Examples with User uk.gov.pay.adminusers.model.User used on opensource projects

Search in sources :

Example 16 with User

use of uk.gov.pay.adminusers.model.User in project pay-adminusers by alphagov.

the class UserServices method authenticateSecondFactor.

@Transactional
public Optional<User> authenticateSecondFactor(String externalId, int code) {
    logger.debug("OTP attempt - user_id={}", externalId);
    ZonedDateTime now = ZonedDateTime.now(ZoneId.of("UTC"));
    return userDao.findByExternalId(externalId).map(userEntity -> {
        if (userEntity.isDisabled()) {
            logger.warn("Failed OTP attempt - user_id={}, login_counter={}. Authenticate Second Factor attempted for a disabled User", userEntity.getExternalId(), userEntity.getLoginCounter());
            return Optional.<User>empty();
        }
        if (secondFactorAuthenticator.authorize(userEntity.getOtpKey(), code)) {
            userEntity.setLoginCounter(0);
            userEntity.setUpdatedAt(now);
            userEntity.setLastLoggedInAt(now);
            userDao.merge(userEntity);
            logger.info("Successful OTP. user_id={}", userEntity.getExternalId());
            return Optional.of(linksBuilder.decorate(userEntity.toUser()));
        } else {
            userEntity.setLoginCounter(userEntity.getLoginCounter() + 1);
            userEntity.setUpdatedAt(now);
            userEntity.setDisabled(userEntity.getLoginCounter() > loginAttemptCap);
            userDao.merge(userEntity);
            if (userEntity.isDisabled()) {
                logger.warn("Failed OTP attempt - user_id={}, login_counter={}. Invalid second factor in an account currently locked", userEntity.getExternalId(), userEntity.getLoginCounter());
            } else {
                logger.info("Failed OTP attempt - user_id={}, login_counter={}. Invalid second factor attempt.", userEntity.getExternalId(), userEntity.getLoginCounter());
            }
            return Optional.<User>empty();
        }
    }).orElseGet(() -> {
        // this cannot happen unless a bug in selfservice
        logger.error("Authenticate 2FA token attempted for non-existent User [{}]", externalId);
        return Optional.empty();
    });
}
Also used : User(uk.gov.pay.adminusers.model.User) Inject(com.google.inject.Inject) ZonedDateTime(java.time.ZonedDateTime) LoggerFactory(org.slf4j.LoggerFactory) TelephoneNumberUtility(uk.gov.pay.adminusers.utils.telephonenumber.TelephoneNumberUtility) HashMap(java.util.HashMap) Transactional(com.google.inject.persist.Transactional) Collectors.toUnmodifiableList(java.util.stream.Collectors.toUnmodifiableList) Map(java.util.Map) SecondFactorMethod(uk.gov.pay.adminusers.model.SecondFactorMethod) PATH_DISABLED(uk.gov.pay.adminusers.model.PatchRequest.PATH_DISABLED) PATH_EMAIL(uk.gov.pay.adminusers.model.PatchRequest.PATH_EMAIL) PATH_FEATURES(uk.gov.pay.adminusers.model.PatchRequest.PATH_FEATURES) PATH_TELEPHONE_NUMBER(uk.gov.pay.adminusers.model.PatchRequest.PATH_TELEPHONE_NUMBER) Logger(org.slf4j.Logger) PatchRequest(uk.gov.pay.adminusers.model.PatchRequest) Integer.parseInt(java.lang.Integer.parseInt) UserEntity(uk.gov.pay.adminusers.persistence.entity.UserEntity) ZoneId(java.time.ZoneId) String.format(java.lang.String.format) UserDao(uk.gov.pay.adminusers.persistence.dao.UserDao) SMS(uk.gov.pay.adminusers.model.SecondFactorMethod.SMS) Provider(com.google.inject.Provider) List(java.util.List) PATH_SESSION_VERSION(uk.gov.pay.adminusers.model.PatchRequest.PATH_SESSION_VERSION) Boolean.parseBoolean(java.lang.Boolean.parseBoolean) Optional(java.util.Optional) Named(com.google.inject.name.Named) ZonedDateTime(java.time.ZonedDateTime) Transactional(com.google.inject.persist.Transactional)

Example 17 with User

use of uk.gov.pay.adminusers.model.User in project pay-adminusers by alphagov.

the class UserResourceSecondFactorAuthenticationIT method createValidUser.

@BeforeEach
public void createValidUser() {
    String username = randomUuid();
    String email = username + "@example.com";
    User user = userDbFixture(databaseHelper).withOtpKey(OTP_KEY).withUsername(username).withEmail(email).insertUser();
    this.externalId = user.getExternalId();
    this.username = user.getUsername();
}
Also used : User(uk.gov.pay.adminusers.model.User) BeforeEach(org.junit.jupiter.api.BeforeEach)

Example 18 with User

use of uk.gov.pay.adminusers.model.User in project pay-adminusers by alphagov.

the class UserResourceUpdateServiceRoleIT method shouldUpdateUserServiceRole.

