PL-9770 Authentication withSystemUser method

2024-12-04 20:28:00 +08:00 · 2017-09-27 09:30:19 +04:00 · 2017-09-27 09:30:19 +04:00 · 775fef326d
commit 775fef326d
parent 23dff655e0
2 changed files with 39 additions and 13 deletions
--- a/modules/core/src/com/haulmont/cuba/security/app/Authentication.java
+++ b/modules/core/src/com/haulmont/cuba/security/app/Authentication.java
@ -180,8 +180,25 @@ public class Authentication {
    public <T> T withUser(@Nullable String login, AuthenticatedOperation<T> operation) {
        SecurityContext previousSecurityContext = getSecurityContext();
        setSecurityContext(null);
-        begin(login);
        try {
+            begin(login);
+            return operation.call();
+        } finally {
+            setSecurityContext(previousSecurityContext);
+        }
+    }
+
+    /**
+     * Execute code on behalf of the user with login set in {@code cuba.jmxUserLogin} app property.
+     *
+     * @param operation code to execute
+     * @return result of the execution
+     */
+    public <T> T withSystemUser(AuthenticatedOperation<T> operation) {
+        SecurityContext previousSecurityContext = getSecurityContext();
+        setSecurityContext(null);
+        try {
+            begin(null);
            return operation.call();
        } finally {
            setSecurityContext(previousSecurityContext);
--- a/modules/core/src/com/haulmont/cuba/security/app/UserSessionLogBean.java
+++ b/modules/core/src/com/haulmont/cuba/security/app/UserSessionLogBean.java
@ -39,6 +39,8 @@ import java.util.Set;
 import java.util.UUID;
 import java.util.stream.Collectors;

+import static com.haulmont.cuba.core.global.LoadContext.createQuery;
+
@Component(UserSessionLog.NAME)
 public class UserSessionLogBean implements UserSessionLog {

@ -78,7 +80,7 @@ public class UserSessionLogBean implements UserSessionLog {
            return null;
        }

-        return authentication.withUser(null, () -> {
+        return authentication.withSystemUser(() -> {
            SessionLogEntry sessionLogEntry = metadata.create(SessionLogEntry.class);
            sessionLogEntry.setSessionId(userSession.getId());
            if (substitutedSession != null) {
@ -115,7 +117,7 @@ public class UserSessionLogBean implements UserSessionLog {
            return;
        }

-        authentication.withUser(null, () -> {
+        authentication.withSystemUser(() -> {
            SessionLogEntry sessionLogEntry = getLastSessionLogRecord(userSession.getId());
            if (sessionLogEntry != null) {
                if (userSession.getClientInfo() != null) {
@ -139,20 +141,27 @@ public class UserSessionLogBean implements UserSessionLog {

    @Override
    public SessionLogEntry getLastSessionLogRecord(UUID userSessionId) {
-        return authentication.withUser(null, () -> {
-            LoadContext<SessionLogEntry> loadContext = LoadContext.create(SessionLogEntry.class).setView(SessionLogEntry.DEFAULT_VIEW)
-                    .setQuery(LoadContext.createQuery("select e from sec$SessionLogEntry e where e.sessionId = :sid order by e.startedTs desc")
-                            .setParameter("sid", userSessionId).setMaxResults(1));
+        return authentication.withSystemUser(() -> {
+            LoadContext<SessionLogEntry> loadContext = LoadContext.create(SessionLogEntry.class)
+                    .setView(SessionLogEntry.DEFAULT_VIEW)
+                    .setQuery(
+                            createQuery("select e from sec$SessionLogEntry e where e.sessionId = :sid order by e.startedTs desc")
+                                    .setParameter("sid", userSessionId)
+                                    .setMaxResults(1)
+                    );
            return dataManager.load(loadContext);
        });
    }

    @Override
    public List<SessionLogEntry> getAllSessionLogRecords(UUID userSessionId) {
-        return authentication.withUser(null, () -> {
-            LoadContext<SessionLogEntry> loadContext = LoadContext.create(SessionLogEntry.class).setView(SessionLogEntry.DEFAULT_VIEW)
-                    .setQuery(LoadContext.createQuery("select e from sec$SessionLogEntry e where e.sessionId = :sid order by e.startedTs asc")
-                            .setParameter("sid", userSessionId));
+        return authentication.withSystemUser(() -> {
+            LoadContext<SessionLogEntry> loadContext = LoadContext.create(SessionLogEntry.class)
+                    .setView(SessionLogEntry.DEFAULT_VIEW)
+                    .setQuery(
+                            createQuery("select e from sec$SessionLogEntry e where e.sessionId = :sid order by e.startedTs asc")
+                                    .setParameter("sid", userSessionId)
+                    );
            return dataManager.loadList(loadContext);
        });
    }
@ -165,9 +174,9 @@ public class UserSessionLogBean implements UserSessionLog {
            return;
        }
        if (clusterManager.isMaster()) {
-            authentication.withUser(null, () -> {
+            authentication.withSystemUser(() -> {
                LoadContext<SessionLogEntry> lc = LoadContext.create(SessionLogEntry.class).setView(SessionLogEntry.DEFAULT_VIEW)
-                        .setQuery(LoadContext.createQuery("select e from sec$SessionLogEntry e where e.finishedTs is null"));
+                        .setQuery(createQuery("select e from sec$SessionLogEntry e where e.finishedTs is null"));
                List<SessionLogEntry> sessionLogEntries = dataManager.loadList(lc);
                CommitContext cc = new CommitContext();
                Set<UUID> activeSessionsIds = userSessionsAPI.getUserSessionInfo().stream()