org.socialsignin.springsocial.security.signup.AbstractSignUpController.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.socialsignin.springsocial.security.signup.AbstractSignUpController.java

Introduction

Here is the source code for org.socialsignin.springsocial.security.signup.AbstractSignUpController.java

Source

/*
 * Copyright 2012 the original author or authors.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.socialsignin.springsocial.security.signup;

import org.socialsignin.springsocial.security.api.SpringSocialProfile;
import org.socialsignin.springsocial.security.signin.SpringSocialSecurityAuthenticationFilter;
import org.socialsignin.springsocial.security.signin.SpringSocialSecuritySignInService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.security.web.savedrequest.HttpSessionRequestCache;
import org.springframework.security.web.savedrequest.RequestCache;
import org.springframework.security.web.savedrequest.SavedRequest;
import org.springframework.social.connect.Connection;
import org.springframework.social.connect.ConnectionFactoryLocator;
import org.springframework.social.connect.UsersConnectionRepository;
import org.springframework.social.connect.web.ProviderSignInUtils;
import org.springframework.social.connect.web.SessionStrategy;
import org.springframework.stereotype.Controller;
import org.springframework.validation.BindingResult;
import org.springframework.validation.FieldError;
import org.springframework.web.bind.annotation.ModelAttribute;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.context.request.ServletWebRequest;

/**
 * Abstract Controller for displaying/procesing a sign up form and handling chosen username, 
 * checking if username already exists as a minimum.
 * 
 * Default implementation is SpringSocialSecuritySignUpController, however alternative
 * subclasses can be registered instead to provide for custom sign up behaviour.
 * 
 * 
 * @author Michael Lavelle
 */
@Controller
@RequestMapping("/signup")
public abstract class AbstractSignUpController<P extends SpringSocialProfile, S extends SignUpService<P>, F extends AbstractSpringSocialProfileFactory<P>> {

    @Value("${socialsignin.signUpView}")
    private String signUpView;

    @Autowired
    private F socialProfileFactory;

    @Autowired(required = false)
    private SessionStrategy sessionStrategy;

    @Autowired
    private ConnectionFactoryLocator connectionFactoryLocator;

    @Autowired
    private UsersConnectionRepository usersConnectionRepository;

    private RequestCache requestCache = new HttpSessionRequestCache();

    @Value("${socialsignin.useSocialAuthenticationFilter:false}")
    private boolean useSocialAuthenticationFilter;

    @Value("${socialsignin.authenticationUrl:" + SpringSocialSecurityAuthenticationFilter.DEFAULT_AUTHENTICATION_URL
            + "}")
    private String authenticateUrl;

    public void setAuthenticateUrl(String authenticateUrl) {
        this.authenticateUrl = authenticateUrl;
    }

    @Autowired
    private SpringSocialSecuritySignInService springSocialSecuritySignInService;

    @Autowired
    private S signUpService;

    @RequestMapping(value = "", method = RequestMethod.GET)
    public String signUpForm(@ModelAttribute("signUpForm") P signUpForm) {
        return signUpView;
    }

    private ProviderSignInUtils getProviderSignInUtils() {
        return sessionStrategy == null ? new ProviderSignInUtils() : new ProviderSignInUtils(sessionStrategy);
    }

    @ModelAttribute("signUpForm")
    public P createForm(ServletWebRequest request) {
        Connection<?> connection = getProviderSignInUtils().getConnectionFromSession(request);
        if (connection != null) {
            P signUpForm = socialProfileFactory.create(connection);
            String thirdPartyUserName = signUpForm.getUserName();
            if (thirdPartyUserName != null && !signUpService.isUserIdAvailable(thirdPartyUserName)) {
                signUpForm.setUserName(null);
            }
            return signUpForm;
        } else {
            return socialProfileFactory.instantiate();
        }
    }

    protected void customFormInitialisation(P profile, Connection<?> connection) {
    }

    private boolean isUserNameValid(String userName, BindingResult errors) {
        if (userName == null || userName.trim().length() == 0) {
            errors.addError(new FieldError("signUpForm", "userName", "Please choose a username"));
            return false;
        } else {
            return true;
        }
    }

    protected void customValidation(P profile, BindingResult errors) {
    }

    private String signUpUser(ServletWebRequest request, P springSocialSecurityProfile, BindingResult errors) {
        String userName = springSocialSecurityProfile.getUserName();
        if (!isUserNameValid(userName, errors)) {
            return null;
        }
        customValidation(springSocialSecurityProfile, errors);

        if (errors.hasErrors())
            return null;

        if (!signUpService.isUserIdAvailable(userName)) {
            errors.addError(new FieldError("signUpForm", "userName",
                    "Sorry, the username '" + userName + "' is not available"));
            return null;
        }

        try {
            signUpService.signUpUserAndCompleteConnection(springSocialSecurityProfile, request);
            return springSocialSecurityProfile.getUserName();
        } catch (UsernameAlreadyExistsException e) {
            errors.addError(new FieldError("signUpForm", "userName",
                    "Sorry, the username '" + userName + "' is not available"));
            return null;
        }
    }

    @RequestMapping(value = "", method = RequestMethod.POST)
    public String signUpSubmit(ServletWebRequest request, @ModelAttribute("signUpForm") P signUpForm,
            BindingResult result) {
        Connection<?> connection = getProviderSignInUtils().getConnectionFromSession(request);

        String userId = signUpUser(request, signUpForm, result);
        if (result.hasErrors() || userId == null) {
            return signUpView;
        }
        springSocialSecuritySignInService.signIn(userId, connection, request);
        if (useSocialAuthenticationFilter) {
            // Attempt to determine the original requested url if access was originally denied
            SavedRequest savedRequest = requestCache.getRequest(request.getRequest(), request.getResponse());
            if (savedRequest != null) {
                String redirectUrl = savedRequest.getRedirectUrl();
                if (redirectUrl != null && savedRequest.getMethod().equalsIgnoreCase("get")) {
                    return "redirect:" + redirectUrl;
                }
            }

            return "redirect:/";
        } else {
            return "redirect:" + authenticateUrl;
        }

    }

    /**
     * Set a request cache here to change the default 
     * <code>HttpSessionRequestCache</code> used by this class
     * to determine if a saved request was set previously
     * by an access denied handler.
     * 
     * @param requestCache
     */
    public void setRequestCache(RequestCache requestCache) {
        this.requestCache = requestCache;
    }

}