[#34] begin implementation of silhouette, the project builds and appl…

…ication is launched
LateralThoughts · Oct 19, 2014 · 2bec82e · 2bec82e
1 parent 329b173
commit 2bec82e
Show file tree

Hide file tree

Showing 55 changed files with 431 additions and 408 deletions.
diff --git a/app/Global.scala b/app/Global.scala
@@ -1,14 +1,21 @@
 import actors.{ActivityActor, InvoiceActor}
 import akka.actor.Props
+import com.mohiva.play.silhouette.api.SecuredSettings
 import com.softwaremill.macwire.MacwireMacros._
 import controllers.api.ClientApiController
+import controllers.routes
 import play.Logger
+import play.api.i18n.{Lang, Messages}
+import play.api.mvc.Results._
+import play.api.mvc.{RequestHeader, Result}
 import play.api.{Application, GlobalSettings}
 import play.libs.Akka
 import search.SimpleSearchEngine
+
 import scala.concurrent.ExecutionContext.Implicits.global
+import scala.concurrent.Future
 
-object Global extends GlobalSettings {
+object Global extends GlobalSettings with SecuredSettings {
   val wired = wiredInModule(new ProductionModule)
 
   override def onStart(app: Application) = {
@@ -32,4 +39,20 @@ object Global extends GlobalSettings {
   override def getControllerInstance[A](controllerClass: Class[A]) = {
     wired.lookupSingleOrThrow(controllerClass)
   }
+
+  override def onNotAuthenticated(request: RequestHeader, lang: Lang): Option[Future[Result]] = {
+    Some(Future.successful(Redirect(routes.AuthenticationController.signIn)))
+  }
+  /**
+   * Called when a user is authenticated but not authorized.
+   *
+   * As defined by RFC 2616, the status code of the response should be 403 Forbidden.
+   *
+   * @param request The request header.
+   * @param lang The currently selected language.
+   * @return The result to send to the client.
+   */
+  override def onNotAuthorized(request: RequestHeader, lang: Lang): Option[Future[Result]] = {
+    Some(Future.successful(Redirect(routes.AuthenticationController.signIn).flashing("error" -> Messages("access.denied"))))
+  }
 }
diff --git a/app/ProductionModule.scala b/app/ProductionModule.scala
@@ -1,44 +1,68 @@
+import com.mohiva.play.silhouette.api.services.{AuthenticatorService, IdentityService}
+import com.mohiva.play.silhouette.api.util.{Clock, FingerprintGenerator, IDGenerator, PlayHTTPLayer}
+import com.mohiva.play.silhouette.api.{Environment, EventBus, Provider}
+import com.mohiva.play.silhouette.impl.authenticators._
+import com.mohiva.play.silhouette.impl.providers.oauth2.GoogleProvider
+import com.mohiva.play.silhouette.impl.providers.oauth2.state.{CookieStateProvider, CookieStateSettings}
+import com.mohiva.play.silhouette.impl.providers.{OAuth2Settings, OAuth2StateProvider}
+import com.mohiva.play.silhouette.impl.util.{DefaultFingerprintGenerator, SecureRandomIDGenerator}
 import com.softwaremill.macwire.MacwireMacros._
 import controllers._
 import controllers.api._
-import play.api.data.Form
-import play.api.i18n.Lang
-import play.api.mvc.{Flash, RequestHeader}
+import domain.User
+import play.api.Play
+import play.api.Play.current
 import search.SimpleSearchEngine
-import securesocial.controllers._
-import securesocial.core._
-import securesocial.core.providers._
 import service.MongoBasedUserService
 
