Sign upLogin

Battle-Cattle/BCUK-Bot-3

View on GitHub
Star
src/main/java/com/expiredminotaur/bcukbot/web/security/SecurityUtils.java

Summary

Maintainability
A
0 mins
Test Coverage
package com.expiredminotaur.bcukbot.web.security;

import org.springframework.core.annotation.AnnotationUtils;
import org.springframework.security.authentication.AnonymousAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;

public class SecurityUtils
{

    public static boolean isAccessGranted(Class<?> securedClass, UserTools userTools)
    {
        // Allow if no roles are required.
        AccessLevel accessLevel = AnnotationUtils.findAnnotation(securedClass, AccessLevel.class);
        if (accessLevel == null)
        {
            return true;
        }

        Authentication userAuthentication = SecurityContextHolder.getContext().getAuthentication();

        // All other views require authentication
        if (!isUserLoggedIn(userAuthentication))
        {
            return false;
        }

        return userTools.hasAccess(accessLevel.value());
    }

    public static boolean isUserLoggedIn()
    {
        return isUserLoggedIn(SecurityContextHolder.getContext().getAuthentication());
    }

    private static boolean isUserLoggedIn(Authentication authentication)
    {
        return authentication != null
                && !(authentication instanceof AnonymousAuthenticationToken);
    }
}