java source code of RestUsers

NFVO-master
- security
  - src
    - main
      - java
        org
        openbaton
        nfvo
        security
        authentication
        CustomUserDetailsService.java
        GsonSerializerOAuth2AccessToken.java
        CustomClientDetailsService.java
        config
        OAuth2AuthorizationServerConfig.java
        OAuth2ResourceServerConfig.java
        SecurityConfig.java
        SecurityConfigurationGson.java
  - build.gradle
  - README.md
- vim-impl
  - src
    - main
      - java
        org
        openbaton
        vim_impl
        vim
        broker
        VimBroker.java
        GenericVIM.java
        monitoring
        broker
        MonitoringBroker.java
        MonitoringManager.java
    - test
      - java
        org
        openbaton
        vim_impl
        vim
        test
        ApplicationTest.java
        VimTestSuiteClass.java
  - build.gradle
- main
  - src
    - main
      - resources
        application-mysql.properties
        flyway
        V2_1_3_2__Populate_task.sql
        V3_2_0_1__Add_createdAt_updatedAt_to_NSD_VNFD_NSR_NSD.sql
        V4_0_1_0__add_user_role_to_base_user.sql
        V2_2_0_3__Increase_description_length_configuration.sql
        V2_2_0_0__Add_nfvo_version_to_vnf_package.sql
        V2_2_0_2__Increase_description_length.sql
        V4_1_0_1__fix_hibernate_version_2.sql
        V2_1_3_1__Add_task.sql
        V2_2_0_1__Add_history_entity.sql
        V3_2_0_2__Add_nfvo_version_to_NSD_VNFD.sql
        V5_0_0_0__rename_vim_instance_table.sql
        V4_0_1_1__Change_source_target_id_nullable.sql
        V4_1_0_0__fix_hibernate_version.sql
        V4_1_0_2__fix_hibernate_version_fault_management.sql
        banner.txt
        application.properties
      - java
        org
        openbaton
        nfvo
        main
        Application.java
        system
        AsyncExecutorConfig.java
        FlywayConfig.java
        SystemConfiguration.java
        SystemStartup.java
    - test
      - java
        org
        openbaton
        nfvo
        core
        test
        IntegrationClassSuiteTest.java
  - build.gradle
- openbaton.sh
- catalogue
  - src
    - main
      - java
        org
        openbaton
        catalogue
        security
        BaseUser.java
        Project.java
        Role.java
        HistoryEntity.java
        ServiceMetadata.java
        User.java
        Key.java
        BaseKey.java
        keys
        PopKeypair.java
        api
        DeployNSRBody.java
        ServiceCreateBody.java
        util
        EventFinishEvent.java
        BaseEntity.java
        IdGenerator.java
        nfvo
        Server.java
        VNFCDependencyParameters.java
        viminstances
        GenericVimInstance.java
        BaseVimInstance.java
        AvailabilityZone.java
        AmazonVimInstance.java
        OpenstackVimInstance.java
        DockerVimInstance.java
        InstallPluginEvent.java
        VDUMessage.java
        Item.java
        HistoryLifecycleEvent.java
        EventEndpoint.java
        Quota.java
        Configuration.java
        images
        DockerImage.java
        AWSImage.java
        BaseNfvImage.java
        NFVImage.java
        RequiresParameters.java
        ApplicationEventNFVO.java
        Endpoint.java
        Script.java
        CoreMessage.java
        networks
        DockerNetwork.java
        BaseNetwork.java
        AWSNetwork.java
        Network.java
        Subnet.java
        messages
        OrVnfmUpdateMessage.java
        VnfmOrScalingMessage.java
        VnfmOrAllocateResourcesMessage.java
        OrVnfmExecuteScriptMessage.java
        VnfmOrErrorMessage.java
        VnfmOrStartStopMessage.java
        OrVnfmScalingMessage.java
        VnfmOrInstantiateMessage.java
        OrVnfmGenericMessage.java
        Interfaces
        VnfmOrMessage.java
        OrVnfmMessage.java
        NFVMessage.java
        VnfmOrScaledMessage.java
        VnfmOrGenericMessage.java
        VnfmOrHealedMessage.java
        VnfmOrLogMessage.java
        OrVnfmErrorMessage.java
        OrVnfmLogMessage.java
        OrVnfmAllocateResourcesMessage.java
