Example 6 with LoginRequest
use of com.hack23.cia.service.api.action.application.LoginRequest in project cia by Hack23.
the class LoginService method processService.
@Override
@Secured({ "ROLE_ANONYMOUS", "ROLE_USER", "ROLE_ADMIN" })
public LoginResponse processService(final LoginRequest serviceRequest) {
final LoginResponse inputValidation = inputValidation(serviceRequest);
if (inputValidation != null) {
return inputValidation;
}
final CreateApplicationEventRequest eventRequest = createApplicationEventForService(serviceRequest);
final UserAccount userExist = userDAO.findFirstByProperty(UserAccount_.email, serviceRequest.getEmail());
final LoginBlockResult loginBlockResult = loginBlockedAccess.isBlocked(serviceRequest.getSessionId(), serviceRequest.getEmail());
LoginResponse response;
if (!loginBlockResult.isBlocked() && userExist != null && userExist.getUserLockStatus() == UserLockStatus.UNLOCKED && verifyOtp(serviceRequest, userExist) && passwordEncoder.matches(userExist.getUserId() + ".uuid" + serviceRequest.getUserpassword(), userExist.getUserpassword())) {
final Collection<SimpleGrantedAuthority> authorities = new ArrayList<>();
if (UserRole.ADMIN == userExist.getUserRole()) {
authorities.add(new SimpleGrantedAuthority("ROLE_ADMIN"));
} else if (UserRole.USER == userExist.getUserRole()) {
authorities.add(new SimpleGrantedAuthority("ROLE_USER"));
}
eventRequest.setUserId(userExist.getUserId());
SecurityContextHolder.getContext().setAuthentication(new UsernamePasswordAuthenticationToken(userExist, userExist.getUserpassword(), authorities));
userExist.setNumberOfVisits(userExist.getNumberOfVisits() + 1);
userDAO.persist(userExist);
response = new LoginResponse(ServiceResult.SUCCESS);
} else {
response = new LoginResponse(ServiceResult.FAILURE);
response.setErrorMessage(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString());
if (loginBlockResult.isBlocked()) {
eventRequest.setErrorMessage(loginBlockResult.getMessages().toString());
} else {
eventRequest.setErrorMessage(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString());
}
}
eventRequest.setApplicationMessage(response.getResult().toString());
createApplicationEventService.processService(eventRequest);
LOGGER.info("Event: {}", eventRequest);
return response;
}
Also used :
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
LoginResponse(com.hack23.cia.service.api.action.application.LoginResponse)
ArrayList(java.util.ArrayList)
CreateApplicationEventRequest(com.hack23.cia.service.api.action.application.CreateApplicationEventRequest)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
UserAccount(com.hack23.cia.model.internal.application.user.impl.UserAccount)
LoginBlockResult(com.hack23.cia.service.impl.action.application.access.LoginBlockedAccess.LoginBlockResult)
Secured(org.springframework.security.access.annotation.Secured)
Example 7 with LoginRequest
use of com.hack23.cia.service.api.action.application.LoginRequest in project cia by Hack23.
the class LoginServiceITest method serviceLoginRequestSuccessTest.
/**
* Service login request success test.
