json

Read more about the article Reset Password for SUSI Accounts Using Verification Link

Reset Password for SUSI Accounts Using Verification Link

In this blog, I will discuss how the SUSI server interprets the verification link sent to your email id to reset SUSI account password. The email one receives to reset password looks like this :   http://api.susi.ai/apps/resetpass/index.html?token={30 character long token} *Original link contains a token of length of 30 characters. The link has been tampered for security purpose. Taking a close look at the reset link, one would find it easy to decode. It simply contains path to an application on current SUSI Accounts hosting. Name of the application is “resetpass” for Reset Password. But what about the token in the link? As soon as a user clicks on the link, the app is called and token is passed as a GET parameter. The app in background makes a call to the server where the token is evaluated for whether the token is hashed against some user’s email id and has not expired yet. Below is code of first step the client does which is to make a simple ajax call on Ready state. $(document).ready(function() { var passerr = false, confirmerr = false, tokenerr = false; // get password parameters var regex; var urltoken = getParameter('token'); $.ajax( "/aaa/recoverpassword.json", { data: { getParameters: true, token: urltoken }, dataType: 'json', success: function (response) { regex = response.regex; var regexTooltip = response.regexTooltip; $('#pass').tooltip({'trigger':'focus', 'placement': 'left', 'title': regexTooltip}); $('#status-box').text(response.message); tokenerr = false; }, error: function (xhr, ajaxOptions, thrownError) { $('#status-box').text(thrownError); $('#status-box').addClass("error"); $('#pass').prop( "disabled", true ); $('#confirmpass').prop( "disabled", true ); $('#resetbut').prop( "disabled", true ); tokenerr = true; }, }); As you can see the call is made to /aaa/recoverypassword.json end point with token as the request parameter. Now, the client has to just evaluate the JSON response and render the message for user accordingly. If this request returns an error then the error message is shown and the entries are disabled to enter the password. Otherwise, user email id is shown with green text and user can now enter new password and confirm it. In next step, client simply evaluates the password and sends a query to server to reset it. Let us now look at how server functions and processes such requests. //check if a token is already present if (call.get("getParameters", false)) { if (call.get("token", null) != null && !call.get("token", null).isEmpty()) { ClientCredential credentialcheck = new ClientCredential(ClientCredential.Type.resetpass_token, call.get("token", null)); if (DAO.passwordreset.has(credentialcheck.toString())) { Authentication authentication = new Authentication(credentialcheck, DAO.passwordreset); if (authentication.checkExpireTime()) { String passwordPattern = DAO.getConfig("users.password.regex", "^(?=.*\\d).{6,64}$"); String passwordPatternTooltip = DAO.getConfig("users.password.regex.tooltip", "Enter a combination of atleast six characters"); result.put("message", "Email ID: " + authentication.getIdentity().getName()); result.put("regex", passwordPattern); result.put("regexTooltip", passwordPatternTooltip); result.put("accepted", true); return new ServiceResponse(result); } authentication.delete(); throw new APIException(422, "Expired token"); } throw new APIException(422, "Invalid token"); } else { throw new APIException(422, "No token specified"); } } In the above code snippet, server evaluates the received token on the basis of three parameters. First it checks whether the token is provided or not. If not, it throws APIException with error code 422 and a message “No token specified”. If it passes the check, next it checks…

Continue ReadingReset Password for SUSI Accounts Using Verification Link
Read more about the article Serialisation, Deserialisation and gson in Open Event Android

