = str!=null && str.equalsIgnoreCase( "yes" );
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
}
catch ( Exception ex )
{
logException( out, "Facility", "importimspackage",
"A technical problem occurred.",
ex );
return;
}
try
{
session.importImsPackage( url, parentacl, zipfile );
out.println( "
Package import succeeded." );
out.flush();
}
catch ( Exception ex )
{
logException( out, "Facility", "importimspackage",
"A technical problem occurred.",
ex );
return;
}
}
private void zonecontrol( Request req, PrintWriter out )
throws ServletException, IOException
{
Zone z;
PrimaryKey zid = req.getResource().getZoneId();
Enumeration zones=null;
try
{
zones = Zone.findZones( "zone_id IS NOT NULL" );
}
catch ( BuildingServerException bsex )
{
logException( out, "Facility", "zonecontrol",
"Technical problem finding zone list.",
bsex );
return;
}
out.println( "" );
}
private void zoneconfirm( Request req, PrintWriter out )
throws ServletException, IOException
{
PrimaryKey old = req.getResource().getZoneId();
try
{
String str_zid = req.getParameter( "zone_id" );
if ( str_zid == null || str_zid.length()==0 )
return;
if ( str_zid.equals( "null" ) )
{
req.getResource().setZoneId( null );
req.getResource().save();
out.println( "Specific zone cleared - zone will be inherited from container." );
return;
}
PrimaryKey zid;
Zone z;
zid = new PrimaryKey( Integer.parseInt( str_zid ) );
z = Zone.findZone( zid );
if ( z== null )
{
out.println( "Unknown zone - changes not saved." );
return;
}
req.getResource().setZoneId( zid );
req.getResource().save();
out.println( "Zone selection saved." );
}
catch ( BuildingServerException bsex )
{
logException( out, "Facility", "zonecontrol",
"Technical problem finding zone list.",
bsex );
req.getResource().setZoneId( old );
return;
}
}
/**
* Returns a url with the current authenticated username appended to query
* uhi:awc
*
* @param req The Building HTTP request.
* @param loginUrl the url (with query)
* @return the current authenticated username appended to url query
*/
private String getUsernameLoginUrl(Request req, String loginUrl)
{
String username = getUsername(req);
if (username == null)
return loginUrl;
int i = loginUrl.indexOf('=');
int j = loginUrl.indexOf('?');
if (i > 0 && j > 0 && i > j)
{
loginUrl = loginUrl.substring(0, i + 1);
loginUrl += username;
}
else
{
log.info("Bad url query syntax");
}
return loginUrl;
}
/**
* Rturns the current authenticated username
* uhi:awc
*
* @param req The Building HTTP request.
* @return the current authenticated username or NULL if user is anonymous or has not been authenticated
*/
public String getUsername(Request req)
{
String msg;
try {
NavigationSession nav_session = req.getServerNavigationSession();
if ( nav_session.isAnonymous() )
return null;
if (!nav_session.isAuthenticated() )
msg = "Session is not authenticated - username unknown.";
else
{
User user = (User)BuildingContext.getContext().getUser();
if ( user==null || user.getUserId()==null )
msg = "User object or Userid is null - username not found.";
else
{
PassPhrase phrase = (PassPhrase)PersistentObject.findPersistentObject(
"user_id = " + user.getUserId(), "org.bodington.server.realm.PassPhrase" );
if (phrase == null || phrase.getUserName() == null)
msg ="PassPhrase object or UserName is null - username not found.";
else
return phrase.getUserName();
}
}
} catch (Exception ex) {
msg = "username not found: " + ex.toString();
// just log exception
}
log.info(msg);
return null;
}
private void generatemanifest( Request req, PrintWriter out )
throws IOException
{
BuildingSession session;
try
{
session = BuildingSessionManagerImpl.getSession( req.getResource() );
if ( session==null )
throw new BuildingServerException( "Unable to access the destination resource." );
session.generateImsManifest();
out.println( "Manifest generated OK.
" );
}
catch ( BuildingServerException bsex )
{
out.println( "An error occurred trying to generate the manifest.
" );
out.println( "" );
out.println( bsex.getMessage() );
out.println( "" );
}
return;
}
public String getHttpSessionCount()
{
return Integer.toString( org.bodington.servlet.HttpSession.getSessionCount() );
}
public String getPreference( HttpServletRequest req, String key )
{
org.bodington.servlet.HttpSession http_session =
(org.bodington.servlet.HttpSession)req.getSession( false );
if ( http_session == null )
return null;
return http_session.getPreference( key );
}
public String getAutomaticPreferenceByScreenSize(
Request req,
String key,
String small_default,
String big_default )
{
org.bodington.servlet.HttpSession http_session =
(org.bodington.servlet.HttpSession)req.getSession( false );
if ( http_session == null )
return null;
return http_session.getAutomaticPreferenceByScreenSize( key, small_default, big_default );
}
/** This method is for development and test use since
* it processes form data where user directly enters
* string values for user preferences.
