/authenticators/system

Author: Eranda2001

components/application-mgt/org.wso2.carbon.identity.application.common/src/main/java/org/wso2/carbon/identity/application/common/ApplicationAuthenticatorService.java

@@ -18,7 +18,6 @@
 
 package org.wso2.carbon.identity.application.common;
 
-import jdk.vm.ci.meta.Local;
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
 import org.wso2.carbon.identity.application.common.dao.AuthenticatorManagementDAO;
@@ -128,6 +127,7 @@ public List<RequestPathAuthenticatorConfig> getRequestPathAuthenticators() {
      * @param name  The name of the Local Application Authenticator configuration.
      * @return Retrieved LocalAuthenticatorConfig.
      *
+     * @deprecated It is recommended to use {@link #getLocalAuthenticatorByName(String, String)},
      * which supports retrieving both USER and SYSTEM defined Local Application Authenticator configuration by name.
      */
     @Deprecated
@@ -300,6 +300,24 @@ public UserDefinedLocalAuthenticatorConfig updateUserDefinedLocalAuthenticator(
                 existingConfig, authenticatorConfig, IdentityTenantUtil.getTenantId(tenantDomain));
     }
 
+    /**
+     * Add a system defined Local Application Authenticator configuration.
+     *
+     * @param authenticatorConfig Local Application Authenticator configuration.
+     * @param tenantDomain        Tenant domain.
+     * @throws AuthenticatorMgtException If an error occurs while adding the authenticator configuration.
+     */
+    public LocalAuthenticatorConfig addSystemDefinedLocalAuthenticator(LocalAuthenticatorConfig authenticatorConfig, String tenantDomain)
+            throws AuthenticatorMgtException {
+
+        if (isExistingAuthenticatorNameDB(authenticatorConfig.getName(), tenantDomain)) {
+            throw buildClientException(AuthenticatorMgtError.ERROR_AUTHENTICATOR_ALREADY_EXIST,
+                    authenticatorConfig.getName());
+        }
+        return dao.addSystemLocalAuthenticator(
+                authenticatorConfig, IdentityTenantUtil.getTenantId(tenantDomain));
+    }
+
     /**
      * Update a Local Application Authenticator configuration.
      *
@@ -311,8 +329,18 @@ public LocalAuthenticatorConfig updateAuthenticatorAmrValue(LocalAuthenticatorCo
         LocalAuthenticatorConfig existingConfig = resolveExistingSystemLocalAuthenticator(authenticatorConfig.getName(),
                 tenantDomain);
         if (existingConfig == null) {
-            throw buildClientException(AuthenticatorMgtError.ERROR_NOT_FOUND_AUTHENTICATOR,
-                    authenticatorConfig.getName());
+            for (LocalAuthenticatorConfig localAuthenticator : localAuthenticators) {
+                if (localAuthenticator.getName().equals(authenticatorConfig.getName())) {
+                    existingConfig = addSystemDefinedLocalAuthenticator(authenticatorConfig, tenantDomain);
+                    break;
+                }
+            }
+            //calling the add method if the authenticator is not found. If it is not even in the file throw this error
+            if(existingConfig == null){
+                throw buildClientException(AuthenticatorMgtError.ERROR_NOT_FOUND_AUTHENTICATOR,
+                        authenticatorConfig.getName());
+            }
+
         }
         return dao.updateSystemLocalAuthenticatorAmrValue(
                 existingConfig, authenticatorConfig, IdentityTenantUtil.getTenantId(tenantDomain));
@@ -353,19 +381,19 @@ public UserDefinedLocalAuthenticatorConfig getUserDefinedLocalAuthenticator(Stri
                 authenticatorName, IdentityTenantUtil.getTenantId(tenantDomain));
     }
 
-    /**
-     * Retrieve a Local Application Authenticator configuration by name.
-     *
-     * @param authenticatorName   Name of Local Application Authenticator configuration to be deleted.
-     * @param tenantDomain        Tenant domain.
-     * @return Retrieved LocalAuthenticatorConfig.
-     * @throws AuthenticatorMgtException If an error occurs while retrieving the authenticator configuration.
-     */
-    public LocalAuthenticatorConfig getSystemLocalAuthenticator(String authenticatorName, String tenantDomain)
-            throws AuthenticatorMgtException {
-
-        return dao.getSystemLocalAuthenticator(authenticatorName, IdentityTenantUtil.getTenantId(tenantDomain));
-    }
+//    /**
+//     * Retrieve a Local Application Authenticator configuration by name.
+//     *
+//     * @param authenticatorName   Name of Local Application Authenticator configuration to be deleted.
+//     * @param tenantDomain        Tenant domain.
+//     * @return Retrieved LocalAuthenticatorConfig.
+//     * @throws AuthenticatorMgtException If an error occurs while retrieving the authenticator configuration.
+//     */
+//    public LocalAuthenticatorConfig getSystemLocalAuthenticator(String authenticatorName, String tenantDomain)
+//            throws AuthenticatorMgtException {
+//
+//        return dao.getSystemLocalAuthenticator(authenticatorName, IdentityTenantUtil.getTenantId(tenantDomain));
+//    }
 
     /**
      * Check whether any local or federated authenticator configuration exists with the given name.
@@ -411,4 +439,10 @@ private LocalAuthenticatorConfig resolveExistingSystemLocalAuthenticator(String
             String tenantDomain) throws AuthenticatorMgtException{
         return dao.getSystemLocalAuthenticator(authenticatorName, IdentityTenantUtil.getTenantId(tenantDomain));
     }
+
+    private boolean isExistingAuthenticatorNameDB(String authenticatorName, String tenantDomain)
+            throws AuthenticatorMgtException {
+
+        return dao.isExistingAuthenticatorNameDB(authenticatorName, IdentityTenantUtil.getTenantId(tenantDomain));
+    }
 }

components/application-mgt/org.wso2.carbon.identity.application.common/src/main/java/org/wso2/carbon/identity/application/common/cache/AuthenticatorCacheEntry.java

@@ -18,6 +18,7 @@
 
 package org.wso2.carbon.identity.application.common.cache;
 
+import org.wso2.carbon.identity.application.common.model.LocalAuthenticatorConfig;
 import org.wso2.carbon.identity.application.common.model.UserDefinedLocalAuthenticatorConfig;
 import org.wso2.carbon.identity.core.cache.CacheEntry;
 
@@ -28,19 +29,19 @@ public class AuthenticatorCacheEntry extends CacheEntry {
 
     private static final long serialVersionUID = -6234723984328871924L;
 
-    private UserDefinedLocalAuthenticatorConfig authenticatorConfig;
+    private LocalAuthenticatorConfig authenticatorConfig;
 
-    public AuthenticatorCacheEntry(UserDefinedLocalAuthenticatorConfig authenticatorConfig) {
+    public AuthenticatorCacheEntry(LocalAuthenticatorConfig authenticatorConfig) {
 
         this.authenticatorConfig = authenticatorConfig;
     }
 
-    public UserDefinedLocalAuthenticatorConfig getAuthenticatorConfig() {
+    public LocalAuthenticatorConfig getAuthenticatorConfig() {
 
         return authenticatorConfig;
     }
 
-    public void setAuthenticatorConfig(UserDefinedLocalAuthenticatorConfig authenticatorConfig) {
+    public void setAuthenticatorConfig(LocalAuthenticatorConfig authenticatorConfig) {
 
         this.authenticatorConfig = authenticatorConfig;
     }

components/application-mgt/org.wso2.carbon.identity.application.common/src/main/java/org/wso2/carbon/identity/application/common/constant/AuthenticatorMgtSQLConstants.java

@@ -65,6 +65,12 @@ public static class Query {
                 " (:TENANT_ID;, (SELECT ID FROM IDP WHERE IDP.NAME = :IDP_NAME; AND IDP.TENANT_ID = :TENANT_ID;), " +
                 ":NAME;, :IS_ENABLED;, :DEFINED_BY;, :AUTHENTICATION_TYPE;, :DISPLAY_NAME;, " +
                 ":IMAGE_URL;, :DESCRIPTION;)";
+        public static final String ADD_SYSTEM_LOCAL_AUTHENTICATOR_SQL = "INSERT INTO IDP_AUTHENTICATOR " +
+                "(TENANT_ID, IDP_ID, NAME, IS_ENABLED, DEFINED_BY, AMR_VALUE, DISPLAY_NAME) " +
+                "VALUES " +
+                "(:TENANT_ID, " +
+                "(SELECT ID FROM IDP WHERE NAME = :IDP_NAME; AND TENANT_ID = :TENANT_ID;), " +
+                ":NAME;, :IS_ENABLED;, :DEFINED_BY;, :AMR_VALUE;, :DISPLAY_NAME;)";
         public static final String UPDATE_AUTHENTICATOR_SQL = "UPDATE IDP_AUTHENTICATOR SET IS_ENABLED = " +
                 ":IS_ENABLED;, DISPLAY_NAME = :DISPLAY_NAME;, IMAGE_URL = :IMAGE_URL;, DESCRIPTION = :DESCRIPTION;, " +
                 "AMR_VALUE = :AMR_VALUE" +

components/application-mgt/org.wso2.carbon.identity.application.common/src/main/java/org/wso2/carbon/identity/application/common/dao/AuthenticatorManagementDAO.java

