Stirling-PDF/src/main/java/stirling/software/SPDF/config/security/AppUpdateAuthService.java

package stirling.software.SPDF.config.security;

import java.util.Optional;

import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.stereotype.Service;

import stirling.software.SPDF.config.interfaces.ShowAdminInterface;
import stirling.software.SPDF.model.ApplicationProperties;
import stirling.software.SPDF.model.User;
import stirling.software.SPDF.repository.UserRepository;

@Service
class AppUpdateAuthService implements ShowAdminInterface {

    private final UserRepository userRepository;

    private final ApplicationProperties applicationProperties;

    public AppUpdateAuthService(
            UserRepository userRepository, ApplicationProperties applicationProperties) {
        this.userRepository = userRepository;
        this.applicationProperties = applicationProperties;
    }

    @Override
    public boolean getShowUpdateOnlyAdmins() {
        boolean showUpdate = applicationProperties.getSystem().isShowUpdate();
        if (!showUpdate) {
            return showUpdate;
        }
        boolean showUpdateOnlyAdmin = applicationProperties.getSystem().getShowUpdateOnlyAdmin();
        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
        if (authentication == null || !authentication.isAuthenticated()) {
            return !showUpdateOnlyAdmin;
        }
        if (authentication.getName().equalsIgnoreCase("anonymousUser")) {
            return !showUpdateOnlyAdmin;
        }
        Optional<User> user = userRepository.findByUsername(authentication.getName());
        if (user.isPresent() && showUpdateOnlyAdmin) {
            return "ROLE_ADMIN".equals(user.get().getRolesAsString());
        }
        return showUpdate;
    }
}
UI: settings show/hide update display (#1072) * UI: settings show/hide update display This PR replaces the PR #1003 In this PR, the visual for available update is added to the foreground. There are new settings to generally show/hide the update display, and only administrators receive the update display. * change to `Bean` * Update AppUpdateShowService.java * add update message * revision service * change shouldShow * Update githubVersion.js * rm folder * Update AppUpdateService.java 2024-04-21 13:15:18 +02:00			`package stirling.software.SPDF.config.security;`

			`import java.util.Optional;`

			`import org.springframework.security.core.Authentication;`
			`import org.springframework.security.core.context.SecurityContextHolder;`
			`import org.springframework.stereotype.Service;`

Frooodle/license (#1994) 2024-10-14 22:34:41 +01:00			`import stirling.software.SPDF.config.interfaces.ShowAdminInterface;`
UI: settings show/hide update display (#1072) * UI: settings show/hide update display This PR replaces the PR #1003 In this PR, the visual for available update is added to the foreground. There are new settings to generally show/hide the update display, and only administrators receive the update display. * change to `Bean` * Update AppUpdateShowService.java * add update message * revision service * change shouldShow * Update githubVersion.js * rm folder * Update AppUpdateService.java 2024-04-21 13:15:18 +02:00			`import stirling.software.SPDF.model.ApplicationProperties;`
			`import stirling.software.SPDF.model.User;`
			`import stirling.software.SPDF.repository.UserRepository;`

			`@Service`
			`class AppUpdateAuthService implements ShowAdminInterface {`

formattingand autowired constructors (#2557) # Description This pull request includes several changes aimed at improving the code structure and removing redundant code. The most significant changes involve reordering methods, removing unnecessary annotations, and refactoring constructors to use dependency injection. Autowired now comes via constructor (which also doesn't need autowired annotation as its done by default for configuration) ## Checklist - [ ] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [ ] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [ ] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2024-12-24 09:52:53 +00:00			`private final UserRepository userRepository;`

			`private final ApplicationProperties applicationProperties;`

			`public AppUpdateAuthService(`
			`UserRepository userRepository, ApplicationProperties applicationProperties) {`
			`this.userRepository = userRepository;`
			`this.applicationProperties = applicationProperties;`
			`}`
UI: settings show/hide update display (#1072) * UI: settings show/hide update display This PR replaces the PR #1003 In this PR, the visual for available update is added to the foreground. There are new settings to generally show/hide the update display, and only administrators receive the update display. * change to `Bean` * Update AppUpdateShowService.java * add update message * revision service * change shouldShow * Update githubVersion.js * rm folder * Update AppUpdateService.java 2024-04-21 13:15:18 +02:00
(Sonar) Fixed finding: "`@Override` should be used on overriding and implementing methods" 2024-06-07 04:38:10 +00:00			`@Override`
UI: settings show/hide update display (#1072) * UI: settings show/hide update display This PR replaces the PR #1003 In this PR, the visual for available update is added to the foreground. There are new settings to generally show/hide the update display, and only administrators receive the update display. * change to `Bean` * Update AppUpdateShowService.java * add update message * revision service * change shouldShow * Update githubVersion.js * rm folder * Update AppUpdateService.java 2024-04-21 13:15:18 +02:00			`public boolean getShowUpdateOnlyAdmins() {`
Lots of changes (#1889) * Add image support to multi-tool page Related to #278 * changes to support image types * final touches * final touches * final touches Signed-off-by: a <a> * final touches Signed-off-by: a <a> * final touches Signed-off-by: a <a> * final touches Signed-off-by: a <a> * final touches Signed-off-by: a <a> * final touches Signed-off-by: a <a> * final touches Signed-off-by: a <a> * Update translation files (#1888) Signed-off-by: GitHub Action <action@github.com> Co-authored-by: GitHub Action <action@github.com> --------- Signed-off-by: a <a> Signed-off-by: GitHub Action <action@github.com> Co-authored-by: a <a> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: GitHub Action <action@github.com> 2024-09-13 16:42:38 +01:00			`boolean showUpdate = applicationProperties.getSystem().isShowUpdate();`
UI: settings show/hide update display (#1072) * UI: settings show/hide update display This PR replaces the PR #1003 In this PR, the visual for available update is added to the foreground. There are new settings to generally show/hide the update display, and only administrators receive the update display. * change to `Bean` * Update AppUpdateShowService.java * add update message * revision service * change shouldShow * Update githubVersion.js * rm folder * Update AppUpdateService.java 2024-04-21 13:15:18 +02:00			`if (!showUpdate) {`
			`return showUpdate;`
			`}`
			`boolean showUpdateOnlyAdmin = applicationProperties.getSystem().getShowUpdateOnlyAdmin();`
			`Authentication authentication = SecurityContextHolder.getContext().getAuthentication();`
			`if (authentication == null \|\| !authentication.isAuthenticated()) {`
			`return !showUpdateOnlyAdmin;`
			`}`
			`if (authentication.getName().equalsIgnoreCase("anonymousUser")) {`
			`return !showUpdateOnlyAdmin;`
			`}`
			`Optional<User> user = userRepository.findByUsername(authentication.getName());`
			`if (user.isPresent() && showUpdateOnlyAdmin) {`
			`return "ROLE_ADMIN".equals(user.get().getRolesAsString());`
			`}`
			`return showUpdate;`
			`}`
			`}`