io.mosip.pmp.authdevice.util.AuditUtil Maven / Gradle / Ivy
package io.mosip.pmp.authdevice.util;
import java.io.IOException;
import java.net.InetAddress;
import java.net.UnknownHostException;
import java.util.Arrays;
import java.util.List;
import java.util.concurrent.atomic.AtomicInteger;
import java.util.function.Predicate;
import javax.annotation.PostConstruct;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.core.env.Environment;
import org.springframework.http.HttpEntity;
import org.springframework.http.MediaType;
import org.springframework.http.ResponseEntity;
import org.springframework.security.access.AccessDeniedException;
import org.springframework.security.authentication.BadCredentialsException;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.stereotype.Component;
import org.springframework.web.client.HttpClientErrorException;
import org.springframework.web.client.HttpServerErrorException;
import org.springframework.web.client.HttpStatusCodeException;
import org.springframework.web.client.RestTemplate;
import com.fasterxml.jackson.core.type.TypeReference;
import com.fasterxml.jackson.databind.ObjectMapper;
import io.mosip.kernel.core.authmanager.exception.AuthNException;
import io.mosip.kernel.core.authmanager.exception.AuthZException;
import io.mosip.kernel.core.exception.ExceptionUtils;
import io.mosip.kernel.core.exception.ServiceError;
import io.mosip.kernel.core.util.DateUtils;
import io.mosip.pmp.authdevice.exception.AuthDeviceServiceException;
import io.mosip.pmp.authdevice.exception.ValidationException;
import io.mosip.pmp.authdevice.util.constant.AuditErrorCode;
import io.mosip.pmp.authdevice.util.dto.AuditRequestDto;
import io.mosip.pmp.authdevice.util.dto.AuditResponseDto;
import io.mosip.pmp.partner.core.RequestWrapper;
import io.mosip.pmp.partner.core.ResponseWrapper;
import io.mosip.pmp.partner.util.RestUtil;
@Component
public class AuditUtil {
/** The Constant APPLICATION_ID. */
private static final String APPLICATION_ID = "MOSIP_7";
/** The Constant APPLICATION_NAME. */
private static final String APPLICATION_NAME = "PARTNER_MANAGEMENT";
/** The Constant UNKNOWN_HOST. */
private static final String UNKNOWN_HOST = "Unknown Host";
private String hostIpAddress = null;
private String hostName = null;
private volatile AtomicInteger eventCounter;
@Value("${mosip.kernel.masterdata.audit-url}")
private String auditUrl;
@Autowired
private RestTemplate restTemplate;
@Autowired
private ObjectMapper objectMapper;
@Autowired
private Environment env;
@Autowired
RestUtil restUtil;
private static final org.slf4j.Logger LOGGER = LoggerFactory.getLogger(AuditUtil.class);
/**
* Audit request.
*
* @param auditRequestDto the audit request dto
*/
@PostConstruct
private void init() {
if (System.getProperty("seqGen") == null) {
eventCounter = new AtomicInteger(500);
} else {
Integer eventCount = Integer.getInteger(System.getProperty("seqGen"));
eventCounter = new AtomicInteger(eventCount);
}
}
public void auditRequest(String eventName, String eventType, String description) {
String eventId = "ADM-" + eventCounter.incrementAndGet();
setAuditRequestDto(eventName, eventType, description, eventId);
}
public void auditRequest(String eventName, String eventType, String description, String eventId) {
setAuditRequestDto(eventName, eventType, description, eventId);
}
/**
* Sets the audit request dto.
*
* @param auditRequestDto the new audit request dto
*/
private void setAuditRequestDto(String eventName, String eventType, String description, String eventId) {
AuditRequestDto auditRequestDto = new AuditRequestDto();
if (!validateSecurityContextHolder()) {
}
auditRequestDto.setEventId(eventId);
auditRequestDto.setId("NO_ID");
auditRequestDto.setIdType("NO_ID_TYPE");
auditRequestDto.setEventName(eventName);
auditRequestDto.setEventType(eventType);
auditRequestDto.setModuleId("PMP-AUT");
auditRequestDto.setModuleName("partner service");
auditRequestDto.setDescription(description);
auditRequestDto.setActionTimeStamp(DateUtils.getUTCCurrentDateTime());
auditRequestDto.setHostIp(hostIpAddress);
auditRequestDto.setHostName(hostName);
auditRequestDto.setApplicationId(APPLICATION_ID);
auditRequestDto.setApplicationName(APPLICATION_NAME);
auditRequestDto.setSessionUserId(SecurityContextHolder.getContext().getAuthentication().getName());
auditRequestDto.setSessionUserName(SecurityContextHolder.getContext().getAuthentication().getName());
auditRequestDto.setCreatedBy(SecurityContextHolder.getContext().getAuthentication().getName());
//if current profile is local or dev donot call this method
if(Arrays.stream(env.getActiveProfiles()).anyMatch(
environment -> (environment.equalsIgnoreCase("local")) )) {
LOGGER.info("Recieved Audit : "+auditRequestDto.toString());
} else {
callAuditManager(auditRequestDto);
}
}
/**
* Validate security context holder.
