AuthController (kernel-auth-service 1.0.5 API)

java.lang.Object
- io.mosip.kernel.auth.controller.AuthController

```
@CrossOrigin
 @RestController
public class AuthController
extends Object
```
Controller APIs for Authentication and Authorization

Since:

1.0.0

Author:

Ramadurai Pandian

Constructor Summary

Constructors
Constructor and Description

AuthController()

Constructors
Constructor and Description
`AuthController()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`ResponseWrapper<UserPasswordResponseDto>`	`addPassword(@Valid RequestWrapper<UserPasswordRequestDto> userPasswordRequestDto)` Create a user account in Data Store
`ResponseWrapper<AuthNResponse>`	`authenticateUseridPwd(@Valid RequestWrapper<LoginUser> request, javax.servlet.http.HttpServletResponse res)` API to authenticate using userName and password request is of type `LoginUser`
`ResponseWrapper<AuthZResponseDto>`	`changePassword(String appId, @Valid RequestWrapper<PasswordDto> passwordDto)` This API will change the password of the particular user
`ResponseWrapper<AuthNResponse>`	`clientIdSecretKey(@Valid RequestWrapper<ClientSecret> clientSecretDto, javax.servlet.http.HttpServletResponse res)` API to authenticate using clientId and secretKey clientSecretDto is of type `ClientSecretDto`
`ResponseWrapper<RolesListDto>`	`getAllRoles(String appId)`
`ResponseWrapper<MosipUserListDto>`	`getListOfUsersDetails(RequestWrapper<UserDetailsRequestDto> userDetails, String appId)`
`ResponseWrapper<RIdDto>`	`getRId(String appId, String userId)` This API will fetch RID based on appId and userId.
`ResponseWrapper<MosipUserDto>`	`getUserDetailBasedOnMobileNumber(String mobile, String appId)`
`ResponseWrapper<UserDetailsResponseDto>`	`getUserDetailBasedOnUserId(String appId, RequestWrapper<UserDetailsRequestDto> userDetails)` Gets the user detail based on user id.
`ResponseWrapper<MosipUserSaltListDto>`	`getUserDetailsWithSalt(String appId)`
`ResponseWrapper<AuthZResponseDto>`	`getUserName(String appId, String userId)` Fetch username based on the user id.
`ResponseWrapper<UserNameDto>`	`getUsernameBasedOnMobileNumber(String mobile, String appId)`
`ResponseWrapper<UserRoleDto>`	`getUserRole(String appId, String userId)`
`ResponseWrapper<AuthNResponse>`	`invalidateToken(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse res)` API to invalidate token when both refresh and auth token expires
`void`	`login(String state, String redirectURI, javax.servlet.http.HttpServletResponse res)`
`void`	`loginRedirect(String redirectURI, String state, String sessionState, String code, String stateCookie, javax.servlet.http.HttpServletResponse res)`
`ResponseWrapper<AuthResponseDto>`	`logoutUser(String token, javax.servlet.http.HttpServletResponse res)`
`ResponseWrapper<AuthZResponseDto>`	`resetPassword(String appId, @Valid RequestWrapper<PasswordDto> passwordDto)` This API will reset the password of the particular user
`ResponseWrapper<MosipUserDto>`	`retryToken(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse res)` API to retry token when auth token expires
`ResponseWrapper<AuthNResponse>`	`sendOTP(@Valid RequestWrapper<OtpUser> otpUserDto)` API to send OTP otpUser is of type `OtpUser`
`ResponseWrapper<AuthNResponse>`	`userIdOTP(@Valid RequestWrapper<UserOtp> userOtpDto, javax.servlet.http.HttpServletResponse res)` API to validate OTP with user Id userOtp is of type `UserOtp`
`ResponseWrapper<MosipUserDto>`	`validateAdminToken(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse res)` API to validate token
`ResponseWrapper<MosipUserDto>`	`validateToken(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse res)` API to validate token
`ResponseWrapper<ValidationResponseDto>`	`validateUserName(String userId, String appId)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- AuthController
```
public AuthController()
```

Method Detail

authenticateUseridPwd

@ResponseFilter
 @PostMapping(value="/authenticate/useridPwd")
public ResponseWrapper<AuthNResponse> authenticateUseridPwd(@RequestBody @Valid
                                                                                                                           @Valid RequestWrapper<LoginUser> request,
                                                                                                                           javax.servlet.http.HttpServletResponse res)
                                                                                                                    throws Exception

API to authenticate using userName and password request is of type LoginUser

Returns:: ResponseEntity Cookie value with Auth token
Throws:: Exception

sendOTP

@ResponseFilter
 @PostMapping(value="/authenticate/sendotp")
 @ResponseStatus(value=OK)
public ResponseWrapper<AuthNResponse> sendOTP(@RequestBody @Valid
                                                                                                                                      @Valid RequestWrapper<OtpUser> otpUserDto)
                                                                                                                               throws Exception

