Ideone.com

fork download

copy

/* ----------------------------------------------------------------------------------------------------------------------------------------------------------
   Name:            LoginAccessMarketProfileEventCondition.cls
   Description:     Update Transactional Secuirty Policy 
 
   Date             Version        Author           Summary of Changes 
   -----------      ----------  ---------------     ------------------------------------------------------------------------------------------------
   Nov 2024        1.0         Rushikesh Shinde US-ID_0016982 Transaction Security Policy - LoginAccessMarketProfile - Cleanup and simplification
 
---------------------------------------------------------------------------------------------------------------------------------------------------------- */
 
global class LoginAccessMarketProfileEventCondition1 implements TxnSecurity.EventCondition {
  static final boolean AllowLogin = false;
  static final boolean RestricLogin = false;
 
  public Boolean evaluate(SObject event) {
    system.debug('TestKK-Event' + event);
 
    switch on event {
      when LoginEvent loginEvent {
        return evaluateNext(loginEvent);
      }
      when null {
        return false;
      }
      when else {
        return false;
      }
    }
  }
 
  public Boolean evaluateNext(LoginEvent LoginObj) {
    // Login user details
    system.debug('TestHB' + LoginObj);
 
    List<User> userList = [SELECT ProfileId, Profile.Name, Profile.PermissionsApiUserOnly, OpCo__c FROM User WHERE Id = :LoginObj.UserId];
 
    // Added for the SR-00362417. IF Login Session is not related to Application then allow login as external Application/Integration
 
    if (!LoginObj.LoginType.contains('Application')) {
      return AllowLogin;
    }
 
    boolean value = evaluateThis(userList, LoginObj.LoginURL);
    return value;
  }
  public Boolean evaluateThis(List<User> userList, String LoginURL) {
    // Bypass if user is bypassed in DataManagementSCM
 
    DataManagementSCM__c dmscmCSRecord = DataManagementSCM__c.getInstance(userList[0].Id);
    DataManagementSCM__c dmscmCSRecordOrgWide = DataManagementSCM__c.getOrgDefaults();
 
    if ((dmscmCSRecord != null && dmscmCSRecord.ByPassLoginAccessMarketProfilePolicyCond__c) ||(dmscmCSRecordOrgWide != null && dmscmCSRecordOrgWide.ByPassLoginAccessMarketProfilePolicyCond__c)) 
      {
          system.debug('TestKK3');
              return AllowLogin;
       }
 
 
    // Bypass if user has API User Only permission
    Boolean profilePermissionsApiEnabled = (Boolean) userList[0] .Profile.PermissionsApiUserOnly;
 
    if (profilePermissionsApiEnabled) {
              return AllowLogin;
            }
 
 
    // Bypass if user has LoginAccessPolicyBypass Custom Permission
    Boolean hasLoginAccessPolicyBypassPermission = false;
    hasLoginAccessPolicyBypassPermission = doesRunningUserHavePermission(userList[0],'LoginAccessPolicyBypass');
 
    if (hasLoginAccessPolicyBypassPermission) {
 
              system.debug('TestKK2' + hasLoginAccessPolicyBypassPermission);
              return AllowLogin;
            }
 
 
 
       // Bypass if USer is SSO And URl is Not ( login or test)
 
    if (((!LoginURL.contains(GEN_Constants.SandboxLoginURL)) || (!LoginURL.contains(GEN_Constants.ProdLoginURL)))) {
 
              system.debug('TestKK17');
              return AllowLogin;
            }
 
 
 