*
* @throws Exception
* the exception
*/
@Test
@PerfTest(threads = 2, duration = 4000, warmUp = 1500)
@Required(max = 2500, average = 2000, percentile95 = 2200, throughput = 1)
public void serviceLoginRequestSuccessTest() throws Exception {
final CreateApplicationSessionRequest createApplicationSesstion = createApplicationSesstionWithRoleAnonymous();
final RegisterUserRequest serviceRequest = new RegisterUserRequest();
serviceRequest.setCountry("Sweden");
serviceRequest.setUsername(UUID.randomUUID().toString());
serviceRequest.setEmail(serviceRequest.getUsername() + "@email.com");
serviceRequest.setUserpassword("Userpassword1!");
serviceRequest.setUserType(UserType.PRIVATE);
serviceRequest.setSessionId(createApplicationSesstion.getSessionId());
final RegisterUserResponse response = (RegisterUserResponse) applicationManager.service(serviceRequest);
assertNotNull("Expect a result", response);
assertEquals(EXPECT_SUCCESS, ServiceResult.SUCCESS, response.getResult());
final DataContainer<UserAccount, Long> dataContainer = applicationManager.getDataContainer(UserAccount.class);
final List<UserAccount> allBy = dataContainer.getAllBy(UserAccount_.username, serviceRequest.getUsername());
assertEquals(1, allBy.size());
final LoginRequest loginRequest = new LoginRequest();
loginRequest.setEmail(serviceRequest.getEmail());
loginRequest.setSessionId(serviceRequest.getSessionId());
loginRequest.setUserpassword(serviceRequest.getUserpassword());
final LoginResponse loginResponse = (LoginResponse) applicationManager.service(loginRequest);
assertNotNull("Expect a result", loginResponse);
assertEquals(EXPECT_SUCCESS, ServiceResult.SUCCESS, loginResponse.getResult());
}
Also used :
LoginResponse(com.hack23.cia.service.api.action.application.LoginResponse)
CreateApplicationSessionRequest(com.hack23.cia.service.api.action.application.CreateApplicationSessionRequest)
RegisterUserRequest(com.hack23.cia.service.api.action.application.RegisterUserRequest)
RegisterUserResponse(com.hack23.cia.service.api.action.application.RegisterUserResponse)
LoginRequest(com.hack23.cia.service.api.action.application.LoginRequest)
UserAccount(com.hack23.cia.model.internal.application.user.impl.UserAccount)
Required(org.databene.contiperf.Required)
PerfTest(org.databene.contiperf.PerfTest)
Test(org.junit.Test)
AbstractServiceFunctionalIntegrationTest(com.hack23.cia.service.impl.AbstractServiceFunctionalIntegrationTest)
PerfTest(org.databene.contiperf.PerfTest)
Example 8 with LoginRequest
use of com.hack23.cia.service.api.action.application.LoginRequest in project cia by Hack23.
the class LoginServiceITest method serviceLoginRequestUserBlockedByMaxSessionAttempTest.
/**
* Service login request user blocked by max session attemp test.
*
* @throws Exception
* the exception
*/
@Test
public void serviceLoginRequestUserBlockedByMaxSessionAttempTest() throws Exception {
final CreateApplicationSessionRequest createApplicationSesstion = createApplicationSesstionWithRoleAnonymous();
final RegisterUserRequest serviceRequest = new RegisterUserRequest();
serviceRequest.setCountry("Sweden");
serviceRequest.setUsername(UUID.randomUUID().toString());
serviceRequest.setEmail(serviceRequest.getUsername() + "@email.com");
serviceRequest.setUserpassword("Userpassword1!");
serviceRequest.setUserType(UserType.PRIVATE);
serviceRequest.setSessionId(createApplicationSesstion.getSessionId());
final RegisterUserResponse response = (RegisterUserResponse) applicationManager.service(serviceRequest);
assertNotNull("Expect a result", response);
assertEquals(EXPECT_SUCCESS, ServiceResult.SUCCESS, response.getResult());
final DataContainer<UserAccount, Long> dataContainer = applicationManager.getDataContainer(UserAccount.class);
final List<UserAccount> allBy = dataContainer.getAllBy(UserAccount_.username, serviceRequest.getUsername());
assertEquals(1, allBy.size());
final CreateApplicationSessionRequest newApplicationSesstion = createApplicationSesstionWithRoleAnonymous();
for (int i = 0; i < 6; i++) {
final LoginRequest loginRequest = new LoginRequest();
loginRequest.setEmail(serviceRequest.getEmail() + "someotheruser");
loginRequest.setSessionId(newApplicationSesstion.getSessionId());
loginRequest.setUserpassword(serviceRequest.getUserpassword() + "wrongpassword");
final LoginResponse loginResponse = (LoginResponse) applicationManager.service(loginRequest);
assertNotNull("Expect a result", loginResponse);
assertEquals(ServiceResult.FAILURE, loginResponse.getResult());
assertEquals(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString(), loginResponse.getErrorMessage());
}
final LoginRequest loginRequest = new LoginRequest();
loginRequest.setEmail(serviceRequest.getEmail());
loginRequest.setSessionId(newApplicationSesstion.getSessionId());
loginRequest.setUserpassword(serviceRequest.getUserpassword());
final LoginResponse loginResponse = (LoginResponse) applicationManager.service(loginRequest);
assertNotNull("Expect a result", loginResponse);
assertEquals(ServiceResult.FAILURE, loginResponse.getResult());
assertEquals(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString(), loginResponse.getErrorMessage());
}
Also used :
LoginResponse(com.hack23.cia.service.api.action.application.LoginResponse)
CreateApplicationSessionRequest(com.hack23.cia.service.api.action.application.CreateApplicationSessionRequest)
RegisterUserRequest(com.hack23.cia.service.api.action.application.RegisterUserRequest)
RegisterUserResponse(com.hack23.cia.service.api.action.application.RegisterUserResponse)
LoginRequest(com.hack23.cia.service.api.action.application.LoginRequest)
UserAccount(com.hack23.cia.model.internal.application.user.impl.UserAccount)
PerfTest(org.databene.contiperf.PerfTest)
Test(org.junit.Test)
AbstractServiceFunctionalIntegrationTest(com.hack23.cia.service.impl.AbstractServiceFunctionalIntegrationTest)
Example 9 with LoginRequest
use of com.hack23.cia.service.api.action.application.LoginRequest in project cia by Hack23.
the class LoginServiceITest method serviceLoginRequestUserPasswordDoNotMatchFailureTest.
/**
* Service login request user password do not match failure test.
*
* @throws Exception
* the exception
*/
@Test
public void serviceLoginRequestUserPasswordDoNotMatchFailureTest() throws Exception {
final CreateApplicationSessionRequest createApplicationSesstion = createApplicationSesstionWithRoleAnonymous();
final RegisterUserRequest serviceRequest = new RegisterUserRequest();
serviceRequest.setCountry("Sweden");
serviceRequest.setUsername(UUID.randomUUID().toString());
serviceRequest.setEmail(serviceRequest.getUsername() + "@email.com");
serviceRequest.setUserpassword("Userpassword1!");
serviceRequest.setUserType(UserType.PRIVATE);
serviceRequest.setSessionId(createApplicationSesstion.getSessionId());
final RegisterUserResponse response = (RegisterUserResponse) applicationManager.service(serviceRequest);
assertNotNull("Expect a result", response);
assertEquals(EXPECT_SUCCESS, ServiceResult.SUCCESS, response.getResult());
final DataContainer<UserAccount, Long> dataContainer = applicationManager.getDataContainer(UserAccount.class);
final List<UserAccount> allBy = dataContainer.getAllBy(UserAccount_.username, serviceRequest.getUsername());
assertEquals(1, allBy.size());
final LoginRequest loginRequest = new LoginRequest();
loginRequest.setEmail(serviceRequest.getEmail());
loginRequest.setSessionId(serviceRequest.getSessionId());
loginRequest.setUserpassword(serviceRequest.getUserpassword() + "wrongpassword");
final LoginResponse loginResponse = (LoginResponse) applicationManager.service(loginRequest);
assertNotNull("Expect a result", loginResponse);
assertEquals(ServiceResult.FAILURE, loginResponse.getResult());
assertEquals(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString(), loginResponse.getErrorMessage());
}
Also used :
LoginResponse(com.hack23.cia.service.api.action.application.LoginResponse)
CreateApplicationSessionRequest(com.hack23.cia.service.api.action.application.CreateApplicationSessionRequest)
RegisterUserRequest(com.hack23.cia.service.api.action.application.RegisterUserRequest)
RegisterUserResponse(com.hack23.cia.service.api.action.application.RegisterUserResponse)
LoginRequest(com.hack23.cia.service.api.action.application.LoginRequest)
UserAccount(com.hack23.cia.model.internal.application.user.impl.UserAccount)
PerfTest(org.databene.contiperf.PerfTest)
Test(org.junit.Test)
AbstractServiceFunctionalIntegrationTest(com.hack23.cia.service.impl.AbstractServiceFunctionalIntegrationTest)
Example 10 with LoginRequest
use of com.hack23.cia.service.api.action.application.LoginRequest in project cia by Hack23.
the class LoginServiceITest method serviceLoginRequestUserBlockedByMaxUserAttempTest.
/**
* Service login request user blocked by max user attemp test.
