View Javadoc
1   /*
2    * Copyright (c) 2002-2014, Mairie de Paris
3    * All rights reserved.
4    *
5    * Redistribution and use in source and binary forms, with or without
6    * modification, are permitted provided that the following conditions
7    * are met:
8    *
9    *  1. Redistributions of source code must retain the above copyright notice
10   *     and the following disclaimer.
11   *
12   *  2. Redistributions in binary form must reproduce the above copyright notice
13   *     and the following disclaimer in the documentation and/or other materials
14   *     provided with the distribution.
15   *
16   *  3. Neither the name of 'Mairie de Paris' nor 'Lutece' nor the names of its
17   *     contributors may be used to endorse or promote products derived from
18   *     this software without specific prior written permission.
19   *
20   * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21   * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22   * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23   * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE
24   * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
25   * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26   * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27   * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28   * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30   * POSSIBILITY OF SUCH DAMAGE.
31   *
32   * License 1.0
33   */
34  package fr.paris.lutece.portal.web.rbac;
35  
36  import fr.paris.lutece.portal.business.rbac.AdminRole;
37  import fr.paris.lutece.portal.business.rbac.AdminRoleHome;
38  import fr.paris.lutece.portal.business.rbac.RBAC;
39  import fr.paris.lutece.portal.business.rbac.RBACHome;
40  import fr.paris.lutece.portal.business.right.Level;
41  import fr.paris.lutece.portal.business.right.LevelHome;
42  import fr.paris.lutece.portal.business.user.AdminUser;
43  import fr.paris.lutece.portal.business.user.AdminUserHome;
44  import fr.paris.lutece.portal.service.admin.AdminUserService;
45  import fr.paris.lutece.portal.service.i18n.I18nService;
46  import fr.paris.lutece.portal.service.message.AdminMessage;
47  import fr.paris.lutece.portal.service.message.AdminMessageService;
48  import fr.paris.lutece.portal.service.rbac.RBACRemovalListenerService;
49  import fr.paris.lutece.portal.service.rbac.ResourceType;
50  import fr.paris.lutece.portal.service.rbac.ResourceTypeManager;
51  import fr.paris.lutece.portal.service.template.AppTemplateService;
52  import fr.paris.lutece.portal.service.util.AppPathService;
53  import fr.paris.lutece.portal.service.util.AppPropertiesService;
54  import fr.paris.lutece.portal.web.admin.AdminFeaturesPageJspBean;
55  import fr.paris.lutece.portal.web.constants.Messages;
56  import fr.paris.lutece.portal.web.constants.Parameters;
57  import fr.paris.lutece.portal.web.util.LocalizedPaginator;
58  import fr.paris.lutece.util.ReferenceItem;
59  import fr.paris.lutece.util.ReferenceList;
60  import fr.paris.lutece.util.html.HtmlTemplate;
61  import fr.paris.lutece.util.html.ItemNavigator;
62  import fr.paris.lutece.util.html.Paginator;
63  import fr.paris.lutece.util.sort.AttributeComparator;
64  import fr.paris.lutece.util.string.StringUtil;
65  import fr.paris.lutece.util.url.UrlItem;
66  
67  import org.apache.commons.lang.StringUtils;
68  
69  import java.util.ArrayList;
70  import java.util.Collection;
71  import java.util.Collections;
72  import java.util.HashMap;
73  import java.util.List;
74  import java.util.Map;
75  
76  import javax.servlet.http.HttpServletRequest;
77  
78  
79  /**
80   * This class provides methods for role management.
81   */
82  public class RoleManagementJspBean extends AdminFeaturesPageJspBean
83  {
84      //////////////////////////////////////////////////////////////////////////////////
85      // Contants
86      /**
87       * Right to manage RBAC
88       */
89      public static final String RIGHT_MANAGE_ROLES = "CORE_RBAC_MANAGEMENT";
90  
91      /**
92       * Serial version UID
93       */
94      private static final long serialVersionUID = 5909246296083478844L;
95  
96      // parameters
97      private static final String PARAMETER_METHOD_SELECTION_ALL = "all";
98      private static final String PARAMETER_METHOD_SELECTION_CHOOSE = "choose";
99      private static final String PARAMETER_SELECTION_METHOD_CHOOSE = "choose";
100     private static final String PARAMETER_ROLE_KEY = "role_key";
101     private static final String PARAMETER_ROLE_DESCRIPTION = "role_description";
102     private static final String PARAMETER_ROLE_KEY_PREVIOUS = "role_key_previous";
103     private static final String PARAMETER_RESOURCE_TYPE = "resource_type";
104     private static final String PARAMETER_SELECT_RESOURCES_METHOD = "select_resources";
105     private static final String PARAMETER_RESOURCE_ID = "resource_id";
106     private static final String PARAMETER_PERMISSION_KEY = "permission_key";
107     private static final String PARAMETER_SELECT_PERMISSIONS_METHOD = "select_permissions";
108     private static final String PARAMETER_RBAC_ID = "rbac_id";
109     private static final String PARAMETER_AVAILABLE_USER_LIST = "available_users_list";
110     private static final String PARAMETER_CANCEL = "cancel";
111     private static final String PARAMETER_ID_USER = "id_user";
112     private static final String PARAMETER_ANCHOR = "anchor";
