Skip to content
Snippets Groups Projects
Commit 3c17e9d3 authored by srosse's avatar srosse
Browse files

OO-4065: defense against rogue roles

parent cc82e935
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
src/main/java/org/olat/basesecurity/manager/OrganisationDAO.java
+ 1
1
View file @ 3c17e9d3
...@@ -500,7 +500,7 @@ public class OrganisationDAO { ...@@ -500,7 +500,7 @@ public class OrganisationDAO {
sb.append("select membership.role, count(distinct membership.key) from organisation org") sb.append("select membership.role, count(distinct membership.key) from organisation org")
.append(" inner join org.group baseGroup") .append(" inner join org.group baseGroup")
.append(" inner join baseGroup.members membership") .append(" inner join baseGroup.members membership")
.append(" where org.key=:organisationKey and membership.identity.key in (:identityKeys)") .append(" where org.key=:organisationKey and membership.identity.key in (:identityKeys) and membership.role is not null")
.append(" group by membership.role"); .append(" group by membership.role");
List<Long> identityKeys = identities.stream() List<Long> identityKeys = identities.stream()
......
src/main/java/org/olat/user/ui/admin/bulk/move/ChooseRolesController.java
+ 12
12
View file @ 3c17e9d3
...@@ -97,26 +97,26 @@ public class ChooseRolesController extends StepFormBasicController { ...@@ -97,26 +97,26 @@ public class ChooseRolesController extends StepFormBasicController {
@Override @Override
protected void initForm(FormItemContainer formLayout, Controller listener, UserRequest ureq) { protected void initForm(FormItemContainer formLayout, Controller listener, UserRequest ureq) {
int numOfRoles = statistics.size(); KeyValues rolesKeyValues = new KeyValues();
String[] roleKeys = new String[statistics.size()]; for(OrganisationMembershipStats stats:statistics) {
String[] roleValues = new String[statistics.size()]; if(stats.getRole() != null) {
for(int i=0; i<numOfRoles; i++) { String roleKey = stats.getRole().name();
OrganisationMembershipStats stats = statistics.get(i); String roleValue = translate("role.".concat(stats.getRole().name())) + " ( " + stats.getNumOfMembers() + " )";
roleKeys[i] = stats.getRole().name(); rolesKeyValues.add(KeyValues.entry(roleKey, roleValue));
roleValues[i] = translate("role.".concat(stats.getRole().name())) + " ( " + stats.getNumOfMembers() + " )"; }
} }
rolesEl = uifactory.addCheckboxesVertical("roles", formLayout, roleKeys, roleValues, 1); rolesEl = uifactory.addCheckboxesVertical("roles", formLayout, rolesKeyValues.keys(), rolesKeyValues.values(), 1);
uifactory.addStaticTextElement("source.organisation", organisation.getDisplayName(), formLayout); uifactory.addStaticTextElement("source.organisation", organisation.getDisplayName(), formLayout);
KeyValues keyValues = new KeyValues(); KeyValues organisationsKeyValues = new KeyValues();
for(Organisation target:targetOrganisations) { for(Organisation target:targetOrganisations) {
String organisationKey = target.getKey().toString(); String organisationKey = target.getKey().toString();
String parentLine = organisationWithParentLine(target); String parentLine = organisationWithParentLine(target);
keyValues.add(KeyValues.entry(organisationKey, parentLine)); organisationsKeyValues.add(KeyValues.entry(organisationKey, parentLine));
} }
keyValues.sort(KeyValues.VALUE_ASC); organisationsKeyValues.sort(KeyValues.VALUE_ASC);
targetOrganisationEl = uifactory.addDropdownSingleselect("target.organisation", formLayout, keyValues.keys(), keyValues.values()); targetOrganisationEl = uifactory.addDropdownSingleselect("target.organisation", formLayout, organisationsKeyValues.keys(), organisationsKeyValues.values());
} }
private String organisationWithParentLine(Organisation org) { private String organisationWithParentLine(Organisation org) {
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment