2017-10-20 14:31:39 +02:00
package eu.dnetlib.openaire.usermanagement ;
2018-04-12 12:12:32 +02:00
import com.unboundid.ldap.sdk.LDAPException ;
2017-10-25 16:15:07 +02:00
import eu.dnetlib.openaire.user.utils.EmailSender ;
2018-05-09 15:57:54 +02:00
import eu.dnetlib.openaire.user.utils.InputValidator ;
2018-04-06 00:34:36 +02:00
import org.apache.commons.validator.routines.EmailValidator ;
2017-10-20 14:31:39 +02:00
import eu.dnetlib.openaire.user.utils.LDAPActions ;
import eu.dnetlib.openaire.user.utils.VerificationActions ;
2018-04-12 12:12:32 +02:00
import eu.dnetlib.openaire.user.utils.VerifyRecaptcha ;
2018-03-09 17:11:28 +01:00
import eu.dnetlib.openaire.usermanagement.utils.UrlConstructor ;
2017-10-20 14:31:39 +02:00
import org.apache.log4j.Logger ;
import org.springframework.beans.factory.annotation.Autowired ;
2018-04-12 12:12:32 +02:00
import org.springframework.beans.factory.annotation.Value ;
2017-10-20 14:31:39 +02:00
import org.springframework.web.context.support.SpringBeanAutowiringSupport ;
2018-04-12 12:12:32 +02:00
import javax.mail.MessagingException ;
import javax.mail.internet.AddressException ;
import javax.mail.internet.InternetAddress ;
2017-10-20 14:31:39 +02:00
import javax.servlet.ServletConfig ;
import javax.servlet.ServletException ;
import javax.servlet.http.HttpServlet ;
import javax.servlet.http.HttpServletRequest ;
import javax.servlet.http.HttpServletResponse ;
import java.io.IOException ;
import java.io.PrintWriter ;
2017-10-25 16:15:07 +02:00
import java.sql.Timestamp ;
import java.util.Date ;
import java.util.UUID ;
2017-10-20 14:31:39 +02:00
/ * *
* Created by sofia on 20 / 10 / 2017 .
* /
public class RegisterServlet extends HttpServlet {
@Autowired
private VerificationActions verificationActions ;
2017-10-25 16:15:07 +02:00
@Autowired
private EmailSender emailSender ;
2017-10-20 14:31:39 +02:00
@Autowired
private LDAPActions ldapActions ;
2018-04-12 12:12:32 +02:00
@Value ( " ${google.recaptcha.secret} " )
private String secret ;
@Value ( " ${google.recaptcha.key} " )
private String sitekey ;
2017-10-20 14:31:39 +02:00
2018-04-12 12:12:32 +02:00
public void init ( ServletConfig config ) throws ServletException {
super . init ( config ) ;
SpringBeanAutowiringSupport . processInjectionBasedOnServletContext ( this ,
config . getServletContext ( ) ) ;
config . getServletContext ( ) . setAttribute ( " sitekey " , sitekey ) ;
}
private static Logger logger = Logger . getLogger ( RegisterServlet . class ) ;
@Override
2017-10-20 14:31:39 +02:00
protected void doPost ( HttpServletRequest request , HttpServletResponse response ) throws IOException {
response . setContentType ( " text/html " ) ;
PrintWriter printWriter = response . getWriter ( ) ;
2017-11-07 11:56:43 +01:00
String firstName = request . getParameter ( " first_name " ) . trim ( ) ;
String lastName = request . getParameter ( " last_name " ) . trim ( ) ;
String organization = request . getParameter ( " organization " ) . trim ( ) ;
String username = request . getParameter ( " username " ) . trim ( ) ;
String email = request . getParameter ( " email " ) . trim ( ) ;
String confirmEmail = request . getParameter ( " email_conf " ) . trim ( ) ;
2017-11-01 11:58:15 +01:00
String password = request . getParameter ( " password " ) ;
String confirmPassword = request . getParameter ( " password_conf " ) ;
2018-04-12 15:31:04 +02:00
2018-04-12 12:12:32 +02:00
String gRecaptchaResponse = request . getParameter ( " g-recaptcha-response " ) ;
2018-04-12 15:31:04 +02:00
boolean isRecaptchaVerified = VerifyRecaptcha . verify ( gRecaptchaResponse , secret ) ;
2018-04-12 12:12:32 +02:00
//System.out.println("RESPONSE " + gRecaptchaResponse);
2017-10-20 14:31:39 +02:00
if ( organization = = null ) {
logger . info ( " organization is null " ) ;
