Z-Archive » Maybank Projects » M2U UPASS Project

/**

 * Copyright (c) 2010 Penril Datability (M) Sdn Bhd All rights reserved.

 *

 * This software is copyrighted. Under the copyright laws, this software

 * may not be copied, in whole or in part, without prior written consent

 * of Penril Datability (M) Sdn Bhd or its assignees. This software is

 * provided under the terms of a license between Penril Datability (M)

 * Sdn Bhd and the recipient, and its use is subject to the terms of that

 * license.

 */

package my.com.upass.services;

import java.util.Calendar;

import java.util.Date;

import my.com.upass.ConfigBean;

import my.com.upass.Constants;

import my.com.upass.UPassControllerV2;

import my.com.upass.UPassParameters;

import my.com.upass.dao.DAOFactoryProvider;

import my.com.upass.dao.UserDAO;

import my.com.upass.factory.UPassFactory;

import my.com.upass.pojo.UserBean;

import my.com.upass.spassword.PasswordController;

/**

 * PROGRAMMER: Danniell

 * CHANGE-NO:

 * TASK-NO:

 * DATE CREATED: Dec 28, 2011

 * TAG AS:

 * REASON(S):

 * MODIFICATION:

 */

/**

 * <Class description>

 */

public class VerifyStaticPasswordService

{

        private UPassControllerV2 upc;

        public VerifyStaticPasswordService(UPassControllerV2 upc)

        {

                this.upc = upc;

        }

        /**

         * Verify password validity only

         * @param userAlias

         * @param password

         * @param chkUserType

         * @param userType

         * @return

         */

        public int verifyStaticPassword (String userAlias, String password,

                        boolean chkUserType, int userType)

        {

                return verifyUserCredetial(userAlias, password, chkUserType, userType, false);

        }

        /**

         * Verify user dormant period and password validity

         * @param userAlias

         * @param password

         * @param chkUserType

         * @param userType

         * @return

         */

        public int login(String userAlias, String password,

                        boolean chkUserType, int userType) {

                return verifyUserCredetial(userAlias, password, chkUserType, userType, true);

        }

        /**

         * This method will do dormant verification before verify password.

         * The logic is duplicated from verifyStaticPassword.

         * @param userAlias

         * @param password

         * @param chkUserType

         * @param userType

         * @return

         */

        public int verifyUserCredetial(String userAlias, String password,

                        boolean chkUserType, int userType, boolean dormantCheck) {

                int rc = Constants.ERR_SYSTEM_NOT_READY;

                if (userAlias == null || password == null)

                {

                        return Constants.ERR_INVALID_INPUT;

                }

                try

                {

                        UserDAO userDao = DAOFactoryProvider.getDAOFactory ().getUserDAO ();

                        UserBean userBean = userDao.getUserFromStore (userAlias);

                        if (userBean == null)

                        {

                                return Constants.ERR_USERALIAS_NOT_FOUND;

                        }

                        // verify user state, must be active (not inactive|locked|deleted)

                        switch (userBean.getUstate ())

                        {

                                case (Constants.UID_STATE_ACTIVE):

                                        break;

                                case (Constants.UID_STATE_TMP_LOCKED):

                                        Date now = new Date ();

                                        if (userBean.getUdateLockedTo ().after (now))

                                        {

                                                return Constants.ERR_INVALID_STATE;

                                        }

                                        break;

                                default:

                                        return Constants.ERR_INVALID_STATE;

                        }

                        // verify user type

                        if (chkUserType && userBean.getUserType () != userType)

                        {

                                return Constants.ERR_APP_SERV_NOT_PERMITTED;

                        }

                        PasswordController pc = (PasswordController)UPassFactory.getPasswordController (

                                        userBean, upc.getConfigurationsMap ());

                        ConfigBean configBean = pc.getConfigBean ();

                        userBean = (UserBean) pc.getUpdatedObject ();

                        //verify user dormant period

                        if ( userBean.getPdateLastUsed() != null && dormantCheck && pc.isUserDormant()) {

                                rc = Constants.ERR_USER_DORMANT; 

                                Calendar deactivateDate = Calendar.getInstance();

                                deactivateDate.add(Calendar.DATE,+configBean.getUserDeactivatePeriod());

                                userBean.setUstate (Constants.UID_STATE_TMP_LOCKED);

                                userBean.setUdateLockedFrom ((new Date ()));

                                userBean.setUdateLockedTo ((deactivateDate.getTime()));

                                userBean.setUdateLastLocked ((new Date ()));

                        } else {

                                // verify user password

                                rc = pc.VerifyPassword (password);

                                // suspend if exceeded max retries

                                if (rc == Constants.ERR_EXCEED_MAX_TRIES

                                                && (userBean.getUserType () != Constants.UTYPE_STATE_USER))

                                {

                                        Calendar expiryDate = Calendar.getInstance ();

                                        expiryDate.add (Calendar.MINUTE,

                                                        UPassParameters.SUPERVISOR_ID_SUSPEND);

//                                        Map<String, String> parametersMap = upc.getConfigurationsMap ()

//                                                        .get (userBean.getUcustomerType ());

//                                        UPassParameters._MAX_ERROR = Integer

//                                                        .parseInt (parametersMap.get (

//                                                                        "PASSWORD_MAX_ERROR").toString ());

                                        userBean.setUstate (Constants.UID_STATE_TMP_LOCKED);

                                        userBean.setPerrorCount (configBean.getPasswordMaxTryError() - 1);

                                        userBean.setUdateLockedFrom ((new Date ()));

                                        userBean.setUdateLockedTo (expiryDate.getTime ());

                                        userBean.setUdateLastLocked ((new Date ()));

                                }

                        }

                        // update database

                        boolean lrc = userDao.updateUserToStore (userBean);

                        if (!lrc)

                        {

                                rc = Constants.ERR_SYSTEM_NOT_READY;

                        }

                }

                catch (Exception e)

                {

                        e.printStackTrace ();

                        return Constants.ERR_SYSTEM_NOT_READY;

                }

                return rc;        

        }

}