Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
pl.edu.icm.unity.engine.confirmation.EmailConfirmationManagerImpl Maven / Gradle / Ivy
/*
* Copyright (c) 2013 ICM Uniwersytet Warszawski All rights reserved.
* See LICENCE.txt file for licensing information.
*/
package pl.edu.icm.unity.engine.confirmation;
import java.net.URL;
import java.nio.charset.StandardCharsets;
import java.time.Duration;
import java.util.Calendar;
import java.util.Collection;
import java.util.Date;
import java.util.HashMap;
import java.util.HashSet;
import java.util.List;
import java.util.Locale;
import java.util.Map;
import java.util.Optional;
import java.util.Set;
import java.util.UUID;
import org.apache.logging.log4j.Logger;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import com.google.common.cache.Cache;
import com.google.common.cache.CacheBuilder;
import pl.edu.icm.unity.MessageSource;
import pl.edu.icm.unity.base.msgtemplates.confirm.EmailConfirmationTemplateDef;
import pl.edu.icm.unity.base.token.Token;
import pl.edu.icm.unity.base.utils.Log;
import pl.edu.icm.unity.engine.api.attributes.AttributeValueSyntax;
import pl.edu.icm.unity.engine.api.config.UnityServerConfiguration;
import pl.edu.icm.unity.engine.api.confirmation.EmailConfirmationManager;
import pl.edu.icm.unity.engine.api.confirmation.EmailConfirmationRedirectURLBuilder;
import pl.edu.icm.unity.engine.api.confirmation.EmailConfirmationRedirectURLBuilder.Status;
import pl.edu.icm.unity.engine.api.confirmation.EmailConfirmationServletProvider;
import pl.edu.icm.unity.engine.api.confirmation.states.BaseEmailConfirmationState;
import pl.edu.icm.unity.engine.api.confirmation.states.EmailAttribiuteConfirmationState;
import pl.edu.icm.unity.engine.api.confirmation.states.EmailIdentityConfirmationState;
import pl.edu.icm.unity.engine.api.confirmation.states.RegistrationReqEmailAttribiuteConfirmationState;
import pl.edu.icm.unity.engine.api.finalization.WorkflowFinalizationConfiguration;
import pl.edu.icm.unity.engine.api.identity.EntityResolver;
import pl.edu.icm.unity.engine.api.identity.IdentityTypeDefinition;
import pl.edu.icm.unity.engine.api.notification.NotificationProducer;
import pl.edu.icm.unity.engine.api.server.AdvertisedAddressProvider;
import pl.edu.icm.unity.engine.api.token.TokensManagement;
import pl.edu.icm.unity.engine.attribute.AttributeTypeHelper;
import pl.edu.icm.unity.engine.endpoint.SharedEndpointManagementImpl;
import pl.edu.icm.unity.engine.identity.IdentityTypeHelper;
import pl.edu.icm.unity.exceptions.EngineException;
import pl.edu.icm.unity.exceptions.InternalException;
import pl.edu.icm.unity.store.api.generic.MessageTemplateDB;
import pl.edu.icm.unity.store.api.tx.TransactionalRunner;
import pl.edu.icm.unity.types.basic.Attribute;
import pl.edu.icm.unity.types.basic.EntityParam;
import pl.edu.icm.unity.types.basic.Identity;
import pl.edu.icm.unity.types.basic.MessageTemplate;
import pl.edu.icm.unity.types.confirmation.ConfirmationInfo;
import pl.edu.icm.unity.types.confirmation.EmailConfirmationConfiguration;
import pl.edu.icm.unity.types.confirmation.VerifiableElement;
/**
* Email confirmation manager, send or process confirmation request
*/
@Component
class EmailConfirmationManagerImpl implements EmailConfirmationManager
{
private static final Logger log = Log.getLogger(Log.U_SERVER_CONFIRMATION, EmailConfirmationManagerImpl.class);
private final IdentityTypeHelper idTypeHelper;
private final AttributeTypeHelper atTypeHelper;
private final TokensManagement tokensMan;
private final NotificationProducer notificationProducer;
private final EmailConfirmationFacilitiesRegistry confirmationFacilitiesRegistry;
private final MessageTemplateDB mtDB;
private final URL advertisedAddress;
private final MessageSource msg;
private final EntityResolver idResolver;
private final Cache confirmationReqCache;
private final int requestLimit;
private final String defaultRedirectURL;
private final TransactionalRunner tx;
@Autowired
EmailConfirmationManagerImpl(IdentityTypeHelper idTypeHelper,
AttributeTypeHelper atTypeHelper,
TokensManagement tokensMan,
NotificationProducer notificationProducer,
EmailConfirmationFacilitiesRegistry confirmationFacilitiesRegistry,
MessageTemplateDB mtDB,
AdvertisedAddressProvider advertisedAddrProvider,