}
2018-04-12 12:12:32 +02:00
if ( firstName ! = null & & lastName ! = null & & username ! = null & & email ! = null & &
email . equals ( confirmEmail ) & & password ! = null & & password . equals ( confirmPassword ) & &
2018-05-09 15:57:54 +02:00
EmailValidator . getInstance ( ) . isValid ( email ) & & InputValidator . isValidPassword ( password ) & & isRecaptchaVerified ) {
2017-10-25 16:15:07 +02:00
2018-05-09 15:57:54 +02:00
try {
if ( InputValidator . isValidUsername ( username ) & & ! ldapActions . usernameExists ( username ) & & ! ldapActions . emailExists ( email )
2018-04-06 00:34:36 +02:00
& & ! ldapActions . isZombieUsersEmail ( email ) & & ! ldapActions . isZombieUsersUsername ( username ) & & EmailValidator . getInstance ( ) . isValid ( email ) ) {
2017-10-30 13:33:02 +01:00
2017-11-06 14:51:36 +01:00
ldapActions . createZombieUser ( username , email , firstName , lastName , organization , password ) ;
2017-11-07 11:56:43 +01:00
logger . info ( " Zombie user successfully created " ) ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:10:30 +02:00
UUID verificationCode = UUID . randomUUID ( ) ;
Date creationDate = new Date ( ) ;
2018-04-12 16:28:18 +02:00
String vCode = verificationCode . toString ( ) ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:10:30 +02:00
Timestamp timestamp = new Timestamp ( creationDate . getTime ( ) ) ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:10:30 +02:00
if ( ! verificationActions . verificationEntryExists ( username ) ) {
2018-04-12 16:28:18 +02:00
verificationActions . addVerificationEntry ( username , vCode , timestamp ) ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:10:30 +02:00
} else {
2018-04-12 16:28:18 +02:00
verificationActions . updateVerificationEntry ( username , vCode , timestamp ) ;
2017-10-26 15:10:30 +02:00
}
2017-10-25 16:15:07 +02:00
2018-03-09 17:11:28 +01:00
String resultPath = UrlConstructor . getRedirectUrl ( request , " activate.jsp " ) ;
2018-04-12 16:28:18 +02:00
String resultPathWithVCode = UrlConstructor . getVerificationLink ( resultPath , vCode ) ;
2018-03-08 15:41:15 +01:00
2017-11-07 13:21:18 +01:00
String verificationCodeMsg = " <p>Hello " + username + " ,</p> " +
2017-11-07 13:41:53 +01:00
" <p> A request has been made to verify your email and activate your OpenAIRE account. To activate your " +
2017-11-07 13:21:18 +01:00
" account, you will need to submit your username and this activation code in order to verify that the " +
" request was legitimate.</p> " +
" <p> " +
2018-04-12 16:28:18 +02:00
" The activation code is " + vCode +
2017-11-07 13:21:18 +01:00
" </p> " +
2018-04-12 15:45:48 +02:00
" Click the URL below and proceed with activating your password. " +
2018-04-12 16:28:18 +02:00
" <p><a href= " + resultPathWithVCode + " > " + resultPathWithVCode + " </a></p> " +
2017-11-07 13:41:53 +01:00
" <p>Thank you</p> " ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:42:42 +02:00
String verificationCodeSubject = " Activate your OpenAIRE account " ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:10:30 +02:00
emailSender . sendEmail ( email , verificationCodeSubject , verificationCodeMsg ) ;
2017-10-25 16:15:07 +02:00
2017-10-26 15:10:30 +02:00
response . sendRedirect ( " ./activate.jsp " ) ;
2017-10-30 15:34:06 +01:00
2017-10-26 15:10:30 +02:00
} else {
2018-04-12 15:31:04 +02:00
validateUsername ( request , username ) ;
2017-10-30 14:00:20 +01:00
2017-11-08 13:00:59 +01:00
if ( ldapActions . usernameExists ( username ) | | ldapActions . isZombieUsersUsername ( username ) ) {
2017-10-26 15:10:30 +02:00
request . getSession ( ) . setAttribute ( " username_message " , " Username already exists! Choose another one. " ) ;
logger . info ( " Username already exists " ) ;
}
2018-04-06 00:34:36 +02:00