-import scala.collection.immutable.ListMap
-
 
 class ProductionModule {
 
-  object ProductionRuntimeEnvironment extends RuntimeEnvironment.Default[BasicProfile] {
-    override lazy val userService = new MongoBasedUserService
-    //override lazy val eventListeners = List(new MyEventListener())
-    override lazy val providers = ListMap(
-      // oauth 2 client providers
-      include(new GoogleProvider(routes, cacheService, oauth2ClientFor(GoogleProvider.Google)))
-    )
-    override lazy val viewTemplates = new ViewTemplates.Default(this){
-      override def getLoginPage(form: Form[(String, String)], msg: Option[String])(implicit request: RequestHeader, lang: Lang)= {
-        views.html.login(form, msg)(request, lang, env, request.flash)
-      }
-
-      override def getNotAuthorizedPage(implicit request : RequestHeader, lang : Lang) = {
-        views.html.unauthorized()(request, lang, env, request.flash)
-      }
+  object ProductionRuntimeEnvironment extends Environment[User, SessionAuthenticator] {
+    override def identityService: IdentityService[User] = new MongoBasedUserService
+
+    override def authenticatorService: AuthenticatorService[SessionAuthenticator] = {
+      provideAuthenticatorService(new DefaultFingerprintGenerator(false))
+    }
+
+    def provideAuthenticatorService(
+                                     fingerprintGenerator: FingerprintGenerator): SessionAuthenticatorService = {
+      new SessionAuthenticatorService(SessionAuthenticatorSettings(
+        sessionKey = Play.configuration.getString("silhouette.authenticator.sessionKey").get,
+        encryptAuthenticator = Play.configuration.getBoolean("silhouette.authenticator.encryptAuthenticator").get,
+        useFingerprinting = Play.configuration.getBoolean("silhouette.authenticator.useFingerprinting").get,
+        authenticatorIdleTimeout = Play.configuration.getInt("silhouette.authenticator.authenticatorIdleTimeout"),
+        authenticatorExpiry = Play.configuration.getInt("silhouette.authenticator.authenticatorExpiry").get
+      ), fingerprintGenerator, Clock())
+    }
+
+    override def providers: Map[String, Provider] = {
+      val googleProvider =  GoogleProvider(new PlayHTTPLayer(), provideOAuth2StateProvider(new SecureRandomIDGenerator()), OAuth2Settings(
+        authorizationURL = Play.configuration.getString("silhouette.google.authorizationURL").get,
+        accessTokenURL = Play.configuration.getString("silhouette.google.accessTokenURL").get,
+        redirectURL = Play.configuration.getString("silhouette.google.redirectURL").get,
+        clientID = Play.configuration.getString("silhouette.google.clientID").get,
+        clientSecret = Play.configuration.getString("silhouette.google.clientSecret").get,
+        scope = Play.configuration.getString("silhouette.google.scope")))
+      Map(googleProvider.id -> googleProvider)
+    }
+
+    def provideOAuth2StateProvider(idGenerator: IDGenerator): OAuth2StateProvider = {
+      new CookieStateProvider(CookieStateSettings(
+        cookieName = Play.configuration.getString("silhouette.oauth2StateProvider.cookieName").get,
+        cookiePath = Play.configuration.getString("silhouette.oauth2StateProvider.cookiePath").get,
+        cookieDomain = Play.configuration.getString("silhouette.oauth2StateProvider.cookieDomain"),
+        secureCookie = Play.configuration.getBoolean("silhouette.oauth2StateProvider.secureCookie").get,
+        httpOnlyCookie = Play.configuration.getBoolean("silhouette.oauth2StateProvider.httpOnlyCookie").get,
+        expirationTime = Play.configuration.getInt("silhouette.oauth2StateProvider.expirationTime").get
+      ), idGenerator, Clock())
     }
+
+    override def eventBus: EventBus = EventBus()
   }
 
   implicit val env = ProductionRuntimeEnvironment
 
-  // secure-social modules
-  lazy val loginPage = wire[LoginPage]
-  lazy val providerController = wire[ProviderController]
-
   // application modules
   lazy val app = wire[Application]
   lazy val clientController = wire[ClientController]
@@ -60,4 +84,6 @@ class ProductionModule {
   lazy val configurationApiController = wire[ConfigurationApiController]
   lazy val membersApiController = wire[MembersApiController]
   lazy val contributionsApiController = wire[ContributionsApiController]
+  lazy val authenticationController = wire[AuthenticationController]
+  lazy val authenticationApiController = wire[AuthenticationApiController]
 }
diff --git a/app/actors/ActivityActor.scala b/app/actors/ActivityActor.scala
@@ -2,16 +2,16 @@ package actors
 
