[MOSIP-41056] Updated review comments

Signed-off-by: pvsaidurga <[email protected]>

Author: pvsaidurga

compass-identity-plugin/README.md

@@ -32,10 +32,16 @@ mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 180,
   'consented': 120, 'vcissuance': ${mosip.esignet.access-token-expire-seconds}, 'apiRateLimit' : 180, 'blocked': 300, 'kycauth':1800, ,'challengehash': 1800}
 
 mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,\
-  linkedauth,consented,vcissuance,apiRateLimit,blocked,kycauth,challenghash
+  linkedauth,consented,vcissuance,apiRateLimit,blocked,kycauth,challeneghash
 
 ## Compass identity endpoint configuration, update the API credentials based on the environment
 
+mosip.esignet.send-otp.endpoint=https://api-internal.dev2.mosip.net/v1/otpmanager/otp/generate
+mosip.esignet.send-notification.endpoint=https://api-internal.dev2.mosip.net/v1/notifier/sms/send
+mosip.esignet.get-auth.endpoint=https://iam.dev2.mosip.net/auth/realms/mosip/protocol/openid-connect/token
+mosip.compass.user-info.endpoint= https://compass-admin.dev2.mosip.net/v1/admin/user-info
+mosip.esignet.client.secret=client-secret
+mosip.compass.client.secret=compass-client-secret
 