Serialisation, Deserialisation and gson in Open Event Android

JSON is a format to exchange and inter-change data. It has almost become a universal means for transferring data because of it being lightweight, human understandable, machine readable and most importantly, it’s language independence. It can be used with, and in any programming language. (Reference) FOSSASIA’s Open Event project makes extensive use of JSON for transferring information about events, their speakers, sessions and other event information. The Open Event Android application itself loads all it’s data in JSON format. This JSON is uploaded by the user in the form of a .zip compressed file or by giving an API link. Now before we use this data in the app, we have to parse the data to get Java objects that can be used in Android. Deserialisation is the process of converting JSON to Java objects. In the same way, Serialisation refers to converting Java objects into JSON. In most applications and frameworks, JSON is serialized and deserialized on multiple instances. The most common approach is to create objects corresponding to the JSON format and then use functions to convert them to JSON line-by-line, attribute by attribute. While this approach will work, it will mean writing unnecessary code and spending a lot more time on it. In Open-event-Android, we are using Google’s gson library to  serialise and deserialise JSON and corresponding Java objects respectively. Why are we using gson specifically? And why do we need any library in the first place? Yes, we can obviously make functions in Java by defining all the JSON parameters and converting the JSON into Java objects manually. It is indeed the obvious approach, but the entire process will be time-consuming, complex and definitely not error-free. Also, as projects become bigger, it is inevitable to take care of the code size and reduce it to only what is necessary. Let’s take a look at the one of the Open Event JSON file as a sample to try and understand things in a better way. This is an example of event.json in the FBF8'2017 sample. { "id": 180, "name": "F8-Facebook Developer Conference 2017", "latitude": 37.329008, "longitude": -121.888794, "location_name": "San Jose Convention Center, 150 W San Carlos St San Jose CA USA 95113 ", "start_time": "2017-04-18T10:00:00-07:00", "end_time": "2017-04-19T10:00:00-07:00", "timezone": "US / Pacific", "description": "Join us for our annual 2-day event, where developers and businesses come together to explore the future of technology. Learn how Facebook connects the world through new products and innovation. This year's event is bigger than ever – with more than 50 sessions, interactive experiences, and the opportunity to meet one-on-one with members of the Facebook team.", "background_image": "/images/background.jpg", "logo": "/images/fbf8.png", "organizer_name": "Facebook", "organizer_description": "Join us for our annual 2-day event, where developers and businesses come together to explore the future of technology. Learn how Facebook connects the world through new products and innovation. This year's event is bigger than ever – with more than 50 sessions, interactive experiences, and the opportunity to meet one-on-one with members of the Facebook team.", "event_url": "https://www.fbf8.com", "social_links": […

Continue ReadingSerialisation, Deserialisation and gson in Open Event Android
Read more about the article JSON Deserialization Using Jackson in Open Event Android App

JSON Deserialization Using Jackson in Open Event Android App

The Open Event project uses JSON format for transferring event information like tracks, sessions, microlocations and other. The event exported in the zip format from the Open Event server also contains the data in JSON format. The Open Event Android application uses this JSON data. Before we use this data in the app, we have to parse the data to get Java objects that can be used for populating views. Deserialization is the process of converting JSON data to Java objects. In this post I explain how to deserialize JSON data using Jackson. 1. Add dependency In order to use Jackson in your app add following dependencies in your app module’s build.gradle file. dependencies { compile 'com.fasterxml.jackson.core:jackson-core:2.8.9' compile 'com.fasterxml.jackson.core:jackson-annotations:2.8.9' compile 'com.fasterxml.jackson.core:jackson-databind:2.8.9' } 2.  Define entity model of data In the Open Event Android we have so many models like event, session, track, microlocation, speaker etc. Here i am only defining track model because of it’s simplicity and less complexity. public class Track { private int id; private String name; private String description; private String color; @JsonProperty("font-color") private String fontColor; //getters and setters } Here if the property name is same as json attribute key then no need to add JsonProperty annotation like we have done for id, name color property. But if property name is different from json attribute key then it is necessary to add JsonProperty annotation. 3.  Create sample JSON data Let’s create sample JSON format data we want to deserialize. { "id": 273, "name": "Android", "description": "Sample track", "color": "#94868c", "font-color": "#000000" } 4.  Deserialize using ObjectMapper ObjectMapper is Jackson serializer/deserializer. ObjectMapper’s readValue() method is used for simple deserialization. It takes two parameters one is JSON data we want to deserialize and second is Model entity class. Create an ObjectMapper object and initialize it. ObjectMapper objectMapper = new ObjectMapper(); Now create a Model entity object and initialize it with deserialized data from ObjectMapper’s readValue() method. Track track = objectMapper.readValue(json, Track.class); So we have converted JSON data into the Java object. Jackson is very powerful library for JSON serialization and deserialization. To learn more about Jackson features follow the links given below. Jackson-databind: https://github.com/FasterXML/jackson-databind Jackson wiki: http://wiki.fasterxml.com/JacksonInFiveMinutes Tutorial: http://tutorials.jenkov.com/java-json/jackson-installation.html

