SecurityManagementServiceImpl.java example

Explorer

owsi-core-parent-master
- basic-application
  - basic-application-core
    - src
      - main
        java
        fr
        openwide
        core
        basicapp
        core
        BasicApplicationCorePackage.java
        business
        BasicApplicationCoreCommonBusinessPackage.java
        authority
        BasicApplicationAuthorityUtils.java
        common
        model
        EmailAddress.java
        IHierarchicalListItem.java
        LocalizedGenericListItem.java
        PhoneNumber.java
        PostalCode.java
        comparator
        LocalizedGenericListItemComparator.java
        LocalizedTextComparator.java
        embeddable
        LocalizedText.java
        util
        BasicApplicationLocale.java
        history
        dao
        HistoryLogDaoImpl.java
        IHistoryLogDao.java
        model
        HistoryDifference.java
        HistoryLog.java
        atomic
        HistoryEventType.java
        bean
        HistoryLogAdditionalInformationBean.java
        search
        HistoryLogSearchQueryImpl.java
        IHistoryLogSearchQuery.java
        service
        HistoryEventSummaryServiceImpl.java
        HistoryLogServiceImpl.java
        HistoryValueServiceImpl.java
        IHistoryEventSummaryService.java
        IHistoryLogService.java
        notification
        service
        EmptyNotificationContentDescriptorFactoryImpl.java
        EmptyNotificationUrlBuilderServiceImpl.java
        IBasicApplicationNotificationContentDescriptorFactory.java
        INotificationService.java
        INotificationUrlBuilderService.java
        NotificationServiceImpl.java
        referencedata
        dao
        CityDaoImpl.java
        ICityDao.java
        model
        City.java
        service
        IReferenceDataService.java
        ReferenceDataServiceImpl.java
        task
        model
        BasicApplicationTaskQueueId.java
        upgrade
        DataUpgradeServiceImpl.java
        user
        dao
        IUserDao.java
        IUserGroupDao.java
        UserDaoImpl.java
        UserGroupDaoImpl.java
        difference
        service
        IUserDifferenceService.java
        UserDifferenceServiceImpl.java
        model
        BasicUser.java
        TechnicalUser.java
        User.java
        UserGroup.java
        atomic
        UserPasswordRecoveryRequestInitiator.java
        UserPasswordRecoveryRequestType.java
        embeddable
        UserPasswordInformation.java
        UserPasswordRecoveryRequest.java
        search
        AbstractUserSearchQueryImpl.java
        BasicUserSearchQueryImpl.java
        IBasicUserSearchQuery.java
        IGenericUserSearchQuery.java
        ITechnicalUserSearchQuery.java
        IUserGroupSearchQuery.java
        IUserSearchQuery.java
        TechnicalUserSearchQueryImpl.java
        UserGroupSearchQueryImpl.java
        UserGroupSort.java
        UserSearchQueryImpl.java
        UserSort.java
        service
        IUserGroupService.java
        IUserService.java
        UserGroupServiceImpl.java
        UserServiceImpl.java
        config
        hibernate
        HibernateConfigPackage.java
        TypeDefinitions.java
        type
        EmailAddressType.java
        PhoneNumberType.java
        PostalCodeType.java
        scheduling
        service
        ISchedulingService.java
        SchedulingServiceImpl.java
        spring
        BasicApplicationAdviceOrder.java
        BasicApplicationCoreApplicationPropertyConfig.java
        BasicApplicationCoreCommonConfig.java
        BasicApplicationCoreCommonJpaConfig.java
        BasicApplicationCoreNotificationConfig.java
        BasicApplicationCoreSchedulingConfig.java
        BasicApplicationCoreSecurityConfig.java
        BasicApplicationCoreTaskManagementConfig.java
        util
        Environment.java
        property
        BasicApplicationCorePropertyIds.java
        security
        model
        BasicApplicationAuthorityConstants.java
        BasicApplicationPermission.java
        BasicApplicationPermissionConstants.java
        BasicApplicationSecurityExpressionConstants.java
        SecurityOptions.java
        service
        AbstractGenericPermissionEvaluator.java
        BasicApplicationPermissionEvaluator.java
        DefaultGenericListItemPermissionEvaluatorImpl.java
        IDefaultGenericListItemPermissionEvaluator.java
