Merge pull request #108 from auth0/fix-pwd-policy

lbalmaceda · web-flow · commit a15960a290aa · 2018-02-05T20:16:57.000-03:00
Support password policy error response
diff --git a/src/main/java/com/auth0/exception/APIException.java b/src/main/java/com/auth0/exception/APIException.java
@@ -74,7 +74,13 @@ private static String obtainExceptionMessage(Map<String, Object> values) {
             return (String) values.get("error_description");
         }
         if (values.containsKey("description")) {
-            return (String) values.get("description");
+            Object description = values.get("description");
+            if(description instanceof String) {
+                return (String) description;
+            } else{
+                PasswordStrengthErrorParser policy = new PasswordStrengthErrorParser((Map<String, Object>) description);
+                return policy.getDescription();
+            }
         }
         if (values.containsKey("message")) {
             return (String) values.get("message");
diff --git a/src/main/java/com/auth0/exception/PasswordStrengthErrorParser.java b/src/main/java/com/auth0/exception/PasswordStrengthErrorParser.java
@@ -0,0 +1,96 @@
+package com.auth0.exception;
+
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+@SuppressWarnings("unchecked")
+class PasswordStrengthErrorParser {
+    private static final String RULE_TYPE_LENGTH_AT_LEAST = "lengthAtLeast";
+    private static final String RULE_TYPE_CONTAINS_AT_LEAST = "containsAtLeast";
+    private static final String RULE_TYPE_SHOULD_CONTAIN = "shouldContain";
+    private static final String RULE_TYPE_IDENTICAL_CHARS = "identicalChars";
+
+    private static final String KEY_RULES = "rules";
+    private static final String KEY_CODE = "code";
+    private static final String KEY_VERIFIED = "verified";
+    private static final String KEY_FORMAT = "format";
+    private static final String KEY_ITEMS = "items";
+    private static final String KEY_MESSAGE = "message";
+
+    private String description;
+
+    PasswordStrengthErrorParser(Map<String, Object> descriptionMap) {
+        List<Map<String, Object>> rules = (List<Map<String, Object>>) descriptionMap.get(KEY_RULES);
+        parseRules(rules);
+    }
+
+    public String getDescription() {
+        return description;
+    }
+
+    private void parseRules(List<Map<String, Object>> rules) {
+        List<String> items = new ArrayList<>();
+        for (Map<String, Object> rule : rules) {
+            boolean isVerified = (boolean) rule.get(KEY_VERIFIED);
+            if (isVerified) {
+                continue;
+            }
+            String code = (String) rule.get(KEY_CODE);
+            switch (code) {
+                case RULE_TYPE_LENGTH_AT_LEAST:
+                    items.add(asLengthAtLeast(rule));
+                    break;
+                case RULE_TYPE_IDENTICAL_CHARS:
+                    items.add(asIdenticalChars(rule));
+                    break;
+                case RULE_TYPE_CONTAINS_AT_LEAST:
+                case RULE_TYPE_SHOULD_CONTAIN:
+                    items.add(asContainsCharset(rule));
+                    break;
+            }
+        }
+
+        this.description = joinStrings("; ", items);
+    }
+
+    private String asLengthAtLeast(Map<String, Object> rule) {
+        List<Number> length = (List<Number>) rule.get(KEY_FORMAT);
+        String message = (String) rule.get(KEY_MESSAGE);
+        return String.format(message, length.get(0).intValue());
+    }
+
+    private String asContainsCharset(Map<String, Object> rule) {
+        List<Map<String, Object>> itemsList = (List<Map<String, Object>>) rule.get(KEY_ITEMS);
+        List<String> items = new ArrayList<>();
+        for (Map<String, Object> i : itemsList) {
+            items.add((String) i.get(KEY_MESSAGE));
+        }
+        String requiredItems = joinStrings(", ", items);
+        String message = (String) rule.get(KEY_MESSAGE);
+
+        if (rule.containsKey(KEY_FORMAT)) {
+            List<Number> quantity = (List<Number>) rule.get(KEY_FORMAT);
+            message = String.format(message, quantity.get(0).intValue(), quantity.get(1).intValue());
+        }
+
+        return String.format("%s %s", message, requiredItems);
+    }
+
+    private String asIdenticalChars(Map<String, Object> rule) {
+        List<Object> example = (List<Object>) rule.get(KEY_FORMAT);
+        Number count = (Number) example.get(0);
+        String message = (String) rule.get(KEY_MESSAGE);
+        return String.format(message, count.intValue(), example.get(1));
+    }
+
+    private String joinStrings(String delimiter, List<String> items) {
+        StringBuilder sb = new StringBuilder();
+        int i;
+        for (i = 0; i < items.size() - 1; i++) {
+            sb.append(items.get(i)).append(delimiter);
+        }
+        sb.append(items.get(i));
+        return sb.toString();
+    }
+}
diff --git a/src/test/java/com/auth0/client/auth/AuthAPITest.java b/src/test/java/com/auth0/client/auth/AuthAPITest.java
@@ -1,13 +1,16 @@
 package com.auth0.client.auth;
 
