package com.armedia.acm.service.outlook.dao.impl;
/*-
* #%L
* ACM Service: MS Outlook integration
* %%
* Copyright (C) 2014 - 2018 ArkCase LLC
* %%
* This file is part of the ArkCase software.
*
* If the software was purchased under a paid ArkCase license, the terms of
* the paid license agreement will prevail. Otherwise, the software is
* provided under the following open source license terms:
*
* ArkCase is free software: you can redistribute it and/or modify
* it under the terms of the GNU Lesser General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* ArkCase is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with ArkCase. If not, see .
* #L%
*/
import com.armedia.acm.crypto.exceptions.AcmEncryptionException;
import com.armedia.acm.crypto.AcmCryptoUtils;
import com.armedia.acm.crypto.properties.AcmEncryptablePropertyEncryptionProperties;
import com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao;
import com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDaoException;
import com.armedia.acm.service.outlook.model.AcmOutlookFolderCreator;
import com.armedia.acm.service.outlook.model.AcmOutlookObjectReference;
import org.apache.commons.codec.binary.Base64;
import org.apache.logging.log4j.Logger;
import org.apache.logging.log4j.LogManager;
import org.springframework.transaction.annotation.Transactional;
import javax.persistence.EntityManager;
import javax.persistence.NoResultException;
import javax.persistence.NonUniqueResultException;
import javax.persistence.PersistenceContext;
import javax.persistence.PersistenceException;
import javax.persistence.TypedQuery;
import java.nio.charset.Charset;
import java.util.List;
import java.util.Set;
/**
* @author Lazo Lazarev a.k.a. Lazarius Borg @ zerogravity Aug 8, 2017
*
*/
public class JPAAcmOutlookFolderCreatorDao implements AcmOutlookFolderCreatorDao
{
private static final Charset UTF8_CHARSET = Charset.forName("UTF-8");
private Logger log = LogManager.getLogger(getClass());
@PersistenceContext
private EntityManager em;
private AcmCryptoUtils cryptoUtils;
private AcmEncryptablePropertyEncryptionProperties encryptionProperties;
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#getOutlookObjectReferenct(java.lang.Long,
* java.lang.String)
*/
@Override
public AcmOutlookObjectReference getOutlookObjectReference(Long objectId, String objectType) throws AcmOutlookFolderCreatorDaoException
{
log.debug("Retrieving outlook object reference for object with id [{}] of [{}] type.", objectId, objectType);
TypedQuery query = em.createQuery(
"SELECT oor FROM AcmOutlookObjectReference oor WHERE oor.objectId = :objectId AND oor.objectType = :objectType",
AcmOutlookObjectReference.class);
query.setParameter("objectId", objectId);
query.setParameter("objectType", objectType);
try
{
return query.getSingleResult();
}
catch (PersistenceException e)
{
log.warn("Error while retrieving 'AcmOutlookObjectReference' instance for objectId [{}] and objectType [{}].", objectId,
objectType, e);
throw new AcmOutlookFolderCreatorDaoException(
String.format("Error while retrieving 'AcmOutlookObjectReference' instance for objectId [%s] and objectType [%s].",
objectId, objectType),
e);
}
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#deleteObjectReference(java.lang.Long,
* java.lang.String)
*/
@Override
public void deleteObjectReference(Long objectId, String objectType)
{
try
{
AcmOutlookObjectReference reference = getOutlookObjectReference(objectId, objectType);
em.remove(reference);
}
catch (AcmOutlookFolderCreatorDaoException e)
{
log.warn(String.format("Error while deleting 'AcmOutlookObjectReference' instance for objectId [{}] and objectType [{}].",
objectId, objectType));
}
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#getFolderCreatorForObject(java.lang.String,
* java.lang.String)
*/
@Override
@Transactional
public AcmOutlookFolderCreator getFolderCreator(String systemEmailAddress, String systemPassword)
throws AcmOutlookFolderCreatorDaoException
{
log.debug("Retrieving outlook folder creator for system email address [{}].", systemEmailAddress);
try
{
TypedQuery query = em.createQuery(
"SELECT ofc FROM AcmOutlookFolderCreator ofc WHERE ofc.systemEmailAddress = :systemEmailAddress",
AcmOutlookFolderCreator.class);
query.setParameter("systemEmailAddress", systemEmailAddress);
List resultList = query.getResultList();
if (!resultList.isEmpty())
{
log.debug("Outlook folder creator for system email address [{}] retrieved.", systemEmailAddress);
AcmOutlookFolderCreator outlookFolderCreator = resultList.get(0);
em.detach(outlookFolderCreator);
outlookFolderCreator.setSystemPassword(decryptValue(outlookFolderCreator.getSystemPassword()));
return outlookFolderCreator;
}
else
{
log.debug("Retrieving outlook folder creator for system email address [{}] does not exist, creating one.",
systemEmailAddress);
AcmOutlookFolderCreator folderCreator = new AcmOutlookFolderCreator(systemEmailAddress, encryptValue(systemPassword));
AcmOutlookFolderCreator outlookFolderCreator = em.merge(folderCreator);
// the instance must be detached otherwise setting the system password will overwrite the encrypted
// password value.