        ISecurityManagementService.java
        SecurityManagementServiceImpl.java
        util
        binding
        Bindings.java
        init
        service
        ImportDataServiceImpl.java
        monitoring
        DatabaseConsistencyCheckServiceImpl.java
      - test
        java
        fr
        openwide
        core
        basicapp
        core
        test
        AbstractBasicApplicationTestCase.java
        business
        TestUserService.java
        config
        spring
        BasicApplicationCoreTestCommonConfig.java
        metamodel
        TestMetaModel.java
        service
        CoreTestNotificationDescriptorFactoryImpl.java
        CoreTestNotificationUrlBuilderServiceImpl.java
  - basic-application-init
    - src
      - main
        java
        fr
        openwide
        core
        basicapp
        init
        BasicApplicationInitFromExcelMain.java
        BasicApplicationInitPackage.java
        config
        spring
        BasicApplicationInitConfig.java
        notification
        service
        InitNotificationContentDescriptorFactoryImpl.java
        InitNotificationUrlBuilderServiceImpl.java
        util
        SpringContextWrapper.java
  - basic-application-webapp
    - src
      - main
        java
        fr
        openwide
        core
        basicapp
        web
        application
        BasicApplicationApplication.java
        BasicApplicationSession.java
        administration
        component
        UserGroupDescriptionPanel.java
        UserGroupMembersPanel.java
        UserGroupPortfolioPanel.java
        UserHistoryLogPanel.java
        UserMembershipsPanel.java
        UserProfilePanel.java
        UserSearchPanel.java
        export
        UserExcelTableExport.java
        form
        AbstractUserPopup.java
        UserGroupDropDownSingleChoice.java
        UserGroupPopup.java
        UserPasswordUpdatePopup.java
        UserPopup.java
        model
        AbstractUserDataProvider.java
        BasicUserDataProvider.java
        RoleDataProvider.java
        TechnicalUserDataProvider.java
        UserDataProvider.java
        UserGroupDataProvider.java
        page
        AdministrationBasicUserDescriptionPage.java
        AdministrationBasicUserPortfolioPage.java
        AdministrationTechnicalUserDescriptionPage.java
        AdministrationTechnicalUserPortfolioPage.java
        AdministrationUserGroupDescriptionPage.java
        AdministrationUserGroupPortfolioPage.java
        template
        AdministrationTemplate.java
        AdministrationUserDescriptionTemplate.java
        AdministrationUserPortfolioTemplate.java
        common
        component
        EnvironmentPanel.java
        FeatureNotYetAvailablePanel.java
        NavTabsPanel.java
        converter
        EmailAddressConverter.java
        PhoneNumberConverter.java
        PostalCodeConverter.java
        form
        UserAutocompleteAjaxComponent.java
        UserGroupAutocompleteAjaxComponent.java
        UserQuickSearchComponent.java
        impl
        UserChoiceRenderer.java
        UserGroupChoiceRenderer.java
        renderer
        ActionRenderers.java
        AuthorityRenderer.java
        LocalizedGenericListItemRenderer.java
        UserGroupRenderer.java
        UserRenderer.java
        template
        ApplicationAccessTemplate.java
        MainTemplate.java
        styles
        StylesLessCssResourceReference.java
        application_access
        ApplicationAccessLessCssResourceReference.java
        notification
        NotificationLessCssResourceReference.java
        typedescriptor
        AbstractGenericEntityChildTypeDescriptor.java
        AbstractGenericEntityTypeDescriptor.java
        user
        AdministrationUserTypeDescriptor.java
        NotificationUserTypeDescriptor.java
        SecurityUserTypeDescriptor.java
        UserTypeDescriptor.java
        util
        CssClassConstants.java
        ResourceKeyGenerator.java
        validator
        EmailExistsValidator.java
        EmailUnicityValidator.java
        PostalCodeValidator.java
        UserPasswordValidator.java
        UsernamePatternValidator.java
        UsernameUnicityValidator.java
        config
        spring
        BasicApplicationWebappApplicationPropertyRegistryConfig.java
        BasicApplicationWebappCacheConfig.java
        BasicApplicationWebappConfig.java
