service.impl/src/main/java/com/hack23/cia/service/impl/action/user/DisableGoogleAuthenticatorCredentialService.java

Summary

Maintainability
A
1 hr
Test Coverage
/*
 * Copyright 2010-2021 James Pether Sörling
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 *    $Id$
 *  $HeadURL$
*/
package com.hack23.cia.service.impl.action.user;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.access.annotation.Secured;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Propagation;
import org.springframework.transaction.annotation.Transactional;

import com.hack23.cia.model.internal.application.secure.impl.EncryptedValue;
import com.hack23.cia.model.internal.application.secure.impl.EncryptedValue_;
import com.hack23.cia.model.internal.application.system.impl.ApplicationEventGroup;
import com.hack23.cia.model.internal.application.system.impl.ApplicationOperationType;
import com.hack23.cia.model.internal.application.user.impl.UserAccount;
import com.hack23.cia.service.api.action.application.CreateApplicationEventRequest;
import com.hack23.cia.service.api.action.common.ServiceResponse.ServiceResult;
import com.hack23.cia.service.api.action.user.DisableGoogleAuthenticatorCredentialRequest;
import com.hack23.cia.service.api.action.user.DisableGoogleAuthenticatorCredentialResponse;
import com.hack23.cia.service.data.api.EncryptedValueDAO;
import com.hack23.cia.service.impl.action.common.AbstractBusinessServiceImpl;

/**
 * The Class DisableGoogleAuthenticatorCredentialService.
 */
@Service
@Transactional(propagation = Propagation.REQUIRED, timeout = 600)
public final class DisableGoogleAuthenticatorCredentialService extends
        AbstractBusinessServiceImpl<DisableGoogleAuthenticatorCredentialRequest, DisableGoogleAuthenticatorCredentialResponse> {

    /** The Constant LOGGER. */
    private static final Logger LOGGER = LoggerFactory.getLogger(DisableGoogleAuthenticatorCredentialService.class);

    /** The encrypted value DAO. */
    @Autowired
    private EncryptedValueDAO encryptedValueDAO;

    /** The password encoder. */
    private final PasswordEncoder passwordEncoder = new BCryptPasswordEncoder();

    /**
     * Instantiates a new disable google authenticator credential service.
     */
    public DisableGoogleAuthenticatorCredentialService() {
        super(DisableGoogleAuthenticatorCredentialRequest.class);
    }

    @Override
    @Secured({ "ROLE_USER", "ROLE_ADMIN" })
    public DisableGoogleAuthenticatorCredentialResponse processService(
            final DisableGoogleAuthenticatorCredentialRequest serviceRequest) {
        final DisableGoogleAuthenticatorCredentialResponse inputValidation = inputValidation(serviceRequest);
        if (inputValidation != null) {
            return inputValidation;
        }


        LOGGER.info("{}:{}", serviceRequest.getClass().getSimpleName(), serviceRequest.getSessionId());
        final CreateApplicationEventRequest eventRequest = createApplicationEventForService(serviceRequest);

        final UserAccount userAccount = getUserAccountFromSecurityContext();

        DisableGoogleAuthenticatorCredentialResponse response = new DisableGoogleAuthenticatorCredentialResponse(
                ServiceResult.SUCCESS);
        if (userAccount != null) {

            if (passwordEncoder.matches(
                    userAccount.getUserId() + ".uuid" + serviceRequest.getUserpassword(), userAccount.getUserpassword())) {
                final EncryptedValue encryptedValue = encryptedValueDAO.findFirstByProperty(EncryptedValue_.userId, userAccount.getUserId());
                encryptedValueDAO.delete(encryptedValue);
            } else {
                response = new DisableGoogleAuthenticatorCredentialResponse(
                        ServiceResult.FAILURE);
            }

        }

        eventRequest.setApplicationMessage(response.getResult().toString());
        createApplicationEventService.processService(eventRequest);

        return response;
    }

    @Override
    protected CreateApplicationEventRequest createApplicationEventForService(
            final DisableGoogleAuthenticatorCredentialRequest serviceRequest) {
        final CreateApplicationEventRequest eventRequest = createBaseApplicationEventRequest();
        eventRequest.setEventGroup(ApplicationEventGroup.USER);
        eventRequest.setApplicationOperation(ApplicationOperationType.CREATE);
        eventRequest.setActionName(DisableGoogleAuthenticatorCredentialRequest.class.getSimpleName());
        eventRequest.setSessionId(serviceRequest.getSessionId());
        return eventRequest;
    }

    @Override
    protected DisableGoogleAuthenticatorCredentialResponse createErrorResponse() {
        return new DisableGoogleAuthenticatorCredentialResponse(ServiceResult.FAILURE);
    }

}