nosi.core.webapp.ApplicationManager Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of igrp-core Show documentation
Show all versions of igrp-core Show documentation
IGRP Framework is a powerful and highly customizable platform developed by the Operational Nucleus for the Information Society (NOSi) to create web applications, it provides out of box, several modules to make easy to create stand-alone, production-grade web applications: authentication and access-control, business processes automation, reporting, page builder with automatic code generation and incorporation of the Once-Only-Principle, written in Java. IGRP Framework WAR - Contains some keys resources that give UI to IGRP Framework and others supports files.
package nosi.core.webapp;
import static nosi.core.i18n.Translator.gt;
import java.net.URLDecoder;
import java.net.URLEncoder;
import java.nio.charset.StandardCharsets;
import java.util.Arrays;
import java.util.Enumeration;
import java.util.HashMap;
import java.util.Map;
import java.util.Optional;
import java.util.Properties;
import java.util.regex.Pattern;
import org.apache.logging.log4j.LogManager;
import org.apache.logging.log4j.Logger;
import org.json.JSONArray;
import org.json.JSONObject;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpSession;
import nosi.core.authentication.OAuth2OpenIdAuthenticationManager;
import nosi.core.config.ConfigApp;
import nosi.core.config.ConfigCommonMainConstants;
import nosi.core.webapp.security.EncrypDecrypt;
import nosi.core.webapp.security.PagesScapePermission;
import nosi.core.webapp.security.Permission;
import nosi.webapps.igrp.dao.Action;
import nosi.webapps.igrp.dao.Application;
public final class ApplicationManager {
public static final String LOGIN_PAGE = "/app/webapps?r=igrp/login/login";
public static final String RETURN_ROUTE_ATTRIBUTE_NAME = "returnRoute";
private static final Logger LOGGER = LogManager.getLogger(ApplicationManager.class);
private ApplicationManager() {}
public static Optional buildAppLink(HttpServletRequest request) {
Optional url = Optional.empty();
String page = request.getParameter("r");
String dad = request.getParameter("dad");
if (page != null && page.split("/").length == 3) {
String[] p = page.split("/");
String errorMsg="";
if(!new Permission().hasMenuPagPermition(request,dad, p[0], p[1], p[2])) {
errorMsg="&errorMsg="+encodeParameterValue(gt("Não tem permissão da página no menu! \nNo permission to the page in the menu! \nApp/Page: ") + p[0]+"/"+p[1]);
page = "igrp/error-page/exception";
}
page = EncrypDecrypt.encryptURL(page, request.getSession().getId()).replace(" ", "+");
dad = dad != null && !dad.trim().isEmpty() ? String.format("&dad=%s", dad) : "";
StringBuilder additionalParams = new StringBuilder();
Enumeration paramNames = request.getParameterNames();
while(paramNames.hasMoreElements()) {
String paramName = paramNames.nextElement();
if(!"r".equals(paramName) && !"dad".equals(paramName)) // skipping "r" and "dad" param
additionalParams.append(String.format("&%s=%s", paramName, encodeParameterValue(request.getParameter(paramName))));
}
url = Optional.of(String.format("%s?r=%s%s%s%s", requestUrl(request), page, dad, additionalParams,errorMsg));
}
