Example 1 with CaptchaInfoBean
use of org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean in project carbon-identity-framework by wso2.
the class UserIdentityManagementService method updateCredential.
/**
* proceed updating credentials of user
*
* @param captchaInfoBean bean class that contains captcha information
* @return True, if successful in verifying and hence updating the credentials.
*/
public VerificationBean updateCredential(String userName, String confirmation, String password, CaptchaInfoBean captchaInfoBean) {
RecoveryProcessor recoveryProcessor = IdentityMgtServiceComponent.getRecoveryProcessor();
if (IdentityMgtConfig.getInstance().isCaptchaVerificationInternallyManaged()) {
try {
CaptchaUtil.processCaptchaInfoBean(captchaInfoBean);
} catch (Exception e) {
log.error("Error while processing captcha bean.", e);
return new VerificationBean(VerificationBean.ERROR_CODE_INVALID_CAPTCHA);
}
}
try {
UserDTO userDTO = Utils.processUserId(userName);
if (recoveryProcessor.verifyConfirmationKey(confirmation).isVerified()) {
Utils.updatePassword(userDTO.getUserId(), userDTO.getTenantId(), password);
log.info("Credential is updated for user : " + userDTO.getUserId() + " and tenant domain : " + userDTO.getTenantDomain());
return new VerificationBean(true);
} else {
log.warn("Invalid user tried to update credential with user Id : " + userDTO.getUserId() + " and tenant domain : " + userDTO.getTenantDomain());
}
} catch (Exception e) {
log.error("Error while updating credential for user : " + userName, e);
}
return new VerificationBean(VerificationBean.ERROR_CODE_UNEXPECTED);
}
Also used :
VerificationBean(org.wso2.carbon.identity.mgt.beans.VerificationBean)
UserDTO(org.wso2.carbon.identity.mgt.dto.UserDTO)
RecoveryProcessor(org.wso2.carbon.identity.mgt.RecoveryProcessor)
UserStoreException(org.wso2.carbon.user.api.UserStoreException)
IdentityMgtServiceException(org.wso2.carbon.identity.mgt.IdentityMgtServiceException)
IdentityException(org.wso2.carbon.identity.base.IdentityException)
Example 2 with CaptchaInfoBean
use of org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean in project carbon-identity-framework by wso2.
the class UserInformationRecoveryService method getCaptcha.
public CaptchaInfoBean getCaptcha() throws IdentityMgtServiceException {
if (log.isDebugEnabled()) {
log.debug("User get captcha image request received");
}
try {
CaptchaUtil.cleanOldCaptchas();
CaptchaInfoBean bean = CaptchaUtil.generateCaptchaImage();
if (log.isDebugEnabled()) {
log.debug("Captcha stored: " + bean.getImagePath());
log.debug("Captcha generated successfully");
}
return bean;
} catch (Exception e) {
String errorMessage = "Error while generating captcha";
log.error(errorMessage, e);
throw new IdentityMgtServiceException(errorMessage);
}
}
Also used :
CaptchaInfoBean(org.wso2.carbon.captcha.mgt.beans.CaptchaInfoBean)
IdentityMgtServiceException(org.wso2.carbon.identity.mgt.IdentityMgtServiceException)
UserStoreException(org.wso2.carbon.user.api.UserStoreException)
IdentityMgtServiceException(org.wso2.carbon.identity.mgt.IdentityMgtServiceException)
IdentityException(org.wso2.carbon.identity.base.IdentityException)
Example 3 with CaptchaInfoBean
use of org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean in project carbon-identity-framework by wso2.
the class CaptchaUtil method generateCaptchaImage.
/**
* Generate the captcha image.
*
* @return CaptchaInfoBean
* @throws Exception - no exception handling here.
* Exceptions in generating the captcha are thrown as they are.
*/
public static CaptchaInfoBean generateCaptchaImage() throws Exception {
// random string for the captcha.
String randomSecretKey = UUID.randomUUID().toString();
String imagePath = CaptchaMgtConstants.CAPTCHA_IMAGES_PATH + RegistryConstants.PATH_SEPARATOR + randomSecretKey + ".jpg";
Config config = new Config(new Properties());
Producer captchaProducer = config.getProducerImpl();
String captchaText = captchaProducer.createText();
BufferedImage image = captchaProducer.createImage(captchaText);
File tempFile = File.createTempFile("temp-", ".jpg");
try {
ImageIO.write(image, "jpg", tempFile);
byte[] imageBytes = CarbonUtils.getBytesFromFile(tempFile);
// saving the image
Registry superTenantRegistry = CaptchaMgtServiceComponent.getConfigSystemRegistry(MultitenantConstants.SUPER_TENANT_ID);
Resource imageResource = superTenantRegistry.newResource();
imageResource.setContent(imageBytes);
superTenantRegistry.put(imagePath, imageResource);
// prepare the captcha info bean
CaptchaInfoBean captchaInfoBean = new CaptchaInfoBean();
// random generated value as secret key
captchaInfoBean.setSecretKey(randomSecretKey);
captchaInfoBean.setImagePath("registry" + RegistryConstants.PATH_SEPARATOR + "resource" + RegistryConstants.CONFIG_REGISTRY_BASE_PATH + imagePath);
// now create an entry in the registry on the captcha
Resource recordResource = superTenantRegistry.newResource();
// no need to version
((ResourceImpl) recordResource).setVersionableChange(false);
recordResource.setProperty(CaptchaMgtConstants.CAPTCHA_TEXT_PROPERTY_KEY, captchaText);
recordResource.setProperty(CaptchaMgtConstants.CAPTCHA_PATH_PROPERTY_KEY, imagePath);
superTenantRegistry.put(CaptchaMgtConstants.CAPTCHA_DETAILS_PATH + RegistryConstants.PATH_SEPARATOR + randomSecretKey, recordResource);
if (log.isDebugEnabled()) {
log.debug("Successfully generated the captcha image.");
}
return captchaInfoBean;
} finally {
if (!tempFile.delete()) {
log.warn("Could not delete " + tempFile.getAbsolutePath());
}
}
}
Also used :
CaptchaInfoBean(org.wso2.carbon.captcha.mgt.beans.CaptchaInfoBean)
Producer(com.google.code.kaptcha.Producer)
Config(com.google.code.kaptcha.util.Config)
UserRegistry(org.wso2.carbon.registry.core.session.UserRegistry)
Properties(java.util.Properties)
File(java.io.File)
BufferedImage(java.awt.image.BufferedImage)
Example 4 with CaptchaInfoBean
use of org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean in project product-is by wso2.
