/*
* Symphony - A modern community (forum/SNS/blog) platform written in Java.
* Copyright (C) 2012-2017, b3log.org & hacpai.com
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
package org.b3log.symphony.processor.advice.validate;
import org.apache.commons.lang.StringUtils;
import org.b3log.latke.Keys;
import org.b3log.latke.ioc.inject.Inject;
import org.b3log.latke.ioc.inject.Named;
import org.b3log.latke.ioc.inject.Singleton;
import org.b3log.latke.logging.Level;
import org.b3log.latke.logging.Logger;
import org.b3log.latke.model.User;
import org.b3log.latke.service.LangPropsService;
import org.b3log.latke.servlet.HTTPRequestContext;
import org.b3log.latke.servlet.advice.BeforeRequestProcessAdvice;
import org.b3log.latke.servlet.advice.RequestProcessAdviceException;
import org.b3log.latke.util.Requests;
import org.b3log.latke.util.Strings;
import org.b3log.symphony.model.*;
import org.b3log.symphony.processor.CaptchaProcessor;
import org.b3log.symphony.service.InvitecodeQueryService;
import org.b3log.symphony.service.OptionQueryService;
import org.b3log.symphony.service.RoleQueryService;
import org.b3log.symphony.service.UserQueryService;
import org.json.JSONObject;
import javax.servlet.http.HttpServletRequest;
import java.util.Map;
/**
* UserRegisterValidation for validate {@link org.b3log.symphony.processor.LoginProcessor} register(Type POST) method.
*
* @author <a href="mailto:wmainlove@gmail.com">Love Yao</a>
* @author <a href="http://88250.b3log.org">Liang Ding</a>
* @version 1.5.2.11, Jan 10, 2017
* @since 0.2.0
*/
@Named
@Singleton
public class UserRegisterValidation extends BeforeRequestProcessAdvice {
/**
* Max user name length.
*/
public static final int MAX_USER_NAME_LENGTH = 20;
/**
* Min user name length.
*/
public static final int MIN_USER_NAME_LENGTH = 1;
/**
* Logger.
*/
private static final Logger LOGGER = Logger.getLogger(UserRegisterValidation.class);
/**
* Max password length.
* <p>
* MD5 32
* </p>
*/
private static final int MAX_PWD_LENGTH = 32;
/**
* Min password length.
*/
private static final int MIN_PWD_LENGTH = 1;
/**
* Captcha length.
*/
private static final int CAPTCHA_LENGTH = 4;
/**
* Invitecode length.
*/
private static final int INVITECODE_LENGHT = 16;
/**
* Language service.
*/
@Inject
private LangPropsService langPropsService;
/**
* Option query service.
*/
@Inject
private OptionQueryService optionQueryService;
/**
* Invitecode query service.
*/
@Inject
private InvitecodeQueryService invitecodeQueryService;
/**
* User query service.
*/
@Inject
private UserQueryService userQueryService;
/**
* Role query servicce.
*/
@Inject
private RoleQueryService roleQueryService;
/**
* Checks whether the specified name is invalid.
* <p>
* A valid user name:
* <ul>
* <li>length [1, 20]</li>
* <li>content {a-z, A-Z, 0-9}</li>
* </ul>
* </p>
*
* @param name the specified name
* @return {@code true} if it is invalid, returns {@code false} otherwise
*/
public static boolean invalidUserName(final String name) {
if (StringUtils.isBlank(name)) {
return true;
}
if (UserExt.isReservedUserName(name)) {
return true;
}
final int length = name.length();
if (length < MIN_USER_NAME_LENGTH || length > MAX_USER_NAME_LENGTH) {
return true;
}
char c;
for (int i = 0; i < length; i++) {
c = name.charAt(i);
if (('a' <= c && c <= 'z') || ('A' <= c && c <= 'Z') || '0' <= c && c <= '9') {
continue;
}
return true;
}
return false;
}
/**
* Checks password, length [1, 16].
*
* @param password the specific password
* @return {@code true} if it is invalid, returns {@code false} otherwise
*/
public static boolean invalidUserPassword(final String password) {
return password.length() < MIN_PWD_LENGTH || password.length() > MAX_PWD_LENGTH;
}
/**
* Checks whether the specified captcha is invalid.