return url;
}
public static String buildPublicTargetLink(HttpServletRequest request) {
String url = "";
String page = request.getParameter("r");
String dad = request.getParameter("dad");
dad = dad != null && !dad.trim().isEmpty() ? String.format("&dad=%s", dad) : "";
StringBuilder additionalParams = new StringBuilder();
Enumeration paramNames = request.getParameterNames();
while(paramNames.hasMoreElements()) {
String paramName = paramNames.nextElement();
if(!"r".equals(paramName) && !"dad".equals(paramName)) // skipping "r" and "dad" param
additionalParams.append(String.format("&%s=%s", paramName, encodeParameterValue(request.getParameter(paramName))));
}
additionalParams.append(String.format("&%s=%s", "target", "_blank"));
url = String.format("%s?r=%s%s%s", requestUrl(request), page, dad, additionalParams);
return url;
}
public static boolean isPublic(HttpServletRequest request) {
String r = request.getParameter("r");
if (r == null)
return false;
if (PagesScapePermission.getPagesWithoutLogin().contains(r.toLowerCase()))
return true;
final String isPublic = request.getParameter("isPublic");
if (isPublic == null || !Arrays.asList("1", "2").contains(isPublic))
return false;
if ("2".equals(isPublic)) {
r = r.replace(" ", "+");
r = EncrypDecrypt.decryptURL(r, EncrypDecrypt.SECRET_KEY_PUBLIC_PAGE);
}
String[] c = r.split("/");
if (c.length > 1)
return new Action().isPublicPage(c[0], c[1]);
return false;
}
public static boolean isInWhiteList(HttpServletRequest request) {
String r = request.getParameter("r");
if (r == null)
return false;
if(request.getIntHeader("X-Igrp-Remote")==1)
return true;
return PagesScapePermission.getPagesScapeEncrypt().contains(r.toLowerCase());
}
public static boolean isLoginPage(HttpServletRequest request) {
String r = request.getParameter("r");
return "igrp/login/login".equals(r);
}
public static Optional buildOAuth2AuthorizeLink(HttpServletRequest request) {
Properties settings = loadConfig();
String authenticationType = ConfigCommonMainConstants.isEnvironmentVariableScanActive() ?
ConfigCommonMainConstants.IGRP_AUTHENTICATION_TYPE.getEnvironmentVariable() : settings.getProperty(ConfigCommonMainConstants.IGRP_AUTHENTICATION_TYPE.value());
String authorizeEndpoint = settings.getProperty(ConfigCommonMainConstants.IDS_OAUTH2_OPENID_ENDPOINT_AUTHORIZE.value(), "");
String redirectUri = settings.getProperty(ConfigCommonMainConstants.IDS_OAUTH2_OPENID_ENDPOINT_REDIRECT_URI.value());
String clientId = settings.getProperty(ConfigCommonMainConstants.IDS_OAUTH2_OPENID_CLIENT_ID.value());
if (ConfigCommonMainConstants.IGRP_AUTHENTICATION_TYPE_OAUTH2_OPENID.value().equals(authenticationType)
&& !"".equals(authorizeEndpoint)
&& /**Too many redirect on sight*/ !request.getRequestURL().toString().endsWith(OAuth2OpenIdAuthenticationManager.CALLBACK_PATH)) {
rememberRoute(request);
return Optional.of(String.format("%s?response_type=code&client_id=%s&scope=openid+email+profile&redirect_uri=%s", authorizeEndpoint, clientId, redirectUri));
}
return Optional.empty();
}
public static Optional processCallback(HttpServletRequest request) {
Properties settings = loadConfig();
String authenticationType = ConfigCommonMainConstants.isEnvironmentVariableScanActive() ?
