保誠-保戶業務員媒合平台
究查 | 歷程 | 修補檔 | 提交 | 提交差異 | 忽略空白
wayne
2021-11-25 56b8aa40e7e73b92f983a2c6ee0f87adbe2b4731 
 pamapi/src/main/java/com/pollex/pam/web/rest/OtpResource.java


@@ -1,15 +1,17 @@


package com.pollex.pam.web.rest;




import com.pollex.pam.config.ApplicationProperties;


import com.pollex.pam.enums.OtpLoginTypeEnum;


import com.pollex.pam.security.jwt.JWTFilter;


import com.pollex.pam.security.jwt.TokenProvider;


import com.pollex.pam.security.token.OtpAuthenticationToken;


import com.pollex.pam.service.CustomerAuthService;


import com.pollex.pam.service.CustomerService;


import com.pollex.pam.service.OtpTmpService;


import com.pollex.pam.service.OtpWebService;


import com.pollex.pam.service.dto.CustomerRegisterDTO;


import com.pollex.pam.service.dto.OtpResponseDTO;


import com.pollex.pam.web.rest.vm.OtpAccount;


import com.pollex.pam.web.rest.vm.OtpEmailLoginVM;


import com.pollex.pam.web.rest.vm.OtpSMSLoginVM;


import com.pollex.pam.web.rest.vm.VerifyOtpVM;


import com.pollex.pam.web.rest.vm.*;


import org.slf4j.Logger;


import org.slf4j.LoggerFactory;


import org.springframework.beans.factory.annotation.Autowired;


@@ -22,14 +24,9 @@


import org.springframework.web.bind.annotation.*;




import javax.xml.rpc.ServiceException;


import java.nio.charset.Charset;


import java.nio.charset.StandardCharsets;


import java.rmi.RemoteException;


import java.util.Arrays;


import java.util.Random;


import java.util.UUID;




import static java.nio.charset.StandardCharsets.UTF_8;




@RestController


@RequestMapping("/api/otp")


@@ -49,52 +46,50 @@


    @Autowired


    TokenProvider tokenProvider;




    @PostMapping("/byPhone")


    public ResponseEntity<Object> sendOtpByPhone(@RequestBody OtpSMSLoginVM login) {


        try {


            if(applicationProperty.isMockLogin()) {


                return new ResponseEntity<>(getMockOtpResponse(), HttpStatus.OK);


            }


    @Autowired


    CustomerAuthService customerAuthService;




            OtpResponseDTO otpResponseDTO = otpWebService.sendByPhone(login.getPhone());


            return new ResponseEntity<>(otpResponseDTO, HttpStatus.OK);


        } catch (ServiceException | RemoteException e) {


            return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR).body("connecting otp web service error");


    @Autowired


    OtpTmpService otpTmpService;




    @Autowired


    CustomerService customerService;




    @PostMapping("/sendOtp")


    public ResponseEntity<Object> sendOtp(@RequestBody OtpLoginVM login) {


       OtpResponseDTO otpResponse;


        if(applicationProperty.isMockLogin()) {


            otpResponse = getMockSendOtpResponse();


        }else if(login.getLoginType() == OtpLoginTypeEnum.SMS) {


            otpResponse = otpWebService.sendByPhone(login.getAccount());


        }


    }




    @PostMapping("/byEmail")


    public ResponseEntity<Object> sendOtpByEmail(@RequestBody OtpEmailLoginVM login) {


        try {


            if(applicationProperty.isMockLogin()) {


                return new ResponseEntity<>(getMockOtpResponse(), HttpStatus.OK);


            }




            OtpResponseDTO otpResponseDTO = otpWebService.sendByEmail(login.getEmail());


            return new ResponseEntity<>(otpResponseDTO, HttpStatus.OK);


        } catch (ServiceException | RemoteException e) {


            return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR).body("connecting otp web service error");


        else if(login.getLoginType() == OtpLoginTypeEnum.EMAIL) {


            otpResponse = otpWebService.sendByEmail(login.getAccount());


        }else {


            return ResponseEntity.status(HttpStatus.BAD_REQUEST).body("can not support this login type, loginType = " + login.getLoginType().name());


        }


        otpTmpService.createOtpTmp(login.getAccount(), otpResponse.getIndexKey());


        return new ResponseEntity<>(otpResponse, HttpStatus.OK);


    }




    @PostMapping("/verify")


    public ResponseEntity<UserJWTController.JWTToken> verifyOtp(@RequestBody VerifyOtpVM verifyOtpParam) {


        OtpAccount otpAccount = new OtpAccount(verifyOtpParam.getAccount(), verifyOtpParam.getIndexKey());


        OtpAuthenticationToken authenticationToken = new OtpAuthenticationToken(


            otpAccount,


            verifyOtpParam.getOtpCode()


        );




        Authentication authentication = authenticationManagerBuilder.getObject().authenticate(authenticationToken);


        SecurityContextHolder.getContext().setAuthentication(authenticationToken);


        String jwt = tokenProvider.createToken(authentication, false);


        String jwt = customerAuthService.authorize(verifyOtpParam.getAccount(), verifyOtpParam.getIndexKey(), verifyOtpParam.getOtpCode());


        HttpHeaders httpHeaders = new HttpHeaders();


        httpHeaders.add(JWTFilter.AUTHORIZATION_HEADER, "Bearer" + jwt);


        return new ResponseEntity<>(new UserJWTController.JWTToken(jwt), httpHeaders, HttpStatus.OK);


    }




    private OtpResponseDTO getMockOtpResponse() {


    private OtpResponseDTO getMockSendOtpResponse() {


        String indexKey = UUID.randomUUID().toString().substring(0, 8);


        return new OtpResponseDTO(new String[]{indexKey, "0", "", ""});


        return new OtpResponseDTO(Arrays.asList(indexKey, "0", "", ""));


    }




    @PostMapping("/register")


    public ResponseEntity<UserJWTController.JWTToken> registerAccount(@RequestBody CustomerRegisterDTO registDTO) {


       String jwt = customerService.registerCustomer(registDTO);


       HttpHeaders httpHeaders = new HttpHeaders();


        httpHeaders.add(JWTFilter.AUTHORIZATION_HEADER, "Bearer" + jwt);


        return new ResponseEntity<>(new UserJWTController.JWTToken(jwt), httpHeaders, HttpStatus.OK);


    }


}