This is an automated email from the git hooks/post-receive script. New commit to branch feature/6844-forgotenPassword in repository wao. See http://git.codelutin.com/wao.git commit 8d401db4c434c1142fefe31bd1e797536ded755e Author: Brendan Le Ny <bleny@codelutin.com> Date: Tue Mar 31 12:06:50 2015 +0200 Ajout d'une méthode save sur AbstractWaoTopiaDao --- .../src/main/java/fr/ifremer/wao/AbstractWaoTopiaDao.java | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/wao-persistence/src/main/java/fr/ifremer/wao/AbstractWaoTopiaDao.java b/wao-persistence/src/main/java/fr/ifremer/wao/AbstractWaoTopiaDao.java index 67103d7..c587fad 100644 --- a/wao-persistence/src/main/java/fr/ifremer/wao/AbstractWaoTopiaDao.java +++ b/wao-persistence/src/main/java/fr/ifremer/wao/AbstractWaoTopiaDao.java @@ -31,11 +31,15 @@ public abstract class AbstractWaoTopiaDao<E extends TopiaEntity> extends Abstrac public void saveNullable(E entity) { if (entity != null) { - if (entity.isPersisted()) { - update(entity); - } else { - create(entity); - } + save(entity); + } + } + + public void save(E entity) { + if (entity.isPersisted()) { + update(entity); + } else { + create(entity); } } -- To stop receiving notification emails like this one, please contact codelutin.com SCM administrator <admin+scm@codelutin.com>.

This is an automated email from the git hooks/post-receive script. New commit to branch feature/6844-forgotenPassword in repository wao. See http://git.codelutin.com/wao.git commit 5d86c42a1dad6309100db817b19aa8da49a723c0 Author: Brendan Le Ny <bleny@codelutin.com> Date: Tue Mar 31 12:08:41 2015 +0200 Dans le bundle i18n, on écrit en casse normale, si on veut des majuscules à l'affichage, c'est un question de style, à faire en CSS --- wao-web/src/main/resources/i18n/wao-web_en_GB.properties | 2 +- wao-web/src/main/resources/i18n/wao-web_fr_FR.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/wao-web/src/main/resources/i18n/wao-web_en_GB.properties b/wao-web/src/main/resources/i18n/wao-web_en_GB.properties index 303aee2..53cd06c 100644 --- a/wao-web/src/main/resources/i18n/wao-web_en_GB.properties +++ b/wao-web/src/main/resources/i18n/wao-web_en_GB.properties @@ -378,7 +378,7 @@ wao.ui.form.authentication.error.inactiveWaoUser=This wao user is not active. Pl wao.ui.form.authentication.error.noRoleAttributed=This wao user has no role affected. Please, contact an administrator wao.ui.form.authentication.error.userMustAcceptCgu=You must accept the end-user agreement wao.ui.form.authentication.error.wrongCredentials=Incorrect credentials -wao.ui.form.authentication.forgottenPassword.recoverButton=RESET PASSWORD +wao.ui.form.authentication.forgottenPassword.recoverButton=Reset password wao.ui.form.authentication.forgottenPassword.title=Reset your WAO's password wao.ui.form.authentication.title=WAO authentication wao.ui.form.boardingFrom=Boardings since diff --git a/wao-web/src/main/resources/i18n/wao-web_fr_FR.properties b/wao-web/src/main/resources/i18n/wao-web_fr_FR.properties index 68f026d..18434ae 100644 --- a/wao-web/src/main/resources/i18n/wao-web_fr_FR.properties +++ b/wao-web/src/main/resources/i18n/wao-web_fr_FR.properties @@ -379,7 +379,7 @@ wao.ui.form.authentication.error.inactiveWaoUser=Ce compte est inactif, veuillez wao.ui.form.authentication.error.noRoleAttributed=Aucun rôle n'est attribué à ce compte, veuillez contacter un responsable wao.ui.form.authentication.error.userMustAcceptCgu=Vous devez accepter les conditions générales d'utilisation wao.ui.form.authentication.error.wrongCredentials=Les informations d'authenfication ne sont pas correctes -wao.ui.form.authentication.forgottenPassword.recoverButton=RÉINITIALISER +wao.ui.form.authentication.forgottenPassword.recoverButton=Demander un nouveau mot de passe wao.ui.form.authentication.forgottenPassword.title=Récupération de votre mot de passe WAO wao.ui.form.authentication.title=Identification WAO wao.ui.form.boardingFrom=Sollicitations du navire depuis le -- To stop receiving notification emails like this one, please contact codelutin.com SCM administrator <admin+scm@codelutin.com>.

