/modules/dnet-openaire-users/branches/beta/src/main/java/eu/dnetlib/openaire/usermanagement/api/RegistryService.java - Diff - D-Net - D-Net project tracking tool

« Previous | Next »

Revision 61649

Added by Konstantinos Triantafyllou over 2 years ago

Add integration with Role Management. Version 2.0.0

     package eu.dnetlib.openaire.usermanagement.api;
     import com.google.gson.*;
     import eu.dnetlib.openaire.user.login.utils.AuthoritiesUpdater;
     import com.google.gson.JsonArray;
     import com.google.gson.JsonElement;
     import com.google.gson.JsonObject;
     import com.google.gson.JsonParser;
     import eu.dnetlib.openaire.user.pojos.RoleVerification;
     import eu.dnetlib.openaire.user.utils.EmailSender;
     import eu.dnetlib.openaire.usermanagement.dto.Role;
     import eu.dnetlib.openaire.usermanagement.dto.User;
     import eu.dnetlib.openaire.usermanagement.utils.AuthorizationService;
     import eu.dnetlib.openaire.usermanagement.utils.JsonUtils;
     import eu.dnetlib.openaire.usermanagement.utils.RegistryCalls;
     import eu.dnetlib.openaire.usermanagement.utils.RoleManagement;
     import eu.dnetlib.openaire.usermanagement.utils.VerificationUtils;
     import org.apache.log4j.Logger;
     import org.springframework.beans.factory.annotation.Autowired;
     import org.springframework.http.HttpStatus;
     import org.springframework.security.access.prepost.PreAuthorize;
     import org.springframework.security.core.authority.SimpleGrantedAuthority;
     import org.springframework.stereotype.Component;
     import org.springframework.web.bind.annotation.RequestBody;
     import org.springframework.web.bind.annotation.*;
     import org.springframework.web.client.HttpClientErrorException;
     import javax.mail.MessagingException;
     import javax.servlet.http.HttpServletRequest;
     import javax.ws.rs.*;
     import javax.ws.rs.core.Context;
     import javax.ws.rs.core.MediaType;
     import javax.ws.rs.core.Response;
     import java.util.*;
     @Component(value = "RegistryService")
     @CrossOrigin("*")
     @Path("/registry")
     public class RegistryService {
         private static final Logger logger = Logger.getLogger(RegistryService.class);
         @Autowired
         private RegistryCalls calls;
         private RoleManagement calls;
         @Autowired
         private JsonUtils jsonUtils;
         @Autowired
         private EmailSender emailSender;
         @Autowired
         private VerificationUtils verificationUtils;
         @Autowired
         private AuthoritiesUpdater authoritiesUpdater;
         private EmailSender emailSender;
         @Autowired
         private AuthorizationService authorizationService;
         private final Gson gson = new Gson();
         /**
          * Subscribe to a type(Community, etc.) with id(ee, egi, etc.)
          */
-...
         @POST
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("isAuthenticated() and @AuthorizationService.isCommunity(#type)")
         public Response subscribe(@PathParam("type") String type, @PathParam("id") String id) {
             Integer coPersonId = calls.getCoPersonIdByIdentifier();
             Integer couId = calls.getCouId(type, id);
             if (couId != null) {
                 Integer role = calls.getRoleId(coPersonId, couId);
                 calls.assignMemberRole(coPersonId, couId, role);
                 authoritiesUpdater.update(authorizationService.getEmail(), old -> {
                     HashSet<SimpleGrantedAuthority> authorities = new HashSet<>((Collection<? extends SimpleGrantedAuthority>) old);
                     authorities.add(new SimpleGrantedAuthority(authorizationService.member(type, id)));
                     return authorities;
                 });
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Role has been assigned").toString()).type(MediaType.APPLICATION_JSON).build();
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
         public Response subscribe(@PathParam("type") String type, @PathParam("id") String id, @Context final HttpServletRequest request) {
             try {
                 JsonElement response = calls.assignMemberRole(type, id, request);
                 return Response.status(HttpStatus.OK.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
-...
         @POST
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("isAuthenticated() and @AuthorizationService.isCommunity(#type)")
         public Response unsubscribe(@PathParam("type") String type, @PathParam("id") String id) {
             Integer coPersonId = calls.getCoPersonIdByIdentifier();
             Integer couId = calls.getCouId(type, id);
             if (couId != null) {
                 Integer role = calls.getRoleId(coPersonId, couId);
                 if (role != null) {
                     calls.removeAdminRole(coPersonId, couId);
                     calls.removeMemberRole(coPersonId, couId, role);
                     authoritiesUpdater.update(authorizationService.getEmail(), old -> {
                         HashSet<SimpleGrantedAuthority> authorities = new HashSet<>((Collection<? extends SimpleGrantedAuthority>) old);
                         authorities.remove(new SimpleGrantedAuthority(authorizationService.manager(type, id)));
                         authorities.remove(new SimpleGrantedAuthority(authorizationService.member(type, id)));
                         return authorities;
                     });
                     return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Role has been removed").toString()).type(MediaType.APPLICATION_JSON).build();
                 } else
                     return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("User does not have this role").toString()).type(MediaType.APPLICATION_JSON).build();
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
         public Response unsubscribe(@PathParam("type") String type, @PathParam("id") String id, @Context final HttpServletRequest request) {
