@RequestMapping(value = "/oauth/delApp/{TOKEN}/{APPID}", method = RequestMethod.GET)
@Timed
public ResponseEntity<Void> delApp(
@PathVariable("TOKEN") String ott,
@PathVariable("APPID") String appId,
HttpServletRequest request)
throws IOException, JAXBException, TokenNotFoundException, TokenAlreadyUsedException {
log.debug("REST ADD CUSTOM APPS. token [{}]", ott);
Token token = tokenRepository.findOneByOtt(ott);
if (token == null) {
throw new TokenNotFoundException(ott);
}
Person person = token.getPerson();
Application application = token.getApplication();
Application toDelete = applicationRepository.findOne(new Long(appId));
RelPersonApplication relPersonApplication =
relPersonApplicationRepository.findOneByApplicationIsAndTokenIs(toDelete, token);
log.debug(
"REST ADD CUSTOM APPS. person [{}], localid [{}], relPersonApplication [{}]",
person,
person.getLocalID(),
relPersonApplication.getId());
relPersonApplicationRepository.delete(relPersonApplication);
return ResponseEntity.ok().build();
}
@RequestMapping(
value = "/user/{LOCALID}/delete",
method = RequestMethod.GET,
produces = MediaType.APPLICATION_JSON_VALUE)
@Timed
public ResponseEntity<DeleteUserIdResponseDTO> deleteUser(@PathVariable("LOCALID") String localID)
throws ApplicationNotFoundException, LocalIdMissingException {
log.debug("REST DELETE_ID START. localid [{}]", localID);
String currentLogin = SecurityUtils.getCurrentLogin();
Application application = applicationRepository.findOneByApplicationID(currentLogin);
if (application == null) {
throw new ApplicationNotFoundException(currentLogin);
}
Person person = personRepository.findOneByLocalID(localID);
if (person == null) {
throw new LocalIdMissingException();
}
orcidService.deleteUser(person);
DeleteUserIdResponseDTO response = new DeleteUserIdResponseDTO();
response.setResultCode(ResultCode.SUCCESS.getCode());
return new ResponseEntity<DeleteUserIdResponseDTO>(response, HttpStatus.OK);
}
@RequestMapping(value = "/oauth/addApp/{TOKEN}/{APPID}", method = RequestMethod.GET)
@Timed
public AddAppResponseDTO addApp(
@PathVariable("TOKEN") String ott,
@PathVariable("APPID") String appId,
HttpServletRequest request)
throws IOException, JAXBException, TokenNotFoundException, TokenAlreadyUsedException {
AddAppResponseDTO response = new AddAppResponseDTO();
log.debug("REST ADD CUSTOM APPS. token [{}]", ott);
Token token = tokenRepository.findOneByOtt(ott);
if (token == null) {
throw new TokenNotFoundException(ott);
}
Person person = token.getPerson();
Application application = token.getApplication();
Application customApp = applicationRepository.findOne(new Long(appId));
log.debug(
"REST ADD CUSTOM APPS. person [{}], localid [{}], customApp [{}]",
person,
person.getLocalID(),
customApp.getId());
RelPersonApplication relPersonApplication = null;
relPersonApplication = new RelPersonApplication();
relPersonApplication.setApplication(customApp);
relPersonApplication.setPerson(person);
relPersonApplication.setToken(token);
relPersonApplication.setValid(null);
relPersonApplication.setLast(true);
relPersonApplication.setCustom(true);
relPersonApplicationRepository.save(relPersonApplication);
ApplicationMinDTO appMinAdded = ApplicationMapper.from(customApp, true, null);
response.setApp(appMinAdded);
return response;
}
@RequestMapping(value = "/oauth/newApps/{TOKEN}", method = RequestMethod.GET)
@Timed
public ListAddAppResponseDTO oauthNewAppForUser(
@PathVariable("TOKEN") String ott, HttpServletRequest request)
throws IOException, JAXBException, TokenNotFoundException, TokenAlreadyUsedException {
ListAddAppResponseDTO response = new ListAddAppResponseDTO();
log.debug("REST GET CUSTOM APPS. token [{}]", ott);
Token token = tokenRepository.findOneByOtt(ott);
