├── .gitignore
├── APPENDIX-README.md
├── README-NEXUS.md
├── README.md
├── _configuration
    ├── nexus
    │   ├── maven-settings-template.xml
    │   └── setup_nexus3.sh
    └── openshift
    │   ├── 3scale
    │       ├── README.md
    │       ├── _applications_index.html.liquid
    │       ├── _custom_field_plans.html.liquid
    │       ├── _group_membership_plans.html.liquid
    │       ├── _mulitple_app_signup_form.html.liquid
    │       ├── _single_app_signup_form.html.liquid
    │       ├── index.html.liquid
    │       ├── l_main_layout.html.liquid
    │       └── services_index.html.liquid
    │   ├── README.md
    │   ├── docker
    │       ├── Dockerfile
    │       └── self-signed
    │       │   ├── cert1.crt
    │       │   ├── cert2.crt
    │       │   ├── self-signed-cert.pem
    │       │   └── sso73.crt
    │   ├── s2i-microservices-fuse74-spring-boot-camel-selfsigned.yaml
    │   └── s2i-microservices-fuse74-spring-boot-camel.yaml
├── _images
    ├── 01.png
    ├── 02.png
    ├── 04.png
    ├── 05.png
    ├── 06.png
    ├── 07.png
    ├── 08.png
    ├── 09.png
    ├── 10.png
    ├── 11.png
    ├── 12.png
    ├── 13.png
    ├── 14.png
    ├── 15.png
    ├── 16.png
    ├── 17.png
    ├── 18.png
    ├── 19.png
    ├── 20.png
    ├── 21.png
    ├── 22.png
    ├── 23.png
    ├── 24.png
    ├── 25.png
    ├── 26.png
    ├── 27.png
    ├── 28.png
    ├── 29.png
    ├── 30.png
    ├── 31.png
    ├── 32.png
    ├── 33.png
    ├── 34.png
    ├── 35.png
    ├── 36.png
    ├── 37.png
    ├── icon01.png
    ├── icon02.png
    ├── meme01.jpg
    ├── meme03.jpg
    └── meme03.png
├── _videos
    └── screen01.gif
├── auth-integration
    ├── configuration
    │   ├── configmap
    │   │   └── auth-integration-api-env.yml
    │   └── secret
    │   │   └── auth-integration-api.yml
    ├── pom.xml
    └── src
    │   └── main
    │       ├── java
    │           └── com
    │           │   └── microservices
    │           │       └── apigateway
    │           │           └── security
    │           │               ├── AuthFuseApplication.java
    │           │               ├── Combination.java
    │           │               ├── common
    │           │                   ├── camel
    │           │                   │   ├── AuthComponent.java
    │           │                   │   ├── AuthConsumer.java
    │           │                   │   ├── AuthEndpoint.java
    │           │                   │   └── AuthProducer.java
    │           │                   └── oauth2
    │           │                   │   ├── OAuth2ClientCredentials.java
    │           │                   │   └── Token.java
    │           │               ├── configuration
    │           │                   ├── KeycloakServiceAccountConfiguration.java
    │           │                   ├── MetricsConfiguration.java
    │           │                   ├── MicrometerConfiguration.java
    │           │                   ├── ProductConfiguration.java
    │           │                   ├── StockConfiguration.java
    │           │                   ├── SupplierConfiguration.java
    │           │                   └── TracingConfiguration.java
    │           │               ├── model
    │           │                   ├── ApiResponse.java
    │           │                   ├── BaseModel.java
    │           │                   ├── ErrorMessage.java
    │           │                   ├── Event.java
    │           │                   ├── Product.java
    │           │                   └── health
    │           │                   │   ├── springboot1
    │           │                   │       ├── Camel.java
    │           │                   │       ├── CamelHealthChecks.java
    │           │                   │       ├── DiskSpace.java
    │           │                   │       └── Health.java
    │           │                   │   └── springboot2
    │           │                   │       └── Health.java
    │           │               ├── processor
    │           │                   └── ExceptionProcessor.java
    │           │               └── route
    │           │                   ├── external
    │           │                       └── IntegrationRestRoute.java
    │           │                   └── internal
    │           │                       ├── MetricsInternalRoute.java
    │           │                       ├── ProductInternalRoute.java
    │           │                       ├── StockInternalRoute.java
    │           │                       └── SupplierInternalRoute.java
    │       └── resources
    │           ├── META-INF
    │               └── services
    │               │   └── org
    │               │       └── apache
    │               │           └── camel
    │               │               └── component
    │               │                   └── auth
    │           ├── application.yaml
    │           └── logback.xml
├── auth-sso-common
    ├── META-INF
    │   └── services
    │   │   └── org
    │   │       └── apache
    │   │           └── camel
    │   │               └── component
    │   │                   └── auth
    ├── README.md
    ├── build.metadata
    ├── pom.xml
    ├── src
    │   ├── main
    │   │   ├── java
    │   │   │   └── com
    │   │   │   │   └── microservices
    │   │   │   │       └── security
    │   │   │   │           └── common
    │   │   │   │               ├── camel
    │   │   │   │                   ├── AuthComponent.java
    │   │   │   │                   ├── AuthConsumer.java
    │   │   │   │                   ├── AuthEndpoint.java
    │   │   │   │                   └── AuthProducer.java
    │   │   │   │               └── oauth2
    │   │   │   │                   ├── OAuth2ClientCredentials.java
    │   │   │   │                   └── Token.java
    │   │   └── resources
    │   │   │   └── META-INF
    │   │   │       └── services
    │   │   │           └── org
    │   │   │               └── apache
    │   │   │                   └── camel
    │   │   │                       └── component
    │   │   │                           └── auth
    │   └── test
    │   │   └── java
    │   │       └── com
    │   │           └── microservices
    │   │               └── security
    │   │                   └── common
    │   │                       └── oauth2
    │   │                           └── OAuth2ClientCredentialsTest.java
    └── templates
    │   └── README.md
├── maven-settings.xml
├── pom.xml
├── product-insecure
    ├── pom.xml
    └── src
    │   └── main
    │       ├── java
    │           └── com
    │           │   └── microservices
    │           │       └── apigateway
    │           │           └── security
    │           │               ├── ProductApplication.java
    │           │               ├── configuration
    │           │                   ├── SwaggerConfiguration.java
    │           │                   ├── TracingConfiguration.java
    │           │                   └── WebConfiguration.java
    │           │               ├── controller
    │           │                   ├── BaseController.java
    │           │                   ├── ProductController.java
    │           │                   ├── error
    │           │                   │   └── Error.java
    │           │                   └── validator
    │           │                   │   └── ProductValidator.java
    │           │               ├── model
    │           │                   ├── BaseModel.java
    │           │                   └── Product.java
    │           │               ├── repository
    │           │                   └── ProductRepository.java
    │           │               └── service
