added userId in the faq table

2024-08-22 12:32:27 +05:30
parent ce27dcd4a9
commit f8f58689c4
9 changed files with 136 additions and 19 deletions
--- a/src/main/java/net/gepafin/tendermanagement/config/jwt/TokenProvider.java
+++ b/src/main/java/net/gepafin/tendermanagement/config/jwt/TokenProvider.java
@@ -5,8 +5,10 @@ import io.jsonwebtoken.Jwts;
 import io.jsonwebtoken.SignatureAlgorithm;
 import io.jsonwebtoken.security.Keys;
 import jakarta.annotation.PostConstruct;
+import jakarta.servlet.http.HttpServletRequest;
 import net.gepafin.tendermanagement.entities.UserEntity;
-
+import net.gepafin.tendermanagement.util.Utils;
+import org.apache.commons.lang3.ArrayUtils;
 import org.apache.commons.lang3.time.DateUtils;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -18,11 +20,17 @@ import org.springframework.security.core.authority.SimpleGrantedAuthority;
 import org.springframework.security.core.userdetails.User;
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.stereotype.Component;
+import org.springframework.util.StringUtils;

 import javax.crypto.SecretKey;
 import java.nio.charset.StandardCharsets;
 import java.util.*;
 import java.util.stream.Collectors;
+import com.google.gson.Gson;
+
+import static io.micrometer.common.util.StringUtils.isEmpty;
+
+
@Component
 public class TokenProvider {
    private final Logger log = LoggerFactory.getLogger(TokenProvider.class);
@@ -35,13 +43,19 @@ public class TokenProvider {

    private SecretKey key;

+    private static final String AUTHORITIES_KEY = "auth";
+    private static final String MERCHANTID="merchantId";
+
+    public static final String INVALID_USER = "invalid_user";
+    static final  String AUTH_SECRET = "X-Api-Secret";
+
    @PostConstruct
    public void init() {
        this.key = Keys.hmacShaKeyFor(secretKey.getBytes(StandardCharsets.UTF_8));
        log.info("JWT Secret Key initialized.");
    }

-    public String createToken(Authentication authentication, Boolean rememberMe, UserEntity user) {
+     public String createToken(Authentication authentication, Boolean rememberMe, UserEntity user) {
        String authorities = authentication.getAuthorities().stream()
                .map(GrantedAuthority::getAuthority)
                .collect(Collectors.joining(","));
@@ -60,7 +74,7 @@ public class TokenProvider {
        
        String payload = authentication.getName();
        if(user != null) {
-    	   payload += ":"+user.getId();  
+           payload += ":"+user.getId();  
       }

        String token = Jwts.builder()
@@ -110,4 +124,76 @@ public class TokenProvider {
            return false;
        }
    }
+    public Map<String, Object> getUserInfoAndUserIdFromToken(HttpServletRequest request) {
+        Map<String, Object> userInfo = new HashMap<>();
+        String authSecretHeader=request.getHeader(AUTH_SECRET);
+//        userInfo.put(MERCHANTID, null);
+        String bearerToken = request.getHeader("Authorization");
+        String token = "";
+        if (StringUtils.hasText(bearerToken) && bearerToken.startsWith("Bearer ")) {
+            token = bearerToken.substring(7, bearerToken.length());
+        }
+        extractDetailsFromTheToken(userInfo, authSecretHeader, token);
+        return userInfo;
+    }
+    public Map<String, Object> extractDetailsFromTheToken(Map<String, Object> userInfo, String authSecretHeader,
+                                                          String token) {
+        String payload = null;
+        Boolean isSuperAdmin = false;
+//        if (StringUtils.hasText(token) && token.endsWith("_superKey" + getSuperUserToken())) {
+//            Map<String, Object> payloadMap = getUserDetailsForSuperUser(token);
+//            payload = payloadMap.get("sub").toString();
+//            isSuperAdmin = true;
+//
+//        } else
+            if (!isEmpty(authSecretHeader)) {
+            String secret = Utils.decodeBase64String(authSecretHeader);
+            String[] tokenArr = secret.split("\\.", 2);
+            String[] merchant = tokenArr[0].split("-");
+            if (ArrayUtils.isNotEmpty(merchant) && 2 <= merchant.length) {
+                userInfo.put(MERCHANTID, merchant[1]);
+                return userInfo;
+            }
+
+        } else {
+            payload = getUserDetails(token);
+        }
+        if (payload != null && !isSuperAdmin) {
+            String[] payloadString = payload.split(":");{
+
+            if (payloadString.length > 1) {
+//                userInfo.put(MERCHANTID, payloadString[1]);
+//                userInfo.put("associatedTags", payloadString[2]);
+                userInfo.put("userId", payloadString[1]);
+            }
+        }
+
+            if (payloadString.length > 1) {
+//                userInfo.put(MERCHANTID, payloadString[1]);
+//                userInfo.put("associatedTags", payloadString[2]);
+                userInfo.put("userId", payloadString[1]);
+            }
+        } else {
+            String[] payloadString = payload.split(":");
+
+            if (payloadString.length > 1) {
+                userInfo.put("userId", payloadString[1]);
+            }
+        }
+
+        return userInfo;
+    }
+    public Map<String, Object> getUserDetailsForSuperUser(String token) {
+        Base64.Decoder decoder = Base64.getUrlDecoder();
+        String[] parts = token.split("\\."); // Splitting header, payload and signature
+        Gson g = new Gson();
+        return g.fromJson(new String(decoder.decode(parts[1])), Map.class);
+    }
+//    public String getSuperUserToken() {
+//        return superUserToken;
+//    }
+    public String getUserDetails(String token) {
+        Claims claims = Jwts.parser().setSigningKey(key).parseClaimsJws(token).getBody();
+        return claims.getSubject();
+    }
 }