java source code of SessionService

sana.mobile-master
- gradle.properties
- gradle
  - wrapper
    - gradle-wrapper.properties
    - gradle-wrapper.jar
- gradlew.bat
- LICENSE
- api
  - src
    - main
      - res
        get_cert.sh
        uuid.properties
      - java
        org
        sana
        analytics
        Runner.java
        net
        MDSResult.java
        URLHandler.java
        Response.java
        Request.java
        qos
        QOS.java
        ResponseException.java
        http
        HttpClientFactory.java
        ClientFactory.java
        EntityFactory.java
        HttpRequestBuilder.java
        HttpDispatcher.java
        HttpTaskFactory.java
        HttpThread.java
        HttpQOS.java
        DispatchEntityFactory.java
        DispatchHttpClient.java
        ssl
        EasySSLSocketFactory.java
        EasyX509TrustManager.java
        HttpsDispatcher.java
        handler
        ProcedureResponseHandler.java
        ObservationResponseHandler.java
        EncounterTaskResponseHandler.java
        NotificationResponseHandler.java
        ConceptResponseHandler.java
        DeviceResponseHandler.java
        PatientResponseHandler.java
        ObservationTaskResponseHandler.java
        ApiResponseHandler.java
        EncounterResponseHandler.java
        LocationResponseHandler.java
        InstructionResponseHandler.java
        RequestFactory.java
        DispatchRequestFactory.java
        MDSCode.java
        URLResponse.java
        Dispatcher.java
        queue
        MessageQueue.java
        api
        IDevice.java
        IEvent.java
        IProcedure.java
        IPatient.java
        task
        Task.java
        EncounterTask.java
        IObservationTask.java
        ObservationTask.java
        Status.java
        ITask.java
        IEncounterTask.java
        IObserver.java
        INotification.java
        Datatype.java
        IObservation.java
        ILocation.java
        IInstruction.java
        ISubject.java
        IConcept.java
        IEncounter.java
        IRelationship.java
        RelationshipCategory.java
        IModel.java
        util
        StringUtil.java
        UUIDUtil.java
        Functions.java
        Arrays.java
        DateUtil.java
        text
        json
        PatientAdapter.java
        ResponseTypeAdapterFactoy.java
        ModelAdapterFactory.java
        core
        Model.java
        Device.java
        Event.java
        Notification.java
        Subject.java
        Concept.java
        Observation.java
        Encounter.java
        Relationship.java
        Procedure.java
        Instruction.java
        Location.java
        package-info.java
        Observer.java
        Patient.java
  - libs
    - apache-mime4j-core-0.7.2.jar
    - httpmime-4.1.3.jar
    - LICENSE-commons-codec.txt
    - gson-2.1.jar
    - LICENSE-tlbc.txt
    - LICENSE-httpcomponents-client.txt
    - LICENSE-gson.txt
    - LICENSE-apache-mime4j.txt
    - httpcore-4.1.4.jar
  - build.gradle
  - .gitignore
- gradlew
- README
- api-android
  - src
    - main
      - res
        values-ht
        arrays.xml
        strings.xml
        drawable-mdpi
        layout
        widget_custom_date_picker.xml
        drawable-xhdpi
        drawable-hdpi
        values
        db.xml
        styles.xml
        attrs.xml
        arrays.xml
        config.xml
        strings.xml
      - AndroidManifest.xml
      - java
        org
        sana
        android
        provider
        Models.java
        Concepts.java
        Encounters.java
        Tasks.java
        BaseProjection.java
        Patients.java
        Observations.java
        ObservationTasks.java
        Subjects.java
        EncounterTasks.java
        Procedures.java
        Notifications.java
        Events.java
        Observers.java
        Instructions.java
        BaseContract.java
        ModelContract.java
        db
        impl
        EncountersHelper.java
        EncounterTasksHelper.java
        SubjectsHelper.java
        EventsHelper.java
        NotificationsHelper.java
        ObserversHelper.java
