Source code

001/*
002 *  Copyright 2022 Anyware Services
003 *
004 *  Licensed under the Apache License, Version 2.0 (the "License");
005 *  you may not use this file except in compliance with the License.
006 *  You may obtain a copy of the License at
007 *
008 *      http://www.apache.org/licenses/LICENSE-2.0
009 *
010 *  Unless required by applicable law or agreed to in writing, software
011 *  distributed under the License is distributed on an "AS IS" BASIS,
012 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 *  See the License for the specific language governing permissions and
014 *  limitations under the License.
015 */
016package org.ametys.web.usermanagement;
017
018import java.util.HashMap;
019import java.util.Map;
020
021import org.apache.avalon.framework.parameters.Parameters;
022import org.apache.avalon.framework.service.ServiceException;
023import org.apache.avalon.framework.service.ServiceManager;
024import org.apache.avalon.framework.service.Serviceable;
025import org.apache.cocoon.acting.AbstractAction;
026import org.apache.cocoon.environment.ObjectModelHelper;
027import org.apache.cocoon.environment.Redirector;
028import org.apache.cocoon.environment.Request;
029import org.apache.cocoon.environment.SourceResolver;
030
031import org.ametys.core.cocoon.JSonReader;
032import org.ametys.runtime.authentication.AccessDeniedException;
033
034/**
035 * Temporary sign the user in during the OIDC sign-up process
036 */
037public class TemporarySignupAction extends AbstractAction implements Serviceable
038{
039    private UserSignupManager _userSignupManager;
040
041    public void service(ServiceManager manager) throws ServiceException
042    {
043        _userSignupManager = (UserSignupManager) manager.lookup(UserSignupManager.ROLE);
044    }
045
046    public Map act(Redirector redirector, SourceResolver resolver, Map objectModel, String source, Parameters parameters) throws Exception
047    {
048        Request request = ObjectModelHelper.getRequest(objectModel);
049        Map<String, String> tokenMap = new HashMap<>();
050        
051        // If the request was made by the front office web application
052        if ("true".equals(request.getHeader("X-Ametys-Server")))
053        {
054            // Get the parameters
055            String siteName = request.getParameter("siteName");
056            String language = request.getParameter("language");
057            String email = request.getParameter("email");
058            String populationID = request.getParameter("populationID");
059            String userDirectoryID = request.getParameter("userDirectoryID");
060
061            // Get the token and temporary sign the user in if necessary
062            String token = _userSignupManager.getOrCreateToken(siteName, language, email, populationID, userDirectoryID);
063
064            // Return the token as a JSON attribute
065            tokenMap.put("token", token);
066            request.setAttribute(JSonReader.OBJECT_TO_READ, tokenMap);
067        }
068        else 
069        {
070            getLogger().error("Request canceled : not coming from the front office web application");
071            throw new AccessDeniedException("Request canceled : not coming from the front office web application");
072        }
073
074        return EMPTY_MAP;
075    }
076}