pcalife/PAM.git - dev.pollex.com.tw

			@@ -5,7 +5,11 @@
			import com.pollex.pam.security.jwt.JWTFilter;
			import com.pollex.pam.security.jwt.TokenProvider;
			import com.pollex.pam.security.token.OtpAuthenticationToken;
			import com.pollex.pam.service.CustomerAuthService;
			import com.pollex.pam.service.CustomerService;
			import com.pollex.pam.service.OtpTmpService;
			import com.pollex.pam.service.OtpWebService;
			import com.pollex.pam.service.dto.CustomerRegisterDTO;
			import com.pollex.pam.service.dto.OtpResponseDTO;
			import com.pollex.pam.web.rest.vm.*;
			import org.slf4j.Logger;
			@@ -41,21 +45,32 @@
			@Autowired
			TokenProvider tokenProvider;

			@Autowired
			CustomerAuthService customerAuthService;

			@Autowired
			OtpTmpService otpTmpService;

			@Autowired
			CustomerService customerService;

			@PostMapping("/sendOtp")
			public ResponseEntity<Object> sendOtp(@RequestBody OtpLoginVM login) {
			OtpResponseDTO otpResponse;
			try {
			if(applicationProperty.isMockLogin()) {
			return new ResponseEntity<>(getMockSendOtpResponse(), HttpStatus.OK);
			}

			if(login.getLoginType() == OtpLoginTypeEnum.SMS) {
			return new ResponseEntity<>(otpWebService.sendByPhone(login.getAccount()), HttpStatus.OK);
			otpResponse = getMockSendOtpResponse();
			}else if(login.getLoginType() == OtpLoginTypeEnum.SMS) {
			otpResponse = otpWebService.sendByPhone(login.getAccount());
			}
			else if(login.getLoginType() == OtpLoginTypeEnum.EMAIL) {
			return new ResponseEntity<>(otpWebService.sendByEmail(login.getAccount()), HttpStatus.OK);
			}

			otpResponse = otpWebService.sendByEmail(login.getAccount());
			}else {
			return ResponseEntity.status(HttpStatus.BAD_REQUEST).body("can not support this login type, loginType = " + login.getLoginType().name());
			}
			otpTmpService.createOtpTmp(login.getAccount(), otpResponse.getIndexKey());
			return new ResponseEntity<>(otpResponse, HttpStatus.OK);

			} catch (ServiceException \| RemoteException e) {
			return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR).body("connecting otp web service error");
			}
			@@ -63,15 +78,7 @@

			@PostMapping("/verify")
			public ResponseEntity<UserJWTController.JWTToken> verifyOtp(@RequestBody VerifyOtpVM verifyOtpParam) {
			OtpAccount otpAccount = new OtpAccount(verifyOtpParam.getAccount(), verifyOtpParam.getIndexKey());
			OtpAuthenticationToken authenticationToken = new OtpAuthenticationToken(
			otpAccount,
			verifyOtpParam.getOtpCode()
			);

			Authentication authentication = authenticationManagerBuilder.getObject().authenticate(authenticationToken);
			SecurityContextHolder.getContext().setAuthentication(authenticationToken);
			String jwt = tokenProvider.createToken(authentication, false);
			String jwt = customerAuthService.authorize(verifyOtpParam.getAccount(), verifyOtpParam.getIndexKey(), verifyOtpParam.getOtpCode());
			HttpHeaders httpHeaders = new HttpHeaders();
			httpHeaders.add(JWTFilter.AUTHORIZATION_HEADER, "Bearer" + jwt);
			return new ResponseEntity<>(new UserJWTController.JWTToken(jwt), httpHeaders, HttpStatus.OK);
			@@ -81,4 +88,12 @@
			String indexKey = UUID.randomUUID().toString().substring(0, 8);
			return new OtpResponseDTO(new String[]{indexKey, "0", "", ""});
			}

			@PostMapping("/register")
			public ResponseEntity<UserJWTController.JWTToken> registerAccount(@RequestBody CustomerRegisterDTO registDTO) {
			String jwt = customerService.registerCustomer(registDTO);
			HttpHeaders httpHeaders = new HttpHeaders();
			httpHeaders.add(JWTFilter.AUTHORIZATION_HEADER, "Bearer" + jwt);
			return new ResponseEntity<>(new UserJWTController.JWTToken(jwt), httpHeaders, HttpStatus.OK);
			}
			}