        VnfmOrGrantLifecycleOperationMessage.java
        OrVnfmHealVNFRequestMessage.java
        OrVnfmGrantLifecycleOperationMessage.java
        OrVnfmStartStopMessage.java
        OrVnfmInstantiateMessage.java
        ImageMetadata.java
        ImageStatus.java
        VnfmManagerEndpoint.java
        DependencyParameters.java
        Location.java
        PluginAnswer.java
        AdditionalRepoInfo.java
        PluginMessage.java
        ConfigurationParameter.java
        PackageType.java
        VNFPackageMetadata.java
        PluginEndpoint.java
        VNFPackage.java
        Action.java
        EndpointType.java
        ManagerCredentials.java
        mano
        record
        VirtualNetworkFunctionRecord.java
        VirtualLinkRecord.java
        VNFForwardingGraphRecord.java
        PhysicalNetworkFunctionRecord.java
        Status.java
        VNFCInstance.java
        LinkStatus.java
        NetworkServiceRecord.java
        VNFRecordDependency.java
        common
        faultmanagement
        VirtualizedResourceAlarmStateChangedNotification.java
        FaultManagementAction.java
        AbstractVNFAlarm.java
        VNFAlarmNotification.java
        Metric.java
        VirtualizedResourceAlarmNotification.java
        FaultManagementPolicy.java
        MonitoringParameter.java
        VNFAlarmStateChangedNotification.java
        Criteria.java
        VNFCSelector.java
        AbstractVirtualLink.java
        Event.java
        monitoring
        ThresholdDetails.java
        AbstractVirtualizedResourceAlarm.java
        AlarmType.java
        AlarmEndpoint.java
        VRAlarm.java
        ObjectSelection.java
        PerceivedSeverity.java
        FaultType.java
        AlarmState.java
        ThresholdType.java
        Alarm.java
        VNFAlarm.java
        AutoScalePolicy.java
        CostituentVNF.java
        ScalingType.java
        LifecycleEvent.java
        ConnectionPoint.java
        ScalingActionType.java
        ScalingMode.java
        VNFDeploymentFlavour.java
        RedundancyModel.java
        Ip.java
        CostituentVDU.java
        ScalingAlarm.java
        ScalingAction.java
        NetworkServiceDeploymentFlavour.java
        NFVEntityDescriptor.java
        ResiliencyLevel.java
        HighAvailability.java
        Security.java
        DeploymentFlavour.java
        descriptor
        VNFDependency.java
        InternalVirtualLink.java
        VNFComponent.java
        NetworkForwardingPath.java
        Policy.java
        VirtualNetworkFunctionDescriptor.java
        VirtualLinkDescriptor.java
        VDUDependency.java
        VNFForwardingGraphDescriptor.java
        NetworkServiceDescriptor.java
        PhysicalNetworkFunctionDescriptor.java
        VNFDConnectionPoint.java
        VirtualDeploymentUnit.java
  - build.gradle
- gradle.properties
- gradle
  - gradle
    - helpers.gradle
    - application.java.gradle
    - packaging.nfvo.debian.gradle
    - licenses.gradle
    - git.release.gradle
    - packaging.nfvo.docker.gradle
    - nexus.upload.plugin.gradle
    - git.helpers.gradle
    - scripts
      - openbaton-nfvo
      - openbaton-nfvo.conf
      - launch-script.pscript
      - systemd
        openbaton-nfvo.env
        openbaton-nfvo.service
        openbaton-nfvo.preexecstart
      - debian
        postinst
        postrm
        preinst
        prerm
    - distribution.gradle
    - dependencies.updater.gradle
  - wrapper
    - gradle-wrapper.properties
    - gradle-wrapper.jar
- monitoring
  - src
    - main
      - java
        org
        openbaton
        monitoring
        interfaces
        VirtualisedResourceFaultManagement.java
        MonitoringPlugin.java
        VirtualisedResourcesPerformanceManagement.java
        MonitoringPluginCaller.java
  - build.gradle
- plugin
  - src
    - main
      - java
        org
        openbaton
        plugin
        utils
        Utils.java
        PluginCaller.java
        RabbitPluginBroker.java
        mgmt
        PluginStartup.java
        interfaces
        Plugin.java
  - build.gradle
- .gitmodules
- gradlew.bat
- LICENSE
- api
  - src