        BasicApplicationWebappSecurityConfig.java
        console
        notification
        demo
        page
        ConsoleNotificationDemoIndexPage.java
        NotificationDemoPage.java
        template
        ConsoleNotificationDemoTemplate.java
        util
        NotificationDemoEntry.java
        history
        column
        HistoryLogDetailColumn.java
        component
        CompositeHistoryDifferencePanel.java
        DefaultHistoryDifferencePanel.java
        HistoryDifferenceListPanel.java
        HistoryLogDetailColumnPanel.java
        factory
        CustomizableHistoryComponentFactory.java
        IHistoryComponentFactory.java
        model
        HistoryLogDataProvider.java
        renderer
        AbstractHistoryRenderer.java
        DefaultHistoryDifferenceValueRenderer.java
        HistoryDifferencePathRenderer.java
        HistoryValueRenderer.java
        navigation
        link
        LinkFactory.java
        page
        HomePage.java
        MaintenancePage.java
        notification
        component
        AbstractHtmlNotificationPanel.java
        ExampleHtmlNotificationPanel.java
        SimpleUserActionHtmlNotificationPanel.java
        service
        BasicApplicationNotificationContentDescriptorFactoryImpl.java
        BasicApplicationNotificationUrlBuilderServiceImpl.java
        profile
        component
        ProfileInformationPanel.java
        page
        ProfilePage.java
        template
        ProfileTemplate.java
        property
        BasicApplicationWebappPropertyIds.java
        referencedata
        component
        AbstractGenericListItemListPanel.java
        CityListPanel.java
        CitySearchPanel.java
        SimpleGenericListItemListPanel.java
        SimpleGenericListItemSearchPanel.java
        form
        AbstractGenericListItemPopup.java
        CityPopup.java
        SimpleGenericListItemPopup.java
        model
        AbstractGenericListItemDataProvider.java
        SimpleGenericListItemDataProvider.java
        page
        ReferenceDataPage.java
        template
        ReferenceDataTemplate.java
        validator
        CityUnicityFormValidator.java
        resources
        application
        BasicApplicationApplicationResources.java
        business
        BasicApplicationBusinessResources.java
        common
        BasicApplicationCommonResources.java
        console
        BasicApplicationConsoleResources.java
        enums
        BasicApplicationEnumResources.java
        navigation
        BasicApplicationNavigationResources.java
        notifications
        BasicApplicationNotificationResources.java
        security
        login
        component
        SignInContentPanel.java
        SignInFooterPanel.java
        page
        SignInPage.java
        password
        component
        SecurityPasswordCreationContentPanel.java
        SecurityPasswordExpirationContentPanel.java
        SecurityPasswordIntroPanel.java
        SecurityPasswordRecoveryContentPanel.java
        SecurityPasswordResetContentPanel.java
        page
        SecurityPasswordCreationPage.java
        SecurityPasswordExpirationPage.java
        SecurityPasswordRecoveryPage.java
        SecurityPasswordResetPage.java
        template
        SecurityPasswordTemplate.java
        util
        binding
        WebappBindings.java
- owsi-core
  - owsi-core-components
  - owsi-core-examples
    - wicket-showcase
      - wicket-showcase-core
        src
        main
        java
        fr
        openwide
        core
        showcase
        core
        ShowcaseCorePackage.java
        business
        ShowcaseCoreBusinessPackage.java
        fileupload
        dao
        IShowcaseFileDao.java
        ShowcaseFileDaoImpl.java
        model
        ShowcaseFile.java
        service
        IShowcaseFileFileStoreService.java
        IShowcaseFileService.java
        ShowcaseFileFileStoreServiceImpl.java
        ShowcaseFileServiceImpl.java
        statistic
        dao
        IStatisticDao.java
        StatisticDaoImpl.java
        service
        IStatisticService.java
        StatisticServiceImpl.java
        task
        dao
        IShowcaseTaskDao.java
        ShowcaseTaskDaoImpl.java
        model
        FailedTask.java
        FailedWithBusinessExceptionTask.java
        MyBusinessException.java
        ShowcaseBatchReportBean.java