*
* @return true, if successful
*/
private boolean validateSecurityContextHolder() {
Predicate contextPredicate = i -> SecurityContextHolder.getContext() != null;
Predicate authPredicate = i -> SecurityContextHolder.getContext()
.getAuthentication() != null;
Predicate principlePredicate = i -> SecurityContextHolder.getContext()
.getAuthentication().getPrincipal() != null;
return contextPredicate.and(authPredicate).and(principlePredicate) != null;
}
/**
* Gets the server ip.
*
* @return the server ip
*/
public String getServerIp() {
try {
return InetAddress.getLocalHost().getHostAddress();
} catch (UnknownHostException e) {
return UNKNOWN_HOST;
}
}
/**
* Gets the server name.
*
* @return the server name
*/
public String getServerName() {
try {
return InetAddress.getLocalHost().getHostName();
} catch (UnknownHostException e) {
return UNKNOWN_HOST;
}
}
/**
* To Set the Host Ip & Host Name
*/
@PostConstruct
public void getHostDetails() {
hostIpAddress = getServerIp();
hostName = getServerName();
}
/**
* For Auditing Login Services
*
* @param auditRequestDto
* @param token
* @return
*/
public void callAuditManager(AuditRequestDto auditRequestDto) {
RequestWrapper auditReuestWrapper = new RequestWrapper<>();
auditReuestWrapper.setRequest(auditRequestDto);
HttpEntity> httpEntity = new HttpEntity<>(auditReuestWrapper);
String response =null;
try {
response = restUtil.postApi(auditUrl, null, "", "", MediaType.APPLICATION_JSON, httpEntity, String.class);
//response = restTemplate.exchange(auditUrl, HttpMethod.POST, httpEntity, String.class);
} catch (HttpClientErrorException | HttpServerErrorException ex) {
handlException(ex);
}
//String responseBody = response.getBody();
getAuditDetailsFromResponse(response);
}
private AuditResponseDto getAuditDetailsFromResponse(String responseBody) {
List validationErrorsList = null;
validationErrorsList = ExceptionUtils.getServiceErrorList(responseBody);
AuditResponseDto auditResponseDto = null;
if (!validationErrorsList.isEmpty()) {
throw new ValidationException(validationErrorsList);
}
ResponseWrapper responseObject = null;
try {
responseObject = objectMapper.readValue(responseBody,
new TypeReference>() {
});
auditResponseDto = responseObject.getResponse();
} catch (IOException | NullPointerException exception) {
throw new AuthDeviceServiceException(AuditErrorCode.AUDIT_PARSE_EXCEPTION.getErrorCode(),
AuditErrorCode.AUDIT_PARSE_EXCEPTION.getErrorMessage());
}
return auditResponseDto;
}
private void handlException(HttpStatusCodeException ex) {
List validationErrorsList = ExceptionUtils.getServiceErrorList(ex.getResponseBodyAsString());
if (ex.getRawStatusCode() == 401) {
if (!validationErrorsList.isEmpty()) {
throw new AuthNException(validationErrorsList);
} else {
throw new BadCredentialsException("Authentication failed from AuthManager");
}
}
if (ex.getRawStatusCode() == 403) {
if (!validationErrorsList.isEmpty()) {
throw new AuthZException(validationErrorsList);
} else {
throw new AccessDeniedException("Access denied from AuthManager");
}
}
throw new AuthDeviceServiceException(AuditErrorCode.AUDIT_EXCEPTION.getErrorCode(),
AuditErrorCode.AUDIT_EXCEPTION.getErrorMessage() + ex);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy