D-Net

package eu.dnetlib.openaire.usermanagement.security;

import com.google.gson.Gson;

import org.apache.log4j.Logger;

import org.mitre.openid.connect.model.OIDCAuthenticationToken;

import org.springframework.security.core.Authentication;

import org.springframework.security.web.authentication.AuthenticationSuccessHandler;

import javax.servlet.http.Cookie;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import java.io.IOException;

/**

 * Created by stefanos on 9/5/2017.

 */

public class FrontEndLinkURIAuthenticationSuccessHandler implements AuthenticationSuccessHandler {

    private static final Logger logger = Logger.getLogger(FrontEndLinkURIAuthenticationSuccessHandler.class);

    private String frontEndURI;

    private String frontPath;

    private String frontDomain;

    @Override

    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) throws IllegalArgumentException, IOException   {

        OIDCAuthenticationToken authOIDC = (OIDCAuthenticationToken) authentication;

        try {

//            Cookie jwt = new Cookie("XCsrfToken", JWTGenerator.generateToken(authOIDC, "my-very-secret"));

            Cookie openAIREUser = new Cookie("openAIREUser",  new Gson().toJson(JWTGenerator.generateJsonToken(authOIDC)));

            Cookie accessToken = new Cookie("AccessToken", authOIDC.getAccessTokenValue());

            // Expire the cookies in four hours (4 * 3600)

//            jwt.setMaxAge(14400);

            openAIREUser.setMaxAge(14400);

            accessToken.setMaxAge(14400);

            //TODO DELETE LOG

            logger.info("\n////////////////////////////////////////////////////////////////////////////////////////////////\n");

//            logger.info("jwt: " + JWTGenerator.generateToken(authOIDC, "my-very-secret"));

            logger.info("access token: " + authOIDC.getAccessTokenValue());

            logger.info("openAIREUser: " + JWTGenerator.generateJsonToken(authOIDC));

            logger.info("\n////////////////////////////////////////////////////////////////////////////////////////////////\n");

            //TODO DELETE LOG

//            logger.info("\n////////////////////////////////////////////////////////////////////////////////////////////////\n");

//            logger.info("refresh token: " + authOIDC.getRefreshTokenValue());

//            logger.info("\n////////////////////////////////////////////////////////////////////////////////////////////////\n");

//            jwt.setPath(frontPath);

            openAIREUser.setPath(frontPath);

            accessToken.setPath(frontPath);

            if (frontDomain!=null) {

//                jwt.setDomain(frontDomain);

                openAIREUser.setDomain(frontDomain);

                accessToken.setDomain(frontDomain);

            }

//            response.addCookie(jwt);

            response.addCookie(openAIREUser);

            response.addCookie(accessToken);

            response.sendRedirect(frontEndURI);

        } catch (IOException e) {

            logger.error("IOException in redirection ", e);

            throw new IOException(e);

        }catch (IllegalArgumentException e) {

            logger.error("IllegalArgumentException in redirection ", e);

            throw new IllegalArgumentException(e);

        }

    }

    public String getFrontEndURI() {

        return frontEndURI;

    }

    public void setFrontEndURI(String frontEndURI) {

        this.frontEndURI = frontEndURI;

    }

    public String getFrontPath() {

        return frontPath;

    }

    public void setFrontPath(String frontPath) {

        this.frontPath = frontPath;

    }

    public String getFrontDomain() {

        return frontDomain;

    }

    public void setFrontDomain(String frontDomain) {

        this.frontDomain = frontDomain;

    }

}