em.detach(outlookFolderCreator);
outlookFolderCreator.setSystemPassword(systemPassword);
return outlookFolderCreator;
}
}
catch (AcmEncryptionException | PersistenceException e)
{
log.warn("Error while retrieving 'AcmOutlookFolderCreator' instance for user with [{}] system email address.",
systemEmailAddress, e);
throw new AcmOutlookFolderCreatorDaoException(
String.format("Error while retrieving 'AcmOutlookFolderCreator' instance for user with [%s] system email address.",
systemEmailAddress),
e);
}
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#getFolderCreatorForObject(java.lang.Long)
*/
@Override
@Transactional
public AcmOutlookFolderCreator getFolderCreator(Long creatorId) throws AcmOutlookFolderCreatorDaoException
{
if (creatorId == null)
{
throw new AcmOutlookFolderCreatorDaoException("Creator ID cannot be null.");
}
TypedQuery query = em.createQuery("SELECT ofc FROM AcmOutlookFolderCreator ofc WHERE ofc.id = :creatorId",
AcmOutlookFolderCreator.class);
query.setParameter("creatorId", creatorId);
try
{
return query.getSingleResult();
}
catch (NoResultException | NonUniqueResultException e)
{
throw new AcmOutlookFolderCreatorDaoException(e);
}
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#getFolderCreatorForObject(java.lang.Long,
* java.lang.String)
*/
@Override
public AcmOutlookFolderCreator getFolderCreatorForObject(Long objectId, String objectType) throws AcmOutlookFolderCreatorDaoException
{
log.debug("Retrieving outlook folder creator for object with id [{}] of [{}] type.", objectId, objectType);
TypedQuery query = em.createQuery(
"SELECT ofc FROM AcmOutlookFolderCreator ofc JOIN ofc.outlookObjectReferences oor WHERE oor.objectId = :objectId AND oor.objectType = :objectType",
AcmOutlookFolderCreator.class);
query.setParameter("objectId", objectId);
query.setParameter("objectType", objectType);
try
{
AcmOutlookFolderCreator outlookFolderCreator = query.getSingleResult();
em.detach(outlookFolderCreator);
outlookFolderCreator.setSystemPassword(decryptValue(outlookFolderCreator.getSystemPassword()));
return outlookFolderCreator;
}
catch (PersistenceException | AcmEncryptionException e)
{
log.warn(
"Error while retrieving 'AcmOutlookFolderCreator' instance associated with the AcmOutlookObjectReference instance with objectId [{}] and objectType [{}].",
objectId, objectType, e);
throw new AcmOutlookFolderCreatorDaoException(String.format(
"Error while retrieving 'AcmOutlookFolderCreator' instance associated with the AcmOutlookObjectReference instance with objectId [%s] and objectType [%s].",
objectId, objectType), e);
}
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#recordFolderCreator(com.armedia.acm.service.
* outlook.model.AcmOutlookFolderCreator, java.lang.Long, java.lang.String)
*/
@Override
@Transactional
public void recordFolderCreator(AcmOutlookFolderCreator creator, Long objectId, String objectType)
throws AcmOutlookFolderCreatorDaoException
{
log.debug("Storing outlook folder creator for object with id [{}] of [{}] type.", objectId, objectType);
AcmOutlookObjectReference objectReference = new AcmOutlookObjectReference();
objectReference.setObjectId(objectId);
objectReference.setObjectType(objectType);
try
{
creator.setSystemPassword(encryptValue(creator.getSystemPassword()));
}
catch (AcmEncryptionException e)
{
log.warn("Error while encrypting password for 'AcmOutlookFolderCreator' instance for user with [{}] system email address.",
creator.getSystemEmailAddress(), e);
throw new AcmOutlookFolderCreatorDaoException(String.format(
"Error while encrypting password for 'AcmOutlookFolderCreator' instance for user with [%s] system email address.",
creator.getSystemEmailAddress()), e);
}
objectReference.setFolderCreator(creator);
em.merge(objectReference);
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#checkFolderCreatorCredentials()
*/
@Override
public List getFolderCreators()
{
log.debug("Checking calendar folder creators with invalid credentials.");
TypedQuery query = em.createQuery("SELECT ofc FROM AcmOutlookFolderCreator ofc",
AcmOutlookFolderCreator.class);
List allCreators = query.getResultList();
allCreators.stream().forEach(c -> em.detach(c));
return allCreators;
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#updateFolderCreator(com.armedia.acm.service.