    - main
      - java
        org
        openbaton
        nfvo
        api
        configuration
        CustomHttpServletRequestWrapper.java
        WebInitializer.java
        ErrorRequestHandler.java
        CustomDispatcherServlet.java
        catalogue
        RestVNFComponent.java
        RestVirtualLink.java
        RestVirtualNetworkFunctionDescriptor.java
        RestNetworkServiceDescriptor.java
        RestVNFFG.java
        RestNFVImage.java
        RestVNFPackage.java
        utils
        Utils.java
        interceptors
        AuthorizeInterceptor.java
        HistoryInterceptor.java
        LegacyInterceptor.java
        InterceptorConfiguration.java
        SchemaValidatorInterceptor.java
        admin
        RestPlugin.java
        RestVNFManager.java
        RestMain.java
        RestQuota.java
        RestVimInstances.java
        RestComponents.java
        RestKeys.java
        RestProject.java
        RestUsers.java
        runtime
        RestEvent.java
        RestLogs.java
        RestNetworkServiceRecord.java
        RestHistory.java
        exceptions
        ExceptionResource.java
        GlobalExceptionHandler.java
        swagger
        SwaggerConfig.java
        model
        DependencyObject.java
        tosca
        RestCSAR.java
        RestToscaNetworkServiceDescriptor.java
    - test
      - java
        org
        openbaton
        nfvo
        core
        tests
        api
        ApiRestBaseVimInstancesTest.java
        ApiRestNSDescriptorTest.java
  - build.gradle
- cli
  - src
    - main
      - java
        org
        openbaton
        nfvo
        cli
        OpenbatonCLI.java
  - gradle
    - wrapper
      - gradle-wrapper.properties
  - gradlew.bat
  - gradlew
  - build.gradle
- gradlew
- common
  - src
    - main
      - java
        org
        openbaton
        nfvo
        common
        configuration
        NfvoGsonDeserializerNetwork.java
        GsonConfiguration.java
        NfvoGsonDeserializerNFVMessage.java
        NfvoGsonDeserializerImage.java
        NfvoGsonSerializerVimInstance.java
        VnfmGsonDeserializerNFVMessage.java
        NfvoGsonDeserializerVimInstance.java
        RabbitConfiguration.java
        utils
        viminstance
        VimInstanceUtils.java
        rabbit
        RabbitManager.java
        schema
        SchemaValidator.java
        key
        KeyHelper.java
        internal
        model
        EventFinishNFVO.java
        EventNFVO.java
        interfaces
        Receiver.java
        Sender.java
  - build.gradle
- registration
  - src
    - main
      - java
        org
        openbaton
        registration
        Registration.java
  - build.gradle
- vnfm
  - vnfm-int
    - src
      - main
        java
        org
        openbaton
        vnfm
        interfaces
        state
        VnfStateHandler.java
        tasks
        AbstractTask.java
        register
        VnfmRegister.java
        manager
        MessageGenerator.java
        VnfmReceiver.java
        VnfmManager.java
        sender
        VnfmSender.java
    - build.gradle
  - vnfm-impl
    - src
      - main
        java
        org
        openbaton
        nfvo
        vnfm_reg
        impl
        receiver
        RabbitVnfmReceiver.java
        VnfmReceiverRest.java
        register
        RabbitRegister.java
        RestRegister.java
        sender
        RabbitVnfmSender.java
        RestVnfmSender.java
        state
        MessageGenerator.java
        VnfStateHandler.java
        tasks
        ModifyTask.java
        ScaledTask.java
        StopTask.java
        StartTask.java
        GrantoperationTask.java
        UpdatevnfrTask.java
        UpdateTask.java
        InstantiateTask.java
        ReleaseresourcesTask.java
        TaskExceptionHandler.java
        HealTask.java
        ScalingTask.java
        abstracts
        AbstractTask.java
        AllocateresourcesTask.java
        ErrorTask.java
        VnfmRegister.java
        VnfmManager.java
    - build.gradle
- exception
  - src
    - main
      - java
        org
        openbaton
        exceptions
        NetworkServiceIntegrityException.java