This is an automated email from the git hooks/post-receive script. New commit to branch feature/6844-forgotenPassword in repository wao. See http://git.codelutin.com/wao.git commit c23a182ef0a557bd07cf207e98021b57323ae354 Author: Brendan Le Ny <bleny@codelutin.com> Date: Tue Mar 31 12:12:18 2015 +0200 Pas besoin de surcharger input() juste pour appeller super, on définit les @Result en haut de l'action (comme dans le reste de l'appli), aucune raison d'avoir à catcher une NoRoleAttributedException à ce moment --- .../authentication/ForgottenPasswordAction.java | 20 ++++++-------------- 1 file changed, 6 insertions(+), 14 deletions(-) diff --git a/wao-web/src/main/java/fr/ifremer/wao/web/action/authentication/ForgottenPasswordAction.java b/wao-web/src/main/java/fr/ifremer/wao/web/action/authentication/ForgottenPasswordAction.java index e3cb2ec..ce49700 100644 --- a/wao-web/src/main/java/fr/ifremer/wao/web/action/authentication/ForgottenPasswordAction.java +++ b/wao-web/src/main/java/fr/ifremer/wao/web/action/authentication/ForgottenPasswordAction.java @@ -1,16 +1,18 @@ package fr.ifremer.wao.web.action.authentication; import fr.ifremer.wao.services.service.administration.InactiveWaoUserException; -import fr.ifremer.wao.services.service.administration.NoRoleAttributedException; import fr.ifremer.wao.services.service.administration.WaoUsersService; import fr.ifremer.wao.services.service.administration.WrongCredentialsException; import fr.ifremer.wao.web.WaoJspActionSupport; -import org.apache.struts2.convention.annotation.Action; import org.apache.struts2.convention.annotation.Result; +import org.apache.struts2.convention.annotation.Results; /** - * Created by davidcosse on 26/03/15. + * @since 5.1.2 */ +@Results({ + @Result(name="success", type="redirectAction", params = { "namespace", "/authentication", "actionName", "forgotten-password!input", "recovered", "%{recovered}", "login", "%{login}"}) +}) public class ForgottenPasswordAction extends WaoJspActionSupport { private static final long serialVersionUID = 1L; @@ -26,15 +28,8 @@ public class ForgottenPasswordAction extends WaoJspActionSupport { } @Override - @Action("forgotten-password-input") - public String input() throws Exception { - return super.input(); - } + public String execute() { - @Override - @Action(results = { - @Result(name="success", type="redirectAction", params = { "namespace", "/authentication", "actionName", "forgotten-password!input", "recovered", "%{recovered}", "login", "%{login}"})}) - public String execute() throws Exception { try { service.askForPasswordReminder(login); recovered = true; @@ -43,9 +38,6 @@ public class ForgottenPasswordAction extends WaoJspActionSupport { addFieldError("login", t("wao.ui.form.authentication.error.wrongCredentials")); return INPUT; } catch (InactiveWaoUserException inactiveWaoUserException) { - addFieldError("login", t("wao.ui.form.authentication.error.noRoleAttributed")); - return INPUT; - } catch (NoRoleAttributedException noRoleAttributedException) { addFieldError("login", t("wao.ui.form.authentication.error.inactiveWaoUser")); return INPUT; } -- To stop receiving notification emails like this one, please contact codelutin.com SCM administrator <admin+scm@codelutin.com>.