 import com.auth0.client.MockServer;
+import com.auth0.exception.APIException;
 import com.auth0.json.auth.CreatedUser;
 import com.auth0.json.auth.TokenHolder;
 import com.auth0.json.auth.UserInfo;
 import com.auth0.net.AuthRequest;
 import com.auth0.net.Request;
 import com.auth0.net.SignUpRequest;
 import com.auth0.net.TelemetryInterceptor;
+import com.fasterxml.jackson.core.type.TypeReference;
+import com.fasterxml.jackson.databind.ObjectMapper;
 import okhttp3.Interceptor;
 import okhttp3.logging.HttpLoggingInterceptor;
 import okhttp3.logging.HttpLoggingInterceptor.Level;
@@ -18,6 +21,7 @@
 import org.junit.Test;
 import org.junit.rules.ExpectedException;
 
+import java.io.FileReader;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
@@ -37,6 +41,8 @@ public class AuthAPITest {
     private static final String DOMAIN = "domain.auth0.com";
     private static final String CLIENT_ID = "clientId";
     private static final String CLIENT_SECRET = "clientSecret";
+    private static final String PASSWORD_STRENGTH_ERROR_RESPONSE_NONE = "src/test/resources/auth/password_strength_error_none.json";
+    private static final String PASSWORD_STRENGTH_ERROR_RESPONSE_SOME = "src/test/resources/auth/password_strength_error_some.json";
 
     private MockServer server;
     private AuthAPI api;
@@ -379,6 +385,28 @@ public void shouldThrowOnUsernameSignUpWithNullConnection() throws Exception {
         api.signUp("me@auth0.com", "me", "p455w0rd", null);
     }
 