Continue ReadingJSON Deserialization Using Jackson in Open Event Android App
Read more about the article Creating A Sample Event Web App Using the Open Event Framework

Creating A Sample Event Web App Using the Open Event Framework

I have been creating sample events for the Open Event Framework by creating JSON files for them. In this blog, I will walk you through 4 easy steps to create a sample event for FOSSASIA Open Event. These are the steps that I followed while I contributed in making sample web apps: Let’s start by taking the example of a sample event. I recently created a sample for FBF8'2017. F8 is conference held by Facebook annually. I started by visiting the official F8 site. I personally used Google Chrome for it as I was almost positive that the official site will be having an API which will make it easier for me to extract JSON for the event. Also, Google Chrome developer tools make it easier to access the API. I have previously explained how to access JSON through APIs in one of my previous blog posts that can be found here. So in the F8 site, I looked for the page that will lead me to the full schedule of the conference: After clicking on the “SEE FULL SCHEDULE” button, this is where it leads us, with the developer tools ON. That weird named file on that appears in under the XHR tab contains our JSONs! [{1492502400: [{day: 1, sessionTitle: "Registration", sessionSlug: "day-1-registration",…},…],…}, {,…}] 0:{1492502400: [{day: 1, sessionTitle: "Registration", sessionSlug: "day-1-registration",…},…],…} 1:{,…} This is how the file looks on clicking it at first. You must be seeing small clickable arrows on the sides which expand the JSON to reveal all the contents. But okay, we have crossed our first step: Obtaining JSON from the website’s API! Step 2: Tailoring the JSON according to the Open Event format needs to be done now. To view the latest API format, visit here. Now this step is obviously most time-consuming and tedious. We need to modify the API we obtained from the F8 site to meet the Open Event requirements. I mainly used Sublime text editor to do this. It has this great feature to find and replace text in text files. Taking an example of a session object. This is what we will get from the API:- allDay:false createdAt:"2017–01–28T01:24:12.770Z" day:1 displayTime:"3:00pm" endTime:{__type: "Date", iso: "2017–04–18T15:50:00.000Z"} iso:"2017–04–18T15:50:00.000Z" __type:"Date" hasDetails:true objectId:"62yCeJMvAf" ogImage:{__type: "File", name: "296643cca9aad196bbd3534324c52049_Making Great Camera Effects.png",…} name:"296643cca9aad196bbd3534324c52049_Making Great Camera Effects.png" url:"https://f82017-parse.s3.amazonaws.com/296643cca9aad196bbd3534324c52049_Making%20Great%20Camera%20Effects.png" __type:"File" onMySchedule:false sessionDescription:"With AI that transforms images, Facebook's Camera Effects Platform lets you create animated masks, interactive overlays, frames, and other effects that people can apply to their photos and videos in the Facebook camera. Learn best technical and design practices for creating effects using this innovative technology, and see examples of successful effects." sessionLocation:"G" sessionSlug:"making-great-camera-effects" sessionTitle:"Making Great Camera Effects" sortTime:"1492527600" speakers:[{speakerName: "Volodymyr Giginiak", createdAt: "2017–01–28T01:27:49.292Z",…},…] 0:{speakerName: "Volodymyr Giginiak", createdAt: "2017–01–28T01:27:49.292Z",…} 1:{speakerName: "Stef Smet", createdAt: "2017–01–28T01:30:16.022Z",…} startTime:{__type: "Date", iso: "2017–04–18T15:00:00.000Z"} iso:"2017–04–18T15:00:00.000Z" __type:"Date" tags:["Camera"] 0:"Camera" updatedAt:"2017–04–18T19:19:16.501Z" Now, this is where I used the find & replace feature in Sublime text to make it look like the open-event standard JSON. For instance, replacing “sessionLocation” with “microlocation”, “sessionDescription” with “long_abstract” and so on.…

