AuthTokenProvider.java example

Explorer
activityinfo-master
package org.activityinfo.server.login;

/*
 * #%L
 * ActivityInfo Server
 * %%
 * Copyright (C) 2009 - 2013 UNICEF
 * %%
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as
 * published by the Free Software Foundation, either version 3 of the 
 * License, or (at your option) any later version.
 * 
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public 
 * License along with this program.  If not, see
 * <http://www.gnu.org/licenses/gpl-3.0.html>.
 * #L%
 */

import com.google.inject.Inject;
import org.activityinfo.model.auth.AuthenticatedUser;
import org.activityinfo.server.database.hibernate.dao.AuthenticationDAO;
import org.activityinfo.server.database.hibernate.dao.Transactional;
import org.activityinfo.server.database.hibernate.entity.Authentication;
import org.activityinfo.server.database.hibernate.entity.User;

import javax.inject.Provider;
import javax.ws.rs.core.NewCookie;

public class AuthTokenProvider {

    private static final String ROOT = "/";
    private static final int THIS_SESSION = -1;
    private static final int ONE_YEAR = 365 * 24 * 60 * 60;

    private final Provider<AuthenticationDAO> authDAO;

    @Inject
    public AuthTokenProvider(Provider<AuthenticationDAO> authDAO) {
        super();
        this.authDAO = authDAO;
    }

    @Transactional
    public Authentication createNewAuthToken(User user) {
        Authentication auth = new Authentication(user);
        authDAO.get().persist(auth);
        return auth;
    }

    public NewCookie[] createNewAuthCookies(User user) {
        Authentication token = createNewAuthToken(user);

        NewCookie cookie = newAuthCookie(AuthenticatedUser.AUTH_TOKEN_COOKIE, token.getId());
        NewCookie userCookie = newAuthCookie(AuthenticatedUser.USER_ID_COOKIE,
                Integer.toString(token.getUser().getId()));
        NewCookie emailCookie = newAuthCookie(AuthenticatedUser.EMAIL_COOKIE, user.getEmail());
        NewCookie localeCookie = newLocaleCookie(AuthenticatedUser.USER_LOCAL_COOKIE, user.getLocale());

        return new NewCookie[]{cookie, userCookie, emailCookie, localeCookie};
    }

    private NewCookie newAuthCookie(String name, String value) {
        String path = ROOT;
        String domain = null;
        String comment = null;
        int maxAge = THIS_SESSION;
        boolean onlySecure = false;
        return new NewCookie(name, value, path, domain, comment, maxAge, onlySecure);
    }

    private NewCookie newLocaleCookie(String name, String value) {
        String path = ROOT;
        String domain = null;
        String comment = null;
        int maxAge = ONE_YEAR;
        boolean onlySecure = false;
        return new NewCookie(name, value, path, domain, comment, maxAge, onlySecure);
    }
}