backend/src/main/java/ch/usi/inf/sa4/sanmarinoes/smarthut/controller/AuthenticationController.java

package ch.usi.inf.sa4.sanmarinoes.smarthut.controller;

import ch.usi.inf.sa4.sanmarinoes.smarthut.config.JWTTokenUtils;
import ch.usi.inf.sa4.sanmarinoes.smarthut.dto.JWTRequest;
import ch.usi.inf.sa4.sanmarinoes.smarthut.dto.JWTResponse;
import ch.usi.inf.sa4.sanmarinoes.smarthut.error.UnauthorizedException;
import ch.usi.inf.sa4.sanmarinoes.smarthut.error.UserNotFoundException;
import ch.usi.inf.sa4.sanmarinoes.smarthut.models.*;
import ch.usi.inf.sa4.sanmarinoes.smarthut.service.JWTUserDetailsService;
import java.security.Principal;
import javax.validation.Valid;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.authentication.BadCredentialsException;
import org.springframework.security.authentication.DisabledException;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.web.bind.annotation.*;

@RestController
@RequestMapping("/auth")
public class AuthenticationController {

    private final AuthenticationManager authenticationManager;

    private final UserRepository userRepository;

    private final JWTTokenUtils jwtTokenUtils;

    private final JWTUserDetailsService userDetailsService;

    public AuthenticationController(
            AuthenticationManager authenticationManager,
            UserRepository userRepository,
            JWTTokenUtils jwtTokenUtils,
            JWTUserDetailsService userDetailsService) {
        this.authenticationManager = authenticationManager;
        this.userRepository = userRepository;
        this.jwtTokenUtils = jwtTokenUtils;
        this.userDetailsService = userDetailsService;
    }

    @PostMapping("/login")
    public JWTResponse login(@Valid @RequestBody JWTRequest authenticationRequest)
            throws UnauthorizedException, UserNotFoundException {
        final UserDetails userDetails;
        if (authenticationRequest.getUsernameOrEmail().contains("@")) {
            // usernameOrEmail contains an email, so fetch the corresponding username
            final User user =
                    userRepository.findByEmailIgnoreCase(
                            authenticationRequest.getUsernameOrEmail());
            if (user == null) {
                throw new UserNotFoundException();
            }

            authenticate(user.getUsername(), authenticationRequest.getPassword());
            userDetails = userDetailsService.loadUserByUsername(user.getUsername());
        } else {
            // usernameOrEmail contains a username, authenticate with that then
            authenticate(
                    authenticationRequest.getUsernameOrEmail(),
                    authenticationRequest.getPassword());
            userDetails =
                    userDetailsService.loadUserByUsername(
                            authenticationRequest.getUsernameOrEmail());
        }

        final String token = jwtTokenUtils.generateToken(userDetails);
        return new JWTResponse(token);
    }

    @GetMapping("/profile")
    public User profile(final Principal principal) {
        return userRepository.findByUsername(principal.getName());
    }

    private void authenticate(String username, String password) throws UnauthorizedException {
        try {
            authenticationManager.authenticate(
                    new UsernamePasswordAuthenticationToken(username, password));
        } catch (DisabledException e) {
            throw new UnauthorizedException(true, e);
        } catch (BadCredentialsException e) {
            throw new UnauthorizedException(false, e);
        }
    }
}
Working auth with JWT 2020-02-25 16:51:45 +00:00			`package ch.usi.inf.sa4.sanmarinoes.smarthut.controller;`

Socket authentication works 2020-03-15 09:44:10 +00:00			`import ch.usi.inf.sa4.sanmarinoes.smarthut.config.JWTTokenUtils;`
Started work on input validation 2020-02-26 20:41:54 +00:00			`import ch.usi.inf.sa4.sanmarinoes.smarthut.dto.JWTRequest;`
			`import ch.usi.inf.sa4.sanmarinoes.smarthut.dto.JWTResponse;`
Started work on tests 2020-03-05 11:42:53 +00:00			`import ch.usi.inf.sa4.sanmarinoes.smarthut.error.UnauthorizedException;`
Added email support to login 2020-03-03 09:55:35 +00:00			`import ch.usi.inf.sa4.sanmarinoes.smarthut.error.UserNotFoundException;`
Working auth with JWT 2020-02-25 16:51:45 +00:00			`import ch.usi.inf.sa4.sanmarinoes.smarthut.models.*;`
WIP on error fixing for sonarqube code smells and vulnerabilities check 2020-05-07 06:48:57 +00:00			`import ch.usi.inf.sa4.sanmarinoes.smarthut.service.JWTUserDetailsService;`
Added /auth/profile 2020-03-25 21:41:59 +00:00			`import java.security.Principal;`
Started work on input validation 2020-02-26 20:41:54 +00:00			`import javax.validation.Valid;`
Working auth with JWT 2020-02-25 16:51:45 +00:00			`import org.springframework.security.authentication.AuthenticationManager;`
			`import org.springframework.security.authentication.BadCredentialsException;`
			`import org.springframework.security.authentication.DisabledException;`
			`import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;`
			`import org.springframework.security.core.userdetails.UserDetails;`
			`import org.springframework.web.bind.annotation.*;`

