Examples with ServiceException com.nexblocks.authguard.service.exceptions.ServiceException used on opensource projects

Example 1 with ServiceException

use of com.nexblocks.authguard.service.exceptions.ServiceException in project AuthGuard by AuthGuard.

the class ActionTokenServiceImplTest method verifyTokenWrongAction.

@Test
void verifyTokenWrongAction() {
    final AccountTokenDO accountToken = AccountTokenDO.builder().expiresAt(OffsetDateTime.now().plusMinutes(1)).additionalInformation(ImmutableMap.of("action", "something")).build();
    Mockito.when(accountTokensRepository.getByToken("action-token")).thenReturn(CompletableFuture.completedFuture(Optional.of(accountToken)));
    final Try<ActionTokenBO> actual = actionTokenService.verifyToken("action-token", "else");
    assertThat(actual.isFailure());
    assertThat(((ServiceException) actual.getCause()).getErrorCode()).isEqualTo(ErrorCode.INVALID_TOKEN.getCode());
}

Example 2 with ServiceException

use of com.nexblocks.authguard.service.exceptions.ServiceException in project AuthGuard by AuthGuard.

the class AccountsServiceImpl method grantPermissions.

@Override
public AccountBO grantPermissions(final String accountId, final List<PermissionBO> permissions) {
    final AccountBO account = getById(accountId).orElseThrow(() -> new ServiceNotFoundException(ErrorCode.ACCOUNT_DOES_NOT_EXIST, "No account with ID " + accountId + " was found"));
    final List<PermissionBO> verifiedPermissions = permissionsService.validate(permissions, account.getDomain());
    if (verifiedPermissions.size() != permissions.size()) {
        final List<PermissionBO> difference = permissions.stream().filter(permission -> !verifiedPermissions.contains(permission)).collect(Collectors.toList());
        throw new ServiceException(ErrorCode.PERMISSION_DOES_NOT_EXIST, "The following permissions are not valid" + difference);
    }
    final List<PermissionBO> combinedPermissions = Stream.concat(account.getPermissions().stream(), verifiedPermissions.stream()).distinct().collect(Collectors.toList());
    final AccountBO updated = account.withPermissions(combinedPermissions);
    accountsRepository.update(serviceMapper.toDO(updated));
    return updated;
}

Example 3 with ServiceException

use of com.nexblocks.authguard.service.exceptions.ServiceException in project AuthGuard by AuthGuard.

the class ActionTokenServiceImpl method generateFromOtp.

@Override
public Try<ActionTokenBO> generateFromOtp(final String passwordId, final String otp, final String action) {
    final String otpToken = passwordId + ":" + otp;
    final Either<Exception, Optional<AccountBO>> otpResult = otpVerifier.verifyAccountToken(otpToken).map(accountsService::getById);
    if (otpResult.isLeft()) {
        return Try.failure(otpResult.getLeft());
    }
    final AccountBO account = otpResult.get().orElse(null);
    if (account == null) {
        return Try.failure(new ServiceException(ErrorCode.ACCOUNT_DOES_NOT_EXIST, "The account associated with that OTP no longer exists"));
    }
    final AccountTokenDO token = generateToken(account, action);
    return Try.success(ActionTokenBO.builder().accountId(account.getId()).token(token.getToken()).validFor(TOKEN_LIFETIME.toSeconds()).build());
}

Example 4 with ServiceException

use of com.nexblocks.authguard.service.exceptions.ServiceException in project AuthGuard by AuthGuard.

the class CredentialsServiceImpl method resetPasswordByToken.

@Override
public Optional<CredentialsBO> resetPasswordByToken(final String token, final String plainPassword) {
    final AccountTokenDO accountToken = accountTokensRepository.getByToken(token).join().orElseThrow(() -> new ServiceNotFoundException(ErrorCode.TOKEN_EXPIRED_OR_DOES_NOT_EXIST, "AccountDO token " + token + " does not exist"));
    if (accountToken.getExpiresAt().isBefore(OffsetDateTime.now())) {
        throw new ServiceException(ErrorCode.EXPIRED_TOKEN, "Token " + token + " has expired");
    }
    final String credentialsId = Optional.ofNullable(accountToken.getAdditionalInformation()).map(m -> m.get("credentialsId")).orElseThrow(() -> new ServiceException(ErrorCode.INVALID_TOKEN, "Reset token was not mapped to any credentials"));
    return updatePassword(credentialsId, plainPassword);
}

Example 5 with ServiceException

use of com.nexblocks.authguard.service.exceptions.ServiceException in project AuthGuard by AuthGuard.

the class CredentialsServiceImpl method generateResetToken.

@Override
public PasswordResetTokenBO generateResetToken(final String identifier, final boolean returnToken, final String domain) {
    final CredentialsBO credentials = getByUsername(identifier, domain).orElseThrow(() -> new ServiceNotFoundException(ErrorCode.CREDENTIALS_DOES_NOT_EXIST, "Unknown identifier"));
    final AccountBO account = accountsService.getById(credentials.getAccountId()).orElseThrow(() -> new ServiceException(ErrorCode.ACCOUNT_DOES_NOT_EXIST, "Credentials found for the identifier but no account was associated with it. This could be the " + "result of deleting an account without deleting its credentials"));
    final OffsetDateTime now = OffsetDateTime.now();
    final AccountTokenDO accountToken = AccountTokenDO.builder().id(ID.generate()).token(cryptographicRandom.base64Url(RESET_TOKEN_SIZE)).associatedAccountId(account.getId()).additionalInformation(ImmutableMap.of("credentialsId", credentials.getId())).expiresAt(now.plus(TOKEN_LIFETIME)).build();
    accountTokensRepository.save(accountToken).join();
    messageBus.publish(CREDENTIALS_CHANNEL, Messages.resetTokenGenerated(new ResetTokenMessage(account, accountToken)));
    return PasswordResetTokenBO.builder().token(returnToken ? accountToken.getToken() : null).issuedAt(now.toEpochSecond()).expiresAt(accountToken.getExpiresAt().toEpochSecond()).build();
}