    │           │                   └── ProductService.java
    │       └── resources
    │           ├── application.yaml
    │           ├── data.sql
    │           ├── logback.xml
    │           └── messages.properties
├── product
    ├── configuration
    │   ├── configmap
    │   │   └── product-api-env.yml
    │   └── secret
    │   │   └── product-api.yml
    ├── pom.xml
    └── src
    │   └── main
    │       ├── java
    │           └── com
    │           │   └── microservices
    │           │       └── apigateway
    │           │           └── security
    │           │               ├── ProductApplication.java
    │           │               ├── configuration
    │           │                   ├── SwaggerConfiguration.java
    │           │                   ├── TracingConfiguration.java
    │           │                   ├── WebConfiguration.java
    │           │                   └── security
    │           │                   │   ├── JwtAccessTokenCustomizer.java
    │           │                   │   ├── OAuth2RestTemplateConfigurer.java
    │           │                   │   ├── SecurityConfiguration.java
    │           │                   │   ├── SecurityConfigurer.java
    │           │                   │   └── SecurityContextUtils.java
    │           │               ├── controller
    │           │                   ├── BaseController.java
    │           │                   ├── ProductController.java
    │           │                   ├── error
    │           │                   │   └── Error.java
    │           │                   └── validator
    │           │                   │   └── ProductValidator.java
    │           │               ├── model
    │           │                   ├── BaseModel.java
    │           │                   └── Product.java
    │           │               ├── repository
    │           │                   └── ProductRepository.java
    │           │               └── service
    │           │                   └── ProductService.java
    │       └── resources
    │           ├── application.yaml
    │           ├── data.sql
    │           ├── logback.xml
    │           └── messages.properties
├── stock
    ├── configuration
    │   ├── configmap
    │   │   └── stock-api-env.yml
    │   └── secret
    │   │   └── stock-api.yml
    ├── pom.xml
    └── src
    │   └── main
    │       ├── java
    │           └── com
    │           │   └── microservices
    │           │       └── apigateway
    │           │           └── security
    │           │               ├── StockApplication.java
    │           │               ├── configuration
    │           │                   ├── SwaggerConfiguration.java
    │           │                   └── TracingConfiguration.java
    │           │               ├── controller
    │           │                   ├── BaseController.java
    │           │                   ├── StockController.java
    │           │                   ├── error
    │           │                   │   └── Error.java
    │           │                   └── validator
    │           │                   │   └── EventValidator.java
    │           │               └── model
    │           │                   ├── BaseModel.java
    │           │                   └── Event.java
    │       └── resources
    │           ├── application.yaml
    │           ├── logback.xml
    │           └── messages.properties
├── supplier
    ├── configuration
    │   ├── configmap
    │   │   └── supplier-api-env.yml
    │   └── secret
    │   │   └── supplier-api.yml
    ├── pom.xml
    └── src
    │   └── main
    │       ├── java
    │           └── com
    │           │   └── microservices
    │           │       └── apigateway
    │           │           └── security
    │           │               ├── SupplierApplication.java
    │           │               ├── configuration
    │           │                   ├── SwaggerConfiguration.java
    │           │                   ├── TracingConfiguration.java
    │           │                   ├── WebConfiguration.java
    │           │                   └── security
    │           │                   │   ├── JwtAccessTokenCustomizer.java
    │           │                   │   ├── OAuth2RestTemplateConfigurer.java
    │           │                   │   ├── SecurityConfiguration.java
    │           │                   │   ├── SecurityConfigurer.java
    │           │                   │   └── SecurityContextUtils.java
    │           │               ├── controller
    │           │                   ├── BaseController.java
    │           │                   ├── SupplierController.java
    │           │                   ├── error
    │           │                   │   └── Error.java
    │           │                   └── validator
    │           │                   │   └── EventValidator.java
    │           │               └── model
    │           │                   ├── BaseModel.java
    │           │                   └── Event.java
    │       └── resources
    │           ├── application.yaml
    │           ├── logback.xml
    │           └── messages.properties
└── webapp
    ├── README.md
    ├── angular.json
    ├── build-local.sh
    ├── envsub.js
    ├── gen-cert.sh
    ├── ocp-hotdeploy.sh
    ├── package-lock.json
    ├── package.json
    ├── run-local.sh
    ├── s2i-build.sh
    ├── s2i-run.sh
    ├── server.cert
    ├── server.js
    ├── server.key
    ├── src
        ├── app
        │   ├── app-animations.ts
        │   ├── app-init.service.ts
        │   ├── app.component.html
        │   ├── app.component.ts
        │   ├── app.module.ts
        │   ├── app.routes.ts
        │   ├── auth.ts
        │   ├── breadcrumb
        │   │   ├── breadcrumb.component.html
        │   │   ├── breadcrumb.component.ts
        │   │   └── breadcrumb.ts
        │   ├── header
        │   │   ├── header.component.css
        │   │   ├── header.component.html
        │   │   └── header.component.ts
        │   ├── home
        │   │   ├── home.component.html
        │   │   └── home.component.ts
        │   ├── maintenance
        │   │   ├── maintenance.component.html
        │   │   ├── maintenance.component.ts
        │   │   └── maintenance.service.ts
        │   ├── message
        │   │   ├── message-history.service.ts
        │   │   ├── message-item.ts
        │   │   └── message.service.ts
        │   ├── product
        │   │   ├── deserializable.model.ts
        │   │   ├── json-date.pipe.ts
        │   │   ├── product.component.css
        │   │   ├── product.component.html
        │   │   ├── product.component.ts
        │   │   ├── product.model.ts
        │   │   ├── product.pageable.model.ts
        │   │   └── product.service.ts
        │   ├── sidebar
        │   │   ├── sidebar.component.html
        │   │   ├── sidebar.component.ts
        │   │   └── sidebar.service.ts
        │   └── status
        │   │   ├── status.component.html
        │   │   ├── status.component.ts
        │   │   └── status.service.ts
        ├── assets
        │   ├── .gitkeep
        │   ├── img
        │   │   ├── 02.png
        │   │   ├── Logo-RedHat-A-Color-RGB.svg
        │   │   ├── angular.svg
        │   │   ├── bootstrap.svg
        │   │   ├── nodejs.svg
        │   │   └── openshift.svg
        │   └── js
        │   │   └── env.template.js
        ├── browserslist
        ├── environments
        │   ├── environment.prod.ts
        │   └── environment.ts
        ├── favicon.ico
        ├── index.html
        ├── main.ts
        ├── polyfills.ts
        ├── styles.scss
        ├── tsconfig.app.json
        └── tslint.json
    ├── tsconfig.json
    └── tslint.json