        ProceduresHelper.java
        ConceptsHelper.java
        InstructionsHelper.java
        ObservationsHelper.java
        ModelHelpers.java
        DBConstants.java
        DatabaseManager.java
        QueryHelper.java
        TableHelper.java
        DBUtils.java
        ModelIterable.java
        DeleteHelper.java
        UriHelper.java
        UpdateHelper.java
        ModelWrapper.java
        UpgradeHelper.java
        InsertHelper.java
        DatabaseOpenHelper.java
        SortHelper.java
        FileHelper.java
        CreateHelper.java
        content
        Intents.java
        Token.java
        ModelContext.java
        Uris.java
        ModelParcelable.java
        MessageQueueProvider.java
        ModelContentProvider.java
        ModelMatcher.java
        Session.java
        Entity.java
        ModelEntity.java
        ExifUtil.java
        core
        ProcedureParcel.java
        ModelParcel.java
        ProcedureWrapper.java
        SubjectParcel.java
        EventParcel.java
        NotificationParcel.java
        EncounterWrapper.java
        ObserverWrapper.java
        PatientParcel.java
        InstructionParcel.java
        ObservationWrapper.java
        PatientWrapper.java
        package-info.java
        EncounterParcel.java
        ObserverParcel.java
        ConceptWrapper.java
        ObservationParcel.java
        ConceptParcel.java
        net
        HttpRequestParcel.java
        NetworkTaskListener.java
        qos
        QOSParcel.java
        HttpRequestFactory.java
        HttpTask.java
        widget
        CustomDatePicker.java
        ScrollCompleteListener.java
        util
        UriUtil.java
        JsonUtils.java
        SessionUtil.java
        Logf.java
        Logs.java
        Bitmaps.java
        Dates.java
        Strings.java
        service
        RemoteService.java
        Restful.java
        SystemService.java
        text
        LocalizedDateFormatter.java
        app
        MessageQueueManager.java
        Preferences.java
        State.java
        EncounterFragmentActivity.java
        IntentRunner.java
        Locales.java
      - aidl
        org
        sana
        android
        content
        core.aidl
        service
        IProcedureService.aidl
        IStringCallback.aidl
        IObserverService.aidl
        IObservationService.aidl
        ISessionCallback.aidl
        IModelService.aidl
        ISessionService.aidl
        IRemoteCallback.aidl
        IEventService.aidl
        IPatientService.aidl
        INotificationService.aidl
        IRemoteService.aidl
        IEncounterService.aidl
        IConceptService.aidl
        ISubjectService.aidl
  - build.gradle
  - project.properties
  - .gitignore
  - proguard-project.txt
  - .project
- build.gradle
- README.md
- app
  - src
    - main
      - res
        xml
        settings.xml
        resource_settings.xml
        basic_network_settings.xml
        network_settings.xml
        notifications.xml
        manifest.xml
        values-ht
        arrays.xml
        strings.xml
        drawable-mdpi
        layout
        title_author_row.xml
        encounterlist_item.xml
        observation_list_activity.xml
        pageslist_item.xml
        procedure_runner_activity.xml
        patient_list_activity.xml
        list_encounter_row.xml
        camera_preview.xml
        element_radio.xml
        row.xml
        page.xml
        encountertask_list_activity.xml
        widget_element_age.xml
        sd_item.xml
        simple_spinner_item.xml
        element_base.xml
        list_observation_item_complex.xml
        activity_navigation.xml
        main.xml
        widget_date_of_birth.xml
        list_encounter_item.xml
        fragment_procedure_runner.xml
        element_radio_item.xml
        activity_authentication.xml
        list_observation_row.xml
        patient_runner_activity.xml
        main_ht.xml
        patient_list_item.xml
        encountertask_list_item.xml
        select_diagnosis.xml
        list_menu_item_radio.xml
        fragment_encounter.xml
        encountertask_item_overdue.xml