 import akka.actor.Actor
 import domain.{Activity, ActivitySerializer}
+import play.Logger
+import play.api.libs.json.Json
 import play.modules.reactivemongo.ReactiveMongoPlugin
 import play.modules.reactivemongo.json.collection.JSONCollection
-import play.api.libs.json.Json
-import play.Logger
 
 case class ActivityActor() extends Actor with ActivitySerializer {
 
   import play.api.Play.current
 
-  import scala.concurrent.ExecutionContext.Implicits.global
+import scala.concurrent.ExecutionContext.Implicits.global
 
   def receive = {
 

diff --git a/app/auth/WithDomain.scala b/app/auth/WithDomain.scala
diff --git a/app/controllers/AccountsController.scala b/app/controllers/AccountsController.scala
@@ -1,13 +1,14 @@
 package controllers
 
-import play.api.mvc.Controller
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
 import play.modules.reactivemongo.MongoController
 import play.modules.reactivemongo.json.collection.JSONCollection
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
 
-class AccountsController (override implicit val env: RuntimeEnvironment[BasicProfile]) extends Controller
+class AccountsController (override implicit val env: Environment[User, SessionAuthenticator]) extends Silhouette[User, SessionAuthenticator]
                             with MongoController
-                            with securesocial.core.SecureSocial[BasicProfile]{
+                            {
 
   def collection = db.collection[JSONCollection]("accounts")
 

diff --git a/app/controllers/ActivityController.scala b/app/controllers/ActivityController.scala
@@ -1,15 +1,15 @@
 package controllers
 
-import auth.WithDomain
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
-import play.api.mvc._
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
 
-class ActivityController(override implicit val env: RuntimeEnvironment[BasicProfile]) extends Controller
-with securesocial.core.SecureSocial[BasicProfile] {
+class ActivityController(override implicit val env: Environment[User, SessionAuthenticator]) extends Silhouette[User, SessionAuthenticator]
+ {
 
-  def index = SecuredAction(WithDomain()) {
+  def index = SecuredAction {
     implicit request =>
-      Ok(views.html.activity.index(request.user))
+      Ok(views.html.activity.index(request.identity))
   }
 
 }
diff --git a/app/controllers/Application.scala b/app/controllers/Application.scala
@@ -1,15 +1,14 @@
 package controllers
 
-import auth.WithDomain
-import play.api.mvc.Controller
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
 
-class Application(override implicit val env: RuntimeEnvironment[BasicProfile])
-  extends Controller
-  with securesocial.core.SecureSocial[BasicProfile] {
+class Application(override implicit val env: Environment[User, SessionAuthenticator])
+  extends Silhouette[User, SessionAuthenticator] {
 
-  def index = SecuredAction(WithDomain()) {
+  def index = SecuredAction() {
     implicit request =>
-      Ok(views.html.index(request.user)).flashing("welcome" -> "connard")
+      Ok(views.html.index(request.identity)).flashing("welcome" -> "connard")
   }
 }
diff --git a/app/controllers/AuthenticationController.scala b/app/controllers/AuthenticationController.scala
@@ -0,0 +1,25 @@
+package controllers
+
+import com.mohiva.play.silhouette.api.{LogoutEvent, Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
+
+import scala.concurrent.Future
+
+class AuthenticationController(override implicit val env: Environment[User, SessionAuthenticator])
+  extends Silhouette[User, SessionAuthenticator] {
+
+  def signOut = SecuredAction.async { implicit request =>
+    val result = Future.successful(Redirect(routes.Application.index))
+    env.eventBus.publish(LogoutEvent(request.identity, request, request2lang))
+    env.authenticatorService.discard(request.authenticator, result)
+  }
+
+  def signIn() = play.mvc.Results.TODO
+
+  def signUp() = play.mvc.Results.TODO
+
+  def authenticate(provider: String) = play.mvc.Results.TODO
+
+  def credentials() = play.mvc.Results.TODO
+}
diff --git a/app/controllers/ClientController.scala b/app/controllers/ClientController.scala
@@ -1,23 +1,22 @@
 package controllers
 
-import auth.WithDomain
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
 import domain._
-import play.api.mvc._
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
 
 // Reactive Mongo imports
 
 // Reactive Mongo plugin, including the JSON-specialized collection
 import play.modules.reactivemongo.MongoController
 
 
-class ClientController(override implicit val env: RuntimeEnvironment[BasicProfile]) extends Controller
+class ClientController(override implicit val env: Environment[User, SessionAuthenticator]) extends Silhouette[User, SessionAuthenticator]
               with InvoiceSerializer
               with MongoController
-              with securesocial.core.SecureSocial[BasicProfile] {
+               {
 
-  def clientsView = SecuredAction(WithDomain()) {
+  def clientsView = SecuredAction {
     implicit request =>
-      Ok(views.html.clients(request.user))
+      Ok(views.html.clients(request.identity))
   }
 }
diff --git a/app/controllers/ConfigurationController.scala b/app/controllers/ConfigurationController.scala
@@ -1,15 +1,15 @@
 package controllers
 
-import auth.WithDomain
-import play.api.mvc._
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
 
-class ConfigurationController(override implicit val env: RuntimeEnvironment[BasicProfile]) extends Controller
-                                      with securesocial.core.SecureSocial[BasicProfile] {
+class ConfigurationController(override implicit val env: Environment[User, SessionAuthenticator]) extends Silhouette[User, SessionAuthenticator]
+                                       {
 
-  def index = SecuredAction(WithDomain()) {
+  def index = SecuredAction {
     implicit request =>
-      Ok(views.html.configurations.index(request.user))
+      Ok(views.html.configurations.index(request.identity))
   }
 
 }
diff --git a/app/controllers/ContributionsController.scala b/app/controllers/ContributionsController.scala
@@ -1,14 +1,14 @@
 package controllers
 
-import auth.WithDomain
-import play.api.mvc._
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
 
-class ContributionsController(override implicit val env: RuntimeEnvironment[BasicProfile]) extends Controller
-                                      with securesocial.core.SecureSocial[BasicProfile] {
+class ContributionsController(override implicit val env: Environment[User, SessionAuthenticator]) extends Silhouette[User, SessionAuthenticator]
+                                       {
 
-  def index = SecuredAction(WithDomain()) {
+  def index = SecuredAction {
     implicit request =>
-      Ok(views.html.contributions.index(request.user))
+      Ok(views.html.contributions.index(request.identity))
   }
 }
diff --git a/app/controllers/ExpenseController.scala b/app/controllers/ExpenseController.scala
@@ -1,16 +1,16 @@
 package controllers
 
-import auth.WithDomain
-import play.api.mvc._
-import securesocial.core.{BasicProfile, RuntimeEnvironment}
+import com.mohiva.play.silhouette.api.{Environment, Silhouette}
+import com.mohiva.play.silhouette.impl.authenticators.SessionAuthenticator
+import domain.User
 
-class ExpenseController(override implicit val env: RuntimeEnvironment[BasicProfile])
-  extends Controller
-  with securesocial.core.SecureSocial[BasicProfile] {
+class ExpenseController(override implicit val env: Environment[User, SessionAuthenticator])
+  extends Silhouette[User, SessionAuthenticator]
+   {
 
-  def index = SecuredAction(WithDomain()) {
+  def index = SecuredAction {
     implicit request =>
-      Ok(views.html.expense.index(request.user))
+      Ok(views.html.expense.index(request.identity))
   }
 
 }