Example 76 with User
use of com.auth0.flickr2.domain.User in project gravitee-management-rest-api by gravitee-io.
the class UserServiceImpl method resetPassword.
private void resetPassword(final String id, final String resetPageUrl) {
try {
LOGGER.debug("Resetting password of user id {}", id);
Optional<User> optionalUser = userRepository.findById(id);
if (!optionalUser.isPresent()) {
throw new UserNotFoundException(id);
}
final User user = optionalUser.get();
if (!isInternalUser(user)) {
throw new UserNotInternallyManagedException(id);
}
// do not perform this check if the request comes from an authenticated user (ie. admin or someone with right permission)
if (!isAuthenticated() || !canResetPassword()) {
AuditQuery query = new AuditQuery();
query.setEvents(Arrays.asList(User.AuditEvent.PASSWORD_RESET.name()));
query.setFrom(Instant.now().minus(1, ChronoUnit.HOURS).toEpochMilli());
query.setPage(1);
query.setSize(100);
MetadataPage<AuditEntity> events = auditService.search(query);
if (events != null) {
if (events.getContent().size() == 100) {
LOGGER.warn("More than 100 reset password received in less than 1 hour", user.getId());
}
Optional<AuditEntity> optReset = events.getContent().stream().filter(evt -> user.getId().equals(evt.getProperties().get(USER.name()))).findFirst();
if (optReset.isPresent()) {
LOGGER.warn("Multiple reset password received for user '{}' in less than 1 hour", user.getId());
throw new PasswordAlreadyResetException();
}
}
}
final Map<String, Object> params = getTokenRegistrationParams(convert(user, false), RESET_PASSWORD_PATH, RESET_PASSWORD, resetPageUrl);
notifierService.trigger(PortalHook.PASSWORD_RESET, params);
auditService.createOrganizationAuditLog(Collections.singletonMap(USER, user.getId()), User.AuditEvent.PASSWORD_RESET, new Date(), null, null);
emailService.sendAsyncEmailNotification(new EmailNotificationBuilder().to(user.getEmail()).template(EmailNotificationBuilder.EmailTemplate.TEMPLATES_FOR_ACTION_USER_PASSWORD_RESET).params(params).build(), GraviteeContext.getCurrentContext());
} catch (TechnicalException ex) {
final String message = "An error occurs while trying to reset password for user " + id;
LOGGER.error(message, ex);
throw new TechnicalManagementException(message, ex);
}
}
Also used :
BCryptPasswordEncoder(org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder)
Page(io.gravitee.common.data.domain.Page)
TechnicalException(io.gravitee.repository.exceptions.TechnicalException)
LoggerFactory(org.slf4j.LoggerFactory)
MembershipRepository(io.gravitee.repository.management.api.MembershipRepository)
Autowired(org.springframework.beans.factory.annotation.Autowired)
SocialIdentityProviderEntity(io.gravitee.rest.api.model.configuration.identity.SocialIdentityProviderEntity)
RoleScope(io.gravitee.rest.api.model.permissions.RoleScope)
StringUtils(org.apache.commons.lang3.StringUtils)
UPDATE(io.gravitee.rest.api.model.permissions.RolePermissionAction.UPDATE)
IdentityProviderService(io.gravitee.rest.api.service.configuration.identity.IdentityProviderService)
TemplateEngine(io.gravitee.el.TemplateEngine)
Algorithm(com.auth0.jwt.algorithms.Algorithm)
AuditQuery(io.gravitee.rest.api.model.audit.AuditQuery)
PageableBuilder(io.gravitee.repository.management.api.search.builder.PageableBuilder)
RoleMappingEntity(io.gravitee.rest.api.model.configuration.identity.RoleMappingEntity)
Duration(java.time.Duration)
PortalHook(io.gravitee.rest.api.service.notification.PortalHook)
GroupMappingEntity(io.gravitee.rest.api.model.configuration.identity.GroupMappingEntity)
Collectors.toSet(java.util.stream.Collectors.toSet)
ApplicationSettings(io.gravitee.rest.api.model.application.ApplicationSettings)
