Skip navigation

Tag Archives: Java

So you want your page to have an ajax paging for your comments page or tabular data. Ajax paging means that every time you select a page (from page navigator) it will not reload or refresh the whole web page, instead it is only change the comments or tabular data area.

This article is only one from many techniques to accomplish this, we are going to make ajax paging using Java (Hibernate + Spring MVC) and JQuery.

The way for getting data for the selected page is actually simple, for example if selected page is 2 and page size is 10 you can make SQL query like:
MYSQL


select * from app_user limit 10,10;

Notes: In Mysql,¬† zero (0) is first index. The query will get records 11-20 from table “app_user

ORACLE


select * from (SELECT rbt_config.*, ROWNUM r FROM rbt_config) where r between 11 and 20;

Fortunately we are going to use Hibernate and dont have to create specific query for each databases.
Just use code like below and Hibernate will take care how he will make queries for the database we choose.

HIBERNATE

protected List listByPage(Class clazz, int firstResult, int maxResult) {
        String strQry = "from " + clazz.getName() + " c order by c.id desc";

        Query query = this.sessionFactory.getCurrentSession().createQuery(strQry);
        query.setFirstResult(10);
        query.setMaxResults(10);

        return query.list();
    }

After you get the data you simply display it on the page, that’s it. But the tricky part from paging is how do you want the page navigator to look like, there are page navigator with first and last page link/button, there are page navigator with previous and next page link/button, also page navigator with sequences of numbers link to select a page, etc.
It’s up to you how the page navigator will look like, for these example just see it¬†by your self ūüôā .

I don’t put much code here, so just download the code and see it. Here is some of the screenshots:

Home

Comments Page 1

Comments Page 2

Tabular Data 1

Tabular Data 2

There are two examples I provide:  Comments page look a like and tabular data sample.
Every time we select a page from page navigator it will make ajax request to server (using JQuery) and replace/change the comments or tabular data area with new result without reload whole area. Also during make ajax request to server it will display loading ajax image.

Loading Ajax Image

You can download the code from here or here. It’s Java project using Maven, i’m usually open it using IntelliJ IDEA. To set up the data just run “com.ajax.paging.dao.SetUpData” from “src/test” folder,¬†using IntelliJ IDEA¬† I just right click the file –> RUN, It will save arround 20 records¬†to table “COMMENT” and “USER” for testing ajax paging.

Dont forget to edit “src/resources/hibernate.properties” to match your environtment.
In the “src/resources/app.properties” there two important keys:
app.page.size.default –> change the page size
If “app.page.size.default=6” it will display 6 records every page, and so on.

app.page.nav.trail –> change the page navigator trail
If “app.page.nav.trail=2” and selected page is 3 page navigator will look like 1 2 [3] 4 5 (two previous page and two next page) and so on.

Please build, package, and run in your favourite web server / servlet container. Download from here and here.

There’s XML file like below and you want to “extract” data from that file:

<?xml version="1.0"?>
<company name="Great Company, Inc">
	<address>Pearl Plaza Great Kuningan, Jakarta Indonesia</address>
	<employee>
		<firstname>Gardiary</firstname>
		<lastname>Rukhiat</lastname>
		<nickname>gardiary</nickname>
		<salary>3400000</salary>
	</employee>
	<employee>
		<firstname>Zinedine</firstname>
		<lastname>Zidane</lastname>
		<nickname>zidane</nickname>
		<salary>2300000</salary>
	</employee>
	<employee>
		<firstname>Justin</firstname>
		<lastname>Bieber</lastname>
		<nickname>jb</nickname>
		<salary>5000000</salary>
	</employee>
</company>

We are going to parse the XML file using SAX Parser. I’m using Java “org.xml.sax.*” package, so we dont need other library. Using SAX Parser basically we need to make a handler object that extends org.xml.sax.helpers.DefaultHandler class and override few methods. I’m only going to override methods: startElement(), ¬†characters(), endElement().

SAX Parser is reading XML from start to the end of the document, everytime he find an events (e.g tag, text, etc) he will call our overriding methods in this direction: startElement() –> characters() –> endElement(). When the parser found opening tag (“<some_tag>“) it will call startElement(), then it will go to characters() so we can get data/text inside the tag (“<some_tag>Some text“), then if they found closing tag¬†(“<some_tag>Some text</some_tag>“) it will call¬†endElement(). It’s up to you what do you want to do in every events/methods.

In the sample code that you can get from 4shared and ziddu, I provide two type of handler object:  simple one that only output every text according to the methods call and other handler that work like xml-to-object scenario.

Simple DefaultHandler

package com.sample.sax;
import org.xml.sax.Attributes;
import org.xml.sax.SAXException;
import org.xml.sax.helpers.DefaultHandler;

public class CompanySimpleHandler extends DefaultHandler {
 private final String COMPANY_TAG = "COMPANY";
 private final String ADDRESS_TAG = "ADDRESS";
 private final String EMPLOYEE_TAG = "EMPLOYEE";
 private final String FIRSTNAME_TAG = "FIRSTNAME";
 private final String LASTNAME_TAG = "LASTNAME";
 private final String NICKNAME_TAG = "NICKNAME";
 private final String SALARY_TAG = "SALARY";
 private final String NAME_ATTRIBUTE = "name";

 private boolean bAddress = false;
 private boolean bFirstname = false;
 private boolean bLastname = false;
 private boolean bNickname = false;
 private boolean bSalary = false;

