UsernamePasswordAuthProvider.java example

Explorer

play-authenticate-master
- code
  - app
    - com
      - feth
        play
        module
        pa
        PlayAuthenticate.java
        Resolver.java
        controllers
        Authenticate.java
        AuthenticateBase.java
        AuthenticateDI.java
        exceptions
        AccessDeniedException.java
        AccessTokenException.java
        AuthException.java
        RedirectUriMismatch.java
        ResolverMissingException.java
        providers
        AuthInfo.java
        AuthProvider.java
        ext
        ExternalAuthProvider.java
        oauth1
        BasicOAuth1AuthUser.java
        OAuth1AuthInfo.java
        OAuth1AuthProvider.java
        OAuth1AuthUser.java
        linkedin
        LinkedinAuthInfo.java
        LinkedinAuthProvider.java
        LinkedinAuthUser.java
        twitter
        TwitterAuthInfo.java
        TwitterAuthProvider.java
        TwitterAuthUser.java
        xing
        XingAuthInfo.java
        XingAuthProvider.java
        XingAuthUser.java
        oauth2
        BasicOAuth2AuthUser.java
        OAuth2AuthInfo.java
        OAuth2AuthProvider.java
        OAuth2AuthUser.java
        eventbrite
        EventBriteAuthInfo.java
        EventBriteAuthProvider.java
        EventBriteAuthUser.java
        facebook
        FacebookAuthInfo.java
        FacebookAuthProvider.java
        FacebookAuthUser.java
        foursquare
        FoursquareAuthInfo.java
        FoursquareAuthProvider.java
        FoursquareAuthUser.java
        github
        GithubAuthInfo.java
        GithubAuthProvider.java
        GithubAuthUser.java
        google
        GoogleAuthInfo.java
        GoogleAuthProvider.java
        GoogleAuthUser.java
        pocket
        PocketAuthInfo.java
        PocketAuthProvider.java
        PocketAuthUser.java
        untappd
        UntappdAuthInfo.java
        UntappdAuthProvider.java
        UntappdAuthUser.java
        vk
        VkAuthInfo.java
        VkAuthProvider.java
        VkAuthUser.java
        openid
        OpenIdAuthProvider.java
        OpenIdAuthUser.java
        exceptions
        NoOpenIdAuthException.java
        OpenIdConnectException.java
        password
        DefaultUsernamePasswordAuthUser.java
        SessionUsernamePasswordAuthUser.java
        UsernamePasswordAuthProvider.java
        UsernamePasswordAuthUser.java
        wwwauth
        WWWAuthenticateProvider.java
        basic
        BasicAuthProvider.java
        negotiate
        SpnegoAuthProvider.java
        SpnegoAuthUser.java
        service
        AbstractUserService.java
        UserService.java
        user
        AuthUser.java
        AuthUserIdentity.java
        BasicIdentity.java
        EducationsIdentity.java
        EmailIdentity.java
        EmploymentsIdentity.java
        ExtendedIdentity.java
        FirstLastNameIdentity.java
        LocaleIdentity.java
        NameIdentity.java
        PicturedIdentity.java
        ProfiledIdentity.java
        SessionAuthUser.java
- samples
  - java
    - play-authenticate-simple-oauth
      - app
        controllers
        Application.java
        Restricted.java
        Secured.java
        models
        AppModel.java
        LinkedAccount.java
        User.java
        module
        SimpleOAuthModule.java
        service
        MyResolver.java
        MyUserService.java
        UserService.java
    - play-authenticate-usage
      - app
        controllers
        Account.java
        Application.java
        Signup.java
        models
        AppModel.java
        LinkedAccount.java
        SecurityRole.java
        TokenAction.java
        User.java
        UserPermission.java
        module
        MyModule.java
        providers
        MyLoginUsernamePasswordAuthUser.java
        MyStupidBasicAuthProvider.java
        MyUsernamePasswordAuthProvider.java
        MyUsernamePasswordAuthUser.java
        security
        MyCustomDeadboltHook.java
        MyDeadboltHandler.java
        MyHandlerCache.java
        service
        DataInitializer.java
        MyResolver.java
        MyUserService.java
        UserProvider.java
      - test
        test
        EventbriteOAuth2Test.java
        FacebookOAuth2PopupTest.java
        FacebookOAuth2Test.java
        GoogleOAuth2Base.java
        GoogleOAuth2Test.java
        OAuth2Test.java
- test-app
  - app
    - auth
      - TestResolver.java
    - controllers
    - module
      - TestModule.java
    - providers
      - TestUsernamePasswordAuthProvider.java
    - service
      - TestUserService.java
  - test
    - JavaControllerTest.java

package com.feth.play.module.pa.providers.password;

import akka.actor.Cancellable;

import com.feth.play.module.mail.IMailer;
import com.feth.play.module.mail.Mailer;
import com.feth.play.module.mail.Mailer.Mail;
import com.feth.play.module.mail.Mailer.Mail.Body;
import com.feth.play.module.mail.Mailer.MailerFactory;
import com.feth.play.module.pa.PlayAuthenticate;
import com.feth.play.module.pa.exceptions.AuthException;
import com.feth.play.module.pa.providers.AuthProvider;
import com.feth.play.module.pa.user.AuthUser;
import com.feth.play.module.pa.user.NameIdentity;

import play.data.Form;
import play.inject.ApplicationLifecycle;
import play.mvc.Call;
import play.mvc.Http;
import play.mvc.Http.Context;
import play.mvc.Result;

import javax.inject.Inject;
import java.util.Arrays;
import java.util.List;

public abstract class UsernamePasswordAuthProvider<R, UL extends UsernamePasswordAuthUser, US extends UsernamePasswordAuthUser, L extends UsernamePasswordAuthProvider.UsernamePassword, S extends UsernamePasswordAuthProvider.UsernamePassword>
		extends AuthProvider {

	public static final String PROVIDER_KEY = "password";

	protected static final String SETTING_KEY_MAIL = "mail";

	private static final String SETTING_KEY_MAIL_FROM_EMAIL = Mailer.SettingKeys.FROM_EMAIL;

	private static final String SETTING_KEY_MAIL_DELAY = Mailer.SettingKeys.DELAY;

	private static final String SETTING_KEY_MAIL_FROM = Mailer.SettingKeys.FROM;

	@Override
	protected List<String> neededSettingKeys() {
		return Arrays.asList(SETTING_KEY_MAIL + "." + SETTING_KEY_MAIL_DELAY,
				SETTING_KEY_MAIL + "." + SETTING_KEY_MAIL_FROM + "."
						+ SETTING_KEY_MAIL_FROM_EMAIL);
	}

	protected IMailer mailer;
	protected MailerFactory mailerFactory;

	private enum Case {
		SIGNUP, LOGIN
	}

	protected enum SignupResult {
		USER_EXISTS, USER_CREATED_UNVERIFIED, USER_CREATED, USER_EXISTS_UNVERIFIED
	}

	protected enum LoginResult {
		USER_UNVERIFIED, USER_LOGGED_IN, NOT_FOUND, WRONG_PASSWORD
	}

	public static interface UsernamePassword {

		public String getEmail();

		public String getPassword();
	}

	@Inject
	public UsernamePasswordAuthProvider(final PlayAuthenticate auth, final ApplicationLifecycle lifecycle, final MailerFactory mailerFactory) {
		super(auth, lifecycle);
		this.mailerFactory = mailerFactory;
		mailer = mailerFactory.create(getConfiguration().getConfig(
				SETTING_KEY_MAIL));
	}

	@Override
	protected void onStart() {
		super.onStart();
	}

	@Override
	public String getKey() {
		return PROVIDER_KEY;
	}

	@Override
	public Object authenticate(final Context context, final Object payload)
			throws AuthException {

		if (payload == Case.SIGNUP) {
			final S signup = getSignup(context);
			final US authUser = buildSignupAuthUser(signup, context);
			final SignupResult r = signupUser(authUser);