/.gitignore:
--------------------------------------------------------------------------------
 1 | auth-integration/target
 2 | product/target
 3 | stock/target
 4 | supplier/target
 5 | webapp/dist
 6 | 
 7 | target/
 8 | _camtasia
 9 | 
10 | # Dependency directories
11 | node_modules/
12 | jspm_packages/
13 | 
14 | .DS_Store
15 | 
16 | # IntelliJ
17 | *.iml
18 | .idea/*.iml
19 | .idea/*
20 | !/maven-settings.xml
21 | 


--------------------------------------------------------------------------------
/APPENDIX-README.md:
--------------------------------------------------------------------------------
1 | ### Using a custom FUSE image:
2 | 
3 | You could use the Dockerfile inside the _configuration folder.
4 | 
5 | This Dockerfile contains an example on how to add a custom CA certificate.
6 | 
7 | In my environment I needed to add the RHSSO self-signed certificate in order to avoid http 401 for keycloak-adapter validation during realm public key retrieval.
8 | 


--------------------------------------------------------------------------------
/README-NEXUS.md:
--------------------------------------------------------------------------------
 1 | ```bash
 2 | NEXUS_NAMESPACE=cicd-devtools
 3 | 
 4 | oc new-app --docker-image docker.io/sonatype/nexus3:latest
 5 | 
 6 | oc rollout pause dc/nexus3
 7 | 
 8 | oc patch dc nexus3 -p '{"spec":{"strategy":{"type":"Recreate"}}}'
 9 | 
10 | oc expose svc nexus3
11 | 
12 | oc set resources dc nexus3 --limits=memory=4Gi,cpu=2 --requests=memory=2Gi,cpu=500m
13 | 
14 | oc set volume dc/nexus3 --add --overwrite --name=nexus3-volume-1 --mount-path=/nexus-data/ --type persistentVolumeClaim --claim-name=nexus-pvc --claim-size=10Gi
15 | 
16 | oc set probe dc/nexus3 --liveness --failure-threshold 3 --initial-delay-seconds 60 -- echo ok
17 | 
18 | oc set probe dc/nexus3 --readiness --failure-threshold 3 --initial-delay-seconds 60 --get-url=http://:8081/
19 | 
20 | oc rollout resume dc nexus3
21 | 
22 | oc get pods | grep Running
23 | #[root@ocp-bastion lab04]# oc get pods | grep Running
24 | #nexus3-xyz    1/1     Running     0          2m36s
25 | 
26 | export NEXUS_POD=$(oc get pods --selector app=nexus3 -n ${NEXUS_NAMESPACE} | { read line1 ; read line2 ; echo "$line2" ; } | awk '{print $1;}')
27 | oc exec ${NEXUS_POD} cat /nexus-data/admin.password
28 | # 33456b65-7e85-4dfc-a063-78b413cf4a47
29 | 
30 | oc get routes | grep nexus3
31 | 
32 | # log into the nexus and change password to admin123
33 | 
34 | curl -o setup_nexus3.sh -s https://raw.githubusercontent.com/aelkz/microservices-observability/master/_configuration/nexus/setup_nexus3.sh
35 | 
36 | chmod +x setup_nexus3.sh
37 | 
38 | ./setup_nexus3.sh admin admin123 http://$(oc get route nexus3 --template='{{ .spec.host }}')
39 | 
40 | oc expose dc nexus3 --port=5000 --name=nexus-registry
41 | 
42 | oc create route edge nexus-registry --com.microservices.apigateway.security.service=nexus-registry --port=5000
43 | ```
44 | 


--------------------------------------------------------------------------------
/_configuration/nexus/maven-settings-template.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <settings xmlns="http://maven.apache.org/SETTINGS/1.0.0"
 3 |           xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 |           xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0 http://maven.apache.org/xsd/settings-1.0.0.xsd">
 5 | 
 6 |     <servers>
 7 |         <server>
 8 |             <id>nexus-snapshots</id>
 9 |             <username>admin</username>
10 |             <password>admin123</password>
11 |         </server>
12 |         <server>
13 |             <id>nexus-releases</id>
14 |             <username>admin</username>
15 |             <password>admin123</password>
16 |         </server>
17 |     </servers>
18 | 
19 |     <mirrors>
20 |         <mirror>
21 |             <id>central</id>
22 |             <name>central</name>
23 |             <url>maven-group</url>
24 |             <mirrorOf>*</mirrorOf>
25 |         </mirror>
26 |     </mirrors>
27 | 
28 | </settings>
29 | 


--------------------------------------------------------------------------------
/_configuration/openshift/3scale/_applications_index.html.liquid:
--------------------------------------------------------------------------------
 1 | {% unless current_account.applications.size > 0 %}
 2 | <script type="text/javascript">
 3 | redirectUser();
 4 | </script>
 5 | {% else %}
 6 | 
 7 | <section class="about section"> 
 8 |   <div class="container">
 9 |     <div class="row">
10 |       <div class="col-md-9">
11 |         <table class="table panel panel-default" id="applications">
12 |           <thead class="panel-heading">
13 |             <tr>
14 |               <th>Name</th>
15 |               {% if provider.multiple_services_allowed? %}
16 |                 <th>Service</th>
17 |               {% endif %}
18 |               <th>Credentials</th>
19 |               <th>State</th>
20 |               <th>
21 |               </th>
22 |             </tr>
23 |           </thead>
24 |           <tbody class="panel-body">
25 |             {% for com.microservices.apigateway.security.service in current_account.subscribed_services %}
26 |                 {% for application in com.microservices.apigateway.security.service.applications %}
27 |                   <tr class="{% cycle 'applications': 'odd', 'even' %}" id="application_{{ application.id }}">
28 |                     <td>
29 |                       {{ application.name | link_to: application.url }}
30 |                     </td>
31 |                     {% if provider.multiple_services_allowed? %}
32 |                       <td>{{ com.microservices.apigateway.security.service.name }}</td>
33 |                     {% endif %}
34 |                     <td>{{ application.key }}</td>
35 |                     <td>{{ application.state }}</td>
36 |                     <td>
37 |                       {% if application.can.be_updated? %}
38 |                         <a href="{{ application.edit_url }}">
39 |                           <i class="icon-pencil"></i>
40 |                         </a>
41 |                       {% endif %}
42 |                     </td>
43 |                   </tr>
44 |                 {% endfor %}
45 |             {% endfor %}
46 |           </tbody>
47 |           <tfoot class="panel-footer">
48 |           <tr>
49 |             <td colspan="3">
50 |             </td>
51 |             <td>
52 |               {% if current_user.can.create_application? %}
53 |                 <a href="{{ urls.new_application }}" title="Create new application" class="btn btn-default btn-xs">Create new application</a>
54 |               {% endif %}
55 |             </td>
56 |           </tr>
57 |           </tfoot>
58 |         </table>
59 | 
60 |       </div>
61 |     </div>
62 |   </div>
63 | </section>
64 | {% endunless %}
65 | 
66 | 
67 | 