RolePermissionAction(io.gravitee.rest.api.model.permissions.RolePermissionAction)
JsonPathFunction(io.gravitee.el.spel.function.json.JsonPathFunction)
Instant(java.time.Instant)
SimpleApplicationSettings(io.gravitee.rest.api.model.application.SimpleApplicationSettings)
Collectors(java.util.stream.Collectors)
Key(io.gravitee.rest.api.model.parameters.Key)
NotificationParamsBuilder(io.gravitee.rest.api.service.notification.NotificationParamsBuilder)
EmailNotificationBuilder(io.gravitee.rest.api.service.builder.EmailNotificationBuilder)
UrlSanitizerUtils(io.gravitee.rest.api.service.sanitizer.UrlSanitizerUtils)
DatatypeConverter(javax.xml.bind.DatatypeConverter)
AuditEntity(io.gravitee.rest.api.model.audit.AuditEntity)
RolePermission(io.gravitee.rest.api.model.permissions.RolePermission)
SearchEngineService(io.gravitee.rest.api.service.search.SearchEngineService)
JWT(com.auth0.jwt.JWT)
io.gravitee.rest.api.service(io.gravitee.rest.api.service)
java.util(java.util)
DecodedJWT(com.auth0.jwt.interfaces.DecodedJWT)
Pageable(io.gravitee.rest.api.model.common.Pageable)
GraviteeContext(io.gravitee.rest.api.service.common.GraviteeContext)
DEFAULT_JWT_EMAIL_REGISTRATION_EXPIRE_AFTER(io.gravitee.rest.api.service.common.JWTHelper.DefaultValues.DEFAULT_JWT_EMAIL_REGISTRATION_EXPIRE_AFTER)
InitializingBean(org.springframework.beans.factory.InitializingBean)
Value(org.springframework.beans.factory.annotation.Value)
JWTVerifier(com.auth0.jwt.JWTVerifier)
ReadContext(com.jayway.jsonpath.ReadContext)
ConfigurableEnvironment(org.springframework.core.env.ConfigurableEnvironment)
UserRepository(io.gravitee.repository.management.api.UserRepository)
Claims(io.gravitee.rest.api.service.common.JWTHelper.Claims)
UserStatus(io.gravitee.repository.management.model.UserStatus)
io.gravitee.rest.api.model(io.gravitee.rest.api.model)
Membership(io.gravitee.repository.management.model.Membership)
Query(io.gravitee.rest.api.service.search.query.Query)
UuidString(io.gravitee.rest.api.service.common.UuidString)
Logger(org.slf4j.Logger)
ParameterReferenceType(io.gravitee.rest.api.model.parameters.ParameterReferenceType)
JsonPath(com.jayway.jsonpath.JsonPath)
Maps(io.gravitee.common.util.Maps)
DEFAULT_JWT_ISSUER(io.gravitee.rest.api.service.common.JWTHelper.DefaultValues.DEFAULT_JWT_ISSUER)
MetadataPage(io.gravitee.common.data.domain.MetadataPage)
Collectors.toList(java.util.stream.Collectors.toList)
Component(org.springframework.stereotype.Component)
USER(io.gravitee.repository.management.model.Audit.AuditProperties.USER)
ChronoUnit(java.time.temporal.ChronoUnit)
PasswordEncoder(org.springframework.security.crypto.password.PasswordEncoder)
StringUtils.isBlank(org.apache.commons.lang3.StringUtils.isBlank)
io.gravitee.rest.api.service.exceptions(io.gravitee.rest.api.service.exceptions)
UserCriteria(io.gravitee.repository.management.api.search.UserCriteria)
User(io.gravitee.repository.management.model.User)
ACTION(io.gravitee.rest.api.service.common.JWTHelper.ACTION)
QueryBuilder(io.gravitee.rest.api.service.search.query.QueryBuilder)
SearchResult(io.gravitee.rest.api.service.impl.search.SearchResult)
User(io.gravitee.repository.management.model.User)
AuditQuery(io.gravitee.rest.api.model.audit.AuditQuery)
TechnicalException(io.gravitee.repository.exceptions.TechnicalException)
UuidString(io.gravitee.rest.api.service.common.UuidString)
EmailNotificationBuilder(io.gravitee.rest.api.service.builder.EmailNotificationBuilder)
AuditEntity(io.gravitee.rest.api.model.audit.AuditEntity)
Example 77 with User
use of com.auth0.flickr2.domain.User in project CollectiveOneWebapp by CollectiveOne.
the class AppUserService method addUserToLocalDB.
@Transactional
private AppUser addUserToLocalDB(String auth0Id) {
/* retrieve from Auth0 */
AppUser appUser = null;
User auth0User = null;
if (auth0Id.equals("anonymousUser")) {
return null;
}
try {
auth0User = mgmt.users().get(auth0Id, null).execute();
/* check if this email is already registered. */
appUser = appUserRepository.findByEmail(auth0User.getEmail());
if (appUser == null) {
// if (auth0User.isEmailVerified()) {
if (true) {
/* create a new user if not */
appUser = new AppUser();
appUser.getAuth0Ids().add((auth0User.getId()));
appUser.setEmail(auth0User.getEmail());
appUser.setEmailNotificationsEnabled(true);
AppUserProfile profile = new AppUserProfile();
if (auth0User.getIdentities().get(0).getProvider().equals("auth0")) {
profile.setNickname(auth0User.getNickname());
} else {
profile.setNickname(auth0User.getName());
}
profile.setUser(appUser);
profile.setPictureUrl(auth0User.getPicture());
profile = appUserProfileRepository.save(profile);
appUser.setProfile(profile);
/* create global subscriber */
Subscriber subscriber = new Subscriber();
subscriber.setType(SubscriptionElementType.COLLECTIVEONE);
subscriber.setUser(appUser);
subscriber.setInheritConfig(SubscriberInheritConfig.CUSTOM);
activityService.initDefaultSubscriber(subscriber);
subscriberRepository.save(subscriber);
}
} else {
/* just add the auth0id to the existing user */
appUser.getAuth0Ids().add(auth0Id);
}
appUser = appUserRepository.save(appUser);
} catch (APIException exception) {
System.out.println(exception.getMessage());
} catch (Auth0Exception exception) {
System.out.println(exception.getMessage());
}
return appUser;
}
Also used :
User(com.auth0.json.mgmt.users.User)
APIException(com.auth0.exception.APIException)
Subscriber(org.collectiveone.modules.activity.Subscriber)
Auth0Exception(com.auth0.exception.Auth0Exception)
Transactional(javax.transaction.Transactional)
Example 78 with User
use of com.auth0.flickr2.domain.User in project CollectiveOneWebapp by CollectiveOne.
the class AppUserService method updateUserDataInLocalDB.
@Transactional
public Boolean updateUserDataInLocalDB(UUID c1Id) {
AppUser appUser = appUserRepository.findByC1Id(c1Id);
try {
User auth0User = mgmt.users().get(appUser.getAuth0Ids().get(0), null).execute();
appUser.getProfile().setPictureUrl(auth0User.getPicture());
appUserRepository.save(appUser);
return true;
} catch (APIException exception) {
System.out.println(exception.getMessage());
} catch (Auth0Exception exception) {
System.out.println(exception.getMessage());
}
return false;
}
Also used :
User(com.auth0.json.mgmt.users.User)
APIException(com.auth0.exception.APIException)
Auth0Exception(com.auth0.exception.Auth0Exception)
Transactional(javax.transaction.Transactional)
Example 79 with User
use of com.auth0.flickr2.domain.User in project CollectiveOneWebapp by CollectiveOne.
the class TestElementOrder method setUp.
@SuppressWarnings("serial")
@Before
public void setUp() throws Exception {
AuthAPI auth = new AuthAPI(auth0Domain, clientId, clientSecret);
AuthRequest request = auth.login(testEmail1, testPwd1).setScope("openid contacts");
try {
TokenHolder holder = request.execute();
authorizationTokenUser1 = holder.getIdToken();
} catch (APIException exception) {
System.out.println(exception);
} catch (Auth0Exception exception) {
System.out.println(exception);
}
MvcResult result = this.mockMvc.perform(get("/1/user/myProfile").header("Authorization", "Bearer " + authorizationTokenUser1)).andReturn();
assertEquals("error in http request: " + result.getResponse().getErrorMessage(), 200, result.getResponse().getStatus());
GetResult<AppUserDto> getResultUser = gson.fromJson(result.getResponse().getContentAsString(), new TypeToken<GetResult<AppUserDto>>() {
}.getType());
user1 = getResultUser.getData();
logger.debug("Test user created:" + result.getResponse().getContentAsString());
request = auth.login(testEmail2, testPwd2).setScope("openid contacts");
try {
TokenHolder holder = request.execute();
authorizationTokenUser2 = holder.getIdToken();
} catch (APIException exception) {
System.out.println(exception);
} catch (Auth0Exception exception) {
System.out.println(exception);
}
