McPringle/sportchef

View on GitHub
src/main/java/ch/sportchef/business/authentication/boundary/AuthenticationResource.java

Summary

Maintainability
A
25 mins
Test Coverage
/*
 * SportChef – Sports Competition Management Software
 * Copyright (C) 2016 Marcus Fihlon
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program. If not, see <http://www.gnu.org/licenses/>.
 */
package ch.sportchef.business.authentication.boundary;

import ch.sportchef.business.authentication.control.AuthenticationService;
import ch.sportchef.business.authentication.entity.AuthenticationData;

import javax.inject.Inject;
import javax.validation.constraints.NotNull;
import javax.ws.rs.Consumes;
import javax.ws.rs.GET;
import javax.ws.rs.POST;
import javax.ws.rs.Path;
import javax.ws.rs.Produces;
import javax.ws.rs.QueryParam;
import javax.ws.rs.client.Entity;
import javax.ws.rs.core.MediaType;
import javax.ws.rs.core.Response;
import javax.ws.rs.core.Response.Status;
import java.util.Optional;

@Path("authentication")
@Produces(MediaType.APPLICATION_JSON)
public class AuthenticationResource {

    private final AuthenticationService authenticationService;

    @Inject
    public AuthenticationResource(@NotNull final AuthenticationService authenticationService) {
        this.authenticationService = authenticationService;
    }

    @GET
    @Consumes({MediaType.WILDCARD})
    public Response requestChallenge(@QueryParam("email") final String email) {
        final Response response;

        if (email == null || email.trim().isEmpty()) {
            response = Response.status(Status.BAD_REQUEST).build();
        } else {
            response = authenticationService.requestChallenge(email) ?
                    Response.ok().build() :
                    Response.status(Status.NOT_FOUND).build();
        }

        return response;
    }

    @POST
    @Consumes({MediaType.APPLICATION_JSON})
    public Response authenticate(@NotNull final AuthenticationData authenticationData) {
        final Optional<String> token = authenticationService.validateChallenge(
                authenticationData.getEmail(), authenticationData.getChallenge());

        return token.isPresent() ?
                Response.ok(Entity.text(token.get()))
                        .header("Token", token.get())
                        .build() :
                Response.status(Status.FORBIDDEN)
                        .build();
    }
}