Stirling-PDF/src/main/java/stirling/software/SPDF/config/security/InitialSecuritySetup.java

package stirling.software.SPDF.config.security;

import java.io.IOException;
import java.nio.file.Path;
import java.nio.file.Paths;
import java.util.UUID;

import org.simpleyaml.configuration.file.YamlFile;
import org.simpleyaml.configuration.implementation.SimpleYamlImplementation;
import org.simpleyaml.configuration.implementation.snakeyaml.lib.DumperOptions;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

import jakarta.annotation.PostConstruct;
import lombok.extern.slf4j.Slf4j;
import stirling.software.SPDF.config.DatabaseBackupInterface;
import stirling.software.SPDF.model.ApplicationProperties;
import stirling.software.SPDF.model.Role;

@Component
@Slf4j
public class InitialSecuritySetup {

    @Autowired private UserService userService;

    @Autowired private ApplicationProperties applicationProperties;

    @Autowired private DatabaseBackupInterface databaseBackupHelper;

    @PostConstruct
    public void init() throws IllegalArgumentException, IOException {
        if (databaseBackupHelper.hasBackup() && !userService.hasUsers()) {
            databaseBackupHelper.importDatabase();
        } else if (!userService.hasUsers()) {
            initializeAdminUser();
        } else {
            databaseBackupHelper.exportDatabase();
        }
        initializeInternalApiUser();
    }

    @PostConstruct
    public void initSecretKey() throws IOException {
        String secretKey = applicationProperties.getAutomaticallyGenerated().getKey();
        if (!isValidUUID(secretKey)) {
            secretKey = UUID.randomUUID().toString(); // Generating a random UUID as the secret key
            saveKeyToConfig(secretKey);
        }
    }

    private void initializeAdminUser() throws IOException {
        String initialUsername =
                applicationProperties.getSecurity().getInitialLogin().getUsername();
        String initialPassword =
                applicationProperties.getSecurity().getInitialLogin().getPassword();
        if (initialUsername != null
                && !initialUsername.isEmpty()
                && initialPassword != null
                && !initialPassword.isEmpty()
                && !userService.findByUsernameIgnoreCase(initialUsername).isPresent()) {
            try {
                userService.saveUser(initialUsername, initialPassword, Role.ADMIN.getRoleId());
                log.info("Admin user created: " + initialUsername);
            } catch (IllegalArgumentException e) {
                log.error("Failed to initialize security setup", e);
                System.exit(1);
            }
        } else {
            createDefaultAdminUser();
        }
    }

    private void createDefaultAdminUser() throws IllegalArgumentException, IOException {
        String defaultUsername = "admin";
        String defaultPassword = "stirling";
        if (!userService.findByUsernameIgnoreCase(defaultUsername).isPresent()) {
            userService.saveUser(defaultUsername, defaultPassword, Role.ADMIN.getRoleId(), true);
            log.info("Default admin user created: " + defaultUsername);
        }
    }

    private void initializeInternalApiUser() throws IllegalArgumentException, IOException {
        if (!userService.usernameExistsIgnoreCase(Role.INTERNAL_API_USER.getRoleId())) {
            userService.saveUser(
                    Role.INTERNAL_API_USER.getRoleId(),
                    UUID.randomUUID().toString(),
                    Role.INTERNAL_API_USER.getRoleId());
            userService.addApiKeyToUser(Role.INTERNAL_API_USER.getRoleId());
            log.info("Internal API user created: " + Role.INTERNAL_API_USER.getRoleId());
        }
    }

    private void saveKeyToConfig(String key) throws IOException {
        Path path = Paths.get("configs", "settings.yml"); // Target the configs/settings.yml

        final YamlFile settingsYml = new YamlFile(path.toFile());
        DumperOptions yamlOptionssettingsYml =
                ((SimpleYamlImplementation) settingsYml.getImplementation()).getDumperOptions();
        yamlOptionssettingsYml.setSplitLines(false);

        settingsYml.loadWithComments();

