feature/Tweak endpoint verifyUserCredentials v6.0.0

constantine2nd · constantine2nd · commit 602d53b56c2b · 2026-03-04T05:51:47.000+01:00
diff --git a/obp-api/src/main/scala/code/api/v6_0_0/APIMethods600.scala b/obp-api/src/main/scala/code/api/v6_0_0/APIMethods600.scala
@@ -8752,8 +8752,7 @@ trait APIMethods600 {
       case "users" :: "verify-credentials" :: Nil JsonPost json -> _ => {
         cc => implicit val ec = EndpointContext(Some(cc))
           for {
-            (Full(u), callContext) <- authenticatedAccess(cc)
-            postedData <- NewStyle.function.tryons(s"$InvalidJsonFormat The Json body should be the PostVerifyUserCredentialsJsonV600", 400, callContext) {
+            postedData <- NewStyle.function.tryons(s"$InvalidJsonFormat The Json body should be the PostVerifyUserCredentialsJsonV600", 400, Some(cc)) {
               json.extract[PostVerifyUserCredentialsJsonV600]
             }
             // Validate credentials using the existing AuthUser mechanism
@@ -8788,27 +8787,27 @@ trait APIMethods600 {
                 }
               }
             // Check if account is locked
-            _ <- Helper.booleanToFuture(UsernameHasBeenLocked, 401, callContext) {
+            _ <- Helper.booleanToFuture(UsernameHasBeenLocked, 401, Some(cc)) {
               resourceUserIdBox != Full(code.model.dataAccess.AuthUser.usernameLockedStateCode)
             }
             // Check if credentials are valid
             resourceUserId <- Future {
               resourceUserIdBox
             } map {
-              x => unboxFullOrFail(x, callContext, s"$InvalidLoginCredentials Failed to authenticate user credentials.", 401)
+              x => unboxFullOrFail(x, Some(cc), s"$InvalidLoginCredentials Failed to authenticate user credentials.", 401)
             }
             // Get the user object
             user <- Future {
               Users.users.vend.getUserByResourceUserId(resourceUserId)
             } map {
-              x => unboxFullOrFail(x, callContext, s"$InvalidLoginCredentials User account not found in system.", 401)
+              x => unboxFullOrFail(x, Some(cc), s"$InvalidLoginCredentials User account not found in system.", 401)
             }
             // Verify provider matches if specified and not empty
-            _ <- Helper.booleanToFuture(s"$InvalidLoginCredentials Authentication provider mismatch.", 401, callContext) {
+            _ <- Helper.booleanToFuture(s"$InvalidLoginCredentials Authentication provider mismatch.", 401, Some(cc)) {
               postedData.provider.isEmpty || user.provider == postedData.provider
             }
           } yield {
-            (JSONFactory200.createUserJSON(user), HttpCode.`200`(callContext))
+            (JSONFactory200.createUserJSON(user), HttpCode.`200`(Some(cc)))
           }
       }
     }

Original file line number	Diff line number	Diff line change
`@@ -8752,8 +8752,7 @@ trait APIMethods600 {`
`8752`	`8752`	`case "users" :: "verify-credentials" :: Nil JsonPost json -> _ => {`
`8753`	`8753`	`cc => implicit val ec = EndpointContext(Some(cc))`
`8754`	`8754`	`for {`
`8755`		`- (Full(u), callContext) <- authenticatedAccess(cc)`
`8756`		`- postedData <- NewStyle.function.tryons(s"$InvalidJsonFormat The Json body should be the PostVerifyUserCredentialsJsonV600", 400, callContext) {`
	`8755`	`+ postedData <- NewStyle.function.tryons(s"$InvalidJsonFormat The Json body should be the PostVerifyUserCredentialsJsonV600", 400, Some(cc)) {`
`8757`	`8756`	`json.extract[PostVerifyUserCredentialsJsonV600]`
`8758`	`8757`	`}`
`8759`	`8758`	`// Validate credentials using the existing AuthUser mechanism`
`@@ -8788,27 +8787,27 @@ trait APIMethods600 {`
`8788`	`8787`	`}`
`8789`	`8788`	`}`
`8790`	`8789`	`// Check if account is locked`
`8791`		`- _ <- Helper.booleanToFuture(UsernameHasBeenLocked, 401, callContext) {`
	`8790`	`+ _ <- Helper.booleanToFuture(UsernameHasBeenLocked, 401, Some(cc)) {`
`8792`	`8791`	`resourceUserIdBox != Full(code.model.dataAccess.AuthUser.usernameLockedStateCode)`
`8793`	`8792`	`}`
`8794`	`8793`	`// Check if credentials are valid`
`8795`	`8794`	`resourceUserId <- Future {`
`8796`	`8795`	`resourceUserIdBox`
`8797`	`8796`	`} map {`
`8798`		`- x => unboxFullOrFail(x, callContext, s"$InvalidLoginCredentials Failed to authenticate user credentials.", 401)`
	`8797`	`+ x => unboxFullOrFail(x, Some(cc), s"$InvalidLoginCredentials Failed to authenticate user credentials.", 401)`
`8799`	`8798`	`}`
`8800`	`8799`	`// Get the user object`
`8801`	`8800`	`user <- Future {`
`8802`	`8801`	`Users.users.vend.getUserByResourceUserId(resourceUserId)`
`8803`	`8802`	`} map {`
`8804`		`- x => unboxFullOrFail(x, callContext, s"$InvalidLoginCredentials User account not found in system.", 401)`
	`8803`	`+ x => unboxFullOrFail(x, Some(cc), s"$InvalidLoginCredentials User account not found in system.", 401)`
`8805`	`8804`	`}`
`8806`	`8805`	`// Verify provider matches if specified and not empty`
`8807`		`- _ <- Helper.booleanToFuture(s"$InvalidLoginCredentials Authentication provider mismatch.", 401, callContext) {`
	`8806`	`+ _ <- Helper.booleanToFuture(s"$InvalidLoginCredentials Authentication provider mismatch.", 401, Some(cc)) {`
`8808`	`8807`	`postedData.provider.isEmpty \|\| user.provider == postedData.provider`
`8809`	`8808`	`}`
`8810`	`8809`	`} yield {`
`8811`		- (JSONFactory200.createUserJSON(user), HttpCode.`200`(callContext))
	`8810`	+ (JSONFactory200.createUserJSON(user), HttpCode.`200`(Some(cc)))
`8812`	`8811`	`}`
`8813`	`8812`	`}`
`8814`	`8813`	`}`