MessageSource msg,
EntityResolver idResolver,
TransactionalRunner tx,
UnityServerConfiguration mainConf)
{
this.idTypeHelper = idTypeHelper;
this.atTypeHelper = atTypeHelper;
this.tokensMan = tokensMan;
this.notificationProducer = notificationProducer;
this.confirmationFacilitiesRegistry = confirmationFacilitiesRegistry;
this.mtDB = mtDB;
this.advertisedAddress = advertisedAddrProvider.get();
this.msg = msg;
this.idResolver = idResolver;
this.tx = tx;
confirmationReqCache = CacheBuilder.newBuilder()
.expireAfterWrite(Duration.ofHours(24))
.build();
requestLimit = mainConf.getEmailConfirmationRequestLimit();
defaultRedirectURL = mainConf.getValue(UnityServerConfiguration.CONFIRMATION_DEFAULT_RETURN_URL);
}
@Override
public void sendConfirmationRequest(BaseEmailConfirmationState baseState) throws EngineException
{
sendConfirmationRequest(baseState, false);
}
private void sendConfirmationRequest(BaseEmailConfirmationState baseState, boolean force) throws EngineException
{
class TokenAndFlag
{
private String token;
private boolean hasDuplicate;
public TokenAndFlag(String token, boolean hasDuplicate)
{
this.token = token;
this.hasDuplicate = hasDuplicate;
}
}
String facilityId = baseState.getFacilityId();
EmailConfirmationFacility facility = confirmationFacilitiesRegistry.getByName(facilityId);
Optional configEntry = getConfiguration(baseState);
if (!configEntry.isPresent())
{
log.debug("Cannot get confirmation configuration for "
+ baseState.getType()
+ ", skiping sendig confirmation request to "
+ baseState.getValue());
return;
}
String serializedState = baseState.getSerializedConfiguration();
if (configEntry.get().getMessageTemplate() == null)
{
log.debug("Not sending an email as there is no message template configured for {}",
baseState.getValue());
return;
}
if (!checkSendingLimit(baseState.getValue()))
return;
TokenAndFlag taf = tx.runInTransactionRetThrowing(() -> {
boolean hasDuplicate = !getDuplicateTokens(facility, serializedState).isEmpty();
String token = insertConfirmationToken(serializedState,
configEntry.get().getValidityTime());
return new TokenAndFlag(token, hasDuplicate);
});
if (force || !taf.hasDuplicate)
{
sendConfirmationRequest(baseState.getValue(),
configEntry.get().getMessageTemplate(),
facility, baseState.getLocale(), taf.token);
} else
{
log.debug("Not sending a confirmation message to " + baseState.getValue() +
" as such confirmation was already sent");
}
facility.processAfterSendRequest(serializedState);
}
private boolean checkSendingLimit(String address)
{
Integer alreadySent = confirmationReqCache.getIfPresent(getCacheKey(address));
if (alreadySent != null && alreadySent >= requestLimit)
{
log.warn("Limit of sent confirmation requests to email " + address +
" was reached. (Limit=" +requestLimit + "/24H)");
return false;
}
return true;
}
private String insertConfirmationToken(String state, int confirmationValidity) throws EngineException
{
Date createDate = new Date();
Calendar cl = Calendar.getInstance();
cl.setTime(createDate);
cl.add(Calendar.MINUTE, confirmationValidity);
Date expires = cl.getTime();
String token = UUID.randomUUID().toString();
try
{
tokensMan.addToken(CONFIRMATION_TOKEN_TYPE, token,
state.getBytes(StandardCharsets.UTF_8),
createDate, expires);
} catch (Exception e)
{
log.error("Cannot add token to db", e);
throw e;
}
return token;
}
private void sendConfirmationRequest(String recipientAddress,
String templateId, EmailConfirmationFacility facility, String locale, String token)
throws EngineException
{
MessageTemplate template = null;
for (MessageTemplate tpl : getAllTemplatesFromDB())
{
if (tpl.getName().equals(templateId))
template = tpl;
}
if (template == null)
throw new IllegalArgumentException(
"The message template " + templateId + " does not exists");
if (!(template.getConsumer().equals(
EmailConfirmationTemplateDef.NAME)))
throw new IllegalArgumentException(
"Illegal type of template. Only message templates with "
+ EmailConfirmationTemplateDef.NAME
+ " are allowed");
String link = advertisedAddress.toExternalForm()
+ SharedEndpointManagementImpl.CONTEXT_PATH
+ EmailConfirmationServletProvider.SERVLET_PATH;
HashMap params = new HashMap<>();
params.put(EmailConfirmationTemplateDef.CONFIRMATION_LINK, link + "?"
