BaseController.java

Go to the documentation of this file.

package org.openkilda.controller;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.boot.autoconfigure.web.ErrorController;
import org.springframework.security.authentication.AnonymousAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.servlet.ModelAndView;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;

import org.openkilda.constants.IConstants;
import org.openkilda.constants.Status;
import org.usermanagement.dao.entity.UserEntity;
import org.usermanagement.dao.repository.UserRepository;
import org.usermanagement.model.UserInfo;

public abstract class BaseController implements ErrorController {

    private static final Logger LOGGER = LoggerFactory.getLogger(BaseController.class);

    @Autowired
    private UserRepository userRepository;

    public ModelAndView validateAndRedirect(final HttpServletRequest request,
            final String viewName) {
        ModelAndView modelAndView;
        if (isUserLoggedIn()) {
            UserInfo userInfo = getLoggedInUser(request);
            LOGGER.info("[validateAndRedirect] Logged in user. view name: " + viewName + ", User name: " + userInfo.getName());

            modelAndView = new ModelAndView(viewName);
        } else {
            LOGGER.error("[validateAndRedirect] User in not logged in, redirected to login page. Requested view name: " + viewName);
            modelAndView = new ModelAndView(IConstants.View.LOGIN);
        }
        return modelAndView;
    }

    @RequestMapping("/403")
    public ModelAndView error(final Model model) {
        return new ModelAndView(IConstants.View.ERROR_403);
    }

    /*
     * (non-Javadoc)
     *
     * @see org.springframework.boot.autoconfigure.web.ErrorController#getErrorPath()
     */
    @Override
    @RequestMapping("/error")
    public String getErrorPath() {
        return IConstants.View.ERROR;
    }

    protected UserInfo getLoggedInUser(final HttpServletRequest request) {
        HttpSession session = request.getSession();
        UserInfo userInfo = null;
        try {
            userInfo = (UserInfo) session.getAttribute(IConstants.SESSION_OBJECT);
        } catch (IllegalStateException ex) {
            LOGGER.error(
                    "[getLoggedInUser] Exception while retrieving user information from session. Exception: "
                            + ex.getLocalizedMessage(),
                    ex);
        } finally {
            if (userInfo == null) {
                session = request.getSession(false);
                userInfo = new UserInfo();
                session.setAttribute(IConstants.SESSION_OBJECT, userInfo);
            }
        }
        return userInfo;
    }


    protected boolean isUserLoggedIn() {
        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
        if (null != authentication) {
           boolean isValid = (authentication.isAuthenticated()
                    && !(authentication instanceof AnonymousAuthenticationToken));
            if(isValid) {
                UserEntity userEntity = (UserEntity) authentication.getPrincipal();
                userEntity = userRepository.findByUserId(userEntity.getUserId());
                if(userEntity != null && userEntity.getStatusEntity().getStatusCode().equalsIgnoreCase(Status.ACTIVE.getCode())) {
                    isValid = true;
                } else {
                    isValid = false;
                }
            }
            return isValid;
        } else {

            return false;
        }
    }
}