if ( ! EmailValidator . getInstance ( ) . isValid ( email ) ) {
request . getSession ( ) . setAttribute ( " email_message " , " Please enter a valid email. " ) ;
logger . info ( " Invalid email. " ) ;
}
2018-04-12 15:31:04 +02:00
if ( ldapActions . emailExists ( email ) ) {
request . getSession ( ) . setAttribute ( " email_message " , " There is another user with this email. " ) ;
logger . info ( " There is another user with this email " ) ;
}
2017-11-08 13:00:59 +01:00
if ( ldapActions . isZombieUsersEmail ( email ) ) {
request . getSession ( ) . setAttribute ( " email_message " , " You have already registered with this email address! Please check your email to activate your account or contact OpenAIRE <a href= \" https://www.openaire.eu/support/helpdesk \" >helpdesk</a>. " ) ;
logger . info ( " There is another user with this email " ) ;
}
2017-10-30 15:34:06 +01:00
request . getSession ( ) . setAttribute ( " first_name " , firstName ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_first_name_error_display " , " display:none " ) ;
2017-10-30 15:34:06 +01:00
request . getSession ( ) . setAttribute ( " last_name " , lastName ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_last_name_error_display " , " display:none " ) ;
2017-10-30 15:34:06 +01:00
request . getSession ( ) . setAttribute ( " organization " , organization ) ;
request . getSession ( ) . setAttribute ( " username " , username ) ;
request . getSession ( ) . setAttribute ( " email " , email ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_email_error_display " , " display:none " ) ;
2017-10-30 15:34:06 +01:00
request . getSession ( ) . setAttribute ( " email_conf " , confirmEmail ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_email_conf_error_display " , " display:none " ) ;
request . getSession ( ) . setAttribute ( " msg_email_validation_error_display " , " display:none " ) ;
request . getSession ( ) . setAttribute ( " msg_password_error_display " , " display:none " ) ;
request . getSession ( ) . setAttribute ( " msg_pass_conf_error_display " , " display:none " ) ;
request . getSession ( ) . setAttribute ( " msg_invalid_password_display " , " display:none " ) ;
request . getSession ( ) . setAttribute ( " recaptcha_error_display " , " display:none " ) ;
2017-10-30 15:34:06 +01:00
2017-10-26 15:10:30 +02:00
response . sendRedirect ( " ./register.jsp " ) ;
}
2017-10-25 16:15:07 +02:00
2018-04-12 12:12:32 +02:00
} catch ( MessagingException e ) {
logger . error ( " Error in sending email " , e ) ;
request . getSession ( ) . setAttribute ( " message " , " Error sending email " ) ;
2018-05-09 15:57:54 +02:00
response . sendRedirect ( UrlConstructor . getRedirectUrl ( request , " .register.jsp " ) ) ;
2018-04-12 12:12:32 +02:00
//TODO better handling of these exceprions
2018-05-09 15:57:54 +02:00
} catch ( Exception e ) {
2017-10-20 14:31:39 +02:00
logger . error ( " LDAP error in creating user " , e ) ;
2018-03-09 17:11:28 +01:00
response . sendRedirect ( UrlConstructor . getRedirectUrl ( request , " error.jsp " ) ) ;
2017-10-20 14:31:39 +02:00
}
2018-04-12 12:12:32 +02:00
} else {
request . getSession ( ) . setAttribute ( " first_name " , firstName ) ;
request . getSession ( ) . setAttribute ( " last_name " , lastName ) ;
request . getSession ( ) . setAttribute ( " organization " , organization ) ;
request . getSession ( ) . setAttribute ( " username " , username ) ;
request . getSession ( ) . setAttribute ( " email " , email ) ;
request . getSession ( ) . setAttribute ( " email_conf " , confirmEmail ) ;
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . isFilled ( firstName ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No first name " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_first_name_error_display " , " display:block " ) ;
