Source code

001/*
002 * (C) Copyright 2006-2018 Nuxeo (http://nuxeo.com/) and others.
003 *
004 * Licensed under the Apache License, Version 2.0 (the "License");
005 * you may not use this file except in compliance with the License.
006 * You may obtain a copy of the License at
007 *
008 *     http://www.apache.org/licenses/LICENSE-2.0
009 *
010 * Unless required by applicable law or agreed to in writing, software
011 * distributed under the License is distributed on an "AS IS" BASIS,
012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 * See the License for the specific language governing permissions and
014 * limitations under the License.
015 *
016 * Contributors:
017 *     Nelson Silva <nelson.silva@inevo.pt> - initial API and implementation
018 *     Nuxeo
019 */
020package org.nuxeo.ecm.platform.oauth2.openid.auth;
021
022import java.util.List;
023
024import org.apache.commons.logging.Log;
025import org.apache.commons.logging.LogFactory;
026import org.apache.commons.text.CharacterPredicates;
027import org.apache.commons.text.RandomStringGenerator;
028import org.nuxeo.ecm.core.api.DocumentModel;
029import org.nuxeo.ecm.core.api.NuxeoException;
030import org.nuxeo.ecm.platform.oauth2.openid.OpenIDConnectProvider;
031import org.nuxeo.ecm.platform.usermanager.UserManager;
032import org.nuxeo.runtime.api.Framework;
033
034public abstract class UserResolver {
035
036    private static final Log log = LogFactory.getLog(UserResolver.class);
037
038    private static final RandomStringGenerator GENERATOR = new RandomStringGenerator.Builder().filteredBy(
039            CharacterPredicates.DIGITS).build();
040
041    private OpenIDConnectProvider provider;
042
043    public UserResolver(OpenIDConnectProvider provider) {
044        this.provider = provider;
045    }
046
047    public OpenIDConnectProvider getProvider() {
048        return provider;
049    }
050
051    protected abstract String findNuxeoUser(OpenIDUserInfo userInfo);
052
053    protected DocumentModel createNuxeoUser(String nuxeoLogin) {
054        DocumentModel userDoc;
055
056        try {
057            UserManager userManager = Framework.getService(UserManager.class);
058
059            userDoc = userManager.getBareUserModel();
060            userDoc.setPropertyValue(userManager.getUserIdField(), nuxeoLogin);
061
062            userDoc = userManager.createUser(userDoc);
063
064        } catch (NuxeoException e) {
065            log.error("Error while creating user " + nuxeoLogin + "in UserManager", e);
066            return null;
067        }
068
069        return userDoc;
070    }
071
072    protected abstract DocumentModel updateUserInfo(DocumentModel user, OpenIDUserInfo userInfo);
073
074    public String findOrCreateNuxeoUser(OpenIDUserInfo userInfo) {
075        String user = findNuxeoUser(userInfo);
076        if (user == null) {
077            user = generateRandomUserId();
078            DocumentModel userDoc = createNuxeoUser(user);
079            updateUserInfo(userDoc, userInfo);
080        }
081        return user;
082    }
083
084    protected String generateRandomUserId() {
085        String userId = null;
086
087        try {
088            UserManager userManager = Framework.getService(UserManager.class);
089            List<String> userIds = userManager.getUserIds();
090
091            while (userId == null || userIds.contains(userId)) {
092                userId = "user_" + GENERATOR.generate(4);
093            }
094        } catch (NuxeoException e) {
095            log.error("Error while generating random user id", e);
096            return null;
097        }
098        return userId;
099    }
100}