 @Override
 public void startElement(String uri, String localName, String qName, Attributes attributes) throws SAXException {
 System.out.print("[" + qName + "]");

 if(qName.equalsIgnoreCase(COMPANY_TAG)) {
 bCompany = true;
 System.out.println("[name]" + attributes.getValue(NAME_ATTRIBUTE) + "[/name]");
 }

 if(qName.equalsIgnoreCase(ADDRESS_TAG)) {
 bAddress = true;
 }

 if(qName.equalsIgnoreCase(EMPLOYEE_TAG)) {
 bEmployee = true;
 }

 if(qName.equalsIgnoreCase(FIRSTNAME_TAG)) {
 bFirstname = true;
 }

 if(qName.equalsIgnoreCase(LASTNAME_TAG)) {
 bLastname = true;
 }

 if(qName.equalsIgnoreCase(NICKNAME_TAG)) {
 bNickname = true;
 }

 if(qName.equalsIgnoreCase(SALARY_TAG)) {
 bSalary = true;
 }
 }

 @Override
 public void endElement(String uri, String localName, String qName) throws SAXException {
 System.out.println("[/" + qName + "]");

 if(qName.equalsIgnoreCase(ADDRESS_TAG)) {
 bAddress = false;
 }

 if(qName.equalsIgnoreCase(SALARY_TAG)) {
 bSalary = false;
 }

 if(qName.equalsIgnoreCase(NICKNAME_TAG)) {
 bNickname = false;
 }

 if(qName.equalsIgnoreCase(LASTNAME_TAG)) {
 bLastname = false;
 }

 if(qName.equalsIgnoreCase(FIRSTNAME_TAG)) {
 bFirstname = false;
 }

 if(qName.equalsIgnoreCase(EMPLOYEE_TAG)) {
 bEmployee = false;
 }

 if(qName.equalsIgnoreCase(COMPANY_TAG)) {
 bCompany = false;
 }
 }

 @Override
 public void characters(char[] ch, int start, int length) throws SAXException {
 if(bAddress) {
 System.out.print(new String(ch, start, length));
 }

 if(bFirstname) {
 System.out.print(new String(ch, start, length));
 }

 if(bLastname) {
 System.out.print(new String(ch, start, length));
 }

 if(bNickname) {
 System.out.print(new String(ch, start, length));
 }

 if(bSalary) {
 System.out.print(new String(ch, start, length));
 }
 }
}

How to use:

package com.sample.sax;

import javax.xml.parsers.SAXParser;
import javax.xml.parsers.SAXParserFactory;

public class CompanySimpleMain {
    public static void main(String args[]) {
        try {
            SAXParserFactory factory = SAXParserFactory.newInstance();
            SAXParser saxParser = factory.newSAXParser();

            CompanySimpleHandler handler = new CompanySimpleHandler();

            saxParser.parse("company.xml", handler);
        } catch (Exception e) {
              e.printStackTrace();
        }
    }
}

Output:

[company][name]Great Company, Inc[/name]
[address]Pearl Plaza Great Kuningan, Jakarta Indonesia[/address]
[employee][firstname]Gardiary[/firstname]
[lastname]Rukhiat[/lastname]
[nickname]gardiary[/nickname]
[salary]3400000[/salary]
[/employee]
[employee][firstname]Zinedine[/firstname]
[lastname]Zidane[/lastname]
[nickname]zidane[/nickname]
[salary]2300000[/salary]
[/employee]
[employee][firstname]Justin[/firstname]
[lastname]Bieber[/lastname]
[nickname]jb[/nickname]
[salary]5000000[/salary]
[/employee]
[/company]

XML-to-Object Scenario
Company class:

package com.sample.sax.model;

import java.util.ArrayList;
import java.util.List;

public class Company {
    private String name;
    private String address;
    private List<Employee> employees = new ArrayList<Employee>();

    // please add setter & getter

    public void addEmployee(Employee employee) {
        this.employees.add(employee);
    }
}

Employee class:

package com.sample.sax.model;

public class Employee {
    private String firstname;
    private String lastname;
    private String nickname;
    private Long salary;

    // please make setter & getter
}

Handler:

package com.sample.sax;

import com.sample.sax.model.Company;
import com.sample.sax.model.Employee;
import org.xml.sax.Attributes;
import org.xml.sax.SAXException;
import org.xml.sax.helpers.DefaultHandler;

public class CompanyHandler extends DefaultHandler {
    private final String COMPANY_TAG = "COMPANY";
    private final String ADDRESS_TAG = "ADDRESS";
    private final String EMPLOYEE_TAG = "EMPLOYEE";
    private final String FIRSTNAME_TAG = "FIRSTNAME";
    private final String LASTNAME_TAG = "LASTNAME";
    private final String NICKNAME_TAG = "NICKNAME";
    private final String SALARY_TAG = "SALARY";
    private final String NAME_ATTRIBUTE = "name";

    private Company company = null;
    private Employee employee = null;

    private boolean bCompany = false;
    private boolean bName = false;
    private boolean bAddress = false;
    private boolean bEmployee = false;
    private boolean bFirstname = false;
    private boolean bLastname = false;
    private boolean bNickname = false;
    private boolean bSalary = false;

