Merge pull request #84 from appirio-tech/dev

add email check

Author: eisbilir

src/main/java/com/appirio/tech/core/service/identity/dao/UserDAO.java

@@ -137,6 +137,12 @@ public abstract class UserDAO implements DaoBase<User>, Transactional<UserDAO> {
     )
     public abstract List<User> findUsersByEmail(@Bind("email") String email);
 
+    @SqlQuery("SELECT COUNT(e2.email_id) " +
+            "FROM common_oltp.user AS u LEFT JOIN common_oltp.email AS e ON e.user_id = u.user_id " +
+            "LEFT JOIN common_oltp.email AS e2 ON LOWER(e2.address) = LOWER(e.address) " +
+            "WHERE u.user_id = :userId")
+    public abstract int getEmailCount(@Bind("userId") long userId);
+
     @RegisterMapperFactory(TCBeanMapperFactory.class)
     @SqlQuery(
             "SELECT mfa.id AS id, u.user_id AS userId, u.handle AS handle, u.first_name AS firstName, e.address AS email, mfa.mfa_enabled AS mfaEnabled, mfa.dice_enabled AS diceEnabled" +

src/main/java/com/appirio/tech/core/service/identity/resource/UserResource.java

@@ -1643,6 +1643,11 @@ public ApiResponse updateUser2fa(
                 && user2faInDb.getDiceEnabled() != null && user2faInDb.getDiceEnabled() == true)) {
             throw new APIRuntimeException(SC_BAD_REQUEST, "You cannot disable mfa");
         }
+        if (user2fa.getMfaEnabled() && user2faInDb.getId() == null) {
+            if (userDao.getEmailCount(userId) > 1) {
+                throw new APIRuntimeException(SC_BAD_REQUEST, "You have multiple accounts registered with same email. Please contact with support.");
+            }
+        }
         if (user2fa.getMfaEnabled() == null) {
             user2fa.setMfaEnabled(user2faInDb.getMfaEnabled() == null ? false : user2faInDb.getMfaEnabled());
         }