*
* @param captcha the specified captcha
* @param request the specified request
* @return {@code true} if it is invalid, returns {@code false} otherwise
*/
public static boolean invalidCaptcha(final String captcha, final HttpServletRequest request) {
if (Strings.isEmptyOrNull(captcha) || captcha.length() != CAPTCHA_LENGTH) {
return true;
}
boolean ret = !CaptchaProcessor.CAPTCHAS.contains(captcha);
if (!ret) {
CaptchaProcessor.CAPTCHAS.remove(captcha);
}
return ret;
}
@Override
public void doAdvice(final HTTPRequestContext context, final Map<String, Object> args) throws RequestProcessAdviceException {
final HttpServletRequest request = context.getRequest();
JSONObject requestJSONObject;
try {
requestJSONObject = Requests.parseRequestJSONObject(request, context.getResponse());
request.setAttribute(Keys.REQUEST, requestJSONObject);
} catch (final Exception e) {
throw new RequestProcessAdviceException(new JSONObject().put(Keys.MSG, e.getMessage()));
}
final String referral = requestJSONObject.optString(Common.REFERRAL);
// check if admin allow to register
final JSONObject option = optionQueryService.getOption(Option.ID_C_MISC_ALLOW_REGISTER);
if ("1".equals(option.optString(Option.OPTION_VALUE))) {
checkField(true, "registerFailLabel", "notAllowRegisterLabel");
}
boolean useInvitationLink = false;
if (!UserRegisterValidation.invalidUserName(referral)) {
try {
final JSONObject referralUser = userQueryService.getUserByName(referral);
if (null != referralUser) {
final Map<String, JSONObject> permissions =
roleQueryService.getUserPermissionsGrantMap(referralUser.optString(Keys.OBJECT_ID));
final JSONObject useILPermission =
permissions.get(Permission.PERMISSION_ID_C_COMMON_USE_INVITATION_LINK);
useInvitationLink = useILPermission.optBoolean(Permission.PERMISSION_T_GRANT);
}
} catch (final Exception e) {
LOGGER.log(Level.WARN, "Query user [name=" + referral + "] failed", e);
}
}
// invitecode register
if (!useInvitationLink && "2".equals(option.optString(Option.OPTION_VALUE))) {
final String invitecode = requestJSONObject.optString(Invitecode.INVITECODE);
if (Strings.isEmptyOrNull(invitecode) || INVITECODE_LENGHT != invitecode.length()) {
checkField(true, "registerFailLabel", "invalidInvitecodeLabel");
}
final JSONObject ic = invitecodeQueryService.getInvitecode(invitecode);
if (null == ic) {
checkField(true, "registerFailLabel", "invalidInvitecodeLabel");
}
if (Invitecode.STATUS_C_UNUSED != ic.optInt(Invitecode.STATUS)) {
checkField(true, "registerFailLabel", "usedInvitecodeLabel");
}
}
// open register
if (useInvitationLink || "0".equals(option.optString(Option.OPTION_VALUE))) {
final String captcha = requestJSONObject.optString(CaptchaProcessor.CAPTCHA);
checkField(invalidCaptcha(captcha, request), "registerFailLabel", "captchaErrorLabel");
}
final String name = requestJSONObject.optString(User.USER_NAME);
final String email = requestJSONObject.optString(User.USER_EMAIL);
final int appRole = requestJSONObject.optInt(UserExt.USER_APP_ROLE);
//final String password = requestJSONObject.optString(User.USER_PASSWORD);
if (UserExt.isReservedUserName(name)) {
throw new RequestProcessAdviceException(new JSONObject().put(Keys.MSG, langPropsService.get("registerFailLabel")
+ " - " + langPropsService.get("reservedUserNameLabel")));
}
checkField(invalidUserName(name), "registerFailLabel", "invalidUserNameLabel");
checkField(!Strings.isEmail(email), "registerFailLabel", "invalidEmailLabel");
checkField(UserExt.USER_APP_ROLE_C_HACKER != appRole
&& UserExt.USER_APP_ROLE_C_PAINTER != appRole, "registerFailLabel", "invalidAppRoleLabel");
//checkField(invalidUserPassword(password), "registerFailLabel", "invalidPasswordLabel");
}
/**
* Checks field.
*
* @param invalid the specified invalid flag
* @param failLabel the specified fail label
* @param fieldLabel the specified field label
* @throws RequestProcessAdviceException request process advice exception
*/
private void checkField(final boolean invalid, final String failLabel, final String fieldLabel)
throws RequestProcessAdviceException {
if (invalid) {
throw new RequestProcessAdviceException(new JSONObject().put(Keys.MSG, langPropsService.get(failLabel)
+ " - " + langPropsService.get(fieldLabel)));
}
}
}