    // Bypass if user has LoginAccessPolicyBypass Custom Permission Non SSO
 
    if (((LoginURL.contains(GEN_Constants.SandboxLoginURL)) ||(LoginURL.contains(GEN_Constants.ProdLoginURL))) && hasLoginAccessPolicyBypassPermission) {
              system.debug('TestKK2' + hasLoginAccessPolicyBypassPermission);
              return AllowLogin;
            } 
 
    else {
 
          system.debug('TestKK18');
          return RestricLogin ;
        }
  }
 
 
  public static Boolean doesRunningUserHavePermission(User user, String apiName) {
        Set<Id> accessiblePermissionIds = new Set<Id>();
 
        for(SetupEntityAccess access : [
            SELECT SetupEntityId FROM SetupEntityAccess 
            WHERE SetupEntityType = 'CustomPermission' AND ParentId IN (
                SELECT PermissionSetId FROM PermissionSetAssignment
                WHERE AssigneeId = : user.Id // UserInfo.getUserId()
            )
        ]){
            accessiblePermissionIds.add(access.SetupEntityId);     
            system.debug('TestKK --accessiblePermissionIds'+accessiblePermissionIds);     
        }
 
        return 0 < [
            SELECT count() FROM CustomPermission
            WHERE Id IN : accessiblePermissionIds
            AND DeveloperName = : apiName ];
  }
}

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

Success #stdin #stdout #stderr 0.02s 12500KB

stdin

copy

Standard input is empty

stdout

copy

Object: nil error: did not understand #associationAt:
MessageNotUnderstood(Exception)>>signal (ExcHandling.st:254)
UndefinedObject(Object)>>doesNotUnderstand: #associationAt: (SysExcept.st:1448)
DeferredVariableBinding>>resolvePathFrom: (DeferBinding.st:114)
DeferredVariableBinding>>value (DeferBinding.st:69)
UndefinedObject>>executeStatements (prog:39)
Object: nil error: did not understand #associationAt:ifAbsent:
MessageNotUnderstood(Exception)>>signal (ExcHandling.st:254)
UndefinedObject(Object)>>doesNotUnderstand: #associationAt:ifAbsent: (SysExcept.st:1448)
DeferredVariableBinding>>resolvePathFrom: (DeferBinding.st:115)
DeferredVariableBinding>>value (DeferBinding.st:69)
UndefinedObject>>executeStatements (prog:81)
Object: nil error: did not understand #associationAt:ifAbsent:
MessageNotUnderstood(Exception)>>signal (ExcHandling.st:254)
UndefinedObject(Object)>>doesNotUnderstand: #associationAt:ifAbsent: (SysExcept.st:1448)
DeferredVariableBinding>>resolvePathFrom: (DeferBinding.st:115)
DeferredVariableBinding>>value (DeferBinding.st:69)
UndefinedObject>>executeStatements (prog:81)
Object: nil error: did not understand #associationAt:ifAbsent:
MessageNotUnderstood(Exception)>>signal (ExcHandling.st:254)
UndefinedObject(Object)>>doesNotUnderstand: #associationAt:ifAbsent: (SysExcept.st:1448)
DeferredVariableBinding>>resolvePathFrom: (DeferBinding.st:115)
DeferredVariableBinding>>value (DeferBinding.st:69)
UndefinedObject>>executeStatements (prog:81)
Object: nil error: did not understand #associationAt:ifAbsent:
MessageNotUnderstood(Exception)>>signal (ExcHandling.st:254)
UndefinedObject(Object)>>doesNotUnderstand: #associationAt:ifAbsent: (SysExcept.st:1448)
DeferredVariableBinding>>resolvePathFrom: (DeferBinding.st:115)
DeferredVariableBinding>>value (DeferBinding.st:69)
UndefinedObject>>executeStatements (prog:81)

stderr

copy

./prog:1: expected expression
./prog:39: expected expression
./prog:52: expected expression
./prog:52: expected expression
./prog:81: expected expression
./prog:81: expected expression

https://ideone.com/ftcJom

language:

Smalltalk (gst 3.2.5)

created:

visibility:

public

Share or Embed source code

Discover > Sphere Engine API

The brand new service which powers Ideone!

Discover > IDE Widget

Widget for compiling and running the source code in a web browser!

Discover > Sphere Engine API

Discover > IDE Widget

Choose your language