        ShowcaseTaskQueueId.java
        SuccessTask.java
        SuccessWithAlertTask.java
        SuccessWithErrorTask.java
        TaskTypeEnum.java
        search
        TaskSearchQueryParameters.java
        service
        IShowcaseTaskService.java
        ShowcaseTaskServiceImpl.java
        user
        dao
        IUserDao.java
        IUserGroupDao.java
        UserDaoImpl.java
        UserGroupDaoImpl.java
        model
        User.java
        UserGender.java
        UserGroup.java
        search
        AbstractUserSearchQueryImpl.java
        IGenericUserSearchQuery.java
        IUserSearchQuery.java
        UserSearchQueryImpl.java
        UserSort.java
        service
        IUserGroupService.java
        IUserService.java
        UserGroupServiceImpl.java
        UserServiceImpl.java
        config
        spring
        ShowcaseCoreApplicationPropertyConfig.java
        ShowcaseCoreConfig.java
        ShowcaseCoreJpaConfig.java
        ShowcaseCoreJpaMoreTaskManagementConfig.java
        ShowcaseCoreSecurityConfig.java
        init
        BootstrapApplicationServiceImpl.java
        service
        InitDataServiceImpl.java
        util
        SpringContextWrapper.java
        security
        service
        ShowcasePermissionEvaluator.java
        util
        binding
        Bindings.java
        property
        ShowcaseCorePropertyIds.java
        test
        java
        test
        geocoder
        TestGeocoder.java
      - wicket-showcase-webapp
        src
        main
        java
        fr
        openwide
        core
        showcase
        web
        ShowcaseWebPackage.java
        application
        ShowcaseApplication.java
        ShowcaseSession.java
        config
        spring
        ShowcaseWebappApplicationPropertyRegistryConfig.java
        ShowcaseWebappConfig.java
        ShowcaseWebappJQPlotConfig.java
        ShowcaseWebappSecurityConfig.java
        links
        component
        DynamicImageTestPanel.java
        DynamicLinkTestPanel.java
        page
        LinksPage1.java
        LinksPage2.java
        LinksPage3.java
        LinksTemplate.java
        navigation
        link
        LinkFactory.java
        model
        TestIconResourceReferenceModel.java
        page
        HomePage.java
        SignInPage.java
        others
        page
        ButtonsPage.java
        HideableComponentsPage.java
        TitlesPage.java
        portfolio
        component
        UserPortfolioPanel.java
        UserProfilePanel.java
        UserQuickSearchComponent.java
        UserSearchPanel.java
        form
        EditUserPopupPanel.java
        model
        AbstractUserDataProvider.java
        UserDataProvider.java
        page
        PortfolioMainPage.java
        UserDescriptionPage.java
        task
        component
        NotTreatedObjectsPanel.java
        ShowcaseTaskQueueIdDropDownChoice.java
        TaskPortfolioPanel.java
        TaskSearchPanel.java
        model
        NotTreatedObjectNameModel.java
        NotTreatedObjectsIdsModel.java
        TaskDataProvider.java
        page
        TaskMainPage.java
        util
        binding
        WebappBindings.java
        property
        ShowcaseWebappPropertyIds.java
        template
        MainTemplate.java
        styles
        SignInLessCssResourceReference.java
        StylesLessCssResourceReference.java
        widgets
        component
        AddUserPopupPanel.java
        CalendarPanel.java
        CalendarPopupPanel.java
        FileDownloadPanel.java
        FileUploadPanel.java
        ImageCarouselPanel.java
        SortableUserListPanel.java
        UserAutocompleteAjaxComponent.java
        UserItemItField.java
        UserJson.java
        UserSelect2AjaxAdapter.java
        UserSelect2AjaxMultipleChoice.java
        UserSelect2DropDownChoice.java
        UserSelect2ListMultipleChoice.java
        ZIndexTestModalPopupPanel.java
        page
        AutocompletePage.java
        AutosizePage.java
        BootstrapJsPage.java
        CalendarPage.java
        CarouselPage.java
        FileDownloadPage.java
        FileUploadPage.java
        ListFilterPage.java
        ModalPage.java
        SelectBoxPage.java
        SortableListPage.java
        StatisticsPage.java
        WidgetsMainPage.java
        WidgetsTemplate.java
        resource
        FileUploadResource.java