ConfigCommonMainConstants.IGRP_AUTHENTICATION_TYPE.getEnvironmentVariable() : settings.getProperty(ConfigCommonMainConstants.IGRP_AUTHENTICATION_TYPE.value());
if (!ConfigCommonMainConstants.IGRP_AUTHENTICATION_TYPE_OAUTH2_OPENID.value().equals(authenticationType)
// || /**Too many redirect on sight*/ !request.getRequestURL().toString().endsWith(OAuth2OpenIdAuthenticationManager.CALLBACK_PATH)
)
return Optional.empty();
if(OAuth2OpenIdAuthenticationManager.isSignOutRequest(request))
return Optional.of(requestUrl(request));
try {
OAuth2OpenIdAuthenticationManager.authorizationCodeSwap(request);
Optional returnUrl = buildAppLinkFromStateParam(request);
if(returnUrl.isEmpty())
returnUrl = buildAppLinkFromSession(request);
return returnUrl.isPresent() ? returnUrl : Optional.of(homeUrl(request));
} catch (Exception e) {
LOGGER.error(e.getMessage(), e);
request.setAttribute(OAuth2OpenIdAuthenticationManager.OAUTH2_OPENID_ERROR_PARAM_NAME, e.getMessage());
return Optional.of(OAuth2OpenIdAuthenticationManager.OAUTH2_OPENID_PAGE);
}
}
public static String homeUrl(HttpServletRequest request) {
return String.format("%s?r=igrp/home/index", requestUrl(request));
}
public static String requestUrl(HttpServletRequest request) {
String url = request.getRequestURL().toString();
url = url.replaceFirst("/callback", "/webapps");
String clientRequestProtocol = request.getHeader("X-Forwarded-Proto");
if(clientRequestProtocol != null && !clientRequestProtocol.trim().isEmpty()) {
int index = url.indexOf("://");
if(index != -1)
url = String.format("%s%s", clientRequestProtocol, url.substring(index));
}
return url;
}
private static Map extractStateValues(String state){
Map stateValues = new HashMap<>();
if(state == null || state.trim().isEmpty())
return stateValues;
String[] aux = state.split("/"); // Ex.: ENV/id/APP;ORG;PROF/p_id=1;p_type=3
if (aux.length >= 2) {
stateValues.put("type", aux[0]);
stateValues.put("value", aux[1]);
if (aux.length > 2) {
stateValues.put("context", aux[2]);
if (aux.length == 4)
stateValues.put("params", aux[3]);
}
if (stateValues.containsKey("context")) {
String[] allContext = stateValues.get("context").split(";");
if (allContext.length > 0) {
if (allContext[0] != null && !allContext[0].isEmpty())
stateValues.put("dad", allContext[0]);
if (allContext.length == 3) {
if(allContext[1] != null && !allContext[1].isEmpty())
stateValues.put("orgCode", allContext[1]);
if(allContext[2] != null && !allContext[2].isEmpty())
stateValues.put("profCode", allContext[2]);
}
}
}
}
return stateValues;
}
private static Optional buildPageRouteWhenTypeEnv(String dad) {
Application application = new Application().findByDad(dad);
if (application != null) {
dad = application.getDad();
nosi.webapps.igrp.dao.Action ac = application.getAction();
String page = String.format("tutorial/DefaultPage/index&dad=%s", dad);
if (ac != null && ac.getApplication() != null) {
page = String.format("%s/%s/index", ac.getApplication().getDad().toLowerCase(), ac.getPage());
if (ac.getAction_descr() != null)
page = String.format("%s&dad=%s&title=%s", page, dad, encodeParameterValue(ac.getAction_descr()));
}
return Optional.of(page);
}
return Optional.empty();
}
private static Optional buildPageRouteWhenTypePage(String dad, String actionId) {
Action ac = new Action().findOne(Integer.valueOf(actionId));
if (ac != null && ac.getApplication() != null) {
Application envIgrpWeb = new Application().find().andWhere("dad", "=", dad).one();
if (envIgrpWeb == null) {
Application envIgrpPlSql = new Application().find().andWhere("plsql_code", "=", dad).one();
if (envIgrpPlSql != null)
dad = envIgrpPlSql.getDad();
}
String page = String.format("%s/%s/index&dad=%s", ac.getApplication().getDad().toLowerCase(), ac.getPage(),dad);
if (ac.getAction_descr() != null)
page = String.format("%s&dad=%s&title=%s", page, dad,encodeParameterValue(ac.getAction_descr()));
return Optional.of(page);
}
return Optional.empty();
}