113 
114     //markers
115     private static final String MARK_PERMISSIONS_LIST = "permissions_list";
116     private static final String MARK_RESOURCE_ID_LIST = "resource_id_list";
117     private static final String MARK_RESOURCE_TYPE_LIST = "resource_type_list";
118     private static final String MARK_CONTROLED_RESOURCE_LIST = "controled_resource_list";
119     private static final String MARK_ROLE = "role";
120     private static final String MARK_ROLE_LIST = "role_list";
121     private static final String MARK_PAGINATOR = "paginator";
122     private static final String MARK_NB_ITEMS_PER_PAGE = "nb_items_per_page";
123     private static final String MARK_ROLE_KEY = "role_key";
124     private static final String MARK_RESOURCE_TYPE = "resource_type";
125     private static final String MARK_SELECT_RESOURCES_METHOD = "select_resources";
126     private static final String MARK_RESOURCE_LIST_AVAILABLE = "resource_list_available";
127     private static final String MARK_ASSIGNED_USERS_LIST = "assigned_users_list";
128     private static final String MARK_AVAILABLE_USERS_LIST = "available_users_list";
129     private static final String MARK_ASSIGNED_USERS_NUMBER = "assigned_users_number";
130     private static final String MARK_ITEM_NAVIGATOR = "item_navigator";
131     private static final String MARK_USER_LEVELS_LIST = "user_levels";
132 
133     // properties
134     private static final String PROPERTY_CONFIRM_DELETE_ROLE = "portal.rbac.message.confirmDeleteRole";
135     private static final String PROPERTY_CONFIRM_DELETE_CONTROL = "portal.rbac.message.confirmDeleteControl";
136     private static final String PROPERTY_ROLE_ALREADY_EXISTS = "portal.rbac.message.roleAlreadyExists";
137     private static final String PROPERTY_ROLE_ATTRIBUTED = "portal.rbac.message.roleAttributed";
138     private static final String PROPERTY_ROLE_CREATION_PAGETITLE = "portal.rbac.pageTitle.createRole";
139     private static final String PROPERTY_ROLE_MODIFICATION_PAGETITLE = "portal.rbac.pageTitle.modifyRole";
140     private static final String PROPERTY_ROLE_DESCRIPTION_PAGETITLE = "portal.rbac.pageTitle.viewRoleDescription";
141     private static final String PROPERTY_CHOOSE_RESOURCES_PAGETITLE = "portal.rbac.pageTitle.chooseResources";
142     private static final String PROPERTY_SELECT_RESOURCES_IDS_PAGETITLE = "portal.rbac.pageTitle.selectResourceIds";
143     private static final String PROPERTY_SELECT_PERMISSIONS_PAGETITLE = "portal.rbac.pageTitle.selectPermissions";
144     private static final String PROPERTY_MESSAGE_NO_ID_SELECTION_METHOD = "portal.rbac.message.resourceIdSelectionMethod";
145     private static final String PROPERTY_MESSAGE_ID_LIST_EMPTY = "portal.rbac.message.resourceIdListEmpty";
146     private static final String PROPERTY_MESSAGE_NO_PERMISSION_SELECTION_METHOD = "portal.rbac.message.permissionSelectionMethod";
147     private static final String PROPERTY_MESSAGE_PERMISSION_LIST_EMPTY = "portal.rbac.message.permissionListEmpty";
148     private static final String MESSAGE_ROLE_SPECIAL_CHARACTER = "portal.rbac.message.specialCharacters";
149     private static final String PROPERTY_ROLES_PER_PAGE = "paginator.roles.itemsPerPage";
150     private static final String PROPERTY_ASSIGN_USERS_PAGETITLE = "portal.rbac.assign_users.pageTitle";
151     private static final String PROPERTY_MANAGE_ROLES_PAGETITLE = "portal.rbac.manage_roles.pageTitle";
152     private static final String MESSAGE_CANNOT_REMOVE_ROLE = "portal.rbac.message.cannotRemoveRole";
153 
154     // templates
155     private static final String TEMPLATE_MANAGE_ROLES = "admin/rbac/manage_roles.html";
156     private static final String TEMPLATE_CREATE_ROLE = "admin/rbac/create_role.html";
157     private static final String TEMPLATE_MODIFY_ROLE = "admin/rbac/modify_role.html";
158     private static final String TEMPLATE_VIEW_ROLE_DESCRIPTION = "admin/rbac/view_role_description.html";
159     private static final String TEMPLATE_ADD_CONTROL_TO_ROLE = "admin/rbac/add_control_to_role.html";
160     private static final String TEMPLATE_SELECT_PERMISSIONS = "admin/rbac/select_permissions.html";
161     private static final String TEMPLATE_SELECT_RESOURCE_IDS = "admin/rbac/select_resource_ids.html";
162     private static final String TEMPLATE_ASSIGN_USERS = "admin/rbac/assign_users_role.html";
163 
164     // jsp
165     private static final String JSP_URL_ROLES_MANAGEMENT = "ManageRoles.jsp";
166     private static final String JSP_URL_SELECT_PERMISSIONS = "SelectPermissions.jsp";
167     private static final String JSP_URL_ROLE_DESCRIPTION = "ViewRoleDescription.jsp";
168     private static final String JSP_URL_SELECT_SPECIFIC_IDS = "SelectSpecificIds.jsp";
169     private static final String JSP_URL_REMOVE_ROLE = "jsp/admin/rbac/DoRemoveRole.jsp";
170     private static final String JSP_URL_REMOVE_CONTROL_FROM_ROLE = "jsp/admin/rbac/DoRemoveControlFromRole.jsp";
171     private static final String JSP_ASSIGN_USERS_TO_ROLE = "AssignUsersRole.jsp";
172     private static final String JSP_URL_ASSIGN_USERS_TO_ROLE = "jsp/admin/rbac/AssignUsersRole.jsp";
173     private int _nItemsPerPage;
174     private int _nDefaultItemsPerPage;
175     private String _strCurrentPageIndex;
176     private ItemNavigator _itemNavigator;
177 
178     /**
179      * Get the roles management page.
180      * This page provides the list of all existing roles.