package fr.openwide.core.basicapp.core.security.service;

import static com.google.common.base.Preconditions.checkNotNull;
import static fr.openwide.core.spring.property.SpringSecurityPropertyIds.PASSWORD_EXPIRATION_DAYS;
import static fr.openwide.core.spring.property.SpringSecurityPropertyIds.PASSWORD_HISTORY_COUNT;
import static fr.openwide.core.spring.property.SpringSecurityPropertyIds.PASSWORD_RECOVERY_REQUEST_EXPIRATION_MINUTES;
import static fr.openwide.core.spring.property.SpringSecurityPropertyIds.PASSWORD_RECOVERY_REQUEST_TOKEN_RANDOM_COUNT;

import java.util.Date;
import java.util.Map;

import org.apache.commons.lang3.RandomStringUtils;
import org.apache.commons.lang3.time.DateUtils;
import org.springframework.beans.factory.annotation.Autowired;

import com.google.common.collect.EvictingQueue;
import com.google.common.collect.Lists;
import com.google.common.collect.Maps;

import fr.openwide.core.basicapp.core.business.history.model.atomic.HistoryEventType;
import fr.openwide.core.basicapp.core.business.history.model.bean.HistoryLogAdditionalInformationBean;
import fr.openwide.core.basicapp.core.business.history.service.IHistoryLogService;
import fr.openwide.core.basicapp.core.business.notification.service.INotificationService;
import fr.openwide.core.basicapp.core.business.user.model.User;
import fr.openwide.core.basicapp.core.business.user.model.atomic.UserPasswordRecoveryRequestInitiator;
import fr.openwide.core.basicapp.core.business.user.model.atomic.UserPasswordRecoveryRequestType;
import fr.openwide.core.basicapp.core.business.user.service.IUserService;
import fr.openwide.core.basicapp.core.security.model.SecurityOptions;
import fr.openwide.core.jpa.exception.SecurityServiceException;
import fr.openwide.core.jpa.exception.ServiceException;
import fr.openwide.core.jpa.security.business.person.model.GenericUser;
import fr.openwide.core.jpa.util.HibernateUtils;
import fr.openwide.core.spring.property.service.IPropertyService;
import fr.openwide.core.spring.util.StringUtils;

public class SecurityManagementServiceImpl implements ISecurityManagementService {

	private final Map<Class<? extends GenericUser<?, ?>>, SecurityOptions> optionsByUser = Maps.newHashMap();

	private SecurityOptions defaultOptions = SecurityOptions.DEFAULT;

	@Autowired
	private IUserService userService;

	@Autowired
	private INotificationService notificationService;

	@Autowired
	private IPropertyService propertyService;
	
	@Autowired
	private IHistoryLogService historyLogService;

	public SecurityManagementServiceImpl setOptions(Class<? extends User> clazz, SecurityOptions options) {
		checkNotNull(clazz);
		checkNotNull(options);
		
		optionsByUser.put(clazz, options);
		
		return this;
	}

	public SecurityManagementServiceImpl setDefaultOptions(SecurityOptions options) {
		checkNotNull(options);
		
		defaultOptions = options;
		
		return this;
	}

	@Override
	public SecurityOptions getOptions(Class<? extends User> clazz) {
		if (optionsByUser.containsKey(clazz)) {
			return optionsByUser.get(clazz);
		}
		return defaultOptions;
	}