    @Override
    public void startElement(String uri, String localName, String qName, Attributes attributes) throws SAXException {
        if(qName.equalsIgnoreCase(COMPANY_TAG)) {
            bCompany = true;
            company = new Company();
            company.setName(attributes.getValue(NAME_ATTRIBUTE));   // if you sure, you can use this one
        }

        if(qName.equalsIgnoreCase(ADDRESS_TAG)) {
            if(!bCompany || company==null) {
                throw new SAXException("Company is null");
            }
            bAddress = true;
        }

        if(qName.equalsIgnoreCase(EMPLOYEE_TAG)) {
            if(!bCompany || company==null) {
                throw new SAXException("Company is null");
            }
            bEmployee = true;
            employee = new Employee();
        }

        if(qName.equalsIgnoreCase(FIRSTNAME_TAG)) {
            if(!bEmployee || employee ==null) {
                throw new SAXException("Staff is null");
            }
            bFirstname = true;
        }

        if(qName.equalsIgnoreCase(LASTNAME_TAG)) {
            if(!bEmployee || employee ==null) {
                throw new SAXException("Staff is null");
            }
            bLastname = true;
        }

        if(qName.equalsIgnoreCase(NICKNAME_TAG)) {
            if(!bEmployee || employee ==null) {
                throw new SAXException("Staff is null");
            }
            bNickname = true;
        }

        if(qName.equalsIgnoreCase(SALARY_TAG)) {
            if(!bEmployee || employee ==null) {
                throw new SAXException("Staff is null");
            }
            bSalary = true;
        }
    }

    @Override
    public void endElement(String uri, String localName, String qName) throws SAXException {
        if(qName.equalsIgnoreCase(ADDRESS_TAG)) {
            bAddress = false;
        }

        if(qName.equalsIgnoreCase(SALARY_TAG)) {
            bSalary = false;
        }

        if(qName.equalsIgnoreCase(NICKNAME_TAG)) {
            bNickname = false;
        }

        if(qName.equalsIgnoreCase(LASTNAME_TAG)) {
            bLastname = false;
        }

        if(qName.equalsIgnoreCase(FIRSTNAME_TAG)) {
            bFirstname = false;
        }

        if(qName.equalsIgnoreCase(EMPLOYEE_TAG)) {
            company.addEmployee(employee);
            bEmployee = false;
        }

        if(qName.equalsIgnoreCase(COMPANY_TAG)) {
            bCompany = false;
        }
    }

    @Override
    public void characters(char[] ch, int start, int length) throws SAXException {
        String address;
        String firstname;
        String lastname;
        String nickname;
        Long salary;

        if(bAddress) {
            address = new String(ch, start, length);
            company.setAddress(address);
        }

        if(bFirstname) {
            firstname = new String(ch, start, length);
            employee.setFirstname(firstname);
        }

        if(bLastname) {
            lastname = new String(ch, start, length);
            employee.setLastname(lastname);
        }

        if(bNickname) {
            nickname = new String(ch, start, length);
            employee.setNickname(nickname);
        }

        if(bSalary) {
            salary = Long.parseLong(new String(ch, start, length));
            employee.setSalary(salary);
        }
    }

    public Company getCompany() {
        return company;
    }
}

How to use:

package com.sample.sax;

import com.sample.sax.model.Company;
import com.sample.sax.model.Employee;

import javax.xml.parsers.SAXParser;
import javax.xml.parsers.SAXParserFactory;

public class CompanyMain {
    public static void main(String args[]) {
        try {
            SAXParserFactory factory = SAXParserFactory.newInstance();
            SAXParser saxParser = factory.newSAXParser();

            CompanyHandler handler = new CompanyHandler();

            saxParser.parse("company.xml", handler);

            Company company = handler.getCompany();
            System.out.println("Company Name : " + company.getName());
            System.out.println("Company Address : " + company.getAddress());
            System.out.println("Employees : ");
            for(int i = 0; i < company.getEmployees().size(); i++) {
                Employee employee = company.getEmployees().get(i);
                System.out.println((i+1) + "\tName : " + employee.getFirstname() + " " + employee.getLastname());
                System.out.println("\tNickname : " + employee.getNickname());
                System.out.println("\tSalary : " + employee.getSalary());
            }
        } catch (Exception e) {
              e.printStackTrace();
        }
    }
}

Output:

Company Name : Great Company, Inc
Company Address : Pearl Plaza Great Kuningan, Jakarta Indonesia
Employees :
1 Name : Gardiary Rukhiat
Nickname : gardiary
Salary : 3400000
2 Name : Zinedine Zidane
Nickname : zidane
Salary : 2300000
3 Name : Justin Bieber
Nickname : jb
Salary : 5000000

Any other implementations can be very different from this sample code. You can get the sampe code from here and here.

This article is not for deploying web application outside “JBOSS_HOME” folder, if usually in JBoss to deploy our web application we put WAR file at “JBOSS_HOME\server\default\deploy” directory, i want to put it on let say “JBOSS_HOME\server\myserver\deploy” directory.

After googling sometimes I found that what I meant is change the JBoss default server configuration. Under “JBOSS_HOME\server” folder we can see folder like “all“, “default“, “minimal“, etc, that is as JBoss said is server configuration file set. With server configuration file set we can have alternate server configurations. You should read JBoss documents about how to configure the server.

To make another server configuration file set, just copy from existing server configuration to another name. Put your web application WAR¬† at “JBOSS_HOME\server\NEW_SERVER\deploy” directory, then run this from console:

Windows
JBOSS_HOME\bin\run.bat -c NEW_SERVER

Linux
JBOSS_HOME\bin\run.sh -c NEW_SERVER

Let say that you have fresh download of Tomcat 6 and want to deploy your web application in it, but you don’t want to access your web application using URL form http://%5BIP_OR_DOMAIN_NAME%5D:%5BPORT%5D/%5BWEB_APPLICATION_NAME%5D (e.g http://localhost:8080/BlaBlaBla) instead you just want URL form http://%5BIP_OR_DOMAIN_NAME%5D:%5BPORT%5D (e.g http://localhost:8080) to access your application. There are few ways to do these that I know and I will it post here.