181      * @param request the http request
182      * @return the html code for the role management page
183      */
184     public String getManageRoles( HttpServletRequest request )
185     {
186         setPageTitleProperty( PROPERTY_MANAGE_ROLES_PAGETITLE );
187 
188         // Reinit session
189         reinitItemNavigator(  );
190 
191         List<AdminRole> listRole = (List<AdminRole>) AdminRoleHome.findAll(  );
192 
193         // SORT
194         String strSortedAttributeName = request.getParameter( Parameters.SORTED_ATTRIBUTE_NAME );
195         String strAscSort = null;
196 
197         if ( strSortedAttributeName != null )
198         {
199             strAscSort = request.getParameter( Parameters.SORTED_ASC );
200 
201             boolean bIsAscSort = Boolean.parseBoolean( strAscSort );
202 
203             Collections.sort( listRole, new AttributeComparator( strSortedAttributeName, bIsAscSort ) );
204         }
205 
206         _strCurrentPageIndex = Paginator.getPageIndex( request, Paginator.PARAMETER_PAGE_INDEX, _strCurrentPageIndex );
207         _nDefaultItemsPerPage = AppPropertiesService.getPropertyInt( PROPERTY_ROLES_PER_PAGE, 50 );
208         _nItemsPerPage = Paginator.getItemsPerPage( request, Paginator.PARAMETER_ITEMS_PER_PAGE, _nItemsPerPage,
209                 _nDefaultItemsPerPage );
210 
211         String strURL = getHomeUrl( request );
212         UrlItem url = new UrlItem( strURL );
213 
214         if ( strSortedAttributeName != null )
215         {
216             url.addParameter( Parameters.SORTED_ATTRIBUTE_NAME, strSortedAttributeName );
217         }
218 
219         if ( strAscSort != null )
220         {
221             url.addParameter( Parameters.SORTED_ASC, strAscSort );
222         }
223 
224         // PAGINATOR
225         LocalizedPaginator<AdminRole> paginator = new LocalizedPaginator<AdminRole>( listRole, _nItemsPerPage,
226                 url.getUrl(  ), Paginator.PARAMETER_PAGE_INDEX, _strCurrentPageIndex, getLocale(  ) );
227 
228         Map<String, Object> model = new HashMap<String, Object>(  );
229         model.put( MARK_NB_ITEMS_PER_PAGE, Integer.toString( _nItemsPerPage ) );
230         model.put( MARK_PAGINATOR, paginator );
231         model.put( MARK_ROLE_LIST, paginator.getPageItems(  ) );
232 
233         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_MANAGE_ROLES, getLocale(  ), model );
234 
235         return getAdminPage( template.getHtml(  ) );
236     }
237 
238     /**
239      * Get the role creation page.
240      * This page provides a form to enter basic information about
241      * the new role.
242      * @param request the http request
243      * @return the html code for the role creation page
244      */
245     public String getCreateRole( HttpServletRequest request )
246     {
247         setPageTitleProperty( PROPERTY_ROLE_CREATION_PAGETITLE );
248 
249         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_CREATE_ROLE, getLocale(  ) );
250 
251         return getAdminPage( template.getHtml(  ) );
252     }
253 
254     /**
255      * Perform the role creation.
256      * The role key entered should not already exist.
257      * The role key is mandatory.
258      * @param request the http request
259      * @return the url to forward to
260      */
261     public String doCreateRole( HttpServletRequest request )
262     {
263         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
264         String strRoleDescription = request.getParameter( PARAMETER_ROLE_DESCRIPTION );
265 
266         if ( StringUtils.isBlank( strRoleKey ) || StringUtils.isBlank( strRoleDescription ) )
267         {
268             return AdminMessageService.getMessageUrl( request, Messages.MANDATORY_FIELDS, AdminMessage.TYPE_STOP );
269         }
270         else if ( AdminRoleHome.checkExistRole( strRoleKey ) )
271         {
272             return AdminMessageService.getMessageUrl( request, PROPERTY_ROLE_ALREADY_EXISTS, AdminMessage.TYPE_STOP );
273         }
274         else if ( !StringUtil.checkCodeKey( strRoleKey ) )
275         {
276             return AdminMessageService.getMessageUrl( request, MESSAGE_ROLE_SPECIAL_CHARACTER, AdminMessage.TYPE_STOP );
277         }
278         else
279         {
280             AdminRole role = new AdminRole(  );
281             role.setKey( strRoleKey.trim(  ) );
282             role.setDescription( strRoleDescription );
283             AdminRoleHome.create( role );
284 
285             return JSP_URL_ROLE_DESCRIPTION + "?" + PARAMETER_ROLE_KEY + "=" + strRoleKey;
286         }
287     }
288 
289     /**
290      * Get the role modification page.
291      * This corresponds to the modification of the basic information linked to
292      * the role : key and description
293      * @param request the http request
294      * @return the html code for the modification page
295      */
296     public String getModifyRole( HttpServletRequest request )
297     {
298         setPageTitleProperty( PROPERTY_ROLE_MODIFICATION_PAGETITLE );
299 
300         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
301 
302         HashMap<String, Object> model = new HashMap<String, Object>(  );
303         model.put( MARK_ROLE, AdminRoleHome.findByPrimaryKey( strRoleKey ) );
304 
305         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_MODIFY_ROLE, getLocale(  ), model );
306 
307         return getAdminPage( template.getHtml(  ) );
308     }
309 
310     /**
311      * Performs the modification of the role's key and description.
312      * The role key entered should not already exist.
313      * The role key is mandatory.
314      * It should update the key for all the entries in the role-resource
315      * association list.
