Added search users by createdTime and modifiedTime and a simple example of checking password policy (#150)

slavikm · web-flow · commit 08e2d9f5d62e · 2025-02-24T15:17:41.000-08:00
diff --git a/examples/check-pwd-policy/pom.xml b/examples/check-pwd-policy/pom.xml
@@ -0,0 +1,83 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xmlns="http://maven.apache.org/POM/4.0.0"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <groupId>com.descope</groupId>
+    <artifactId>check-pwd-policy</artifactId>
+    <version>1.0</version>
+
+    <properties>
+        <maven.compiler.release>17</maven.compiler.release>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <org.projectlombok.version>1.18.36</org.projectlombok.version>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>com.descope</groupId>
+            <artifactId>java-sdk</artifactId>
+            <version>[1.0.0,)</version>
+        </dependency>
+        <dependency>
+            <artifactId>jackson-databind</artifactId>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <version>2.18.1</version>
+        </dependency>
+        <dependency>
+            <artifactId>jackson-datatype-jsr310</artifactId>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <version>2.18.1</version>
+        </dependency>
+        <dependency>
+            <artifactId>commons-lang3</artifactId>
+            <groupId>org.apache.commons</groupId>
+            <version>3.17.0</version>
+        </dependency>
+
+        <!--  LOMBOK  -->
+        <dependency>
+            <artifactId>lombok</artifactId>
+            <groupId>org.projectlombok</groupId>
+            <scope>provided</scope>
+            <version>${org.projectlombok.version}</version>
+        </dependency>
+    </dependencies>
+    <build>
+        <plugins>
+            <plugin>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <groupId>org.apache.maven.plugins</groupId>
+                <version>3.13.0</version>
+                <configuration>
+                    <source>${maven.compiler.source}</source>
+                    <target>${maven.compiler.target}</target>
+                    <annotationProcessorPaths>
+                        <path>
+                            <groupId>org.projectlombok</groupId>
+                            <artifactId>lombok</artifactId>
+                            <version>${org.projectlombok.version}</version>
+                        </path>
+                    </annotationProcessorPaths>
+                </configuration>
+            </plugin>
+            <plugin>
+                <groupId>org.springframework.boot</groupId>
+                <artifactId>spring-boot-maven-plugin</artifactId>
+                <version>3.3.5</version>
+                <configuration>
+                    <mainClass>com.descope.CheckPwdPolicy</mainClass>
+                    <layout>JAR</layout>
+                </configuration>
+                <executions>
+                    <execution>
+                        <goals>
+                            <goal>repackage</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+        </plugins>
+    </build>
+</project>
diff --git a/examples/check-pwd-policy/src/main/java/com/descope/CheckPwdPolicy.java b/examples/check-pwd-policy/src/main/java/com/descope/CheckPwdPolicy.java
@@ -0,0 +1,87 @@
+package com.descope;
+
+import com.descope.client.DescopeClient;
+import com.descope.exception.DescopeException;
+import com.descope.model.passwordsettings.PasswordSettings;
+
+public class CheckPwdPolicy {
+  public static void main(String[] args) {
+    if (args.length != 2) {
+      System.err.println("Usage: CheckPwdPolicy <loginId> <password>");
+      System.exit(1);
+    }
+    try {
+      var client = new DescopeClient();
+      var userService = client.getManagementServices().getUserService();
+      var pwdPolicyService = client.getManagementServices().getPasswordSettingsService();
+      var res = userService.load(args[0]);
+      var commonPasswordSettings = PasswordSettings.builder()
+          .enabled(true)
+          .minLength(Integer.MIN_VALUE)
+          .expirationWeeks(Integer.MAX_VALUE)
+          .reuseAmount(Integer.MIN_VALUE)
+          .lockAttempts(Integer.MAX_VALUE)
+          .build();
+      if (res.getUser() != null && res.getUser().getUserTenants() != null) {
+        for (var tenant : res.getUser().getUserTenants()) {
+          var policy = pwdPolicyService.getSettings(tenant.getTenantId());
+          if (policy != null && policy.getEnabled()) {
+            if (policy.getMinLength() != null && policy.getMinLength() > commonPasswordSettings.getMinLength()) {
+              commonPasswordSettings.setMinLength(policy.getMinLength());
+            }
+            if (policy.getLowercase() != null && policy.getLowercase()) {
+              commonPasswordSettings.setLowercase(policy.getLowercase());
+            }
+            if (policy.getUppercase() != null && policy.getUppercase()) {
+              commonPasswordSettings.setUppercase(policy.getUppercase());
+            }
+            if (policy.getNumber() != null && policy.getNumber()) {
+              commonPasswordSettings.setNumber(policy.getNumber());
+            }
+            if (policy.getNonAlphanumeric() != null && policy.getNonAlphanumeric()) {
+              commonPasswordSettings.setNonAlphanumeric(policy.getNonAlphanumeric());
+            }
+            if (policy.getExpiration() != null && policy.getExpiration()) {
+              commonPasswordSettings.setExpiration(policy.getExpiration());
+              if (policy.getExpirationWeeks() != null
+                  && policy.getExpirationWeeks() < commonPasswordSettings.getExpirationWeeks()) {
+                commonPasswordSettings.setExpirationWeeks(policy.getExpirationWeeks());
+              }
+            }
+            if (policy.getReuse() != null && policy.getReuse()) {
+              commonPasswordSettings.setReuse(policy.getReuse());
+              if (policy.getReuseAmount() != null
+                  && policy.getReuseAmount() > commonPasswordSettings.getReuseAmount()) {
+                commonPasswordSettings.setReuseAmount(policy.getReuseAmount());
+              }
+            }
+            if (policy.getLock() != null && policy.getLock()) {
+              commonPasswordSettings.setLock(policy.getLock());
+              if (policy.getLockAttempts() != null
+                  && policy.getLockAttempts() < commonPasswordSettings.getLockAttempts()) {
+                commonPasswordSettings.setLockAttempts(policy.getLockAttempts());
+              }
+            }
+          }
+        }
+        if (args[1].length() < commonPasswordSettings.getMinLength()) {
+          System.out.println("Password does not meet the minimum length requirement");
+        }
+        if (commonPasswordSettings.getLowercase() && !args[1].matches(".*[a-z].*")) {
+          System.out.println("Password does not contain lowercase characters");
+        }
+        if (commonPasswordSettings.getUppercase() && !args[1].matches(".*[A-Z].*")) {
+          System.out.println("Password does not contain uppercase characters");
+        }
+        if (commonPasswordSettings.getNumber() && !args[1].matches(".*[0-9].*")) {
+          System.out.println("Password does not contain numeric characters");
+        }
+        if (commonPasswordSettings.getNonAlphanumeric() && args[1].matches("[a-zA-Z0-9]*")) {
+          System.out.println("Password does not contain non-alphanumeric characters");
+        }
+      }
+    } catch (DescopeException de) {
+      System.err.println(String.format("%s - %s", de.getCode(), de.getMessage()));
+    }
+  }
+}
diff --git a/pom.xml b/pom.xml
@@ -4,7 +4,7 @@
     <groupId>com.descope</groupId>
     <artifactId>java-sdk</artifactId>
     <modelVersion>4.0.0</modelVersion>
-    <version>1.0.31</version>
+    <version>1.0.32</version>
     <name>${project.groupId}:${project.artifactId}</name>
     <description>Java library used to integrate with Descope.</description>
     <url>https://github.com/descope/descope-java</url>
diff --git a/src/main/java/com/descope/model/user/request/UserSearchRequest.java b/src/main/java/com/descope/model/user/request/UserSearchRequest.java
@@ -1,6 +1,9 @@
 package com.descope.model.user.request;
 
 import com.descope.enums.UserStatus;
+import com.descope.utils.InstantToMillisSerializer;