        base_runner_fragment.xml
        procedure_runner_done.xml
        fragment_patient_list.xml
        widget_element_truth.xml
        activity_encounterlist.xml
        sd_import_list.xml
        widget_element_select.xml
        procedure_list_row.xml
        simple_spinner_dropdown_item.xml
        dialog_authentication.xml
        encountertask_item_complete.xml
        list_observation_item.xml
        drawable-xhdpi
        drawable-zh
        menu
        patients_list_menu.xml
        activity_main.xml
        patients_list_menu_admin.xml
        drawable-ldpi
        drawable-xxhdpi
        drawable-es
        values-zh
        strings.xml
        drawable-xxxhdpi
        raw
        registration_short_en.xml
        findpatient.xml
        teleradiology.xml
        api_test_entry.xml
        sample.xml
        tbcontact.xml
        tbcontact2.xml
        registration_short_ht.xml
        prenatal.xml
        demonstration.xml
        derma.xml
        api_test.xml
        hiv.xml
        chain_test2.xml
        surgery.xml
        ophthalmology.xml
        ssi_en.xml
        chain_test1.xml
        cervicalcancer.xml
        cvd_protocol.xml
        ssi.xml
        api_test_select.xml
        plugin_test.xml
        upload_test.xml
        tbpatient.xml
        ssi_two_site.xml
        oral_cancer.xml
        drawable-hdpi
        color
        primary_text_holo_dark.xml
        secondary_text_holo_dark.xml
        primary_text_holo_light.xml
        secondary_text_holo_light.xml
        layout-land
        pageslist_item.xml
        procedure_runner_activity.xml
        element_text.xml
        patient_list_activity.xml
        camera_preview.xml
        activity_navigation.xml
        main.xml
        fragment_procedure_runner.xml
        activity_authentication.xml
        patient_list_item.xml
        list_menu_item_radio.xml
        base_runner_fragment.xml
        procedure_runner_done.xml
        element_select.xml
        values-es
        strings.xml
        values
        dimen.xml
        integers.xml
        styles.xml
        admins.xml
        system.xml
        net.xml
        attrs.xml
        themes.xml
        procedures.xml
        debug.xml
        training.xml
        arrays.xml
        config.xml
        preferences.xml
        color.xml
        strings.xml
        secure.xml
        credentials.xml
        drawable
        chestxray2.jpg
        rounded_rectangle_goldenrod.xml
        rounded_rectangle_grey.xml
        incision.jpg
        btn_enabled.xml
        btn_register_patient.xml
        oval_grey.xml
        chestxray3.jpg
        btn_default_holo_dark.xml
        btn.xml
        btn_menu_focused.xml
        oval.xml
        btn_menu_disabled.xml
        btn_pressed.xml
        btn_disabled.xml
        rounded_rectangle_light_goldenrod.xml
        btn_menu_enabled.xml
        heart.jpg
        btn_focused.xml
        btn_menu_pressed.xml
        btn_default_holo_light.xml
        btn_check.xml
        chestxray.jpg
        doctor.jpg
        btn_radio.xml
        tb.jpg
        incision2.jpg
        anim
        slide_to_right.xml
        slide_to_left.xml
        slide_from_right.xml
        slide_from_left.xml
      - AndroidManifest.xml
      - java
        org
        sana
        android
        fragment
        BaseFragment.java
        PatientListFragment.java
        EncounterTaskListCompleteFragment.java
        EncounterTaskListFragment.java
        ObservationListFragment.java
        BaseRunnerFragment.java
        AuthenticationDialogFragment.java
        EncounterListFragment.java
        ProcedureRunnerFragment.java
        PatientRunnerFragment.java
        provider
        Codes.java
        ScalingImageAdapter.java
        ImagePreviewDialog.java
        db
        impl
        ModelContentProviderImpl.java
        DatabaseOpenHelperImpl.java
        TaskProvider.java
        PatientInfo.java
        ProcedureDAO.java
        ImageProvider.java
        EncounterDAO.java
        NotificationMessage.java
        BinaryDAO.java
        EventDAO.java
        SoundProvider.java