+ EmailConfirmationServletProvider.CONFIRMATION_TOKEN_ARG + "=" + token);
log.info("Send confirmation request to " + recipientAddress + " with token = "
+ token);
incCachedConfirmations(recipientAddress);
notificationProducer.sendNotification(recipientAddress, templateId,
params, locale);
}
private synchronized void incCachedConfirmations(String recipientAddress)
{
String key = getCacheKey(recipientAddress);
Integer currentConfirmations = confirmationReqCache.getIfPresent(key);
confirmationReqCache.put(key, currentConfirmations == null ? 1 : currentConfirmations + 1);
}
private String getCacheKey(String recipientAddress)
{
return recipientAddress.toLowerCase(Locale.US);
}
@Override
public WorkflowFinalizationConfiguration processConfirmation(String token)
throws EngineException
{
if (token == null)
{
String redirectURL = new EmailConfirmationRedirectURLBuilder(defaultRedirectURL,
Status.elementConfirmationError).
setErrorCode("noToken").build();
return WorkflowFinalizationConfiguration.basicError(
msg.getMessage("ConfirmationStatus.invalidToken"), redirectURL);
}
return tx.runInTransactionRetThrowing(() -> {
Token tk = null;
try
{
tk = tokensMan.getTokenById(EmailConfirmationManagerImpl.CONFIRMATION_TOKEN_TYPE, token);
} catch (IllegalArgumentException e)
{
String redirectURL = new EmailConfirmationRedirectURLBuilder(defaultRedirectURL,
Status.elementConfirmationError).
setErrorCode("invalidToken").build();
return WorkflowFinalizationConfiguration.basicError(
msg.getMessage("ConfirmationStatus.invalidToken"), redirectURL);
}
return processConfirmationInternal(tk, true);
});
}
private WorkflowFinalizationConfiguration processConfirmationInternal(Token tk, boolean withDuplicates)
throws EngineException
{
Date today = new Date();
if (tk.getExpires().compareTo(today) < 0)
{
String redirectURL = new EmailConfirmationRedirectURLBuilder(defaultRedirectURL,
Status.elementConfirmationError).
setErrorCode("expiredToken").build();
return WorkflowFinalizationConfiguration.basicError(
msg.getMessage("ConfirmationStatus.expiredToken"), redirectURL);
}
String rawState = tk.getContentsString();
BaseEmailConfirmationState baseState = new BaseEmailConfirmationState(rawState);
EmailConfirmationFacility facility = confirmationFacilitiesRegistry.getByName(baseState.getFacilityId());
tokensMan.removeToken(EmailConfirmationManager.CONFIRMATION_TOKEN_TYPE, tk.getValue());
log.debug("Process confirmation using " + facility.getName() + " facility");
WorkflowFinalizationConfiguration status = facility.processConfirmation(rawState);
if (withDuplicates)
{
Collection duplicateTokens = getDuplicateTokens(facility, rawState);
for (Token duplicate: duplicateTokens)
{
log.debug("Found duplicte confirmation token " + duplicate.getValue() +
" confirming it too");
processConfirmationInternal(duplicate, false);
}
}
return status;
}
/**
* Searches the available confirmations for other which are for the same user/registration request
* as the base token and have the same email value.
