Java tutorial
/** * Copyright 2016 REPLACE ME OWNER (REPLACE ME YEAR) * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package org.homiefund.api.support; import org.homiefund.api.dao.HomeDAO; import org.homiefund.api.dao.domain.Home; import org.homiefund.api.dto.UserDTO; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.security.core.authority.SimpleGrantedAuthority; import org.springframework.transaction.annotation.Transactional; /** * Created by Dominik Szalai - emptulik at gmail.com on 30.9.2016. */ public class HomeAccessVoterImpl implements HomeAccessVoter { @Autowired private HomeDAO homeDAO; @Override public boolean isAllowed(Long homeId, UserDTO principal) { if (principal == null || principal.getAuthorities() == null) { return false; } return principal.getAuthorities() .contains(new SimpleGrantedAuthority(homeId == null ? "0" : homeId.toString())); } @Override @Transactional(readOnly = true) public boolean isOwner(Long homeId, UserDTO principal) { if (principal == null || homeId == null) { return false; } Home home = homeDAO.getById(homeId); if (home == null) { return false; } else { return home.getOwner().getId().equals(principal.getId()); } } }