Java Code Examples for org.camunda.bpm.engine.identity.User#setPassword()
The following examples show how to use
org.camunda.bpm.engine.identity.User#setPassword() .
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example 1
Source File: UserResourceImpl.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
public void updateCredentials(UserCredentialsDto account) { ensureNotReadOnly(); Authentication currentAuthentication = identityService.getCurrentAuthentication(); if(currentAuthentication != null && currentAuthentication.getUserId() != null) { if(!identityService.checkPassword(currentAuthentication.getUserId(), account.getAuthenticatedUserPassword())) { throw new InvalidRequestException(Status.BAD_REQUEST, "The given authenticated user password is not valid."); } } User dbUser = findUserObject(); if(dbUser == null) { throw new InvalidRequestException(Status.NOT_FOUND, "User with id " + resourceId + " does not exist"); } dbUser.setPassword(account.getPassword()); identityService.saveUser(dbUser); }
Example 2
Source File: IdentityServiceTest.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
@Test @WatchLogger(loggerNames = {INDENTITY_LOGGER}, level = "INFO") public void testUnsuccessfulLoginAfterFailureWithoutDelay() { // given User user = identityService.newUser("johndoe"); user.setPassword("xxx"); identityService.saveUser(user); Date now = ClockUtil.getCurrentTime(); ClockUtil.setCurrentTime(now); assertFalse(identityService.checkPassword("johndoe", "invalid pwd")); ClockUtil.setCurrentTime(DateUtils.addSeconds(now, 1)); Date expectedLockExpitation = DateUtils.addSeconds(now, 3); // when try again before exprTime assertFalse(identityService.checkPassword("johndoe", "invalid pwd")); // then assertThat(loggingRule.getFilteredLog(INDENTITY_LOGGER, "The lock will expire at " + expectedLockExpitation).size()).isEqualTo(1); }
Example 3
Source File: LoginAttemptsTest.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
@Test public void testUsuccessfulAttemptsResultInLockedUser() throws ParseException { // given User user = identityService.newUser("johndoe"); user.setPassword("xxx"); identityService.saveUser(user); Date now = sdf.parse("2000-01-24T13:00:00"); ClockUtil.setCurrentTime(now); // when for (int i = 0; i <= 6; i++) { assertThat(identityService.checkPassword("johndoe", "invalid pwd")).isFalse(); now = DateUtils.addSeconds(now, 5); ClockUtil.setCurrentTime(now); } // then assertThat(loggingRule.getFilteredLog(INDENTITY_LOGGER, "The user with id 'johndoe' is permanently locked.").size()).isEqualTo(1); }
Example 4
Source File: IdentityServiceTest.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
@Test @WatchLogger(loggerNames = {INDENTITY_LOGGER}, level = "INFO") public void testUsuccessfulAttemptsResultInBlockedUser() throws ParseException { // given User user = identityService.newUser("johndoe"); user.setPassword("xxx"); identityService.saveUser(user); Date now = sdf.parse("2000-01-24T13:00:00"); ClockUtil.setCurrentTime(now); // when for (int i = 0; i < 11; i++) { assertFalse(identityService.checkPassword("johndoe", "invalid pwd")); now = DateUtils.addMinutes(now, 1); ClockUtil.setCurrentTime(now); } // then assertThat(loggingRule.getFilteredLog(INDENTITY_LOGGER, "The user with id 'johndoe' is permanently locked.").size()).isEqualTo(1); }
Example 5
Source File: UserRestServiceImpl.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
public void createUser(UserDto userDto) { final IdentityService identityService = getIdentityService(); if(identityService.isReadOnly()) { throw new InvalidRequestException(Status.FORBIDDEN, "Identity service implementation is read-only."); } UserProfileDto profile = userDto.getProfile(); if(profile == null || profile.getId() == null) { throw new InvalidRequestException(Status.BAD_REQUEST, "request object must provide profile information with valid id."); } User newUser = identityService.newUser(profile.getId()); profile.update(newUser); if(userDto.getCredentials() != null) { newUser.setPassword(userDto.getCredentials().getPassword()); } identityService.saveUser(newUser); }
