Add Update pwd API & Mail template

Author: isopropylcyanide

src/main/java/com/accolite/pru/health/AuthApp/advice/AuthControllerAdvice.java

@@ -6,6 +6,7 @@
 import com.accolite.pru.health.AuthApp.exception.MailSendException;
 import com.accolite.pru.health.AuthApp.exception.ResourceAlreadyInUseException;
 import com.accolite.pru.health.AuthApp.exception.ResourceNotFoundException;
+import com.accolite.pru.health.AuthApp.exception.UpdatePasswordException;
 import com.accolite.pru.health.AuthApp.exception.UserLoginException;
 import com.accolite.pru.health.AuthApp.exception.UserRegistrationException;
 import com.accolite.pru.health.AuthApp.model.payload.ApiResponse;
@@ -176,5 +177,15 @@ public ApiResponse handleInvalidTokenException(InvalidTokenRequestException ex)
 		return apiResponse;
 	}
 
+	@ExceptionHandler(value = UpdatePasswordException.class)
+	@ResponseStatus(HttpStatus.EXPECTATION_FAILED)
+	@ResponseBody
+	public ApiResponse handleUpdatePasswordException(UpdatePasswordException ex) {
+		ApiResponse apiResponse = new ApiResponse();
+		apiResponse.setSuccess(false);
+		apiResponse.setData(ex.getMessage());
+		return apiResponse;
+	}
+
 
 }

src/main/java/com/accolite/pru/health/AuthApp/controller/UserController.java

@@ -1,21 +1,28 @@
 package com.accolite.pru.health.AuthApp.controller;
 
 import com.accolite.pru.health.AuthApp.annotation.CurrentUser;
-import com.accolite.pru.health.AuthApp.exception.ResourceNotFoundException;
+import com.accolite.pru.health.AuthApp.event.OnUserAccountChangeEvent;
+import com.accolite.pru.health.AuthApp.exception.UpdatePasswordException;
 import com.accolite.pru.health.AuthApp.model.CustomUserDetails;
 import com.accolite.pru.health.AuthApp.model.User;
 import com.accolite.pru.health.AuthApp.model.payload.ApiResponse;
+import com.accolite.pru.health.AuthApp.model.payload.UpdatePasswordRequest;
 import com.accolite.pru.health.AuthApp.service.AuthService;
 import com.accolite.pru.health.AuthApp.service.UserService;
 import org.apache.log4j.Logger;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationEventPublisher;
 import org.springframework.http.ResponseEntity;
 import org.springframework.security.access.prepost.PreAuthorize;
 import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RestController;
 
+import javax.validation.Valid;
+
 @RestController
 @RequestMapping("/api/user")
 public class UserController {
@@ -28,37 +35,63 @@ public class UserController {
 	@Autowired
 	private UserService userService;
 
+	@Autowired
+	private ApplicationEventPublisher applicationEventPublisher;
+
+	/**
+	 * Checks is a given email is in use or not.
+	 */
 	@GetMapping("/checkEmailInUse")
 	public ResponseEntity<?> checkEmailInUse(@RequestParam("email") String email) {
 		Boolean emailExists = authService.emailAlreadyExists(email);
 		return ResponseEntity.ok(new ApiResponse(emailExists.toString(), true));
 	}
 
+	/**
+	 * Checks is a given username is in use or not.
+	 */
 	@GetMapping("/checkUsernameInUse")
 	public ResponseEntity<?> checkUsernameInUse(@RequestParam("username") String username) {
 		Boolean usernameExists = authService.usernameAlreadyExists(username);
 		return ResponseEntity.ok(new ApiResponse(usernameExists.toString(), true));
 	}
 
+	/**
+	 * Gets the current user profile of the logged in user
+	 */
 	@GetMapping("/me")
+	@PreAuthorize("USER")
 	public ResponseEntity<?> getUserProfile(@CurrentUser CustomUserDetails currentUser) {
 		logger.info("Inside secured resource with user");
 		logger.info(currentUser.getEmail() + " has role: " + currentUser.getRoles());
 		return ResponseEntity.ok("Hello. This is about me");
 	}
 
+	/**
+	 * Returns all admins in the system. Requires Admin access
+	 */
 	@GetMapping("/admins")
 	@PreAuthorize("hasRole('ADMIN')")
 	public ResponseEntity<?> getAllAdmins() {
 		logger.info("Inside secured resource with admin");
 		return ResponseEntity.ok("Hello. This is about admins");
 	}
 
-	@GetMapping()
-	public ResponseEntity<?> getUser(@RequestParam("email") String email) {
-		User user = userService.findByEmail(email)
-				.orElseThrow(() -> new ResourceNotFoundException("User", "email", email));
-		return ResponseEntity.ok(user);
-	}
 