To deploy web application in Tomcat we can use WAR file or using webapp exploded directory, I will use the last one. You can deploy your webapp in “TOMCAT_HOME/webapps” directory or outside of Tomcat directory, I will use last one also. Now let see how to change Tomcat 6 ROOT context:

Trick 1
Open¬†“TOMCAT_HOME\conf\server.xml” file, look for Host tag, add Context tag to it so it will looks something like these:

<Host name="localhost"  appBase="webapps"
            unpackWARs="true" autoDeploy="true"
            xmlValidation="false" xmlNamespaceAware="false">
        ............
        ............
	<Context path="" docBase="D:\Gardiary\temp\my-app" reloadable="true" debug="0" cookies="false"></Context>
</Host>

Note that Context¬†path is set to¬† “” not “/” and docBase is path to your webapp exploded directory. Save it and run your Tomcat, ¬†you should be able to access your application just by using http://localhost:8080.

Trick 2
Remove (or change to other name) “TOMCAT_HOME\webapps\ROOT” folder, rename your webapp to ROOT and then put it in “TOMCAT_HOME\webapps” folder (a.k.a change the content of original ROOT folder with your web application content). Run your Tomcat.

Trick 3
Create file “TOMCAT_HOME\conf\Catalina\localhost\ROOT.xml“, the file looks something like these:

<?xml version="1.0" encoding="UTF-8"?>
<Context docBase="D:\Gardiary\temp\my-app"
 crossContext="true" reloadable="true">
</Context>

Change docBase to your webapp exploded directory and then run your tomcat.

That’s all I know folks!

Access Control List (ACL) is a way to control access for user in an application. This page contains Access Control List sample using Java, this article show an ACL demo application in Java web application, that i hope will make better understanding of what Access Control List (ACL) is. You can find resources that will explain what ACL is, but i think demo application is more effective for understanding about ACL.

Download ACL demo application from ziddu and 4shared, it’s a Java web application, furthermore it’s Songs database application. The application is using following technology/library : JSP, Servlet, EL, Hibernate/JPA. For simplicity, i’m using JSP and servlet for presentation layer and controller, and Hibernate for database layer so i dont have to deal with SQL (i hate it :p ). This application is an IntelliJ IDEA project, you need to re-create project if you are using Eclipse or Netbeans, and add the classes/library accordingly. I use Apache Tomcat 6 for application server.

Note: Because Tomcat is actually a Servlet container rather Application Server (e.g Glassfish, Geronimo, JBoss, etc), basically Tomcat dont have Java EE library, while i’m using Hibernate/JPA annotations (for object-table database mapping) which is using Java EE library, you need to place javaee.jar in “<TOMCAT_HOME>/lib” folder before running tomcat, DO NOT put javaee.jar in application lib directory, it’s against Java Servlet specification

You may want to edit “hibernate.cfg.xml” first to match your environtment. I’m using Mysql database for this demo. Before running the application please run “acl.demo.util.SetUpACLDemoData” class, this class will set up the data on database so the application can run. Now run the application server, open the browser and go to http://localhost:8080/ACLDemo, this will open login page.
Login page

We can’t see other page if we hasn’t login, I create a SecurityFilter class for this, it’s a Servlet Filter that will intercept all request, checked whether there’s user session in session, if it’s not it will send us to login page.

To login, we can use one of the following account:
– admin/admin (Administrator)
– zidane/password (SuperAdministrator)
– kabayan/kabayan (DataEntry)
– tamara/tamara (Administrator)

The one in the parentheses is the type of a user. Type of a user will determine his/her rights of accessing something (e.g resources, page, module, etc), different user type will have different rights for accessing some pages (e.g “DataEntry” user can’t access “Administrator” level page). You can try to login with above different account and see not all the user have the same rights access. We will examine how this is happen, this is what Access Control List is.

Now login as “SuperAdministrator” so we can see all the page/module. As mention earlier this demo is a Songs database application, it’s had modules such as “Song”, “Album”, “Singer”, and “Genre”, which actually is a dummy page. It’s static, I don’t get the data from database and there’s no corresponding table also. Other modules is “ACL”, “Users”, and “UserType”, which corresponding to what we are talking about, the Access Control List (ACL). We retrieve the data from databases, as well we can add or edit, but for simplicity i don’t add delete/remove functionality. Module “ACL”, “Users”, and “UserType” are important component in this version of ACL’s, they collaborate each other determine how a user have the rights to access a modules or to do some action (e.g Insert, Update, Delete).

index.jsp

This is the dummy modules:

This is the corresponding ACL’s modules:
UserType

User

Access Control List

In this demo to manage an ACL we start by creating a user type then assign that user type to some user. Everytime we make new user type, the application also make ACL’s for that user type. Let’s make a “UserType” that i will called it “Editor” and see what happen.

Add UserType

ACL

After we save the “Editor” user type, it will redirect us to ACL page. We can see there’s ACL’s for “Editor” user type created by application for us, what we only need to set is what modules and what action that the “Editor” can access. Let’s say I just want the “Editor” has the rights to update/edit every module except administrator level module, I’ll set the ACL’s for “Editor” like below picture (note: module “ACL” and “User” is administrator level module)

ACL

Then make a User and assign the “Editor” user type to him/her (I do not add functionality to edit user type of a User). My new user will look like this:
Add User

List User

Please logout and login as “Editor” user. We can see that the menu in front page is not as complete as Administrator user, also the user can’t add new or delete record.