Example 6
Source File: PasswordHashingTest.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
@Test public void ensurePasswordIsCorrectlyHashedWithSHA512() { // given processEngineConfiguration.setSaltGenerator(new MyConstantSaltGenerator("12345678910")); User user = identityService.newUser(USER_NAME); user.setPassword(PASSWORD); identityService.saveUser(user); // when user = identityService.createUserQuery().userId(USER_NAME).singleResult(); // then // obtain the expected value on the command line like so: echo -n password12345678910 | openssl dgst -binary -sha512 | openssl base64 assertThat(user.getPassword(), is("{SHA-512}sM1U4nCzoDbdUugvJ7dJ6rLc7t1ZPPsnAbUpTqi5nXCYp7PTZCHExuzjoxLLYoUK" + "Gd637jKqT8d9tpsZs3K5+g==")); }
Example 7
Source File: PasswordHashingTest.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
@Test public void ensurePasswordIsCorrectlyHashedWithSHA1() { // given setDefaultEncryptor(new ShaHashDigest()); processEngineConfiguration.setSaltGenerator(new MyConstantSaltGenerator("12345678910")); User user = identityService.newUser(USER_NAME); user.setPassword(PASSWORD); identityService.saveUser(user); // when user = identityService.createUserQuery().userId(USER_NAME).singleResult(); // then // obtain the expected value on the command line like so: echo -n password12345678910 | openssl dgst -binary -sha1 | openssl base64 assertThat(user.getPassword(), is("{SHA}n3fE9/7XOmgD3BkeJlC+JLyb/Qg=")); }
Example 8
Source File: DeployUserWithoutSaltForPasswordHashingScenario.java From camunda-bpm-platform with Apache License 2.0 | 6 votes |
@DescribesScenario("initUser") @Times(1) public static ScenarioSetup initUser() { return new ScenarioSetup() { public void execute(ProcessEngine engine, String scenarioName) { // given IdentityService identityService = engine.getIdentityService(); User user = identityService.newUser(USER_NAME); user.setPassword(USER_PWD); // when identityService.saveUser(user); } }; }
Example 9
Source File: PasswordHashingTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void enteringTheSamePasswordShouldProduceTwoDifferentEncryptedPassword() { // given User user1 = identityService.newUser(USER_NAME); user1.setPassword(PASSWORD); identityService.saveUser(user1); // when User user2 = identityService.newUser("kermit"); user2.setPassword(PASSWORD); identityService.saveUser(user2); // then assertThat(user1.getPassword(), is(not(user2.getPassword()))); }
Example 10
Source File: PasswordHashingTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void saltHashingOnHashedPasswordWithoutSaltThrowsNoError() { // given processEngineConfiguration.setSaltGenerator(new MyConstantSaltGenerator(null)); User user = identityService.newUser(USER_NAME); user.setPassword(PASSWORD); // when identityService.saveUser(user); // then assertThat(identityService.checkPassword(USER_NAME, PASSWORD), is(true)); }
Example 11
Source File: PasswordHashingTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void plugInCustomPasswordEncryptor() { // given setEncryptors(new MyCustomPasswordEncryptor(PASSWORD, ALGORITHM_NAME), Collections.<PasswordEncryptor>emptyList()); User user = identityService.newUser(USER_NAME); user.setPassword(PASSWORD); identityService.saveUser(user); // when user = identityService.createUserQuery().userId(USER_NAME).singleResult(); // then assertThat(user.getPassword(), is("{" + ALGORITHM_NAME + "}xxx")); }
Example 12
Source File: CustomPasswordPolicyTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void testCustomPasswordPolicyWithNonCompliantPassword() { thrown.expect(ProcessEngineException.class); User user = identityService.newUser("user"); user.setPassword("weakpassword"); identityService.saveUser(user); thrown.expectMessage("Password does not match policy"); assertThat(identityService.createUserQuery().userId(user.getId()).count(), is(0L)); }
