DBInit.java

/* 
 * Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License. 
 */
package org.ngrinder.infra.init;

import org.ngrinder.common.constant.ControllerConstants;
import org.ngrinder.infra.config.Config;
import org.ngrinder.model.Role;
import org.ngrinder.model.User;
import org.ngrinder.script.service.FileEntryService;
import org.ngrinder.security.SecuredUser;
import org.ngrinder.user.repository.UserRepository;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.authentication.dao.SaltSource;
import org.springframework.security.authentication.encoding.ShaPasswordEncoder;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;

import javax.annotation.PostConstruct;
import java.util.Date;

/**
 * Database Initialization.
 * When the first boot-up, some data(ex: user account) should be inserted into DB.
 *
 * And... It's the perfect place to upgrade DB.
 *
 * @author JunHo Yoon
 * @since 3.0
 */
@Service
public class DBInit {
	@Autowired
	private UserRepository userRepository;

	@Autowired
	private Config config;

	@Autowired
	private SaltSource saltSource;

	@Autowired
	private ShaPasswordEncoder passwordEncoder;

	@Autowired
	private FileEntryService fileEntryService;

	/**
	 * Initialize DB.
	 */
	@PostConstruct
	@Transactional
	public void init() {
		createDefaultUserIfNecessary();
		resetAdminPasswordIfNecessary();
	}

	private void resetAdminPasswordIfNecessary() {
		if (config.getControllerProperties().getPropertyBoolean(ControllerConstants
				.PROP_CONTROLLER_ADMIN_PASSWORD_RESET)) {
			final User admin = userRepository.findOneByUserId("admin");
			if (admin == null) {
				createUser("admin", "admin", Role.ADMIN, "admin", "admin@nhn.com");
			} else {
				SecuredUser securedUser = new SecuredUser(admin, null);
				Object salt = saltSource.getSalt(securedUser);
				admin.setRole(Role.ADMIN);
				admin.setPassword(passwordEncoder.encodePassword("admin", salt));
				userRepository.saveAndFlush(admin);
			}
		}
	}

	/**
	 * Create users.
	 *
	 * @param userId   userId
	 * @param password raw user password
	 * @param role     role
	 * @param userName user name
	 * @param email    email
	 */
	private void createUser(String userId, String password, Role role, String userName, String email) {
		if (userRepository.findOneByUserId(userId) == null) {
			User user = new User();
			user.setUserId(userId);
			SecuredUser securedUser = new SecuredUser(user, null);
			Object salt = saltSource.getSalt(securedUser);
			user.setPassword(passwordEncoder.encodePassword(password, salt));
			user.setRole(role);
			user.setUserName(userName);
			user.setEmail(email);
			user.setCreatedDate(new Date());
			user = userRepository.save(user);
			fileEntryService.prepare(user);
		}
	}

	/**
	 * Create initial users.
	 */
	private void createDefaultUserIfNecessary() {
		// If there is no users.. make admin and user and U, S, A roles.
		if (userRepository.count() < 2) {
			createUser("admin", "admin", Role.ADMIN, "admin", "admin@nhn.com");
			createUser("user", "user", Role.USER, "user", "user@nhn.com");
			createUser("superuser", "superuser", Role.SUPER_USER, "superuser", "superuser@nhn.com");
			createUser("system", "system", Role.SYSTEM_USER, "system", "system@nhn.com");
		}
	}
}