Index.jsp Songs Albums Singers Genres

Now let we examine the code. The code structure look like this:
Code structure

Now let’s see why¬† some buttons or links can “missing” or display according to type of¬† user account. In almost every buttons or links that I want to restrict, I put code something like this;

....
<c:if test="<%=aclManager.allowUpdate(session, Permission.ACL)%>">
      <a class="toplink" href="deleteSong.jsp?code=S0001">delete</a>
</c:if>
....
....
<c:if test="<%=aclManager.allowDelete(session, Permission.SONG)%>">
	<input class="kotaktombol" name="save" type="submit" value="Save" />
</c:if>
....

aclManager” is a “acl.demo.manager.AccessControlListManager” class, because I know that there’s “acl.demo.entity.UserSession” object on the Session, i just send “session” object as parameter to method like “allowView”, “allowInsert”, etc, to determine the user type. The “acl.demo.enums.Permission” is to determine the existing modules and what module the page is.
AccessControlListManager

package acl.demo.manager;

import acl.demo.entity.AccessControlList;
import acl.demo.entity.UserType;
import acl.demo.entity.UserSession;
import acl.demo.enums.Permission;
import acl.demo.util.HibernateUtil;

import javax.servlet.http.HttpSession;
import java.util.List;

public class AccessControlListManager extends BaseManager {
    public AccessControlList newAccessControlList() throws Exception {
        return new AccessControlList();
    }

    public AccessControlList get(Long id) throws Exception {
        return (AccessControlList) getEntity(AccessControlList.class, id);
    }

    public AccessControlList save(AccessControlList entity) throws Exception {
        saveEntity(entity);

        return entity;
    }

    public AccessControlList update(AccessControlList entity) throws Exception {
        updateEntity(entity);

        return entity;
    }

    public void delete(AccessControlList entity) throws Exception {
        deleteEntity(entity);
    }

    public List listAll() throws Exception {
        return listAll(AccessControlList.class);
    }

    public AccessControlList getByUserTypeAndPermission(UserType userType, Permission permission) throws Exception {
        StringBuffer query = new StringBuffer("from AccessControlList acl ");
        query.append("where acl.userType = :userType and acl.permission = :permission");

        AccessControlList acl = (AccessControlList) HibernateUtil.getSession().createQuery(query.toString())
                .setParameter("userType", userType).setParameter("permission", permission)
                .uniqueResult();

        return acl;
    }

    ..........

    public boolean allowView(HttpSession session, Permission permission) throws Exception {
        return this.getByUserTypeAndPermission(((UserSession) session.getAttribute("userSession")).getUser().getUserType(), permission).isCanView();
    }

    public boolean allowInsert(HttpSession session, Permission permission) throws Exception {
        return this.getByUserTypeAndPermission(((UserSession) session.getAttribute("userSession")).getUser().getUserType(), permission).isCanInsert();
    }

    public boolean allowUpdate(HttpSession session, Permission permission) throws Exception {
        return this.getByUserTypeAndPermission(((UserSession) session.getAttribute("userSession")).getUser().getUserType(), permission).isCanUpdate();
    }

    public boolean allowDelete(HttpSession session, Permission permission) throws Exception {
        return this.getByUserTypeAndPermission(((UserSession) session.getAttribute("userSession")).getUser().getUserType(), permission).isCanDelete();
    }
}

Permission

package acl.demo.enums;

public enum Permission { SONG, SINGER, ALBUM, GENRE, USER, ACL }

UserSession

package acl.demo.entity;

import java.util.Date;

public class UserSession {
    private User user;
    private Date loginTime;

    public User getUser() {
        return user;
    }

    public void setUser(User user) {
        this.user = user;
    }

    public Date getLoginTime() {
        return loginTime;
    }

    public void setLoginTime(Date loginTime) {
        this.loginTime = loginTime;
    }
}

For object-table mapping I use Hibernate/JPA annotations.
User

package acl.demo.entity;

import javax.persistence.*;

@Entity
@Table(name = "USERS")
public class User {
    private Long id;
    private String username;
    private UserType userType;
    private String password;

    @Id
    @GeneratedValue
    @Column(name = "ID")
    public Long getId() {
        return id;
    }

    public void setId(Long id) {
        this.id = id;
    }

    @Basic
    @Column(name = "USERNAME")
    public String getUsername() {
        return username;
    }

    public void setUsername(String username) {
        this.username = username;
    }

    @ManyToOne(targetEntity = UserType.class)
    @JoinColumn(name = "USER_TYPE_ID")
    public UserType getUserType() {
        return userType;
    }

    public void setUserType(UserType userType) {
        this.userType = userType;
    }

    @Basic
    @Column(name = "PASSWORD")
    public String getPassword() {
        return password;
    }

    public void setPassword(String password) {
        this.password = password;
    }

    public String toString() {
        StringBuffer sb = new StringBuffer();
        sb.append("[ID=" + this.getId());
        sb.append(", USERNAME=" + this.getUsername());
        sb.append(", USERTYPE=" + this.getUserType().getType());
        sb.append(", PASSWORD=" + this.getPassword());
        sb.append("]");

        return sb.toString();
    }
}

UserType

package acl.demo.entity;

import javax.persistence.*;
import java.util.List;
import java.util.ArrayList;

@Entity
@Table(name = "USER_TYPE")
public class UserType {
    private Long id;
    private String type;
    private List<User> users = new ArrayList<User>();