Example 13
Source File: DefaultPasswordPolicyTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void shouldUpdateUserDetailsWithoutPolicyCheck() { // given // first, create a new user User user = identityService.newUser("johndoe"); user.setFirstName("John"); user.setLastName("Doe"); user.setEmail("john@doe.com"); user.setPassword("Passw0rds!"); identityService.saveUser(user); // when // fetch and update the user user = identityService.createUserQuery().userId("johndoe").singleResult(); user.setEmail("jane@donnel.com"); user.setFirstName("Jane"); user.setLastName("Donnel"); identityService.saveUser(user); // then user = identityService.createUserQuery().userId("johndoe").singleResult(); assertThat(user.getFirstName(), is("Jane")); assertThat(user.getLastName(), is("Donnel")); assertThat(user.getEmail(), is("jane@donnel.com")); assertThat(identityService.checkPassword("johndoe", "Passw0rds!"), is(true)); identityService.deleteUser(user.getId()); }
Example 14
Source File: IdentityServiceTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void testCheckPassword() { // store user with password User user = identityService.newUser("secureUser"); user.setPassword("s3cret"); identityService.saveUser(user); assertTrue(identityService.checkPassword(user.getId(), "s3cret")); assertFalse(identityService.checkPassword(user.getId(), "wrong")); identityService.deleteUser(user.getId()); }
Example 15
Source File: IdentityServiceTest.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@Test public void testAuthentication() { User user = identityService.newUser("johndoe"); user.setPassword("xxx"); identityService.saveUser(user); assertTrue(identityService.checkPassword("johndoe", "xxx")); assertFalse(identityService.checkPassword("johndoe", "invalid pwd")); identityService.deleteUser("johndoe"); }
Example 16
Source File: UserLockExpTimeScenario.java From camunda-bpm-platform with Apache License 2.0 | 5 votes |
@DescribesScenario("initUserLockExpirationTime") @Times(1) public static ScenarioSetup initUserLockExpirationTime() { return new ScenarioSetup() { @Override public void execute(ProcessEngine processEngine, String s) { final IdentityService identityService = processEngine.getIdentityService(); User user = identityService.newUser(USER_ID); user.setPassword(PASSWORD); identityService.saveUser(user); ((ProcessEngineConfigurationImpl) processEngine.getProcessEngineConfiguration()).getCommandExecutorTxRequired().execute(new Command<Void>() { @Override public Void execute(CommandContext context) { IdentityInfoManager identityInfoManager = Context.getCommandContext() .getSession(IdentityInfoManager.class); UserEntity userEntity = (UserEntity) identityService.createUserQuery() .userId(USER_ID) .singleResult(); identityInfoManager.updateUserLock(userEntity, 10, TIMESTAMP); return null; } }); } }; }
Example 17
Source File: DemoDataGenerator.java From camunda-bpm-elasticsearch with Apache License 2.0 | 5 votes |
public void afterPropertiesSet() throws Exception { System.out.println("Generating demo data"); scheduleInstanceStart(); // ensure admin user exists IdentityService identityService = processEngine.getIdentityService(); User user = identityService.createUserQuery().userId("demo").singleResult(); if(user == null) { User newUser = identityService.newUser("demo"); newUser.setPassword("demo"); identityService.saveUser(newUser); System.out.println("Created used 'demo', password 'demo'"); AuthorizationService authorizationService = processEngine.getAuthorizationService(); // create group if(identityService.createGroupQuery().groupId(Groups.CAMUNDA_ADMIN).count() == 0) { Group camundaAdminGroup = identityService.newGroup(Groups.CAMUNDA_ADMIN); camundaAdminGroup.setName("camunda