        IncompatibleVNFPackage.java
        NotAllowedException.java
        WrongAction.java
        AlreadyExistingException.java
        EntityInUseException.java
        NsrNotFoundException.java
        EntityUnreachableException.java
        VimDriverException.java
        WrongStatusException.java
        CyclicDependenciesException.java
        MonitoringException.java
        PluginException.java
        BadFormatException.java
        ExistingVNFPackage.java
        DescriptorWrongFormat.java
        BadRequestException.java
        PasswordWeakException.java
        MissingParameterException.java
        VimException.java
        QuotaExceededException.java
        VNFPackageFormatException.java
        NotFoundException.java
        VnfmException.java
  - build.gradle
- build.gradle
- screenrc
- vim-int
  - src
    - main
      - java
        org
        openbaton
        nfvo
        vim_interfaces
        vim
        Vim.java
        VimBroker.java
        monitoring
        MonitoringBroker.java
        image_management
        ImageManagement.java
        network_management
        NetworkManagement.java
        NetworkForwardingPathManagement.java
        resource_management
        ResourceManagement.java
        ResourceFaultManagement.java
        ResourceCapacityManagement.java
        ResourceCatalogueMangement.java
        flavor_management
        DeploymentFlavorManagement.java
        policy_management
        PolicyManagement.java
  - build.gradle
- .travis.yml
- README.md
- .screenrc
- tosca-parser
  - src
    - main
      - resources
        tosca_nsd.yaml
        tosca_vnfd.yaml
        types.yaml
      - java
        org
        openbaton
        utils
        Utils.java
        tosca
        templates
        RelationshipsTemplate.java
        NSDTemplate.java
        VNFDTemplate.java
        TopologyTemplate
        TopologyTemplate.java
        Nodes
        CP
        CPNodeTemplate.java
        CPRequirements.java
        CPProperties.java
        VDU
        VDUArtifact.java
        VDUFaultManagement.java
        VDUProperties.java
        VDUNodeTemplate.java
        VL
        VLNodeTemplate.java
        VNF
        VNFAutoscaling.java
        VNFConfigurations.java
        VNFNodeTemplate.java
        VNFProperties.java
        VNFRequirements.java
        VNFInterfaces.java
        NodeTemplate.java
        TOSCAMetadata.java
        exceptions
        NotFoundException.java
        parser
        CSARParser.java
        TOSCAParser.java
    - test
      - java
        org
        openbaton
        tosca
        tests
        ToscaTest.java
  - build.gradle
- core
  - core-impl
    - src
      - main
        java
        org
        openbaton
        nfvo
        core
        utils
        Utils.java
        CheckVNFPackage.java
        NSDUtils.java
        CheckVNFDescriptor.java
        NSRUtils.java
        api
        NetworkServiceRecordManagement.java
        VNFFGManagement.java
        ProjectManagement.java
        NetworkServiceDescriptorManagement.java
        NfvImageRepoManagement.java
        UserManagement.java
        VirtualNetworkFunctionManagement.java
        VNFManagerManagement.java
        QuotaManagement.java
        KeyManagement.java
        VimManagement.java
        HistoryManagement.java
        ComponentManager.java
        VNFPackageManagement.java
        VNFComponentManagment.java
        SecurityManagement.java
        VirtualLinkManagement.java
        ImageChecker.java
        PluginManager.java
        core
        VnfPlacementManagement.java
        NetworkServiceFaultManagement.java
        DependencyQueuer.java
        NetworkManagement.java
        ResourceManagement.java
        DependencyManagement.java
        VNFLifecycleOperationGranting.java
        LogManagement.java
        events
        EventDispatcher.java
        EventManagement.java
        senders
        RestEventSender.java
        RabbitEventSender.java
      - test
        java
        org
        openbaton
        nfvo
        core
        test
        ApplicationTest.java