    @Id
    @GeneratedValue
    @Column(name = "ID")
    public Long getId() {
        return id;
    }

    public void setId(Long id) {
        this.id = id;
    }

    @Basic
    @Column(name = "TYPE")
    public String getType() {
        return type;
    }

    public void setType(String type) {
        this.type = type;
    }

    @OneToMany(targetEntity = User.class, mappedBy = "userType")
    public List<User> getUsers() {
        return users;
    }

    public void setUsers(List<User> users) {
        this.users = users;
    }

    public String toString() {
        StringBuffer sb = new StringBuffer();
        sb.append("[ID=" + this.getId());
        sb.append(", TYPE=" + this.getType());
        sb.append(", USERS=" + this.getUsers());
        sb.append("]");

        return sb.toString();
    }

AccessControlList

package acl.demo.entity;

import acl.demo.enums.Permission;

import javax.persistence.*;

@Entity
@Table(name = "ACCESS_CONTROL_LIST")
public class AccessControlList {
    private Long id;
    private Permission permission;
    private UserType userType;
    private boolean canView;
    private boolean canInsert;
    private boolean canUpdate;
    private boolean canDelete;

    @Id
    @GeneratedValue
    @Column(name = "ID")
    public Long getId() {
        return id;
    }

    public void setId(Long id) {
        this.id = id;
    }

    @Enumerated(value = EnumType.STRING)
    @Column(name = "PERMISSION")
    public Permission getPermission() {
        return permission;
    }

    public void setPermission(Permission permission) {
        this.permission = permission;
    }

    @ManyToOne(targetEntity = UserType.class)
    @JoinColumn(name = "USER_TYPE_ID")
    public UserType getUserType() {
        return userType;
    }

    public void setUserType(UserType userType) {
        this.userType = userType;
    }

    @Basic
    @Column(name = "CAN_VIEW")
    public boolean isCanView() {
        return canView;
    }

    public void setCanView(boolean canView) {
        this.canView = canView;
    }

    @Basic
    @Column(name = "CAN_INSERT")
    public boolean isCanInsert() {
        return canInsert;
    }

    public void setCanInsert(boolean canInsert) {
        this.canInsert = canInsert;
    }

    @Basic
    @Column(name = "CAN_UPDATE")
    public boolean isCanUpdate() {
        return canUpdate;
    }

    public void setCanUpdate(boolean canUpdate) {
        this.canUpdate = canUpdate;
    }

    @Basic
    @Column(name = "CAN_DELETE")
    public boolean isCanDelete() {
        return canDelete;
    }

    public void setCanDelete(boolean canDelete) {
        this.canDelete = canDelete;
    }

    @Override
    public String toString() {
        StringBuffer sb = new StringBuffer();
        sb.append("[ID=" + this.getId());
        sb.append(", PERMISSION=" + this.getPermission());
        sb.append(", USERTYPE=" + this.getUserType().getType());
        sb.append(", CAN_VIEW=" + this.isCanView());
        sb.append(", CAN_INSERT=" + this.isCanInsert());
        sb.append(", CAN_UPDATE=" + this.isCanUpdate());
        sb.append(", CAN_DELETE=" + this.isCanDelete());
        sb.append("]");

        return sb.toString();
    }
}

hibernate.cfg.xml

<hibernate-configuration>
    <session-factory>
        <property name="connection.url">jdbc:mysql://localhost:3306/test</property>
        <property name="connection.driver_class">com.mysql.jdbc.Driver</property>
        <property name="connection.username">root</property>
        <property name="connection.password">root</property>
        <!-- DB schema will be updated if needed -->
        <property name="hbm2ddl.auto">update</property>

        <!-- MAPPING -->
        <mapping class="acl.demo.entity.UserType" />
        <mapping class="acl.demo.entity.User" />
        <mapping class="acl.demo.entity.AccessControlList" />
    </session-factory>
</hibernate-configuration>

SecurityFilter looks like this:

package acl.demo.servlet.filter;

import acl.demo.entity.UserSession;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;

public class SecurityFilter implements Filter {
    public void destroy() {
    }

    public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws ServletException, IOException {
        HttpServletRequest request = (HttpServletRequest) req;
        HttpServletResponse response = (HttpServletResponse) resp;
        HttpSession session = request.getSession(false);

        System.out.println("[SecurityFilter] ServletPath : " + request.getServletPath());
        if(!request.getServletPath().equalsIgnoreCase("/login") &&
                !request.getServletPath().equalsIgnoreCase("/logout") &&
                !request.getServletPath().equalsIgnoreCase("/loginForm.jsp") &&
                !request.getServletPath().equalsIgnoreCase("/css/format.css")) {
            if(session != null) {
                UserSession userSession = (UserSession) session.getAttribute("userSession");

                if(userSession == null) {
                    System.out.println("[SecurityFilter] userSession : " + userSession);
                    request.setAttribute("message", "Please login first!");
                    request.getRequestDispatcher("/loginForm.jsp").forward(request, response);
                    return;
                }
            } else {
                request.setAttribute("message", "Please login!");
                request.getRequestDispatcher("/loginForm.jsp").forward(request, response);
                return;
            }
        }

        chain.doFilter(req, resp);
    }
}

This is a simple example of an Access Control List (ACL) presented in Java, you can dowload it from here and here

I use Glassfish for application server. Here is the EJB:
(interface)

package ejb3.bean;
import javax.ejb.Remote;

@Remote
public interface HelloEjb {                                        
    String printHello(String name);
}

(implementation)

package ejb3.bean;
import javax.ejb.Stateless;

@Stateless( name="HelloEjb")
public class HelloEjbBean implements HelloEjb {
    public HelloEjbBean() {}

    public String printHello(String name) {
        return "Hello bro " + name + " welcome to EJB 3";
    }
}

Package it as JAR or EAR, start Glassfish( GLASSFISH_HOME/bin/asadmin start-domain DOMAIN_NAME ) then use Admin Console (default: http://localhost:4848 ) to deploy the EJB.

