AllDev
/
Api
6
1
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity

Local Database link

Browse Source
pull/3/head
luevard 1 year ago committed by luevard
parent 221c2a4d83
commit 95351233b9
5 changed files with 150 additions and 59 deletions
Show Stats Download Patch File Download Diff File

13
Sources/src/main/kotlin/allin/dto/UserDTO.kt
Unescape View File

@ -1,15 +1,4 @@
package allin.dto package allin.dto
import allin.model.User
import kotlinx.serialization.Serializable import kotlinx.serialization.Serializable
@Serializable @Serializable
data class UserDTO(val username: String,val email: String, val nbCoins: Int) data class UserDTO(val username: String, val email: String, val nbCoins: Double, var token:String?)
@Serializable
data class UserDTOWithToken(val username: String,val email: String, val nbCoins: Int, val token:String?)
fun convertUserToUserDTO(user: User): UserDTO {
return UserDTO(user.username, user.email, user.nbCoins)
}
fun convertUserToUserDTOToken(user: User): UserDTOWithToken {
return UserDTOWithToken(user.username, user.email, user.nbCoins,user.token)
}

63
Sources/src/main/kotlin/allin/entities/UserEntity.kt
Unescape View File

@ -1,12 +1,71 @@
package allin.entities package allin.entities
import allin.dto.UserDTO
import allin.model.User
import allin.routing.database
import org.ktorm.dsl.*
import org.ktorm.entity.*
import org.ktorm.schema.Table import org.ktorm.schema.Table
import org.ktorm.schema.double import org.ktorm.schema.double
import org.ktorm.schema.int import org.ktorm.schema.int
import org.ktorm.schema.varchar import org.ktorm.schema.varchar
object UserEntity : Table<Nothing>("utilisateur") {
interface UserEntity : Entity<UserEntity> {
val username: String
var email: String
var password: String
var nbCoins: Double
}
object UsersEntity : Table<UserEntity>("utilisateur") {
val id = int("id").primaryKey() val id = int("id").primaryKey()
val username = varchar("username") val username = varchar("username")
val password = varchar("password") val password = varchar("password")
val nbCoins = double("nbCoins") val nbCoins = double("nbCoins")
} val email = varchar("email")
fun getUserToUserDTO(): MutableList<UserDTO> {
return database.from(UsersEntity).select().map {
row -> UserDTO(
row[username].toString(),
row[email].toString(),
row[nbCoins]?:0.0,
null
)
}.toMutableList()
}
fun getUserByUsernameAndPassword(login: String): Pair<UserDTO?, String?> {
return database.from(UsersEntity)
.select()
.where { (username eq login) /*and (password eq passwordParam)*/ }
.map { row ->
Pair(
UserDTO(
row[username].toString(),
row[email].toString(),
row[nbCoins] ?: 0.0,
null
),
row[password].toString()
)
}
.firstOrNull() ?: Pair(null, null)
}
fun addUserEntity(user : User){
database.insert(UsersEntity){
set(it.nbCoins,user.nbCoins)
set(it.username,user.username)
set(it.password,user.password)
set(it.email,user.email)
}
}
fun deleteUserByUsername(username: String): Boolean {
val deletedCount = database.delete(UsersEntity) {
it.username eq username
}
return deletedCount > 0
}
}

