GeoKnow
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/main/java/authentication/FrameworkConfiguration.java‎
Lines changed: 33 additions & 0 deletions b/‎src/main/java/authentication/FrameworkConfiguration.java‎
Lines changed: 33 additions & 0 deletions
diff --git a/‎src/main/java/authentication/web/AuthenticationServlet.java‎
Lines changed: 47 additions & 17 deletions b/‎src/main/java/authentication/web/AuthenticationServlet.java‎
Lines changed: 47 additions & 17 deletions
diff --git a/‎src/main/java/authentication/web/UserManagerServlet.java‎
Lines changed: 11 additions & 5 deletions b/‎src/main/java/authentication/web/UserManagerServlet.java‎
Lines changed: 11 additions & 5 deletions
diff --git a/‎src/main/java/util/Localizer.java‎
Lines changed: 8 additions & 0 deletions b/‎src/main/java/util/Localizer.java‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎src/main/java/util/RandomStringGenerator.java‎
Lines changed: 45 additions & 0 deletions b/‎src/main/java/util/RandomStringGenerator.java‎
Lines changed: 45 additions & 0 deletions
diff --git a/‎src/main/java/util/TLSEmailSender.java‎
Lines changed: 39 additions & 21 deletions b/‎src/main/java/util/TLSEmailSender.java‎
Lines changed: 39 additions & 21 deletions
diff --git a/‎src/main/resources/framework-components.ttl‎
Lines changed: 16 additions & 1 deletion b/‎src/main/resources/framework-components.ttl‎
Lines changed: 16 additions & 1 deletion
@@ -1,6 +1,7 @@
 #Framework configuration files
 /src/main/webapp/WEB-INF/web.xml
 /src/main/resources/framework-configuration.ttl
+/src/main/resources/framework-components-local.ttl
 
 #Mac
 .DS_Store
 
@@ -1,13 +1,18 @@
 package authentication;
 
 import java.io.IOException;
+import java.util.HashMap;
+import java.util.Locale;
+import java.util.MissingResourceException;
+import java.util.ResourceBundle;
 
 import javax.servlet.ServletContext;
 
 import org.apache.jena.riot.RiotException;
 
 import rdf.SecureRdfStoreManagerImpl;
 import util.EmailSender;
+import util.Localizer;
 import util.SSLEmailSender;
 import util.TLSEmailSender;
 import accounts.FrameworkUserManager;
@@ -50,6 +55,8 @@ public class FrameworkConfiguration {
 
   private static FrameworkConfiguration instance;
 
+    private HashMap<Locale, Localizer> localizers = new HashMap<Locale, Localizer>();
+
   /**
    * 
    * @param context
@@ -360,4 +367,30 @@ public void setFrameworkUri(String frameworkUri) {
     this.frameworkUri = frameworkUri;
   }
 
+    public Localizer getLocalizer(Locale locale) {
+        Localizer localizer = localizers.get(locale);
+        if (localizer==null) {
+            try {
+                final ResourceBundle bundle = ResourceBundle.getBundle("locale/generator", locale);
+                localizer = new Localizer() {
+                    @Override
+                    public String localize(String str) {
+                        try {
+                            return bundle.getString(str);
+                        } catch (Exception e) {
+                            return str;
+                        }
+                    }
+                };
+            } catch (MissingResourceException e) {
+                localizer = new Localizer() {
+                    public String localize(String str) {
+                        return str;
+                    }
+                };
+            }
+            localizers.put(locale, localizer);
+        }
+        return localizer;
+    }
 }
@@ -5,6 +5,7 @@
 import java.io.PrintWriter;
 import java.util.ArrayList;
 import java.util.Collection;
+import java.util.Locale;
 import java.util.UUID;
 
 import javax.mail.MessagingException;
@@ -19,6 +20,7 @@
 
 import util.EmailSender;
 import util.HttpUtils;
+import util.Localizer;
 import util.RandomStringGenerator;
 import accounts.FrameworkUserManager;
 import accounts.UserProfile;
@@ -32,6 +34,8 @@
  *
  * Error codes:
  * 1 - user already exists (during user registration, user with the same name or e-mail already exists)
+ * 2 - incorrect old password (change password)
+ * 3 - user doesn't exists (in restore password)
  */
 public class AuthenticationServlet extends HttpServlet {
   /**
@@ -65,6 +69,11 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response)
       throws ServletException, IOException {
     String mode = request.getParameter("mode");
 
