• Home
• com.github.saphyra
• auth-service
• 2.1.1
• source code
• AuthController.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.github.saphyra.authservice.impl.AuthController Maven / Gradle / Ivy

package com.github.saphyra.authservice.impl;

import com.github.saphyra.authservice.AuthService;
import com.github.saphyra.authservice.PropertySource;
import com.github.saphyra.authservice.domain.AccessToken;
import com.github.saphyra.authservice.domain.LoginRequest;
import com.github.saphyra.exceptionhandling.exception.UnauthorizedException;
import com.github.saphyra.util.CookieUtil;
import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.http.MediaType;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.validation.Valid;
import java.io.IOException;
import java.util.Optional;

@RestController
@RequiredArgsConstructor
@Slf4j
class AuthController {
    static final String LOGIN_MAPPING = "login";
    static final String LOGOUT_MAPPING = "logout";
    static final String UNAUTHORIZED_PARAM = "loginFailure=unauthorized";

    private final AuthService authService;
    private final CookieUtil cookieUtil;
    private final PropertySource propertySource;

    @PostMapping(value = LOGIN_MAPPING, consumes = MediaType.APPLICATION_JSON_VALUE)
    void loginByRest(@RequestBody @Valid LoginRequest loginRequest, HttpServletResponse response) {
        log.info("Login request arrived to REST.");
        login(loginRequest, response);
    }

    @PostMapping(value = LOGIN_MAPPING, consumes = MediaType.APPLICATION_FORM_URLENCODED_VALUE)
    void loginByForm(@Valid LoginRequest loginRequest, HttpServletResponse response) throws IOException {
        log.info("Login request arrived to FORM.");
        try {
            login(loginRequest, response);
            response.sendRedirect(propertySource.getSuccessfulLoginRedirection());
        } catch (UnauthorizedException ex) {
            response.sendRedirect(String.format("%s?%s", propertySource.getUnauthorizedRedirection(), UNAUTHORIZED_PARAM));
        }
    }

    private void login(@RequestBody @Valid LoginRequest loginRequest, HttpServletResponse response) {
        AccessToken accessToken = authService.login(loginRequest.getUserName(), loginRequest.getPassword(), loginRequest.getRememberMe());
        int expiration = accessToken.isPersistent() ? Integer.MAX_VALUE : -1;
        cookieUtil.setCookie(response, propertySource.getUserIdCookie(), accessToken.getUserId(), expiration);
        cookieUtil.setCookie(response, propertySource.getAccessTokenIdCookie(), accessToken.getAccessTokenId(), expiration);
        log.info("Access token successfully created, and sent for the client.");
    }

    @RequestMapping(LOGOUT_MAPPING)
    void logout(HttpServletRequest request, HttpServletResponse response) {
        log.info("Logout request arrived.");
        Optional userId = cookieUtil.getCookie(request, propertySource.getUserIdCookie());
        Optional accessTokenId = cookieUtil.getCookie(request, propertySource.getAccessTokenIdCookie());
        if (userId.isPresent() && accessTokenId.isPresent()) {
            authService.logout(userId.get(), accessTokenId.get());
        }
        propertySource.getLogoutRedirection().ifPresent(s -> {
            try {
                response.sendRedirect(s);
            } catch (IOException e) {
                throw new RuntimeException(e);
            }
        });

    }
}