190 lines
8.9 KiB
Java
190 lines
8.9 KiB
Java
package net.gepafin.tendermanagement.service.impl;
|
|
|
|
import jakarta.servlet.http.HttpServletRequest;
|
|
import jakarta.servlet.http.HttpServletResponse;
|
|
import net.gepafin.tendermanagement.config.Translator;
|
|
import net.gepafin.tendermanagement.config.jwt.TokenProvider;
|
|
import net.gepafin.tendermanagement.constants.GepafinConstant;
|
|
import net.gepafin.tendermanagement.dao.CompanyDao;
|
|
import net.gepafin.tendermanagement.dao.RoleDao;
|
|
import net.gepafin.tendermanagement.entities.SamlResponseEntity;
|
|
import net.gepafin.tendermanagement.entities.UserEntity;
|
|
import net.gepafin.tendermanagement.enums.UserStatusEnum;
|
|
import net.gepafin.tendermanagement.model.request.LoginReq;
|
|
import net.gepafin.tendermanagement.model.response.CompanyResponse;
|
|
import net.gepafin.tendermanagement.model.response.LoginResponse;
|
|
import net.gepafin.tendermanagement.model.response.RoleResponseBean;
|
|
import net.gepafin.tendermanagement.model.response.UserSamlResponse;
|
|
import net.gepafin.tendermanagement.model.util.JWTToken;
|
|
import net.gepafin.tendermanagement.repositories.SamlResponseRepository;
|
|
import net.gepafin.tendermanagement.repositories.UserRepository;
|
|
import net.gepafin.tendermanagement.util.DateTimeUtil;
|
|
import net.gepafin.tendermanagement.util.Utils;
|
|
import net.gepafin.tendermanagement.web.rest.api.errors.CustomValidationException;
|
|
import net.gepafin.tendermanagement.web.rest.api.errors.ResourceNotFoundException;
|
|
import net.gepafin.tendermanagement.web.rest.api.errors.Status;
|
|
import org.slf4j.Logger;
|
|
import org.slf4j.LoggerFactory;
|
|
import org.springframework.beans.factory.annotation.Autowired;
|
|
import org.springframework.security.authentication.AuthenticationManager;
|
|
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
|
|
import org.springframework.security.core.Authentication;
|
|
import org.springframework.security.core.context.SecurityContextHolder;
|
|
import org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler;
|
|
import org.springframework.stereotype.Service;
|
|
|
|
import java.time.LocalDateTime;
|
|
import java.util.List;
|
|
import java.util.Map;
|
|
|
|
@Service
|
|
public class AuthenticationService {
|
|
|
|
private final Logger log = LoggerFactory.getLogger(AuthenticationService.class);
|
|
|
|
private final TokenProvider tokenProvider;
|
|
private final AuthenticationManager authenticationManager;
|
|
@Autowired
|
|
private CompanyDao companyDao;
|
|
|
|
@Autowired
|
|
private UserRepository userRepository;
|
|
|
|
@Autowired
|
|
private RoleDao roleDao;
|
|
|
|
@Autowired
|
|
private SamlResponseRepository samlResponseLogRepository;
|
|
|
|
@Autowired
|
|
public AuthenticationService(TokenProvider tokenProvider, AuthenticationManager authenticationManager) {
|
|
this.tokenProvider = tokenProvider;
|
|
this.authenticationManager = authenticationManager;
|
|
}
|
|
|
|
public JWTToken login(LoginReq loginReq) {
|
|
log.info("Attempting login for email: {}", loginReq.getEmail());
|
|
UsernamePasswordAuthenticationToken authenticationToken = new UsernamePasswordAuthenticationToken(
|
|
loginReq.getEmail(), loginReq.getPassword());
|
|
Authentication authentication = this.authenticationManager.authenticate(authenticationToken);
|
|
SecurityContextHolder.getContext().setAuthentication(authentication);
|
|
log.info("Authentication successful for email: {}", loginReq.getEmail());
|
|
UserEntity user = userRepository.findByEmailIgnoreCase(loginReq.getEmail())
|
|
.orElseThrow(() -> new ResourceNotFoundException(Status.NOT_FOUND,
|
|
Translator.toLocale(GepafinConstant.USER_NOT_FOUND_MSG)));
|
|
if (Boolean.FALSE.equals(UserStatusEnum.ACTIVE.getValue().equals(user.getStatus()))) {
|
|
throw new ResourceNotFoundException(Status.NOT_FOUND,
|
|
Translator.toLocale(GepafinConstant.USER_NOT_FOUND_MSG));
|
|
}
|
|
return getJWTTokenBean(user, loginReq.getRememberMe());
|
|
}
|
|
|
|
public JWTToken getJWTTokenBean(UserEntity user, Boolean rememberMe) {
|
|
user.setLastLogin(DateTimeUtil.DateServerToUTC(LocalDateTime.now()));
|
|
userRepository.save(user);
|
|
String token = tokenProvider.createToken(rememberMe, user);
|
|
log.info("JWT token generated for email: {}", user.getEmail());
|
|
RoleResponseBean roleResponseBean = roleDao.convertRoleEntityToRoleResponse(user.getRoleEntity());
|
|
|
|
LoginResponse loginResponse = getLoginResponse(user, roleResponseBean);
|
|
|
|
JWTToken jwtToken = new JWTToken(token, loginResponse);
|
|
|
|
log.info("Login successful for email: {}", user.getEmail());
|
|
return jwtToken;