        NetworkServiceDescriptorManagementClassSuiteTest.java
        NetworkManagementClassSuiteTest.java
        NetworkServiceRecordManagementClassSuiteTest.java
        MyVim.java
        TestUtils.java
        VNFLifecycleOperationGrantingClassSuiteTest.java
        NfvImageRepoManagementClassSuiteTest.java
        VimManagementClassSuiteTest.java
        VirtualLinkManagementClassSuiteTest.java
        VNFFGManagementClassSuiteTest.java
    - build.gradle
  - core-int
    - src
      - main
        java
        org
        openbaton
        nfvo
        core
        interfaces
        EventSender.java
        NetworkServiceRecordManagement.java
        VNFFGManagement.java
        VnfPlacementManagement.java
        ProjectManagement.java
        NetworkServiceDescriptorManagement.java
        NfvImageRepoManagement.java
        NetworkServiceFaultManagement.java
        VNFLifecycleChangeNotification.java
        DependencyQueuer.java
        NetworkManagement.java
        UserManagement.java
        VirtualNetworkFunctionManagement.java
        NetworkServiceLifecycleManagement.java
        EventDispatcher.java
        ResourceManagement.java
        VNFLifecycleManagement.java
        VNFManagerManagement.java
        EventManagement.java
        QuotaManagement.java
        KeyManagement.java
        NetworkServicePerformanceManagement.java
        VimManagement.java
        HistoryManagement.java
        DependencyManagement.java
        VNFLifecycleOperationGranting.java
        PolicyManagement.java
        ComponentManager.java
        NetworkServiceLifecycleChangeNotification.java
        VNFPackageManagement.java
        VNFComponentManagment.java
        SecurityManagement.java
        VirtualLinkManagement.java
        PluginManager.java
        LogManagement.java
    - build.gradle
- copyrights
- repository
  - src
    - main
      - java
        org
        openbaton
        nfvo
        repositories
        KeyRepositoryImpl.java
        ServiceRepository.java
        VNFFGDescriptorRepository.java
        VNFRecordDependencyRepository.java
        PhysicalNetworkFunctionDescriptorRepository.java
        VnfmEndpointRepository.java
        ManagerCredentialsRepository.java
        EventEndpointRepository.java
        NetworkServiceDescriptorRepository.java
        VirtualLinkDescriptorRepository.java
        SecurityRepository.java
        VimRepository.java
        NetworkRepository.java
        VNFRDependencyRepository.java
        ProjectRepository.java
        VNFPackageMetadataRepositoryImpl.java
        VirtualLinkRecordRepository.java
        VNFDependencyRepository.java
        VNFPackageMetadataRepositoryCustom.java
        KeyRepositoryCustom.java
        VimRepositoryImpl.java
        NetworkServiceRecordRepositoryImpl.java
        NFVImageRepository.java
        NetworkServiceRecordRepositoryCustom.java
        PluginEndpointRepository.java
        VimRepositoryCustom.java
        KeyRepository.java
        VNFCRepository.java
        VNFPackageMetadataRepository.java
        NetworkServiceDescriptorRepositoryImpl.java
        VNFDRepository.java
        VnfPackageRepository.java
        NetworkServiceRecordRepository.java
        VduRepository.java
        ScriptRepository.java
        UserRepository.java
        VNFRRepository.java
        VNFCInstanceRepository.java
        ImageRepository.java
        NetworkServiceDescriptorRepositoryCustom.java
        HistoryEntityRepository.java
    - test
      - java
        org
        openbaton
        nfvo
        repositories
        tests
        ApplicationTest.java
        RepositoriesClassSuiteTest.java
  - build.gradle
- Dockerfile
- settings.gradle
- vim-drivers
  - src
    - main
      - java
        org
        openbaton
        vim
        drivers
        VimDriverCaller.java
        interfaces
        ClientInterfaces.java
        VimDriver.java
  - build.gradle
- etc
  - rabbit-install.sh
  - diagrams
  - keystore.p12
  - cli.properties
  - descriptors
    - network_service_descriptors
      - sample-network-service-descriptor.json
    - datacenters
      - vim-instance.json
- .gitignore
- dashboard

