/**
* Global Sensor Networks (GSN) Source Code
* Copyright (c) 2006-2016, Ecole Polytechnique Federale de Lausanne (EPFL)
*
* This file is part of GSN.
*
* GSN is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* GSN is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with GSN. If not, see <http://www.gnu.org/licenses/>.
*
* File: app/providers/gsn/GSNUsernamePasswordAuthProvider.java
*
* @author Julien Eberle
*
*/
package providers.gsn;
import com.feth.play.module.mail.Mailer.Mail.Body;
import com.feth.play.module.pa.PlayAuthenticate;
import com.feth.play.module.pa.providers.password.UsernamePasswordAuthProvider;
import com.feth.play.module.pa.providers.password.UsernamePasswordAuthUser;
import com.google.inject.Inject;
import models.gsn.auth.LinkedAccount;
import models.gsn.auth.TokenAction;
import models.gsn.auth.TokenAction.Type;
import models.gsn.auth.User;
import play.Application;
import play.Logger;
import play.data.Form;
import play.data.validation.Constraints.Email;
import play.data.validation.Constraints.MinLength;
import play.data.validation.Constraints.Required;
import play.i18n.Lang;
import play.i18n.Messages;
import play.mvc.Call;
import play.mvc.Http.Context;
import java.lang.reflect.InvocationTargetException;
import java.lang.reflect.Method;
import java.util.ArrayList;
import java.util.List;
import java.util.UUID;
import static play.data.Form.form;
public class GSNUsernamePasswordAuthProvider
extends
UsernamePasswordAuthProvider<String, GSNLoginUsernamePasswordAuthUser, GSNUsernamePasswordAuthUser, GSNUsernamePasswordAuthProvider.GSNLogin, GSNUsernamePasswordAuthProvider.GSNSignup> {
private static final String SETTING_KEY_VERIFICATION_LINK_SECURE = SETTING_KEY_MAIL
+ "." + "verificationLink.secure";
private static final String SETTING_KEY_PASSWORD_RESET_LINK_SECURE = SETTING_KEY_MAIL
+ "." + "passwordResetLink.secure";
private static final String SETTING_KEY_LINK_LOGIN_AFTER_PASSWORD_RESET = "loginAfterPasswordReset";
private static final String EMAIL_TEMPLATE_FALLBACK_LANGUAGE = "en";
@Override
protected List<String> neededSettingKeys() {
final List<String> needed = new ArrayList<String>(
super.neededSettingKeys());
needed.add(SETTING_KEY_VERIFICATION_LINK_SECURE);
needed.add(SETTING_KEY_PASSWORD_RESET_LINK_SECURE);
needed.add(SETTING_KEY_LINK_LOGIN_AFTER_PASSWORD_RESET);
return needed;
}
public static GSNUsernamePasswordAuthProvider getProvider() {
return (GSNUsernamePasswordAuthProvider) PlayAuthenticate
.getProvider(UsernamePasswordAuthProvider.PROVIDER_KEY);
}
public static class GSNIdentity {
public GSNIdentity() {
}
public GSNIdentity(final String email) {
this.email = email;
}
@Required
@Email
public String email;
}
public static class GSNLogin extends GSNIdentity
implements
com.feth.play.module.pa.providers.password.UsernamePasswordAuthProvider.UsernamePassword {
@Required
@MinLength(5)
public String password;
@Override
public String getEmail() {
return email;
}
@Override
public String getPassword() {
return password;
}
}
public static class GSNSignup extends GSNLogin {
@Required
@MinLength(5)
public String repeatPassword;
@Required
public String name;
@Required
public String firstname;
@Required
public String lastname;
public String validate() {
if (password == null || !password.equals(repeatPassword)) {
return Messages
.get("playauthenticate.password.signup.error.passwords_not_same");
}
return null;
}
}
public static final Form<GSNSignup> SIGNUP_FORM = form(GSNSignup.class);
public static final Form<GSNLogin> LOGIN_FORM = form(GSNLogin.class);
@Inject
public GSNUsernamePasswordAuthProvider(Application app) {
super(app);
}
protected Form<GSNSignup> getSignupForm() {
return SIGNUP_FORM;
}
protected Form<GSNLogin> getLoginForm() {
return LOGIN_FORM;
}
@Override
protected com.feth.play.module.pa.providers.password.UsernamePasswordAuthProvider.SignupResult signupUser(final GSNUsernamePasswordAuthUser user) {