@Test
public void shouldUpdateUserServiceRole() {
    Role role = roleDbFixture(databaseHelper).insertAdmin();
    Service service = serviceDbFixture(databaseHelper).insertService();
    String serviceExternalId = service.getExternalId();
    String username1 = randomUuid();
    String email1 = username1 + "@example.com";
    User user = userDbFixture(databaseHelper).withServiceRole(service, role.getId()).withUsername(username1).withEmail(email1).insertUser();
    String username2 = randomUuid();
    String email2 = username2 + "@example.com";
    userDbFixture(databaseHelper).withServiceRole(service, role.getId()).withUsername(username2).withEmail(email2).insertUser();
    JsonNode payload = mapper.valueToTree(Map.of("role_name", "view-and-refund"));
    givenSetup().when().contentType(JSON).body(payload).put(format(USER_SERVICE_RESOURCE, user.getExternalId(), serviceExternalId)).then().statusCode(200).body("username", is(user.getUsername())).body("service_roles[0].role.name", is("view-and-refund")).body("service_roles[0].role.description", is("View and Refund"));
}
Also used : Role(uk.gov.pay.adminusers.model.Role) User(uk.gov.pay.adminusers.model.User) Service(uk.gov.pay.adminusers.model.Service) JsonNode(com.fasterxml.jackson.databind.JsonNode) Test(org.junit.jupiter.api.Test)

Example 19 with User

use of uk.gov.pay.adminusers.model.User in project pay-adminusers by alphagov.

the class UserCreatorTest method shouldSaveAndReturnUser_forValidUserCreationRequest.

@Test
public void shouldSaveAndReturnUser_forValidUserCreationRequest() {
    String validRole = "validRole";
    when(mockRoleDao.findByRoleName(validRole)).thenReturn(Optional.of(mock(RoleEntity.class)));
    CreateUserRequest request = CreateUserRequest.from("email@example.com", "password", "email@example.com", null, null, "otpKey", "3745838475", null);
    User user = userCreator.doCreate(request, validRole);
    verify(mockUserDao).persist(expectedUser.capture());
    assertThat(expectedUser.getValue().getEmail(), is("email@example.com"));
    assertThat(user.getEmail(), is("email@example.com"));
    assertThat(user.getSecondFactor(), is(SecondFactorMethod.SMS));
    assertThat(user.getServiceRoles().size(), is(0));
}
Also used : User(uk.gov.pay.adminusers.model.User) CreateUserRequest(uk.gov.pay.adminusers.model.CreateUserRequest) Test(org.junit.jupiter.api.Test)

Example 20 with User

use of uk.gov.pay.adminusers.model.User in project pay-adminusers by alphagov.

the class LinksBuilderTest method shouldConstruct_userSelfLinkCorrectly.

@Test
void shouldConstruct_userSelfLinkCorrectly() throws Exception {
    Service service = Service.from(2, "34783g87ebg764r", new ServiceName(Service.DEFAULT_NAME_VALUE));
    Role role = Role.role(2, "blah", "blah");
    ServiceRole serviceRole = ServiceRole.from(service, role);
    User user = User.from(randomInt(), randomUuid(), "a-username", "a-password", "email@example.com", "4wrwef", "123435", Collections.singletonList(serviceRole), null, SecondFactorMethod.SMS, null, null, null);
    User decoratedUser = linksBuilder.decorate(user);
    String linkJson = objectMapper.writeValueAsString(decoratedUser.getLinks().get(0));
    assertThat(linkJson, is("{\"rel\":\"self\",\"method\":\"GET\",\"href\":\"http://localhost:8080/v1/api/users/" + decoratedUser.getExternalId() + "\"}"));
}
Also used : Role(uk.gov.pay.adminusers.model.Role) ServiceRole(uk.gov.pay.adminusers.model.ServiceRole) ServiceRole(uk.gov.pay.adminusers.model.ServiceRole) User(uk.gov.pay.adminusers.model.User) ServiceName(uk.gov.pay.adminusers.model.ServiceName) Service(uk.gov.pay.adminusers.model.Service) Test(org.junit.jupiter.api.Test)

Aggregations

User (uk.gov.pay.adminusers.model.User)77 Test (org.junit.jupiter.api.Test)64 UserEntity (uk.gov.pay.adminusers.persistence.entity.UserEntity)47 Role (uk.gov.pay.adminusers.model.Role)20 Service (uk.gov.pay.adminusers.model.Service)16 JsonNode (com.fasterxml.jackson.databind.JsonNode)13 ZonedDateTime (java.time.ZonedDateTime)7 CreateUserRequest (uk.gov.pay.adminusers.model.CreateUserRequest)7 List (java.util.List)6 Map (java.util.Map)6 SecondFactorToken (uk.gov.pay.adminusers.model.SecondFactorToken)6 Inject (com.google.inject.Inject)5 Optional (java.util.Optional)5 Matchers.emptyOrNullString (org.hamcrest.Matchers.emptyOrNullString)5 BeforeEach (org.junit.jupiter.api.BeforeEach)5 Logger (org.slf4j.Logger)5 LoggerFactory (org.slf4j.LoggerFactory)5 RoleEntity (uk.gov.pay.adminusers.persistence.entity.RoleEntity)5 ServiceEntity (uk.gov.pay.adminusers.persistence.entity.ServiceEntity)5 SecondFactorMethod (uk.gov.pay.adminusers.model.SecondFactorMethod)4
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial