Home Explore Help
Sign In
prasoon
/
niosx
Watch 1
Star 0
Fork 0
Files Issues 3 Pull Requests 0 Wiki
Branch: master
Branches Tags
niosx
/
app
/
repository
/
SimpleUserRepository.scala

SimpleUserRepository.scala 6.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179 
  1. /*
    2. 

  2.  * Copyright (C) 2020  Prasoon Joshi
    3. 

  3.  *
    4. 

  4.  *     This program is free software: you can redistribute it and/or modify
    5. 

  5.  *     it under the terms of the GNU General Public License as published by
    6. 

  6.  *     the Free Software Foundation, either version 3 of the License, or
    7. 

  7.  *     (at your option) any later version.
    8. 

  8.  *
    9. 

  9.  *     This program is distributed in the hope that it will be useful,
    10. 

  10.  *     but WITHOUT ANY WARRANTY; without even the implied warranty of
    11. 

  11.  *     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    12. 

  12.  *     GNU General Public License for more details.
    13. 

  13.  *
    14. 

  14.  *     You should have received a copy of the GNU General Public License
    15. 

  15.  *     along with this program.  If not, see <https://www.gnu.org/licenses/>.
    16. 

  16.  */
    17. 

  17. 

  18. package repository
    19. 

  19. 

  20. import repository.NiosxGraph._
    21. 

  21. import models.{
    22. 

  22.   NiosxUser, AuthPayload
    23. 

  23. }
    24. 

  24. import utils.{FileUtils, SecurityUtils}
    25. 

  25. import graphql.SchemaInputObjects.UserInput
    26. 

  26. 

  27. import play.api.libs.ws.WSClient
    28. 

  28. import play.api.Configuration
    29. 

  29. import scala.util.Try
    30. 

  30. import scala.collection.mutable
    31. 

  31. 

  32. sealed trait UserRole
    33. 

  33. object UserRole {
    34. 

  34.   val PartnerPermissions = 
    35. 

  35.     "VIEW_USER" :: "EDIT_ENTITY" :: "VIEW_ENTITY" :: "EDIT_ANNO" :: "VIEW_ANNO" :: Nil
    36. 

  36.   val PatronPermissions = 
    37. 

  37.     "VIEW_USER" :: "EDIT_ANNO" :: "VIEW_ANNO" :: Nil
    38. 

  38.   val AdminPermissions = PartnerPermissions ++ PatronPermissions ++ 
    39. 

  39.   ("EDIT_USER" :: "VIEW_USER" :: "SUPER_USER" :: Nil)
    40. 

  40. 

  41.   def getUserPermissions(r: String): List[String] = getRole(r) match {
    42. 

  42.     case NiosxAdminRole => AdminPermissions
    43. 

  43.     case NiosxPartnerRole => PartnerPermissions
    44. 

  44.     case NiosxPatronRole => PatronPermissions
    45. 

  45.   }
    46. 

  46.   def getRole(r: String): UserRole = r match {
    47. 

  47.     case "admin" => NiosxAdminRole
    48. 

  48.     case "partner" => NiosxPartnerRole
    49. 

  49.     case "patron" => NiosxPatronRole
    50. 

  50.   }
    51. 

  51.   def roleToString(r: UserRole): String = r match {
    52. 

  52.     case NiosxAdminRole => "admin"
    53. 

  53.     case NiosxPartnerRole => "partner"
    54. 

  54.     case NiosxPatronRole => "patron"
    55. 

  55.   }
    56. 

  56. }
    57. 

  57. case object NiosxAdminRole extends UserRole
    58. 

  58. case object NiosxPartnerRole extends UserRole
    59. 

  59. case object NiosxPatronRole extends UserRole
    60. 

  60. 

  61. class SimpleUserRepository(ws: WSClient, 
    62. 

  62.   gs: GremlinServer,
    63. 

  63.   conf: Configuration) extends UserRepository {
    64. 

  64. 

  65. 

  66.     //TODO: This needs a better approach to be able to support large
    67. 

  67.     //number of concurrent users.
    68. 

  68.     var UserTokenMap: mutable.Map[String, String] = mutable.Map()
    69. 

  69. 

  70.     //TODO: Handle bulk upload better!
    71. 

  71.     val BULK_UPLOAD_USER: NiosxUser = 
    72. 

  72.       new NiosxUser(graphId     = "NA",
    73. 

  73.         username    = "bulk_upload_user",
    74. 

  74.         passHash    = SecurityUtils.hashPass(
    75. 

  75.           conf.get[String]("default.bulk.upload.key")),
    76. 

  76.         permissions = List("BULK_UPLOAD"),
    77. 

  77.         role = NiosxAdminRole)
    78. 

  78.   /**
    79. 

  79.    * A note on "super_duper_user":
    80. 

  80.    * In a "perfect" world, recommendation engines should be illegal.
    81. 

  81.    * People using the platform should be able to recommend stuff to 
    82. 

  82.    * other people, the platform's task is to create these human connections
    83. 

  83.    * possible, not to create a trap!
    84. 

  84.    * A people graph is a powerful tool. It can be used effectively to 
    85. 

  85.    * supress human connections or to mitigate falsehoods from spreading.
    86. 

  86.    * The design of the platform decides how people interact. The
    87. 

  87.    * "super_duper_user" is a step towards building a people graph which
    88. 

  88.    * enables people driven information sharing. Penalty for bad behaviour
    89. 

  89.    * would cascade down to all people/actors added to the system by the bad actor
    90. 

  90.    * and include the actor that introduced this bad actor into the system.
    91. 

  91.    */
    92. 

  92.   val SuperDuperUser: String = "superduperuser"
    93. 

  93.   
    94. 

  94.   //TODO: Move this to some initialize component/block.
    95. 

  95.     val suDuUsPass = conf.get[String]("default.admin.password")
    96. 

  96.     println(suDuUsPass)
    97. 

  97.     val suDuUser: Option[NiosxUser] = 
    98. 

  98.       gs
    99. 

  99.         .Save[NiosxUser]
    100. 

  100.         .save(
    101. 

  101.           NiosxUser(graphId = SuperDuperUser,
    102. 

  102.             username = SuperDuperUser,
    103. 

  103.             passHash = SecurityUtils.hashPass(suDuUsPass),
    104. 

  104.             role = NiosxAdminRole,
    105. 

  105.             permissions = UserRole.getUserPermissions("admin")),
    106. 

  106.           edge = Darkness) match {
    107. 

  107.             case f: gs.SaveFailure => None
    108. 

  108.             case s: gs.SaveSuccess => gs.VertToCC[NiosxUser].convert(s.v)
    109. 

  109.           }
    110. 

  110. 

  111. 

  112.     def addUser(u: UserInput): String = { 
    113. 

  113. 

  114.       val user: NiosxUser = NiosxUser(
    115. 

  115.         graphId = FileUtils.getNewGraphId,
    116. 

  116.         username = u.username,
    117. 

  117.         passHash = SecurityUtils.hashPass(u.password),
    118. 

  118.         role = UserRole.getRole(u.role),
    119. 

  119.         permissions = UserRole.getUserPermissions(u.role)) 
    120. 

  120.        
    121. 

  121.       gs
    122. 

  122.         .findUserByUsername(u.username)
    123. 

  123.         .fold(
    124. 

  124.           gs
    125. 

  125.             .Save[NiosxUser]
    126. 

  126.             .save(user, Darkness) match {//Some(SuperDuperUser))
    127. 

  127.               case f: gs.SaveFailure => "Could not create user"
    128. 

  128.               case s: gs.SaveSuccess => s"User ${u.username} created."
    129. 

  129.             })(_ => s"User ${u.username} already exists!")
    130. 

  130.         
    131. 

  131.     }
    132. 

  132.     
    133. 

  133.     def editUser(u: UserInput): Option[NiosxUser] = ???
    134. 

  134. //      val user: NiosxUser = NiosxUser(
    135. 

  135. //      gremlinServer.Save[NiosxUser].save(user, None)
    136. 

  136. 

  137.   /* 
    138. 

  138.    * Gives back a token wrapped inside an `AuthPayload`
    139. 

  139.    * that identifies a user session.
    140. 

  140.    *
    141. 

  141.    */
    142. 

  142.   def authenticate(username: String,
    143. 

  143.     password: String): Option[AuthPayload] = {
    144. 

  144.       val user: Option[NiosxUser] = username match {
    145. 

  145.         case "bulk_upload_user" => Some(BULK_UPLOAD_USER)
    146. 

  146.         case _                  => gs.findUserByUsername(username)
    147. 

  147.       }
    148. 

  148. 

  149.       user.flatMap({ u: NiosxUser => 
    150. 

  150.         SecurityUtils.checkPass(password, u.passHash) match {
    151. 

  151.           case false => None
    152. 

  152.           case true => {
    153. 

  153.             val token: String = SecurityUtils.genUserToken
    154. 

  154.             UserTokenMap += (token -> u.username)
    155. 

  155.             //println("Token saved in map: " + token + ":" + UserTokenMap.get(token))
    156. 

  156.             Some(AuthPayload(token, u))
    157. 

  157.           }
    158. 

  158.         }
    159. 

  159.       })
    160. 

  160.   }
    161. 

  161. 

  162.   //TODO: Redundant. Remove.
    163. 

  163.   def findUserByUsername(username: String): Option[NiosxUser] =
    164. 

  164.     gs.findUserByUsername(username)
    165. 

  165.       
    166. 

  166. 

  167.   /**
    168. 

  168.    * Gives a user object with permissions.
    169. 

  169.    */
    170. 

  170.   def authorise(token: String): Option[NiosxUser] = {
    171. 

  171.     val user: Option[String] = UserTokenMap.get(token)
    172. 

  172.     user match {
    173. 

  173.       case Some("bulk_upload_user") => Some(BULK_UPLOAD_USER)
    174. 

  174.       case Some(u) => gs.findUserByUsername(u)
    175. 

  175.       case None => None
    176. 

  176.     }
    177. 

  177.   }
    178. 

  178.  }
    179. 

  179.