/**
     * Checks if the current user has the specified action role or administrative privileges.
     *
     * @param role the role to check (supports both view and edit variants)
     * @return true if the user has the role or admin privileges, false otherwise
     */
    public static boolean hasActionRole(final String role) {
        final String[] roles;
        if (role.endsWith(FessAdminAction.VIEW)) {

    /**
     * ID of the role type.
     */
    public String id;

    /**
     * Name of the role type.
     */
    public String name;

    /**
     * Value of the role type.
     */
    public String value;

    /**
     * Sort order of the role type.
     */
    public String sortOrder;

    /**
     * The user who created the role type.
     */

 *
 */
public class AdminDictAction extends FessAdminAction {

    /**
     * Default constructor.
     */
    public AdminDictAction() {
        super();
    }

    /** The role for this action. */
    public static final String ROLE = "admin-dict";

    // ===================================================================================
    //                                                                           Attribute

        assertNull(permissionHelper.encode("{role}\n"));
        assertNull(permissionHelper.encode("(allow){user}  "));
        assertNull(permissionHelper.encode("(deny){group}\t\n"));
    }

    public void test_encode_decode_symmetry() {
        String[] testValues =
                { "guest", "{user}guest", "{group}guest", "{role}guest", "(deny){user}guest", "(deny){group}guest", "(deny){role}guest" };

public class AdminDashboardAction extends FessAdminAction {

    /**
     * Default constructor.
     */
    public AdminDashboardAction() {
        super();
    }

    /** The role for this action. */
    public static final String ROLE = "admin-dashboard";

    // ===================================================================================
    //                                                                           Attribute

     */
    protected void addRoleAttributes(final BasicAttributes entry, final Role user) {
        // nothing
    }

    /**
     * Deletes a role from the LDAP directory.
     *
     * @param role the role object to delete
     */
    public void delete(final Role role) {
        if (!fessConfig.isLdapAdminEnabled()) {
            return;
        }

 */
package org.codelibs.fess.app.web.api.admin.role;

import org.codelibs.fess.app.web.api.admin.BaseSearchBody;

/**
 * Search request body for role administration API.
 */
public class SearchBody extends BaseSearchBody {

    /**
     * Default constructor.
     */
    public SearchBody() {
        super();
    }

    /** Role ID */
    public String id;

#### Adding 'admin' Role

- Go to Roles
  - Add new Role `admin` with Description `${role_admin}`.
  - Add this Role into compositive role named `default-roles-{realm}` - `{realm}` should be replaced with whatever realm you created from `prerequisites` section. This role is automatically trusted in the 'Service Accounts' tab.

- Check that `account` client_id has the role 'admin' assigned in the "Service Account Roles" tab.

    }

    @Override
    protected String getActionRole() {
        return ROLE;
    }

    /**
     * Show the index page.
     * @return The HTML response.
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        saveToken();
        return asListHtml();
    }

    /**

    }

    @Override
    protected String getActionRole() {
        return ROLE;
    }

    /**
     * Displays the search request management index page.
     *
     * @return HTML response for the search request page
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        return asListHtml(this::saveToken);
    }

    /**