--------------------------------------------------------------------------------
/_configuration/openshift/3scale/l_main_layout.html.liquid:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html lang="en">
 3 | 
 4 | <head>
 5 |   <meta charset="utf-8">
 6 |   <meta http-equiv="X-UA-Compatible" content="IE=edge">
 7 |   <meta name="viewport" content="width=device-width, initial-scale=1.0">
 8 |   <title>{{provider.name}} API</title>
 9 |   <link rel="stylesheet" href="/css/custom.css">
10 | 
11 |   <!-- STYLESHEETS -->
12 |     {% csrf %}
13 |     {{ content_of.stylesheets | html_safe }}
14 |   
15 |     <!--<link rel="stylesheet" type="text/css" href="/css/custom.css">-->
16 |     <link rel="stylesheet" type="text/css" href="/css/bootstrap.css">
17 | 
18 |     <!-- fonts -->
19 |     {{ 'https://fonts.googleapis.com/css?family=Lato:300,400,300italic,400italic' | stylesheet_link_tag }}
20 |     {{ 'https://fonts.googleapis.com/css?family=Montserrat:400,700' | stylesheet_link_tag }}
21 |     {{ 'https://fonts.googleapis.com/css?family=Comfortaa:400,700' | stylesheet_link_tag }}
22 | 
23 |     <!-- font-awesome css -->
24 |     {{ 'https://maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css' | stylesheet_link_tag }}
25 | 
26 |     <!-- JS (PRELOADED) -->
27 | 
28 |     <!-- jQuery -->
29 |     {{ 'https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js' | javascript_include_tag }}
30 | 
31 |     <!-- 3scale application file -->
32 |     {{ '/javascripts/3scale.js' | javascript_include_tag }}
33 |     {{ '/javascripts/excanvas.compiled.js' | javascript_include_tag }}
34 | 
35 |     <!-- devaid -->
36 |     {{ '/javascripts/devaid.js' | javascript_include_tag }}
37 | 
38 |     {{ content_of.javascripts | html_safe }}
39 | 
40 | </head>
41 | 
42 | <body>
43 | 
44 |   <!-- NAVBAR AND HEADER SECTION -->
45 |   
46 |   <header>
47 |     {% logo %}
48 |   </header>
49 |   <script type="text/javascript">
50 | 
51 |       function redirectUser() {
52 |           // This redirect can be set to any page you wish. The default is the homepage.
53 |           window.location.href="/"
54 |       };
55 | 
56 | 	</script>
57 | 
58 |   <header id="header" class="header">
59 |     <div class="container">
60 |       <h1 class="logo pull-left">
61 |         <a href="/">
62 |           <span class="logo-title">{{ provider.name }}</span>
63 |         </a>
64 |       </h1>
65 |       <nav class="main-nav navbar-right" role="navigation">
66 |         <div class="navbar-header">
67 |           <button class="navbar-toggle" type="button" data-toggle="collapse" data-target="#navbar-collapse">
68 |             <span class="sr-only">Toggle navigation</span>
69 |             <span class="icon-bar"></span>
70 |             <span class="icon-bar"></span>
71 |             <span class="icon-bar"></span>
72 |           </button>
73 |         </div>
74 | 
75 |         <!-- DYNAMIC NAVBAR ELEMENTS -->
76 |         {% include 'submenu1' %}
77 |       </nav>
78 |     </div>
79 |     
80 |   </header>
81 | 
82 |   <main role="main">
83 |     {% content %}
84 |   </main>
85 | 
86 |   <!-- STATIC FOOTER -->
87 | 
88 |   <footer class="footer">
89 |     <div class="container">
90 |       <div class="row">
91 |         <p class="text-center">Copyright &copy; {{ today.year }} {{ provider.name }}<a href="http://3scale.net/" class="powered-by" target="_blank">Powered by 3scale</a></p>
92 |       </div>
93 |     </div>
94 |   </footer>
95 |   
96 | </body>
97 | </html>
98 | 


--------------------------------------------------------------------------------
/_configuration/openshift/README.md:
--------------------------------------------------------------------------------
 1 | ### Installing a self-signed certificate into JVM CA truststore
 2 | Self-Signed certificates must be added to a custom FUSE image to avoid SSL handshake errors by Keycloak adapter.
 3 | https://medium.com/@siweheee/keycloak-a-real-scenario-from-development-to-production-ce57800e3ba9
 4 | 
 5 | ```
 6 | # step1
 7 | echo | openssl s_client -showcerts -servername ${RHSSO_URI} -connect ${RHSSO_URI}:443 2>/dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > self-signed-cert.pem
 8 | # Validate the connection first! must return HTTP/1.1 200 OK
 9 | curl -v https://${RHSSO_URI}/auth/realms/master --cacert self-signed-cert.pem
10 | 
11 | # step2
12 | openssl x509 -in <(openssl s_client -connect sso73.apps.<DOMAIN>:443 -prexit 2>/dev/null) -out temp/sso73.apps.<DOMAIN>.crt
13 | keytool -import -trustcacerts -keystore /etc/pki/ca-trust/extracted/java/cacerts -storepass changeit -noprompt -alias keycloak -file /home/jboss/temp/sso73.apps.<DOMAIN>.crt
14 | 
15 | openssl pkcs12 -export -out pkcskeystore.pkcs12 -in self-signed-cert.pem -inkey privkey.pem
16 | keytool -importkeystore -destkeystore keystore.jks -srckeystore pkcskeystore.pkcs12 -srcstoretype PKCS12
17 | ```
18 | 
19 | In the end, I had to acquire 2 files:
20 | - The .pem file
21 | - The .cert file
22 | 
23 | In order to avoid any trouble to import them into the container image, I had splited the .pem into Nth .crt files.
24 | 
25 | So, in my case, I've ended up with 3 files?
26 | - cert1.crt (first certificate in .pem)
27 | - cert2.crt (second certificate in .pem)
28 | - sso73.crt (the third certificate extracted in step2)
29 | 
30 | <b>The `Dockerfile` explains better how I had to customize the image in order to allow the keycloak-admin-client to poke with the sso73 self-signed server.</b>
31 | 
32 | ### Creating a custom FUSE docker image with the self-signed certificate
33 | 
34 | Access your Openshift** instance and execute the following:
35 | ```
36 | oc login -u admin -p <ADMIN-PASSWORD>
37 | 
38 | docker login -u openshift -p `oc whoami -t` docker-registry.default.svc:5000
39 | 
40 | docker build -t "openshift/fuse7-java-openshift-selfsigned" .
41 | 
42 | docker images | grep fuse
43 | # docker rmi $(sudo docker images --filter "dangling=true" -q --no-trunc)
44 | 
45 | docker tag openshift/fuse7-java-openshift-selfsigned:latest docker-registry.default.svc:5000/openshift/fuse7-java-openshift-selfsigned:1.0
46 | docker tag openshift/fuse7-java-openshift-selfsigned:latest docker-registry.default.svc:5000/openshift/fuse7-java-openshift-selfsigned:latest
47 | 
48 | docker images | grep fuse
49 | 
50 | docker push docker-registry.default.svc:5000/openshift/fuse7-java-openshift-selfsigned
51 | ```
52 | 
53 | 


--------------------------------------------------------------------------------
/_configuration/openshift/docker/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM registry.access.redhat.com/fuse7/fuse-java-openshift:1.4
 2 | 
 3 | USER 185
 4 | 
 5 | COPY self-signed/sso73.crt /tmp/
 6 | COPY self-signed/cert1.crt /tmp/
 7 | COPY self-signed/cert2.crt /tmp/
 8 | 
 9 | USER root
10 | 
11 | RUN keytool -import -trustcacerts -keystore /etc/pki/ca-trust/extracted/java/cacerts -storepass changeit -noprompt -alias keycloak1 -file /tmp/sso73.crt
12 | RUN keytool -importcert -file /tmp/cert1.crt -alias keycloak2 -keystore /etc/pki/ca-trust/extracted/java/cacerts -storepass changeit -noprompt
13 | RUN keytool -importcert -file /tmp/cert2.crt -alias keycloak3 -keystore /etc/pki/ca-trust/extracted/java/cacerts -storepass changeit -noprompt
14 | RUN rm /tmp/sso73.crt /tmp/cert1.crt /tmp/cert2.crt
15 | 
16 | USER 185
17 | 
18 | CMD [ "/usr/local/s2i/run" ]
19 | 


