/**
* Licensed under the GNU LESSER GENERAL PUBLIC LICENSE, version 2.1, dated February 1999.
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the latest version of the GNU Lesser General
* Public License as published by the Free Software Foundation;
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with this program (LICENSE.txt); if not, write to the Free Software
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
*/
package org.jamwiki.servlets;
import java.util.ArrayList;
import java.util.List;
import java.util.Locale;
import java.util.Map;
import java.util.TreeMap;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.web.authentication.WebAuthenticationDetails;
import org.apache.commons.lang.LocaleUtils;
import org.apache.commons.lang.StringUtils;
import org.jamwiki.WikiBase;
import org.jamwiki.WikiConfiguration;
import org.jamwiki.WikiException;
import org.jamwiki.WikiMessage;
import org.jamwiki.authentication.JAMWikiAuthenticationConfiguration;
import org.jamwiki.authentication.RoleImpl;
import org.jamwiki.authentication.WikiUserDetails;
import org.jamwiki.model.VirtualWiki;
import org.jamwiki.model.WikiUser;
import org.jamwiki.utils.Encryption;
import org.jamwiki.utils.WikiLogger;
import org.jamwiki.utils.WikiUtil;
import org.springframework.web.servlet.ModelAndView;
import org.springframework.web.servlet.i18n.SessionLocaleResolver;
/**
* Used to process new user account setup.
*/
public class RegisterServlet extends JAMWikiServlet {
private static final WikiLogger logger = WikiLogger.getLogger(RegisterServlet.class.getName());
/** The name of the JSP file used to render the servlet output when searching. */
protected static final String JSP_REGISTER = "register.jsp";
/**
*
*/
protected ModelAndView handleJAMWikiRequest(HttpServletRequest request, HttpServletResponse response, ModelAndView next, WikiPageInfo pageInfo) throws Exception {
if (request.getParameter("function") == null) {
view(request, next, pageInfo);
} else {
register(request, next, pageInfo);
}
return next;
}
/**
*
*/
private void loadDefaults(HttpServletRequest request, ModelAndView next, WikiPageInfo pageInfo, WikiUser user) throws Exception {
if (StringUtils.isBlank(user.getDefaultLocale()) && request.getLocale() != null) {
user.setDefaultLocale(request.getLocale().toString());
}
TreeMap<String, String> locales = new TreeMap<String, String>();
Map<String, String> translations = WikiConfiguration.getInstance().getTranslations();
for (String key : translations.keySet()) {
String value = key + " - " + translations.get(key);
locales.put(value, key);
}
Locale[] localeArray = Locale.getAvailableLocales();
for (int i = 0; i < localeArray.length; i++) {
String key = localeArray[i].toString();
String value = key + " - " + localeArray[i].getDisplayName(localeArray[i]);
locales.put(value, key);
}
next.addObject("locales", locales);
Map editors = WikiConfiguration.getInstance().getEditors();
next.addObject("editors", editors);
next.addObject("newuser", user);
pageInfo.setSpecial(true);
pageInfo.setContentJsp(JSP_REGISTER);
pageInfo.setPageTitle(new WikiMessage("register.title"));
}
/**
*
*/
private void login(HttpServletRequest request, String username, String password) {
WikiUserDetails userDetails = new WikiUserDetails(username, password, true, true, true, true, JAMWikiAuthenticationConfiguration.getDefaultGroupRoles());
UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(userDetails, password, userDetails.getAuthorities());
authentication.setDetails(new WebAuthenticationDetails(request));
SecurityContextHolder.getContext().setAuthentication(authentication);
}
/**
*
*/
private void register(HttpServletRequest request, ModelAndView next, WikiPageInfo pageInfo) throws Exception {
String virtualWikiName = pageInfo.getVirtualWikiName();
WikiUser user = this.setWikiUser(request);
boolean isUpdate = (user.getUserId() != null);
next.addObject("newuser", user);
List<WikiMessage> errors = validate(request, user);
if (!errors.isEmpty()) {
next.addObject("errors", errors);
String oldPassword = request.getParameter("oldPassword");