316      * @param request the http request
317      * @return the url to forward to
318      */
319     public String doModifyRole( HttpServletRequest request )
320     {
321         String strOldRoleKey = request.getParameter( PARAMETER_ROLE_KEY_PREVIOUS );
322         String strNewRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
323         String strRoleDescription = request.getParameter( PARAMETER_ROLE_DESCRIPTION );
324 
325         // check that new role key is valid
326         if ( StringUtils.isBlank( strNewRoleKey ) || StringUtils.isBlank( strRoleDescription ) )
327         {
328             return AdminMessageService.getMessageUrl( request, Messages.MANDATORY_FIELDS, AdminMessage.TYPE_STOP );
329         }
330 
331         if ( strOldRoleKey.equals( strNewRoleKey ) ) // if the key doesn't change, update the description
332         {
333             // update the role
334             AdminRole role = AdminRoleHome.findByPrimaryKey( strOldRoleKey );
335             role.setKey( strNewRoleKey );
336             role.setDescription( strRoleDescription );
337             AdminRoleHome.update( strOldRoleKey, role );
338         }
339         else // if the key changes, first check that the new key doesn't exist
340         {
341             if ( AdminRoleHome.checkExistRole( strNewRoleKey ) )
342             {
343                 return AdminMessageService.getMessageUrl( request, PROPERTY_ROLE_ALREADY_EXISTS, AdminMessage.TYPE_STOP );
344             }
345 
346             // update the role
347             AdminRole role = AdminRoleHome.findByPrimaryKey( strOldRoleKey );
348             role.setKey( strNewRoleKey );
349             role.setDescription( strRoleDescription );
350             AdminRoleHome.update( strOldRoleKey, role );
351             AdminUserHome.updateUsersRole( strOldRoleKey, role );
352 
353             //  update the role key in the role-resource associations
354             RBACHome.updateRoleKey( strOldRoleKey, strNewRoleKey );
355         }
356 
357         return JSP_URL_ROLE_DESCRIPTION + "?" + PARAMETER_ROLE_KEY + "=" + strNewRoleKey;
358     }
359 
360     /**
361      * Get the confirmation page before deletion of a role
362      * @param request the HTTP request
363      * @return the url of the confirmation page
364      */
365     public String doConfirmRemoveRole( HttpServletRequest request )
366     {
367         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
368 
369         String strDeleteUrl = JSP_URL_REMOVE_ROLE + "?" + PARAMETER_ROLE_KEY + "=" + strRoleKey;
370         String strUrl = AdminMessageService.getMessageUrl( request, PROPERTY_CONFIRM_DELETE_ROLE, strDeleteUrl,
371                 AdminMessage.TYPE_CONFIRMATION );
372 
373         return strUrl;
374     }
375 
376     /**
377      * Perform the role deletion.
378      * Also delete the resources linked to this role
379      * @param request the http request
380      * @return the url of the role management page
381      */
382     public String doRemoveRole( HttpServletRequest request )
383     {
384         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
385         List<String> listErrors = new ArrayList<String>(  );
386 
387         // check that no user has this role
388         if ( AdminUserHome.checkRoleAttributed( strRoleKey ) )
389         {
390             return AdminMessageService.getMessageUrl( request, PROPERTY_ROLE_ATTRIBUTED, AdminMessage.TYPE_STOP );
391         }
392         else if ( !RBACRemovalListenerService.getService(  ).checkForRemoval( strRoleKey, listErrors, getLocale(  ) ) )
393         {
394             String strCause = AdminMessageService.getFormattedList( listErrors, getLocale(  ) );
395             Object[] args = { strCause };
396 
397             return AdminMessageService.getMessageUrl( request, MESSAGE_CANNOT_REMOVE_ROLE, args, AdminMessage.TYPE_STOP );
398         }
399         else
400         {
401             // remove role
402             AdminRoleHome.remove( strRoleKey );
403 
404             // remove resources entries for that role
405             RBACHome.removeForRoleKey( strRoleKey );
406 
407             return JSP_URL_ROLES_MANAGEMENT;
408         }
409     }
410 
411     /**
412      * Get the page describing a role and the resource associated
413      * @param request the HTTP request
414      * @return the HTML code for the description page
415      */
416     public String getViewRoleDescription( HttpServletRequest request )
417     {
418         setPageTitleProperty( PROPERTY_ROLE_DESCRIPTION_PAGETITLE );
419 
420         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
421 
422         Collection<RBAC> listResources = RBACHome.findResourcesByCode( strRoleKey );
423         I18nService.localizeCollection( listResources, getLocale(  ) );
424 
425         Collection<ResourceType> listResourceTypes = ResourceTypeManager.getResourceTypeList(  );
426         I18nService.localizeCollection( listResourceTypes, getLocale(  ) );
427 
428         AdminRole adminRole = AdminRoleHome.findByPrimaryKey( strRoleKey );
429 
430         if ( adminRole == null )
431         {
432             return getManageRoles( request );
433         }
434 
435         Map<String, Object> model = new HashMap<String, Object>(  );
436         model.put( MARK_ROLE, adminRole );
437         model.put( MARK_CONTROLED_RESOURCE_LIST, listResources );
438         model.put( MARK_RESOURCE_TYPE_LIST, listResourceTypes );
439 
440         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_VIEW_ROLE_DESCRIPTION, getLocale(  ), model );
441 
442         return getAdminPage( template.getHtml(  ) );
443     }
444 
445     /**
446      * Get the confirmation page before deletion of a control
447      * @param request the http request
448      * @return the url of the confirmation page
449      */
450     public String doConfirmRemoveControlFromRole( HttpServletRequest request )
451     {
452         String strIdControl = request.getParameter( PARAMETER_RBAC_ID );
453         String strDeleteUrl = JSP_URL_REMOVE_CONTROL_FROM_ROLE + "?" + PARAMETER_RBAC_ID + "=" + strIdControl;
454         String strUrl = AdminMessageService.getMessageUrl( request, PROPERTY_CONFIRM_DELETE_CONTROL, strDeleteUrl,
455                 AdminMessage.TYPE_CONFIRMATION );
456 
457         return strUrl;
458     }
459 
460     /**
461      * Perform the role deletion.
462      * Also delete the resources linked to this role
463      * @param request the http request
464      * @return the url of the role management page
465      */
466     public String doRemoveControlFromRole( HttpServletRequest request )
467     {
468         String strIdControl = request.getParameter( PARAMETER_RBAC_ID );
469         int nId = Integer.parseInt( strIdControl );
470 
471         RBAC rbac = RBACHome.findByPrimaryKey( nId );
472 
473         // remove control
474         RBACHome.remove( nId );
475 
476         return JSP_URL_ROLE_DESCRIPTION + "?" + PARAMETER_ROLE_KEY + "=" + rbac.getRoleKey(  );
477     }
478 
479     /**
480      * Get the first page of the control addition to a role.
481      * This page provides choice for resource selection.
482      * 2 methods are provided :
483      * <ul>
484      * <li>wildcard selection : all resources of this type are selected.</li>
485      * <li>specific selection : a page with the list of resource ids available
486      * is provided next for user choice.</li>
487      * </ul>
488      * @param request the HTTP request
489      * @return the HTML content for the resource selection method choice
490      */
491     public String getAddControlToRole( HttpServletRequest request )
492     {
493         setPageTitleProperty( PROPERTY_CHOOSE_RESOURCES_PAGETITLE );
494 
495         Map<String, Object> model = new HashMap<String, Object>(  );
496 
497         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
498         String strResourceType = request.getParameter( PARAMETER_RESOURCE_TYPE );
499 
500         ResourceType resourceType = ResourceTypeManager.getResourceType( strResourceType );
501 
502         boolean bResourceListAvailable = true;
503         ReferenceList listResources = resourceType.getResourceIdService(  ).getResourceIdList( getLocale(  ) );
504 
505         if ( ( listResources == null ) || ( listResources.size(  ) == 0 ) )
506         {
507             bResourceListAvailable = false;
508         }
509 
510         model.put( MARK_ROLE_KEY, strRoleKey );
511         model.put( MARK_RESOURCE_TYPE, strResourceType );
512         model.put( MARK_RESOURCE_LIST_AVAILABLE, bResourceListAvailable );
513 
514         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_ADD_CONTROL_TO_ROLE, getLocale(  ), model );
515 
516         return getAdminPage( template.getHtml(  ) );
517     }
518 
519     /**
520      * Perform the checks on the resource selection method and perform the
521      * suitable redirection.
522      * <ul>
523      * <li>If selection method is global (wilcard selection - parameter "all"),
524      * the user is redirected to the permission selection page.</li>
525      * <li>If selection method is specific (id selection - parameter "choose"),
526      * the user is redirected to the resource id selection page.</li>
527      * <li>If no selection method is found, or if it's neither parameter "all"
528      * nor "choose", the user is redirected to a error page.</li>
529      * </ul>
530      * @param request the http request
531      * @return the url of the page to be redirected to
532      */
533     public String doSelectResources( HttpServletRequest request )
534     {
535         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
536         String strResourceType = request.getParameter( PARAMETER_RESOURCE_TYPE );
537         String strSelectionMethod = request.getParameter( PARAMETER_SELECT_RESOURCES_METHOD );
538 
539         if ( ( strSelectionMethod == null ) || ( strSelectionMethod.trim(  ).equals( "" ) ) )
540         {
541             return AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_NO_ID_SELECTION_METHOD,
542                 AdminMessage.TYPE_STOP );
543         }
544         else if ( strSelectionMethod.equals( PARAMETER_SELECTION_METHOD_CHOOSE ) )
545         {
546             return JSP_URL_SELECT_SPECIFIC_IDS + "?" + PARAMETER_RESOURCE_TYPE + "=" + strResourceType + "&" +
547             PARAMETER_ROLE_KEY + "=" + strRoleKey + "&" + PARAMETER_SELECT_RESOURCES_METHOD + "=" + strSelectionMethod;
548         }
549         else if ( strSelectionMethod.equals( PARAMETER_METHOD_SELECTION_ALL ) )
550         {
551             return JSP_URL_SELECT_PERMISSIONS + "?" + PARAMETER_RESOURCE_TYPE + "=" + strResourceType + "&" +
552             PARAMETER_ROLE_KEY + "=" + strRoleKey + "&" + PARAMETER_SELECT_RESOURCES_METHOD + "=" + strSelectionMethod;
553         }
554         else
555         {
556             return AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_NO_ID_SELECTION_METHOD,
557                 AdminMessage.TYPE_STOP );
558         }
559     }
560 
561     /**
562      * Get the list of ids corresponding to the current resource type.
563      * This allows to provide the selection of resource ids that should be
564      * controlled for the current role.
565      * @param request the http request
566      * @return the html code for the list of ids to select
567      */
568     public String getSelectSpecificIds( HttpServletRequest request )
569     {
570         setPageTitleProperty( PROPERTY_SELECT_RESOURCES_IDS_PAGETITLE );
571 
572         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
573         String strResourceType = request.getParameter( PARAMETER_RESOURCE_TYPE );
574         String strSelectionMethod = request.getParameter( PARAMETER_SELECT_RESOURCES_METHOD );
575 
576         ResourceType resourceType = ResourceTypeManager.getResourceType( strResourceType );
577 
578         Map<String, Object> model = new HashMap<String, Object>(  );
579 
580         model.put( MARK_RESOURCE_ID_LIST, resourceType.getResourceIdService(  ).getResourceIdList( getLocale(  ) ) );
581         model.put( MARK_ROLE_KEY, strRoleKey );
582         model.put( MARK_RESOURCE_TYPE, strResourceType );
583         model.put( MARK_SELECT_RESOURCES_METHOD, strSelectionMethod );
584 
585         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_SELECT_RESOURCE_IDS, getLocale(  ), model );
586 
587         return getAdminPage( template.getHtml(  ) );
588     }
589 
590     /**
591      * Perform the check on the resource id list selected on the specific id
592      * selection page perform the suitable redirection.