             try {
                 JsonElement response = calls.removeMemberRole(type, id, request);
                 return Response.status(HttpStatus.OK.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
         /**
          * Create a new curator role with the given type(Community, etc.).
          **/
         @Path("/create/{type}")
         @POST
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN)")
         public Response createCuratorRole(@PathParam("type") String type) {
             try {
                 JsonElement response = calls.createCuratorRole(type);
                 return Response.status(HttpStatus.CREATED.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
         /**
          * Create a new role with the given type(Community, etc.) with id(ee, egi, etc.).
          **/
         @Path("/create/{type}/{id}")
-...
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN)")
         public Response createMemberRole(@PathParam("type") String type, @PathParam("id") String id) {
             if (calls.getCouId(type, id) != null) {
                 if(calls.createRole(new Role(type + "." + id,calls.mapType(type, false) + " " + id)) != null) {
                     return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Role has been created").toString()).type(MediaType.APPLICATION_JSON).build();
                 } else {
                     return Response.status(HttpStatus.BAD_REQUEST.value()).entity(jsonUtils.createResponse("An error has occurred. Please try again later").toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.CONFLICT.value()).entity(jsonUtils.createResponse("Role has already existed").toString()).type(MediaType.APPLICATION_JSON).build();
             try {
                 JsonElement response = calls.createMemberRole(type, id);
                 return Response.status(HttpStatus.CREATED.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
         /**
          * @deprecated
+         *
          * Create a new role with the given name and description.
          **/
         @Path("/createRole")
-...
         @Consumes(MediaType.APPLICATION_JSON)
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN)")
         public Response createRole(@RequestBody Role role) {
             if (calls.getCouId(role.getName()) == null) {
                 if(calls.createRole(role) != null) {
                     return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Role has been created").toString()).type(MediaType.APPLICATION_JSON).build();
                 } else {
                     return Response.status(HttpStatus.BAD_REQUEST.value()).entity(jsonUtils.createResponse("An error has occurred. Please try again later").toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.CONFLICT.value()).entity(jsonUtils.createResponse("Role has already existed").toString()).type(MediaType.APPLICATION_JSON).build();
             try {
                 JsonElement response = calls.createRole(role.getName(), role.getDescription());
                 return Response.status(HttpStatus.CREATED.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, " +
                 "@AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response inviteManager(@PathParam("type") String type, @PathParam("id") String id, @RequestBody String body) {
             Integer couId = calls.getCouId(type, id);
             if (couId != null) {
             try {
                 JsonObject details = new JsonParser().parse(body).getAsJsonObject();
                 JsonObject email = details.get("email").getAsJsonObject();
                 String recipient = email.get("recipient").getAsString();
                 Integer coPersonId = calls.getCoPersonIdByEmail(recipient);
                 if (coPersonId == null || calls.getUserAdminGroup(coPersonId, couId) == null) {
                 if (!calls.isManager(type, id, recipient)) {
                     JsonObject invitation = verificationUtils.createManagerInvitation(recipient, type, id);
                     return sendEmail(details, email, coPersonId, invitation);
                     return sendEmail(details, email, invitation);
                 } else {
                     return Response.status(HttpStatus.CONFLICT.value()).entity(jsonUtils.createResponse("User has been already manager of this " + type).toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, " +
                 "@AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response inviteMember(@PathParam("type") String type, @PathParam("id") String id, @RequestBody String body) {
             Integer couId = calls.getCouId(type, id, false);
             if (couId != null) {
             try {
                 JsonObject details = new JsonParser().parse(body).getAsJsonObject();
                 JsonObject email = details.get("email").getAsJsonObject();
                 String recipient = email.get("recipient").getAsString();
                 Integer coPersonId = calls.getCoPersonIdByEmail(recipient);
                 if (coPersonId == null || calls.getRoleId(coPersonId, couId) == null) {
                 if (!calls.isMember(type, id, recipient)) {
                     JsonObject invitation = verificationUtils.createMemberInvitation(recipient, type, id);
                     return sendEmail(details, email, coPersonId, invitation);
                     return sendEmail(details, email, invitation);
                 } else {
                     return Response.status(HttpStatus.CONFLICT.value()).entity(jsonUtils.createResponse("User has been already member of this " + type).toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
         private Response sendEmail(JsonObject details, JsonObject email, Integer coPersonId, JsonObject invitation) {
             String name = (coPersonId != null) ? calls.getUserNames(coPersonId) : "User";