API to send OTP otpUser is of type OtpUser

Returns:: ResponseEntity with OTP Sent message
Throws:: Exception

userIdOTP

@ResponseFilter
 @PostMapping(value="/authenticate/useridOTP")
public ResponseWrapper<AuthNResponse> userIdOTP(@RequestBody @Valid
                                                                                                               @Valid RequestWrapper<UserOtp> userOtpDto,
                                                                                                               javax.servlet.http.HttpServletResponse res)
                                                                                                        throws Exception

API to validate OTP with user Id userOtp is of type UserOtp

Returns:: ResponseEntity with Cookie value with Auth token
Throws:: Exception

clientIdSecretKey

@ResponseFilter
 @PostMapping(value="/authenticate/clientidsecretkey")
public ResponseWrapper<AuthNResponse> clientIdSecretKey(@RequestBody @Valid
                                                                                                                               @Valid RequestWrapper<ClientSecret> clientSecretDto,
                                                                                                                               javax.servlet.http.HttpServletResponse res)
                                                                                                                        throws Exception

API to authenticate using clientId and secretKey clientSecretDto is of type ClientSecretDto

Returns:: ResponseEntity with Cookie value with Auth token
Throws:: Exception

validateToken

@ResponseFilter
 @PostMapping(value="/authorize/validateToken")
public ResponseWrapper<MosipUserDto> validateToken(javax.servlet.http.HttpServletRequest request,
                                                                                                                   javax.servlet.http.HttpServletResponse res)
                                                                                                            throws AuthManagerException,
                                                                                                                   Exception

API to validate token

Returns:: ResponseEntity with MosipUserDto
Throws:: AuthManagerException; Exception

validateAdminToken

@ResponseFilter
 @GetMapping(value="/authorize/admin/validateToken")
public ResponseWrapper<MosipUserDto> validateAdminToken(javax.servlet.http.HttpServletRequest request,
                                                                                                                             javax.servlet.http.HttpServletResponse res)

API to validate token

Returns:: ResponseEntity with MosipUserDto
Throws:: IOException; com.fasterxml.jackson.databind.JsonMappingException; com.fasterxml.jackson.core.JsonParseException

retryToken

@ResponseFilter
 @PostMapping(value="/authorize/refreshToken")
public ResponseWrapper<MosipUserDto> retryToken(javax.servlet.http.HttpServletRequest request,
                                                                                                               javax.servlet.http.HttpServletResponse res)
                                                                                                        throws Exception

API to retry token when auth token expires

Returns:: ResponseEntity with MosipUserDto
Throws:: Exception

invalidateToken

@ResponseFilter
 @PostMapping(value="/authorize/invalidateToken")
public ResponseWrapper<AuthNResponse> invalidateToken(javax.servlet.http.HttpServletRequest request,
                                                                                                                        javax.servlet.http.HttpServletResponse res)
                                                                                                                 throws Exception

API to invalidate token when both refresh and auth token expires

Returns:: ResponseEntity with MosipUserDto
Throws:: Exception

getAllRoles

@ResponseFilter
 @GetMapping(value="/roles/{appid}")
public ResponseWrapper<RolesListDto> getAllRoles(@PathVariable(value="appid")
                                                                                                      String appId)
                                                                                               throws Exception

Throws:: Exception

getListOfUsersDetails

@ResponseFilter
 @PostMapping(value="/userdetails/{appid}")
public ResponseWrapper<MosipUserListDto> getListOfUsersDetails(@RequestBody
                                                                                                                           RequestWrapper<UserDetailsRequestDto> userDetails,
                                                                                                                           @PathVariable(value="appid")
                                                                                                                           String appId)
                                                                                                                    throws Exception

Throws:: Exception

getUserDetailsWithSalt

@ResponseFilter
 @GetMapping(value="/usersaltdetails/{appid}")
public ResponseWrapper<MosipUserSaltListDto> getUserDetailsWithSalt(@PathVariable(value="appid")
                                                                                                                                   String appId)
                                                                                                                            throws Exception

Throws:: Exception

getRId

@ResponseFilter
 @GetMapping(value="rid/{appid}/{userid}")
public ResponseWrapper<RIdDto> getRId(@PathVariable(value="appid")
                                                                                                 String appId,
                                                                                                 @PathVariable(value="userid")
                                                                                                 String userId)
                                                                                          throws Exception

This API will fetch RID based on appId and userId.

Parameters:: appId - - application Id; userId - - user Id
Returns:: RIdDto
Throws:: Exception

getUserName

@ResponseFilter
 @GetMapping(value="unblock/{appid}/{userid}")
public ResponseWrapper<AuthZResponseDto> getUserName(@PathVariable(value="appid")
                                                                                                                    String appId,
                                                                                                                    @PathVariable(value="userid")
                                                                                                                    String userId)
                                                                                                             throws Exception

Fetch username based on the user id.

