Stirling-PDF/src/main/java/stirling/software/SPDF/config/security/InitialSecuritySetup.java

package stirling.software.SPDF.config.security;

import java.io.IOException;
import java.util.UUID;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

import jakarta.annotation.PostConstruct;
import lombok.extern.slf4j.Slf4j;
import stirling.software.SPDF.config.interfaces.DatabaseBackupInterface;
import stirling.software.SPDF.model.ApplicationProperties;
import stirling.software.SPDF.model.Role;

@Component
@Slf4j
public class InitialSecuritySetup {

    @Autowired private UserService userService;

    @Autowired private ApplicationProperties applicationProperties;

    @Autowired private DatabaseBackupInterface databaseBackupHelper;

    @PostConstruct
    public void init() throws IllegalArgumentException, IOException {
        if (databaseBackupHelper.hasBackup() && !userService.hasUsers()) {
            databaseBackupHelper.importDatabase();
        } else if (!userService.hasUsers()) {
            initializeAdminUser();
        } else {
            databaseBackupHelper.exportDatabase();
            userService.migrateOauth2ToSSO();
        }
        initializeInternalApiUser();
    }

    private void initializeAdminUser() throws IOException {
        String initialUsername =
                applicationProperties.getSecurity().getInitialLogin().getUsername();
        String initialPassword =
                applicationProperties.getSecurity().getInitialLogin().getPassword();
        if (initialUsername != null
                && !initialUsername.isEmpty()
                && initialPassword != null
                && !initialPassword.isEmpty()
                && !userService.findByUsernameIgnoreCase(initialUsername).isPresent()) {
            try {
                userService.saveUser(initialUsername, initialPassword, Role.ADMIN.getRoleId());
                log.info("Admin user created: " + initialUsername);
            } catch (IllegalArgumentException e) {
                log.error("Failed to initialize security setup", e);
                System.exit(1);
            }
        } else {
            createDefaultAdminUser();
        }
    }

    private void createDefaultAdminUser() throws IllegalArgumentException, IOException {
        String defaultUsername = "admin";
        String defaultPassword = "stirling";
        if (!userService.findByUsernameIgnoreCase(defaultUsername).isPresent()) {
            userService.saveUser(defaultUsername, defaultPassword, Role.ADMIN.getRoleId(), true);
            log.info("Default admin user created: " + defaultUsername);
        }
    }

    private void initializeInternalApiUser() throws IllegalArgumentException, IOException {
        if (!userService.usernameExistsIgnoreCase(Role.INTERNAL_API_USER.getRoleId())) {
            userService.saveUser(
                    Role.INTERNAL_API_USER.getRoleId(),
                    UUID.randomUUID().toString(),
                    Role.INTERNAL_API_USER.getRoleId());
            userService.addApiKeyToUser(Role.INTERNAL_API_USER.getRoleId());
            log.info("Internal API user created: " + Role.INTERNAL_API_USER.getRoleId());
        }
        userService.syncCustomApiUser(applicationProperties.getSecurity().getCustomGlobalAPIKey());
    }
}
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`package stirling.software.SPDF.config.security;`

cleanup imports 2023-08-27 00:39:22 +01:00			`import java.io.IOException;`
			`import java.util.UUID;`

Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`import org.springframework.beans.factory.annotation.Autowired;`
			`import org.springframework.stereotype.Component;`