         private Response sendEmail(JsonObject details, JsonObject email, JsonObject invitation) {
             String link = details.get("link").getAsString() + invitation.get("link").getAsString();
             String subject = email.get("subject").getAsString();
             String message = email.get("body").getAsString().
                     replace("((__user__))", name).
                     replace("((__user__))", "User").
                     replace("((__link__))", link).
                     replace("((__code__))", invitation.get("code").getAsString());
             try {
                 emailSender.sendEmail(email.get("recipient").getAsString(), subject, message);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(invitation).toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (MessagingException e) {
                 logger.error(e.getMessage());
                 verificationUtils.deleteVerification(invitation.get("link").getAsString());
                 return Response.status(HttpStatus.BAD_REQUEST.value()).entity(jsonUtils.createResponse("Email sent failed").toString()).type(MediaType.APPLICATION_JSON).build();
+            }
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, " +
                 "@AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response cancelManagerInvitations(@PathParam("type") String type, @PathParam("id") String id, @PathParam("email") String email) {
             Integer couId = calls.getCouId(type, id);
             if (couId != null) {
                 verificationUtils.deleteManagerVerifications(email, type, id);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Invitations have been deleted").toString()).type(MediaType.APPLICATION_JSON).build();
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
+            }
             verificationUtils.deleteManagerVerifications(email, type, id);
             return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Invitations have been deleted").toString()).type(MediaType.APPLICATION_JSON).build();
+        }
         /**
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, " +
                 "@AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response cancelMemberInvitations(@PathParam("type") String type, @PathParam("id") String id, @PathParam("email") String email) {
             Integer couId = calls.getCouId(type, id, false);
             if (couId != null) {
                 verificationUtils.deleteMemberVerifications(email, type, id);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Invitations have been deleted").toString()).type(MediaType.APPLICATION_JSON).build();
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
+            }
             verificationUtils.deleteMemberVerifications(email, type, id);
             return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Invitations have been deleted").toString()).type(MediaType.APPLICATION_JSON).build();
+        }
         /**
-...
         /**
          * Get the verification with a specific id only if it refers to the logged in user
          */
         @Path("verification/{id}")
         @Path("/verification/{id}")
         @GET
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("isAuthenticated()")
-...
         /**
          * Delete the verification with a specific id.
          */
         @Path("verification/{id}")
         @Path("/verification/{id}")
         @DELETE
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("isAuthenticated() && @VerificationUtils.ownedVerification(#id)")
-...
          * Verify the verification with the specific id, if the code is correct and it refers to the logged in user.
          * Manager role is assigned to this user, along with the member role.
          */
         @Path("verification/manager/{id}")
         @Path("/verification/manager/{id}")
         @POST
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("isAuthenticated()")
         public Response verifyManager(@PathParam("id") String id, @RequestBody String code) {
         public Response verifyManager(@PathParam("id") String id, @RequestBody String code, @Context final HttpServletRequest request) {
             RoleVerification verification = verificationUtils.getVerification(id);
             if (verification != null && verification.getVerificationType().equals("manager")) {
                 Integer coPersonId = calls.getCoPersonIdByIdentifier();
                 if (coPersonId != null) {
                     if (verification.getEmail().equalsIgnoreCase(authorizationService.getEmail())) {
                         if (verification.getVerificationCode().equals(code)) {
                             Integer couId = calls.getCouId(verification.getType(), verification.getEntity());
                             if (couId != null) {
                                 Integer role = calls.getRoleId(coPersonId, couId);
                                 calls.assignMemberRole(coPersonId, couId, role);
                                 if (verification.getType().equals("community") || verification.getType().equals("ri")) {
                                     Integer riCouId = calls.getCouId("ri", verification.getEntity(), false);
                                     if (riCouId != null) {
                                         calls.assignMemberRole(coPersonId, riCouId, calls.getRoleId(coPersonId, riCouId));
                                         verificationUtils.deleteMemberVerifications(verification.getEmail(), "community", verification.getEntity());
                                         verificationUtils.deleteMemberVerifications(verification.getEmail(), "ri", verification.getEntity());
                                     } else {
                                         verificationUtils.deleteMemberVerifications(verification.getEmail(), "community", verification.getEntity());
+                                    }
                                 } else {