Parameters:: appId - - application id; userId - - user id
Returns:: UserNameDto
Throws:: Exception - - exception is thrown if

changePassword

@ResponseFilter
 @PostMapping(value="/changepassword/{appid}")
public ResponseWrapper<AuthZResponseDto> changePassword(@PathVariable(value="appid")
                                                                                                                       String appId,
                                                                                                                       @RequestBody @Valid
                                                                                                                       @Valid RequestWrapper<PasswordDto> passwordDto)
                                                                                                                throws Exception

This API will change the password of the particular user

Parameters:: appId - - applicationId; passwordDto - - PasswordDto
Returns:: AuthZResponseDto
Throws:: Exception

resetPassword

@ResponseFilter
 @PostMapping(value="/resetpassword/{appid}")
public ResponseWrapper<AuthZResponseDto> resetPassword(@PathVariable(value="appid")
                                                                                                                     String appId,
                                                                                                                     @RequestBody @Valid
                                                                                                                     @Valid RequestWrapper<PasswordDto> passwordDto)
                                                                                                              throws Exception

This API will reset the password of the particular user

Parameters:: appId - - applicationId; passwordDto - -PasswordDto
Returns:: AuthZResponseDto
Throws:: Exception

getUsernameBasedOnMobileNumber

@ResponseFilter
 @GetMapping(value="/username/{appid}/{mobilenumber}")
public ResponseWrapper<UserNameDto> getUsernameBasedOnMobileNumber(@PathVariable(value="mobilenumber")
                                                                                                                                          String mobile,
                                                                                                                                          @PathVariable(value="appid")
                                                                                                                                          String appId)
                                                                                                                                   throws Exception

Parameters:: mobile - - mobile number; appId - - applicationId
Returns:: UserNameDto
Throws:: Exception

addPassword

@ResponseFilter
 @PostMapping(value="/user/addpassword")
public ResponseWrapper<UserPasswordResponseDto> addPassword(@RequestBody @Valid
                                                                                                                     @Valid RequestWrapper<UserPasswordRequestDto> userPasswordRequestDto)

Create a user account in Data Store

Parameters:: userCreationRequestDto - UserRegistrationRequestDto
Returns:: UserRegistrationResponseDto

getUserRole

@GetMapping(value="/role/{appId}/{userId}")
 @ResponseFilter
public ResponseWrapper<UserRoleDto> getUserRole(@PathVariable(value="appId")
                                                                                                             String appId,
                                                                                                             @PathVariable(value="userId")
                                                                                                             String userId)
                                                                                                      throws Exception

Throws:: Exception

getUserDetailBasedOnMobileNumber

@ResponseFilter
 @GetMapping(value="/userdetail/{appid}/{mobilenumber}")
public ResponseWrapper<MosipUserDto> getUserDetailBasedOnMobileNumber(@PathVariable(value="mobilenumber")
                                                                                                                                               String mobile,
                                                                                                                                               @PathVariable(value="appid")
                                                                                                                                               String appId)
                                                                                                                                        throws Exception

Parameters:: mobile - - mobile number; appId - - applicationId
Returns:: MosipUserDto
Throws:: Exception

validateUserName

@ResponseFilter
 @GetMapping(value="/validate/{appid}/{userid}")
public ResponseWrapper<ValidationResponseDto> validateUserName(@PathVariable(value="userid")
                                                                                                                                String userId,
                                                                                                                                @PathVariable(value="appid")
                                                                                                                                String appId)

Parameters:: mobile - - mobile number; appId - - applicationId
Returns:: MosipUserDto
Throws:: Exception

getUserDetailBasedOnUserId

@ResponseFilter
 @PostMapping(value="/userdetail/regid/{appid}")
public ResponseWrapper<UserDetailsResponseDto> getUserDetailBasedOnUserId(@PathVariable(value="appid")
                                                                                                                                           String appId,
                                                                                                                                           @RequestBody
                                                                                                                                           RequestWrapper<UserDetailsRequestDto> userDetails)

Gets the user detail based on user id.

Parameters:: appId - the app id; userId - the user id
Returns:: UserDetailsDto

logoutUser

@ResponseFilter
 @DeleteMapping(value="/logout/user")
public ResponseWrapper<AuthResponseDto> logoutUser(@CookieValue(value="Authorization",required=false)
                                                                                                         String token,
                                                                                                         javax.servlet.http.HttpServletResponse res)

Parameters:: req - - HttpServletRequest; res - - HttpServletResponse
Returns:: ResponseWrapper

login

@GetMapping(value="/login/{redirectURI}")
public void login(@CookieValue(value="state")
                                                            String state,
                                                            @PathVariable(value="redirectURI")
                                                            String redirectURI,
                                                            javax.servlet.http.HttpServletResponse res)
                                                     throws IOException

Throws:: IOException

loginRedirect

@GetMapping(value="/login-redirect/{redirectURI}")
public void loginRedirect(@PathVariable(value="redirectURI")
                                                                             String redirectURI,
                                                                             @RequestParam(value="state")
                                                                             String state,
                                                                             @RequestParam(value="session_state")
                                                                             String sessionState,
                                                                             @RequestParam(value="code")
                                                                             String code,
                                                                             @CookieValue(value="state")
                                                                             String stateCookie,
                                                                             javax.servlet.http.HttpServletResponse res)
                                                                      throws IOException

Throws:: IOException

Class AuthController

Constructor Summary