the class UserInformationRecoveryServiceTestCase method testGetCaptcha.
@SetEnvironment(executionEnvironments = { ExecutionEnvironment.ALL })
@Test(groups = "wso2.is", description = "Check get captcha", dependsOnMethods = "testListUsers")
public void testGetCaptcha() throws Exception {
CaptchaInfoBean bean = infoRecoveryClient.getCaptcha();
Assert.assertNotNull(bean, "Getting the captcha call failed with null return");
Assert.assertNotNull(bean.getImagePath(), "Getting image path from captcha has failed.");
Assert.assertNotNull(bean.getSecretKey(), "Getting secret key from captcha has failed.");
}
Also used :
CaptchaInfoBean(org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean)
SetEnvironment(org.wso2.carbon.automation.engine.annotations.SetEnvironment)
Test(org.testng.annotations.Test)
ISIntegrationTest(org.wso2.identity.integration.common.utils.ISIntegrationTest)
Example 5 with CaptchaInfoBean
use of org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean in project carbon-identity-framework by wso2.
the class CaptchaUtil method validateCaptcha.
/**
* Validates that the user entered the correct string displayed in the captcha.
*
* @param captchaInfoBean Captcha details
* @throws Exception, if the captcha validation fails, it will throw exception.
* Method completes successfully if the user input matches the captcha image shown.
*/
public static void validateCaptcha(CaptchaInfoBean captchaInfoBean) throws Exception {
// user's answer for the captcha
String userAnswer = captchaInfoBean.getUserAnswer();
if (userAnswer.equals("")) {
// if no user answer given we will throw an error
String msg = CaptchaMgtConstants.CAPTCHA_ERROR_MSG + " User has not answered to captcha text.";
log.error(msg);
throw new Exception(msg);
}
// gets the random generated secret key.
String secretKey = captchaInfoBean.getSecretKey();
String recordPath = CaptchaMgtConstants.CAPTCHA_DETAILS_PATH + RegistryConstants.PATH_SEPARATOR + secretKey;
Registry superTenantRegistry = CaptchaMgtServiceComponent.getConfigSystemRegistry(MultitenantConstants.SUPER_TENANT_ID);
if (!superTenantRegistry.resourceExists(recordPath)) {
String msg = "The captcha details are not available.";
log.error(msg);
throw new Exception(msg);
}
Resource resource = superTenantRegistry.get(recordPath);
String captchaText = resource.getProperty(CaptchaMgtConstants.CAPTCHA_TEXT_PROPERTY_KEY);
if (captchaText == null) {
String msg = "The captcha details are not available.";
log.error(msg);
throw new Exception(msg);
}
if (!captchaText.equals(userAnswer)) {
// wrong user input
String msg = CaptchaMgtConstants.CAPTCHA_ERROR_MSG + " The user's answer doesn't match the captcha text.";
log.error(msg);
throw new Exception(msg);
}
// if all goes well, we will reach here.
if (log.isDebugEnabled()) {
log.debug("Successfully validated the captcha.");
}
}
Also used :
UserRegistry(org.wso2.carbon.registry.core.session.UserRegistry)
RegistryException(org.wso2.carbon.registry.core.exceptions.RegistryException)
UserStoreException(org.wso2.carbon.user.core.UserStoreException)
Aggregations
IdentityException (org.wso2.carbon.identity.base.IdentityException)6
IdentityMgtServiceException (org.wso2.carbon.identity.mgt.IdentityMgtServiceException)6
UserStoreException (org.wso2.carbon.user.api.UserStoreException)6
RecoveryProcessor (org.wso2.carbon.identity.mgt.RecoveryProcessor)5
VerificationBean (org.wso2.carbon.identity.mgt.beans.VerificationBean)5
UserDTO (org.wso2.carbon.identity.mgt.dto.UserDTO)5
PrivilegedCarbonContext (org.wso2.carbon.context.PrivilegedCarbonContext)3
CaptchaInfoBean (org.wso2.carbon.captcha.mgt.beans.CaptchaInfoBean)2
UserRegistry (org.wso2.carbon.registry.core.session.UserRegistry)2
Producer (com.google.code.kaptcha.Producer)1
Config (com.google.code.kaptcha.util.Config)1
BufferedImage (java.awt.image.BufferedImage)1
File (java.io.File)1
Properties (java.util.Properties)1
Test (org.testng.annotations.Test)1
SetEnvironment (org.wso2.carbon.automation.engine.annotations.SetEnvironment)1
CaptchaInfoBean (org.wso2.carbon.captcha.mgt.beans.xsd.CaptchaInfoBean)1
NotificationDataDTO (org.wso2.carbon.identity.mgt.dto.NotificationDataDTO)1
UserRecoveryDTO (org.wso2.carbon.identity.mgt.dto.UserRecoveryDTO)1
RegistryException (org.wso2.carbon.registry.core.exceptions.RegistryException)1