* @param base
* @return
*/
@SuppressWarnings({ "rawtypes", "unchecked" })
private Collection getDuplicateTokens(EmailConfirmationFacility facility, String baseState)
{
BaseEmailConfirmationState state;
try
{
state = facility.parseState(baseState);
} catch (IllegalArgumentException e)
{
throw new InternalException("Bug: token can not be parsed by its own facility", e);
}
Set ret = new HashSet<>();
List tks = tokensMan.getAllTokens(EmailConfirmationManager.CONFIRMATION_TOKEN_TYPE);
for (Token tk : tks)
{
if (facility.isDuplicate(state, tk.getContentsString()))
ret.add(tk);
}
return ret;
}
private void sendVerification(EntityParam entity, Attribute attribute, boolean force)
throws EngineException
{
AttributeValueSyntax syntax = atTypeHelper.getUnconfiguredSyntax(attribute.getValueSyntax());
if (!syntax.isEmailVerifiable())
return;
for (String valA : attribute.getValues())
{
VerifiableElement val = (VerifiableElement) syntax.convertFromString(valA);
ConfirmationInfo ci = val.getConfirmationInfo();
if (!ci.isConfirmed() && (force || ci.getSentRequestAmount() == 0))
{
// TODO - should use user's preferred locale
long entityId = resolveEntityId(entity);
EmailAttribiuteConfirmationState state = new EmailAttribiuteConfirmationState(
entityId,
attribute.getName(), val.getValue(),
msg.getDefaultLocaleCode(),
attribute.getGroupPath());
sendConfirmationRequest(state, force);
}
}
}
private long resolveEntityId(EntityParam entity) throws EngineException
{
if (entity.getEntityId() != null)
return entity.getEntityId();
return tx.runInTransactionRetThrowing(() -> {
return idResolver.getEntityId(entity);
});
}
@Override
public void sendVerificationQuietNoTx(EntityParam entity, Attribute attribute, boolean force)
{
try
{
sendVerification(entity, attribute, force);
} catch (Exception e)
{
log.warn("Can not send a confirmation for the verificable attribute being added "
+ attribute.getName(), e);
}
}
@Override
public void sendVerificationsQuietNoTx(EntityParam entity, Collection attributes, boolean force)
{
for (Attribute attribute: attributes)
sendVerificationQuietNoTx(entity, attribute, force);
}
@Override
public void sendVerificationNoTx(EntityParam entity, Identity identity, boolean force)
throws EngineException
{
IdentityTypeDefinition typeDefinition = idTypeHelper.getTypeDefinition(identity.getTypeId());
if (!typeDefinition.isEmailVerifiable())
return;
if (identity.isConfirmed() || (!force && identity.getConfirmationInfo().getSentRequestAmount() > 0))
return;
//TODO - should use user's preferred locale
EmailIdentityConfirmationState state = new EmailIdentityConfirmationState(
identity.getEntityId(), identity.getTypeId(),
identity.getValue(), msg.getDefaultLocaleCode());
sendConfirmationRequest(state, force);
}
@Override
public void sendVerificationQuietNoTx(EntityParam entity, Identity identity, boolean force)
{
try
{
sendVerificationNoTx(entity, identity, force);
} catch (Exception e)
{
log.warn("Can not send a confirmation for the verificable identity being added "
+ identity.getValue(), e);
}
}
private Optional getConfiguration(BaseEmailConfirmationState baseState)
{
String facilityId = baseState.getFacilityId();
try
{
if (facilityId.equals(EmailAttribiuteConfirmationState.FACILITY_ID)
|| facilityId.equals(RegistrationReqEmailAttribiuteConfirmationState.FACILITY_ID))
{
return getConfirmationConfigurationForAttribute(baseState.getType());
}
else
{
return Optional.ofNullable(idTypeHelper.getIdentityType(baseState.getType()).getEmailConfirmationConfiguration());
}
} catch (Exception e)
{
log.error("Cannot get confirmation configuration", e);
return Optional.empty();
}
}
private Collection getAllTemplatesFromDB() throws EngineException
{
return tx.runInTransactionRet(() -> {
Map templates = mtDB.getAllAsMap();
return templates.values();
});
}
@Override
public void sendVerification(EntityParam entity, Attribute attribute) throws EngineException
{
tx.runInTransactionThrowing(() -> {
sendVerification(entity, attribute, true);
});
}
@Override
public void sendVerification(EntityParam entity, Identity identity) throws EngineException
{
tx.runInTransactionThrowing(() -> {
sendVerificationNoTx(entity, identity, true);
});
}
@Override
public Optional getConfirmationConfigurationForAttribute(
String attributeName)
{
try
{
AttributeValueSyntax syntax = atTypeHelper.getSyntax(
atTypeHelper.getTypeForAttributeName(attributeName));
if (!syntax.isEmailVerifiable())
throw new IllegalArgumentException("Unsupported attribute type: "
+ attributeName + " for email confirmation");
return syntax.getEmailConfirmationConfiguration();
} catch (Exception e)
{
log.info("Cannot get confirmation configuration for attribute "
+ attributeName, e);
return Optional.empty();
}
}
}