--------------------------------------------------------------------------------
/_configuration/openshift/docker/self-signed/cert1.crt:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIIDuzCCAaMCCQDngy+tstnNojANBgkqhkiG9w0BAQUFADAeMRwwGgYDVQQDDBN4
 3 | cGFhcy1yZWRoYXQtc3NvLmNhMB4XDTE5MDkxNDA0MDE0OFoXDTI5MDkxMTA0MDE0
 4 | OFowITEfMB0GA1UEAxMWc3NvNzMuYXBwcy5hcmVra3VzdS5pbzCCASIwDQYJKoZI
 5 | hvcNAQEBBQADggEPADCCAQoCggEBAOmYq+kOjPiF9bm5VPuDDbKNQYZNtv1H1VJK
 6 | xTGpW77ld25p+0iK1CZTEpJae0MmsKlLZOg/5zqDcoPDzhcr8LzlD19HaK+Jl4wx
 7 | y4nd+cuoCbEAlf6CDcB2cApCRvqMFi9/1yBBZM1yL2MEIyDgU1wpEQAqCl/9fuci
 8 | WhhUxdw51OA1aLC15SMyUkjEI/tb3LkKklWwf+Zm6ekgrBhY7Adl9jrdaWPoKgpo
 9 | kDyVZGq+WzkWv8x7PKq5/itRDTF482pRcHTfiYNuGBpE9lMsHWUKtpHGUCwcEozi
10 | Hk8Yxns4vN/0v+S6F6XjRfsC5uqllwz4kJ1QAW7wt/uJxeiixR8CAwEAATANBgkq
11 | hkiG9w0BAQUFAAOCAgEAcaWfQyCpgRJI/Tq+yk4obbaqDFmMZm1z4EI2OWDLL3k8
12 | ijzRMa8/iv+ew8HocN+/nTsutBv2S18/8Bn2f8L6rE1Sewu3ne42CCuK1wyakNjX
13 | V7xdck17ZwRGDStjLK/2cRl/zj/f28gYjOHfv1dUFeRdHmFOV5UwKSicj6c8QSap
14 | Y/T68MMhllmJXzk86rnGwDaE8TIGXje8ULLw15598kLHwHa6Hq4X7jcfAtwKfBcV
15 | UUIzmEdmyJieFw9pmXurMH+apDWykkZg5HTDO8/XdXljQjjJTheTEbneCTDTl8Yk
16 | lp6TNJIKHwx0PsN66H+mwfv/vRnzoWeHsdtqu+j3TmMVLkuIcNwV3Fr8DEZx9m5a
17 | /jHH193YYl5xEd/QZaM+g2vrA3iMEN0xapauC0/1gi54h1AU6vlUR10T26zITW84
18 | vALXsrkPhNEvPWkmxLUNx/HTxTy0Rn2+ZsvCnxJQCQSJUIgZX8CKvGarIjX0u6qc
19 | 4F91mE6i5xCCjVp8KnQ0zos7QCjnl4IoZSMAr/i2L03RALzsxeKBvmBBYoNnmfSf
20 | 3G7T+HGOXOLMe0waLhN+nOtEdk/ZTvuRMarDtIrZVycj0yoy+OTv/jaMYTifzIWe
21 | uB4bZSgCaKBvEmz114k2ZSFzKxzAjmASCpMPPpwSRWOnA82hW+0e5v9rRc28ZKs=
22 | -----END CERTIFICATE-----
23 | 


--------------------------------------------------------------------------------
/_configuration/openshift/docker/self-signed/cert2.crt:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIIEuDCCAqACCQD/yQHumD+iDjANBgkqhkiG9w0BAQsFADAeMRwwGgYDVQQDDBN4
 3 | cGFhcy1yZWRoYXQtc3NvLmNhMB4XDTE5MDkxNDA0MDExM1oXDTI5MDkxMTA0MDEx
 4 | M1owHjEcMBoGA1UEAwwTeHBhYXMtcmVkaGF0LXNzby5jYTCCAiIwDQYJKoZIhvcN
 5 | AQEBBQADggIPADCCAgoCggIBAOUZpuhSTAl4vKCe/5vFfKUr0oG2h9XbsqZVXDsj
 6 | 2i4GOD0FgtdOsWDIc3OFb3XhBZ4NwsPLZZwoFgWmWnkOWm/gkGxbsQggA5wKqvuf
 7 | 4oKvWsLhoSHQD5kjBOlcCjPqIPpl45Co34yEcaBLaFQEUWJ4PnCImhM4mVincHfK
 8 | b4fU/gX+wL/gCMPgvhMhH5hZKjthEpNixxoNCEXHfp53zQLqgu1Z1jq/F80yazwG
 9 | sN6XcRdFqSPwkzLPmb8oGREhwoNcm/n5/94r1lGn6Bf09qiGRnWXnG97/Q3KmGRM
10 | JXOAk8DBZDcYvOe7P/ZQa9Lxs+2vhW7LLvhPBG/ZzQmyRUZj2ut7ns1MH8nqRswP
11 | CYntwfi1Zn8OGHvU4RCtff/PiNFxkjd67vqq1z7ttXNQRp7KD4HSEvBzSjr4t/QV
12 | ZdjRwb0mMZ9rIPSzGmejDSqEwRFSXsNCTcV+m1VLfD3kQX3K14/ooeN149AKT9nV
13 | tra1zcqCafpEv/5wZY58M//QVqyYS6NodqGI5ObyTWkI5bdPT8tAX48mkmDXwXVr
14 | TRr9vA4n2tFOqXUKfUp63fEarc5m0xNF0mfotxkon6dnIPGNspa4azZjEVKvIQIB
15 | z7/1CMwwjsj+kD3ishXIfPKtLxmAruNtk4u/IiZ1g2dDgKvnZeZHJpXumlyZv/J2
16 | ckPNAgMBAAEwDQYJKoZIhvcNAQELBQADggIBAIgbsisBfQX00XdBYeKqNaKdiLjC
17 | 8L7LOs2MdTxGm6yYZSi2AD3RAwWoBhzcuWOKYpmmMnUUYusY4ouxT/RhhnwhZvD9
18 | 30W7ZCO2eAP1/bzMzXjEYcuIbDfxHh/zt3YAXwijxX8WGiJECorKVsVWTWyZsSno
19 | FHNmbg4lrNlzxRS6UR2HfAeuOEFZ5olBX2KZ9bY+pP7ra/ym/YJZNx6Km9b7Vz4q
20 | V5B2a/WY8uWzx8kNyZ/E2cuxhuUCzWFbvAwlGs+zpsyCqMVMwaLJ9FO9HBkKAtUd
21 | LHJGGy6iCs78/BgmbZiwiu4Gvr8XuY9sowe6SEs/rLd/yIs7G/GLOTC5/DfZQMk4
22 | 215X4Wblj/937ato6/eJPaKzVqyPppMBs7x0zNUriF/PJ32al8pMW4u3tofRfDyv
23 | dvyd7ioYfcBnxTJXPLPzlRz0e/VTTsN3JKZ6eQm7Kuuyk/248mgK3i+F9wt29CZc
24 | /l6/Abh1NojNzY8z6Ojnm/sXA0g7WR1Kf2JDROJS0dAj3UqrN5vHVwNpr5bw7Eu8
25 | bEmPYS0AVzBGA03FRQty8rSKvzlU8nTjolRf3KaR9Hr7djF5/l1ZNIE4fuEbwV9i
26 | ahDUqX4gKGzFuC1uuf4YW59655s0V6973kfCkO+ZPppEqreL9OFecvn/9GpBGwPB
27 | mFvQJsweBvxy8U5P
28 | -----END CERTIFICATE-----
29 | 