+	/**
+	 * Updates the password of the current logged in user
+	 */
+	@PostMapping("/password/update")
+	@PreAuthorize("hasRole('USER')")
+	public ResponseEntity<?> updateUserPassword(@CurrentUser CustomUserDetails customUserDetails,
+			@Valid @RequestBody UpdatePasswordRequest updatePasswordRequest) {
+		User updatedUser = authService.updatePassword(customUserDetails, updatePasswordRequest)
+				.orElseThrow(() -> new UpdatePasswordException("--Empty--", "No such user present."));
+
+		OnUserAccountChangeEvent onUserPasswordChangeEvent =
+				new OnUserAccountChangeEvent(updatedUser, "Update Password", "Changed successful");
+		applicationEventPublisher.publishEvent(onUserPasswordChangeEvent);
+
+		return ResponseEntity.ok(new ApiResponse("Password changed successfully", true));
+	}
 }

src/main/java/com/accolite/pru/health/AuthApp/event/OnUserAccountChangeEvent.java

@@ -0,0 +1,42 @@
+package com.accolite.pru.health.AuthApp.event;
+
+import com.accolite.pru.health.AuthApp.model.User;
+import org.springframework.context.ApplicationEvent;
+
+public class OnUserAccountChangeEvent extends ApplicationEvent {
+
+	private User user;
+	private String action;
+	private String actionStatus;
+
+	public OnUserAccountChangeEvent(User user, String action, String actionStatus) {
+		super(user);
+		this.user = user;
+		this.action = action;
+		this.actionStatus = actionStatus;
+	}
+
+	public User getUser() {
+		return user;
+	}
+
+	public void setUser(User user) {
+		this.user = user;
+	}
+
+	public String getAction() {
+		return action;
+	}
+
+	public void setAction(String action) {
+		this.action = action;
+	}
+
+	public String getActionStatus() {
+		return actionStatus;
+	}
+
+	public void setActionStatus(String actionStatus) {
+		this.actionStatus = actionStatus;
+	}
+}

src/main/java/com/accolite/pru/health/AuthApp/event/listener/OnUserAccountChangeListener.java

@@ -0,0 +1,51 @@
+package com.accolite.pru.health.AuthApp.event.listener;
+
+import com.accolite.pru.health.AuthApp.event.OnUserAccountChangeEvent;
+import com.accolite.pru.health.AuthApp.exception.MailSendException;
+import com.accolite.pru.health.AuthApp.model.User;
+import com.accolite.pru.health.AuthApp.service.MailService;
+import freemarker.template.TemplateException;
+import org.apache.log4j.Logger;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationListener;
+import org.springframework.scheduling.annotation.Async;
+import org.springframework.stereotype.Component;
+
+import javax.mail.MessagingException;
+import java.io.IOException;
+
+@Component
+public class OnUserAccountChangeListener implements ApplicationListener<OnUserAccountChangeEvent> {
+
+	@Autowired
+	private MailService mailService;
+
+	private static final Logger logger = Logger.getLogger(OnUserAccountChangeListener.class);
+
+	/**
+	 * As soon as a registration event is complete, invoke the email verification
+	 * asynchronously in an another thread pool
+	 */
+	@Override
+	@Async
+	public void onApplicationEvent(OnUserAccountChangeEvent onUserAccountChangeEvent) {
+		sendAccountChangeEmail(onUserAccountChangeEvent);
+	}
+
+	/**
+	 * Send email verification to the user and persist the token in the database.
+	 */
+	private void sendAccountChangeEmail(OnUserAccountChangeEvent event) {
+		User user = event.getUser();
+		String action = event.getAction();
+		String actionStatus = event.getActionStatus();
+		String recipientAddress = user.getEmail();
+
+		try {
+			mailService.sendAccountChangeEmail(action, actionStatus, recipientAddress);
+		} catch (IOException | TemplateException | MessagingException e) {
+			logger.error(e);
+			throw new MailSendException(recipientAddress, "Account Change Mail");
+		}
+	}
+}

src/main/java/com/accolite/pru/health/AuthApp/exception/UpdatePasswordException.java

@@ -0,0 +1,17 @@
+package com.accolite.pru.health.AuthApp.exception;
+
+import org.springframework.http.HttpStatus;
+import org.springframework.web.bind.annotation.ResponseStatus;
+
+@ResponseStatus(HttpStatus.EXPECTATION_FAILED)
+public class UpdatePasswordException extends RuntimeException {
+
+	private String user;
+	private String message;
+
+	public UpdatePasswordException(String user, String message) {
+		super(String.format("Couldn't update password for [%s]: [%s])", user, message));
+		this.user = user;
+		this.message = message;
+	}
+}

src/main/java/com/accolite/pru/health/AuthApp/model/payload/UpdatePasswordRequest.java

