scala source code of SecurityController

cluster-broccoli-master
- script
  - instances-0.7.0-to-0.8.0.py
  - templates-0.7.0-to-0.8.0.py
  - instances-0.6.0-to-0.7.0.sh
  - broccoli2broccoli.js
- http-api-tests
  - broccoli-nomad
    - api-v1-instances-edit-parameter-restart
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-stop
      - url
      - expected
        http-status
      - method
      - before
    - api-v1-instances-start
      - url
      - expected
        http-status
      - method
      - before
    - api-v1-instances-edit-template-no-restart
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-edit-parameter-start
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - after-each
    - api-v1-instances-delete
      - url
      - expected
        http-status
      - method
      - before
    - before-each
    - api-v1-instances-edit-template-restart
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-service-status-unknown
      - url
      - expected
        response-data
        http-status
      - method
      - before
  - instance-persistence-dir
    - api-v1-instances-show-after-create
      - url
      - expected
        http-status
      - method
      - before
    - after-each
    - api-v1-instances-show-after-edit
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-show-after-delete
      - url
      - expected
        http-status
      - method
      - before
    - api-v1-instances-create-many
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - before-each
  - instance-persistence-couchdb
    - api-v1-instances-show-after-create
      - url
      - expected
        http-status
      - method
      - before
    - after-each
    - api-v1-instances-show-after-edit
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-show-after-delete
      - url
      - expected
        http-status
      - method
      - before
    - api-v1-instances-create-many
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - before-each
  - broccoli-only
    - api-v1-instances-edit-parameter-id
      - request-data
      - url
      - request-header
      - expected
        http-status
      - method
      - before
    - api-v1-instances-show-after-create
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-edit-template-invalidParameters
      - request-data
      - url
      - request-header
      - expected
        http-status
      - method
      - before
    - api-v1-about
      - url
      - expected
        response-data
        http-status
      - method
    - after-each
    - api-v1-instances-show-after-edit
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-edit-parameters-200
      - request-data
      - url
      - request-header
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-edit-template-200
      - request-data
      - url
      - request-header
      - expected
        response-data
        http-status
      - method
      - before
    - api-v1-instances-edit-template-notExisting
      - request-data
      - url
      - request-header
      - expected
        http-status
      - method
      - before
    - api-v1-instances-show-after-delete
      - url
      - expected
        http-status
      - method
      - before
    - api-v1-templates-show-404
      - url
      - expected
        http-status
      - method
    - api-v1-instances-edit-parameters-missing-with-default
      - request-data
      - url
      - request-header
      - expected
        http-status
      - method
      - before
    - api-v1-instances-edit-parameters-notExisting
      - request-data
      - url
      - request-header
      - expected
        http-status
      - method
      - before
    - api-v1-templates-list
      - url
      - expected
        response-data
        http-status
      - method
    - before-each
    - api-v1-instances-list-empty
      - url
      - expected
        response-data
        http-status
      - method
    - root-reachable
      - url
      - expected
        http-status
      - method
    - api-v1-instances-edit-parameters-404
      - request-data
      - url
      - request-header
      - expected
        http-status
      - method
    - api-v1-templates-show
      - url
      - expected
        response-data
        http-status
      - method
    - api-v1-instances-show-404
      - url
      - expected
        http-status
      - method
  - broccoli-nomad-consul
    - api-v1-instances-service-status
      - url
      - expected
        response-data
        http-status
      - method
      - before
    - after-each
    - api-v1-examples-http-server
      - run
      - before
    - before-each
- LICENSE
- project
  - Dependencies.scala
  - build.properties
  - YarnPlugin.scala
  - plugins.sbt
- templates
  - http-server
    - template.json
    - template.conf
  - jupyter
    - template.json
    - template.conf
  - curl
    - template.json
    - template.conf
- prepare-docker-builds
- docker
  - test
    - couchdb.conf
    - Dockerfile
- .travis.yml
- README.md
- webui
  - src
    - Model.elm
    - Ws.elm
    - Views
      - ServicesView.elm
      - Footer.elm
      - ParameterFormView.elm
      - Body.elm
      - Styles.elm
      - LogUrl.elm
      - Header.elm
      - InstanceView.elm
      - InstancesView.elm
      - Notifications.elm
      - ResourceUsageBar.elm
      - TemplateView.elm
      - JobStatusView.elm
      - InstanceDetailView.elm
      - PeriodicRunsView.elm
      - JobTasksView.elm
    - Commands
      - Fetch.elm
      - LoginLogout.elm
    - Models
      - Resources
        Template.elm
        Service.elm
        PeriodicRun.elm
        InstanceTasks.elm
        InstanceCreation.elm
        InstanceUpdated.elm
        InstanceError.elm
        InstanceDeleted.elm
        JobStatus.elm
        TaskState.elm
        AboutInfo.elm
        ClientStatus.elm
        UserInfo.elm
        InstanceUpdate.elm
        ServiceStatus.elm
        Role.elm
        Instance.elm
        LogKind.elm
        AllocatedTask.elm
        Allocation.elm
        InstanceCreated.elm
      - Ui
        BodyUiModel.elm
        LoginForm.elm
        InstanceParameterForm.elm
        Notifications.elm
    - Messages.elm
    - Updates
      - UpdateLoginForm.elm
      - Messages.elm
      - UpdateBodyView.elm
      - UpdateLoginStatus.elm
      - UpdateErrors.elm
    - Utils
      - DictUtils.elm
      - HtmlUtils.elm
      - DecodeUtils.elm
      - ListUtils.elm
      - CmdUtils.elm
      - ParameterUtils.elm
      - StringUtils.elm
      - TaskUtils.elm
    - index.css
    - index.js
    - Routing.elm
    - Main.elm
  - yarn.lock
  - webpack.config.js
  - elm-package.json
  - README.md
  - package.json
  - tests
    - Views
      - LogUrlSuite.elm
      - BodySuite.elm
      - HeaderSuite.elm
      - NotificationsSuite.elm
      - PeriodicRunsViewSuite.elm
      - FooterSuite.elm
    - elm-package.json
    - Utils
      - ParameterUtilsSuite.elm
      - DictUtilsSuite.elm
    - .gitignore
    - Main.elm
  - .gitignore
  - webpack.config.prod.js
- .scalafmt.conf
- server
  - src
    - main
      - resources
        application.conf
        logback.xml
        reference.conf
        routes
      - scala
        jp
        t2v
        lab
        play2
        auth
        MultiLoginCacheIdContainer.scala
        BroccoliSimpleAuthorization.scala
        BroccoliWebsocketSecurity.scala
        de
        frosner
        broccoli
        services
        TemplateNotFoundException.scala
        InstanceService.scala
        AboutInfoService.scala
        TemplateService.scala
        WebSocketService.scala
        NomadRequestFailed.scala
        PrefixViolationException.scala
        ParameterValueExceptions.scala
        SecurityService.scala
        NomadService.scala
        ConsulService.scala
        InvalidWebsocketConnectionException.scala
        logging.scala
        BroccoliConfiguration.scala
        instances
        NomadInstances.scala
        storage
        filesystem
        FileSystemInstanceStorage.scala
        FileSystemStorageModule.scala
        FileSystemConfiguration.scala
        couchdb
        CouchDBStorageModule.scala
        CouchDBConfiguration.scala
        CouchDBInstanceStorage.scala
        InstanceStorage.scala
        StorageConfiguration.scala
        InstanceConfiguration.scala
        InstanceNotFoundException.scala
        PeriodicJobNotFoundException.scala
        InstanceModule.scala
        websocket
        IncomingMessage.scala
        WebSocketMessageHandler.scala
        OutgoingMessage.scala
        WebSocketConfiguration.scala
        WebSocketModule.scala
        BroccoliModule.scala
        models
        ParameterInfo.scala
        ParameterValue.scala
        InstanceCreated.scala
        InstanceError.scala
        JobStatus.scala
        InstanceUpdate.scala
        InstanceTasks.scala
        Instance.scala
        ParameterType.scala
        InstanceDeleted.scala
        PeriodicRun.scala
        ServiceStatus.scala
        InstanceUpdated.scala
        Service.scala
        InstanceCreation.scala
        AllocatedTask.scala
        Template.scala
        InstanceWithStatus.scala
        AboutInfo.scala
        templates
        TemplateSource.scala
        CachedTemplateSource.scala
        TemplateModule.scala
        TemplateConfiguration.scala
        DirectoryTemplateSource.scala
        SignalRefreshedTemplateSource.scala
        TemplateConfig.scala
        jinjava
        JinjavaConfiguration.scala
        JinjavaModule.scala
        TemplateRenderer.scala
        controllers
        SecurityController.scala
        AuthConfigImpl.scala
        InstanceController.scala
        WebSocketController.scala
        TemplateController.scala
        AboutController.scala
        StatusController.scala
        RemoveSecrets.scala
        nomad
        NomadClient.scala
        package.scala
        NomadHttpClient.scala
        models
        Allocation.scala
        TaskState.scala
        CpuStats.scala
        ResourceUsage.scala
        Job.scala
        NomadError.scala
        ClientStatus.scala
        MemoryStats.scala
        WithId.scala
        TaskGroup.scala
        Service.scala
        Node.scala
        TaskLog.scala
        TaskStats.scala
        Resources.scala
        Task.scala
        AllocationStats.scala
        TaskStateEvents.scala
        LogStreamKind.scala
        UnexpectedNomadHttpApiError.scala
        NomadModule.scala
        NomadConfiguration.scala
        signal
        SignalManager.scala
        UnixSignalManager.scala
        SignalModule.scala
        http
        Filters.scala
        AccessControlFilter.scala
        ToHTTPResult.scala
        auth
        InMemoryIdentityService.scala
        AuthModule.scala
        AuthConfiguration.scala
        AuthMode.scala
        Account.scala
        Role.scala
        conf
        IllegalConfigException.scala
        package.scala
        routes
        Extractors.scala
        PathBinders.scala
        DownloadsRouter.scala
        ApiV1Router.scala
    - it
      - scala
        de
        frosner
        broccoli
        test
        contexts
        WSClientContext.scala
        docker
        BroccoliTestService.scala
        BroccoliDockerContext.scala
        nomad
        NomadHttpClientIntegrationSpec.scala
        signal
        UnixSignalManagerIntegrationSpec.scala
    - test
      - resources
        de
        frosner
        broccoli
        services
        nomad
        allocations.json
        node.json
        templates
        curl-without-decription
        template.json
        template.conf
        curl
        template.json
        template.conf
      - scala
        jp
        t2v
        lab
        play2
        auth
        MultiLoginCacheIdContainerSpec.scala
        de
        frosner
        broccoli
        services
        AboutInfoServiceSpec.scala
        WebSocketServiceSpec.scala
        InstanceServiceSpec.scala
        NomadServiceSpec.scala
        SecurityServiceSpec.scala
        instances
        NomadInstancesSpec.scala
        storage
        filesystem
        FileSystemInstanceStorageSpec.scala
        couchdb
        CouchDBInstanceStorageSpec.scala
        InstanceStorageSpec.scala
        websocket
        BroccoliMessageHandlerSpec.scala
        models
        InstanceSpec.scala
        TemplateSpec.scala
        InstanceErrorSpec.scala
        InstanceWithStatusSpec.scala
        InstanceTasksSpec.scala
        ModelArbitraries.scala
        ParameterInfoSpec.scala
        ServiceStatusSpec.scala
        InstanceStatusSpec.scala
        ServiceSpec.scala
        templates
        TemplateSourceSpec.scala
        CachedTemplateSourceSpec.scala
        TemporaryTemplatesContext.scala
        SignalRefreshedTemplateSourceSpec.scala
        DirectoryTemplateSourceSpec.scala
        TemplateRendererSpec.scala
        TemplateConfigSpec.scala
        util
        TemporaryDirectoryContext.scala
        Resources.scala
        controllers
        ServiceMocks.scala
        SecurityControllerSpec.scala
        InstanceControllerSpec.scala
        TemplateControllerSpec.scala
        AuthUtils.scala
        WebSocketControllerSpec.scala
        WsTestUtil.scala
        AboutControllerSpec.scala
        nomad
        models
        NodeSpec.scala
        AllocationSpec.scala
        ModelArbitraries.scala
        signal
        UnixSignalManagerSpec.scala
        LoggingSpec.scala
        http
        ToHTTPResultSpec.scala
- build.sbt
- .gitignore
- scalafmt