+      String language = request.getParameter("lang");
+      if (language==null)
+          language = "en";
+      Locale locale = new Locale(language);
+
     PrintWriter out = response.getWriter();
 
     if ("login".equals(mode)) {
@@ -143,15 +152,15 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response)
           return;
       }
       // create user
-      String password = new RandomStringGenerator().generateSimple(8);
+      String password = new RandomStringGenerator().generateBasic(6);
       try {
         frameworkUserManager.createUser(username, password, email);
 
-        EmailSender emailSender = FrameworkConfiguration.getInstance(getServletContext())
-            .getDefaultEmailSender();
+        FrameworkConfiguration frameworkConfiguration = FrameworkConfiguration.getInstance(getServletContext());
+        Localizer localizer = frameworkConfiguration.getLocalizer(locale);
+        EmailSender emailSender = frameworkConfiguration.getDefaultEmailSender();
 
-        emailSender.send(email, "GeoKnow registration", "Your login: " + username + ", password: "
-            + password);
+        emailSender.send(email, localizer.localize("email.subject.registration"), localizer.localize("login") + ": " + username + "\n" + localizer.localize("password") + ": " + password);
         String responseStr = "{\"message\" : \"Your password will be sent to your e-mail address "
             + email + " \"}";
         response.getWriter().print(responseStr);
@@ -174,15 +183,34 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response)
       boolean valid;
       try {
         valid = frameworkUserManager.checkToken(username, token);
-        if (!valid)
-          response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, "invalid token " + token
-              + " for user " + username);
-        else {
+        if (!valid) {
+            response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, "invalid token " + token
+                    + " for user " + username);
+        } else {
+            //check old password
+            boolean isCorrect = frameworkUserManager.checkPassword(username, oldPassword);
+            if (!isCorrect) {
+                response.setStatus(HttpServletResponse.SC_INTERNAL_SERVER_ERROR);
+                out.print("{\"code\" : \"2\", \"message\" : \"Incorrect old password\"}");
+                return;
+            }
+
           // change password
           frameworkUserManager.changePassword(username, oldPassword, newPassword);
+
+            // send new password to user
+            UserProfile userProfile = frameworkUserManager.getUserProfile(username);
+            if (userProfile == null) {
+                response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, "User profile " + username + " not found");
+                return;
+            }
+            FrameworkConfiguration frameworkConfiguration = FrameworkConfiguration.getInstance(getServletContext());
+            Localizer localizer = frameworkConfiguration.getLocalizer(locale);
+            EmailSender emailSender = frameworkConfiguration.getDefaultEmailSender();
+            emailSender.send(userProfile.getEmail(), localizer.localize("email.subject.passwordChanged"), localizer.localize("email.message.passwordChanged") + " " + username);
+
           String responseStr = "{\"message\" : \"Your password was changed\"}";
           response.getWriter().print(responseStr);
-
         }
       } catch (Exception e) {
         e.printStackTrace();
@@ -197,18 +225,20 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response)
       try {
         userProfile = frameworkUserManager.getUserProfile(username);
         if (userProfile == null) {
-          response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, "User profile "
-              + username + " not found");
+            response.setStatus(HttpServletResponse.SC_INTERNAL_SERVER_ERROR);
+            out.print("{\"code\" : \"3\", \"message\" : \"User doesn't exists\"}");
+            return;
         }
         // change password
-        String password = new RandomStringGenerator().generateSimple(8);
+        String password = new RandomStringGenerator().generateBasic(6);
         frameworkUserManager.setPassword(username, password);
 