final User u = User.findByUsernamePasswordIdentity(user);
if (u != null) {
if (u.emailValidated) {
// This user exists, has its email validated and is active
return SignupResult.USER_EXISTS;
} else {
// this user exists, is active but has not yet validated its
// email
return SignupResult.USER_EXISTS_UNVERIFIED;
}
}
// The user either does not exist or is inactive - create a new one
@SuppressWarnings("unused")
final User newUser = User.create(user);
// Usually the email should be verified before allowing login, however
// if you return
// return SignupResult.USER_CREATED;
// then the user gets logged in directly
return SignupResult.USER_CREATED_UNVERIFIED;
}
@Override
protected com.feth.play.module.pa.providers.password.UsernamePasswordAuthProvider.LoginResult loginUser(
final GSNLoginUsernamePasswordAuthUser authUser) {
final User u = User.findByUsernamePasswordIdentity(authUser);
if (u == null) {
return LoginResult.NOT_FOUND;
} else {
if (!u.emailValidated) {
return LoginResult.USER_UNVERIFIED;
} else {
for (final LinkedAccount acc : u.linkedAccounts) {
if (getKey().equals(acc.providerKey)) {
if (authUser.checkPassword(acc.providerUserId,
authUser.getPassword())) {
// Password was correct
return LoginResult.USER_LOGGED_IN;
} else {
// if you don't return here,
// you would allow the user to have
// multiple passwords defined
// usually we don't want this
return LoginResult.WRONG_PASSWORD;
}
}
}
return LoginResult.WRONG_PASSWORD;
}
}
}
@Override
protected Call userExists(final UsernamePasswordAuthUser authUser) {
return controllers.gsn.auth.routes.Signup.exists();
}
@Override
protected Call userUnverified(final UsernamePasswordAuthUser authUser) {
return controllers.gsn.auth.routes.Signup.unverified();
}
@Override
protected GSNUsernamePasswordAuthUser buildSignupAuthUser(
final GSNSignup signup, final Context ctx) {
return new GSNUsernamePasswordAuthUser(signup);
}
@Override
protected GSNLoginUsernamePasswordAuthUser buildLoginAuthUser(
final GSNLogin login, final Context ctx) {
return new GSNLoginUsernamePasswordAuthUser(login.getPassword(),
login.getEmail());
}
@Override
protected GSNLoginUsernamePasswordAuthUser transformAuthUser(final GSNUsernamePasswordAuthUser authUser, final Context context) {
return new GSNLoginUsernamePasswordAuthUser(authUser.getEmail());
}
@Override
protected String getVerifyEmailMailingSubject(
final GSNUsernamePasswordAuthUser user, final Context ctx) {
return Messages.get("playauthenticate.password.verify_signup.subject");
}
@Override
protected String onLoginUserNotFound(final Context context) {
context.flash()
.put(controllers.gsn.auth.LocalAuthController.FLASH_ERROR_KEY,
Messages.get("playauthenticate.password.login.unknown_user_or_pw"));
return super.onLoginUserNotFound(context);
}
@Override
protected Body getVerifyEmailMailingBody(final String token,
final GSNUsernamePasswordAuthUser user, final Context ctx) {
final boolean isSecure = getConfiguration().getBoolean(
SETTING_KEY_VERIFICATION_LINK_SECURE);
final String url = controllers.gsn.auth.routes.Signup.verify(token).absoluteURL(
ctx.request(), isSecure);
final Lang lang = Lang.preferred(ctx.request().acceptLanguages());
final String langCode = lang.code();
final String html = getEmailTemplate(
"views.html.account.signup.email.verify_email", langCode, url,
token, user.getName(), user.getEmail());
final String text = getEmailTemplate(
"views.txt.account.signup.email.verify_email", langCode, url,
token, user.getName(), user.getEmail());
return new Body(text, html);
}
private static String generateToken() {
return UUID.randomUUID().toString();
}
@Override
protected String generateVerificationRecord(
final GSNUsernamePasswordAuthUser user) {
return generateVerificationRecord(User.findByAuthUserIdentity(user));
}
protected String generateVerificationRecord(final User user) {
final String token = generateToken();
// Do database actions, etc.
TokenAction.create(Type.EMAIL_VERIFICATION, token, user);
return token;
}
protected String generatePasswordResetRecord(final User u) {
final String token = generateToken();
TokenAction.create(Type.PASSWORD_RESET, token, u);
return token;
}
protected String getPasswordResetMailingSubject(final User user,
final Context ctx) {
return Messages.get("playauthenticate.password.reset_email.subject");
}
protected Body getPasswordResetMailingBody(final String token,
final User user, final Context ctx) {
final boolean isSecure = getConfiguration().getBoolean(
SETTING_KEY_PASSWORD_RESET_LINK_SECURE);
final String url = controllers.gsn.auth.routes.Signup.resetPassword(token).absoluteURL(
ctx.request(), isSecure);
final Lang lang = Lang.preferred(ctx.request().acceptLanguages());
final String langCode = lang.code();
final String html = getEmailTemplate(
"views.html.account.email.password_reset", langCode, url,
token, user.name, user.email);
final String text = getEmailTemplate(
"views.txt.account.email.password_reset", langCode, url, token,
user.name, user.email);
return new Body(text, html);
}
public void sendPasswordResetMailing(final User user, final Context ctx) {
final String token = generatePasswordResetRecord(user);
final String subject = getPasswordResetMailingSubject(user, ctx);
final Body body = getPasswordResetMailingBody(token, user, ctx);
sendMail(subject, body, getEmailName(user));
}
public boolean isLoginAfterPasswordReset() {
return getConfiguration().getBoolean(
SETTING_KEY_LINK_LOGIN_AFTER_PASSWORD_RESET);
}
protected String getVerifyEmailMailingSubjectAfterSignup(final User user,
final Context ctx) {
return Messages.get("playauthenticate.password.verify_email.subject");
}
protected String getEmailTemplate(final String template,
final String langCode, final String url, final String token,
final String name, final String email) {
Class<?> cls = null;
String ret = null;
try {
cls = Class.forName(template + "_" + langCode);
} catch (ClassNotFoundException e) {
Logger.warn("Template: '"
+ template
+ "_"
+ langCode
+ "' was not found! Trying to use English fallback template instead.");
}
if (cls == null) {
try {
cls = Class.forName(template + "_"
+ EMAIL_TEMPLATE_FALLBACK_LANGUAGE);
} catch (ClassNotFoundException e) {
Logger.error("Fallback template: '" + template + "_"
+ EMAIL_TEMPLATE_FALLBACK_LANGUAGE
+ "' was not found either!");
}
}
if (cls != null) {
Method htmlRender = null;
try {
htmlRender = cls.getMethod("render", String.class,
String.class, String.class, String.class);
ret = htmlRender.invoke(null, url, token, name, email)
.toString();
} catch (NoSuchMethodException e) {
e.printStackTrace();
} catch (IllegalAccessException e) {
e.printStackTrace();
} catch (InvocationTargetException e) {
e.printStackTrace();
}
}
return ret;
}
protected Body getVerifyEmailMailingBodyAfterSignup(final String token,
final User user, final Context ctx) {
final boolean isSecure = getConfiguration().getBoolean(
SETTING_KEY_VERIFICATION_LINK_SECURE);
final String url = controllers.gsn.auth.routes.Signup.verify(token).absoluteURL(
ctx.request(), isSecure);
final Lang lang = Lang.preferred(ctx.request().acceptLanguages());
final String langCode = lang.code();
final String html = getEmailTemplate(
"views.html.account.email.verify_email", langCode, url, token,
user.name, user.email);
final String text = getEmailTemplate(
"views.txt.account.email.verify_email", langCode, url, token,
user.name, user.email);
return new Body(text, html);
}
public void sendVerifyEmailMailingAfterSignup(final User user,
final Context ctx) {
final String subject = getVerifyEmailMailingSubjectAfterSignup(user,
ctx);
final String token = generateVerificationRecord(user);
final Body body = getVerifyEmailMailingBodyAfterSignup(token, user, ctx);
sendMail(subject, body, getEmailName(user));
}
private String getEmailName(final User user) {
return getEmailName(user.email, user.name);
}
}