			`import jakarta.annotation.PostConstruct;`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`import lombok.extern.slf4j.Slf4j;`
Frooodle/license (#1994) 2024-10-14 22:34:41 +01:00			`import stirling.software.SPDF.config.interfaces.DatabaseBackupInterface;`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`import stirling.software.SPDF.model.ApplicationProperties;`
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`import stirling.software.SPDF.model.Role;`
formatting 2023-12-30 19:11:27 +00:00
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`@Component`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`@Slf4j`
test 2023-08-27 11:59:08 +01:00			`public class InitialSecuritySetup {`
Create InitialSetup.java 2023-08-13 01:14:14 +01:00
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`@Autowired private UserService userService;`
itext changes 2023-09-02 00:05:50 +01:00
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`@Autowired private ApplicationProperties applicationProperties;`
configs and app setup stuff 2023-08-26 17:30:49 +01:00
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`@Autowired private DatabaseBackupInterface databaseBackupHelper;`
extends the functionality of oauth in Stirling PDF 2024-05-12 19:58:34 +02:00
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`@PostConstruct`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`public void init() throws IllegalArgumentException, IOException {`
			`if (databaseBackupHelper.hasBackup() && !userService.hasUsers()) {`
			`databaseBackupHelper.importDatabase();`
			`} else if (!userService.hasUsers()) {`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`initializeAdminUser();`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`} else {`
			`databaseBackupHelper.exportDatabase();`
fixes and other changes and debug of WIP SAML (#2360) * backup * remove debugs * oauth to saml and compare fixes etc * ee flag for saml * more fixes * info to debug * remove unused repo * spring dev fix for saml * debugs * saml stuff * debugs * fix 2024-11-29 15:11:59 +00:00			`userService.migrateOauth2ToSSO();`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`}`
			`initializeInternalApiUser();`
			`}`
rename to settins.yml 2023-08-26 22:33:23 +01:00
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`private void initializeAdminUser() throws IOException {`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`String initialUsername =`
			`applicationProperties.getSecurity().getInitialLogin().getUsername();`
			`String initialPassword =`
			`applicationProperties.getSecurity().getInitialLogin().getPassword();`
			`if (initialUsername != null`
			`&& !initialUsername.isEmpty()`
			`&& initialPassword != null`
			`&& !initialPassword.isEmpty()`
			`&& !userService.findByUsernameIgnoreCase(initialUsername).isPresent()) {`
			`try {`
Fix: Removes username validation check - Removes username validation check - Ignores API users in user counting 2024-05-19 10:52:11 +02:00			`userService.saveUser(initialUsername, initialPassword, Role.ADMIN.getRoleId());`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.info("Admin user created: " + initialUsername);`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`} catch (IllegalArgumentException e) {`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.error("Failed to initialize security setup", e);`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`System.exit(1);`
formatting 2023-12-30 19:11:27 +00:00			`}`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`} else {`
			`createDefaultAdminUser();`
formatting 2023-12-30 19:11:27 +00:00			`}`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`}`

Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`private void createDefaultAdminUser() throws IllegalArgumentException, IOException {`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`String defaultUsername = "admin";`
			`String defaultPassword = "stirling";`
			`if (!userService.findByUsernameIgnoreCase(defaultUsername).isPresent()) {`
			`userService.saveUser(defaultUsername, defaultPassword, Role.ADMIN.getRoleId(), true);`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.info("Default admin user created: " + defaultUsername);`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`}`
			`}`

Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`private void initializeInternalApiUser() throws IllegalArgumentException, IOException {`
Fix: Resolve Username Case Sensitivity Issue in Login Flow (#1070) * Fix: Username changing The only situation where the username must be unique is when changing the username. * Update UserController.java 2024-04-14 23:07:03 +02:00			`if (!userService.usernameExistsIgnoreCase(Role.INTERNAL_API_USER.getRoleId())) {`
Role stuff 2023-12-25 12:58:49 +00:00			`userService.saveUser(`
			`Role.INTERNAL_API_USER.getRoleId(),`
			`UUID.randomUUID().toString(),`
			`Role.INTERNAL_API_USER.getRoleId());`
internal API plus brute force security 2023-12-24 17:12:32 +00:00			`userService.addApiKeyToUser(Role.INTERNAL_API_USER.getRoleId());`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.info("Internal API user created: " + Role.INTERNAL_API_USER.getRoleId());`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`}`
X-API-key to X-API-KEY 2024-12-10 20:39:24 +00:00			`userService.syncCustomApiUser(applicationProperties.getSecurity().getCustomGlobalAPIKey());`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`}`
			`}`