                                     verificationUtils.deleteMemberVerifications(verification.getEmail(), verification.getType(), verification.getEntity());
+                                }
                                 if (calls.getUserAdminGroup(coPersonId, couId) == null) {
                                     if (verification.getType().equals("community") || verification.getType().equals("ri")) {
                                         verificationUtils.deleteManagerVerifications(verification.getEmail(), "community", verification.getEntity());
                                         verificationUtils.deleteManagerVerifications(verification.getEmail(), "ri", verification.getEntity());
                                     } else {
                                         verificationUtils.deleteManagerVerifications(verification.getEmail(), verification.getType(), verification.getEntity());
+                                    }
                                     calls.assignAdminRole(coPersonId, couId);
                                     authoritiesUpdater.update(verification.getEmail(), old -> {
                                         HashSet<SimpleGrantedAuthority> authorities = new HashSet<>((Collection<? extends SimpleGrantedAuthority>) old);
                                         authorities.add(new SimpleGrantedAuthority(authorizationService.member(verification.getType(), verification.getEntity())));
                                         authorities.add(new SimpleGrantedAuthority(authorizationService.manager(verification.getType(), verification.getEntity())));
                                         return authorities;
                                     });
                                     return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Admin role has been assigned").toString()).type(MediaType.APPLICATION_JSON).build();
                                 } else {
                                     return Response.status(HttpStatus.CONFLICT.value()).entity(jsonUtils.createResponse("User is already admin of this cou").toString()).type(MediaType.APPLICATION_JSON).build();
+                                }
                 if (verification.getEmail().equalsIgnoreCase(authorizationService.getEmail())) {
                     if (verification.getVerificationCode().equals(code)) {
                         try {
                             calls.assignManagerRole(verification.getType(), verification.getEntity(), request);
                             if (verification.getType().equals("community") || verification.getType().equals("ri")) {
                                 calls.assignMemberRole("ri", verification.getEntity(), request);
                                 verificationUtils.deleteMemberVerifications(verification.getEmail(), "community", verification.getEntity());
                                 verificationUtils.deleteMemberVerifications(verification.getEmail(), "ri", verification.getEntity());
                                 verificationUtils.deleteManagerVerifications(verification.getEmail(), "community", verification.getEntity());
                                 verificationUtils.deleteManagerVerifications(verification.getEmail(), "ri", verification.getEntity());
                             } else {
                                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
                                 verificationUtils.deleteMemberVerifications(verification.getEmail(), verification.getType(), verification.getEntity());
                                 verificationUtils.deleteManagerVerifications(verification.getEmail(), verification.getType(), verification.getEntity());
+                            }
                         } else {
                             return Response.status(HttpStatus.BAD_REQUEST.value()).entity(jsonUtils.createResponse("Verification code is wrong").toString()).type(MediaType.APPLICATION_JSON).build();
                             return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Admin role has been assigned").toString()).type(MediaType.APPLICATION_JSON).build();
                         } catch (HttpClientErrorException e) {
                             String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                             return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+                        }
                     } else {
                         return Response.status(HttpStatus.FORBIDDEN.value()).entity(jsonUtils.createResponse("Forbidden verification").toString()).type(MediaType.APPLICATION_JSON).build();
                         return Response.status(HttpStatus.BAD_REQUEST.value()).entity(jsonUtils.createResponse("Verification code is wrong").toString()).type(MediaType.APPLICATION_JSON).build();
+                    }
                 } else {
                     return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("User has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
                     return Response.status(HttpStatus.FORBIDDEN.value()).entity(jsonUtils.createResponse("Forbidden verification").toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Verification has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
-...
          * Verify the verification with the specific id, if the code is correct and it refers to the logged in user.
          * Member role is assigned to this user, along with the member role.
          */
         @Path("verification/member/{id}")
         @Path("/verification/member/{id}")
         @POST
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("isAuthenticated()")
         public Response verifyMember(@PathParam("id") String id, @RequestBody String code) {
         public Response verifyMember(@PathParam("id") String id, @RequestBody String code, @Context final HttpServletRequest request) {
             RoleVerification verification = verificationUtils.getVerification(id);
