// Test with single role - not matching
        assertFalse(fessUserBean.hasRole("user"));

        // Test with multiple roles
        testUser.setRoleNames(new String[] { "admin", "user", "manager" });
        assertTrue(fessUserBean.hasRole("admin"));
        assertTrue(fessUserBean.hasRole("user"));
        assertTrue(fessUserBean.hasRole("manager"));
        assertFalse(fessUserBean.hasRole("guest"));

        }
        return redirect(getClass());
    }

    /**
     * Returns the user ID for the current session. If the user is authenticated, returns the username;
     * otherwise, returns the guest user code.
     *
     * @return the user ID
     */
    protected String getUserId() {
        final String username = systemHelper.getUsername();

    /**
     * <code>user.dir</code> system property.
     */
    public static final String USER_DIR = System.getProperty("user.dir");

    /**
     * <code>user.home</code> system property.
     */
    public static final String USER_HOME = System.getProperty("user.home");

    /**
     * Returns the system property value for the specified key.
     *

```JSON
{
  "detail": "Not authenticated"
}
```

### 未啟用的使用者 { #inactive-user }

現在改用一個未啟用的使用者，使用以下帳密驗證：

User: `alice`

Password: `secret2`

然後再呼叫 `GET` 方法的 `/users/me`。

你會得到「Inactive user」的錯誤，例如：

```JSON
{
  "detail": "Inactive user"
}
```

## 小結 { #recap }

你現在已經有足夠的工具，能為你的 API 以 `username` 與 `password` 實作一個完整的安全性系統。

/**
 * A multiset that supports concurrent modifications and that provides atomic versions of most
 * {@code Multiset} operations (exceptions where noted). Null elements are not supported.
 *
 * <p>See the Guava User Guide article on <a href=
 * "https://github.com/google/guava/wiki/NewCollectionTypesExplained#multiset">{@code Multiset}</a>.
 *
 * @author Cliff L. Biffle
 * @author mike nonemacher
 * @since 2.0
 */

    }

    /**
     * Evaluates search results for relevance using the configured LLM client.
     *
     * @param userMessage the original user message
     * @param query the search query used
     * @param searchResults the search results to evaluate
     * @return evaluation result with relevant document IDs
     * @throws LlmException if LLM is not available
     */

  static final Integer N5 = 5;
  static final Integer NODE_NOT_IN_GRAPH = 1000;

  // TODO(user): Consider separating Strings that we've defined here to capture
  // identifiable substrings of expected error messages, from Strings that we've defined
  // here to provide error messages.
  // TODO(user): Some Strings used in the subclasses can be added as static Strings
  // here too.

   * ImmutableSortedMap}.
   *
   * @throws UnsupportedOperationException always
   * @deprecated Use {@link ImmutableSortedMap#toImmutableSortedMap}.
   * @since 33.2.0 (available since 21.0 in guava-jre)
   */
  @DoNotCall("Use toImmutableSortedMap")
  @Deprecated
  @IgnoreJRERequirement // Users will use this only if they're already using streams.
  public static <T extends @Nullable Object, K, V>

     * Guess called name to try for session establishment. These
     * methods are used by the smb package.
     *
     * @return guessed name
     */
    String firstCalledName();

    /**
     * Guess next called name to try for session establishment. These
     * methods are used by the smb package.
     *
     * @param tc the transport context to use for name resolution
     *
     * @return guessed name
     */

      - name: Checkout repository for nightly (skipped for releases)
        if: ${{ github.event_name == 'schedule' }}
        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          ref: 'nightly'
      - name: Checkout repository
        if: ${{ github.event_name == 'push' }}
        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1