        PatientValidator.java
        EducationResourceProvider.java
        BinaryProvider.java
        SanaDB.java
        DatabaseHelper.java
        content
        DispatchResponseReceiver.java
        task
        ImageProcessingTaskRequest.java
        MDSSyncTask.java
        NetHandler.java
        ResetDatabaseTask.java
        ValidationListener.java
        PatientLookupListener.java
        ImageProcessingTask.java
        ImportProcedure.java
        ClearDatabaseTask.java
        CheckCredentialsTask.java
        ImportProcedureAll.java
        PatientLookupTask.java
        SelectableImageView.java
        net
        MDSInterface.java
        SMSReceive.java
        MDSInterface2.java
        MDSNotification.java
        ssl
        SimpleSSLProtocolSocketFactory.java
        media
        AudioPlayer.java
        EducationResource.java
        EducationResourceParser.java
        Constants.java
        widget
        ComplexRadioButton.java
        DateOfBirthWidget.java
        util
        UserDatabase.java
        EnvironmentUtil.java
        SanaUtil.java
        activity
        PatientRunner.java
        NavigationActivity.java
        ProcedureSdImporter.java
        NotificationList.java
        MainActivity.java
        ProcedureRunner.java
        BaseRunner.java
        PatientsList.java
        EncounterList.java
        PatientInfoDialog.java
        BaseActivity.java
        NotificationViewer.java
        AuthenticationActivity.java
        EncounterTaskList.java
        ObservationList.java
        ProceduresList.java
        settings
        ResourceSettings.java
        NetworkSettings.java
        Settings.java
        BasicSettings.java
        EducationResourceList.java
        Sana.java
        service
        impl
        SessionService.java
        InstrumentationService.java
        ApplicationService.java
        DispatchService.java
        ObservationService.java
        ServiceListener.java
        EmailService.java
        BackgroundUploader.java
        PluginService.java
        QueueManager.java
        ServiceConnector.java
        procedure
        SelectionElement.java
        HiddenElement.java
        TextElement.java
        RadioElement.java
        SoundElement.java
        TruthElement.java
        PatientIdElement.java
        GpsElement.java
        PictureElement.java
        Procedure.java
        PluginEntryElement.java
        ProcedureElement.java
        MultiSelectElement.java
        DateElement.java
        branching
        LogicBase.java
        Criterion.java
        LogicAnd.java
        LogicOr.java
        LogicNot.java
        Criteria.java
        ProcedurePage.java
        PluginElement.java
        AgeElement.java
        ProcedureParseException.java
        EducationResourceElement.java
        SelectElement.java
        TextEntryElement.java
        ValidationError.java
        BinaryUploadElement.java
        app
        DefaultActivityRunner.java
        ActivityRunner.java
        NotificationFactory.java
        DispatchReceiver.java
        SSIActivityRunner.java
      - assets
        server.crt
        demo.bks
    - androidTest
      - res
        drawable-mdpi
        drawable-xhdpi
        drawable-ldpi
        drawable-hdpi
        values
        strings.xml
      - AndroidManifest.xml
      - java
        org
        sana
        android
        db
        impl
        test
        ConceptInfo.java
        ModelContentProviderImplTest.java
        content
        test
        UrisTest.java
        IntentsTest.java
        ModelMatcherTest.java
        net
        test
        DispatchExecutorTest.java
        ApacheTest.java
        JSONTests.java
        MDS2InterfaceTest.java
        activity
        test
        MainActivityTest.java
        service
        impl
        test
        SessionServiceTest.java
        app
        test
        SystemTest.java
        DefaultActivityRunnerTest.java
  - proguard-rules.pro
  - build.gradle
  - project.properties
  - .gitignore
  - proguard-project.txt
- settings.gradle
- NOTICE
- .gitignore