result = this.mockMvc.perform(get("/1/user/myProfile").header("Authorization", "Bearer " + authorizationTokenUser2)).andReturn();
assertEquals("error in http request: " + result.getResponse().getErrorMessage(), 200, result.getResponse().getStatus());
getResultUser = gson.fromJson(result.getResponse().getContentAsString(), new TypeToken<GetResult<AppUserDto>>() {
}.getType());
user2 = getResultUser.getData();
logger.debug("Test user created: " + result.getResponse().getContentAsString());
/**
* create initiative
*/
NewInitiativeDto initiativeDto = new NewInitiativeDto(initiativeName, "");
MemberDto member = new MemberDto();
member.setRole("ADMIN");
member.setUser(user1);
initiativeDto.getMembers().add(member);
result = this.mockMvc.perform(post("/1/initiative/create").header("Authorization", "Bearer " + authorizationTokenUser1).contentType(MediaType.APPLICATION_JSON).content(gson.toJson(initiativeDto))).andReturn();
assertEquals("error in http request: " + result.getResponse().getErrorMessage(), 200, result.getResponse().getStatus());
PostResult postResult = gson.fromJson(result.getResponse().getContentAsString(), PostResult.class);
initiativeId = postResult.getElementId();
logger.debug("Initiative created: " + initiativeId);
result = this.mockMvc.perform(get("/1/initiative/" + initiativeId).header("Authorization", "Bearer " + authorizationTokenUser1)).andReturn();
GetResult<InitiativeDto> getResultInit = gson.fromJson(result.getResponse().getContentAsString(), new TypeToken<GetResult<InitiativeDto>>() {
}.getType());
initiative = getResultInit.getData();
logger.debug("Initiative retrieved: " + result.getResponse().getContentAsString());
}
Also used :
AuthRequest(com.auth0.net.AuthRequest)
NewInitiativeDto(org.collectiveone.modules.initiatives.dto.NewInitiativeDto)
GetResult(org.collectiveone.common.dto.GetResult)
NewInitiativeDto(org.collectiveone.modules.initiatives.dto.NewInitiativeDto)
InitiativeDto(org.collectiveone.modules.initiatives.dto.InitiativeDto)
Auth0Exception(com.auth0.exception.Auth0Exception)
TokenHolder(com.auth0.json.auth.TokenHolder)
MvcResult(org.springframework.test.web.servlet.MvcResult)
PostResult(org.collectiveone.common.dto.PostResult)
APIException(com.auth0.exception.APIException)
TypeToken(com.google.common.reflect.TypeToken)
MemberDto(org.collectiveone.modules.initiatives.dto.MemberDto)
AuthAPI(com.auth0.client.auth.AuthAPI)
AppUserDto(org.collectiveone.modules.users.AppUserDto)
Before(org.junit.Before)
Example 80 with User
use of com.auth0.flickr2.domain.User in project nexus-public by sonatype.
the class JwtHelperTest method assertJwt.
private void assertJwt(final String jwt) {
DecodedJWT decode = decodeJwt(jwt);
Claim user = decode.getClaim(USER);
Claim userId = decode.getClaim(USER_SESSION_ID);
Claim issuer = decode.getClaim("iss");
Claim realm = decode.getClaim(REALM);
assertEquals("admin", user.asString());
assertNotNull(userId.asString());
assertEquals(ISSUER, issuer.asString());
assertEquals("NexusAuthorizingRealm", realm.asString());
}
Also used :
DecodedJWT(com.auth0.jwt.interfaces.DecodedJWT)
Claim(com.auth0.jwt.interfaces.Claim)
Aggregations
Algorithm (com.auth0.jwt.algorithms.Algorithm)64
DecodedJWT (com.auth0.jwt.interfaces.DecodedJWT)60
IOException (java.io.IOException)51
Test (org.junit.Test)46
JWT (com.auth0.jwt.JWT)42
Instant (java.time.Instant)39
java.util (java.util)37
Duration (java.time.Duration)36
TechnicalException (io.gravitee.repository.exceptions.TechnicalException)35
Maps (io.gravitee.common.util.Maps)34
DEFAULT_JWT_ISSUER (io.gravitee.rest.api.service.common.JWTHelper.DefaultValues.DEFAULT_JWT_ISSUER)34
User (io.gravitee.repository.management.model.User)33
ConfigurableEnvironment (org.springframework.core.env.ConfigurableEnvironment)32
UserRepository (io.gravitee.repository.management.api.UserRepository)30
io.gravitee.rest.api.model (io.gravitee.rest.api.model)30
JWTVerifier (com.auth0.jwt.JWTVerifier)28
MetadataPage (io.gravitee.common.data.domain.MetadataPage)28
MembershipRepository (io.gravitee.repository.management.api.MembershipRepository)28
Membership (io.gravitee.repository.management.model.Membership)28
UserStatus (io.gravitee.repository.management.model.UserStatus)28