*
* @throws Exception
* the exception
*/
@Test
public void serviceLoginRequestUserBlockedByMaxUserAttempTest() throws Exception {
final CreateApplicationSessionRequest createApplicationSesstion = createApplicationSesstionWithRoleAnonymous();
final RegisterUserRequest serviceRequest = new RegisterUserRequest();
serviceRequest.setCountry("Sweden");
serviceRequest.setUsername(UUID.randomUUID().toString());
serviceRequest.setEmail(serviceRequest.getUsername() + "@email.com");
serviceRequest.setUserpassword("Userpassword1!");
serviceRequest.setUserType(UserType.PRIVATE);
serviceRequest.setSessionId(createApplicationSesstion.getSessionId());
final RegisterUserResponse response = (RegisterUserResponse) applicationManager.service(serviceRequest);
assertNotNull("Expect a result", response);
assertEquals(EXPECT_SUCCESS, ServiceResult.SUCCESS, response.getResult());
final DataContainer<UserAccount, Long> dataContainer = applicationManager.getDataContainer(UserAccount.class);
final List<UserAccount> allBy = dataContainer.getAllBy(UserAccount_.username, serviceRequest.getUsername());
assertEquals(1, allBy.size());
for (int i = 0; i < 6; i++) {
final CreateApplicationSessionRequest newApplicationSesstion = createApplicationSesstionWithRoleAnonymous();
final LoginRequest loginRequest = new LoginRequest();
loginRequest.setEmail(serviceRequest.getEmail());
loginRequest.setSessionId(newApplicationSesstion.getSessionId());
loginRequest.setUserpassword(serviceRequest.getUserpassword() + "wrongpassword");
final LoginResponse loginResponse = (LoginResponse) applicationManager.service(loginRequest);
assertNotNull("Expect a result", loginResponse);
assertEquals(ServiceResult.FAILURE, loginResponse.getResult());
assertEquals(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString(), loginResponse.getErrorMessage());
}
final LoginRequest loginRequest = new LoginRequest();
loginRequest.setEmail(serviceRequest.getEmail());
loginRequest.setSessionId(serviceRequest.getSessionId());
loginRequest.setUserpassword(serviceRequest.getUserpassword());
final LoginResponse loginResponse = (LoginResponse) applicationManager.service(loginRequest);
assertNotNull("Expect a result", loginResponse);
assertEquals(ServiceResult.FAILURE, loginResponse.getResult());
assertEquals(LoginResponse.ErrorMessage.USERNAME_OR_PASSWORD_DO_NOT_MATCH.toString(), loginResponse.getErrorMessage());
}
Also used :
LoginResponse(com.hack23.cia.service.api.action.application.LoginResponse)
CreateApplicationSessionRequest(com.hack23.cia.service.api.action.application.CreateApplicationSessionRequest)
RegisterUserRequest(com.hack23.cia.service.api.action.application.RegisterUserRequest)
RegisterUserResponse(com.hack23.cia.service.api.action.application.RegisterUserResponse)
LoginRequest(com.hack23.cia.service.api.action.application.LoginRequest)
UserAccount(com.hack23.cia.model.internal.application.user.impl.UserAccount)
PerfTest(org.databene.contiperf.PerfTest)
Test(org.junit.Test)
AbstractServiceFunctionalIntegrationTest(com.hack23.cia.service.impl.AbstractServiceFunctionalIntegrationTest)
Aggregations
LoginRequest (com.hack23.cia.service.api.action.application.LoginRequest)9
LoginResponse (com.hack23.cia.service.api.action.application.LoginResponse)9
UserAccount (com.hack23.cia.model.internal.application.user.impl.UserAccount)8
CreateApplicationSessionRequest (com.hack23.cia.service.api.action.application.CreateApplicationSessionRequest)7
RegisterUserRequest (com.hack23.cia.service.api.action.application.RegisterUserRequest)7
RegisterUserResponse (com.hack23.cia.service.api.action.application.RegisterUserResponse)7
AbstractServiceFunctionalIntegrationTest (com.hack23.cia.service.impl.AbstractServiceFunctionalIntegrationTest)7
PerfTest (org.databene.contiperf.PerfTest)7
Test (org.junit.Test)7
Required (org.databene.contiperf.Required)4
LogoutRequest (com.hack23.cia.service.api.action.application.LogoutRequest)3
ServiceResponse (com.hack23.cia.service.api.action.common.ServiceResponse)3
CreateApplicationEventRequest (com.hack23.cia.service.api.action.application.CreateApplicationEventRequest)2
SetGoogleAuthenticatorCredentialRequest (com.hack23.cia.service.api.action.user.SetGoogleAuthenticatorCredentialRequest)2
Secured (org.springframework.security.access.annotation.Secured)2
DisableGoogleAuthenticatorCredentialRequest (com.hack23.cia.service.api.action.user.DisableGoogleAuthenticatorCredentialRequest)1
LoginBlockResult (com.hack23.cia.service.impl.action.application.access.LoginBlockedAccess.LoginBlockResult)1
ApplicationLoginListener (com.hack23.cia.web.impl.ui.application.views.pageclicklistener.ApplicationLoginListener)1
ResponsiveRow (com.jarektoro.responsivelayout.ResponsiveRow)1
ClickListener (com.vaadin.ui.Button.ClickListener)1