	@Override
	public SecurityOptions getOptions(User user) {
		if (user == null) {
			return defaultOptions;
		}
		return getOptions(HibernateUtils.unwrap(user).getClass());
	}

	@Override
	public void initiatePasswordRecoveryRequest(User user, UserPasswordRecoveryRequestType type,
			UserPasswordRecoveryRequestInitiator initiator) throws ServiceException, SecurityServiceException {
		initiatePasswordRecoveryRequest(user, type, initiator, user);
	}

	@Override
	public void initiatePasswordRecoveryRequest(User user, UserPasswordRecoveryRequestType type,
			UserPasswordRecoveryRequestInitiator initiator, User author) throws ServiceException, SecurityServiceException {
		Date now = new Date();
		
		user.getPasswordRecoveryRequest().setToken(RandomStringUtils.randomAlphanumeric(propertyService.get(PASSWORD_RECOVERY_REQUEST_TOKEN_RANDOM_COUNT)));
		user.getPasswordRecoveryRequest().setCreationDate(now);
		user.getPasswordRecoveryRequest().setType(type);
		user.getPasswordRecoveryRequest().setInitiator(initiator);
		
		userService.update(user);
		
		notificationService.sendUserPasswordRecoveryRequest(user);
		
		switch (type) {
		case CREATION:
			historyLogService.log(HistoryEventType.PASSWORD_CREATION_REQUEST, user, HistoryLogAdditionalInformationBean.empty());
			break;
		case RESET:
			historyLogService.log(HistoryEventType.PASSWORD_RESET_REQUEST, user, HistoryLogAdditionalInformationBean.empty());
			break;
		default:
			break;
		}
	}

	@Override
	public boolean isPasswordExpired(User user) {
		if (user == null
				|| user.getPasswordInformation().getLastUpdateDate() == null
				|| !getOptions(user).isPasswordExpirationEnabled()) {
			return false;
		}
		
		Date expirationDate = DateUtils.addDays(user.getPasswordInformation().getLastUpdateDate(), propertyService.get(PASSWORD_EXPIRATION_DAYS));
		Date now = new Date();
		
		return now.after(expirationDate);
	}

	@Override
	public boolean isPasswordRecoveryRequestExpired(User user) {
		if (user == null
				|| user.getPasswordRecoveryRequest().getToken() == null
				|| user.getPasswordRecoveryRequest().getCreationDate() == null) {
			return true;
		}
		
		Date expirationDate = DateUtils.addMinutes(user.getPasswordRecoveryRequest().getCreationDate(), propertyService.get(PASSWORD_RECOVERY_REQUEST_EXPIRATION_MINUTES));
		Date now = new Date();
		
		return now.after(expirationDate);
	}

	@Override
	public void updatePassword(User user, String password) throws ServiceException, SecurityServiceException {
		updatePassword(user, password, user);
	}

	@Override
	public void updatePassword(User user, String password, User author) throws ServiceException, SecurityServiceException {
		if (user == null || !StringUtils.hasText(password)) {
			return;
		}
		
		userService.setPasswords(user, password);
		user.getPasswordInformation().setLastUpdateDate(new Date());
		
		if (getOptions(user).isPasswordHistoryEnabled()) {
			EvictingQueue<String> historyQueue = EvictingQueue.create(propertyService.get(PASSWORD_HISTORY_COUNT));
			
			for (String oldPassword : user.getPasswordInformation().getHistory()) {
				historyQueue.offer(oldPassword);
			}
			historyQueue.offer(user.getPasswordHash());
			
			user.getPasswordInformation().setHistory(Lists.newArrayList(historyQueue));
		}
		
		user.getPasswordRecoveryRequest().reset();
		userService.update(user);
		
		historyLogService.log(HistoryEventType.PASSWORD_UPDATE, user, HistoryLogAdditionalInformationBean.empty());
	}

}