This is an automated email from the git hooks/post-receive script. New commit to branch feature/6844-forgotenPassword in repository wao. See http://git.codelutin.com/wao.git commit 229ead8e0b9204d01f0cba30584cb612d74649ae Author: Brendan Le Ny <bleny@codelutin.com> Date: Tue Mar 31 12:12:53 2015 +0200 Remaniement de askForPasswordReminder pour réutiliser du code au sein de WaoUsersService --- .../src/main/java/fr/ifremer/wao/WaoUtils.java | 5 + .../service/administration/WaoUsersService.java | 109 ++++++++++----------- 2 files changed, 56 insertions(+), 58 deletions(-) diff --git a/wao-persistence/src/main/java/fr/ifremer/wao/WaoUtils.java b/wao-persistence/src/main/java/fr/ifremer/wao/WaoUtils.java index 8f07aaf..0f4814e 100644 --- a/wao-persistence/src/main/java/fr/ifremer/wao/WaoUtils.java +++ b/wao-persistence/src/main/java/fr/ifremer/wao/WaoUtils.java @@ -29,6 +29,7 @@ import org.apache.commons.lang3.mutable.MutableInt; import org.apache.commons.lang3.time.DateUtils; import org.nuiton.i18n.I18n; import org.nuiton.util.DateUtil; +import org.nuiton.util.StringUtil; import java.text.DateFormat; import java.text.ParseException; @@ -291,4 +292,8 @@ public class WaoUtils { } return keyWithHighestValue; } + + public static String hashPassword(String password) { + return StringUtil.encodeMD5(password); + } } diff --git a/wao-services/src/main/java/fr/ifremer/wao/services/service/administration/WaoUsersService.java b/wao-services/src/main/java/fr/ifremer/wao/services/service/administration/WaoUsersService.java index 2e31b91..c9bea58 100644 --- a/wao-services/src/main/java/fr/ifremer/wao/services/service/administration/WaoUsersService.java +++ b/wao-services/src/main/java/fr/ifremer/wao/services/service/administration/WaoUsersService.java @@ -25,6 +25,7 @@ import com.google.common.base.Optional; import com.google.common.collect.ImmutableMap; import com.google.common.collect.Iterables; import com.google.common.collect.Maps; +import fr.ifremer.wao.WaoUtils; import fr.ifremer.wao.entity.Boat; import fr.ifremer.wao.entity.Boats; import fr.ifremer.wao.entity.ObsProgram; @@ -44,7 +45,6 @@ import org.apache.commons.logging.LogFactory; import org.nuiton.topia.persistence.TopiaEntities; import org.nuiton.topia.persistence.TopiaEntity; import org.nuiton.topia.persistence.TopiaQueryBuilderAddCriteriaOrRunQueryStep; -import org.nuiton.util.StringUtil; import java.util.HashSet; import java.util.List; @@ -183,17 +183,13 @@ public class WaoUsersService extends WaoServiceSupport { } if (newPassword != null) { - String hashedNewPassword = StringUtil.encodeMD5(newPassword); + + String hashedNewPassword = WaoUtils.hashPassword(newPassword); waoUser.setPassword(hashedNewPassword); } if (updateWaoUserCommand.getPasswordStrategy().isGeneratePassword()) { - UserCredentialsEmail userCredentialsEmail = - getEmailService().newUserCredentialsEmail(); - userCredentialsEmail.addTo(waoUser); - userCredentialsEmail.setWaoUser(waoUser); - userCredentialsEmail.setNewPassword(newPassword); - getEmailService().send(userCredentialsEmail); + sendNewPasswordToUser(waoUser, newPassword); } if (waoUser.isUserProfileNotEmpty()) { @@ -204,19 +200,26 @@ public class WaoUsersService extends WaoServiceSupport { } } - WaoUserTopiaDao dao = getWaoUserDao(); - if (waoUser.isPersisted()) { - dao.update(waoUser); - } else { - dao.create(waoUser); - } + getWaoUserDao().save(waoUser); commit(); } + protected void sendNewPasswordToUser(WaoUser waoUser, String newPassword) { + + UserCredentialsEmail userCredentialsEmail = + getEmailService().newUserCredentialsEmail(); + userCredentialsEmail.addTo(waoUser); + userCredentialsEmail.setWaoUser(waoUser); + userCredentialsEmail.setNewPassword(newPassword); + + getEmailService().send(userCredentialsEmail); + + } + protected String newRandomPassword() { - return RandomStringUtils.random(8, true, true); + return RandomStringUtils.random(8, 0, 0, true, true, null, serviceContext.getRandom()); } @@ -249,21 +252,9 @@ public class WaoUsersService extends WaoServiceSupport { public WaoUser authenticate(String login, String clearPassword) throws WrongCredentialsException, NoRoleAttributedException, InactiveWaoUserException { - WaoUserTopiaDao dao = getWaoUserDao(); - - Optional<WaoUser> optionalWaoUser = dao.tryFindByEmailAndFetchCollections(login); - - WaoUser waoUser; - - if ( ! optionalWaoUser.isPresent()) { - if (log.isInfoEnabled()) { - log.info("no such user " + login); - } - throw new WrongCredentialsException(); - } + WaoUser waoUser = findWaoUserByLogin(login, true); - waoUser = optionalWaoUser.get(); - String hashedPassword = StringUtil.encodeMD5(clearPassword); + String hashedPassword = WaoUtils.hashPassword(clearPassword); if ( ! waoUser.getPassword().equals(hashedPassword)) { if (log.isWarnEnabled()) { @@ -272,10 +263,6 @@ public class WaoUsersService extends WaoServiceSupport { throw new WrongCredentialsException(); } - if ( ! waoUser.isActive()) { - throw new InactiveWaoUserException(waoUser); - } - if (waoUser.isUserProfileEmpty()) { throw new NoRoleAttributedException(waoUser); } @@ -284,28 +271,16 @@ public class WaoUsersService extends WaoServiceSupport { } - public void acceptCgu(WaoUser waoUser) { - - waoUser.setCguAccepted(serviceContext.getNow()); - - commit(); - - } - - protected UpdateWaoUserCommand getPasswordRecoveryUpdateWaoUserCommand(WaoUser waoUser) { - UpdateWaoUserCommand updateWaoUserCommand = new UpdateWaoUserCommand(); - updateWaoUserCommand.setWaoUser(waoUser); - updateWaoUserCommand.setPasswordStrategy(UpdateWaoUserCommandPasswordStrategy.GENERATE_NEW_PASSWORD); - updateWaoUserCommand.setPasswordStrategies(UpdateWaoUserCommandPasswordStrategy.getPasswordStrategiesForWaoUserCreation()); - return updateWaoUserCommand; - } + protected WaoUser findWaoUserByLogin(String login, boolean fetchDataForSession) throws WrongCredentialsException, InactiveWaoUserException { - public void askForPasswordReminder(String login) throws WrongCredentialsException, InactiveWaoUserException, NoRoleAttributedException { WaoUserTopiaDao dao = getWaoUserDao(); - Optional<WaoUser> optionalWaoUser = dao.tryFindByEmailAndFetchCollections(login); - - WaoUser waoUser; + Optional<WaoUser> optionalWaoUser; + if (fetchDataForSession) { + optionalWaoUser = dao.tryFindByEmailAndFetchCollections(login); + } else { + optionalWaoUser = dao.forLoginEquals(login).tryFindUnique(); + } if ( ! optionalWaoUser.isPresent()) { if (log.isInfoEnabled()) { @@ -314,18 +289,36 @@ public class WaoUsersService extends WaoServiceSupport { throw new WrongCredentialsException(); } - waoUser = optionalWaoUser.get(); + WaoUser waoUser = optionalWaoUser.get(); if ( ! waoUser.isActive()) { throw new InactiveWaoUserException(waoUser); } - if (waoUser.isUserProfileEmpty()) { - throw new NoRoleAttributedException(waoUser); - } + return waoUser; + } - UpdateWaoUserCommand updateWaoUserCommand = getPasswordRecoveryUpdateWaoUserCommand(waoUser); + public void acceptCgu(WaoUser waoUser) { + + waoUser.setCguAccepted(serviceContext.getNow()); + + commit(); + + } + + public void askForPasswordReminder(String login) throws WrongCredentialsException, InactiveWaoUserException { + + WaoUser waoUser = findWaoUserByLogin(login, false); + + String newPassword = newRandomPassword(); + String hashedNewPassword = WaoUtils.hashPassword(newPassword); + waoUser.setPassword(hashedNewPassword); + + sendNewPasswordToUser(waoUser, newPassword); + + getWaoUserDao().save(waoUser); + commit(); - save(updateWaoUserCommand); } + } -- To stop receiving notification emails like this one, please contact codelutin.com SCM administrator <admin+scm@codelutin.com>.

This is an automated email from the git hooks/post-receive script. New commit to branch feature/6844-forgotenPassword in repository wao. See http://git.codelutin.com/wao.git commit 0afd3815f924c096f60ee24e84241b8be91b2023 Author: Brendan Le Ny <bleny@codelutin.com> Date: Tue Mar 31 12:21:30 2015 +0200 Suppression de code mort (?) --- wao-web/src/main/webapp/WEB-INF/content/authentication/login.jsp | 5 ----- 1 file changed, 5 deletions(-) diff --git a/wao-web/src/main/webapp/WEB-INF/content/authentication/login.jsp b/wao-web/src/main/webapp/WEB-INF/content/authentication/login.jsp index 3aeb73b..8a39c9e 100644 --- a/wao-web/src/main/webapp/WEB-INF/content/authentication/login.jsp +++ b/wao-web/src/main/webapp/WEB-INF/content/authentication/login.jsp @@ -32,11 +32,6 @@ $('input[name="login"]').focus(); }); </script> - <script type="text/javascript"> - function getLogin() { - return login = $('input[name="login"]').val(); - } - </script> </head> <body> -- To stop receiving notification emails like this one, please contact codelutin.com SCM administrator <admin+scm@codelutin.com>.