Authentication logging

Author: noobandy

pom.xml

@@ -174,6 +174,12 @@
 			<version>5.1.22</version>
 		</dependency>
 		<!-- Hibernate -->
+		<!-- <dependency>
+			<groupId>cglib</groupId>
+			<artifactId>cglib</artifactId>
+			<version>3.1</version>
+		</dependency>
+ -->
 		<dependency>
 			<groupId>org.hibernate</groupId>
 			<artifactId>hibernate-entitymanager</artifactId>

src/main/java/in/anandm/apps/template/application/impl/AuthenticationFailureListener.java

@@ -0,0 +1,58 @@
+/**
+ * 
+ */
+package in.anandm.apps.template.application.impl;
+
+import in.anandm.apps.template.domain.model.user.FailedLogin;
+import in.anandm.apps.template.domain.model.user.HostAddress;
+import in.anandm.apps.template.domain.model.user.IFailedLoginRepository;
+import in.anandm.apps.template.domain.model.user.IUserRepository;
+import in.anandm.apps.template.domain.model.user.User;
+
+import javax.servlet.http.HttpServletRequest;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationListener;
+import org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.stereotype.Component;
+import org.springframework.transaction.annotation.Transactional;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+/**
+ * @author anandm
+ *
+ */
+@Component
+public class AuthenticationFailureListener implements ApplicationListener<AuthenticationFailureBadCredentialsEvent> {
+
+	@Autowired
+	private IUserRepository userRepository;
+	@Autowired
+	private IFailedLoginRepository failedLoginRepository;
+
+	@Transactional
+	@Override
+	public void onApplicationEvent(AuthenticationFailureBadCredentialsEvent event) {
+
+		HttpServletRequest request = ((ServletRequestAttributes)RequestContextHolder.currentRequestAttributes())
+				.getRequest(); 
+		String ipAddress = request.getRemoteAddr();
+		String userId = "";
+		Object principal = event.getAuthentication().getPrincipal();
+		if(principal instanceof String){
+			userId = (String) principal;
+		}else{
+			UserDetails userDetails = (UserDetails) principal;
+			userId = userDetails.getUsername();
+		}
+
+		User user = userRepository.getUserByUserId(userId);
+
+		if(user != null){
+			failedLoginRepository.saveFailedLogin(new FailedLogin(event.getTimestamp(), new HostAddress(ipAddress), user));
+		}
+
+	}
+}

src/main/java/in/anandm/apps/template/application/impl/AutheticationSuccessListener.java

@@ -0,0 +1,63 @@
+/**
+ * 
+ */
+package in.anandm.apps.template.application.impl;
+
+import in.anandm.apps.template.application.vo.CustomUserDetails;
+import in.anandm.apps.template.domain.model.user.HostAddress;
+import in.anandm.apps.template.domain.model.user.ISuccessfullLoginRepository;
+import in.anandm.apps.template.domain.model.user.IUserRepository;
+import in.anandm.apps.template.domain.model.user.IUserSessionRepository;
+import in.anandm.apps.template.domain.model.user.SuccessfullLogin;
+import in.anandm.apps.template.domain.model.user.User;
+import in.anandm.apps.template.domain.model.user.UserSession;
+
+import javax.servlet.http.HttpServletRequest;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationListener;
+import org.springframework.security.authentication.event.InteractiveAuthenticationSuccessEvent;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Component;
+import org.springframework.transaction.annotation.Transactional;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+/**
+ * @author anandm
+ *
+ */
+@Component
+public class AutheticationSuccessListener implements ApplicationListener<InteractiveAuthenticationSuccessEvent> {
+
+	@Autowired
+	private IUserRepository userRepository;
+	@Autowired
+	private ISuccessfullLoginRepository successfullLoginRepository;
+	@Autowired
+	private IUserSessionRepository userSessionRepository;
+
+	@Transactional
+	@Override
+	public void onApplicationEvent(InteractiveAuthenticationSuccessEvent event) {
+		HttpServletRequest request = ((ServletRequestAttributes)RequestContextHolder.currentRequestAttributes())
+				.getRequest(); 
+		String ipAddress = request.getRemoteAddr();
+		String userId = "";
+		Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();
+
+		if(principal instanceof String) {
+			userId = (String) principal;
+		}else{
+			CustomUserDetails userDetails = (CustomUserDetails) principal;
+			userId = userDetails.getUsername();
+		}
+
+		User user = userRepository.getUserByUserId(userId);
+
+		successfullLoginRepository.saveSuccessfullLogin(new SuccessfullLogin(event.getTimestamp(), new HostAddress(ipAddress), user));
+		
+		userSessionRepository.saveUserSession(new UserSession(RequestContextHolder.currentRequestAttributes().getSessionId(),event.getTimestamp(), new HostAddress(ipAddress), user));
+	}
+
+}

src/main/java/in/anandm/apps/template/application/impl/SessionDestroyedEventListener.java