593      * <ul>
594      * <li>If selection method is specific (id selection - parameter "choose"),
595      * <ul>
596      * <li>if at least one id as been selected, the user is redirected to the
597      * permission selection page.</li>
598      * <li>if no id as been selected, the user is redirected to an error page.</li>
599      * </ul>
600      * <li>If selection method is global (wilcard selection - parameter "all"),
601      * the user is redirected to the permission selection page (This check could
602      * be avoided as is should not happen).</li>
603      * <li>If no selection method is found, or if it's neither parameter "all"
604      * nor "choose", the user is redirected to a error page.</li>
605      * </ul>
606      * @param request the http request
607      * @return the url of the page to be redirected to
608      */
609     public String doSelectResourcesFromIdsList( HttpServletRequest request )
610     {
611         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
612         String strSelectionMethod = request.getParameter( PARAMETER_SELECT_RESOURCES_METHOD );
613         String strResourceType = request.getParameter( PARAMETER_RESOURCE_TYPE );
614         String[] strArrayResourceIds = request.getParameterValues( PARAMETER_RESOURCE_ID );
615 
616         String strUrl;
617 
618         // check that the selection method is "all" or "choose"
619         // if method is "choose", check that we have at least one id checked
620         if ( strSelectionMethod == null )
621         {
622             strUrl = AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_NO_ID_SELECTION_METHOD,
623                     AdminMessage.TYPE_STOP );
624         }
625         else if ( strSelectionMethod.equals( PARAMETER_METHOD_SELECTION_CHOOSE ) )
626         {
627             if ( ( strArrayResourceIds == null ) || ( strArrayResourceIds.length == 0 ) )
628             {
629                 strUrl = AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_ID_LIST_EMPTY,
630                         AdminMessage.TYPE_STOP );
631             }
632             else
633             {
634                 StringBuilder sbUrl = new StringBuilder( JSP_URL_SELECT_PERMISSIONS );
635                 sbUrl.append( "?" );
636                 sbUrl.append( PARAMETER_RESOURCE_TYPE );
637                 sbUrl.append( "=" );
638                 sbUrl.append( strResourceType );
639                 sbUrl.append( "&" );
640                 sbUrl.append( PARAMETER_ROLE_KEY );
641                 sbUrl.append( "=" );
642                 sbUrl.append( strRoleKey );
643                 sbUrl.append( "&" );
644                 sbUrl.append( PARAMETER_SELECT_RESOURCES_METHOD );
645                 sbUrl.append( "=" );
646                 sbUrl.append( strSelectionMethod );
647 
648                 for ( int i = 0; i < strArrayResourceIds.length; i++ )
649                 {
650                     sbUrl.append( "&" );
651                     sbUrl.append( PARAMETER_RESOURCE_ID );
652                     sbUrl.append( "=" );
653                     sbUrl.append( strArrayResourceIds[i] );
654                 }
655 
656                 strUrl = sbUrl.toString(  );
657             }
658         }
659         else if ( strSelectionMethod.equals( PARAMETER_METHOD_SELECTION_ALL ) )
660         {
661             StringBuilder sbUrl = new StringBuilder( JSP_URL_SELECT_PERMISSIONS );
662             sbUrl.append( "?" );
663             sbUrl.append( PARAMETER_RESOURCE_TYPE );
664             sbUrl.append( "=" );
665             sbUrl.append( strResourceType );
666             sbUrl.append( "&" );
667             sbUrl.append( PARAMETER_ROLE_KEY );
668             sbUrl.append( "=" );
669             sbUrl.append( strRoleKey );
670             sbUrl.append( "&" );
671             sbUrl.append( PARAMETER_SELECT_RESOURCES_METHOD );
672             sbUrl.append( "=" );
673             sbUrl.append( strSelectionMethod );
674             strUrl = sbUrl.toString(  );
675         }
676         else
677         {
678             strUrl = AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_NO_ID_SELECTION_METHOD,
679                     AdminMessage.TYPE_STOP );
680         }
681 
682         return strUrl;
683     }
684 
685     /**
686      * Get the permission selection page.
687      * 2 methods are provided :
688      * <ul>
689      * <li>wildcard selection : all permissions for this type are selected.</li>
690      * <li>specific selection : the choice is to be made by the user in the list
691      * of available permissions.</li>
692      * </ul>
693      * @param request the http request
694      * @return the html code for the permission selection page.
695      */
696     public String getSelectPermissions( HttpServletRequest request )
697     {
698         setPageTitleProperty( PROPERTY_SELECT_PERMISSIONS_PAGETITLE );
699 
700         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
701         String strResourceType = request.getParameter( PARAMETER_RESOURCE_TYPE );
702         String strSelectionMethod = request.getParameter( PARAMETER_SELECT_RESOURCES_METHOD );
703 
704         String[] strArrayResourceIds = request.getParameterValues( PARAMETER_RESOURCE_ID );
705 
706         // load the permission list for permission selection
707         ReferenceList listPermissions = ResourceTypeManager.getPermissionsList( strResourceType, getLocale(  ) );
708 
709         Map<String, Object> model = new HashMap<String, Object>(  );
710 
711         // forward the resource id  list
712         model.put( MARK_RESOURCE_ID_LIST, strArrayResourceIds );
713 
714         // load the permission list
715         model.put( MARK_PERMISSIONS_LIST, listPermissions );
716 
717         // forward the role key, the resource type and the resource id selection method
718         model.put( MARK_ROLE_KEY, strRoleKey );
719         model.put( MARK_RESOURCE_TYPE, strResourceType );
720         model.put( MARK_SELECT_RESOURCES_METHOD, strSelectionMethod );
721 
722         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_SELECT_PERMISSIONS, getLocale(  ), model );
723 
724         return getAdminPage( template.getHtml(  ) );
725     }
726 
727     /**
728      * Perform the checks on the permission selection and redirects to the
729      * description of the role if ok.
730      * <ul>
731      * <li>If selection method is global (wilcard selection - parameter "all"),
732      * the correspondind entry is stored as a control for all resources
733      * previously selected. The user is redirected to the role description page.
