/*
*
* Copyright (C) 2007-2015 Licensed to the Comunes Association (CA) under
* one or more contributor license agreements (see COPYRIGHT for details).
* The CA licenses this file to you under the GNU Affero General Public
* License version 3, (the "License"); you may not use this file except in
* compliance with the License. This file is part of kune.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation, either version 3 of the
* License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
*/
package cc.kune.core.server.rpc;
import javax.persistence.NoResultException;
import javax.servlet.http.HttpSession;
import org.jivesoftware.util.Base64;
import org.waveprotocol.box.server.account.AccountData;
import org.waveprotocol.box.server.authentication.SessionManager;
import org.waveprotocol.wave.model.wave.ParticipantId;
import cc.kune.core.client.errors.AccessViolationException;
import cc.kune.core.client.errors.DefaultException;
import cc.kune.core.client.errors.EmailAddressInUseException;
import cc.kune.core.client.errors.EmailHashExpiredException;
import cc.kune.core.client.errors.EmailHashInvalidException;
import cc.kune.core.client.errors.EmailNotFoundException;
import cc.kune.core.client.errors.GroupLongNameInUseException;
import cc.kune.core.client.errors.SessionExpiredException;
import cc.kune.core.client.errors.UserAuthException;
import cc.kune.core.client.rpcservices.UserService;
import cc.kune.core.server.UserSessionManager;
import cc.kune.core.server.auth.ActionLevel;
import cc.kune.core.server.auth.Authenticated;
import cc.kune.core.server.auth.Authorizated;
import cc.kune.core.server.manager.UserManager;
import cc.kune.core.server.manager.UserSignInLogManager;
import cc.kune.core.server.manager.impl.EmailConfirmationType;
import cc.kune.core.server.mapper.KuneMapper;
import cc.kune.core.server.persist.KuneTransactional;
import cc.kune.core.server.properties.ReservedWordsRegistry;
import cc.kune.core.server.users.UserInfo;
import cc.kune.core.server.users.UserInfoService;
import cc.kune.core.shared.SessionConstants;
import cc.kune.core.shared.domain.AccessRol;
import cc.kune.core.shared.domain.UserSNetVisibility;
import cc.kune.core.shared.domain.utils.StateToken;
import cc.kune.core.shared.dto.I18nLanguageSimpleDTO;
import cc.kune.core.shared.dto.StateAbstractDTO;
import cc.kune.core.shared.dto.UserBuddiesPresenceDataDTO;
import cc.kune.core.shared.dto.UserDTO;
import cc.kune.core.shared.dto.UserInfoDTO;
import cc.kune.domain.Group;
import cc.kune.domain.User;
import cc.kune.domain.finders.UserFinder;
import cc.kune.wave.server.kspecific.ParticipantUtils;
import com.google.common.base.Preconditions;
import com.google.inject.Inject;
// TODO: Auto-generated Javadoc
/**
* The Class UserRPC.
*
* @author danigb@gmail.com
* @author vjrj@ourproject.org (Vicente J. Ruiz Jurado)
*/
public class UserRPC implements RPC, UserService {
/** The content rpc. */
private final ContentRPC contentRPC;
/** The mapper. */
private final KuneMapper mapper;
/** The part utils. */
private final ParticipantUtils partUtils;
/** The reserverd words. */
private final ReservedWordsRegistry reserverdWords;
/** The user finder. */
private final UserFinder userFinder;
/** The user info service. */
private final UserInfoService userInfoService;
/** The user manager. */
private final UserManager userManager;
/** The user session manager. */
private final UserSessionManager userSessionManager;
/** The user sign in log manager. */
private final UserSignInLogManager userSignInLogManager;
/** The wave session manager. */
private final SessionManager waveSessionManager;
/**
* Instantiates a new user rpc.
*
* @param userSessionProvider
* the user session provider
* @param userManager
* the user manager
* @param userInfoService
* the user info service
* @param mapper
* the mapper
* @param waveSessionManager
* the wave session manager
* @param waveClientServlet
* the wave client servlet
* @param reserverdWords
* the reserverd words
* @param contentRPC
* the content rpc
* @param userSessionManager
* the user session manager
* @param userFinder
* the user finder
* @param partUtils
* the part utils
* @param userSignInLogManager
* the user sign in log manager
* @param websocketAddress
* the websocket address
*/
@Inject
public UserRPC(final UserManager userManager, final UserInfoService userInfoService,
final KuneMapper mapper, final SessionManager waveSessionManager,
final ReservedWordsRegistry reserverdWords, final ContentRPC contentRPC,
final UserSessionManager userSessionManager, final UserFinder userFinder,
final ParticipantUtils partUtils, final UserSignInLogManager userSignInLogManager) {
this.userManager = userManager;
this.userInfoService = userInfoService;
this.mapper = mapper;
this.waveSessionManager = waveSessionManager;
this.reserverdWords = reserverdWords;
this.contentRPC = contentRPC;
this.userSessionManager = userSessionManager;
this.userFinder = userFinder;
this.partUtils = partUtils;
this.userSignInLogManager = userSignInLogManager;
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#askForEmailConfirmation(java
* .lang.String)
*/
@Authenticated
@Override
@KuneTransactional
public void askForEmailConfirmation(final String userHash) throws DefaultException {
final User user = userSessionManager.getUser();
userManager.askForEmailConfirmation(user, EmailConfirmationType.emailVerification);
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#askForPasswordReset(java.lang
* .String)
*/
@Override
@KuneTransactional
public void askForPasswordReset(final String email) throws EmailNotFoundException {
try {
final User user = userFinder.findByEmail(email);
userManager.askForEmailConfirmation(user, EmailConfirmationType.passwordReset);
} catch (final NoResultException e) {
throw new EmailNotFoundException();
}
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#changePasswd(java.lang.String,
* java.lang.String, java.lang.String)
*/
@Override
@Authenticated
@KuneTransactional
public void changePasswd(final String userHash, final String oldPassword, final String newPassword)
throws DefaultException {
final Long userId = userSessionManager.getUser().getId();
userManager.changePasswd(userId, oldPassword, newPassword, true);
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#checkUserAndHash(java.lang.
* String, java.lang.String)
*/
@Override
@KuneTransactional
public void checkUserAndHash(final String username, final String passwdOrToken)
throws SessionExpiredException {
final User user = userManager.login(username, passwdOrToken);
if (user != null) {
// External chat client login
return;
}
final HttpSession session = waveSessionManager.getSessionFromToken(passwdOrToken);
if (session == null) {
throw new SessionExpiredException();
}
Preconditions.checkState(session != null, "Session not found for this hash");
final AccountData loggedInAccount = waveSessionManager.getLoggedInAccount(session);
if (loggedInAccount == null) {
throw new SessionExpiredException();
}
Preconditions.checkState(loggedInAccount != null, "Not account info for this session");
final ParticipantId participant = loggedInAccount.getId();
final String participantAddress = partUtils.getAddressName(participant.getAddress());
final boolean sameUser = participantAddress.equals(username);
Preconditions.checkState(sameUser, "Session account and hash does not match");
if (!sameUser) {
throw new SessionExpiredException();
}
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#createUser(cc.kune.core.shared
* .dto.UserDTO, boolean)
*/
@Override
@KuneTransactional(rollbackOn = DefaultException.class)
public void createUser(final UserDTO userDTO, final boolean wantPersonalHomepage)
throws DefaultException {
reserverdWords.check(userDTO.getShortName(), userDTO.getName());
userManager.createUser(userDTO.getShortName(), userDTO.getName(), userDTO.getEmail(),
userDTO.getPassword(), userDTO.getLanguage().getCode(), userDTO.getCountry().getCode(),
userDTO.getTimezone().getId(), wantPersonalHomepage);
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#getBuddiesPresence(java.lang
* .String)
*/
@Authenticated
@Override
@KuneTransactional
public UserBuddiesPresenceDataDTO getBuddiesPresence(final String userHash) {
return userManager.getBuddiesPresence(userSessionManager.getUser());
};
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#getUserAvatarBaser64(java.lang
* .String, cc.kune.core.shared.domain.utils.StateToken)
*/
@Override
@Authenticated
@KuneTransactional
@Authorizated(accessRolRequired = AccessRol.Administrator, actionLevel = ActionLevel.group)
public String getUserAvatarBaser64(final String userHash, final StateToken userToken)
throws DefaultException {
final User user = userSessionManager.getUser();
final Group userGroup = user.getUserGroup();
if (!userGroup.getShortName().equals(userToken.getGroup())) {
throw new AccessViolationException();
}
if (userGroup.hasLogo()) {
return Base64.encodeBytes(userGroup.getLogo());
} else {
throw new DefaultException("Unexpected programatic exception (user has no logo)");
}
}
/**
* Load user info.