+    @Test
+    public void shouldHaveNotStrongPasswordWithDetailedDescription() throws Exception {
+        ObjectMapper mapper = new ObjectMapper();
+        FileReader fr = new FileReader(PASSWORD_STRENGTH_ERROR_RESPONSE_NONE);
+        Map<String, Object> mapPayload = mapper.readValue(fr, new TypeReference<Map<String, Object>>() {});
+        APIException ex = new APIException(mapPayload, 400);
+        assertThat(ex.getError(), is("invalid_password"));
+        String expectedDescription = "At least 10 characters in length; Contain at least 3 of the following 4 types of characters: lower case letters (a-z), upper case letters (A-Z), numbers (i.e. 0-9), special characters (e.g. !@#$%^&*); Should contain: lower case letters (a-z), upper case letters (A-Z), numbers (i.e. 0-9), special characters (e.g. !@#$%^&*); No more than 2 identical characters in a row (e.g., \"aaa\" not allowed)";
+        assertThat(ex.getDescription(), is(expectedDescription));
+    }
+
+    @Test
+    public void shouldHaveNotStrongPasswordWithShortDetailedDescription() throws Exception {
+        ObjectMapper mapper = new ObjectMapper();
+        FileReader fr = new FileReader(PASSWORD_STRENGTH_ERROR_RESPONSE_SOME);
+        Map<String, Object> mapPayload = mapper.readValue(fr, new TypeReference<Map<String, Object>>() {});
+        APIException ex = new APIException(mapPayload, 400);
+        assertThat(ex.getError(), is("invalid_password"));
+        String expectedDescription = "Should contain: lower case letters (a-z), upper case letters (A-Z), numbers (i.e. 0-9), special characters (e.g. !@#$%^&*)";
+        assertThat(ex.getDescription(), is(expectedDescription));
+    }
+
     @Test
     public void shouldCreateSignUpRequestWithUsername() throws Exception {
         SignUpRequest request = api.signUp("me@auth0.com", "me", "p455w0rd", "db-connection");
diff --git a/src/test/resources/auth/password_strength_error_none.json b/src/test/resources/auth/password_strength_error_none.json
@@ -0,0 +1,85 @@
+{
+  "code": "invalid_password",
+  "description": {
+    "rules": [
+      {
+        "code": "lengthAtLeast",
+        "format": [
+          10
+        ],
+        "message": "At least %d characters in length",
+        "verified": false
+      },
+      {
+        "code": "containsAtLeast",
+        "format": [
+          3,
+          4
+        ],
+        "items": [
+          {
+            "code": "lowerCase",
+            "message": "lower case letters (a-z)",
+            "verified": false
+          },
+          {
+            "code": "upperCase",
+            "message": "upper case letters (A-Z)",
+            "verified": false
+          },
+          {
+            "code": "numbers",
+            "message": "numbers (i.e. 0-9)",
+            "verified": false
+          },
+          {
+            "code": "specialCharacters",
+            "message": "special characters (e.g. !@#$%^&*)",
+            "verified": false
+          }
+        ],
+        "message": "Contain at least %d of the following %d types of characters:",
+        "verified": false
+      },
+      {
+        "code": "shouldContain",
+        "items": [
+          {
+            "code": "lowerCase",
+            "message": "lower case letters (a-z)",
+            "verified": false
+          },
+          {
+            "code": "upperCase",
+            "message": "upper case letters (A-Z)",
+            "verified": false
+          },
+          {
+            "code": "numbers",
+            "message": "numbers (i.e. 0-9)",
+            "verified": false
+          },
+          {
+            "code": "specialCharacters",
+            "message": "special characters (e.g. !@#$%^&*)",
+            "verified": false
+          }
+        ],
+        "message": "Should contain:",
+        "verified": false
+      },
+      {
+        "code": "identicalChars",
+        "format": [
+          2,
+          "aaa"
+        ],
+        "message": "No more than %d identical characters in a row (e.g., \"%s\" not allowed)",
+        "verified": false
+      }
+    ],
+    "verified": false
+  },
+  "name": "PasswordStrengthError",
+  "statusCode": 400
+}
diff --git a/src/test/resources/auth/password_strength_error_some.json b/src/test/resources/auth/password_strength_error_some.json
@@ -0,0 +1,85 @@
+{
+  "code": "invalid_password",
+  "description": {
+    "rules": [
+      {
+        "code": "lengthAtLeast",
+        "format": [
+          10
+        ],
+        "message": "At least %d characters in length",
+        "verified": true
+      },
+      {
+        "code": "containsAtLeast",
+        "format": [
+          3,
+          4
+        ],
+        "items": [
+          {
+            "code": "lowerCase",
+            "message": "lower case letters (a-z)",
+            "verified": true
+          },
+          {
+            "code": "upperCase",
+            "message": "upper case letters (A-Z)",
+            "verified": true
+          },
+          {
+            "code": "numbers",
+            "message": "numbers (i.e. 0-9)",
+            "verified": true
+          },
+          {
+            "code": "specialCharacters",
+            "message": "special characters (e.g. !@#$%^&*)",
+            "verified": false
+          }
+        ],
+        "message": "Contain at least %d of the following %d types of characters:",
+        "verified": true
+      },
+      {
+        "code": "shouldContain",
+        "items": [
+          {
+            "code": "lowerCase",
+            "message": "lower case letters (a-z)",
+            "verified": false
+          },
+          {
+            "code": "upperCase",
+            "message": "upper case letters (A-Z)",
+            "verified": false
+          },
+          {
+            "code": "numbers",
+            "message": "numbers (i.e. 0-9)",
+            "verified": false
+          },
+          {
+            "code": "specialCharacters",
+            "message": "special characters (e.g. !@#$%^&*)",
+            "verified": false
+          }
+        ],
+        "message": "Should contain:",
+        "verified": false
+      },
+      {
+        "code": "identicalChars",
+        "format": [
+          2,
+          "aaa"
+        ],
+        "message": "No more than %d identical characters in a row (e.g., \"%s\" not allowed)",
+        "verified": true
+      }
+    ],
+    "verified": false
+  },
+  "name": "PasswordStrengthError",
+  "statusCode": 400
+}