 
 ````

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/dto/NotificationRequest.java

@@ -2,11 +2,15 @@
 
 import lombok.AllArgsConstructor;
 import lombok.Data;
+import org.springframework.web.multipart.MultipartFile;
 
 @Data
 @AllArgsConstructor
 public class NotificationRequest {
-    private String number;
-    private String message;
+    private String[] mailTo;
+    private String[] mailCc;
+    private String[] mailSubject;
+    private String[] mailContent;
+    private MultipartFile[] attachments;
 }
 

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/dto/UserInfo.java

@@ -3,9 +3,11 @@
 import lombok.Data;
 
 import java.time.LocalDate;
+import java.util.UUID;
 
 @Data
 public class UserInfo {
+    private UUID userInfoId;
     private String birthCountry;
     private Long cardAccessNumber;
     private LocalDate dateOfBirth;
@@ -17,4 +19,5 @@ public class UserInfo {
     private String nationalUid;
     private String nationality;
     private String compassId;
+    private LocalDate issuanceDate;
 }

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/service/CacheService.java

@@ -11,7 +11,7 @@ public class CacheService {
 
     public static final String KYC_AUTH_CACHE="kycauth";
 
-    public static final String CHALLENGE_HASH="challengehash";
+    public static final String CHALLENGE_HASH_CACHE="challengehash";
 
     @Autowired
     CacheManager cacheManager;
@@ -25,11 +25,11 @@ public KycAuth getKycAuth(String kycToken) {
     }
 
     public void setChallengeHash(String challengeHash, String transactionId) {
-        cacheManager.getCache(CHALLENGE_HASH).put(transactionId, challengeHash);
+        cacheManager.getCache(CHALLENGE_HASH_CACHE).put(transactionId, challengeHash);
     }
 
     public String getChallengeHash(String transactionId) {
-        Cache.ValueWrapper valueWrapper = cacheManager.getCache(CHALLENGE_HASH).get(transactionId);
+        Cache.ValueWrapper valueWrapper = cacheManager.getCache(CHALLENGE_HASH_CACHE).get(transactionId);
         return valueWrapper != null ? (String) valueWrapper.get() : null;
     }
 

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/service/CompassAuthenticationService.java

@@ -5,6 +5,7 @@
  */
 package io.compass.esignet.plugin.service;
 
+import io.compass.esignet.plugin.dto.UserInfo;
 import io.compass.esignet.plugin.util.IdentityAPIClient;
 import io.mosip.esignet.api.dto.*;
 import io.mosip.esignet.api.exception.KycAuthException;
@@ -112,10 +113,15 @@ public SendOtpResult sendOtp(String relyingPartyId, String clientId, SendOtpDto
         String challenge = identityAPIClient.generateOTPChallenge(transactionId);
         String challengeHash = IdentityProviderUtil.generateB64EncodedHash(IdentityProviderUtil.ALGO_SHA3_256, challenge);
         cacheService.setChallengeHash(challengeHash,transactionId);
-        HashMap<String, String> hashMap = new LinkedHashMap<>();
-        hashMap.put("{challenge}", challenge);
-        identityAPIClient.sendSMSNotification(sendOtpDto.getIndividualId(), "en",
-                SEND_OTP_SMS_NOTIFICATION_TEMPLATE_KEY, hashMap);
+        UserInfo userInfo=identityAPIClient.getUserInfoByNationalUid(sendOtpDto.getIndividualId());
+        String email=userInfo.getEmail();
+        identityAPIClient.sendSMSNotification(
+                new String[]{email},
+                null,
+                new String[]{"subject"},
+                new String[]{"message"},
+                null
+        );
         SendOtpResult sendOtpResult=new SendOtpResult();
         sendOtpResult.setTransactionId(transactionId);
         return sendOtpResult;

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/service/CompassKeyBindingWrapperService.java

@@ -6,6 +6,7 @@
 package io.compass.esignet.plugin.service;
 
 import com.nimbusds.jose.jwk.RSAKey;
+import io.compass.esignet.plugin.dto.UserInfo;
 import io.compass.esignet.plugin.util.IdentityAPIClient;
 import io.mosip.esignet.api.dto.AuthChallenge;
 import io.mosip.esignet.api.dto.KeyBindingResult;
@@ -81,8 +82,15 @@ public SendOtpResult sendBindingOtp(String individualId, List<String> otpChannel
         cacheService.setChallengeHash(challengeHash,transactionId);
         HashMap<String, String> hashMap = new LinkedHashMap<>();
         hashMap.put("{challenge}", challenge);
-        identityAPIClient.sendSMSNotification(individualId, "eng",
-                SEND_OTP_SMS_NOTIFICATION_TEMPLATE_KEY, hashMap);
+        UserInfo userInfo=identityAPIClient.getUserInfoByNationalUid(individualId);
+        String email=userInfo.getEmail();
+        identityAPIClient.sendSMSNotification(
+                new String[]{email},
+                null,
+                new String[]{"subject"},
+                new String[]{"message"},
+                null
+        );
         SendOtpResult sendOtpResult=new SendOtpResult();
         sendOtpResult.setTransactionId(transactionId);
         return sendOtpResult;

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/service/HelperService.java

@@ -19,8 +19,6 @@
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Component;
 
-import java.lang.reflect.InvocationTargetException;