--------------------------------------------------------------------------------
/_configuration/openshift/docker/self-signed/self-signed-cert.pem:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIIDuzCCAaMCCQDngy+tstnNojANBgkqhkiG9w0BAQUFADAeMRwwGgYDVQQDDBN4
 3 | cGFhcy1yZWRoYXQtc3NvLmNhMB4XDTE5MDkxNDA0MDE0OFoXDTI5MDkxMTA0MDE0
 4 | OFowITEfMB0GA1UEAxMWc3NvNzMuYXBwcy5hcmVra3VzdS5pbzCCASIwDQYJKoZI
 5 | hvcNAQEBBQADggEPADCCAQoCggEBAOmYq+kOjPiF9bm5VPuDDbKNQYZNtv1H1VJK
 6 | xTGpW77ld25p+0iK1CZTEpJae0MmsKlLZOg/5zqDcoPDzhcr8LzlD19HaK+Jl4wx
 7 | y4nd+cuoCbEAlf6CDcB2cApCRvqMFi9/1yBBZM1yL2MEIyDgU1wpEQAqCl/9fuci
 8 | WhhUxdw51OA1aLC15SMyUkjEI/tb3LkKklWwf+Zm6ekgrBhY7Adl9jrdaWPoKgpo
 9 | kDyVZGq+WzkWv8x7PKq5/itRDTF482pRcHTfiYNuGBpE9lMsHWUKtpHGUCwcEozi
10 | Hk8Yxns4vN/0v+S6F6XjRfsC5uqllwz4kJ1QAW7wt/uJxeiixR8CAwEAATANBgkq
11 | hkiG9w0BAQUFAAOCAgEAcaWfQyCpgRJI/Tq+yk4obbaqDFmMZm1z4EI2OWDLL3k8
12 | ijzRMa8/iv+ew8HocN+/nTsutBv2S18/8Bn2f8L6rE1Sewu3ne42CCuK1wyakNjX
13 | V7xdck17ZwRGDStjLK/2cRl/zj/f28gYjOHfv1dUFeRdHmFOV5UwKSicj6c8QSap
14 | Y/T68MMhllmJXzk86rnGwDaE8TIGXje8ULLw15598kLHwHa6Hq4X7jcfAtwKfBcV
15 | UUIzmEdmyJieFw9pmXurMH+apDWykkZg5HTDO8/XdXljQjjJTheTEbneCTDTl8Yk
16 | lp6TNJIKHwx0PsN66H+mwfv/vRnzoWeHsdtqu+j3TmMVLkuIcNwV3Fr8DEZx9m5a
17 | /jHH193YYl5xEd/QZaM+g2vrA3iMEN0xapauC0/1gi54h1AU6vlUR10T26zITW84
18 | vALXsrkPhNEvPWkmxLUNx/HTxTy0Rn2+ZsvCnxJQCQSJUIgZX8CKvGarIjX0u6qc
19 | 4F91mE6i5xCCjVp8KnQ0zos7QCjnl4IoZSMAr/i2L03RALzsxeKBvmBBYoNnmfSf
20 | 3G7T+HGOXOLMe0waLhN+nOtEdk/ZTvuRMarDtIrZVycj0yoy+OTv/jaMYTifzIWe
21 | uB4bZSgCaKBvEmz114k2ZSFzKxzAjmASCpMPPpwSRWOnA82hW+0e5v9rRc28ZKs=
22 | -----END CERTIFICATE-----
23 | -----BEGIN CERTIFICATE-----
24 | MIIEuDCCAqACCQD/yQHumD+iDjANBgkqhkiG9w0BAQsFADAeMRwwGgYDVQQDDBN4
25 | cGFhcy1yZWRoYXQtc3NvLmNhMB4XDTE5MDkxNDA0MDExM1oXDTI5MDkxMTA0MDEx
26 | M1owHjEcMBoGA1UEAwwTeHBhYXMtcmVkaGF0LXNzby5jYTCCAiIwDQYJKoZIhvcN
27 | AQEBBQADggIPADCCAgoCggIBAOUZpuhSTAl4vKCe/5vFfKUr0oG2h9XbsqZVXDsj
28 | 2i4GOD0FgtdOsWDIc3OFb3XhBZ4NwsPLZZwoFgWmWnkOWm/gkGxbsQggA5wKqvuf
29 | 4oKvWsLhoSHQD5kjBOlcCjPqIPpl45Co34yEcaBLaFQEUWJ4PnCImhM4mVincHfK
30 | b4fU/gX+wL/gCMPgvhMhH5hZKjthEpNixxoNCEXHfp53zQLqgu1Z1jq/F80yazwG
31 | sN6XcRdFqSPwkzLPmb8oGREhwoNcm/n5/94r1lGn6Bf09qiGRnWXnG97/Q3KmGRM
32 | JXOAk8DBZDcYvOe7P/ZQa9Lxs+2vhW7LLvhPBG/ZzQmyRUZj2ut7ns1MH8nqRswP
33 | CYntwfi1Zn8OGHvU4RCtff/PiNFxkjd67vqq1z7ttXNQRp7KD4HSEvBzSjr4t/QV
34 | ZdjRwb0mMZ9rIPSzGmejDSqEwRFSXsNCTcV+m1VLfD3kQX3K14/ooeN149AKT9nV
35 | tra1zcqCafpEv/5wZY58M//QVqyYS6NodqGI5ObyTWkI5bdPT8tAX48mkmDXwXVr
36 | TRr9vA4n2tFOqXUKfUp63fEarc5m0xNF0mfotxkon6dnIPGNspa4azZjEVKvIQIB
37 | z7/1CMwwjsj+kD3ishXIfPKtLxmAruNtk4u/IiZ1g2dDgKvnZeZHJpXumlyZv/J2
38 | ckPNAgMBAAEwDQYJKoZIhvcNAQELBQADggIBAIgbsisBfQX00XdBYeKqNaKdiLjC
39 | 8L7LOs2MdTxGm6yYZSi2AD3RAwWoBhzcuWOKYpmmMnUUYusY4ouxT/RhhnwhZvD9
40 | 30W7ZCO2eAP1/bzMzXjEYcuIbDfxHh/zt3YAXwijxX8WGiJECorKVsVWTWyZsSno
41 | FHNmbg4lrNlzxRS6UR2HfAeuOEFZ5olBX2KZ9bY+pP7ra/ym/YJZNx6Km9b7Vz4q
42 | V5B2a/WY8uWzx8kNyZ/E2cuxhuUCzWFbvAwlGs+zpsyCqMVMwaLJ9FO9HBkKAtUd
43 | LHJGGy6iCs78/BgmbZiwiu4Gvr8XuY9sowe6SEs/rLd/yIs7G/GLOTC5/DfZQMk4
44 | 215X4Wblj/937ato6/eJPaKzVqyPppMBs7x0zNUriF/PJ32al8pMW4u3tofRfDyv
45 | dvyd7ioYfcBnxTJXPLPzlRz0e/VTTsN3JKZ6eQm7Kuuyk/248mgK3i+F9wt29CZc
46 | /l6/Abh1NojNzY8z6Ojnm/sXA0g7WR1Kf2JDROJS0dAj3UqrN5vHVwNpr5bw7Eu8
47 | bEmPYS0AVzBGA03FRQty8rSKvzlU8nTjolRf3KaR9Hr7djF5/l1ZNIE4fuEbwV9i
48 | ahDUqX4gKGzFuC1uuf4YW59655s0V6973kfCkO+ZPppEqreL9OFecvn/9GpBGwPB
49 | mFvQJsweBvxy8U5P
50 | -----END CERTIFICATE-----
51 | 


