UserResource.java example

Explorer

kontempl-master
- src
  - main
    - java
      - net
        pechorina
        kontempl
        Application.java
        config
        AppConfig.java
        CacheConfig.java
        MailConfig.java
        PersistenceConfig.java
        SecurityConfig.java
        WebConfig.java
        data
        AuthToken.java
        Credential.java
        GenericTree.java
        GenericTreeNode.java
        OptiUserDetails.java
        PageNode.java
        PageTree.java
        ResultPage.java
        TokenTransfer.java
        User.java
        exceptions
        BadImageException.java
        PageNotFoundException.java
        SiteNotFoundException.java
        UnauthorizedException.java
        filters
        AuthenticationTokenProcessingFilter.java
        CommonDataInterceptor.java
        HeaderInterceptor.java
        LoggingInterceptor.java
        rest
        AuthTokensResource.java
        DocFileResource.java
        EmbedImagesResource.java
        PageImagesResource.java
        PagePropertyResource.java
        PageResource.java
        PageTreeResource.java
        PrerenderResource.java
        RobotsController.java
        SiteBrowseResource.java
        SiteResource.java
        SitemapResource.java
        UserAccountsResource.java
        UserCredentialsResource.java
        UserResource.java
        service
        CustomUserDetailsService.java
        DocFileService.java
        ImageFileService.java
        ImageThumbService.java
        LocalAuthProvider.java
        MailService.java
        PageService.java
        PageTreeService.java
        ProfilingService.java
        SiteService.java
        SitemapService.java
        UnauthorizedEntryPoint.java
        UserService.java
        utils
        FileUtils.java
        ImageUtils.java
        StringUtils.java
        TextContentUtils.java
        view
        forms
        CredentialPasswordForm.java
        UserFormNew.java
  - test
    - java
      - net
        pechorina
        kontempl
        PersistanceTests.java
        data
        SiteTest.java

package net.pechorina.kontempl.rest;

import net.pechorina.kontempl.data.*;
import net.pechorina.kontempl.exceptions.UnauthorizedException;
import net.pechorina.kontempl.service.UserService;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.core.env.Environment;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.bind.annotation.RestController;

import javax.servlet.http.HttpServletRequest;

@RestController
@RequestMapping(value = "/api/user")
public class UserResource {
	static final Logger logger = LoggerFactory.getLogger(UserResource.class);
	
	@Autowired
	private UserService userService;
	
	@Autowired
	private Environment env;
	
	@Autowired
	@Qualifier("authenticationManager")
	private AuthenticationManager authManager;
	
	@RequestMapping(method = RequestMethod.GET) 
	public User getUser() {
		Authentication authentication = SecurityContextHolder.getContext().getAuthentication();

		User u = null;

		if (authentication != null && authentication.isAuthenticated()) {
			Object principal = authentication.getPrincipal();
			if (principal instanceof String && principal.equals("anonymousUser")) {
				logger.debug("Found unauthenticated request");
				throw new UnauthorizedException();	
			}
			
			if (principal instanceof UserDetails) {
				UserDetails userDetails = (UserDetails) principal;
	        	OptiUserDetails s = (OptiUserDetails)userDetails;
	        	u = s.getUser();
				logger.debug("Found authenticated user: " + u);
			}
		}
		
		return u;
	}
	
	@RequestMapping(method = RequestMethod.POST, value = "/authenticate")
	public TokenTransfer authenicate(@RequestBody LoginForm form,
			HttpServletRequest request) {
		logger.debug("username/password: " + form.toString());
		UsernamePasswordAuthenticationToken authenticationToken =
				new UsernamePasswordAuthenticationToken(form.getUsername(), form.getPassword());

		Authentication authentication = this.authManager.authenticate(authenticationToken);
		SecurityContextHolder.getContext().setAuthentication(authentication);
		
		String ip = request.getRemoteAddr();
		String ua = request.getHeader("User-Agent");
		User u = getUserForAuth(authentication); 
		AuthToken authToken = userService.createNewAuthToken(u, ip, ua);
		
		logger.debug("New authToken: " + authToken);
		logger.debug("AUTH OK");

		return new TokenTransfer( authToken.getUuid() );
	}
	
	private User getUserForAuth(Authentication a){
		User user = null;
		if (a != null && a.isAuthenticated()) {
	        Object principal = a.getPrincipal();
	        if (principal instanceof UserDetails) {
	        	UserDetails userDetails = (UserDetails) principal;
	        	OptiUserDetails s = (OptiUserDetails)userDetails;
	        	user = s.getUser();
	        }
	    }
	    return user;
	}
}