97
Sources/src/main/kotlin/allin/routing/UserRouter.kt
Unescape View File

@ -1,81 +1,98 @@
package allin.routing package allin.routing
import allin.dto.* import allin.dto.convertUserToUserDTO
import allin.dto.convertUserToUserDTOToken
import allin.ext.hasToken
import allin.ext.verifyUserFromToken
import allin.model.ApiMessage
import allin.model.CheckUser import allin.model.CheckUser
import allin.model.User import allin.model.User
import allin.model.UserRequest
import allin.utils.AppConfig import allin.utils.AppConfig
import io.ktor.http.* import io.ktor.http.*
import io.ktor.server.application.* import io.ktor.server.application.*
import io.ktor.server.auth.* import io.ktor.server.auth.*
import io.ktor.server.auth.jwt.*
import io.ktor.server.request.* import io.ktor.server.request.*
import io.ktor.server.response.* import io.ktor.server.response.*
import io.ktor.server.routing.* import io.ktor.server.routing.*
import java.util.*
import org.ktorm.database.Database
val users = mutableListOf<User>() val users = mutableListOf<User>()
val RegexCheckerUser = AppConfig.regexChecker
val CryptManagerUser = AppConfig.cryptManager
val tokenManagerUser = AppConfig.tokenManager
const val DEFAULT_COINS = 500
val RegexCheckerUser= AppConfig.regexChecker val RegexCheckerUser= AppConfig.regexChecker
val CryptManagerUser= AppConfig.cryptManager val CryptManagerUser= AppConfig.cryptManager
val tokenManagerUser=AppConfig.tokenManager val tokenManagerUser=AppConfig.tokenManager
val database = Database.connect("jdbc:postgresql://localhost:5432/Allin", user = "postgres", password = "lulu")
fun Application.UserRouter() { fun Application.UserRouter() {
routing { routing {
route("/users/register"){ route("/users/register") {
post { post {
val TempUser = call.receive<User>() val tempUser = call.receive<UserRequest>()
if (RegexCheckerUser.isEmailInvalid(TempUser.email)){ if (RegexCheckerUser.isEmailInvalid(tempUser.email)) {
call.respond(HttpStatusCode.Forbidden,"Input a valid mail !") call.respond(HttpStatusCode.Forbidden, ApiMessage.InvalidMail)
} }
val user = users.find { it.username == TempUser.username || it.email == TempUser.email } users.find { it.username == tempUser.username || it.email == tempUser.email }?.let { user ->
if(user == null) { call.respond(HttpStatusCode.Conflict, ApiMessage.UserAlreadyExist)
CryptManagerUser.passwordCrypt(TempUser) } ?: run {
TempUser.token=tokenManagerUser.generateOrReplaceJWTToken(TempUser) val user = User(
users.add(TempUser) id = UUID.randomUUID().toString(),
call.respond(HttpStatusCode.Created, TempUser) username = tempUser.username,
email = tempUser.email,
password = tempUser.password,
nbCoins = DEFAULT_COINS,
token = null
)
CryptManagerUser.passwordCrypt(user)
user.token = tokenManagerUser.generateOrReplaceJWTToken(user)
users.add(user)
call.respond(HttpStatusCode.Created, user)
} }
call.respond(HttpStatusCode.Conflict,"Mail or/and username already exist")
} }
} }
route("/users/login") { route("/users/login") {
post { post {
val checkUser = call.receive<CheckUser>() val checkUser = call.receive<CheckUser>()
val user = users.find { it.username == checkUser.login || it.email == checkUser.login } users.find { it.username == checkUser.login || it.email == checkUser.login }?.let { user ->
if (user != null && CryptManagerUser.passwordDecrypt(user,checkUser.password)) { if (CryptManagerUser.passwordDecrypt(user, checkUser.password)) {
user.token=tokenManagerUser.generateOrReplaceJWTToken(user) user.token = tokenManagerUser.generateOrReplaceJWTToken(user)
call.respond(HttpStatusCode.OK, convertUserToUserDTOToken(user)) call.respond(HttpStatusCode.OK, convertUserToUserDTOToken(user))
} else { } else {
call.respond(HttpStatusCode.NotFound,"Login and/or password incorrect.") call.respond(HttpStatusCode.NotFound, ApiMessage.IncorrectLoginPassword)
} }
} ?: call.respond(HttpStatusCode.NotFound, ApiMessage.IncorrectLoginPassword)
} }
} }
route("/users/delete") { authenticate {
post { post("/users/delete") {
val checkUser = call.receive<CheckUser>() hasToken { principal ->
val user = users.find { it.username == checkUser.login || it.email == checkUser.login } verifyUserFromToken(principal) { user ->
if (user != null && user.password == checkUser.password) { val checkUser = call.receive<CheckUser>()
users.remove(user) if (user.username == checkUser.login && user.password == checkUser.password) {
call.respond(HttpStatusCode.Accepted,convertUserToUserDTO(user)) users.remove(user)
} else { call.respond(HttpStatusCode.Accepted, convertUserToUserDTO(user))
call.respond(HttpStatusCode.NotFound,"Login and/or password incorrect.") } else {
call.respond(HttpStatusCode.NotFound, ApiMessage.IncorrectLoginPassword)
}
}
} }
} }
}
authenticate {
get("/users/token") { get("/users/token") {
val principal = call.principal<JWTPrincipal>() hasToken { principal ->
val username = principal!!.payload.getClaim("username").asString() verifyUserFromToken(principal) { user ->
val user = users.find { it.username == username } call.respond(HttpStatusCode.OK, convertUserToUserDTO(user))
if (user != null) { }
call.respond(HttpStatusCode.OK,convertUserToUserDTO(user))
} else {
call.respond(HttpStatusCode.NotFound, "User not found with the valid token !")
} }
} }
} }
} }
} }

16
Sources/src/main/kotlin/allin/utils/CryptManager.kt
Unescape View File

@ -4,12 +4,18 @@ import allin.model.User
import org.mindrot.jbcrypt.BCrypt import org.mindrot.jbcrypt.BCrypt
class CryptManager { class CryptManager {
val salt=BCrypt.gensalt() //val salt=BCrypt.gensalt()
fun passwordCrypt(password : String): String {
return BCrypt.hashpw(password,"\$2a\$10\$42wsdBeoLKaF6SM9oADONe")
}
fun passwordCrypt(user: User){ fun passwordCrypt(user: User){
user.password=BCrypt.hashpw(user.password,salt) user.password=BCrypt.hashpw(user.password,"\$2a\$10\$42wsdBeoLKaF6SM9oADONe")
} }
fun passwordDecrypt(user: User, password: String): Boolean{ fun passwordDecrypt(password: String, passwordClear: String): Boolean{
return BCrypt.hashpw(password,salt)==user.password return BCrypt.hashpw(passwordClear,"\$2a\$10\$42wsdBeoLKaF6SM9oADONe")==password
}
fun CheckPassword(hashed: String, clear: String): Boolean{
return BCrypt.checkpw(hashed,clear)
} }
} }

20
Sources/src/main/kotlin/allin/utils/TokenManager.kt
Unescape View File

@ -41,6 +41,26 @@ class TokenManager private constructor(val config: HoconApplicationConfig) {
} }
} }
fun generateOrReplaceJWTToken(user: UserDTO): String {
val userToken = getUserToken(user)
if (userToken != null && !isTokenExpired(userToken)) {
return userToken
} else {
return generateJWTToken(user)
}
}
fun generateJWTToken(user : UserDTO): String {
val expirationDate = System.currentTimeMillis() + 604800000 // une semaine en miliseconde
val token = JWT.create()
.withAudience(audience)
.withIssuer(issuer)
.withClaim("username", user.username)
.withExpiresAt(Date(expirationDate))
.sign(Algorithm.HMAC256(secret))
return token
}
fun isTokenExpired(token: String): Boolean { fun isTokenExpired(token: String): Boolean {
val expirationTime = JWT.decode(token).expiresAt.time val expirationTime = JWT.decode(token).expiresAt.time
return System.currentTimeMillis() > expirationTime return System.currentTimeMillis() > expirationTime

Write Preview
Loading…
Cancel
Save