--------------------------------------------------------------------------------
/_configuration/openshift/docker/self-signed/sso73.crt:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIIDJDCCAgygAwIBAgIBCTANBgkqhkiG9w0BAQsFADAmMSQwIgYDVQQDDBtvcGVu
 3 | c2hpZnQtc2lnbmVyQDE1NjUxNTQ0OTQwHhcNMTkwODA3MDUxNDExWhcNMjEwODA2
 4 | MDUxNDEyWjAdMRswGQYDVQQDDBIqLmFwcHMuYXJla2t1c3UuaW8wggEiMA0GCSqG
 5 | SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwzL3el1dRM0SM9UE8oJKvnaZQfXZr3rt4
 6 | n5uHHYUN0LUY4XXul9pTd687DEcC56RbQXSe26i1buCwCtNYwirfcpN7YkVkxEax
 7 | LF/gHSEmuNngdCzyJ8tvNrzVVuqXLHC+T2sh9279JkoNFGuzZeCL/ibN5mDe1+51
 8 | GaM0kQ2KHYXzH7fpLTXIja3Jlxal8inKHNBTsS7TU3GuLeYBP5BZXBVEyBYW1fZC
 9 | mfpnm0cb06gFG0RubjhIuJQ6sgfpdeFC/cQYuir7ddc8eQ9zyi3A6OU8gIP5YaGv
10 | D9bZbMv05Au1KKFdakBwnsg3Cj0uvHWtBCYSTVV8V+noa93yQjMTAgMBAAGjZjBk
11 | MA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8E
12 | AjAAMC8GA1UdEQQoMCaCEiouYXBwcy5hcmVra3VzdS5pb4IQYXBwcy5hcmVra3Vz
13 | dS5pbzANBgkqhkiG9w0BAQsFAAOCAQEAe0fYj+cxcYqzenrK49uULJI0Wnm46FiB
14 | EO5PRo21W/NiqB0GqMODqjKaZ3aBBUWGa6WyMjznS2kmUPu4qBA1JT2WoSlQ64z3
15 | ZmRihdZSyFekDt31a50gwM3n0Nz9m8e63rxHe+4L69VHgNr5r1Q3G+LmIV/MVOYM
16 | eTVGKJ7s6CM19pqHucjKmLlXqPDTNDFBUfU5Iyi1KS6pD3kureeddF6/2aZSI7qw
17 | zqokWhKn0ocuTQFKH9oe+srXoHl4cM+dsVlliBgDI+Wkav9G9p+dkyivcbKgRSel
18 | eHIclUR/q+Q3Zagzg6Q9W8Xjcbjiepvn0Fs5IhL2D8cU+YKasbwp2Q==
19 | -----END CERTIFICATE-----
20 | 


--------------------------------------------------------------------------------
/_images/01.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/01.png


--------------------------------------------------------------------------------
/_images/02.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/02.png


--------------------------------------------------------------------------------
/_images/04.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/04.png


--------------------------------------------------------------------------------
/_images/05.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/05.png


--------------------------------------------------------------------------------
/_images/06.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/06.png


--------------------------------------------------------------------------------
/_images/07.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/07.png


--------------------------------------------------------------------------------
/_images/08.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/08.png


--------------------------------------------------------------------------------
/_images/09.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/09.png


--------------------------------------------------------------------------------
/_images/10.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/10.png


--------------------------------------------------------------------------------
/_images/11.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/11.png


--------------------------------------------------------------------------------
/_images/12.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/12.png


--------------------------------------------------------------------------------
/_images/13.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/13.png


--------------------------------------------------------------------------------
/_images/14.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/14.png


--------------------------------------------------------------------------------
/_images/15.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/15.png


--------------------------------------------------------------------------------
/_images/16.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/16.png


--------------------------------------------------------------------------------
/_images/17.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/17.png


--------------------------------------------------------------------------------
/_images/18.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/18.png


--------------------------------------------------------------------------------
/_images/19.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/19.png


--------------------------------------------------------------------------------
/_images/20.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/20.png


--------------------------------------------------------------------------------
/_images/21.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/21.png


--------------------------------------------------------------------------------
/_images/22.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/22.png


--------------------------------------------------------------------------------
/_images/23.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/23.png


--------------------------------------------------------------------------------
/_images/24.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/24.png


--------------------------------------------------------------------------------
/_images/25.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/25.png


--------------------------------------------------------------------------------
/_images/26.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/26.png


--------------------------------------------------------------------------------
/_images/27.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/27.png


--------------------------------------------------------------------------------
/_images/28.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/28.png


--------------------------------------------------------------------------------
/_images/29.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/29.png


--------------------------------------------------------------------------------
/_images/30.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/30.png


--------------------------------------------------------------------------------
/_images/31.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/31.png


--------------------------------------------------------------------------------
/_images/32.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/32.png


--------------------------------------------------------------------------------
/_images/33.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/33.png


--------------------------------------------------------------------------------
/_images/34.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/34.png


--------------------------------------------------------------------------------
/_images/35.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/35.png


--------------------------------------------------------------------------------
/_images/36.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/36.png


--------------------------------------------------------------------------------
/_images/37.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/37.png


--------------------------------------------------------------------------------
/_images/icon01.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/icon01.png


--------------------------------------------------------------------------------
/_images/icon02.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/icon02.png


--------------------------------------------------------------------------------
/_images/meme01.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/meme01.jpg


--------------------------------------------------------------------------------
/_images/meme03.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/meme03.jpg


--------------------------------------------------------------------------------
/_images/meme03.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_images/meme03.png