if (token == null) {
throw new TokenNotFoundException(ott);
}
Person person = token.getPerson();
Application application = token.getApplication();
log.debug("REST GET CUSTOM APPS. person [{}], localid [{}]", person, person.getLocalID());
List<RelPersonApplication> listApplicationAuth =
relPersonApplicationRepository.findAllByTokenIsAndValidIsNull(token);
List<Long> listIdsToExclude = new ArrayList<Long>();
for (int i = 0; i < listApplicationAuth.size(); i++) {
listIdsToExclude.add(listApplicationAuth.get(i).getApplication().getId());
}
log.debug(
"REST GET CUSTOM APPS. person [{}], localid [{}], listIds [{}]",
person,
person.getLocalID(),
listIdsToExclude);
List<Application> listCustomApps = applicationRepository.findAllCustomApps(listIdsToExclude);
response.setListApp(ApplicationMapper.fromListAppCustom(listCustomApps));
return response;
}
@RequestMapping(value = "/oauth/{TOKEN}", method = RequestMethod.GET)
@Timed
public void oauthUser(
@PathVariable("TOKEN") String ott, HttpServletRequest request, HttpServletResponse response)
throws IOException, JAXBException, TokenNotFoundException, TokenAlreadyUsedException {
log.debug("REST OAUTH START. token [{}]", ott);
Token token = tokenRepository.findOneByOtt(ott);
if (token == null) {
throw new TokenNotFoundException(ott);
}
// if( token.getDateUsed() !=null){
// throw new TokenAlreadyUsedException(ott);
// }
Person person = token.getPerson();
Application application = token.getApplication();
// qual è l'organizzazione dell'utente?
String orgUnit = null;
if (application.getAllOrg()) orgUnit = token.getOrgUnit();
else orgUnit = application.getOrgUnit();
List<Application> applicationForUser =
applicationRepository.findAllByOrgUnitOrAllOrgIsTrue(orgUnit);
Map<Long, Application> applicationForUserMap = new HashMap<Long, Application>();
for (Application i : applicationForUser) applicationForUserMap.put(i.getId(), i);
List<RelPersonApplication> listApplicationAuth =
relPersonApplicationRepository.findAllByPersonIsAndLastIsTrue(person);
Map<Long, RelPersonApplication> mapRelOld = new HashMap<Long, RelPersonApplication>();
// Set old application access key invalid
for (int i = 0; i < listApplicationAuth.size(); i++) {
RelPersonApplication applicationAuthorize = listApplicationAuth.get(i);
applicationAuthorize.setValid(false);
applicationAuthorize.setLast(false);
relPersonApplicationRepository.save(applicationAuthorize);
mapRelOld.put(applicationAuthorize.getApplication().getId(), applicationAuthorize);
if ((applicationAuthorize.getCustom() == true)
&& (applicationForUserMap.get(applicationAuthorize.getApplication().getId()) == null)) {
applicationForUser.add(applicationAuthorize.getApplication());
}
}
// token.setDateUsed(DateTime.now());
// tokenRepository.save(token);
Application applicationAuthorize = null;
RelPersonApplication relPersonApplication = null;
// Create new access key record
for (int i = 0; i < applicationForUser.size(); i++) {
applicationAuthorize = applicationForUser.get(i);
relPersonApplication = new RelPersonApplication();
relPersonApplication.setApplication(applicationAuthorize);
relPersonApplication.setPerson(person);
relPersonApplication.setToken(token);
if (mapRelOld.get(applicationAuthorize.getId()) != null) {
RelPersonApplication relOld = mapRelOld.get(applicationAuthorize.getId());
relPersonApplication.setDateReleased(relOld.getDateReleased());
relPersonApplication.setOauthAccessToken(relOld.getOauthAccessToken());
relPersonApplication.setCustom(relOld.getCustom());
} else {
relPersonApplication.setCustom(false);
}
relPersonApplication.setValid(null);
relPersonApplication.setLast(true);
relPersonApplicationRepository.save(relPersonApplication);
}
String urlToRedirect = getLandingPageURL(request, ott);