/*
 * Copyright (c) 2015-2018 Open Baton (http://openbaton.org)
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.openbaton.nfvo.api.admin;

import com.google.gson.Gson;
import com.google.gson.JsonObject;
import io.swagger.annotations.ApiOperation;
import java.util.List;
import javax.validation.Valid;
import org.openbaton.catalogue.security.Role;
import org.openbaton.catalogue.security.User;
import org.openbaton.exceptions.BadRequestException;
import org.openbaton.exceptions.NotAllowedException;
import org.openbaton.exceptions.NotFoundException;
import org.openbaton.exceptions.PasswordWeakException;
import org.openbaton.nfvo.core.interfaces.UserManagement;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.security.oauth2.common.exceptions.UnauthorizedUserException;
import org.springframework.web.bind.annotation.PathVariable;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.bind.annotation.ResponseStatus;
import org.springframework.web.bind.annotation.RestController;

@RestController
@RequestMapping("/api/v1/users")
public class RestUsers {

  private Logger log = LoggerFactory.getLogger(this.getClass());

  @Autowired private UserManagement userManagement;
  @Autowired private Gson gson;

  /**
   * Adds a new User to the Users repository
   *
   * @param user
   * @return user
   */
  @ApiOperation(
      value = "Adding a User",
      notes = "The User data is passed as JSON in the Request Body")
  @RequestMapping(
      method = RequestMethod.POST,
      consumes = MediaType.APPLICATION_JSON_VALUE,
      produces = MediaType.APPLICATION_JSON_VALUE)
  @ResponseStatus(HttpStatus.CREATED)
  @PreAuthorize("hasAnyRole('ROLE_ADMIN')")
  public User create(@RequestBody @Valid User user)
      throws PasswordWeakException, NotAllowedException, BadRequestException, NotFoundException {
    log.info("Adding user: " + user.getUsername());
    if (isAdmin()) {
      user = userManagement.add(user);
      //      user.setPassword(null);
    } else {
      throw new NotAllowedException("Forbidden to create a new user");
    }
    return user;
  }

  /**
   * Removes the User from the Users repository
   *
   * @param id : the id of user to be removed
   */
  @ApiOperation(
      value = "Remove a User",
      notes = "Removes the user with the id specified in the URL. Admin privileges needed!")
  @RequestMapping(value = "{id}", method = RequestMethod.DELETE)
  @ResponseStatus(HttpStatus.NO_CONTENT)
  @PreAuthorize("hasAnyRole('ROLE_ADMIN')")
  public void delete(@PathVariable("id") String id) throws NotAllowedException, NotFoundException {
    log.info("Removing user with id " + id);
    if (isAdmin()) {
      if (!userManagement.getCurrentUser().getId().equals(id)) {
        User user = userManagement.query(id);
        userManagement.delete(user);
      } else {
        throw new NotAllowedException("You can't delete yourself. Please ask another admin.");
      }
    } else {
      throw new NotAllowedException("Forbidden to delete a user");
    }
  }

  @ApiOperation(
      value = "Remove multiple Users",
      notes = "Removes all users part of the List of ids passed in the Request Body")
  @RequestMapping(
      value = "/multipledelete",
      method = RequestMethod.POST,
      consumes = MediaType.APPLICATION_JSON_VALUE)
  @ResponseStatus(HttpStatus.NO_CONTENT)
  public void multipleDelete(@RequestBody @Valid List<String> ids) throws NotFoundException {
    if (userManagement != null) {
      for (String id : ids) {
        log.info("removing User with id " + id);
        userManagement.delete(userManagement.query(id));
      }
    }
  }