             if (verification != null && verification.getVerificationType().equals("member")) {
                 Integer coPersonId = calls.getCoPersonIdByIdentifier();
                 if (coPersonId != null) {
                     if (verification.getEmail().equalsIgnoreCase(authorizationService.getEmail())) {
                         if (verification.getVerificationCode().equals(code)) {
                             Integer couId = calls.getCouId(verification.getType(), verification.getEntity(), false);
                             if (couId != null) {
                                 Integer role = calls.getRoleId(coPersonId, couId);
                                 calls.assignMemberRole(coPersonId, couId, role);
                                 authoritiesUpdater.update(verification.getEmail(), old -> {
                                     HashSet<SimpleGrantedAuthority> authorities = new HashSet<>((Collection<? extends SimpleGrantedAuthority>) old);
                                     authorities.add(new SimpleGrantedAuthority(authorizationService.member(verification.getType(), verification.getEntity())));
                                     return authorities;
                                 });
                                 verificationUtils.deleteMemberVerifications(verification.getEmail(), verification.getType(), verification.getEntity());
                                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Member role has been assigned").toString()).type(MediaType.APPLICATION_JSON).build();
                             } else {
                                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
+                            }
                         } else {
                             return Response.status(HttpStatus.FORBIDDEN.value()).entity(jsonUtils.createResponse("Verification code is wrong").toString()).type(MediaType.APPLICATION_JSON).build();
                 if (verification.getEmail().equalsIgnoreCase(authorizationService.getEmail())) {
                     if (verification.getVerificationCode().equals(code)) {
                         try {
                             calls.assignMemberRole(verification.getType(), verification.getEntity(), request);
                             verificationUtils.deleteMemberVerifications(verification.getEmail(), verification.getType(), verification.getEntity());
                             return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Member role has been assigned").toString()).type(MediaType.APPLICATION_JSON).build();
                         } catch (HttpClientErrorException e) {
                             String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                             return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+                        }
                     } else {
                         return Response.status(HttpStatus.FORBIDDEN.value()).entity(jsonUtils.createResponse("Forbidden verification").toString()).type(MediaType.APPLICATION_JSON).build();
                         return Response.status(HttpStatus.BAD_REQUEST.value()).entity(jsonUtils.createResponse("Verification code is wrong").toString()).type(MediaType.APPLICATION_JSON).build();
+                    }
                 } else {
                     return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("User has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
                     return Response.status(HttpStatus.FORBIDDEN.value()).entity(jsonUtils.createResponse("Forbidden verification").toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Verification has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, @AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response removeManagerRole(@PathParam("type") String type, @PathParam("id") String
                 id, @PathParam("email") String email) {
             List<Integer> coPersonIds = calls.getCoPersonIdsByEmail(email);
             if (coPersonIds.size() > 0) {
                 Integer couId = calls.getCouId(type, id);
                 if (couId != null) {
                     coPersonIds.forEach(coPersonId -> {
                         calls.removeAdminRole(coPersonId, couId);
                     });
                     authoritiesUpdater.update(email, old -> {
                         HashSet<SimpleGrantedAuthority> authorities = new HashSet<>((Collection<? extends SimpleGrantedAuthority>) old);
                         authorities.remove(new SimpleGrantedAuthority(authorizationService.manager(type, id)));
                         return authorities;
                     });
                     return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Role has been removed").toString()).type(MediaType.APPLICATION_JSON).build();
                 } else {
                     return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("User has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
             try {
                 JsonElement response = calls.removeManagerRole(type, id, email);
                 return Response.status(HttpStatus.OK.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, @AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response removeMemberRole(@PathParam("type") String type, @PathParam("id") String
                 id, @PathParam("email") String email) {
             List<Integer> coPersonIds = calls.getCoPersonIdsByEmail(email);
             if (coPersonIds.size() > 0) {
                 Integer couId = calls.getCouId(type, id, false);
                 if (couId != null) {
                     coPersonIds.forEach(coPersonId -> {
                         Integer role = calls.getRoleId(coPersonId, couId);
                         calls.removeAdminRole(coPersonId, couId);
                         calls.removeMemberRole(coPersonId, couId, role);
                     });
                     authoritiesUpdater.update(email, old -> {