String newPassword = request.getParameter("newPassword");
String confirmPassword = request.getParameter("confirmPassword");
if (oldPassword != null) {
next.addObject("oldPassword", oldPassword);
}
if (newPassword != null) {
next.addObject("newPassword", newPassword);
}
if (confirmPassword != null) {
next.addObject("confirmPassword", confirmPassword);
}
this.loadDefaults(request, next, pageInfo, user);
} else {
String username = request.getParameter("login");
String newPassword = request.getParameter("newPassword");
String encryptedPassword = null;
if (!StringUtils.isBlank(newPassword)) {
encryptedPassword = Encryption.encrypt(newPassword);
}
WikiBase.getDataHandler().writeWikiUser(user, username, encryptedPassword);
if (!StringUtils.isBlank(newPassword)) {
// login the user
this.login(request, user.getUsername(), newPassword);
}
// update the locale key since the user may have changed default locale
if (!StringUtils.isBlank(user.getDefaultLocale())) {
Locale locale = LocaleUtils.toLocale(user.getDefaultLocale());
request.getSession().setAttribute(SessionLocaleResolver.LOCALE_SESSION_ATTRIBUTE_NAME, locale);
}
if (isUpdate) {
next.addObject("updateMessage", new WikiMessage("register.caption.updatesuccess"));
this.view(request, next, pageInfo);
} else {
VirtualWiki virtualWiki = WikiBase.getDataHandler().lookupVirtualWiki(virtualWikiName);
String topic = virtualWiki.getDefaultTopicName();
ServletUtil.redirect(next, virtualWikiName, topic);
}
}
}
/**
*
*/
private WikiUser setWikiUser(HttpServletRequest request) throws Exception {
String username = request.getParameter("login");
WikiUser user = new WikiUser(username);
String userIdString = request.getParameter("userId");
if (!StringUtils.isBlank(userIdString)) {
Long userId = Long.valueOf(userIdString);
if (userId != null) {
user = WikiBase.getDataHandler().lookupWikiUser(userId);
}
}
user.setDisplayName(request.getParameter("displayName"));
user.setDefaultLocale(request.getParameter("defaultLocale"));
user.setEmail(request.getParameter("email"));
user.setEditor(request.getParameter("editor"));
user.setSignature(request.getParameter("signature"));
// FIXME - need to distinguish between add & update
user.setCreateIpAddress(ServletUtil.getIpAddress(request));
user.setLastLoginIpAddress(ServletUtil.getIpAddress(request));
return user;
}
/**
*
*/
private List<WikiMessage> validate(HttpServletRequest request, WikiUser user) throws Exception {
List<WikiMessage> errors = new ArrayList<WikiMessage>();
try {
WikiUtil.validateUserName(user.getUsername());
} catch (WikiException e) {
errors.add(e.getWikiMessage());
}
String oldPassword = request.getParameter("oldPassword");
if (user.getUserId() != null && !StringUtils.isBlank(oldPassword) && !WikiBase.getDataHandler().authenticate(user.getUsername(), oldPassword)) {
errors.add(new WikiMessage("register.error.oldpasswordinvalid"));
}
String newPassword = request.getParameter("newPassword");
String confirmPassword = request.getParameter("confirmPassword");
if (user.getUserId() == null && StringUtils.isBlank(newPassword)) {
errors.add(new WikiMessage("register.error.passwordempty"));
}
if (!StringUtils.isBlank(newPassword) || !StringUtils.isBlank(confirmPassword)) {
if (user.getUserId() != null && StringUtils.isBlank(oldPassword)) {
errors.add(new WikiMessage("register.error.oldpasswordinvalid"));
}
try {
WikiUtil.validatePassword(newPassword, confirmPassword);
} catch (WikiException e) {
errors.add(e.getWikiMessage());
}
}
if (user.getUserId() == null && WikiBase.getDataHandler().lookupWikiUser(user.getUsername()) != null) {
errors.add(new WikiMessage("register.error.logininvalid", user.getUsername()));
}
return errors;
}
/**
*
*/
private void view(HttpServletRequest request, ModelAndView next, WikiPageInfo pageInfo) throws Exception {
// FIXME - i suspect initializing with a null login is bad
WikiUser user = new WikiUser();
if (!ServletUtil.currentUserDetails().hasRole(RoleImpl.ROLE_ANONYMOUS)) {
user = ServletUtil.currentWikiUser();
}
this.loadDefaults(request, next, pageInfo, user);
}
}