package de.frosner.broccoli.controllers

import javax.inject.Inject

import cats.data.{EitherT, OptionT}
import cats.instances.future._
import cats.syntax.either._
import com.mohiva.play.silhouette.api.util.Credentials
import com.mohiva.play.silhouette.impl.providers.CredentialsProvider
import de.frosner.broccoli.services.{SecurityService, WebSocketService}
import jp.t2v.lab.play2.auth.{BroccoliSimpleAuthorization, LoginLogout}
import play.api.{Environment, Logger}
import play.api.cache.CacheApi
import play.api.data.Forms._
import play.api.data._
import play.api.libs.json.Json
import play.api.mvc.{Action, AnyContent, Controller, Results}

import scala.concurrent.Future

case class SecurityController @Inject()(
    override val securityService: SecurityService,
    override val cacheApi: CacheApi,
    override val playEnv: Environment,
    webSocketService: WebSocketService
) extends Controller
    with LoginLogout
    with BroccoliSimpleAuthorization {

  private val log = Logger(getClass)

  import scala.concurrent.ExecutionContext.Implicits.global

  // https://www.playframework.com/documentation/2.5.x/ScalaForms
  val loginForm = Form {
    mapping(
      SecurityController.UsernameFormKey -> text,
      SecurityController.PasswordFormKey -> text
    )(Credentials.apply)(Credentials.unapply)
  }

  def login: Action[AnyContent] = Action.async { implicit request =>
    getSessionId(request).map(id => (id, webSocketService.closeConnections(id))) match {
      case Some((id, true)) => log.info(s"Removing websocket connection of $id due to another login")
      case _                =>
    }
    (for {
      credentials <- EitherT.fromEither[Future](
        loginForm.bindFromRequest().fold(Function.const(Results.BadRequest.asLeft), _.asRight))
      login <- OptionT(securityService.authenticate(credentials)).toRight(Results.Unauthorized)
      result <- EitherT.right(gotoLoginSucceeded(login.providerKey))
      user <- OptionT(resolveUser(login.providerKey)).toRight(Results.Unauthorized)
    } yield {
      val userResult = Results.Ok(Json.toJson(user))
      result.copy(
        header = result.header.copy(
          headers = userResult.header.headers
            .get("Content-Type")
            .map { contentType =>
              result.header.headers.updated("Content-Type", contentType)
            }
            .getOrElse(result.header.headers)
        ),
        body = userResult.body
      )
    }).merge
  }

  def logout = Action.async(parse.empty) { implicit request =>
    gotoLogoutSucceeded.andThen {
      case tryResult =>
        getSessionId(request).map(id => (id, webSocketService.closeConnections(id))) match {
          case Some((id, true))  => log.info(s"Removing websocket connection of $id due to logout")
          case Some((id, false)) => log.info(s"There was no websocket connection for session $id")
          case None              => log.info(s"No session available to logout from")
        }
    }
  }

  def verify = StackAction(parse.empty) { implicit request =>
    Ok(loggedIn.name)
  }

}

object SecurityController {

  val UsernameFormKey = "username"
  val PasswordFormKey = "password"

}