734      * </li>
735      * <li>If selection method is specific (id selection - parameter "choose"),
736      * <ul>
737      * <li>if no permission is found, the user is redirected to an error page.</li>
738      * <li>if at least one permission is found, the correspondind entry is
739      * stored as a control for all resources previously selected. The user is
740      * redirected to the role description page.</li>
741      * </ul>
742      * </li>
743      * <li>If no selection method is found, or if it's neither parameter "all"
744      * nor "choose", the user is redirected to a error page.</li>
745      * </ul>
746      * @param request the http request
747      * @return the url of the page to be redirected to
748      */
749     public String doSelectPermissions( HttpServletRequest request )
750     {
751         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
752         String strResourceType = request.getParameter( PARAMETER_RESOURCE_TYPE );
753         String strResourcesSelectionMethod = request.getParameter( PARAMETER_SELECT_RESOURCES_METHOD );
754         String strPermissionsSelectionMethod = request.getParameter( PARAMETER_SELECT_PERMISSIONS_METHOD );
755 
756         String[] strArrayResourceIds;
757         String[] strArrayPermissionKeys;
758 
759         //  get the list of  resource ids selected (forward from previous screen, so no need for extensive checks)
760         if ( ( strResourcesSelectionMethod != null ) &&
761                 strResourcesSelectionMethod.equals( PARAMETER_METHOD_SELECTION_ALL ) )
762         {
763             strArrayResourceIds = new String[1];
764             strArrayResourceIds[0] = RBAC.WILDCARD_RESOURCES_ID;
765         }
766         else
767         {
768             strArrayResourceIds = request.getParameterValues( PARAMETER_RESOURCE_ID );
769         }
770 
771         // check that the permission selection method is "all" or "choose"
772         // if method is "choose", check that we have at least one id checked
773         if ( strPermissionsSelectionMethod == null )
774         {
775             return AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_NO_PERMISSION_SELECTION_METHOD,
776                 AdminMessage.TYPE_STOP );
777         }
778         else if ( strPermissionsSelectionMethod.equals( PARAMETER_METHOD_SELECTION_CHOOSE ) )
779         {
780             strArrayPermissionKeys = request.getParameterValues( PARAMETER_PERMISSION_KEY );
781 
782             if ( ( strArrayPermissionKeys == null ) || ( strArrayPermissionKeys.length == 0 ) )
783             {
784                 return AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_PERMISSION_LIST_EMPTY,
785                     AdminMessage.TYPE_STOP );
786             }
787         }
788         else if ( strPermissionsSelectionMethod.equals( PARAMETER_METHOD_SELECTION_ALL ) )
789         {
790             strArrayPermissionKeys = new String[1];
791             strArrayPermissionKeys[0] = RBAC.WILDCARD_PERMISSIONS_KEY;
792         }
793         else
794         {
795             return AdminMessageService.getMessageUrl( request, PROPERTY_MESSAGE_NO_PERMISSION_SELECTION_METHOD,
796                 AdminMessage.TYPE_STOP );
797         }
798 
799         // store the selected elements in database
800         for ( int i = 0; i < strArrayResourceIds.length; i++ )
801         {
802             for ( int j = 0; j < strArrayPermissionKeys.length; j++ )
803             {
804                 RBAC rbac = new RBAC(  );
805                 rbac.setRoleKey( strRoleKey );
806                 rbac.setResourceTypeKey( strResourceType );
807                 rbac.setResourceId( strArrayResourceIds[i] );
808                 rbac.setPermissionKey( strArrayPermissionKeys[j] );
809                 RBACHome.create( rbac );
810             }
811         }
812 
813         return JSP_URL_ROLE_DESCRIPTION + "?" + PARAMETER_ROLE_KEY + "=" + strRoleKey;
814     }
815 
816     /**
817      * Returns the users assignation form
818      *
819      * @param request The Http request
820      * @return the html code for display the modes list
821      */
822     public String getAssignUsers( HttpServletRequest request )
823     {
824         Map<String, Object> model = new HashMap<String, Object>(  );
825         setPageTitleProperty( PROPERTY_ASSIGN_USERS_PAGETITLE );
826 
827         String strBaseUrl = AppPathService.getBaseUrl( request ) + JSP_URL_ASSIGN_USERS_TO_ROLE;
828         UrlItem url = new UrlItem( strBaseUrl );
829 
830         // ROLE
831         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
832         AdminRole role = AdminRoleHome.findByPrimaryKey( strRoleKey );
833 
834         // ASSIGNED USERS
835         List<AdminUser> listAssignedUsers = new ArrayList<AdminUser>(  );
836 
837         for ( AdminUser user : AdminUserHome.findByRole( strRoleKey ) )
838         {
839             //Add users with higher level then connected user or add all users if connected user is administrator
840             if ( ( user.getUserLevel(  ) > getUser(  ).getUserLevel(  ) ) || ( getUser(  ).isAdmin(  ) ) )
841             {
842                 listAssignedUsers.add( user );
843             }
844         }
845 
846         List<AdminUser> listFilteredUsers = AdminUserService.getFilteredUsersInterface( listAssignedUsers, request,
847                 model, url );
848 
849         // AVAILABLE USERS
850         ReferenceList listAvailableUsers = new ReferenceList(  );
851         ReferenceItem itemUser = null;
852         boolean bAssigned;
853 
854         for ( AdminUser user : AdminUserHome.findUserList(  ) )
855         {
856             itemUser = new ReferenceItem(  );
857             itemUser.setCode( Integer.toString( user.getUserId(  ) ) );
858             itemUser.setName( user.getAccessCode(  ) + "(" + user.getFirstName(  ) + " " + user.getLastName(  ) + ")" );
859             bAssigned = Boolean.FALSE;
860 
861             for ( AdminUser assignedUser : listAssignedUsers )
862             {
863                 if ( Integer.toString( assignedUser.getUserId(  ) ).equals( itemUser.getCode(  ) ) )
864                 {
865                     bAssigned = Boolean.TRUE;
866 
867                     break;
868                 }
869             }
870 
871             //Add users with higher level then connected user or add all users if connected user is administrator
872             if ( !bAssigned &&
873                     ( ( user.getUserLevel(  ) > getUser(  ).getUserLevel(  ) ) || ( getUser(  ).isAdmin(  ) ) ) )
874             {
875                 listAvailableUsers.add( itemUser );