@@ -0,0 +1,35 @@
+/**
+ * 
+ */
+package in.anandm.apps.template.application.impl;
+
+import in.anandm.apps.template.domain.model.user.IUserSessionRepository;
+import in.anandm.apps.template.domain.model.user.UserSession;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationListener;
+import org.springframework.security.core.session.SessionDestroyedEvent;
+import org.springframework.stereotype.Component;
+import org.springframework.transaction.annotation.Transactional;
+
+/**
+ * @author anandm
+ *
+ */
+@Component
+public class SessionDestroyedEventListener implements ApplicationListener<SessionDestroyedEvent> {
+
+	@Autowired
+	private IUserSessionRepository userSessionRepository;
+
+	@Transactional
+	@Override
+	public void onApplicationEvent(SessionDestroyedEvent event) {
+		UserSession userSession = userSessionRepository.getUserSessionBySessionId(event.getId());
+		if(userSession != null){
+			userSession.endSession();
+			userSessionRepository.saveUserSession(userSession);
+		}		
+	}
+
+}

src/main/java/in/anandm/apps/template/domain/model/user/FailedLoginAttempt.java renamed to src/main/java/in/anandm/apps/template/domain/model/user/FailedLogin.java

@@ -16,7 +16,7 @@
  *
  */
 @Entity
-public class FailedLoginAttempt {
+public class FailedLogin {
 
 	private Long failedOn;
 
@@ -27,7 +27,7 @@ public class FailedLoginAttempt {
 
 
 
-	public FailedLoginAttempt(Long failedOn, HostAddress hostAddress,User
+	public FailedLogin(Long failedOn, HostAddress hostAddress,User
 			 user) {
 		super();
 		this.failedOn = failedOn;
@@ -66,7 +66,7 @@ public Long getId() {
 	private Long id;
 
 
-	FailedLoginAttempt() {
+	FailedLogin() {
 		super();
 		// TODO Auto-generated constructor stub
 	}

src/main/java/in/anandm/apps/template/domain/model/user/HostAddress.java

@@ -29,5 +29,15 @@ public HostAddress(String ip) {
 	public String getIp() {
 		return ip;
 	}
+
+	/**
+	 * 
+	 */
+	HostAddress() {
+		super();
+		
+	}
+	
+	
 
 }

src/main/java/in/anandm/apps/template/domain/model/user/IFailedLoginRepository.java

@@ -0,0 +1,17 @@
+/**
+ * 
+ */
+package in.anandm.apps.template.domain.model.user;
+
+import java.util.List;
+
+/**
+ * @author anandm
+ *
+ */
+public interface IFailedLoginRepository {
+
+	void saveFailedLogin(FailedLogin failedLogin);
+	
+	List<FailedLogin> getFailedLoginofUserWithId(String userId);
+}

src/main/java/in/anandm/apps/template/domain/model/user/ISuccessfullLoginRepository.java

@@ -0,0 +1,17 @@
+/**
+ * 
+ */
+package in.anandm.apps.template.domain.model.user;
+
+import java.util.List;
+
+/**
+ * @author anandm
+ *
+ */
+public interface ISuccessfullLoginRepository {
+
+	void saveSuccessfullLogin(SuccessfullLogin successfullLogin);
+	
+	List<SuccessfullLogin> getSuccessfullLoginofUserWithId(String userId);
+}

src/main/java/in/anandm/apps/template/domain/model/user/IUserRepository.java

@@ -13,8 +13,8 @@
  */
 public interface IUserRepository {
 
-	void addUser(User user);
+	void saveUser(User user);
 	User getUserByUserId(String userId);
-	
+
 	DataTable<User> getDataTable(Map<String, String> params);
 }

src/main/java/in/anandm/apps/template/domain/model/user/IUserSessionRepository.java

@@ -0,0 +1,19 @@
+/**
+ * 
+ */
+package in.anandm.apps.template.domain.model.user;
+
+import java.util.List;
+
+/**
+ * @author anandm
+ *
+ */
+public interface IUserSessionRepository {
+
+	void saveUserSession(UserSession userSession);
+
+	List<UserSession> getUserSessionofUserWithId(String userId);
+
+	UserSession getUserSessionBySessionId(String sessionId);
+}