-
Notifications
You must be signed in to change notification settings - Fork 12
/
SAMLUserDetailsServiceImpl.java
71 lines (57 loc) · 2.67 KB
/
SAMLUserDetailsServiceImpl.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
package ua.softserveinc.tc.service.impl;
import org.opensaml.samlext.saml2mdui.DisplayName;
import org.opensaml.xml.schema.impl.XSAnyImpl;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.security.saml.SAMLCredential;
import org.springframework.security.saml.userdetails.SAMLUserDetailsService;
import org.springframework.stereotype.Service;
import ua.softserveinc.tc.entity.Role;
import ua.softserveinc.tc.entity.User;
import ua.softserveinc.tc.service.UserService;
import ua.softserveinc.tc.util.ADFSParser;
import ua.softserveinc.tc.util.Log;
import javax.persistence.NonUniqueResultException;
import java.util.*;
@Service
public class SAMLUserDetailsServiceImpl implements SAMLUserDetailsService {
private static final Logger LOG =
LoggerFactory.getLogger(SAMLUserDetailsServiceImpl.class);
@Autowired
private UserService userService;
public Object loadUserBySAML(SAMLCredential credential)
throws UsernameNotFoundException {
Map<String, String> credentials =
ADFSParser.parseCredentials(credential.getAttributes());
String userEmail = credentials.get("emailaddress");
User user = userService.getUserByEmail(userEmail);
if (user == null) {
user = new User();
user.setEmail(userEmail);
user.setActive(true);
user.setRole(Role.USER);
user.setConfirmed(true);
user.setFirstName(credentials.getOrDefault(
"firstName", credentials.getOrDefault("name", "default")));
user.setLastName(credentials.getOrDefault("lastName", "default"));
user.setPassword("123");
user.setPhoneNumber("+380000000000");
userService.create(user);
user = userService.getUserByEmail(userEmail);
LOG.debug("New user: " + userEmail + " is created");
}
LOG.debug("User: " + userEmail + " is logged in");
boolean accountNonExpired = true;
boolean credentialsNonExpired = true;
Set<GrantedAuthority> roles = new HashSet<>();
roles.add(new SimpleGrantedAuthority(user.getRole().getAuthority()));
return new org.springframework.security.core
.userdetails.User(user.getEmail(), user.getPassword(),
user.isConfirmed(), accountNonExpired,
credentialsNonExpired, user.isActive(), roles);
}
}