To call the EJB from servlet we can directly use @EJB annotations, to get the instance of the EJB. In below sample i send the EJB to JSP page:

package ejb3.servlet;

import ejb3.bean.HelloEjb;

import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.ServletException;
import javax.ejb.EJB;
import java.io.IOException;

public class HelloEjb3Servlet extends HttpServlet {
    @EJB
    private HelloEjb helloEjb;

	protected void doGet(HttpServletRequest request, HttpServletResponse response)
		throws ServletException, IOException
	{
		execute(request, response);
	}

	protected void doPost(HttpServletRequest request, HttpServletResponse response)
		throws ServletException, IOException
	{
		execute(request, response);
	}

	private void execute(HttpServletRequest request, HttpServletResponse response)
		throws ServletException, IOException
	{
        	request.setAttribute("helloEjb", helloEjb);
        	request.setAttribute("printHello", helloEjb.printHello("Djunaedi"));
        	request.getRequestDispatcher("/HelloEjb3.jsp").forward(request, response);                            
	}
}

To get EJB instance in JSP using @EJB (inside scriplets) isn’t working, i get null instance. So i use JNDI lookup and that’s work:

<%@ page import="ejb3.bean.HelloEjb" %>
<%@ page import="javax.naming.InitialContext" %>
<%@ page import="javax.naming.Context" %>
<html>
<head><title>Hello EJB 3 !</title></head>
<body>
<%!
HelloEjb helloEjb;
%>
<%
try {
Context context = new InitialContext();
helloEjb = (HelloEjb) context.lookup(HelloEjb.class.getName());
}
catch(Exception e) {
// exception code here
}
%>
<p>
Object HelloEjb Directly : <%= helloEjb %><br>
Print Hello : <%= helloEjb.printHello("Ujang") %>

<p>
Object HeloEjb from Servlet : <%= request.getAttribute("helloEjb") %><br>
Print Hello : <%= request.getAttribute("printHello") %>
</body>
</html>

notes:
Calling EJB 3 using JNDI lookup isn’t the same between Application Server, JNDI lookup name is not standardized. Refer to this article find out more.

References:
http://www.adam-bien.com/roller/abien/entry/ejb_3_portability_issue_why
http://javahowto.blogspot.com/2006/09/default-jndi-name-for-resource-or-ejb.html
https://glassfish.dev.java.net/javaee5/ejb/EJB_FAQ.html

I was trying to make an alternative of @MappedSuperclass using Hibernate XML (*.hbm.xml) files. The case is i want every persistent class have default column like ID, CREATED_ON, CREATED_BY, UPDATED_ON, UPDATED_BY – that reside on a superclass, so i don’t have to repeat those column in every mapping files. Unfortunately, basically hibernate do not support this kind of superclass mapping. Maybe the technique here will do just fine, but lack of something that i will tell later.

Nowaday programming style is coding by interface so i use interface for every persistent class and separate it’s implementation. The relationship is one-to-many between Singer and Album.

Here is BaseModel interface that every persistent class will inherits all the properties, followed by it’s concrete class and mapping:
(BaseModel.java)

package hibernate.example.model;

import java.util.Date;

public interface BaseModel {
    public Integer getId();
    public void setId(Integer id);
    public String getCreatedBy();
    public void setCreatedBy(String createdBy);
    public Date getCreatedOn();
    public void setCreatedOn(Date createdOn);
    public String getUpdatedBy();
    public void setUpdatedBy(String updatedBy);
    public Date getUpdatedOn();
    public void setUpdatedOn(Date updatedOn);
    public String getName();
    public void setName(String name);
}

(BaseModelImpl.java)

package hibernate.example.model;

import java.util.Date;

public class BaseModelImpl implements BaseModel {
    private Integer id;
    private String createdBy;
    private Date createdOn;
    private String updatedBy;
    private Date updatedOn;
    private String name;

    public Integer getId() {
        return id;
    }

    public void setId(Integer id) {
        this.id = id;
    }

    public String getCreatedBy() {
        return createdBy;
    }

    public void setCreatedBy(String createdBy) {
        this.createdBy = createdBy;
    }

    public Date getCreatedOn() {
        return createdOn;
    }

    public void setCreatedOn(Date createdOn) {
        this.createdOn = createdOn;
    }

    public String getUpdatedBy() {
        return updatedBy;
    }

    public void setUpdatedBy(String updatedBy) {
        this.updatedBy = updatedBy;
    }

    public Date getUpdatedOn() {
        return updatedOn;
    }

    public void setUpdatedOn(Date updatedOn) {
        this.updatedOn = updatedOn;
    }

    public String getName() {
        return name;
    }

    public void setName(String name) {
        this.name = name;
    }
}

(BaseModel.hbm.xml)

<hibernate-mapping package="hibernate.example.model">
    <class name="BaseModel" abstract="true">
        <id name="id" type="integer" column="ID">
            <generator class="increment"/>
        </id>
       <property name="createdBy" type="string" column="CREATED_BY"/>
       <property name="createdOn" type="timestamp" column="CREATED_ON"/>
       <property name="updatedBy" type="string" column="UPDATED_BY"/>
       <property name="updatedOn" type="timestamp" column="UPDATED_ON"/>
       <property name="name" type="string" column="NAME"/>
    </class>
</hibernate-mapping>