}
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . isFilled ( lastName ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No last name " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_last_name_error_display " , " display:block " ) ;
}
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . isFilled ( username ) ) {
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " username_message " , " Minimum username length 5 characters. " ) ;
2018-04-12 15:31:04 +02:00
logger . info ( " No username " ) ;
2018-04-12 12:12:32 +02:00
} else {
validateUsername ( request , username ) ;
}
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . isFilled ( password ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No valid password " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_password_error_display " , " display:block " ) ;
}
if ( ! EmailValidator . getInstance ( ) . isValid ( email ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No valid e-mail " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_email_validation_error_display " , " display:block " ) ;
}
if ( ! email . equals ( confirmEmail ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No matching e-mails " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_email_conf_error_display " , " display:block " ) ;
}
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . isValidPassword ( password ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No valid password " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " msg_invalid_password_display " , " display:block " ) ;
}
2018-04-12 15:31:04 +02:00
if ( ! password . equals ( confirmPassword ) ) {
logger . info ( " No matching passwords " ) ;
request . getSession ( ) . setAttribute ( " msg_pass_conf_error_display " , " display:block " ) ;
}
if ( ! isRecaptchaVerified ) {
logger . info ( " No valid recaptcha " ) ;
2018-04-12 12:12:32 +02:00
request . getSession ( ) . setAttribute ( " recaptcha_error_display " , " display:block " ) ;
}
response . sendRedirect ( " ./register.jsp " ) ;
2017-10-20 14:31:39 +02:00
}
2018-04-12 12:12:32 +02:00
2017-10-20 14:31:39 +02:00
printWriter . close ( ) ;
}
2018-04-12 12:12:32 +02:00
private void validateUsername ( HttpServletRequest request , String username ) {
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . isValidUsername ( username ) ) {
2018-04-12 15:31:04 +02:00
logger . info ( " No valid username " ) ;
2018-05-09 15:57:54 +02:00
if ( InputValidator . containsLessCharsThan ( 5 , username ) ) {
2018-04-12 15:31:04 +02:00
request . getSession ( ) . setAttribute ( " username_message " , " Minimum username length 5 characters. " ) ;
logger . info ( " Minimum username length 5 characters. " ) ;
}
2018-04-12 12:12:32 +02:00
2018-05-09 15:57:54 +02:00
if ( InputValidator . containsMoreCharsThan ( 150 , username ) ) {
2018-04-12 15:31:04 +02:00
request . getSession ( ) . setAttribute ( " username_message " , " Maximum username length 150 characters. " ) ;
logger . info ( " Maximum username length 150 characters. " ) ;
}
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . containsOnlyAllowedChars ( username ) ) {
2018-04-12 15:31:04 +02:00
request . getSession ( ) . setAttribute ( " username_allowed_chars_message " , " You can use letters, numbers, underscores, hyphens and periods. " ) ;
logger . info ( " Only letters, numbers, underscores, hyphens and periods. " ) ;
}
2018-05-09 15:57:54 +02:00
if ( ! InputValidator . startsWithLetterOrDigit ( username ) ) {
2018-04-12 15:31:04 +02:00
request . getSession ( ) . setAttribute ( " username_first_char_message " , " The username must start with letter or digit. " ) ;
logger . info ( " The username must start with letter or digit. " ) ;
}
}
2018-04-12 12:12:32 +02:00
}
2017-10-20 14:31:39 +02:00
}