-import java.lang.reflect.Method;
 import java.nio.charset.StandardCharsets;
 import java.security.MessageDigest;
 import java.security.NoSuchAlgorithmException;
@@ -35,8 +33,6 @@ public class HelperService {
 
     public static final String ALGO_SHA3_256 = "SHA3-256";
 
-    private final String FIELD_ID_KEY="id";
-
     private static final Base64.Encoder urlSafeEncoder = Base64.getUrlEncoder().withoutPadding();
 
     public static final String APPLICATION_ID = "OIDC_SERVICE";
@@ -138,6 +134,11 @@ public Map<String, Object> buildKycDataBasedOnPolicy(List<String> claims, UserIn
         Map<String, Object> kyc = new HashMap<>();
         for (String claim : claims) {
             switch (claim) {
+                case "userInfoId":
+                    if (userInfo.getUserInfoId() != null) {
+                        kyc.put("userInfoId", userInfo.getFirstNamePrimary());
+                    }
+                    break;
                 case "name":
                     if (userInfo.getFirstNamePrimary() != null) {
                         kyc.put("name", userInfo.getFirstNamePrimary());
@@ -193,6 +194,11 @@ public Map<String, Object> buildKycDataBasedOnPolicy(List<String> claims, UserIn
                         kyc.put("compassId", userInfo.getCompassId());
                     }
                     break;
+                case "issuanceDate":
+                    if (userInfo.getIssuanceDate() != null) {
+                        kyc.put("issuanceDate", userInfo.getCompassId());
+                    }
+                    break;
             }
         }
         return kyc;

compass-identity-plugin/src/main/java/io/compass/esignet/plugin/util/IdentityAPIClient.java

@@ -8,22 +8,19 @@
 import io.mosip.esignet.core.util.IdentityProviderUtil;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.beans.factory.annotation.Qualifier;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.core.ParameterizedTypeReference;
-import org.springframework.core.env.Environment;
-import org.springframework.http.HttpEntity;
-import org.springframework.http.HttpMethod;
-import org.springframework.http.ResponseEntity;
-import org.springframework.scheduling.annotation.Async;
+import org.springframework.http.*;
 import org.springframework.stereotype.Component;
 import org.springframework.util.CollectionUtils;
+import org.springframework.util.LinkedMultiValueMap;
+import org.springframework.util.MultiValueMap;
 import org.springframework.util.StringUtils;
 import org.springframework.web.client.RestClientException;
 import org.springframework.web.client.RestTemplate;
+import org.springframework.web.multipart.MultipartFile;
+
 
-import java.util.Base64;
-import java.util.List;
 import java.util.Map;
 
 @Component
@@ -37,35 +34,66 @@ public class IdentityAPIClient {
     private String userInfoUrl;
 
     @Autowired
-    @Qualifier("selfTokenRestTemplate")
-    private RestTemplate selfTokenRestTemplate;
-
-    @Autowired
-    private Environment environment;
+    private RestTemplate restTemplate;
 
     @Value("${mosip.esignet.send-notification.endpoint}")
     private String sendNotificationEndpoint;
 
-    @Value("{${mosip.esignet.default-language}")
-    private String defaultLanguage;
+    @Value("${mosip.esignet.client.secret}")
+    private String clientSecret ;
+
+    @Value("${mosip.compass.client.secret}")
+    private String compassClientSecret ;
 
-    @Value("#{${mosip.esignet.sms-notification-template.encoded-langcodes}}")
-    private List<String> encodedLangCodes;
+    @Value("${mosip.esignet.get-auth.endpoint}")
+    private String getAuthTokenEndpoint;
 
-    @Value("${mosip.signup.identifier.prefix:}")
-    private String identifierPrefix;
+    public String getAuthToken(String client_id,String client_secret,String grant_type)
+    {
+        HttpHeaders headers = new HttpHeaders();
+        headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        MultiValueMap<String, String> body = new LinkedMultiValueMap<>();
+        body.add("client_id", client_id);
+        body.add("client_secret", client_secret);
+        body.add("grant_type", grant_type);
+
+        HttpEntity<MultiValueMap<String, String>> requestEntity = new HttpEntity<>(body, headers);
+
+        try {
+            ResponseEntity<Map> response = restTemplate.postForEntity(getAuthTokenEndpoint, requestEntity, Map.class);
+            if (response.getStatusCode().is2xxSuccessful()) {
+                Map<String, Object> responseBody = response.getBody();
+                if (responseBody != null && responseBody.containsKey("access_token")) {
+                    return responseBody.get("access_token").toString();
+                }
+            }
+        } catch (Exception e) {
+            throw new EsignetException(e.getMessage());
+        }
+        throw new EsignetException("Error fetching auth token");
+    }
 
     public String generateOTPChallenge(String challengeTransactionId) throws SendOtpException {
         OtpRequest otpRequest = new OtpRequest();
         otpRequest.setKey(challengeTransactionId);
         RequestWrapper<OtpRequest> restRequestWrapper = new RequestWrapper<>();