			`@RestController`
			`@RequestMapping("/auth")`
Started work on input validation 2020-02-26 20:41:54 +00:00			`public class AuthenticationController {`
Working auth with JWT 2020-02-25 16:51:45 +00:00
Merge 2020-03-02 15:56:43 +00:00			`private final AuthenticationManager authenticationManager;`
Working auth with JWT 2020-02-25 16:51:45 +00:00
Merge 2020-03-02 15:56:43 +00:00			`private final UserRepository userRepository;`
Started work on input validation 2020-02-26 20:41:54 +00:00
Socket authentication works 2020-03-15 09:44:10 +00:00			`private final JWTTokenUtils jwtTokenUtils;`
Working auth with JWT 2020-02-25 16:51:45 +00:00
Merge 2020-03-02 15:56:43 +00:00			`private final JWTUserDetailsService userDetailsService;`
Working auth with JWT 2020-02-25 16:51:45 +00:00
Merge 2020-03-02 15:56:43 +00:00			`public AuthenticationController(`
			`AuthenticationManager authenticationManager,`
			`UserRepository userRepository,`
Socket authentication works 2020-03-15 09:44:10 +00:00			`JWTTokenUtils jwtTokenUtils,`
Added email support to login 2020-03-03 09:55:35 +00:00			`JWTUserDetailsService userDetailsService) {`
Merge 2020-03-02 15:56:43 +00:00			`this.authenticationManager = authenticationManager;`
			`this.userRepository = userRepository;`
Socket authentication works 2020-03-15 09:44:10 +00:00			`this.jwtTokenUtils = jwtTokenUtils;`
Merge 2020-03-02 15:56:43 +00:00			`this.userDetailsService = userDetailsService;`
			`}`

Working auth with JWT 2020-02-25 16:51:45 +00:00			`@PostMapping("/login")`
Fixed login request validation 2020-03-04 12:28:51 +00:00			`public JWTResponse login(@Valid @RequestBody JWTRequest authenticationRequest)`
Started work on tests 2020-03-05 11:42:53 +00:00			`throws UnauthorizedException, UserNotFoundException {`
fixed login 2020-03-04 14:11:23 +00:00			`final UserDetails userDetails;`
Added email support to login 2020-03-03 09:55:35 +00:00			`if (authenticationRequest.getUsernameOrEmail().contains("@")) {`
			`// usernameOrEmail contains an email, so fetch the corresponding username`
			`final User user =`
			`userRepository.findByEmailIgnoreCase(`
			`authenticationRequest.getUsernameOrEmail());`
			`if (user == null) {`
			`throw new UserNotFoundException();`
			`}`

			`authenticate(user.getUsername(), authenticationRequest.getPassword());`
fixed login 2020-03-04 14:11:23 +00:00			`userDetails = userDetailsService.loadUserByUsername(user.getUsername());`
Added email support to login 2020-03-03 09:55:35 +00:00			`} else {`
			`// usernameOrEmail contains a username, authenticate with that then`
			`authenticate(`
			`authenticationRequest.getUsernameOrEmail(),`
			`authenticationRequest.getPassword());`
You nedd to verify your mail in onder to login 2020-03-04 14:33:58 +00:00			`userDetails =`
			`userDetailsService.loadUserByUsername(`
			`authenticationRequest.getUsernameOrEmail());`
Added email support to login 2020-03-03 09:55:35 +00:00			`}`

Socket authentication works 2020-03-15 09:44:10 +00:00			`final String token = jwtTokenUtils.generateToken(userDetails);`
Working auth with JWT 2020-02-25 16:51:45 +00:00			`return new JWTResponse(token);`
			`}`

Added /auth/profile 2020-03-25 21:41:59 +00:00			`@GetMapping("/profile")`
			`public User profile(final Principal principal) {`
			`return userRepository.findByUsername(principal.getName());`
			`}`

Started work on tests 2020-03-05 11:42:53 +00:00			`private void authenticate(String username, String password) throws UnauthorizedException {`
Working auth with JWT 2020-02-25 16:51:45 +00:00			`try {`
			`authenticationManager.authenticate(`
			`new UsernamePasswordAuthenticationToken(username, password));`
			`} catch (DisabledException e) {`
WIP on error fixing for sonarqube code smells and vulnerabilities check 2020-05-07 06:48:57 +00:00			`throw new UnauthorizedException(true, e);`
Working auth with JWT 2020-02-25 16:51:45 +00:00			`} catch (BadCredentialsException e) {`
WIP on error fixing for sonarqube code smells and vulnerabilities check 2020-05-07 06:48:57 +00:00			`throw new UnauthorizedException(false, e);`
Working auth with JWT 2020-02-25 16:51:45 +00:00			`}`
			`}`
			`}`