1 /** 2 * This file Copyright (c) 2003-2010 Magnolia International 3 * Ltd. (http://www.magnolia-cms.com). All rights reserved. 4 * 5 * 6 * This file is dual-licensed under both the Magnolia 7 * Network Agreement and the GNU General Public License. 8 * You may elect to use one or the other of these licenses. 9 * 10 * This file is distributed in the hope that it will be 11 * useful, but AS-IS and WITHOUT ANY WARRANTY; without even the 12 * implied warranty of MERCHANTABILITY or FITNESS FOR A 13 * PARTICULAR PURPOSE, TITLE, or NONINFRINGEMENT. 14 * Redistribution, except as permitted by whichever of the GPL 15 * or MNA you select, is prohibited. 16 * 17 * 1. For the GPL license (GPL), you can redistribute and/or 18 * modify this file under the terms of the GNU General 19 * Public License, Version 3, as published by the Free Software 20 * Foundation. You should have received a copy of the GNU 21 * General Public License, Version 3 along with this program; 22 * if not, write to the Free Software Foundation, Inc., 51 23 * Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 24 * 25 * 2. For the Magnolia Network Agreement (MNA), this file 26 * and the accompanying materials are made available under the 27 * terms of the MNA which accompanies this distribution, and 28 * is available at http://www.magnolia-cms.com/mna.html 29 * 30 * Any modifications to this file must keep this entire header 31 * intact. 32 * 33 */ 34 package info.magnolia.cms.security; 35 36 37 import javax.servlet.http.HttpServletRequest; 38 import javax.servlet.http.HttpServletResponse; 39 import java.io.IOException; 40 41 import info.magnolia.cms.core.HierarchyManager; 42 import info.magnolia.context.MgnlContext; 43 44 /** 45 * Used to check if the user can read the requested content. This filter normally resides behind the cache filter. 46 * @author Sameer Charles 47 * $Id: ContentSecurityFilter.java 9391 2007-05-11 15:48:02Z scharles $ 48 */ 49 public class ContentSecurityFilter extends BaseSecurityFilter { 50 51 @Override 52 public boolean isAllowed(HttpServletRequest request, HttpServletResponse response) throws IOException { 53 String repositoryName = MgnlContext.getAggregationState().getRepository(); 54 AccessManager accessManager = MgnlContext.getAccessManager(repositoryName); 55 return isAuthorized(accessManager); 56 } 57 58 /** 59 * Check for read permissions of the aggregated handle. 60 * @deprecated since 4.3 when overriding this method, override isAllowed() instead 61 */ 62 @Deprecated 63 protected boolean isAuthorized(AccessManager accessManager) { 64 String handle = MgnlContext.getAggregationState().getHandle(); 65 // HM might wrap the path so we need to make sure the wrapped path is actually checked here. 66 String repositoryName = MgnlContext.getAggregationState().getRepository(); 67 HierarchyManager hm = MgnlContext.getHierarchyManager(repositoryName); 68 return hm.isGranted(handle, Permission.READ); 69 } 70 71 72 }