@@ -19,6 +19,7 @@
 package org.wso2.carbon.identity.application.common.dao;
 
 import org.wso2.carbon.identity.application.common.exception.AuthenticatorMgtException;
+import org.wso2.carbon.identity.application.common.exception.AuthenticatorMgtServerException;
 import org.wso2.carbon.identity.application.common.model.LocalAuthenticatorConfig;
 import org.wso2.carbon.identity.application.common.model.UserDefinedLocalAuthenticatorConfig;
 
@@ -115,4 +116,22 @@ void deleteUserDefinedLocalAuthenticator(String authenticatorConfigName, UserDef
      * @throws AuthenticatorMgtException If an error occurs while checking the existence of the authenticator.
      */
     boolean isExistingAuthenticatorName(String authenticatorName, int tenantId) throws AuthenticatorMgtException;
+
+    /**
+     * Add a new system local authenticator configuration.
+     *
+     * @param authenticatorConfig   Local application authenticator configuration.
+     * @param tenantId              Tenant Id.
+     * @return Created LocalAuthenticatorConfig.
+     */
+    LocalAuthenticatorConfig addSystemLocalAuthenticator(LocalAuthenticatorConfig authenticatorConfig, int tenantId) throws AuthenticatorMgtException;
+
+    /**
+     * Update a system local authenticator configuration.
+     *
+     * @param authenticatorName   Name of the authenticator
+     * @param tenantId                      Tenant Id.
+     * @return Updated LocalAuthenticatorConfig.
+     */
+    boolean isExistingAuthenticatorNameDB(String authenticatorName, int tenantId) throws AuthenticatorMgtException;
 }

components/application-mgt/org.wso2.carbon.identity.application.common/src/main/java/org/wso2/carbon/identity/application/common/dao/impl/AuthenticatorManagementDAOImpl.java

@@ -137,25 +137,29 @@ private LocalAuthenticatorConfig getSystemLocalAuthenticatorByName(String authen
             throws TransactionException {
 
         NamedJdbcTemplate jdbcTemplate = new NamedJdbcTemplate(IdentityDatabaseUtil.getDataSource());
-        LocalAuthenticatorConfig config = jdbcTemplate.withTransaction(template ->
+        LocalAuthenticatorConfigDaoModel configDaoModel = jdbcTemplate.withTransaction(template ->
             template.fetchSingleRecord(Query.GET_USER_DEFINED_LOCAL_AUTHENTICATOR_SQL,
                 (resultSet, rowNumber) -> {
                     LocalAuthenticatorConfig localAuthenticatorConfig = new LocalAuthenticatorConfig();
                     localAuthenticatorConfig.setName(resultSet.getString(Column.NAME));
                     localAuthenticatorConfig.setDisplayName(resultSet.getString(Column.DISPLAY_NAME));
                     localAuthenticatorConfig.setAmrValue(resultSet.getString(Column.AMR_VALUE));
                     localAuthenticatorConfig.setEnabled(resultSet.getString(Column.IS_ENABLED).equals(IS_TRUE_VALUE));
-                    return localAuthenticatorConfig;
+                    return new LocalAuthenticatorConfigDaoModel(resultSet.getInt(Column.ID), localAuthenticatorConfig);
                 },
                 statement -> {
                     statement.setString(Column.NAME, authenticatorConfigName);
                     statement.setInt(Column.TENANT_ID, tenantId);
                     statement.setString(Column.DEFINED_BY, DefinedByType.SYSTEM.toString());
+                    statement.setString(Column.IDP_NAME, LOCAL_IDP_NAME);
                 }));
 
-        if (config == null) {
+        if (configDaoModel == null) {
             return null;
         }
+
+        LocalAuthenticatorConfig config = configDaoModel.getConfig();
+        config.setProperties(getAuthenticatorProperties(configDaoModel.getEntryId(), tenantId));
         return config;
     }
 
@@ -258,6 +262,53 @@ public boolean isExistingAuthenticatorName(String authenticatorName, int tenantI
         }
     }
 
