| Panel | ||||||||
|---|---|---|---|---|---|---|---|---|
| ||||||||
|
| Panel | ||||
|---|---|---|---|---|
| ||||
This guide is applicable for all permission types, e.g: Form Permission, UI Category Permission, etc.
|
| Code Block | ||||
|---|---|---|---|---|
| ||||
import java.util.Map;
import org.joget.directory.model.User;
import org.joget.plugin.ldap.model.UserLDAPImpl;
import javax.naming.directory.Attributes;
public boolean isAuthorized(User user, Map params) {
/*
'user' parameter is current user
'user' parameter is of User object, UserLDAPImpl extends User
*/
// Check if current user is not anonymous & current user belongs to AD user
if (user != null && user instanceof UserLDAPImpl) {
// Cast 'user' object to UserLDAPImpl
UserLDAPImpl ldapUser = (UserLDAPImpl) user;
// Re-use method getAttributes() to get user details
Attributes attrs = ldapUser.getAttributes();
//Change the attribute name here to suit your requirements
String attributeName = "cn";
if (attrs.get(attributeName) != null) {
//This is how to retrieve attribute values
System.out.println(attrs.get(attributeName).get().toString());
/*
Perform your permission logic for AD users here
*/
}
} else if (user != null && !(user instanceof UserLDAPImpl)) {
/*
Handle permission logic for non-AD users
*/
} else {
return false;
}
}
//call isAuthorized method with injected variable
return isAuthorized(user, requestParams); |