* outlook.model.AcmOutlookFolderCreator, com.armedia.acm.service. outlook.model.AcmOutlookFolderCreator)
*/
@Override
@Transactional
public void updateFolderCreator(AcmOutlookFolderCreator existing, AcmOutlookFolderCreator updatedCreator)
throws AcmOutlookFolderCreatorDaoException
{
log.debug("Updating folder creator with id [{}].", updatedCreator.getId());
try
{
existing.setSystemEmailAddress(updatedCreator.getSystemEmailAddress());
existing.setSystemPassword(encryptValue(updatedCreator.getSystemPassword()));
em.merge(existing);
}
catch (AcmEncryptionException e)
{
log.warn("Error while encrypting password for 'AcmOutlookFolderCreator' instance for user with id [{}]. Cannot update it.",
updatedCreator.getId(), e);
throw new AcmOutlookFolderCreatorDaoException(String.format(
"Error while encrypting password for 'AcmOutlookFolderCreator' instance for user with id [%s]. Cannot update it.",
updatedCreator.getId()), e);
}
}
/*
* (non-Javadoc)
* @see com.armedia.acm.service.outlook.dao.AcmOutlookFolderCreatorDao#getObjectReferences(com.armedia.acm.service.
* outlook.model.AcmOutlookFolderCreator)
*/
@Override
public Set getObjectReferences(AcmOutlookFolderCreator folderCreator)
throws AcmOutlookFolderCreatorDaoException
{
log.debug("Retrieving object references for folder creator with id: [{}].", folderCreator.getId());
TypedQuery query = em.createQuery("SELECT ofc FROM AcmOutlookFolderCreator ofc WHERE ofc.id = :creatorId",
AcmOutlookFolderCreator.class);
query.setParameter("creatorId", folderCreator.getId());
try
{
AcmOutlookFolderCreator retrievedCreator = query.getSingleResult();
return retrievedCreator.getOutlookObjectReferences();
}
catch (NoResultException e)
{
log.warn("There is no 'AcmOutlookFolderCreator' instance with id [{}] stored in the database. Cannot update it.",
folderCreator.getId(), e);
throw new AcmOutlookFolderCreatorDaoException(
String.format("There is no 'AcmOutlookFolderCreator' instance with id [%s] stored in the database. Cannot update it.",
folderCreator.getId()),
e);
}
}
private String decryptValue(String encrypted) throws AcmEncryptionException
{
String decryptedValue = new String(cryptoUtils.decryptData(encryptionProperties.getSymmetricKey(), Base64.decodeBase64(encrypted),
encryptionProperties.getPropertiesEncryptionKeySize(), encryptionProperties.getPropertiesEncryptionIVSize(),
encryptionProperties.getPropertiesEncryptionMagicSize(), encryptionProperties.getPropertiesEncryptionSaltSize(),
encryptionProperties.getPropertiesEncryptionPassPhraseIterations(),
encryptionProperties.getPropertiesEncryptionPassPhraseHashAlgorithm(),
encryptionProperties.getPropertiesEncryptionAlgorithm(), encryptionProperties.getPropertiesEncryptionBlockCipherMode(),
encryptionProperties.getPropertiesEncryptionPadding()), UTF8_CHARSET);
return decryptedValue;
}
private String encryptValue(String plainText) throws AcmEncryptionException
{
String encryptedValue = Base64.encodeBase64String(cryptoUtils.encryptData(encryptionProperties.getSymmetricKey(),
plainText.getBytes(UTF8_CHARSET), encryptionProperties.getPropertiesEncryptionKeySize(),
encryptionProperties.getPropertiesEncryptionIVSize(), encryptionProperties.getPropertiesEncryptionMagicSize(),
encryptionProperties.getPropertiesEncryptionSaltSize(), encryptionProperties.getPropertiesEncryptionPassPhraseIterations(),
encryptionProperties.getPropertiesEncryptionPassPhraseHashAlgorithm(),
encryptionProperties.getPropertiesEncryptionAlgorithm(), encryptionProperties.getPropertiesEncryptionBlockCipherMode(),
encryptionProperties.getPropertiesEncryptionPadding()));
return encryptedValue;
}
/**
* @param cryptoUtils
* the cryptoUtils to set
*/
public void setCryptoUtils(AcmCryptoUtils cryptoUtils)
{
this.cryptoUtils = cryptoUtils;
}
/**
* @param encryptionProperties
* the encryptionProperties to set
*/
public void setEncryptionProperties(AcmEncryptablePropertyEncryptionProperties encryptionProperties)
{
this.encryptionProperties = encryptionProperties;
}
}