|
|
}
|
|
|
|
private LoginResponse getLoginResponse(UserEntity user, RoleResponseBean roleResponseBean) {
|
|
LoginResponse loginResponse = new LoginResponse();
|
|
loginResponse.setEmail(user.getEmail());
|
|
loginResponse.setId(user.getId());
|
|
List<CompanyResponse> companyResponseBeans = companyDao.getCompanyByUserId(user.getId());
|
|
loginResponse.setCompanies(companyResponseBeans);
|
|
loginResponse.setRole(roleResponseBean);
|
|
loginResponse.setStatus(user.getStatus());
|
|
loginResponse.setLastLogin(user.getLastLogin());
|
|
loginResponse.setCreatedDate(user.getCreatedDate());
|
|
loginResponse.setUpdatedDate(user.getUpdatedDate());
|
|
if (user.getBeneficiary() == null) {
|
|
loginResponse.setFirstName(user.getFirstName());
|
|
loginResponse.setLastName(user.getLastName());
|
|
loginResponse.setPhoneNumber(user.getPhoneNumber());
|
|
loginResponse.setAddress(user.getAddress());
|
|
loginResponse.setOrganization(user.getOrganization());
|
|
loginResponse.setCountry(user.getCountry());
|
|
loginResponse.setCity(user.getCity());
|
|
loginResponse.setDateOfBirth(user.getDateOfBirth());
|
|
}else {
|
|
loginResponse.setFirstName(user.getBeneficiary().getFirstName());
|
|
loginResponse.setLastName(user.getBeneficiary().getLastName());
|
|
loginResponse.setPhoneNumber(user.getBeneficiary().getPhoneNumber());
|
|
loginResponse.setAddress(user.getBeneficiary().getAddress());
|
|
loginResponse.setOrganization(user.getBeneficiary().getOrganization());
|
|
loginResponse.setCountry(user.getBeneficiary().getCountry());
|
|
loginResponse.setCity(user.getBeneficiary().getCity());
|
|
loginResponse.setCodiceFiscale(user.getBeneficiary().getCodiceFiscale());
|
|
loginResponse.setDateOfBirth(user.getBeneficiary().getDateOfBirth());
|
|
}
|
|
|
|
return loginResponse;
|
|
}
|
|
public void logout(HttpServletRequest request, HttpServletResponse response) {
|
|
Authentication auth = SecurityContextHolder.getContext().getAuthentication();
|
|
if (auth != null) {
|
|
String token = tokenProvider.extractTokenFromRequest(request);
|
|
tokenProvider.invalidateToken(token);
|
|
new SecurityContextLogoutHandler().logout(request, response, auth);
|
|
}
|
|
SecurityContextHolder.getContext().setAuthentication(null);
|
|
SecurityContextHolder.clearContext();
|
|
}
|
|
|
|
public JWTToken validateExistingUserToken(String token) {
|
|
SamlResponseEntity samlResponseLogEntity = samlResponseLogRepository.findByToken(token);
|
|
if (samlResponseLogEntity == null) {
|
|
log.info("Invalid spid login token : {}", token);
|
|
throw new CustomValidationException(Status.VALIDATION_ERROR,
|
|
Translator.toLocale(GepafinConstant.INVALID_TOKEN_MSG));
|
|
}
|
|
Map<String, List<Object>> userAttributes = Utils
|
|
.convertStringIntoMap(samlResponseLogEntity.getAuthenticationObject());
|
|
String cf = userAttributes.get("CodiceFiscale").get(0).toString();
|
|
UserEntity userEntity = userRepository.findByBeneficiaryCodiceFiscale(cf)
|
|
.orElseThrow(() -> new ResourceNotFoundException(Status.NOT_FOUND,
|
|
Translator.toLocale(GepafinConstant.USER_NOT_FOUND_MSG)));
|
|
samlResponseLogRepository.delete(samlResponseLogEntity);
|
|
|
|
return getJWTTokenBean(userEntity, Boolean.TRUE);
|
|
}
|
|
|
|
|
|
public UserSamlResponse validateNewUserToken(String token) {
|
|
SamlResponseEntity samlResponseLogEntity = samlResponseLogRepository.findByToken(token);
|
|
if (samlResponseLogEntity == null) {
|
|
log.info("Invalid spid login token : {}", token);
|
|
throw new CustomValidationException(Status.VALIDATION_ERROR,
|
|
Translator.toLocale(GepafinConstant.INVALID_TOKEN_MSG));
|
|
}
|
|
Map<String, List<Object>> userAttributes = Utils
|
|
.convertStringIntoMap(samlResponseLogEntity.getAuthenticationObject());
|
|
String cf = userAttributes.get("CodiceFiscale").get(0).toString();
|
|
if (userRepository.existsByBeneficiaryCodiceFiscale(cf)) {
|
|
throw new ResourceNotFoundException(Status.NOT_FOUND,
|
|
Translator.toLocale(GepafinConstant.USER_ALREADY_EXIST_MSG));
|
|
}
|
|
UserSamlResponse userSamlResponse = new UserSamlResponse();
|
|
userSamlResponse.setCodiceFiscale(cf);
|
|
if (userAttributes.containsKey("nome") && userAttributes.get("nome") != null
|
|
&& !userAttributes.get("nome").isEmpty()) {
|
|
userSamlResponse.setFirstName(userAttributes.get("nome").get(0).toString());
|
|
}
|
|
if (userAttributes.containsKey("cognome") && userAttributes.get("cognome") != null
|
|
&& !userAttributes.get("cognome").isEmpty()) {
|
|
userSamlResponse.setLastName(userAttributes.get("cognome").get(0).toString());
|
|
}
|
|
userSamlResponse.setCodiceFiscale(cf);
|
|
return userSamlResponse;
|
|
}
|
|
}
|
|
|