argos/dmp-backend/web/src/main/java/eu/eudat/logic/security/CustomAuthenticationProvide...

package eu.eudat.logic.security;

import eu.eudat.exceptions.security.NonValidTokenException;
import eu.eudat.exceptions.security.NullEmailException;
import eu.eudat.exceptions.security.UnauthorisedException;
import eu.eudat.models.data.login.LoginInfo;
import eu.eudat.models.data.principal.PrincipalModel;
import eu.eudat.models.data.security.Principal;
import eu.eudat.logic.security.validators.TokenValidatorFactory;
import net.shibboleth.utilities.java.support.component.ComponentInitializationException;
import net.shibboleth.utilities.java.support.resolver.ResolverException;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

import java.io.IOException;
import java.security.GeneralSecurityException;

@Component
public class CustomAuthenticationProvider {
    private static final Logger logger = LoggerFactory.getLogger(CustomAuthenticationProvider.class);


    @Autowired
    private TokenValidatorFactory tokenValidatorFactory;

    public PrincipalModel authenticate(LoginInfo credentials) throws GeneralSecurityException, NullEmailException {
        String token = credentials.getTicket();
        try {
            Principal principal = this.tokenValidatorFactory.getProvider(credentials.getProvider()).validateToken(credentials);
            return (principal != null) ? PrincipalModel.fromEntity(principal) : null;
        } catch (NonValidTokenException e) {
            logger.error("Could not validate a user by his token! Reason: " + e.getMessage(), e);
            throw new UnauthorisedException("Token validation failed - Not a valid token");
        } catch (IOException e) {
            logger.error(e.getMessage(), e);
            throw new UnauthorisedException("IO Exeption");
        } catch (NullEmailException e) {
            logger.error(e.getMessage(), e);
            throw new NullEmailException();
        } catch (ResolverException | ComponentInitializationException e){
            logger.error(e.getMessage(), e);
            throw new GeneralSecurityException();
        }
    }
}
no message 2018-06-27 12:29:21 +02:00			`package eu.eudat.logic.security;`
Added security over all endpoints. Now need to provide an 'oauth2-token' parameter on each http request. 2017-09-27 18:15:39 +02:00
no message 2018-02-16 11:34:02 +01:00			`import eu.eudat.exceptions.security.NonValidTokenException;`
Refactors authentication principal to handle users with and without confirmed email. 2019-07-12 15:58:17 +02:00			`import eu.eudat.exceptions.security.NullEmailException;`
no message 2018-02-07 10:56:30 +01:00			`import eu.eudat.exceptions.security.UnauthorisedException;`
no message 2018-06-27 12:29:21 +02:00			`import eu.eudat.models.data.login.LoginInfo;`
Sanitize user output on frontend 2020-07-17 12:19:10 +02:00			`import eu.eudat.models.data.principal.PrincipalModel;`
no message 2018-06-27 12:29:21 +02:00			`import eu.eudat.models.data.security.Principal;`
			`import eu.eudat.logic.security.validators.TokenValidatorFactory;`
#7680: Support SAML Authentication 2022-04-28 11:03:01 +02:00			`import net.shibboleth.utilities.java.support.component.ComponentInitializationException;`
			`import net.shibboleth.utilities.java.support.resolver.ResolverException;`
Replaced System.out.println, System.err.println and printStackTrace with a logger (ref #223) 2020-01-16 16:46:24 +01:00			`import org.slf4j.Logger;`
			`import org.slf4j.LoggerFactory;`
Cleaned up a little bit the security management code. Also added the userinfo table to hold information for loggedin users. 2017-09-28 12:32:03 +02:00			`import org.springframework.beans.factory.annotation.Autowired;`
Added security over all endpoints. Now need to provide an 'oauth2-token' parameter on each http request. 2017-09-27 18:15:39 +02:00			`import org.springframework.stereotype.Component;`

no message 2018-02-16 11:34:02 +01:00			`import java.io.IOException;`
			`import java.security.GeneralSecurityException;`
Cleaned up a little bit the security management code. Also added the userinfo table to hold information for loggedin users. 2017-09-28 12:32:03 +02:00
Added security over all endpoints. Now need to provide an 'oauth2-token' parameter on each http request. 2017-09-27 18:15:39 +02:00			`@Component`
no message 2017-12-15 17:57:41 +01:00			`public class CustomAuthenticationProvider {`
Replaced System.out.println, System.err.println and printStackTrace with a logger (ref #223) 2020-01-16 16:46:24 +01:00			`private static final Logger logger = LoggerFactory.getLogger(CustomAuthenticationProvider.class);`
Added security over all endpoints. Now need to provide an 'oauth2-token' parameter on each http request. 2017-09-27 18:15:39 +02:00
no message 2018-01-09 12:31:01 +01:00
no message 2018-02-16 11:34:02 +01:00			`@Autowired`
			`private TokenValidatorFactory tokenValidatorFactory;`
no message 2018-01-09 12:31:01 +01:00
Sanitize user output on frontend 2020-07-17 12:19:10 +02:00			`public PrincipalModel authenticate(LoginInfo credentials) throws GeneralSecurityException, NullEmailException {`
no message 2018-02-16 11:34:02 +01:00			`String token = credentials.getTicket();`
			`try {`
			`Principal principal = this.tokenValidatorFactory.getProvider(credentials.getProvider()).validateToken(credentials);`
#7680: Support SAML Authentication 2022-04-28 11:03:01 +02:00			`return (principal != null) ? PrincipalModel.fromEntity(principal) : null;`
no message 2018-02-16 11:34:02 +01:00			`} catch (NonValidTokenException e) {`
Replaced System.out.println, System.err.println and printStackTrace with a logger (ref #223) 2020-01-16 16:46:24 +01:00			`logger.error("Could not validate a user by his token! Reason: " + e.getMessage(), e);`
no message 2018-02-16 11:34:02 +01:00			`throw new UnauthorisedException("Token validation failed - Not a valid token");`
			`} catch (IOException e) {`
Replaced System.out.println, System.err.println and printStackTrace with a logger (ref #223) 2020-01-16 16:46:24 +01:00			`logger.error(e.getMessage(), e);`
no message 2018-02-16 11:34:02 +01:00			`throw new UnauthorisedException("IO Exeption");`
Refactors authentication principal to handle users with and without confirmed email. 2019-07-12 15:58:17 +02:00			`} catch (NullEmailException e) {`
Replaced System.out.println, System.err.println and printStackTrace with a logger (ref #223) 2020-01-16 16:46:24 +01:00			`logger.error(e.getMessage(), e);`
Refactors authentication principal to handle users with and without confirmed email. 2019-07-12 15:58:17 +02:00			`throw new NullEmailException();`
#7680: Support SAML Authentication 2022-04-28 11:03:01 +02:00			`} catch (ResolverException \| ComponentInitializationException e){`
			`logger.error(e.getMessage(), e);`
			`throw new GeneralSecurityException();`
no message 2018-02-16 11:34:02 +01:00			`}`
			`}`
Added security over all endpoints. Now need to provide an 'oauth2-token' parameter on each http request. 2017-09-27 18:15:39 +02:00			`}`