log.info(
"REST OAUTH REDIRECT TO APP. listApp [{}], appId [{}], token [{}], urlRedirect [{}]",
applicationForUser.size(),
applicationAuthorize.getApplicationID(),
ott,
urlToRedirect);
log.debug("REST OAUTH FINISH. token [{}], urlToRedirect [{}]", ott, urlToRedirect);
response.sendRedirect(urlToRedirect);
return;
}
@RequestMapping(
value = "/user/{LOCALID}/ticket",
method = RequestMethod.POST,
produces = MediaType.APPLICATION_JSON_VALUE)
@Timed
public ResponseEntity<GetTicketResponseDTO> getTicket(
@RequestBody GetTicketRequestDTO jsonGetTicket, @PathVariable("LOCALID") String localID)
throws ApplicationNotFoundException, LocalIDDifferentException, LocalIdMissingException,
ApplicationIdMissingException, ApplicationlIDDifferentException,
OrgIdIsOnlyForPublicAppException, OrgIdIsMissingException {
log.debug("REST GETTICKET START. localid [{}], appid [{}]", localID, jsonGetTicket.getAppId());
checkGetTicketInput(localID, jsonGetTicket);
Application application =
applicationRepository.findOneByApplicationID(jsonGetTicket.getAppId());
if (application == null) {
throw new ApplicationNotFoundException(jsonGetTicket.getAppId());
}
Person person = personRepository.findOneByLocalID(localID);
if (person == null) {
// create new person
person = new Person();
person.setLocalID(localID);
}
// update persona name surname mail
if (jsonGetTicket.getFirstname() != null && !jsonGetTicket.getFirstname().isEmpty())
person.setFirstName(jsonGetTicket.getFirstname());
if (jsonGetTicket.getLastname() != null && !jsonGetTicket.getLastname().isEmpty())
person.setLastName(jsonGetTicket.getLastname());
if (jsonGetTicket.getMail() != null && !jsonGetTicket.getMail().isEmpty())
person.setEmail(jsonGetTicket.getMail());
personRepository.save(person);
if ((jsonGetTicket.getOrgId() != null)
&& (!jsonGetTicket.getOrgId().isEmpty())
&& (!application.getAllOrg())) {
// if app isn't for all org must not specify org-id
throw new OrgIdIsOnlyForPublicAppException(application.getApplicationID());
} else if (application.getAllOrg()
&& ((jsonGetTicket.getOrgId() == null) || (jsonGetTicket.getOrgId().isEmpty()))) {
// if app is for all org must specify org-id
throw new OrgIdIsMissingException(application.getApplicationID());
}
// create token
Token token = new Token();
token.setApplication(application);
token.setPerson(person);
token.setOrgUnit(jsonGetTicket.getOrgId());
token.setUrlCallback(jsonGetTicket.getUrlCallback());
token.setDateReleased(DateTime.now());
tokenRepository.save(token);
token.setOtt(generateTokenData(token.getId().toString()));
tokenRepository.save(token);
// search if person-app have an access-token
RelPersonApplication relPersonApplication =
relPersonApplicationRepository.findOneByPersonIsAndApplicationIsAndLastIsTrue(
person, application);
String orcid = person.getOrcid();
String apiKey = null;
GetTicketResponseDTO response = new GetTicketResponseDTO();
response.setToken(token.getOtt());
if ((relPersonApplication != null)
&& ((relPersonApplication.getDenied() == null)
|| (relPersonApplication.getDenied() == false))) {
apiKey = relPersonApplication.getOauthAccessToken();
response.setOrcidAccessToken(apiKey);
}
response.setOrcid(person.getOrcid());
if ((orcid != null) && (apiKey != null)) response.setResultCode(ResultCode.SUCCESS.getCode());
else response.setResultCode(ResultCode.SUCCESS_ALREADY_EXISTS.getCode());
log.info(
"REST GETTICKET NEW TICKET.appid [{}], localid [{}], token [{}], resultCode [{}]",
jsonGetTicket.getAppId(),
localID,
token.getOtt(),
response.getResultCode());
log.debug(
"REST GETTICKET END. localid [{}], token [{}], resultCode [{}]",
localID,
token.getOtt(),
response.getResultCode());
return new ResponseEntity<GetTicketResponseDTO>(response, HttpStatus.OK);
}