+    @Override
+    public LocalAuthenticatorConfig addSystemLocalAuthenticator(LocalAuthenticatorConfig authenticatorConfig, int tenantId) throws AuthenticatorMgtServerException {
+        NamedJdbcTemplate jdbcTemplate = new NamedJdbcTemplate(IdentityDatabaseUtil.getDataSource());
+        try {
+            int authenticatorConfigID = jdbcTemplate.withTransaction(template ->
+                template.executeInsert(Query.ADD_SYSTEM_LOCAL_AUTHENTICATOR_SQL,
+                    statement -> {
+                        statement.setString(Column.NAME, authenticatorConfig.getName());
+                        statement.setString(Column.DISPLAY_NAME, authenticatorConfig.getDisplayName());
+                        statement.setString(Column.DEFINED_BY, DefinedByType.SYSTEM.toString());
+                        statement.setString(Column.AMR_VALUE, authenticatorConfig.getAmrValue());
+                        statement.setString(Column.IS_ENABLED,
+                                authenticatorConfig.isEnabled() ? IS_TRUE_VALUE : IS_FALSE_VALUE);
+                        statement.setString(Column.AUTHENTICATION_TYPE, "IDENTIFICATION");
+                        statement.setString(Column.IDP_NAME, LOCAL_IDP_NAME);
+                        statement.setInt(Column.TENANT_ID, tenantId);
+                    }, null, true));
+
+            if (authenticatorConfigID == 0) {
+                authenticatorConfigID = getAuthenticatorEntryId(authenticatorConfig.getName(), tenantId);
+            }
+            addAuthenticatorProperty(authenticatorConfigID, authenticatorConfig.getProperties(), tenantId);
+
+            return getSystemLocalAuthenticatorByName(authenticatorConfig.getName(), tenantId);
+        } catch (TransactionException e) {
+            throw buildServerException(AuthenticatorMgtError.ERROR_WHILE_ADDING_AUTHENTICATOR, e);
+        }
+    }
+
+    @Override
+    public boolean isExistingAuthenticatorNameDB(String authenticatorName, int tenantId) throws AuthenticatorMgtException {
+        NamedJdbcTemplate jdbcTemplate = new NamedJdbcTemplate(IdentityDatabaseUtil.getDataSource());
+        try {
+            ResultSet results = jdbcTemplate.withTransaction(template ->
+                template.fetchSingleRecord(Query.IS_AUTHENTICATOR_EXISTS_BY_NAME_SQL,
+                        (resultSet, rowNumber) -> resultSet,
+                        statement -> {
+                            statement.setString(Column.NAME, authenticatorName);
+                            statement.setInt(Column.TENANT_ID, tenantId);
+                        }));
+            return results != null;
+        } catch (TransactionException e) {
+            throw buildServerException(AuthenticatorMgtError.ERROR_WHILE_CHECKING_FOR_EXISTING_AUTHENTICATOR_BY_NAME, e,
+                    authenticatorName);
+        }
+    }
+
     private UserDefinedLocalAuthenticatorConfig getUserDefinedLocalAuthenticatorByName(String authenticatorConfigName,
             int tenantId) throws TransactionException {
 
@@ -375,4 +426,24 @@ public UserDefinedLocalAuthenticatorConfig getConfig() {
             return config;
         }
     }
+
+    private static class LocalAuthenticatorConfigDaoModel{
+
+        private final int entryId;
+        private final LocalAuthenticatorConfig config;
+
+
+        private LocalAuthenticatorConfigDaoModel(int entryId, LocalAuthenticatorConfig config){
+            this.entryId = entryId;
+            this.config = config;
+        }
+
+        public int getEntryId() {
+            return entryId;
+        }
+
+        public LocalAuthenticatorConfig getConfig() {
+            return config;
+        }
+    }
 }

components/application-mgt/org.wso2.carbon.identity.application.common/src/main/java/org/wso2/carbon/identity/application/common/dao/impl/AuthenticatorManagementFacade.java

@@ -240,6 +240,29 @@ public boolean isExistingAuthenticatorName(String authenticatorName, int tenantI
         }
     }
 
+    @Override
+    public LocalAuthenticatorConfig addSystemLocalAuthenticator(LocalAuthenticatorConfig authenticatorConfig, int tenantId) throws AuthenticatorMgtException {
+        NamedJdbcTemplate jdbcTemplate = new NamedJdbcTemplate(IdentityDatabaseUtil.getDataSource());
+        try {
+            return jdbcTemplate.withTransaction(template -> dao.addSystemLocalAuthenticator(authenticatorConfig, tenantId));
+        } catch (TransactionException e) {
+            throw handleAuthenticatorMgtException(AuthenticatorMgtError.ERROR_WHILE_ADDING_AUTHENTICATOR, e,
+                    authenticatorConfig.getName());
+        }
+    }
+
+    @Override
+    public boolean isExistingAuthenticatorNameDB(String authenticatorName, int tenantId) throws AuthenticatorMgtException {
+        NamedJdbcTemplate jdbcTemplate = new NamedJdbcTemplate(IdentityDatabaseUtil.getDataSource());
+        try {
+            return jdbcTemplate.withTransaction(
+                    template -> dao.isExistingAuthenticatorNameDB(authenticatorName, tenantId));
+        } catch (TransactionException e) {
+            throw handleAuthenticatorMgtException(AuthenticatorMgtError
+                            .ERROR_WHILE_CHECKING_FOR_EXISTING_AUTHENTICATOR_BY_NAME, e, authenticatorName);
+        }
+    }
+
     /**
      * Handle the authenticator management client exception.
      *