/**
 * Copyright (c) 2013, Sana
 * All rights reserved.
 * <p>
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 * <p>
 * * Redistributions of source code must retain the above copyright
 * notice, this list of conditions and the following disclaimer.
 * * Redistributions in binary form must reproduce the above copyright
 * notice, this list of conditions and the following disclaimer in the
 * documentation and/or other materials provided with the distribution.
 * * Neither the name of the Sana nor the
 * names of its contributors may be used to endorse or promote products
 * derived from this software without specific prior written permission.
 * <p>
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL Sana BE LIABLE FOR ANY DIRECT, INDIRECT,
 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */
package org.sana.android.service.impl;

import java.util.HashMap;
import java.util.UUID;

import org.apache.http.client.methods.HttpPost;
import org.sana.R;
import org.sana.android.Constants;
import org.sana.android.content.core.ObserverWrapper;
import org.sana.android.net.HttpTask;
import org.sana.android.net.MDSInterface2;
import org.sana.net.Response;
import org.sana.android.net.NetworkTaskListener;
import org.sana.android.provider.Observers;
import org.sana.android.service.ISessionCallback;
import org.sana.android.service.ISessionService;
import org.sana.api.IObserver;
import org.sana.util.UUIDUtil;

import android.app.Service;
import android.content.ContentValues;
import android.content.Context;
import android.content.Intent;
import android.content.SharedPreferences;
import android.database.Cursor;
import android.net.ConnectivityManager;
import android.net.NetworkInfo;
import android.net.Uri;
import android.os.IBinder;
import android.os.RemoteCallbackList;
import android.os.RemoteException;
import android.preference.PreferenceManager;
import android.text.TextUtils;
import android.util.Log;

/**
 * Service which provides session based authentication into the system. 
 *
 * @author Sana Development
 *
 */
public class SessionService extends Service {
    public static final String TAG = SessionService.class.getSimpleName();

    public static final String ACTION_START = "org.sana.service.SessionService.START";

    public static final UUID INVALID = UUIDUtil.uuid3(UUIDUtil.EMPTY, "invalid");
    public static final UUID INVALID_PASSWORD = UUIDUtil.uuid3(UUIDUtil.EMPTY, "password");
    public static final UUID VALID = UUIDUtil.uuid3(UUIDUtil.EMPTY, "valid");

    public static final int INDETERMINATE = -1;
    public static final int STATE_REMOTE = 1;
    public static final int STATE_LOCAL = 2;

    public static final int FAILURE = 0;
    public static final int SUCCESS = 1;

    //TODO replace the two HashMaps with thread safe versions.
    // map of user valid session key to credentials
    private static final HashMap<String, String[]> openSessions = new HashMap<String, String[]>();

    // map of temp key to credentials
    private static final HashMap<String, String[]> tempSessions = new HashMap<String, String[]>();

    private final RemoteCallbackList<ISessionCallback> mCallbacks
            = new RemoteCallbackList<ISessionCallback>();

    private final ISessionService.Stub mBinder = new ISessionService.Stub() {
        @Override
        public boolean read(String arg0) throws RemoteException {
            boolean result = false;
            if (TextUtils.isEmpty(arg0))
                return false;
            else {
                result = isOpen(arg0);
            }
            return result;
        }

        @Override
        public String create(String tempKey, String username, String password) throws RemoteException {
            //String tempKey = SessionUtil.generateSessionKey(username);
            addTempSession(tempKey, new String[]{username, password});
            openSession(STATE_REMOTE, tempKey);
            return tempKey;
        }

        @Override
        public boolean delete(String arg0) throws RemoteException {
            return removeAuthenticatedSession(arg0);
        }

        @Override
        public void registerCallback(ISessionCallback arg0, String arg1)
                throws RemoteException {
            Log.i(TAG + ".mBinder", "registerCallback(): " + arg1);
            if (arg0 != null) mCallbacks.register(arg0, arg1);
        }

        @Override
        public void unregisterCallback(ISessionCallback arg0)
                throws RemoteException {
            Log.i(TAG + ".mBinder", "unregisterCallback(): " + arg0);
            if (arg0 != null) mCallbacks.unregister(arg0);
        }

    };

    //TODO refactor this out

    /**
     * Simple callback interface for HttpSessions
     *
     * @author Sana Development
     *
     *
    private class HttpSessionAuthListener implements NetworkTaskListener<MDSResult>{