  /**
   * Returns the list of the Users available
   *
   * @return List<User>: The list of Users available
   */
  @ApiOperation(value = "Retrieve all Users", notes = "Returns all registered users")
  @RequestMapping(method = RequestMethod.GET)
  public List<User> findAll() {
    log.trace("Find all Users");
    return (List<User>) userManagement.query();
  }

  /**
   * Returns the User selected by username
   *
   * @param username : The username of the User
   * @return User: The User selected
   */
  @ApiOperation(
      value = "Retrieve a User",
      notes = "Retrieves a user based on the username specified in the URL")
  @RequestMapping(value = "{username}", method = RequestMethod.GET)
  public User findById(@PathVariable("username") String username) throws NotFoundException {
    log.trace("find User with username " + username);
    User user = userManagement.query(username);
    log.trace("Found User: " + user);
    return user;
  }

  @ApiOperation(value = "Retrieve the current User", notes = "Returns the user currently accessing")
  @RequestMapping(value = "current", method = RequestMethod.GET)
  public User findCurrentUser() throws NotFoundException {
    User user = userManagement.getCurrentUser();
    log.trace("Found User: " + user);
    return user;
  }

  /**
   * Updates the User
   *
   * @param new_user : The User to be updated
   * @return User The User updated
   */
  @ApiOperation(
      value = "Update a User",
      notes =
          "Updates a user based on the username specified in the url and the updated user body in the request")
  @RequestMapping(
      value = "{username}",
      method = RequestMethod.PUT,
      consumes = MediaType.APPLICATION_JSON_VALUE,
      produces = MediaType.APPLICATION_JSON_VALUE)
  @ResponseStatus(HttpStatus.ACCEPTED)
  @PreAuthorize("hasAnyRole('ROLE_ADMIN')")
  public User update(@RequestBody @Valid User new_user)
      throws NotAllowedException, BadRequestException, NotFoundException {
    return userManagement.update(new_user);
  }

  @ApiOperation(
      value = "Changing the current User's password",
      notes = "The current user can change his password by providing a new one")
  @RequestMapping(
      value = "changepwd",
      method = RequestMethod.PUT,
      consumes = MediaType.APPLICATION_JSON_VALUE)
  @ResponseStatus(HttpStatus.ACCEPTED)
  public void changePassword(@RequestBody /*@Valid*/ JsonObject newPwd)
      throws UnauthorizedUserException, PasswordWeakException {
    log.debug("Changing password");
    JsonObject jsonObject = gson.fromJson(newPwd, JsonObject.class);
    userManagement.changePassword(
        jsonObject.get("old_pwd").getAsString(), jsonObject.get("new_pwd").getAsString());
  }

  @ApiOperation(
      value = "Changing a User's password",
      notes = "If you want to change another User's password, you have to be an admin")
  @RequestMapping(
      value = "changepwd/{username}",
      method = RequestMethod.PUT,
      consumes = MediaType.APPLICATION_JSON_VALUE)
  @ResponseStatus(HttpStatus.ACCEPTED)
  @PreAuthorize("hasAnyRole('ROLE_ADMIN')")
  public void changePasswordOf(
      @PathVariable("username") String username, @RequestBody /*@Valid*/ JsonObject newPwd)
      throws UnauthorizedUserException, PasswordWeakException, NotFoundException,
          NotAllowedException {
    log.debug("Changing password of user " + username);
    if (isAdmin()) {
      JsonObject jsonObject = gson.fromJson(newPwd, JsonObject.class);
      userManagement.changePasswordOf(username, jsonObject.get("new_pwd").getAsString());
    } else {
      throw new NotAllowedException(
          "Forbidden to change password of other users. Only admins can do this.");
    }
  }

  public boolean isAdmin() throws NotFoundException {
    User currentUser = userManagement.getCurrentUser();
    log.trace("Check user if admin: " + currentUser.getUsername());
    for (Role role : currentUser.getRoles()) {
      if (role.getRole().ordinal() == Role.RoleEnum.ADMIN.ordinal()) {
        return true;
      }
    }
    return false;
  }
}