                         HashSet<SimpleGrantedAuthority> authorities = new HashSet<>((Collection<? extends SimpleGrantedAuthority>) old);
                         authorities.remove(new SimpleGrantedAuthority(authorizationService.manager(type, id)));
                         authorities.remove(new SimpleGrantedAuthority(authorizationService.member(type, id)));
                         return authorities;
                     });
                     return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse("Role has been removed").toString()).type(MediaType.APPLICATION_JSON).build();
                 } else {
                     return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
+                }
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("User has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
             try {
                 JsonElement response = calls.removeMemberRole(type, id, email);
                 return Response.status(HttpStatus.OK.value()).entity(response.toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
-...
         @GET
         @Produces(MediaType.APPLICATION_JSON)
         public Response getMembersCount(@PathParam("type") String type, @PathParam("id") String id) {
             Integer couId = calls.getCouId(type, id, false);
             int count = 0;
             if (couId != null) {
                 count = calls.getUserIdByCouId(couId, false).size();
             try {
                 int response = calls.getAllMembersCount(type, id);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(response).toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
             return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(count).toString()).type(MediaType.APPLICATION_JSON).build();
+        }
         /**
          * Get the names of the members of a type(Community, etc.) with id(ee, egi, etc.)
          * Get infos of the members of a type(Community, etc.) with id(ee, egi, etc.)
          */
         @Path("/{type}/{id}/members{var:.*}")
         @GET
-...
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN," +
                 "@AuthorizationService.curator(#type), @AuthorizationService.manager(#type, #id))")
         public Response getMembers(@PathParam("type") String type, @PathParam("id") String id) {
             Integer couId = calls.getCouId(type, id, false);
             if (couId != null) {
                 JsonArray members = calls.getUserIdByCouId(couId, false);
                 JsonArray emails = calls.getUserEmailByCouId(couId, false);
                 JsonArray names = calls.getUserNamesByCouId(couId, false);
                 JsonArray managers = calls.getUserIdByCouId(couId, true);
                 members.getAsJsonArray().forEach(element -> {
                     element.getAsJsonObject().addProperty("isManager", managers.contains(element));
                 });
                 JsonUtils.mergeUserInfo(members, emails, names, gson);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(members).toString()).type(MediaType.APPLICATION_JSON).build();
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
             try {
                 JsonElement response = calls.getAllMembers(type, id);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(response).toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
-...
         @GET
         @Produces(MediaType.APPLICATION_JSON)
         public Response getManagers(@PathParam("type") String type, @PathParam("id") String id) {
             Integer couId = calls.getCouId(type, id);
             if (couId != null) {
                 JsonArray managers = calls.getUserIdByCouId(couId, true);
                 if(authorizationService.isManager(type, id) || authorizationService.isPortalAdmin() || authorizationService.isCurator(type)) {
                     JsonArray emails = calls.getUserEmailByCouId(couId, true);
                     JsonArray names = calls.getUserNamesByCouId(couId, true);
                     JsonUtils.mergeUserInfo(managers, emails, names, gson);
                 } else {
                     managers.forEach(user -> {
                         user.getAsJsonObject().remove("coPersonId");
                     });
+                }
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(managers).toString()).type(MediaType.APPLICATION_JSON).build();
             } else {
                 return Response.status(HttpStatus.NOT_FOUND.value()).entity(jsonUtils.createResponse("Role has not been found").toString()).type(MediaType.APPLICATION_JSON).build();
             try {
                 JsonElement response = calls.getAllManagers(type, id);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(response).toString()).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
+    }
         /**
          * Get infos of the curators of a type(Community, etc.)
          */
         @Path("/{type}/curators{var:.*}")
         @GET
         @Produces(MediaType.APPLICATION_JSON)
         @PreAuthorize("hasAnyAuthority(@AuthorizationService.PORTAL_ADMIN, @AuthorizationService.curator(#type))")
         public Response getCurators(@PathParam("type") String type) {
             try {
                 JsonElement response = calls.getAllCurators(type);
                 return Response.status(HttpStatus.OK.value()).entity(jsonUtils.createResponse(response.toString())).type(MediaType.APPLICATION_JSON).build();
             } catch (HttpClientErrorException e) {
                 String message = new JsonParser().parse(e.getResponseBodyAsString()).getAsJsonObject().get("message").getAsString();
                 return Response.status(e.getStatusCode().value()).entity(jsonUtils.createResponse(message).toString()).type(MediaType.APPLICATION_JSON).build();
+            }
+        }
+    }

Also available in: Unified diff

Project

General

Profile

D-Net

Revision 61649

Added by Konstantinos Triantafyllou over 2 years ago