Continue ReadingCreating A Sample Event Web App Using the Open Event Framework

Unit testing JSON files in assets folder of Android App

So here is the scenario, your android app has a lot of json files in the assets folder that are used to load some data when in first runs. You are writing some unit tests, and want to make sure the integrity of the data in the assets/*.json are preserved. You'd assume, that reading JSON files should not involve using the Android Runtime in any way, and we should be able to read JSON files in local JVM as well. But you're wrong. The JSONObject and JSONArray classes of Android are part of android.jar, and hence JSONObject myJson = new JSONObject(someString); The above code will not work when running unit tests on local JVM. Fortunately, our codebase already using Google's GSoN library to parse JSON, and that works on local JVM too (because GSoN is a core Java library, not specifically an Android library). Now the second problem that comes is that when running unit tests on local JVM we do not have the getResources() or getAssets() functions. So how do we retrieve a file from the assets folder ? So what I found out (after a bit of trial and error and poking around with various dir paths), is that the tests are run from the app folder (app being the Android application module - it is named app by default by Android Studio, though you might have had named it differently) So in the tests file you can define at the beginning public static final String ASSET_BASE_PATH = "../app/src/main/assets/"; And also create the following helper function public String readJsonFile (String filename) throws IOException { BufferedReader br = new BufferedReader(new InputStreamReader(new FileInputStream(ASSET_BASE_PATH + filename))); StringBuilder sb = new StringBuilder(); String line = br.readLine(); while (line != null) { sb.append(line); line = br.readLine(); } return sb.toString(); } Now wherever you need this JSON data you can just do the following Gson gson = new GsonBuilder().create(); events = gson.fromJson(readJsonFile("events.json"), Event.EventList.class); eventDatesList = gson.fromJson(readJsonFile("eventDates.json"), EventDates.EventDatesList.class);

Continue ReadingUnit testing JSON files in assets folder of Android App
Read more about the article Open Event Organizer’s Server: Custom Forms

Open Event Organizer’s Server: Custom Forms

As we know, open event organizer's server provides a means of creating events. And an important part of events is sessions and speakers of sessions. But different events have different details required for sessions and speakers of sessions. Some might feel that only Name and Email-ID of speaker is enough, while others may require their Github, Facebook, etc. links. So the best way to solve this is to make a custom form so that the organizers get to select what all fields they want in the forms. But how to do this? Well, thanks to JSON In the Step-5 of Event Creation Wizards, we have option (or switches) to include and require various fields available for the session form and speaker form for applying in a particular Session Form. Here is how it looks: As we can see, each field has 2 options - Include and Require. On clicking the Include switch the Require switch is enabled through jQuery. The Include switch means that the field is included in the form while the Require switch signifies that the field will be a compulsory field in the form. Storing Options We create a javascript array containing a single object. This object in turn is made up of objects with field names as keys and another object as value. This object in turn contains the keys include and require. The value of include and require is 0 by default. On selecting, their value is changed to 1. An example structure of the array is like: [{     "title": {         "include": 1,         "require": 1     },     "subtitle": {         "include": 0,         "require": 0     },     "short_abstract": {         "include": 1,         "require": 0     },     "long_abstract": {         "include": 0,         "require": 0     },     "comments": {         "include": 1,         "require": 0     },     "track": {         "include": 0,         "require": 0     },     "session_type": {         "include": 0,         "require": 0     },     "language": {         "include": 0,         "require": 0     },     "slides": {         "include": 1,         "require": 0     },     "video": {         "include": 0,         "require": 0     },     "audio": {         "include": 0,         "require": 0     } }] This array is then converted to string format using JSON.stringify, submitted through form and stored in database in the form of a string. Rendering Forms Now, we have already stored the options as selected by the organizer. But now we need to render the forms based on the JSON string stored in the database. Firstly, in the server side we convert the string to JSON object in python using json.loads . Then we send these JSON objects to the templates. In the templates, we create form elements based on the values of the include and require of each form element. A sample element HTML is like this: We use a loop to iterate over the JSON object and thus add the elements which have …

Continue ReadingOpen Event Organizer’s Server: Custom Forms