*
* @param user
* the user
* @return the user info dto
* @throws DefaultException
* the default exception
*/
private UserInfoDTO loadUserInfo(final User user) throws DefaultException {
final UserInfo userInfo = userInfoService.buildInfo(user, userSessionManager.getHash());
return mapper.map(userInfo, UserInfoDTO.class);
}
/*
* (non-Javadoc)
*
* @see cc.kune.core.client.rpcservices.UserService#login(java.lang.String,
* java.lang.String, java.lang.String)
*/
@Override
@KuneTransactional
public UserInfoDTO login(final String nick, final String passwd, final String waveToken)
throws DefaultException {
// final SessionService sessionService = sessionServiceProvider.get();
// sessionService.getNewSession();
final User user = userManager.login(nick, passwd);
return loginUser(user, waveToken);
}
/**
* Login user.
*
* @param user
* the user
* @param waveToken
* the wave token
* @return the user info dto
* @throws DefaultException
* the default exception
*/
private UserInfoDTO loginUser(final User user, final String waveToken) throws DefaultException {
if (user != null) {
userSessionManager.login(user.getId(), waveToken);
userSignInLogManager.log(user, null, null, null);
return loadUserInfo(user);
} else {
throw new UserAuthException();
}
}
/*
* (non-Javadoc)
*
* @see cc.kune.core.client.rpcservices.UserService#logout(java.lang.String)
*/
@Override
@Authenticated
@KuneTransactional
public void logout(final String userHash) throws DefaultException {
userSessionManager.logout();
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#onlyCheckSession(java.lang.
* String)
*/
@Override
@Authenticated(mandatory = false)
@KuneTransactional
public void onlyCheckSession(final String userHash) throws DefaultException {
// Do almost nothing @Authenticated checks user session
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#reloadUserInfo(java.lang.String
* )
*/
@Override
@KuneTransactional
public String preLoginWithEmail(final String email, final String passwd) {
final User user = userManager.login(email, passwd);
return user.getShortName();
}
@Override
@Authenticated
@KuneTransactional
public UserInfoDTO reloadUserInfo(final String userHash) throws DefaultException {
final User user = userSessionManager.getUser();
return loadUserInfo(user);
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#resetPassword(java.lang.String,
* java.lang.String)
*/
@Override
@KuneTransactional
public void resetPassword(final String passwdHash, final String newpasswd)
throws EmailHashInvalidException {
try {
final User user = userFinder.findByHash(passwdHash);
userManager.changePasswd(user.getId(), null, newpasswd, false);
userManager.clearPasswordHash(user);
} catch (final NoResultException e) {
throw new EmailHashInvalidException();
}
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#setBuddiesVisibility(java.lang
* .String, cc.kune.core.shared.domain.utils.StateToken,
* cc.kune.core.shared.domain.UserSNetVisibility)
*/
@Override
@Authenticated(mandatory = true)
@Authorizated(accessRolRequired = AccessRol.Administrator, actionLevel = ActionLevel.group)
@KuneTransactional
public void setBuddiesVisibility(final String userHash, final StateToken groupToken,
final UserSNetVisibility visibility) {
final User user = userSessionManager.getUser();
if (!groupToken.getGroup().equals(user.getShortName())) {
throw new AccessViolationException();
}
userManager.setSNetVisibility(user, visibility);
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#updateUser(java.lang.String,
* cc.kune.core.shared.dto.UserDTO,
* cc.kune.core.shared.dto.I18nLanguageSimpleDTO)
*/
@Override
@Authenticated
@KuneTransactional
public StateAbstractDTO updateUser(final String userHash, final UserDTO user,
final I18nLanguageSimpleDTO lang) throws DefaultException, EmailAddressInUseException,
GroupLongNameInUseException {
final Long id = userSessionManager.getUser().getId();
if (!id.equals(user.getId())) {
throw new AccessViolationException();
}
final User userUpdated = userManager.update(id, user, lang);
return contentRPC.getContent(userHash, userUpdated.getUserGroup().getStateToken());
}
/*
* (non-Javadoc)
*
* @see
* cc.kune.core.client.rpcservices.UserService#verifyPasswordHash(java.lang
* .String, java.lang.String)
*/
@Authenticated
@Override
@KuneTransactional
public void verifyPasswordHash(final String userHash, final String emailReceivedHash)
throws EmailHashInvalidException, EmailHashExpiredException {
final User user = userSessionManager.getUser();
userManager.verifyPasswordHash(user.getId(), emailReceivedHash, SessionConstants._5_HOURS);
}
}