BPM Administrators"); camundaAdminGroup.setType(Groups.GROUP_TYPE_SYSTEM); identityService.saveGroup(camundaAdminGroup); } // create ADMIN authorizations on all built-in resources for (Resource resource : Resources.values()) { if(authorizationService.createAuthorizationQuery().groupIdIn(Groups.CAMUNDA_ADMIN).resourceType(resource).resourceId(ANY).count() == 0) { AuthorizationEntity userAdminAuth = new AuthorizationEntity(AUTH_TYPE_GRANT); userAdminAuth.setGroupId(Groups.CAMUNDA_ADMIN); userAdminAuth.setResource(resource); userAdminAuth.setResourceId(ANY); userAdminAuth.addPermission(ALL); authorizationService.saveAuthorization(userAdminAuth); } } processEngine.getIdentityService() .createMembership("demo", Groups.CAMUNDA_ADMIN); } }
Example 18
Source File: DefaultUserLifecycleBean.java From Showcase with Apache License 2.0 | 5 votes |
private User createDefaultUser(String username, String password) { User user = identityService.newUser(username); user.setPassword(password); user.setFirstName("Educama"); user.setLastName("User"); identityService.saveUser(user); return user; }
Example 19
Source File: Application.java From camunda-spring-boot-amqp-microservice-cloud-example with Apache License 2.0 | 4 votes |
public static void createDefaultUser(ProcessEngine engine) { // and add default user to Camunda to be ready-to-go if (engine.getIdentityService().createUserQuery().userId("demo").count() == 0) { User user = engine.getIdentityService().newUser("demo"); user.setFirstName("Demo"); user.setLastName("Demo"); user.setPassword("demo"); user.setEmail("demo@camunda.org"); engine.getIdentityService().saveUser(user); Group group = engine.getIdentityService().newGroup(Groups.CAMUNDA_ADMIN); group.setName("Administrators"); group.setType(Groups.GROUP_TYPE_SYSTEM); engine.getIdentityService().saveGroup(group); for (Resource resource : Resources.values()) { Authorization auth = engine.getAuthorizationService().createNewAuthorization(AUTH_TYPE_GRANT); auth.setGroupId(Groups.CAMUNDA_ADMIN); auth.addPermission(ALL); auth.setResourceId(ANY); auth.setResource(resource); engine.getAuthorizationService().saveAuthorization(auth); } engine.getIdentityService().createMembership("demo", Groups.CAMUNDA_ADMIN); } // create default "all tasks" filter if (engine.getFilterService().createFilterQuery().filterName("Alle").count() == 0) { Map<String, Object> filterProperties = new HashMap<String, Object>(); filterProperties.put("description", "Alle Aufgaben"); filterProperties.put("priority", 10); Filter filter = engine.getFilterService().newTaskFilter() // .setName("Alle") // .setProperties(filterProperties)// .setOwner("demo")// .setQuery(engine.getTaskService().createTaskQuery()); engine.getFilterService().saveFilter(filter); // and authorize demo user for it if (engine.getAuthorizationService().createAuthorizationQuery().resourceType(FILTER).resourceId(filter.getId()) // .userIdIn("demo").count() == 0) { Authorization managementGroupFilterRead = engine.getAuthorizationService().createNewAuthorization(Authorization.AUTH_TYPE_GRANT); managementGroupFilterRead.setResource(FILTER); managementGroupFilterRead.setResourceId(filter.getId()); managementGroupFilterRead.addPermission(ALL); managementGroupFilterRead.setUserId("demo"); engine.getAuthorizationService().saveAuthorization(managementGroupFilterRead); } } }
Example 20
Source File: IdentityServiceTest.java From camunda-bpm-platform with Apache License 2.0 | 4 votes |
@Test public void testUpdatePassword() { // store user with password User user = identityService.newUser("secureUser"); user.setPassword("s3cret"); identityService.saveUser(user); assertTrue(identityService.checkPassword(user.getId(), "s3cret")); user.setPassword("new-password"); identityService.saveUser(user); assertTrue(identityService.checkPassword(user.getId(), "new-password")); identityService.deleteUser(user.getId()); }