* @param req The Bodington Servlet request from which
* form data will be fetched.
* @param key The name of the user preference.
*/
public void processPreference( org.bodington.servlet.Request req, String key )
{
org.bodington.servlet.HttpSession http_session;
http_session = (org.bodington.servlet.HttpSession)req.getSession( false );
if ( http_session == null )
return;
String value = req.getParameter( key );
if ( value == null )
return;
http_session.setPreference( key, value );
}
public Locale getLocale( Request req )
{
ResourceBundleHelper resource_bundle_helper;
resource_bundle_helper =
ResourceBundleHelper.getResourceBundleHelper( "", req.getHeader( "Accept-Language" ) );
if ( resource_bundle_helper == null )
return null;
return resource_bundle_helper.getTopLocale();
}
/**
* Returns a localised string from a resource bundle according to language
* preferences determined from the HTTP request headers.
*/
public String getLocalisedString( Request req, String properties_name, String id )
{
ResourceBundleHelper resource_bundle_helper;
resource_bundle_helper =
ResourceBundleHelper.getResourceBundleHelper( properties_name, req.getHeader( "Accept-Language" ) );
if ( resource_bundle_helper == null )
return null;
return resource_bundle_helper.getString( id );
}
/**
* writes a localised string from a resource bundle according to language
* preferences determined from the HTTP request headers.
*/
public void writeLocalisedString( Request req, PrintWriter writer, String properties_name, String id )
{
String str = getLocalisedString( req, properties_name, id );
if ( str != null )
writer.print( str );
}
/**
* Outputs a Javascript <script> tag to import utils.js no
* matter how long the URL is.
* @param request The Request, needed to work out the context path.
* @param out A PrintWriter to which we output the tag.
*/
public void javascript ( HttpServletRequest request, PrintWriter out)
{
String editor = getPreference(request, "preference.editor");
javascriptTag(out, request.getContextPath()+"/static/calendar/calendar.js");
javascriptTag(out, request.getContextPath()+"/static/calendar/calendar-en.js");
javascriptTag(out, request.getContextPath()+"/static/utils.js");
// Pull in editor
if ("none".equals(editor))
{
javascriptTag(out, request.getContextPath()+"/static/none/editor.js");
}
else if ("rtwedit".equals(editor))
{
javascriptTag(out, request.getContextPath()+"/static/rtwedit/editor.js");
javascriptTag(out, request.getContextPath()+"/static/rtwedit/rtwedit.js");
}
else
{
String path = "";
try
{
path = ((Resource)request.getAttribute(Request.RESOURCE_ATTRIBUTE)).getFullName();
}
catch (BuildingServerException e)
{
log.warn("Failed to get full path.", e);
}
out.print("\n");
javascriptTag(out, request.getContextPath()+"/static/fckeditor/editor.js");
javascriptTag(out, request.getContextPath()+"/static/fckeditor/fckeditor.js");
}
}
private static void javascriptTag(PrintWriter out, String file)
{
out.write("\n");
}
/**
* Facade to the method in StyleSheetUtils.
* @see StyleSheets#getSessionDataPreference(Request, String)
*/
public String getSessionDataPreference( Request req, String key )
{
return styleSheet.getSessionDataPreference(req, key);
}
/**
* Facade to the method in StyleSheetUtils.
* @see StyleSheets#processStylesheetPreferences(Request)
*/
public void processStylesheetPreferences(Request req)
{
styleSheet.processStylesheetPreferences(req);
}
/**
* Facade to the method in StyleSheetUtils.
* @see StyleSheets#stylesheetField(Request, PrintWriter, String)
*/
public void stylesheetField(Request req, PrintWriter writer, String name)
throws IOException, ServletException
{
styleSheet.stylesheetField(req, writer, name);
}
/**
* Facade to the outputting of the ACL display.