         restRequestWrapper.setRequestTime(IdentityProviderUtil.getUTCDateTime());
         restRequestWrapper.setRequest(otpRequest);
+        String token = getAuthToken("mosip-signup-client", clientSecret, "client_credentials");
+        if (token == null || token.isEmpty()) {
+            throw new SendOtpException("Token retrieval failed");
+        }
+
+        HttpHeaders headers = new HttpHeaders();
+        headers.setContentType(MediaType.APPLICATION_JSON);
+        headers.set("Cookie", "Authorization="+token);
+
+        HttpEntity<RequestWrapper<OtpRequest>> entity = new HttpEntity<>(restRequestWrapper, headers);
 
         try {
-            ResponseWrapper<OtpResponse> responseWrapper = selfTokenRestTemplate
+            ResponseWrapper<OtpResponse> responseWrapper = restTemplate
                     .exchange(generateChallengeUrl, HttpMethod.POST,
-                            new HttpEntity<>(restRequestWrapper),
+                            entity,
                             new ParameterizedTypeReference<ResponseWrapper<OtpResponse>>() {
                             })
                     .getBody();
@@ -86,48 +114,56 @@ public String generateOTPChallenge(String challengeTransactionId) throws SendOtp
     }
 
 
-    public void sendSMSNotification
-            (String number, String locale, String templateKey, Map<String, String> params) throws SendOtpException {
-
-        locale = locale != null ? locale : defaultLanguage;
+    public void sendSMSNotification(String[] mailTo,
+                                    String[] mailCc,
+                                    String[] mailSubject,
+                                    String[] mailContent,
+                                    MultipartFile[] attachments) throws SendOtpException {
 
-        String message = encodedLangCodes.contains(locale)?
-                new String(Base64.getDecoder().decode(environment.getProperty(templateKey + "." + locale))):
-                environment.getProperty(templateKey + "." + locale);
-
-        if (params != null && message != null) {
-            for (Map.Entry<String, String> entry : params.entrySet()) {
-                message = message.replace(entry.getKey(), entry.getValue());
-            }
-        }
-
-        NotificationRequest notificationRequest = new NotificationRequest(number.substring(identifierPrefix.length()), message);
+        NotificationRequest notificationRequest = new NotificationRequest(mailTo, mailCc, mailSubject, mailContent, attachments);
 
         RequestWrapper<NotificationRequest> restRequestWrapper = new RequestWrapper<>();
         restRequestWrapper.setRequestTime(IdentityProviderUtil.getUTCDateTime());
         restRequestWrapper.setRequest(notificationRequest);
+        String token = getAuthToken("mosip-signup-client", clientSecret, "client_credentials");
+        if (token == null || token.isEmpty()) {
+            throw new SendOtpException("Token retrieval failed");
+        }
+
+        HttpHeaders headers = new HttpHeaders();
+        headers.setContentType(MediaType.APPLICATION_JSON);
+        headers.set("Cookie", "Authorization="+token);
+
+        HttpEntity<RequestWrapper<NotificationRequest>> entity = new HttpEntity<>(restRequestWrapper, headers);
 
         try {
-            ResponseWrapper<NotificationResponse> responseWrapper = selfTokenRestTemplate.exchange(sendNotificationEndpoint,
+            ResponseWrapper<NotificationResponse> responseWrapper = restTemplate.exchange(sendNotificationEndpoint,
                     HttpMethod.POST,
-                    new HttpEntity<>(restRequestWrapper),
+                    entity,
                     new ParameterizedTypeReference<ResponseWrapper<NotificationResponse>>(){}).getBody();
             log.debug("Notification response -> {}", responseWrapper);
         } catch (RestClientException e){
             throw new SendOtpException("otp_notification_failed");
         }
     }
 
-    @Async
-    public void sendSMSNotificationAsync
-            (String number, String locale, String templateKey, Map<String, String> params) throws SendOtpException {
-        sendSMSNotification(number, locale, templateKey, params);
-    }
-
     public UserInfo getUserInfoByNationalUid(String nationalUid) {
         try {
-            ResponseEntity<UserInfo> responseEntity = selfTokenRestTemplate.getForEntity(
+            String token = getAuthToken("compass-admin", compassClientSecret, "client_credentials");
+            if (token == null || token.isEmpty()) {
+                throw new SendOtpException("Token retrieval failed");
+            }
+
+            HttpHeaders headers = new HttpHeaders();
+            headers.setContentType(MediaType.APPLICATION_JSON);
+            headers.set("Authorization","Bearer "+token);
+
+            HttpEntity<String> entity = new HttpEntity<>(headers);
+
+            ResponseEntity<UserInfo> responseEntity = restTemplate.exchange(
                     userInfoUrl + "/{nationalUid}",
+                    HttpMethod.GET,
+                    entity,
                     UserInfo.class,
                     nationalUid
             );