com.untzuntz.ustack.data.APIClient Maven / Gradle / Ivy
package com.untzuntz.ustack.data;
import java.util.Date;
import java.util.UUID;
import org.apache.commons.codec.binary.Base64;
import org.jasypt.salt.RandomSaltGenerator;
import org.jasypt.util.text.BasicTextEncryptor;
import com.mongodb.BasicDBList;
import com.mongodb.BasicDBObject;
import com.mongodb.BasicDBObjectBuilder;
import com.mongodb.DBCollection;
import com.mongodb.DBObject;
import com.untzuntz.ustack.exceptions.AccountExistsException;
import com.untzuntz.ustack.exceptions.InvalidUserAccountName;
import com.untzuntz.ustack.exceptions.PasswordException;
import com.untzuntz.ustack.exceptions.PasswordLengthException;
import com.untzuntz.ustack.main.Msg;
import com.untzuntz.ustack.main.UAppCfg;
import com.untzuntz.ustack.main.UOpts;
public class APIClient extends UntzDBObject {
private static final long serialVersionUID = 1L;
public static final String STATUS_DISABLED = "Disabled";
public static final String STATUS_ACTIVE = "Active";
private static String INTERNAL_KEY;
public String getCollectionName() { return "apiClients"; }
private APIClient()
{
// setup basic values on account
put("created", new Date());
setStatus(STATUS_ACTIVE);
}
public Date getCreated() {
return (Date)get("created");
}
public String getUserId() {
return get("_id") + "";
}
/** Gets the DB Collection for the UserAccount object */
public static DBCollection getDBCollection() {
return new APIClient().getCollection();
}
/** Return the name of the database that houses the 'users' collection */
public static final String getDatabaseName() {
if (UOpts.getString(UAppCfg.DATABASE_USERS_COL) != null)
return UOpts.getString(UAppCfg.DATABASE_USERS_COL);
return UOpts.getAppName();
}
/**
* Generate a APIClient object from the MongoDB object
* @param user
*/
public APIClient(DBObject client) {
super(client);
}
public void setClientId(String clientId) {
put("clientId", clientId);
}
public String getClientId() {
return getString("clientId");
}
/** Sets the user's status */
public void setStatus(String status)
{
put("status", status);
}
/**
* Returns the current user status
*
* @return
*/
public String getStatus()
{
String status = (String)get("status");
if (status == null)
return STATUS_ACTIVE;
return status;
}
public BasicDBList getAPIKeys() {
return getList("apiKeys");
}
public void setAPIKeys(BasicDBList l) {
setList("apiKeys", l);
}
public void revokeKey(String actor, String uid)
{
BasicDBList keyList = getAPIKeys();
for (int i = 0; i < keyList.size(); i++)
{
DBObject k = (DBObject)keyList.get(i);
if (uid.equals( (String)k.get("uid") ))
{
k.put("revoked", "t");
k.put("revokedBy", actor);
setAPIKeys(keyList);
return;
}
}
}
public void generateKey(String actor)
{
String init = UUID.randomUUID().toString();
BasicTextEncryptor textEncryptor = getEncryptor();
String encSecret = textEncryptor.encrypt(init);
BasicDBObject key = new BasicDBObject();
key.put("uid", UUID.randomUUID().toString());
key.put("key", encSecret);
key.put("createdBy", actor);
BasicDBList keys = getAPIKeys();
keys.add(key);
setAPIKeys(keys);
}
private BasicTextEncryptor textEncryptor;
public BasicTextEncryptor getEncryptor()
{
if (textEncryptor != null)
return textEncryptor;
String saltStr = null;
if (get("s2") == null)
{
RandomSaltGenerator rsg = new RandomSaltGenerator();
Base64 base = new Base64();
saltStr = new String(base.encode(rsg.generateSalt(10)));
put("s2", saltStr);
}
saltStr = getString("s2");
String passwd = getClientId() + "-" + saltStr + APIClient.INTERNAL_KEY;
textEncryptor = new BasicTextEncryptor();
textEncryptor.setPassword(passwd);
return textEncryptor;
}
/**
* Determine if the account is currently locked
*
* @return
*/
public boolean isLocked()
{
if (get("locked") == null)
return false;
return true;
}
/**
* Determines if the account is disabled by the account status
* @return
*/
public boolean isDisabled()
{
String status = getStatus();
if (STATUS_DISABLED.equalsIgnoreCase(status))
return true;
return false;
}
public String getValidKey() {
BasicDBList keyList = getAPIKeys();
for (int i = 0; i < keyList.size(); i++)
{
DBObject k = (DBObject)keyList.get(i);
if (!"t".equalsIgnoreCase( (String)k.get("revoked") ))
{
BasicTextEncryptor textEncryptor = getEncryptor();
return textEncryptor.decrypt( (String)k.get("key") );
}
}
return null;
}
public String getKey(String uid) {
BasicDBList keyList = getAPIKeys();
for (int i = 0; i < keyList.size(); i++)
{
DBObject k = (DBObject)keyList.get(i);
if (uid.equals( (String)k.get("uid") ))
{
BasicTextEncryptor textEncryptor = getEncryptor();
return textEncryptor.decrypt( (String)k.get("key") );
}
}
return null;
}
public boolean checkAPIKey(String apiKey)
{
BasicTextEncryptor textEncryptor = getEncryptor();
BasicDBList keys = getAPIKeys();
for (int i = 0; i < keys.size(); i++)
{
DBObject k = (DBObject)keys.get(i);
String rawKey = (String)k.get("key");
String storedKey = textEncryptor.decrypt(rawKey);
if (apiKey.equals(storedKey))
{
if (!"t".equalsIgnoreCase((String)k.get("revoked")))
return true;
else
return false;
}
}
return false;
}
public void unlock()
{
removeField("locked");
}
/**
* Locks the account
*/
public void lockAccount()
{
put("locked", "t");
}
/**
* Get an account by client id
*
* @param clientId
* @return
*/
public static APIClient getAPIClient(String clientId)
{
if (clientId == null || clientId.length() == 0)
return null;
clientId = clientId.toLowerCase().trim();
DBObject acct = null;
try {
acct = new APIClient().getCollection().findOne(BasicDBObjectBuilder.start("clientId", clientId).get());
} catch (Exception exp) {
return null;
}
if (acct == null)
return null;
return new APIClient(acct);
}
/**
* Create a new API account
*
* @param clientId
* @return
* @throws AccountExistsException
* @throws PasswordLengthException
*/
public static APIClient createAPI(String actor, String clientId) throws AccountExistsException,PasswordException
{
if (clientId == null || clientId.length() == 0)
throw new InvalidUserAccountName(Msg.getString("Invalid-ClientID"));
clientId = clientId.toLowerCase().trim();
APIClient acct = getAPIClient(clientId);
if (acct != null) // already exists
throw new AccountExistsException("Client ID");
// create the actual account
acct = new APIClient();
acct.put("createdBy", actor);
acct.setClientId(clientId);
acct.generateKey(actor);
return acct;
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy