Example 1 with CustomWebAuthenticationDetails
use of org.openkilda.security.CustomWebAuthenticationDetails in project open-kilda by telstra.
the class LoginController method authenticate.
/**
* Authenticate.
*
* @param username the username
* @param password the password
* @param request the request
* @return the model and view
*/
@RequestMapping(value = "/authenticate", method = RequestMethod.POST)
public ModelAndView authenticate(@RequestParam("username") String username, @RequestParam("password") final String password, final HttpServletRequest request, RedirectAttributes redir) {
ModelAndView modelAndView = new ModelAndView(IConstants.View.LOGIN);
String error = null;
username = username != null ? username.toLowerCase() : null;
UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken(username, password);
CustomWebAuthenticationDetails customWebAuthenticationDetails = new CustomWebAuthenticationDetails(request);
token.setDetails(customWebAuthenticationDetails);
try {
HttpSession sessionOld = request.getSession(false);
if (sessionOld != null && !sessionOld.isNew()) {
sessionOld.invalidate();
}
Authentication authenticate = authenticationManager.authenticate(token);
if (authenticate.isAuthenticated()) {
modelAndView.setViewName(IConstants.View.REDIRECT_HOME);
UserInfo userInfo = getLoggedInUser(request);
userService.populateUserInfo(userInfo, username);
request.getSession(true).setAttribute(IConstants.SESSION_OBJECT, userInfo);
SecurityContextHolder.getContext().setAuthentication(authenticate);
userService.updateLoginDetail(username);
} else {
error = "Login failed; Invalid email or password.";
LOGGER.warn("Authentication failure for user: '" + username + "'");
modelAndView.setViewName(IConstants.View.REDIRECT_LOGIN);
}
} catch (TwoFaKeyNotSetException e) {
LOGGER.warn("2 FA Key not set for user: '" + username + "'");
modelAndView.addObject("username", username);
modelAndView.addObject("password", password);
String secretKey = TwoFactorUtility.getBase32EncryptedKey();
modelAndView.addObject("key", secretKey);
userService.updateUser2FaKey(username, secretKey);
modelAndView.addObject("applicationName", applicationName);
modelAndView.setViewName(IConstants.View.TWO_FA_GENERATOR);
} catch (OtpRequiredException e) {
LOGGER.warn("OTP required for user: '" + username + "'");
modelAndView.addObject("username", username);
modelAndView.addObject("password", password);
modelAndView.addObject("applicationName", applicationName);
modelAndView.setViewName(IConstants.View.OTP);
} catch (InvalidOtpException e) {
LOGGER.warn("Authentication code is invalid for user: '" + username + "'");
error = "Authentication code is invalid";
modelAndView.addObject("username", username);
modelAndView.addObject("password", password);
modelAndView.addObject("applicationName", applicationName);
if (customWebAuthenticationDetails.isConfigure2Fa()) {
UserEntity userInfo = userService.getUserByUsername(username);
modelAndView.addObject("key", userInfo.getTwoFaKey());
modelAndView.setViewName(IConstants.View.TWO_FA_GENERATOR);
} else {
modelAndView.setViewName(IConstants.View.OTP);
}
} catch (BadCredentialsException e) {
LOGGER.warn("Authentication failure", e);
error = e.getMessage();
modelAndView.setViewName(IConstants.View.REDIRECT_LOGIN);
} catch (LockedException e) {
error = e.getMessage();
modelAndView.setViewName(IConstants.View.REDIRECT_LOGIN);
} catch (Exception e) {
LOGGER.warn("Authentication failure", e);
error = "Login Failed. Error: " + e.getMessage() + ".";
modelAndView.setViewName(IConstants.View.REDIRECT_LOGIN);
}
if (error != null) {
redir.addFlashAttribute("error", error);
}
return modelAndView;
}
Also used :
LockedException(org.springframework.security.authentication.LockedException)
CustomWebAuthenticationDetails(org.openkilda.security.CustomWebAuthenticationDetails)
HttpSession(javax.servlet.http.HttpSession)
ModelAndView(org.springframework.web.servlet.ModelAndView)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
UserInfo(org.usermanagement.model.UserInfo)
BadCredentialsException(org.springframework.security.authentication.BadCredentialsException)
TwoFaKeyNotSetException(org.openkilda.exception.TwoFaKeyNotSetException)
OtpRequiredException(org.openkilda.exception.OtpRequiredException)
UserEntity(org.usermanagement.dao.entity.UserEntity)
OtpRequiredException(org.openkilda.exception.OtpRequiredException)
BadCredentialsException(org.springframework.security.authentication.BadCredentialsException)
LockedException(org.springframework.security.authentication.LockedException)
InvalidOtpException(org.openkilda.exception.InvalidOtpException)
TwoFaKeyNotSetException(org.openkilda.exception.TwoFaKeyNotSetException)
Authentication(org.springframework.security.core.Authentication)
InvalidOtpException(org.openkilda.exception.InvalidOtpException)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Aggregations
HttpSession (javax.servlet.http.HttpSession)1
InvalidOtpException (org.openkilda.exception.InvalidOtpException)1
OtpRequiredException (org.openkilda.exception.OtpRequiredException)1
TwoFaKeyNotSetException (org.openkilda.exception.TwoFaKeyNotSetException)1
CustomWebAuthenticationDetails (org.openkilda.security.CustomWebAuthenticationDetails)1
BadCredentialsException (org.springframework.security.authentication.BadCredentialsException)1
LockedException (org.springframework.security.authentication.LockedException)1
UsernamePasswordAuthenticationToken (org.springframework.security.authentication.UsernamePasswordAuthenticationToken)1
Authentication (org.springframework.security.core.Authentication)1
RequestMapping (org.springframework.web.bind.annotation.RequestMapping)1
ModelAndView (org.springframework.web.servlet.ModelAndView)1
UserEntity (org.usermanagement.dao.entity.UserEntity)1
UserInfo (org.usermanagement.model.UserInfo)1