Singer Entity:
(Singer.java)

package hibernate.example.model;

import java.util.Set;

public interface Singer extends BaseModel {
    public Set<Album> getAlbums();
    public void setAlbums( Set<Album> albums );
}

(SingerImpl.java)

package hibernate.example.model;

import java.util.Set;

public class SingerImpl extends BaseModelImpl implements Singer {
    private Set<Album> albums;

    public SingerImpl() {}

    public Set<Album> getAlbums() {
        return albums;
    }

    public void setAlbums(Set<Album> albums) {
        this.albums = albums;
    }
}

(Singer.hbm.xml)

<hibernate-mapping package="hibernate.example.model">
    <union-subclass name="Singer" extends="BaseModel" abstract="true">
        <set name="albums" inverse="true" cascade="all-delete-orphan">
            <key column="ID_SINGER"/>
            <one-to-many class="Album"/>
        </set>
    </union-subclass>

    <union-subclass name="SingerImpl" extends="Singer" table="SINGER"/>
</hibernate-mapping>

Album Entity:
(Album.java)

package hibernate.example.model;

public interface Album extends BaseModel {
    public String getYear();
    public void setYear(String year);
    public Singer getSinger();
    public void setSinger(Singer singer);
}

(AlbumImpl.java)

package hibernate.example.model;

public class AlbumImpl extends BaseModelImpl implements Album {
    private Singer singer;
    private String year;

    public Singer getSinger() {
        return singer;
    }

    public void setSinger(Singer singer) {
        this.singer = singer;
    }

    public String getYear() {
        return year;
    }

    public void setYear(String year) {
        this.year = year;
    }
}

(Album.hbm.xml)

<hibernate-mapping package="hibernate.example.model">
    <union-subclass name="Album" extends="BaseModel" abstract="true">
        <property name="year" type="string" column="YEAR" />

        <many-to-one name="singer" column="ID_SINGER"
            class="Singer" not-null="true" />

    </union-subclass>

    <union-subclass name="AlbumImpl" extends="Album" table="ALBUM" />
</hibernate-mapping>

Here is hibernate.cfg.xml:

<hibernate-configuration>
  <session-factory>
<!--    <property name="hibernate.connection.url">jdbc:mysql://localhost:3306/SCHEMA_NAME</property>
    <property name="hibernate.connection.driver_class">com.mysql.jdbc.Driver</property>
    <property name="hibernate.connection.username">username</property>
    <property name="hibernate.connection.password">password</property>
    <property name="dialect">org.hibernate.dialect.MySQL5Dialect</property>
-->
    <property name="hibernate.connection.url">jdbc: oracle:thin:@localhost:1521:SID</property>
    <property name="hibernate.connection.driver_class">oracle.jdbc.driver.OracleDriver</property>
    <property name="hibernate.connection.username">username</property>
    <property name="hibernate.connection.password">password</property>
    <property name="dialect">org.hibernate.dialect.Oracle10gDialect</property>

    <!-- DB schema will be updated if needed -->
    <property name="hibernate.hbm2ddl.auto">update</property>

    <mapping resource="hibernate/example/model/BaseModel.hbm.xml" />
    <mapping resource="hibernate/example/model/Singer.hbm.xml" />
    <mapping resource="hibernate/example/model/Album.hbm.xml" />
  </session-factory>
</hibernate-configuration>

Simple test application can look like this:
(TestApp.java)

package hibernate.example.test;

import org.hibernate.Session;
import org.hibernate.Transaction;
import org.hibernate.SessionFactory;
import org.hibernate.cfg.Configuration;
import hibernate.example.model.Singer;
import hibernate.example.model.SingerImpl;
import hibernate.example.model.Album;
import hibernate.example.model.AlbumImpl;

import java.util.Date;

public class TestApp {
    private Session session;
    private Transaction tx;

    public TestApp() {
        SessionFactory sessionFac = new Configuration().configure().buildSessionFactory();
        session = sessionFac.openSession();
    }

    public static void main(String args[]) {
        TestApp app = new TestApp();
        app.insertSinger();
        app.insertAlbum();
    }

    // insertSinger
    public void insertSinger() {
        Singer singer = new SingerImpl();
        singer.setCreatedOn( new Date() );
        singer.setCreatedBy( "admin" );
        singer.setName( "Mariah Carey" );

        tx = session.beginTransaction();
        session.save( singer );
        tx.commit();
    }

    // insertAlbum
    public void insertAlbum() {
        Singer singer = (SingerImpl) session.get( SingerImpl.class, 1 );

        Album album = new AlbumImpl();
        album.setCreatedOn( new Date() );
        album.setCreatedBy( "admin" );
        album.setName( "Rainbow" );
        album.setYear( "2000" );
        album.setSinger( singer );

        tx = session.beginTransaction();
        session.save( album );
        tx.commit();
    }
}

Result table will look like:
– Singer table
Singer table
– Album table
Album table

Here or here is full source code. Change *.odt to *.zip, then extract it. Edit hibernate.cfg.xml to match your environtment, and add required library to lib folder.

Dependency Library:
depandency's

NOTE :
Using <union-subclass> Hibernate still treat the mapping as table per concrete class. Every id’s for each persistent class will use the same generated id. And also in Oracle database it doesn’t create Singer foreign key constraint on Album table, so if we dropped Singer table it doesn’t make constraint violation error.