         // send new password to user
-        EmailSender emailSender = FrameworkConfiguration.getInstance(getServletContext())
-            .getDefaultEmailSender();
-        emailSender.send(userProfile.getEmail(), "GeoKnow restore password", "Your login: "
-            + username + ", password: " + password);
+        FrameworkConfiguration frameworkConfiguration = FrameworkConfiguration.getInstance(getServletContext());
+        Localizer localizer = frameworkConfiguration.getLocalizer(locale);
+        EmailSender emailSender = frameworkConfiguration.getDefaultEmailSender();
+        emailSender.send(userProfile.getEmail(), localizer.localize("email.subject.passwordRestored"), localizer.localize("login") + ": "
+            + username + "\n" + localizer.localize("password") + ": " + password);
         String responseStr = "{\"message\" : \"New password will be sent to your e-mail address "
             + userProfile.getEmail() + " \"}";
         response.getWriter().print(responseStr);
 
@@ -5,6 +5,7 @@
 import java.util.ArrayList;
 import java.util.Collection;
 import java.util.Iterator;
+import java.util.Locale;
 
 import javax.mail.MessagingException;
 import javax.servlet.ServletConfig;
@@ -18,6 +19,7 @@
 
 import util.EmailSender;
 import util.HttpUtils;
+import util.Localizer;
 import util.RandomStringGenerator;
 import accounts.FrameworkUserManager;
 import accounts.UserProfileExtended;
@@ -110,7 +112,7 @@ protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws S
         String role = rootNode.path("profile").path("role")==null ? null : rootNode.path("profile").path("role").getTextValue();
 
       // create user
-      String password = new RandomStringGenerator().generateSimple(8);
+      String password = new RandomStringGenerator().generateBasic(6);
       try {
         frameworkUserManager.createUser(username, password, email);
       } catch (Exception e) {
@@ -137,10 +139,14 @@ protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws S
 
       EmailSender emailSender = null;
       try {
-        emailSender = FrameworkConfiguration.getInstance(getServletContext())
-            .getDefaultEmailSender();
-        emailSender.send(email, "GeoKnow registration", "Your login: " + username + ", password: "
-            + password);
+        String language = req.getParameter("lang");
+        if (language==null)
+            language = "en";
+        Locale locale = new Locale(language);
+        FrameworkConfiguration frameworkConfiguration = FrameworkConfiguration.getInstance(getServletContext());
+        Localizer localizer = frameworkConfiguration.getLocalizer(locale);
+        emailSender = frameworkConfiguration.getDefaultEmailSender();
+        emailSender.send(email, localizer.localize("email.subject.registration"), localizer.localize("login") + ": " + username + "\n" + localizer.localize("password") + ": " + password);
       } catch (MessagingException e) {
         throw new ServletException("Failed to send email to " + email + " using " + emailSender, e);
       } catch (Exception e) {
 
@@ -0,0 +1,8 @@
+package util;
+
+/**
+ * Created by taleksaschina on 18.07.2014.
+ */
+public interface Localizer {
+    String localize(String str);
+}
@@ -1,5 +1,8 @@
 package util;
 
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
 import java.util.Random;
 
 public class RandomStringGenerator {
@@ -12,11 +15,53 @@ public class RandomStringGenerator {
             '+', '-', '_'
     };
 
+    private static char[] lower = {
+            'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm',
+            'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z'
+    };
+
+    private static char[] upper = {
+            'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M',
+            'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z'
+    };
+
+    private static char[] digits = {
+            '0', '1', '2', '3', '4', '5', '6', '7', '8', '9'
+    };
+
     public String generateSimple(int length) {
         Random random = new Random();
         StringBuilder sb = new StringBuilder();
         for (int i = 0; i < length; i++)
             sb.append(chars[random.nextInt(chars.length)]);
         return sb.toString();
     }
+
+    //at least one digit, one upper case and one lower case
+    public String generateBasic(int length) {
+        if (length < 3)
+            throw new RuntimeException("Invalid basic password length (< 3)");
+
+        List<Character> passwordChars = new ArrayList<>();
+
+        Random randomLower = new Random();
+        passwordChars.add(lower[randomLower.nextInt(lower.length)]);
+
+        Random randomUpper = new Random();
+        passwordChars.add(upper[randomUpper.nextInt(upper.length)]);
+
+        Random randomDigit = new Random();
+        passwordChars.add(digits[randomDigit.nextInt(digits.length)]);
+
+        Random randomChars = new Random();
+        for (int i = 0; i < length-3; i++)
+            passwordChars.add(chars[randomChars.nextInt(chars.length)]);
+
+        Collections.shuffle(passwordChars);
+
+        StringBuilder passwordString = new StringBuilder();
+        for (Character c : passwordChars)
+            passwordString.append(c);
+        return passwordString.toString();
+    }
 }
@@ -20,26 +20,44 @@ public TLSEmailSender(String smtpHost, String smtpPort, String fromEmail, String
         this.emailPassword = emailPassword;
     }
 
-    public void send(String toEmail, String msgSubject, String msgText) throws MessagingException {
-        Properties props = new Properties();
-        props.put("mail.smtp.auth", "true");
-        props.put("mail.smtp.starttls.enable", "true");
-        props.put("mail.smtp.host", smtpHost);
-        props.put("mail.smtp.port", smtpPort);
-
-        Session session = Session.getInstance(props,
-                new javax.mail.Authenticator() {
-                    protected PasswordAuthentication getPasswordAuthentication() {
-                        return new PasswordAuthentication(emailUsername, emailPassword);
-                    }
-                });
-
-        Message message = new MimeMessage(session);
-        message.setFrom(new InternetAddress(fromEmail));
-        message.setRecipients(Message.RecipientType.TO, InternetAddress.parse(toEmail));
-        message.setSubject(msgSubject);
-        message.setText(msgText);
-
-        Transport.send(message);
+	public void send(String toEmail, String msgSubject, String msgText) throws MessagingException
+	{
+		Properties props = new Properties();
+		props.put("mail.smtp.starttls.enable", "true");
+		props.put("mail.smtp.host", smtpHost);
+		props.put("mail.smtp.port", smtpPort);
+
+		Session session;
+
+		if (emailUsername == null || emailUsername.isEmpty())
+			session = Session.getDefaultInstance(props);
+		else
+		{
+			props.put("mail.smtp.auth", "true");
+			session = Session.getInstance(props, new Authenticator()
+			{
+				protected PasswordAuthentication getPasswordAuthentication()
+				{
+					return new PasswordAuthentication(emailUsername, emailPassword);
+				}
+			});
+		}
+
+		Message message = new MimeMessage(session);
+		message.setFrom(new InternetAddress(fromEmail));
+		message.setRecipients(Message.RecipientType.TO, InternetAddress.parse(toEmail));
+		message.setSubject(msgSubject);
+		message.setText(msgText);
+
+		Transport.send(message);
+	}
+
+    @Override
+    public String toString() {
+        return "TLSEmailSender{" +
+                "smtpHost='" + smtpHost + '\'' +
+                ", smtpPort='" + smtpPort + '\'' +
+                ", fromEmail='" + fromEmail + '\'' +
+                '}';
     }
 }
@@ -132,4 +132,19 @@
 :UserManagerService
       a       lds:ComponentService ;
       dcterms:description "Provides create/update functionality for accounts and roles."^^xsd:string ;
-      lds:serviceUrl <http://localhost:8080/generator/UserManagerServlet> .
+      lds:serviceUrl <http://localhost:8080/generator/UserManagerServlet> .
+      
+########### ROUTES RESTRICTIONS DESCRIPTION #######################################################
+# Following triples describe required services for routes. It is used in conditional routing.
+# #######################################################################################
+
+:OntologyRouteRestriction
+      a     gkg:RouteRestriction;
+      gkg:partialUrl "/home/manual-revision-and-authoring/ontology"^^xsd:string;
+      gkg:requiredService :D2RQService;
+      gkg:requiredService :MiniDixService .
+
+:RolesRouteRestriction
+      a     gkg:RouteRestriction;
+      gkg:partialUrl "/settings/roles"^^xsd:string;
+      gkg:requiredService :UserManagerService .