876             }
877         }
878 
879         // SORT
880         String strSortedAttributeName = request.getParameter( Parameters.SORTED_ATTRIBUTE_NAME );
881         String strAscSort = null;
882 
883         if ( strSortedAttributeName != null )
884         {
885             strAscSort = request.getParameter( Parameters.SORTED_ASC );
886 
887             boolean bIsAscSort = Boolean.parseBoolean( strAscSort );
888 
889             Collections.sort( listFilteredUsers, new AttributeComparator( strSortedAttributeName, bIsAscSort ) );
890         }
891 
892         _strCurrentPageIndex = Paginator.getPageIndex( request, Paginator.PARAMETER_PAGE_INDEX, _strCurrentPageIndex );
893         _nDefaultItemsPerPage = AppPropertiesService.getPropertyInt( PROPERTY_ROLES_PER_PAGE, 50 );
894         _nItemsPerPage = Paginator.getItemsPerPage( request, Paginator.PARAMETER_ITEMS_PER_PAGE, _nItemsPerPage,
895                 _nDefaultItemsPerPage );
896 
897         if ( strSortedAttributeName != null )
898         {
899             url.addParameter( Parameters.SORTED_ATTRIBUTE_NAME, strSortedAttributeName );
900         }
901 
902         if ( strAscSort != null )
903         {
904             url.addParameter( Parameters.SORTED_ASC, strAscSort );
905         }
906 
907         // ITEM NAVIGATION
908         setItemNavigator( role.getKey(  ), url.getUrl(  ) );
909 
910         // PAGINATOR
911         url.addParameter( PARAMETER_ROLE_KEY, role.getKey(  ) );
912 
913         LocalizedPaginator<AdminUser> paginator = new LocalizedPaginator<AdminUser>( listFilteredUsers, _nItemsPerPage,
914                 url.getUrl(  ), Paginator.PARAMETER_PAGE_INDEX, _strCurrentPageIndex, getLocale(  ) );
915 
916         // USER LEVEL
917         Collection<Level> filteredLevels = new ArrayList<Level>(  );
918 
919         for ( Level level : LevelHome.getLevelsList(  ) )
920         {
921             if ( getUser(  ).isAdmin(  ) || getUser(  ).hasRights( level.getId(  ) ) )
922             {
923                 filteredLevels.add( level );
924             }
925         }
926 
927         model.put( MARK_ROLE, role );
928         model.put( MARK_USER_LEVELS_LIST, filteredLevels );
929         model.put( MARK_AVAILABLE_USERS_LIST, listAvailableUsers );
930         model.put( MARK_ASSIGNED_USERS_LIST, paginator.getPageItems(  ) );
931         model.put( MARK_ASSIGNED_USERS_NUMBER, listAssignedUsers.size(  ) );
932         model.put( MARK_ITEM_NAVIGATOR, _itemNavigator );
933         model.put( MARK_PAGINATOR, paginator );
934         model.put( MARK_NB_ITEMS_PER_PAGE, Integer.toString( _nItemsPerPage ) );
935 
936         HtmlTemplate template = AppTemplateService.getTemplate( TEMPLATE_ASSIGN_USERS, getLocale(  ), model );
937 
938         return getAdminPage( template.getHtml(  ) );
939     }
940 
941     /**
942      * Process the data capture form for assign users to a role
943      *
944      * @param request The HTTP Request
945      * @return The Jsp URL of the process result
946      */
947     public String doAssignUsers( HttpServletRequest request )
948     {
949         String strReturn;
950 
951         String strActionCancel = request.getParameter( PARAMETER_CANCEL );
952 
953         if ( strActionCancel != null )
954         {
955             strReturn = JSP_URL_ROLES_MANAGEMENT;
956         }
957         else
958         {
959             String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
960 
961             //retrieve the selected portlets ids
962             String[] arrayUsersIds = request.getParameterValues( PARAMETER_AVAILABLE_USER_LIST );
963 
964             if ( ( arrayUsersIds != null ) )
965             {
966                 for ( int i = 0; i < arrayUsersIds.length; i++ )
967                 {
968                     int nUserId = Integer.parseInt( arrayUsersIds[i] );
969                     AdminUser user = AdminUserHome.findByPrimaryKey( nUserId );
970 
971                     if ( !AdminUserHome.hasRole( user, strRoleKey ) )
972                     {
973                         AdminUserHome.createRoleForUser( user.getUserId(  ), strRoleKey );
974                     }
975                 }
976             }
977 
978             strReturn = JSP_ASSIGN_USERS_TO_ROLE + "?" + PARAMETER_ROLE_KEY + "=" + strRoleKey;
979         }
980 
981         return strReturn;
982     }
983 
984     /**
985      * unassigns user from role
986      * @param request The HttpRequest
987      * @return the HTML code of list assignations
988      */
989     public String doUnAssignUser( HttpServletRequest request )
990     {
991         String strRoleKey = request.getParameter( PARAMETER_ROLE_KEY );
992         int nIdUser = Integer.parseInt( request.getParameter( PARAMETER_ID_USER ) );
993         String strAnchor = request.getParameter( PARAMETER_ANCHOR );
994 
995         AdminUser adminUser = AdminUserHome.findByPrimaryKey( nIdUser );
996 
997         if ( adminUser != null )
998         {
999             AdminUserHome.removeRoleForUser( nIdUser, strRoleKey );
1000         }
1001 
1002         return JSP_ASSIGN_USERS_TO_ROLE + "?" + PARAMETER_ROLE_KEY + "=" + strRoleKey + "#" + strAnchor;
1003     }
1004 
1005     /**
1006      * Get the item navigator
1007      * @param strRoleKey the role key
1008      * @param strUrl the url
1009      */
1010     private void setItemNavigator( String strRoleKey, String strUrl )
1011     {
1012         if ( _itemNavigator == null )
1013         {
1014             List<String> listIdsRight = new ArrayList<String>(  );
1015             int nCurrentItemId = 0;
1016             int nIndex = 0;
1017 
1018             for ( AdminRole role : AdminRoleHome.findAll(  ) )
1019             {
1020                 if ( ( role != null ) && StringUtils.isNotBlank( role.getKey(  ) ) )
1021                 {
1022                     listIdsRight.add( role.getKey(  ) );
1023 
1024                     if ( role.getKey(  ).equals( strRoleKey ) )
1025                     {
1026                         nCurrentItemId = nIndex;
1027                     }
1028 
1029                     nIndex++;
1030                 }
1031             }
1032 
1033             _itemNavigator = new ItemNavigator( listIdsRight, nCurrentItemId, strUrl, PARAMETER_ROLE_KEY );
1034         }
1035         else
1036         {
1037             _itemNavigator.setCurrentItemId( strRoleKey );
1038         }
1039     }
1040 
1041     /**
1042      * Reinit the item navigator
1043      */
1044     private void reinitItemNavigator(  )
1045     {
1046         _itemNavigator = null;
1047     }
1048 }