public static Optional buildAppLinkFromStateParam(HttpServletRequest request) {
String state = request.getParameter("state");
Map stateValues = extractStateValues(state);
String pageRoute = null;
if(stateValues.containsKey("type")) {
String type = stateValues.get("type");
switch (type) {
case "ENV":
Optional env = buildPageRouteWhenTypeEnv(stateValues.get("dad"));
if(env.isPresent())
pageRoute = env.get();
break;
case "PAGE":
Optional page = buildPageRouteWhenTypePage(stateValues.get("dad"), stateValues.get("value"));
if(page.isPresent())
pageRoute = page.get();
break;
}
}
if(pageRoute != null) {
String[] splittedPageRoute = pageRoute.split(Pattern.quote("&"));
String encryptedPageRoute = EncrypDecrypt.encryptURL(splittedPageRoute[0], request.getSession().getId()).replace(" ", "+");
String additionalParams = extractAdditionalParams(pageRoute);
return Optional.of(String.format("%s?r=%s%s", requestUrl(request), encryptedPageRoute, additionalParams));
}
return Optional.empty();
}
private static String extractAdditionalParams(String pageRoute) {
int index = pageRoute.indexOf("&");
if(index != -1 && (index + 1 < pageRoute.length()))
return pageRoute.substring(pageRoute.indexOf("&") + 1);
return "";
}
public static Optional buildAppLinkFromSession(HttpServletRequest request) {
HttpSession session = request.getSession();
if(session == null)
return Optional.empty();
String returnRoute = (String) session.getAttribute(RETURN_ROUTE_ATTRIBUTE_NAME);
session.removeAttribute(RETURN_ROUTE_ATTRIBUTE_NAME);
if(returnRoute == null)// || returnRoute == null)
return Optional.empty();
JSONObject json = new JSONObject(returnRoute);
String appCode = json.optString("appCode");
String pageCode = json.optString("pageCode");
String dad = json.optString("dad");
if(appCode.isEmpty() || pageCode.isEmpty())
return Optional.empty();
dad = !dad.isEmpty() ? String.format("&dad=%s", dad) : dad;
String actionCode = json.optString("actionCode", "index");
JSONArray additionalParams = json.optJSONArray("additionalParams");
StringBuilder additionalParamsQueryString = new StringBuilder();
if(additionalParams != null)
for(int i = 0; i < additionalParams.length(); i++) {
JSONObject param = additionalParams.optJSONObject(i);
if(param != null && param.keySet().stream().anyMatch(p -> p.equals("paramName")))
additionalParamsQueryString.append(String.format("&%s=%s", param.optString("paramName"), encodeParameterValue(param.optString("paramValue"))));
}
String route = EncrypDecrypt.encryptURL(String.format("%s/%s/%s", appCode, pageCode, actionCode), session.getId()).replace(" ", "+");
return Optional.of(String.format("%s?r=%s%s%s", requestUrl(request), route, dad, additionalParamsQueryString));
}
private static void rememberRoute(HttpServletRequest request) {
String r = request.getParameter("r");
String dad = request.getParameter("dad");
if (r != null) {
String[] arr = r.split("/");
if (arr.length == 3) {
HttpSession session = request.getSession(true);
JSONObject route = new JSONObject();
route.put("appCode", arr[0]);
route.put("pageCode", arr[1]);
route.put("actionCode", arr[2]);
if(dad != null && !dad.isEmpty())
route.put("dad", dad);
JSONArray additionalParams = new JSONArray();
Enumeration paramNames = request.getParameterNames();
while(paramNames.hasMoreElements()) {
String paramName = paramNames.nextElement();
if(!"r".equals(paramName) && !"dad".equals(paramName)) {
JSONObject param = new JSONObject();
param.put("paramName", paramName);
param.put("paramValue", request.getParameter(paramName));
additionalParams.put(param);
}
}
route.put("additionalParams", additionalParams);
session.setAttribute(RETURN_ROUTE_ATTRIBUTE_NAME, route.toString());
}
}
}
public static Properties loadConfig() {
return ConfigApp.getInstance().getMainSettings();
}
public static String encodeParameterValue(String value) {
return URLEncoder.encode(URLDecoder.decode(value, StandardCharsets.UTF_8), StandardCharsets.UTF_8);
}
}