			switch (r) {
			case USER_EXISTS:
				// The user exists already
				return userExists(authUser).url();
			case USER_EXISTS_UNVERIFIED:
			case USER_CREATED_UNVERIFIED:
				// User got created as unverified
				// Send validation email
				sendVerifyEmailMailing(context, authUser);
				return userUnverified(authUser).url();
			case USER_CREATED:
				// continue to login...
				return transformAuthUser(authUser, context);
			default:
				throw new AuthException("Something in signup went wrong");
			}
		} else if (payload == Case.LOGIN) {
			final L login = getLogin(context);
			final UL authUser = buildLoginAuthUser(login, context);
			final LoginResult r = loginUser(authUser);
			switch (r) {
			case USER_UNVERIFIED:
				// The email of the user is not verified, yet - we won't allow
				// him to log in
				return userUnverified(authUser).url();
			case USER_LOGGED_IN:
				// The user exists and the given password was correct
				return authUser;
			case WRONG_PASSWORD:
				// don't expose this - it might harm users privacy if anyone
				// knows they signed up for our service
			case NOT_FOUND:
				// forward to login page
				return onLoginUserNotFound(context);
			default:
				throw new AuthException("Something in login went wrong");
			}
		} else {
			return this.auth.getResolver().login().url();
		}
	}

	protected String onLoginUserNotFound(Context context) {
		return this.auth.getResolver().login().url();
	}

	public Result handleLogin(final Context ctx) {
		return this.auth.handleAuthentication(PROVIDER_KEY, ctx,
				Case.LOGIN);
	}

	@Override
	public AuthUser getSessionAuthUser(final String id, final long expires) {
		return new SessionUsernamePasswordAuthUser(getKey(), id, expires);
	}

	public Result handleSignup(final Context ctx) {
		return this.auth.handleAuthentication(PROVIDER_KEY, ctx,
				Case.SIGNUP);
	}

	/**
	 * You might overwrite this to provide your own recipient format
	 * implementation,
	 * however the default should be fine for most cases
	 *
	 * @param user
	 * @return
	 */
	protected String getEmailName(final US user) {
		String name = null;
		if (user instanceof NameIdentity) {
			name = ((NameIdentity) user).getName();
		}

		return getEmailName(user.getEmail(), name);
	}

	protected String getEmailName(final String email, final String name) {
		return Mailer.getEmailName(email, name);
	}

	protected abstract R generateVerificationRecord(final US user);

	protected void sendVerifyEmailMailing(final Context ctx, final US user) {
		final String subject = getVerifyEmailMailingSubject(user, ctx);
		final R record = generateVerificationRecord(user);
		final Body body = getVerifyEmailMailingBody(record, user, ctx);
		sendMail(subject, body, getEmailName(user));
	}

	/**
	 * Called to send mails. You might want to override this in order to
	 * customize mail sending e.g. by using a different mailer service
	 * implementation.
	 *
	 * @param subject
	 *            The mail's subject.
	 * @param body
	 *            The mail's body.
	 * @param recipient
	 *            The (formatted) recipient.
	 * @return The {@link akka.actor.Cancellable} that can be used to cancel the
	 *         action.
	 */
	protected Cancellable sendMail(final String subject, final Body body,
			final String recipient) {
		return sendMail(new Mail(subject, body, recipient));
	}

	/**
	 * Send a pre-assembled mail.
	 *
	 * @param mail
	 *            The mail to be sent.
	 * @return The {@link akka.actor.Cancellable} that can be used to cancel the
	 *         action.
	 */
	protected Cancellable sendMail(final Mail mail) {
		return mailer.sendMail(mail);
	}

	@Override
	public boolean isExternal() {
		return false;
	}

	protected abstract String getVerifyEmailMailingSubject(final US user,
			final Context ctx);

	protected abstract Body getVerifyEmailMailingBody(
			final R verificationRecord, final US user, final Context ctx);

	protected abstract UL buildLoginAuthUser(final L login, final Context ctx);

	/**
	 * This gets called when the user shall be logged in directly after signing up
	 *
	 * @param authUser
	 * @param context
	 * @return
	 */
	protected abstract UL transformAuthUser(final US authUser, final Context context);

	protected abstract US buildSignupAuthUser(final S signup, final Context ctx);

	protected abstract LoginResult loginUser(final UL authUser);

	protected abstract SignupResult signupUser(final US user);

	protected abstract S getSignup(final Context ctx);

	protected abstract L getLogin(final Context ctx);

	protected abstract Call userExists(final UsernamePasswordAuthUser authUser);

	protected abstract Call userUnverified(
			final UsernamePasswordAuthUser authUser);

}