Merge branch 'application-mgt-new' into 'application-mgt-new'

Add new servlet to get logged-in user's data

See merge request entgra/carbon-device-mgt!305

components/ui-request-interceptor/io.entgra.ui.request.interceptor/src/main/java/io/entgra/ui/request/interceptor/LoginHandler.java

@@ -191,7 +191,6 @@ public class LoginHandler extends HttpServlet {
                     authData.setScope(jTokenResultAsJsonObject.get("scope").getAsString());
                     session.setAttribute(HandlerConstants.SESSION_AUTH_DATA_KEY, authData);
                     return true;
-
                 }
             }
             return false;

components/ui-request-interceptor/io.entgra.ui.request.interceptor/src/main/java/io/entgra/ui/request/interceptor/UserHandler.java

@@ -0,0 +1,113 @@
+/*
+ * Copyright (c) 2019, Entgra (Pvt) Ltd. (http://www.entgra.io) All Rights Reserved.
+ *
+ * Entgra (Pvt) Ltd. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied. See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package io.entgra.ui.request.interceptor;
+
+import com.google.gson.JsonElement;
+import com.google.gson.JsonObject;
+import com.google.gson.JsonParser;
+import com.google.gson.JsonSyntaxException;
+import io.entgra.ui.request.interceptor.beans.AuthData;
+import io.entgra.ui.request.interceptor.util.HandlerConstants;
+import io.entgra.ui.request.interceptor.util.HandlerUtil;
+import org.apache.commons.lang.StringUtils;
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
+import org.apache.http.HttpHeaders;
+import org.apache.http.HttpStatus;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.entity.ContentType;
+import org.apache.http.entity.StringEntity;
+import org.wso2.carbon.device.application.mgt.common.ProxyResponse;
+
+import javax.servlet.annotation.MultipartConfig;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+import java.io.IOException;
+
+@MultipartConfig @WebServlet("/user") public class UserHandler extends HttpServlet {
+    private static final Log log = LogFactory.getLog(UserHandler.class);
+    private static final long serialVersionUID = 9050048549140517002L;
+
+    @Override protected void doPost(HttpServletRequest req, HttpServletResponse resp) {
+        try {
+            String platform = req.getParameter(HandlerConstants.PLATFORM);
+            String serverUrl =
+                    req.getScheme() + HandlerConstants.SCHEME_SEPARATOR + req.getServerName() + HandlerConstants.COLON
+                            + System.getProperty("iot.gateway.https.port");
+            if (StringUtils.isBlank(platform)) {
+                ProxyResponse proxyResponse = new ProxyResponse();
+                proxyResponse.setCode(HttpStatus.SC_BAD_REQUEST);
+                HandlerUtil.handleError(req, resp, serverUrl, platform, proxyResponse);
+                return;
+            }
+
+            HttpSession httpSession = req.getSession(false);
+            if (httpSession == null) {
+                ProxyResponse proxyResponse = new ProxyResponse();
+                proxyResponse.setCode(HttpStatus.SC_UNAUTHORIZED);
+                HandlerUtil.handleError(req, resp, serverUrl, platform, proxyResponse);
+                return;
+            }
+
+            AuthData authData = (AuthData) httpSession.getAttribute(HandlerConstants.SESSION_AUTH_DATA_KEY);
+            String accessToken = authData.getAccessToken();
+
+            HttpPost tokenEndpoint = new HttpPost(serverUrl + HandlerConstants.INTROSPECT_ENDPOINT);
+            tokenEndpoint.setHeader(HttpHeaders.CONTENT_TYPE, ContentType.APPLICATION_FORM_URLENCODED.toString());
+            StringEntity tokenEPPayload = new StringEntity("token=" + accessToken,
+                    ContentType.APPLICATION_FORM_URLENCODED);
+            tokenEndpoint.setEntity(tokenEPPayload);
+            ProxyResponse tokenStatus = HandlerUtil.execute(tokenEndpoint);
+
+            if (tokenStatus.getExecutorResponse().contains(HandlerConstants.EXECUTOR_EXCEPTION_PREFIX)) {
+                log.error("Error occurred while invoking the API to get token status.");
+                HandlerUtil.handleError(req, resp, serverUrl, platform, tokenStatus);
+                return;
+            }
+            String tokenData = tokenStatus.getData();
+            if (tokenData == null) {
+                log.error("Invalid token data is received.");
+                HandlerUtil.handleError(req, resp, serverUrl, platform, tokenStatus);
+                return;
+            }
+            JsonParser jsonParser = new JsonParser();
+            JsonElement jTokenResult = jsonParser.parse(tokenData);
+            if (jTokenResult.isJsonObject()) {
+                JsonObject jTokenResultAsJsonObject = jTokenResult.getAsJsonObject();
+                if (!jTokenResultAsJsonObject.get("active").getAsBoolean()) {
+                    ProxyResponse proxyResponse = new ProxyResponse();
+                    proxyResponse.setCode(HttpStatus.SC_UNAUTHORIZED);
+                    HandlerUtil.handleError(req, resp, serverUrl, platform, proxyResponse);
+                    return;
+                }
+                ProxyResponse proxyResponse = new ProxyResponse();
+                proxyResponse.setCode(HttpStatus.SC_OK);
+                proxyResponse.setData(jTokenResultAsJsonObject.get("username").getAsString());
+                HandlerUtil.handleSuccess(req, resp, serverUrl, platform, proxyResponse);
+            }
+        } catch (IOException e) {
+            log.error("Error occurred while sending the response into the socket. ", e);
+        } catch (JsonSyntaxException e) {
+            log.error("Error occurred while parsing the response. ", e);
+        }
+    }
+}

components/ui-request-interceptor/io.entgra.ui.request.interceptor/src/main/java/io/entgra/ui/request/interceptor/util/HandlerConstants.java

@@ -23,6 +23,7 @@ public class HandlerConstants {
     public static final String APP_REG_ENDPOINT = "/api-application-registration/register";
     public static final String UI_CONFIG_ENDPOINT = "/api/application-mgt/v1.0/config/ui-config";
     public static final String TOKEN_ENDPOINT = "/token";
+    public static final String INTROSPECT_ENDPOINT = "/oauth2/introspect";
     public static final String LOGIN_PAGE = "/login";
     public static final String BASIC = "Basic ";
     public static final String BEARER = "Bearer ";

components/ui-request-interceptor/io.entgra.ui.request.interceptor/src/main/java/io/entgra/ui/request/interceptor/util/HandlerUtil.java

@@ -20,7 +20,6 @@ package io.entgra.ui.request.interceptor.util;
 
 import com.google.gson.Gson;
 import com.google.gson.JsonObject;
-import com.google.gson.JsonParser;
 import org.apache.commons.lang.StringUtils;
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;