    String tempKey = null;

    HttpSessionAuthListener(String key){
    this.tempKey = key;
    }

     @Override public void onTaskComplete(MDSResult t) {
     // TODO Auto-generated method stub
     if(t.succeeded()){
     // MDSResult should return the actual session key
     handleSessionAuthResult(SUCCESS, tempKey, t.getData());
     } else if(TextUtils.isEmpty(t.getCode())){
     handleSessionAuthResult(INDETERMINATE, tempKey, INVALID.toString());
     } else {
     // data should be some informative message
     handleSessionAuthResult(FAILURE, tempKey, INVALID.toString());
     }
     }
     }
     */
    private class AuthListener implements NetworkTaskListener<Response<String>> {

        String tempKey = null;

        AuthListener(String key) {
            this.tempKey = key;
        }

        @Override
        public void onTaskComplete(Response<String> t) {
            // TODO Auto-generated method stub
            if (t.succeeded()) {
                // MDSResult should return the actual session key
                handleSessionAuthResult(SUCCESS, tempKey, t.getMessage());
            } else if (t.getCode() == -1) {
                handleSessionAuthResult(INDETERMINATE, tempKey, INVALID.toString());
            } else {
                // data should be some informative message
                handleSessionAuthResult(FAILURE, tempKey, INVALID.toString());
            }
        }
    }

    //HttpSessionAuthListener mNetListener = null;

    HttpTask mNetTask = null;

    /* (non-Javadoc)
     * @see android.app.Service#onBind(android.content.Intent)
     */
    @Override
    public IBinder onBind(Intent arg0) {
        Log.i(TAG, "onBind()");
        // Try the call back binder defined in IRemoteService.onBind()
        if (arg0.getAction().equals(SessionService.class.getName()) ||
                arg0.getAction().equals(ACTION_START))
            return mBinder;
        else
            return null;
    }

    @Override
    public void onDestroy() {
        Log.i(TAG, "onDestroy()");
        if (mCallbacks != null)
            mCallbacks.kill();
        super.onDestroy();
    }

    @Override
    public boolean onUnbind(Intent arg0) {
        Log.i(TAG, "onUnbind()");
        int connections = 0;
        try {
            connections = mCallbacks.beginBroadcast();
        } finally {
            mCallbacks.finishBroadcast();
        }
        if (!(connections > 0))
            stopSelf();
        return super.onUnbind(arg0);

    }

    /**
     * Handles the logic for opening a session by first trying the remote
     * dispatcher if connected and then falling back locally to either (1) the
     * credential cache in the Observer ContentProvider or (2) the default
     * admin credentials.
     *
     * @param state
     * @param username
     * @param password
     */
    protected void openSession(int state, String tempKey) {
        switch (state) {
            case STATE_LOCAL:
                openLocalSession(tempKey);
                break;
            case STATE_REMOTE:
                openNetworkSession(tempKey);
                break;
            default:
                throw new IllegalArgumentException("Use STATE_LOCAL or STATE_REMOTE only");
        }
    }

    // Tries to open a session from the local ContentProvider and then the
    // admin backdoor by default - admin backdoor only works once from the
    // resource value
    private void openLocalSession(String tempKey) {
        String[] credentials = tempSessions.get(tempKey);
        String username = credentials[0];
        String password = credentials[1];
        String session = INVALID.toString();
        if (isLocalUsername(username)) {
            try {
                Log.d(TAG, "auth: " + username + " pass: " + password);
                IObserver o = ObserverWrapper.getOneByAuth(
                        getContentResolver(), username, password);

                // user exists and was validated locally
                if (o != null) {
                    session = o.getUuid();
                    handleSessionAuthResult(SUCCESS, tempKey, session);
                    // the user was good but password didn't match, return a fail
                } else {
                    handleSessionAuthResult(FAILURE, tempKey, username);
                }
            } catch (Exception e) {
                e.printStackTrace();
                Log.e(TAG, e.getMessage());
                handleSessionAuthResult(FAILURE, tempKey, INVALID.toString());
            }

            // Try the admin backdoor for local connection only
        } else if (username.equals(getString(R.string.admin_username))
                && password.equals(getString(R.string.admin_password))) {
            session = UUIDUtil.generateObserverUUID(username).toString();
            registerNew(username, password, session);
            handleSessionAuthResult(SUCCESS, tempKey, username);
        } else {
            handleSessionAuthResult(FAILURE, tempKey, INVALID.toString());
        }

    }

    //TODO replace with an https connection.
    // Starts an async http task to POST credentials to dispatch server
    private void openNetworkSession(String tempKey) {
        Log.d(TAG, "Opening network session: " + tempKey);
        if (!connected()) {
            Log.d(TAG, "openNetworkSession()..connected = false");
            openLocalSession(tempKey);
        } else {
            try {
                Log.d(TAG, "openNetworkSession()..connected = true");
                String[] credentials = tempSessions.get(tempKey);
                HttpPost post = MDSInterface2.createSessionRequest(this,
                        credentials[0], credentials[1]);
                Log.i(TAG, "openNetworkSession(...) " + post.getURI());
                new HttpTask<String>(new AuthListener(tempKey)).execute(post);
            } catch (Exception e) {
                Log.e(TAG, e.getMessage());
                e.printStackTrace();
            }
        }
    }

    /**
     * Handles authentication attempts for temporary tempSessions. If successful,
     * the temporary session will be moved to a list of authorized tempSessions.
     *
     * @param status {@link #SUCCESS}, {@link #FAILURE}, {@link #INDETERMINATE}
     * @param tempKey the temporary key initially passed from the client.
     * @param sessionKey the authorized key.
     */
    protected void handleSessionAuthResult(int status, String tempKey,
                                           String sessionKey) {
        Log.i(TAG, "Handling result: '" + status
                + "' for temp session: " + tempKey);
        String[] credentials = tempSessions.get(tempKey);
        final String username = credentials[0];
        final String password = credentials[1];

        switch (status) {
            case SUCCESS:
                // Got successful authentication from network
                // update cache with the validated password, may exist already but
                // this should handle any situations where the network value changed
                if (isLocalUsername(username)) {
                    Log.i(TAG, "Updating credentials for user: " + username);
                    ContentValues values = new ContentValues();
                    values.put(Observers.Contract.PASSWORD, encrypt(password));
                    int updated = getContentResolver().update(
                            Observers.CONTENT_URI,
                            values,
                            Observers.Contract.USERNAME + " = ?",
                            new String[]{username});
                    if (updated == 1)
                        Log.i(TAG, "Succesfully updated: " + username);
                    else
                        Log.w(TAG, "OOPS! Something went horribly wrong updating" +
                                "the password for user: " + username
                                + " or the password was unchanged!");

                    // i name didn't exist already we need to insert instead of update.
                } else {
                    ContentValues values = new ContentValues();
                    values.put(Observers.Contract.USERNAME, username);
                    values.put(Observers.Contract.UUID, sessionKey);
                    values.put(Observers.Contract.PASSWORD, encrypt(password));
                    getContentResolver().insert(Observers.CONTENT_URI,
                            values);
                }
                SharedPreferences preferences = PreferenceManager
                        .getDefaultSharedPreferences(this.getBaseContext());
                preferences.edit().putString(
                        Constants.PREFERENCE_EMR_USERNAME, username);
                preferences.edit().putString(
                        Constants.PREFERENCE_EMR_PASSWORD, password);
                preferences.edit().commit();

                // send result to the call back (INVALID, user uuid)
                removeTempSession(tempKey);
                addAuthenticatedSession(sessionKey, credentials);
                sendResult(SUCCESS, tempKey, sessionKey);
                break;
            // connected and failed
            case FAILURE:
                // send result to the call back (INVALID, user )
                removeTempSession(tempKey);
                sendResult(FAILURE, tempKey, sessionKey);
                break;
            case INDETERMINATE:
                openSession(STATE_LOCAL, tempKey);
                break;
            default:
                throw new IllegalArgumentException();
        }
    }