+import com.fasterxml.jackson.databind.annotation.JsonSerialize;
+import java.time.Instant;
 import java.util.List;
 import java.util.Map;
 import lombok.AllArgsConstructor;
@@ -27,4 +30,16 @@ public class UserSearchRequest {
   List<String> phones;
   List<String> loginIds;
   List<String> ssoAppIds;
+  /** Retrieve only users created after the given time. */
+  @JsonSerialize(using = InstantToMillisSerializer.class)
+  Instant fromCreatedTime;
+  /** Retrieve only users created before the given time. */
+  @JsonSerialize(using = InstantToMillisSerializer.class)
+  Instant toCreatedTime;
+  /** Retrieve only users updated after the given time. */
+  @JsonSerialize(using = InstantToMillisSerializer.class)
+  Instant fromModifiedTime;
+  /** Retrieve only users updated before the given time. */
+  @JsonSerialize(using = InstantToMillisSerializer.class)
+  Instant toModifiedTime;
 }
diff --git a/src/main/java/com/descope/utils/InstantToMillisSerializer.java b/src/main/java/com/descope/utils/InstantToMillisSerializer.java
@@ -0,0 +1,19 @@
+package com.descope.utils;
+
+import com.fasterxml.jackson.core.JsonGenerator;
+import com.fasterxml.jackson.databind.SerializerProvider;
+import com.fasterxml.jackson.databind.ser.std.StdSerializer;
+import java.io.IOException;
+import java.time.Instant;
+
+public class InstantToMillisSerializer extends StdSerializer<Instant> {
+
+  public InstantToMillisSerializer() {
+    super(Instant.class);
+  }
+
+  @Override
+  public void serialize(Instant value, JsonGenerator gen, SerializerProvider provider) throws IOException {
+    gen.writeNumber(value.toEpochMilli());
+  }
+}
diff --git a/src/test/java/com/descope/model/user/request/UserSearchRequestTest.java b/src/test/java/com/descope/model/user/request/UserSearchRequestTest.java
@@ -0,0 +1,38 @@
+package com.descope.model.user.request;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import java.time.Instant;
+import java.util.Collections;
+import org.junit.jupiter.api.Test;
+
+
+public class UserSearchRequestTest {
+
+  @Test
+  public void testInstantSerialization() throws JsonProcessingException {
+    ObjectMapper mapper = new ObjectMapper();
+    Instant now = Instant.now();
+    UserSearchRequest request = UserSearchRequest.builder()
+        .fromCreatedTime(now)
+        .toCreatedTime(now)
+        .fromModifiedTime(now)
+        .toModifiedTime(now)
+        .tenantIds(Collections.singletonList("tenant1"))
+        .roles(Collections.singletonList("role1"))
+        .build();
+
+    String json = mapper.writeValueAsString(request);
+
+    long expectedMillis = now.toEpochMilli();
+    String expectedJson = String.format(
+        "{\"tenantIds\":[\"tenant1\"],\"roles\":[\"role1\"],\"limit\":0,\"page\":0,\"withTestUser\":null,"
+        + "\"testUsersOnly\":null,\"customAttributes\":null,\"statuses\":null,\"emails\":null,\"phones\":null,"
+        + "\"loginIds\":null,\"ssoAppIds\":null,\"fromCreatedTime\":%d,\"toCreatedTime\":%d,\"fromModifiedTime\":%d,"
+        + "\"toModifiedTime\":%d}", expectedMillis, expectedMillis, expectedMillis, expectedMillis);
+
+    assertEquals(expectedJson, json);
+  }
+}
diff --git a/src/test/java/com/descope/sdk/mgmt/impl/UserServiceImplTest.java b/src/test/java/com/descope/sdk/mgmt/impl/UserServiceImplTest.java
@@ -54,6 +54,8 @@
 import com.descope.sdk.mgmt.UserService;
 import java.security.SecureRandom;
 import java.security.spec.KeySpec;
+import java.time.Duration;
+import java.time.Instant;
 import java.util.Arrays;
 import java.util.List;
 import java.util.Map;
@@ -902,7 +904,8 @@ void testFunctionalFullCycle() {
     assertEquals(true, user.getVerifiedPhone());
     assertEquals("Testing Test", user.getName());
     assertEquals("enabled", user.getStatus());
-    AllUsersResponseDetails searchResponse = userService.searchAll(null);
+    AllUsersResponseDetails searchResponse = userService.searchAll(
+        UserSearchRequest.builder().fromCreatedTime(Instant.now().minus(Duration.ofMinutes(5))).build());
     boolean found = false;
     for (UserResponse u : searchResponse.getUsers()) {
       if (u.getUserId().equals(createResponse.getUser().getUserId())) {