        settingsYml
                .path("AutomaticallyGenerated.key")
                .set(key)
                .comment("# Automatically Generated Settings (Do Not Edit Directly)");
        settingsYml.save();
    }

    private boolean isValidUUID(String uuid) {
        if (uuid == null) {
            return false;
        }
        try {
            UUID.fromString(uuid);
            return true;
        } catch (IllegalArgumentException e) {
            return false;
        }
    }
}
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`package stirling.software.SPDF.config.security;`

cleanup imports 2023-08-27 00:39:22 +01:00			`import java.io.IOException;`
			`import java.nio.file.Path;`
			`import java.nio.file.Paths;`
			`import java.util.UUID;`

Change: method write and read `settings.yml` #1441 (#1463) Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-06-15 10:05:31 +02:00			`import org.simpleyaml.configuration.file.YamlFile;`
Fix: YamlFile - String length limit disable (#1716) Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-08-19 16:03:05 +02:00			`import org.simpleyaml.configuration.implementation.SimpleYamlImplementation;`
			`import org.simpleyaml.configuration.implementation.snakeyaml.lib.DumperOptions;`
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`import org.springframework.beans.factory.annotation.Autowired;`
			`import org.springframework.stereotype.Component;`

			`import jakarta.annotation.PostConstruct;`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`import lombok.extern.slf4j.Slf4j;`
			`import stirling.software.SPDF.config.DatabaseBackupInterface;`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`import stirling.software.SPDF.model.ApplicationProperties;`
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`import stirling.software.SPDF.model.Role;`
formatting 2023-12-30 19:11:27 +00:00
Create InitialSetup.java 2023-08-13 01:14:14 +01:00			`@Component`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`@Slf4j`
test 2023-08-27 11:59:08 +01:00			`public class InitialSecuritySetup {`
Create InitialSetup.java 2023-08-13 01:14:14 +01:00
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`@Autowired private UserService userService;`
itext changes 2023-09-02 00:05:50 +01:00
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`@Autowired private ApplicationProperties applicationProperties;`
configs and app setup stuff 2023-08-26 17:30:49 +01:00
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`@Autowired private DatabaseBackupInterface databaseBackupHelper;`
extends the functionality of oauth in Stirling PDF 2024-05-12 19:58:34 +02:00
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`@PostConstruct`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`public void init() throws IllegalArgumentException, IOException {`
			`if (databaseBackupHelper.hasBackup() && !userService.hasUsers()) {`
			`databaseBackupHelper.importDatabase();`
			`} else if (!userService.hasUsers()) {`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`initializeAdminUser();`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`} else {`
			`databaseBackupHelper.exportDatabase();`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`}`
			`initializeInternalApiUser();`
			`}`
rename to settins.yml 2023-08-26 22:33:23 +01:00
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`@PostConstruct`
			`public void initSecretKey() throws IOException {`
			`String secretKey = applicationProperties.getAutomaticallyGenerated().getKey();`
			`if (!isValidUUID(secretKey)) {`
			`secretKey = UUID.randomUUID().toString(); // Generating a random UUID as the secret key`
			`saveKeyToConfig(secretKey);`
			`}`
			`}`
Update InitialSecuritySetup.java 2024-05-18 19:38:39 +01:00
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`private void initializeAdminUser() throws IOException {`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`String initialUsername =`
			`applicationProperties.getSecurity().getInitialLogin().getUsername();`
			`String initialPassword =`
			`applicationProperties.getSecurity().getInitialLogin().getPassword();`
			`if (initialUsername != null`
			`&& !initialUsername.isEmpty()`
			`&& initialPassword != null`
			`&& !initialPassword.isEmpty()`
			`&& !userService.findByUsernameIgnoreCase(initialUsername).isPresent()) {`
			`try {`
Fix: Removes username validation check - Removes username validation check - Ignores API users in user counting 2024-05-19 10:52:11 +02:00			`userService.saveUser(initialUsername, initialPassword, Role.ADMIN.getRoleId());`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.info("Admin user created: " + initialUsername);`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`} catch (IllegalArgumentException e) {`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.error("Failed to initialize security setup", e);`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`System.exit(1);`
formatting 2023-12-30 19:11:27 +00:00			`}`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`} else {`
			`createDefaultAdminUser();`
formatting 2023-12-30 19:11:27 +00:00			`}`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`}`

Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`private void createDefaultAdminUser() throws IllegalArgumentException, IOException {`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`String defaultUsername = "admin";`
			`String defaultPassword = "stirling";`
			`if (!userService.findByUsernameIgnoreCase(defaultUsername).isPresent()) {`
			`userService.saveUser(defaultUsername, defaultPassword, Role.ADMIN.getRoleId(), true);`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.info("Default admin user created: " + defaultUsername);`
extends the functionality of oauth in Stirling PDF 2. 2024-05-18 23:47:05 +02:00			`}`
			`}`

Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`private void initializeInternalApiUser() throws IllegalArgumentException, IOException {`
Fix: Resolve Username Case Sensitivity Issue in Login Flow (#1070) * Fix: Username changing The only situation where the username must be unique is when changing the username. * Update UserController.java 2024-04-14 23:07:03 +02:00			`if (!userService.usernameExistsIgnoreCase(Role.INTERNAL_API_USER.getRoleId())) {`
Role stuff 2023-12-25 12:58:49 +00:00			`userService.saveUser(`
			`Role.INTERNAL_API_USER.getRoleId(),`
			`UUID.randomUUID().toString(),`
			`Role.INTERNAL_API_USER.getRoleId());`
internal API plus brute force security 2023-12-24 17:12:32 +00:00			`userService.addApiKeyToUser(Role.INTERNAL_API_USER.getRoleId());`
Preparation for Switching to a New Database Version (#1521) * preparing to switch to a new database version * add PreAuthorize --------- Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-07-05 21:48:33 +02:00			`log.info("Internal API user created: " + Role.INTERNAL_API_USER.getRoleId());`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`}`
			`}`

			`private void saveKeyToConfig(String key) throws IOException {`
rename to settins.yml 2023-08-26 22:33:23 +01:00			`Path path = Paths.get("configs", "settings.yml"); // Target the configs/settings.yml`
configs and app setup stuff 2023-08-26 17:30:49 +01:00
Change: method write and read `settings.yml` #1441 (#1463) Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-06-15 10:05:31 +02:00			`final YamlFile settingsYml = new YamlFile(path.toFile());`
Fix: YamlFile - String length limit disable (#1716) Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-08-19 16:03:05 +02:00			`DumperOptions yamlOptionssettingsYml =`
			`((SimpleYamlImplementation) settingsYml.getImplementation()).getDumperOptions();`
			`yamlOptionssettingsYml.setSplitLines(false);`
Change: method write and read `settings.yml` #1441 (#1463) Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-06-15 10:05:31 +02:00
			`settingsYml.loadWithComments();`
configs and app setup stuff 2023-08-26 17:30:49 +01:00
Change: method write and read `settings.yml` #1441 (#1463) Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com> 2024-06-15 10:05:31 +02:00			`settingsYml`
			`.path("AutomaticallyGenerated.key")`
			`.set(key)`
			`.comment("# Automatically Generated Settings (Do Not Edit Directly)");`
			`settingsYml.save();`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`}`
flatten (#1167) 2024-05-05 13:33:17 +01:00
introduces custom settings file (#1158) * Introducing a custom settings file * formats * chnages * Update README.md 2024-05-03 20:43:48 +01:00			`private boolean isValidUUID(String uuid) {`
			`if (uuid == null) {`
			`return false;`
			`}`
			`try {`
			`UUID.fromString(uuid);`
			`return true;`
			`} catch (IllegalArgumentException e) {`
			`return false;`
			`}`
			`}`
configs and app setup stuff 2023-08-26 17:30:49 +01:00			`}`