    // sends the callback message
    protected void sendResult(int status, String cookie, String msg) {
        int i = mCallbacks.beginBroadcast();
        Log.i(TAG, "sendResult( " + cookie + ", " + status + ") --> " + i + " callbacks");
        while (i > 0) {
            i--;
            String instanceKey = mCallbacks.getBroadcastCookie(i).toString();
            if (cookie.equals(instanceKey)) {
                Log.i(TAG, "....Sending result to " + cookie);
                try {
                    mCallbacks.getBroadcastItem(i).onValueChanged(status, cookie, msg);
                } catch (RemoteException e) {
                    Log.e(TAG, "....disconnected from " + cookie);
                }

            } else {
                Log.i(TAG, "....Trying next " + i);

            }
        }
        mCallbacks.finishBroadcast();
    }

    // queries the content provider for the username
    private boolean isLocalUsername(String username) {
        Cursor c = null;
        boolean isValid = false;
        try {
            c = getContentResolver().query(Observers.CONTENT_URI,
                    new String[]{Observers.Contract._ID},
                    Observers.Contract.USERNAME + " = ?",
                    new String[]{username}, null);
            //(Observers.CONTENT_URI, getContentResolver(),Observers.Contract.USERNAME,username);
            if (c != null && c.moveToFirst() && c.getCount() == 1)
                isValid = true;
        } finally {
            if (c != null)
                c.close();
        }
        return isValid;
    }

    private synchronized void addAuthenticatedSession(String sessionKey, String[] credentials) {
        Log.d(TAG, "Adding authorized session: " + sessionKey + ":" + credentials.length);
        openSessions.put(sessionKey, credentials);
    }

    private synchronized boolean removeAuthenticatedSession(String sessionKey) {
        Log.d(TAG, "Removing authorized session: " + sessionKey);
        boolean result = false;
        result = (openSessions.remove(sessionKey) != null);
        return result;
    }

    private synchronized void addTempSession(String sessionKey, String[] credentials) {
        Log.d(TAG, "Adding temp session: " + sessionKey + ":" + credentials.length);
        tempSessions.put(sessionKey, credentials);
    }

    private synchronized boolean removeTempSession(String sessionKey) {
        Log.d(TAG, "Removing temp session: " + sessionKey);
        boolean result = false;
        result = (tempSessions.remove(sessionKey) != null);
        return result;
    }

    private synchronized boolean isOpen(String sessionKey) {
        boolean result = false;
        synchronized (openSessions) {
            String[] session = openSessions.get(sessionKey);
            result = (session != null);
        }
        openSessions.notify();
        return result;
    }

    /**
     * Retrieves the memory stored password for network authentication
     * @param session
     * @return
     */
    protected String getPassword(String sessionKey) {
        return decrypt(openSessions.get(sessionKey)[1]);
    }

    //TODO do placeholder for encrypting the in memory String
    private String encrypt(String str) {
        return str;
    }

    //TODO do placeholder for decrypting the in memory String
    private String decrypt(String str) {
        return str;
    }

    private Uri registerNew(String username, String password, String uuid) {
        uuid = (uuid == null) ? UUIDUtil.generateObserverUUID(username).toString() : uuid;
        ContentValues values = new ContentValues();
        values.put(Observers.Contract.USERNAME, username);
        values.put(Observers.Contract.PASSWORD, encrypt(password));
        values.put(Observers.Contract.UUID, uuid);
        Uri uri = getContentResolver().insert(Observers.CONTENT_URI,
                values);
        return uri;
    }


    protected boolean connected() {
        ConnectivityManager cm = (ConnectivityManager)
                getSystemService(Context.CONNECTIVITY_SERVICE);
        NetworkInfo activeNetwork = cm.getActiveNetworkInfo();
        return (activeNetwork != null &&
                activeNetwork.isConnectedOrConnecting());

    }
}