* @see AclDisplayFacility#outputAclTable(PrintWriter, Request)
*/
public void outputAclTable(PrintWriter out, Request request) throws ServletException
{
AclDisplayFacility.outputAclTable(out, request);
}
public void addAclPermissions(PrintWriter out, Request request) throws ServletException
{
try
{
String groupName = request.getParameter("group_name");
if (groupName == null)
return;
Resource resource = request.getResource();
if (!resource.checkPermission(Permission.MANAGE))
{
out.println("You don't have manage permission");
return;
}
Acl acl = resource.getAcl();
Group group = Group.findGroupByName(groupName );
AclEntry aclEntry = AclEntry.findAclEntry(group.getPrimaryKey(), acl.getPrimaryKey());
if (aclEntry == null)
{
aclEntry=new AclEntry();
aclEntry.setPrincipal( group );
acl.addEntry( aclEntry );
}
String ability = request.getParameter("ability");
if (("look").equals(ability))
{
if (aclEntry.addPermission(Permission.VIEW) | aclEntry
.addPermission(Permission.SEE))
{
Utils.writeMessage("Access added.", out);
}
else
{
Utils.writeError("Access was already granted", out);
}
}
else if (("change").equals(ability))
{
if (aclEntry.addPermission(Permission.VIEW)
| aclEntry.addPermission(Permission.SEE) | aclEntry
.addPermission(Permission.EDIT))
{
Utils.writeMessage("Access added.", out);
}
else
{
Utils.writeError("Access was already granted", out);
}
}
else
{
Utils.writeError("Bad Ability", out);
}
acl.save();
}
catch ( Exception e )
{
Utils.writeError(e.getMessage(), out);
log.error(e);
}
}
/**
* Write out a list of resources it is possible to create for the current resource.
* @param out The PrintWriter to output the HTML to.
* @param request The request in which we find the current resource.
* @param admin If set to true then output admin resources,
* otherwise output the user resources.
*/
public void writeCreateMenu(PrintWriter out, Request request, final boolean admin)
{
// Iterator that filters on isSysadmin() and isCreate()
Iterator it = new Iterator()
{
Facility next;
Iterator internal = contains.iterator();
public boolean hasNext()
{
loadNext();
return next != null;
}
public Object next()
{
loadNext();
Facility copy = next;
next = null;
return copy;
}
private void loadNext()
{
while (next == null && internal.hasNext())
{
Facility test = (Facility)internal.next();
if (test.isCreate() && test.isSysadmin() == admin)
{
next = test;
}
}
}
public void remove()
{
throw new UnsupportedOperationException();
}
};
if (it.hasNext())
{
while(it.hasNext())
{
Facility facility = (Facility)it.next();
String name = facility.getName();
out.println("");
out.println(" " );
if (facility.isSpringCreate())
{
out.print("");
}
else
{
out.print("");
}
out.print(name);
out.print("");
out.println("
");
out.println("");
out.print(facility.getDescription());
out.println("");
}
}
else
{
out.println("- No resources found.
");
}
}
/**
* Should the creation be handled by Spring?
* @return true if the creation template for this Facility
* is a Spring one.
*/
public boolean isSpringCreate() {
return false;
}
/**
* Tracks this request as a NavigationEvent. This shouldn't be called
* by all templates. Currently top.html uses it.
* @param request The current request.
*/
public void track (Request request)
{
if (("no").equalsIgnoreCase(BuildingContext.getProperty(
"buildingservlet.tracking", "yes")))
return;
Resource resource = request.getResource();
// Don't track users of the questionnaire tool as it is anonymous.
if (resource.getClass().equals(Questionnaire.class))
return;
HttpSession session = (HttpSession)request.getSession();
PrimaryKey last = (PrimaryKey)session.getAttribute(Request.RESOURCE_ATTRIBUTE);
PrimaryKey current = resource.getPrimaryKey();
if (! current.equals(last))
{
NavigationEvent event = new NavigationEvent(
(resource.checkPermission(Permission.VIEW))
? NavigationEvent.EVENT_RESOURCE_ACCESS
: NavigationEvent.EVENT_FAILED_ACCESS,
current,request.getUserId(), "");
event.save();
session.setAttribute(Request.RESOURCE_ATTRIBUTE, current);
}
}
/**
* Wrapper to allow resource owner to be displayed from a template.
* Show the owners of the resource. This methods has quite an
* overhead as it needs to query the database layer twice. It only
* ever displays the first 2 members of the owners group.
* @param req The request which contains the resource.
* @param out The output to write the HTML to.
*/
public void resourceOwner ( Request req, PrintWriter out )
{
Resource res = req.getResource();
String id = res.getResourceId().toString();
try
{
if (req.isAnonymous())
{
return;
}
StringBuffer output = new StringBuffer();
boolean moreThanOne = false;
Group group = Group.findGroupByName("localgroup."+ id+".owners");
Enumeration members = group.members();
if(members.hasMoreElements())
output.append(((User)members.nextElement()).getName());
else
output.append("None");
if(members.hasMoreElements())
{
moreThanOne = true;
output.append(", ");
output.append(((User)members.nextElement()).getName());
}
if(members.hasMoreElements())
{
output.append(" and ");
output.append("");
output.append("others");
output.append("");
}
out.print((moreThanOne)?"Owners: ":"Owner: ");
out.print(output.toString());
}
catch ( BuildingServerException bsex )
{
log.warn("Problem finding owners of: "+ id, bsex);
}
}
public void allowedTags( Request request, PrintWriter out )
{
String field = request.getInsertName();
if (("description").equalsIgnoreCase(field))
{
EscapedHtmlWriter htmlOut = new EscapedHtmlWriter(out);
Collection elements = HtmlFilterFactory
.getValues("htmlfilter.fragment.elements");
Iterator elementIt = elements.iterator();
if (elementIt.hasNext())
{
out.print("
");
htmlOut.print("Allowed HTML tags: ");
htmlOut.print("<"+ elementIt.next()+ ">");
while (elementIt.hasNext())
htmlOut.print(", <"+ elementIt.next()+ ">");
}
}
}
public void homeContainer( Request request, PrintWriter out )
{
try
{
User user = request.getServerNavigationSession().getAuthenticatedUser();
HomeContainerSession homeConatiner = request.getServerNavigationSession().getHomeContainerSession();
if (homeConatiner == null)
return;
BodingtonURL url = new BodingtonURL(request);
if (homeConatiner.hasHome(user))
{
// Already has home.