@@ -0,0 +1,36 @@
+package com.accolite.pru.health.AuthApp.model.payload;
+
+import javax.validation.constraints.NotBlank;
+
+public class UpdatePasswordRequest {
+
+	@NotBlank(message = "Old password must not be blank")
+	private String oldPassword;
+
+	@NotBlank(message = "New password must not be blank")
+	private String newPassword;
+
+	public UpdatePasswordRequest(@NotBlank String oldPassword, @NotBlank String newPassword) {
+		this.oldPassword = oldPassword;
+		this.newPassword = newPassword;
+	}
+
+	public UpdatePasswordRequest() {
+	}
+
+	public String getOldPassword() {
+		return oldPassword;
+	}
+
+	public void setOldPassword(String oldPassword) {
+		this.oldPassword = oldPassword;
+	}
+
+	public String getNewPassword() {
+		return newPassword;
+	}
+
+	public void setNewPassword(String newPassword) {
+		this.newPassword = newPassword;
+	}
+}

src/main/java/com/accolite/pru/health/AuthApp/service/AuthService.java

@@ -4,12 +4,15 @@
 import com.accolite.pru.health.AuthApp.exception.InvalidTokenRequestException;
 import com.accolite.pru.health.AuthApp.exception.ResourceAlreadyInUseException;
 import com.accolite.pru.health.AuthApp.exception.ResourceNotFoundException;
+import com.accolite.pru.health.AuthApp.exception.UpdatePasswordException;
+import com.accolite.pru.health.AuthApp.model.CustomUserDetails;
 import com.accolite.pru.health.AuthApp.model.Role;
 import com.accolite.pru.health.AuthApp.model.RoleName;
 import com.accolite.pru.health.AuthApp.model.TokenStatus;
 import com.accolite.pru.health.AuthApp.model.User;
 import com.accolite.pru.health.AuthApp.model.payload.LoginRequest;
 import com.accolite.pru.health.AuthApp.model.payload.RegistrationRequest;
+import com.accolite.pru.health.AuthApp.model.payload.UpdatePasswordRequest;
 import com.accolite.pru.health.AuthApp.model.token.EmailVerificationToken;
 import com.accolite.pru.health.AuthApp.util.Util;
 import org.apache.log4j.Logger;
@@ -164,4 +167,28 @@ public Optional<EmailVerificationToken> recreateRegistrationToken(String existin
 		}
 		return emailVerificationTokenOpt.map(emailVerificationTokenService::updateExistingTokenWithNameAndExpiry);
 	}
+
+	/**
+	 * Validates the password of the current logged in user with the given password
+	 */
+	public Boolean currentPasswordMatches(User currentUser, String password) {
+		return passwordEncoder.matches(password, currentUser.getPassword());
+	}
+
+	/**
+	 * Updates the password of the current logged in user
+	 */
+	public Optional<User> updatePassword(CustomUserDetails customUserDetails,
+			UpdatePasswordRequest updatePasswordRequest) {
+		User currentUser = userService.getLoggedInUser(customUserDetails.getEmail());
+
+		if (!currentPasswordMatches(currentUser, updatePasswordRequest.getOldPassword())) {
+			logger.info("Current password is invalid for [" + currentUser.getPassword() + "]");
+			throw new UpdatePasswordException(currentUser.getEmail(), "Invalid current password");
+		}
+		String newPassword = passwordEncoder.encode(updatePasswordRequest.getNewPassword());
+		currentUser.setPassword(newPassword);
+		userService.save(currentUser);
+		return Optional.ofNullable(currentUser);
+	}
 }

src/main/java/com/accolite/pru/health/AuthApp/service/MailService.java

@@ -47,6 +47,26 @@ public void sendEmailVerification(String emailVerificationUrl, String to) throws
 		send(mail);
 	}
 
+	/**
+	 * Send an email to the user indicating an account change event with the correct status
+	 */
+	public void sendAccountChangeEmail(String action, String actionStatus, String to) throws IOException,
+			TemplateException, MessagingException {
+		Mail mail = new Mail();
+		mail.setSubject("Account Status Change [Team CEP]");
+		mail.setTo(to);
+		mail.setFrom(mailFrom);
+		mail.getModel().put("userName", to);
+		mail.getModel().put("action", action);
+		mail.getModel().put("actionStatus", actionStatus);
+
+		templateConfiguration.setClassForTemplateLoading(getClass(), "/templates/");
+		Template t = templateConfiguration.getTemplate("account-activity-change.ftl");
+		String mailContent = FreeMarkerTemplateUtils.processTemplateIntoString(t, mail.getModel());
+		mail.setContent(mailContent);
+		send(mail);
+	}
+
 	/**
 	 * Sends a simple mail as a MIME Multipart message
 	 */

src/main/java/com/accolite/pru/health/AuthApp/service/UserService.java

@@ -2,6 +2,7 @@
 
 import com.accolite.pru.health.AuthApp.model.User;
 import com.accolite.pru.health.AuthApp.repository.UserRepository;
+import org.apache.log4j.Logger;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
 
@@ -13,6 +14,8 @@ public class UserService {
 	@Autowired
 	private UserRepository userRepository;
 
+	private static final Logger logger = Logger.getLogger(UserService.class);
+
 	/**
 	 * Finds a user in the database by username
 	 */
@@ -23,8 +26,16 @@ public Optional<User> findByUsername(String username) {
 	/**
 	 * Finds a user in the database by email
 	 */
-	public Optional<User> findByEmail(String username) {
-		return userRepository.findByEmail(username);
+	public Optional<User> findByEmail(String email) {
+		return userRepository.findByEmail(email);
+	}
+
+	/**
+	 * Finds current logged in user in the database by email
+	 * Note: This will always return a concrete valid instance.
+	 */
+	public User getLoggedInUser(String email) {
+		return findByEmail(email).get();
 	}
 
 	/**