Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / d7b7d53ec9e17995193ccd8bf818175d2cceb938 / . / full / src / main / java / de / ids_mannheim / korap / oauth2 / dao / AccessTokenDao.java
blob: 67503e1c2ea9e11d21ccd0f04862a473cd93943f [file] [log] [blame]
package de.ids_mannheim.korap.oauth2.dao;
import java.time.ZonedDateTime;
import java.util.List;
import java.util.Set;
import javax.persistence.EntityManager;
import javax.persistence.NoResultException;
import javax.persistence.PersistenceContext;
import javax.persistence.Query;
import javax.persistence.criteria.CriteriaBuilder;
import javax.persistence.criteria.CriteriaQuery;
import javax.persistence.criteria.Predicate;
import javax.persistence.criteria.Root;
import org.springframework.stereotype.Repository;
import org.springframework.transaction.annotation.Transactional;
import de.ids_mannheim.korap.config.KustvaktCacheable;
import de.ids_mannheim.korap.exceptions.KustvaktException;
import de.ids_mannheim.korap.exceptions.StatusCodes;
import de.ids_mannheim.korap.oauth2.constant.OAuth2Error;
import de.ids_mannheim.korap.oauth2.entity.AccessScope;
import de.ids_mannheim.korap.oauth2.entity.AccessToken;
import de.ids_mannheim.korap.oauth2.entity.AccessToken_;
import de.ids_mannheim.korap.oauth2.entity.Authorization;
import de.ids_mannheim.korap.utils.ParameterChecker;
@Repository
@Transactional
public class AccessTokenDao extends KustvaktCacheable {
public AccessTokenDao () {
super("access_token", "key:access_token");
}
@PersistenceContext
private EntityManager entityManager;
@Deprecated
public void storeAccessToken (Authorization authorization, String token)
throws KustvaktException {
ParameterChecker.checkObjectValue(authorization, "Authorization");
ParameterChecker.checkStringValue(token, "accessToken");
AccessToken accessToken = new AccessToken();
// accessToken.setAuthorization(authorization);
accessToken.setUserId(authorization.getUserId());
accessToken.setToken(token);
accessToken.setScopes(authorization.getScopes());
accessToken.setUserAuthenticationTime(
authorization.getUserAuthenticationTime());
entityManager.persist(accessToken);
}
public void storeAccessToken (String token, String refreshToken,
Set<AccessScope> scopes, String userId, String clientId,
ZonedDateTime authenticationTime) throws KustvaktException {
ParameterChecker.checkStringValue(token, "access token");
ParameterChecker.checkObjectValue(refreshToken, "refresh token");
ParameterChecker.checkObjectValue(scopes, "scopes");
// ParameterChecker.checkStringValue(userId, "username");
ParameterChecker.checkStringValue(clientId, "client_id");
ParameterChecker.checkObjectValue(authenticationTime,
"authentication time");
AccessToken accessToken = new AccessToken();
accessToken.setToken(token);
accessToken.setRefreshToken(refreshToken);
accessToken.setScopes(scopes);
accessToken.setUserId(userId);
accessToken.setClientId(clientId);
accessToken.setUserAuthenticationTime(authenticationTime);
entityManager.persist(accessToken);
}
public AccessToken retrieveAccessToken (String accessToken)
throws KustvaktException {
ParameterChecker.checkStringValue(accessToken, "access_token");
AccessToken token = (AccessToken) this.getCacheValue(accessToken);
if (token != null) {
return token;
}
CriteriaBuilder builder = entityManager.getCriteriaBuilder();
CriteriaQuery<AccessToken> query =
builder.createQuery(AccessToken.class);
Root<AccessToken> root = query.from(AccessToken.class);
query.select(root);
query.where(builder.equal(root.get(AccessToken_.token), accessToken));
Query q = entityManager.createQuery(query);
try {
token = (AccessToken) q.getSingleResult();
this.storeInCache(accessToken, token);
return token;
}
catch (NoResultException e) {
throw new KustvaktException(StatusCodes.INVALID_ACCESS_TOKEN,
"Access token is not found", OAuth2Error.INVALID_TOKEN);
}
}
@SuppressWarnings("unchecked")
public List<AccessToken> retrieveAccessTokenByRefreshToken (
String refreshToken) throws KustvaktException {
ParameterChecker.checkStringValue(refreshToken, "refresh_token");
CriteriaBuilder builder = entityManager.getCriteriaBuilder();
CriteriaQuery<AccessToken> query =
builder.createQuery(AccessToken.class);
Root<AccessToken> root = query.from(AccessToken.class);
Predicate condition = builder.equal(root.get(AccessToken_.refreshToken),
refreshToken);
query.select(root);
query.where(condition);
query.orderBy(builder.desc(root.get(AccessToken_.createdDate)));
Query q = entityManager.createQuery(query);
return q.getResultList();
}
public AccessToken updateAccessToken (AccessToken accessToken)
throws KustvaktException {
ParameterChecker.checkObjectValue(accessToken, "access_token");
AccessToken cachedToken =
(AccessToken) this.getCacheValue(accessToken.getId());
if (cachedToken != null) {
this.removeCacheEntry(cachedToken);
}
accessToken = entityManager.merge(accessToken);
return accessToken;
}
public AccessToken retrieveAccessTokenByAnynomousToken (String token)
throws KustvaktException {
ParameterChecker.checkObjectValue(token, "token");
AccessToken accessToken = (AccessToken) this.getCacheValue(token);
if (accessToken != null) {
return accessToken;
}
CriteriaBuilder builder = entityManager.getCriteriaBuilder();
CriteriaQuery<AccessToken> query =
builder.createQuery(AccessToken.class);
Root<AccessToken> root = query.from(AccessToken.class);
Predicate condition = builder.or(
builder.equal(root.get(AccessToken_.token), token),
builder.equal(root.get(AccessToken_.refreshToken), token));
query.select(root);
query.where(condition);
Query q = entityManager.createQuery(query);
try {
accessToken = (AccessToken) q.getSingleResult();
return accessToken;
}
catch (NoResultException e) {
throw new KustvaktException(StatusCodes.INVALID_ACCESS_TOKEN,
"Access token is not found", OAuth2Error.INVALID_TOKEN);
}
}
}