SecurityPolicy methods now return streams (#595)

labkey-adam · web-flow · commit b427820d4cb4 · 2026-01-28T22:00:58.000-08:00
diff --git a/panoramapublic/src/org/labkey/panoramapublic/query/JournalManager.java b/panoramapublic/src/org/labkey/panoramapublic/query/JournalManager.java
@@ -210,7 +210,7 @@ private static void changeJournalPermissions(ExperimentAnnotations exptAnnotatio
     private static void addPermission(Container folder, UserPrincipal journalGroup)
     {
         SecurityPolicy oldPolicy = folder.getPolicy();
-        if (oldPolicy.getOwnPermissions(journalGroup).contains(FolderExportPermission.class))
+        if (oldPolicy.getOwnPermissions(journalGroup).anyMatch(permClass -> permClass == FolderExportPermission.class))
             return;
         MutableSecurityPolicy newPolicy = new MutableSecurityPolicy(folder, oldPolicy);
 
@@ -249,19 +249,16 @@ private static void addPermission(Container folder, UserPrincipal journalGroup)
     private static void removePermission(Container folder, UserPrincipal journalGroup)
     {
         SecurityPolicy oldPolicy = folder.getPolicy();
-        if (!oldPolicy.getOwnPermissions(journalGroup).contains(FolderExportPermission.class))
+        if (oldPolicy.getOwnPermissions(journalGroup).noneMatch(permClass -> permClass == FolderExportPermission.class))
             return;
-        List<Role> roles = oldPolicy.getAssignedRoles(journalGroup);
 
         MutableSecurityPolicy newPolicy = new MutableSecurityPolicy(folder, oldPolicy);
         newPolicy.clearAssignedRoles(journalGroup);
-        for(Role role: roles)
-        {
-            if(!(role instanceof CopyTargetedMSExperimentRole))
-            {
-                newPolicy.addRoleAssignment(journalGroup, role);
-            }
-        }
+
+        oldPolicy.getAssignedRoles(journalGroup)
+            .filter(role -> !(role instanceof CopyTargetedMSExperimentRole))
+            .forEach(role -> newPolicy.addRoleAssignment(journalGroup, role));
+
         SecurityPolicyManager.savePolicy(newPolicy, User.getAdminServiceUser());
     }
 
diff --git a/panoramapublic/src/org/labkey/panoramapublic/query/SubmissionManager.java b/panoramapublic/src/org/labkey/panoramapublic/query/SubmissionManager.java
@@ -279,7 +279,7 @@ private static void ensureEditorRole(@NotNull ShortURLRecord shortUrl, User user
         //           A folder admin updating the submission request made by another submitter may want to change the shortUrl. They
         //           will need permission to delete the old shortUrl.
         MutableSecurityPolicy policy = new MutableSecurityPolicy(SecurityPolicyManager.getPolicy(shortUrl));
-        boolean isEditor = policy.getAssignedRoles(user).stream().anyMatch(r -> r instanceof EditorRole);
+        boolean isEditor = policy.getAssignedRoles(user).anyMatch(r -> r instanceof EditorRole);
         if (!isEditor)
         {
             policy.addRoleAssignment(user, EditorRole.class);

Original file line number	Diff line number	Diff line change
`@@ -279,7 +279,7 @@ private static void ensureEditorRole(@NotNull ShortURLRecord shortUrl, User user`
`279`	`279`	`// A folder admin updating the submission request made by another submitter may want to change the shortUrl. They`
`280`	`280`	`// will need permission to delete the old shortUrl.`
`281`	`281`	`MutableSecurityPolicy policy = new MutableSecurityPolicy(SecurityPolicyManager.getPolicy(shortUrl));`
`282`		`- boolean isEditor = policy.getAssignedRoles(user).stream().anyMatch(r -> r instanceof EditorRole);`
	`282`	`+ boolean isEditor = policy.getAssignedRoles(user).anyMatch(r -> r instanceof EditorRole);`
`283`	`283`	`if (!isEditor)`
`284`	`284`	`{`
`285`	`285`	`policy.addRoleAssignment(user, EditorRole.class);`