fixed account handling

fixed view CDI integration

account/sql/account.dbm

@@ -3,7 +3,7 @@
 CAUTION: Do not modify this file unless you know what you are doing.
          Unexpected results may occur if the code is changed deliberately.
 -->
-<dbmodel pgmodeler-ver="0.9.1" author="Joern Muehlencord" last-position="259,0" last-zoom="0.85"
+<dbmodel pgmodeler-ver="0.9.1" author="Joern Muehlencord" last-position="0,0" last-zoom="0.85"
 	 default-schema="public" default-owner="postgres">
 <database name="account_test" encoding="UTF8" lc-collate="German_Germany.1252" lc-ctype="German_Germany.1252" is-template="false" allow-conns="true" sql-disabled="true">
 </database>
@@ -49,6 +49,9 @@ CAUTION: Do not modify this file unless you know what you are doing.
 	<constraint name="application_role_pk" type="pk-constr" table="public.application_role">
 		<columns names="id" ref-type="src-columns"/>
 	</constraint>
+	<constraint name="application_role_name_uidx" type="uq-constr" table="public.application_role">
+		<columns names="application,role_name" ref-type="src-columns"/>
+	</constraint>
 </table>
 
 <table name="account">

account/src/main/java/de/muehlencord/shared/account/business/account/boundary/AccountControl.java

@@ -7,6 +7,7 @@ import de.muehlencord.shared.account.business.mail.entity.MailException;
 import de.muehlencord.shared.account.business.mail.boundary.MailService;
 import de.muehlencord.shared.account.business.account.entity.AccountEntity;
 import de.muehlencord.shared.account.business.account.entity.ApplicationRoleEntity;
+import de.muehlencord.shared.account.business.application.entity.ApplicationEntity;
 import de.muehlencord.shared.account.business.config.entity.ConfigException;
 import de.muehlencord.shared.account.util.SecurityUtil;
 import java.io.Serializable;
@@ -78,7 +79,7 @@ public class AccountControl implements Serializable {
         StringBuilder queryBuilder = new StringBuilder();
         queryBuilder.append("SELECT a FROM AccountEntity a ");
         if (loadRoles) {
-            queryBuilder.append("JOIN FETCH a.applicationRoleList ");
+            queryBuilder.append("LEFT JOIN FETCH a.applicationRoleList ");
         }
         queryBuilder.append("WHERE a.username = :username");
         Query query = em.createQuery(queryBuilder.toString());
@@ -91,7 +92,7 @@ public class AccountControl implements Serializable {
     }
 
     @Transactional
-    public AccountEntity saveAccount(AccountEntity account, List<ApplicationRoleEntity> applicationRoles) {
+    public AccountEntity saveAccount(ApplicationEntity application, AccountEntity account, List<ApplicationRoleEntity> applicationRoles) {
         Date now = new Date(); // Todo now in UTC                                
         Subject currentUser = SecurityUtils.getSubject();
         String currentLoggedInUser = currentUser.getPrincipal().toString();
@@ -117,39 +118,42 @@ public class AccountControl implements Serializable {
             // reload account from db and join roles 
             account = getAccountEntity(account.getUsername(), true);
         }
-        
+
         // assign roles to account
         if (account.getApplicationRoleList() == null) {
             account.setApplicationRoleList(new ArrayList<>());
         }
-        
+
         boolean roleSetupChanged = false;
         // remove roles which are no longer listed
-        for (ApplicationRoleEntity currentlyAssignedRole : account.getApplicationRoleList()) {
-            if (!applicationRoles.contains (currentlyAssignedRole)) {
-                account.getApplicationRoleList().remove(currentlyAssignedRole); 
+        // ensure this is only done for the given application - keep the other applications untouched
+        List<ApplicationRoleEntity> assignedRoles = new ArrayList<>();
+        assignedRoles.addAll(account.getApplicationRoleList());
+        for (ApplicationRoleEntity currentlyAssignedRole : assignedRoles) {
+            if ((currentlyAssignedRole.getApplication().equals(application) && (!applicationRoles.contains(currentlyAssignedRole)))) {
+                account.getApplicationRoleList().remove(currentlyAssignedRole);
                 roleSetupChanged = true;
                 if (LOGGER.isDebugEnabled()) {
-                    LOGGER.debug("Removed role {} from user {}", currentlyAssignedRole.getRoleName(), account.getUsername()); 
-                }                
-            }            
-        }        
-        
+                    LOGGER.debug("Removed role {} ({}) from user {}", currentlyAssignedRole.getRoleName(), application.getApplicationName(), account.getUsername());
+                }
+            }
+        }
+
         // add newly added roles to role list        
         for (ApplicationRoleEntity applicationRole : applicationRoles) {
             if (!account.getApplicationRoleList().contains(applicationRole)) {
-                account.addApplicationRole (applicationRole);                 
+                account.addApplicationRole(applicationRole);
                 roleSetupChanged = true;
                 if (LOGGER.isDebugEnabled()) {
-                    LOGGER.debug("Added role {} to account {}", applicationRole.getRoleName(), account.getUsername()); 
-                }                                
+                    LOGGER.debug("Added role {} ({}) to account {}", applicationRole.getRoleName(), application.getApplicationName(), account.getUsername());
+                }
             }
         }
-        
+
         // update account in database if roles changed
         if (roleSetupChanged) {
-            em.merge(account); 
-        }               
+            em.merge(account);
+        }
         return account;
     }