com.jivesoftware.forum.action
Class AdminSecurityInterceptor

java.lang.Object
  com.jivesoftware.forum.action.AdminSecurityInterceptor

All Implemented Interfaces:

com.opensymphony.xwork.interceptor.Interceptor, java.io.Serializable

public class AdminSecurityInterceptor
extends java.lang.Object
implements com.opensymphony.xwork.interceptor.Interceptor

This class used to force Permissions.SYSTEM_ADMIN access to any wrapped action. It has been relaxed to just check for elevated privileges. It is possible to also allow global moderators (ForumPermissions.MODERATOR by calling setAllowModerator(boolean). This interceptor currently requires jive.admin.authToken to already be populated in the session (this is done by global.jspf in the admin tool).

See Also:

Serialized Form

Constructor Summary

AdminSecurityInterceptor()

Method Summary

void	destroy()
void	init()
java.lang.String	intercept(com.opensymphony.xwork.ActionInvocation in)
boolean	isAllowModerator()
void	setAllowModerator(boolean allowModerator)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AdminSecurityInterceptor

public AdminSecurityInterceptor()

Method Detail

destroy

public void destroy()

Specified by:

destroy in interface com.opensymphony.xwork.interceptor.Interceptor

init

public void init()

Specified by:

init in interface com.opensymphony.xwork.interceptor.Interceptor

isAllowModerator

public boolean isAllowModerator()

setAllowModerator

public void setAllowModerator(boolean allowModerator)

intercept

public java.lang.String intercept(com.opensymphony.xwork.ActionInvocation in)
                           throws java.lang.Exception

Specified by:

intercept in interface com.opensymphony.xwork.interceptor.Interceptor

Throws:

java.lang.Exception