86 lines
4.0 KiB
Java
86 lines
4.0 KiB
Java
package eu.eudat.logic.handlers;
|
|
|
|
import eu.eudat.commons.scope.user.UserScope;
|
|
import eu.eudat.exceptions.security.UnauthorisedException;
|
|
import eu.eudat.logic.security.claims.ClaimedAuthorities;
|
|
import eu.eudat.logic.services.operations.authentication.AuthenticationService;
|
|
import eu.eudat.models.data.security.Principal;
|
|
import eu.eudat.types.Authorities;
|
|
import gr.cite.commons.web.oidc.principal.CurrentPrincipalResolver;
|
|
import gr.cite.commons.web.oidc.principal.MyPrincipal;
|
|
import org.springframework.core.MethodParameter;
|
|
import org.springframework.web.bind.support.WebDataBinderFactory;
|
|
import org.springframework.web.context.request.NativeWebRequest;
|
|
import org.springframework.web.context.request.ServletWebRequest;
|
|
import org.springframework.web.method.support.HandlerMethodArgumentResolver;
|
|
import org.springframework.web.method.support.ModelAndViewContainer;
|
|
|
|
import javax.management.InvalidApplicationException;
|
|
import java.lang.annotation.Annotation;
|
|
import java.util.*;
|
|
|
|
|
|
public final class PrincipalArgumentResolver implements HandlerMethodArgumentResolver {
|
|
|
|
private AuthenticationService verifiedUserAuthenticationService;
|
|
private AuthenticationService nonVerifiedUserAuthenticationService;
|
|
private final UserScope userScope;
|
|
private final CurrentPrincipalResolver currentPrincipalResolver;
|
|
|
|
public PrincipalArgumentResolver(AuthenticationService verifiedUserAuthenticationService, AuthenticationService nonVerifiedUserAuthenticationService, UserScope userScope, CurrentPrincipalResolver currentPrincipalResolver) {
|
|
this.verifiedUserAuthenticationService = verifiedUserAuthenticationService;
|
|
this.nonVerifiedUserAuthenticationService = nonVerifiedUserAuthenticationService;
|
|
this.userScope = userScope;
|
|
this.currentPrincipalResolver = currentPrincipalResolver;
|
|
}
|
|
|
|
@Override
|
|
public boolean supportsParameter(MethodParameter methodParameter) {
|
|
return methodParameter.getParameterType().equals(Principal.class);
|
|
}
|
|
|
|
@Override
|
|
public Object resolveArgument(MethodParameter methodParameter, ModelAndViewContainer modelAndViewContainer, NativeWebRequest nativeWebRequest, WebDataBinderFactory webDataBinderFactory) throws Exception {
|
|
MyPrincipal claimsPrincipal = this.currentPrincipalResolver.currentPrincipal();
|
|
|
|
boolean checkMailNull = ((ServletWebRequest) nativeWebRequest).getRequest().getRequestURI().startsWith("/api/emailConfirmation");
|
|
AuthenticationService authenticationService = checkMailNull ? this.nonVerifiedUserAuthenticationService : this.verifiedUserAuthenticationService;
|
|
|
|
Optional<Annotation> claimsAnnotation = Arrays.stream(methodParameter.getParameterAnnotations()).filter(annotation -> annotation.annotationType().equals(ClaimedAuthorities.class)).findAny();
|
|
List<Authorities> claimList = claimsAnnotation.map(annotation -> Arrays.asList(((ClaimedAuthorities) annotation).claims())).orElse(Authorities.all());
|
|
if (claimList.size() == 1 && claimList.get(0).equals(Authorities.ANONYMOUS)) {
|
|
return new Principal();
|
|
} else if (claimList.contains(Authorities.ANONYMOUS) && !claimsPrincipal.isAuthenticated()) {
|
|
return new Principal();
|
|
}
|
|
|
|
if (!claimsPrincipal.isAuthenticated()) throw new UnauthorisedException("Authentication Information Is Missing");
|
|
Principal principal;
|
|
if (checkMailNull){
|
|
principal = authenticationService.Touch(claimsPrincipal);
|
|
} else {
|
|
UUID userId;
|
|
try{
|
|
userId = checkMailNull ? null : this.userScope.getUserId();
|
|
} catch (InvalidApplicationException e) {
|
|
throw new UnauthorisedException("Authentication Information Is Missing");
|
|
}
|
|
principal = authenticationService.Touch(userId);
|
|
}
|
|
|
|
if (principal == null) throw new UnauthorisedException("Authentication Information Missing");
|
|
if (!claimList.contains(Authorities.ANONYMOUS) && !principal.isAuthorized(claimList))
|
|
throw new UnauthorisedException("You are not Authorized For this Action");
|
|
|
|
return principal;
|
|
}
|
|
|
|
private Date addADay(Date date) {
|
|
Date dt = new Date();
|
|
Calendar c = Calendar.getInstance();
|
|
c.setTime(dt);
|
|
c.add(Calendar.DATE, 1);
|
|
dt = c.getTime();
|
|
return dt;
|
|
}
|
|
} |