Resource home = homeConatiner.findHome(user);
out.print("MyWebLearn ");
String bookmark = request.getParameter("bookmark");
if (bookmark != null)
{
HomeSession homeSession = (HomeSession)BuildingSessionManagerImpl.getSession(home);
homeSession.createBookmark(request.getResource());
out.println("");
}
out.print("(");
out.print("Bookmark");
out.println(")");
}
else
{
if (homeConatiner.canCreateHome(user))
{
out.print("MyWebLearn Signup");
}
}
}
catch (BuildingServerException bse)
{
log.error("Problem with HomeContainer", bse);
}
}
private static Group publicGroups[] = null;
/**
* Check is the current resource is VIEWable by the public.
* @param request The current request from which we get the resource.
* @return True if the resource is viewable by the public.
*/
public boolean isPublic ( Request request )
{
return isPublic( request.getResource() );
}
public boolean isPublic ( Resource resource )
{
try
{
return ResourceUtils.anyPrincipal( resource, getPublicGroups(), Permission.VIEW );
}
catch (BuildingServerException bse)
{
log.warn( "Failed to discover if resource is public." );
}
return false;
}
/**
* Get groups that are used in displaying access summary. Currently
* these are hardcoded but maybe from a property in the future?
* @return An array of groups which permissions can be tested against.
*/
public static synchronized Group[] getPublicGroups() throws BuildingServerException
{
if (publicGroups == null)
{
String accessNames[] = {"public", "anonymous"};
Vector publicGroupsVec = new Vector();
for (int i = 0; i < accessNames.length; i++)
{
Group group = Group.findGroupByName(accessNames[i]);
if ( group == null )
log.error("Failed to find core group: "+ accessNames[i]);
else
publicGroupsVec.add(group);
}
publicGroups = new Group[publicGroupsVec.size()];
publicGroupsVec.toArray( publicGroups );
}
return publicGroups;
}
public void outputDate(PrintWriter out)
{
out.print(DateFormatter.formatDate(new java.util.Date(), DateFormatter.SHORT));
}
/**
* Method to allow templates to send errors. Should be called in the
* preperation method. This method only exists because the template
* language doesn't support ints.
* @param response The servlet response to set the header on.
* @param error The error string.
*/
public void setStatus(Response response, String error) throws NumberFormatException, IOException
{
response.setStatus(Integer.parseInt(error));
}
/**
* Get the name of this facility.
* @return The name of resources managed by this facility. Eg Suite.
*/
public String getName()
{
return bundle.getString("name");
}
/**
* Get the descriptions of this facility.
* @return The description of resources managed by this facility.
* Eg. Container for other resources.
*/
public String getDescription()
{
return bundle.getString("description");
}
/**
* Is this facility only creatable by sysadmin.
* @return true if only sysadmin can create this tool.
*/
public boolean isSysadmin()
{
return false;
}
/**
* Is this facililty creatable. A facility might still be supported
* for existing resource but no new resources should be created.
* @return true if this facility can no longer be created.
*/
public boolean isCreate()
{
return true;
}
/**
* Look for a date in the request and attempt to convert it into a Timestamp.
* Only add an error if the field is defined and we couldn't convert to a date.
* @param breq The HttpServletRequest to look in.
* @param errors The List to add the errors to.
* @param param The request parameter to pull the date from.
* @param field The field in the HTML to say the error was against.
* @return A Timestamp or null if no data was found or the
* string couldn't be converted into a date.
*/
protected Timestamp parseDate(HttpServletRequest breq, List errors, String param, String field)
{
Timestamp timestamp = null;
String dateString = breq.getParameter(param);
if (dateString != null && dateString.length() > 0)
{
Date date = DateParser.parse(dateString);
if (date == null) {
errors.add("The value: " + '\"' + dateString
+ "\" for \'" + field + "\' is not a valid date.");
}
else
{
timestamp = new Timestamp(date.getTime());
}
}
return timestamp;
}
}