--------------------------------------------------------------------------------
/_videos/screen01.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/_videos/screen01.gif


--------------------------------------------------------------------------------
/auth-integration/configuration/configmap/auth-integration-api-env.yml:
--------------------------------------------------------------------------------
 1 | apiVersion: v1
 2 | kind: ConfigMap
 3 | metadata:
 4 |   name: auth-integration-api-config
 5 | data:
 6 |   OPENSHIFT_APP_NAME: fuse-auth-integration-api
 7 |   OPENSHIFT_HOST_NAME: auth-integration-api-microservices-security.apps.arekkusu.io
 8 |   OPENSHIFT_JAEGER_HOST: jaeger-agent.microservices.svc
 9 |   OPENSHIFT_METRICS_HOST: "auth-integration-api-metrics.microservices-security.svc.cluster.local"
10 |   OPENSHIFT_PRODUCT_HOST: "product-api.microservices-security.svc.cluster.local"
11 |   OPENSHIFT_PRODUCT_CTX: /api/v1/product
12 |   OPENSHIFT_PRODUCT_STATUS_CTX: /actuator/health
13 |   OPENSHIFT_STOCK_HOST: "stock-api.microservices-security.svc.cluster.local"
14 |   OPENSHIFT_STOCK_CTX: /api/v1
15 |   OPENSHIFT_STOCK_STATUS_CTX: /actuator/health
16 |   OPENSHIFT_SUPPLIER_HOST: "supplier-api-production.apps.arekkusu.io"
17 |   OPENSHIFT_SUPPLIER_CTX: /api/v1
18 |   OPENSHIFT_SUPPLIER_STATUS_CTX: /actuator/health
19 |   OPENSHIFT_SVCACC_SSO_REALM: 3scale-api
20 |   OPENSHIFT_SVCACC_SSO_CLIENT_ID: 847d10c1
21 |   OPENSHIFT_SVCACC_SSO_CLIENT_SECRET: 4519d24a04b3d9093aa9129aa7711d9d
22 |   OPENSHIFT_SVCACC_SSO_GRANT_TYPE: password
23 |   OPENSHIFT_SVCACC_SSO_USERNAME: 8f314bfa_svcacc
24 |   OPENSHIFT_SVCACC_SSO_PASSWORD: "12345"
25 |   OPENSHIFT_SVCACC_SSO_AUTH_HOST: https://sso73.apps.arekkusu.io/auth
26 |   OPENSHIFT_KEYCLOAK_SSL_REQUIRED: external
27 |   OPENSHIFT_KEYCLOAK_REALM: 3scale-api
28 |   OPENSHIFT_KEYCLOAK_RESOURCE: 8f314bfa
29 |   OPENSHIFT_KEYCLOAK_RESOURCE_SECRET: 2d1beebcf1c9d00dd51be7a344abd87f
30 |   OPENSHIFT_KEYCLOAK_AUTH_HOST: https://sso73.apps.arekkusu.io/auth
31 | 


--------------------------------------------------------------------------------
/auth-integration/configuration/secret/auth-integration-api.yml:
--------------------------------------------------------------------------------
1 | apiVersion: v1
2 | kind: Secret
3 | metadata:
4 |   name: auth-integration-api-secret
5 | type: Opaque
6 | data:
7 |   FOOBAR: foobar
8 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/AuthFuseApplication.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security;
 2 | 
 3 | import org.apache.camel.opentracing.starter.CamelOpenTracing;
 4 | import org.slf4j.Logger;
 5 | import org.slf4j.LoggerFactory;
 6 | import org.springframework.beans.factory.annotation.Value;
 7 | import org.springframework.boot.SpringApplication;
 8 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 9 | import org.apache.camel.component.servlet.CamelHttpTransportServlet;
10 | import org.springframework.boot.web.servlet.FilterRegistrationBean;
11 | import org.springframework.boot.web.servlet.ServletRegistrationBean;
12 | import org.springframework.context.annotation.Bean;
13 | import org.springframework.core.Ordered;
14 | import org.springframework.web.cors.CorsConfiguration;
15 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
16 | import org.springframework.web.filter.CorsFilter;
17 | import java.util.Collections;
18 | 
19 | @SpringBootApplication
20 | @CamelOpenTracing
21 | public class AuthFuseApplication {
22 | 
23 |     private static Logger logger = LoggerFactory.getLogger(AuthFuseApplication.class);
24 | 
25 |     @Value("${camel.component.servlet.mapping.contextPath}")
26 |     private String contextPath;
27 | 
28 |     @Bean
29 |     public ServletRegistrationBean camelServletRegistrationBean() {
30 |         ServletRegistrationBean registration = new ServletRegistrationBean(new CamelHttpTransportServlet(),
31 |                 contextPath);
32 |         registration.setName("CamelServlet");
33 |         return registration;
34 |     }
35 | 
36 |     @Bean
37 |     public FilterRegistrationBean simpleCorsFilter() {
38 |         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
39 |         CorsConfiguration config = new CorsConfiguration();
40 | 
41 |         config.setAllowCredentials(true);
42 |         config.setAllowedOrigins(Collections.singletonList("*"));
43 |         config.setAllowedMethods(Collections.singletonList("*"));
44 |         config.setAllowedHeaders(Collections.singletonList("*"));
45 | 
46 |         source.registerCorsConfiguration("/**", config);
47 | 
48 |         FilterRegistrationBean bean = new FilterRegistrationBean(new CorsFilter(source));
49 |         bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
50 | 
51 |         return bean;
52 |     }
53 | 
54 |     public static void main(String[] args) {
55 |         SpringApplication.run(AuthFuseApplication.class, args);
56 |     }
57 | 
58 | }
59 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/Combination.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security;
 2 | 
 3 | public class Combination {
 4 | 
 5 |     /* arr[]  ---> Input Array
 6 |     data[] ---> Temporary array to store current combination
 7 |     start & end ---> Staring and Ending indexes in arr[]
 8 |     index  ---> Current index in data[]
 9 |     r ---> Size of a combination to be printed */
10 |     static void combinationUtil(int arr[], int data[], int start,
11 |                                 int end, int index, int r)
12 |     {
13 |         // Current combination is ready to be printed, print it
14 |         if (index == r)
15 |         {
16 |             for (int j=0; j<r; j++)
17 |                 System.out.print(data[j]+" ");
18 |             System.out.println("");
19 |             return;
20 |         }
21 | 
22 |         // replace index with all possible elements. The condition
23 |         // "end-i+1 >= r-index" makes sure that including one element
24 |         // at index will make a combination with remaining elements
25 |         // at remaining positions
26 |         for (int i=start; i<=end && end-i+1 >= r-index; i++)
27 |         {
28 |             data[index] = arr[i];
29 |             combinationUtil(arr, data, i+1, end, index+1, r);
30 |         }
31 |     }
32 | 
33 |     // The main function that prints all combinations of size r
34 |     // in arr[] of size n. This function mainly uses combinationUtil()
35 |     static void printCombination(int arr[], int n, int r)
36 |     {
37 |         // A temporary array to store all combination one by one
38 |         int data[]=new int[r];
39 | 
40 |         // Print all combination using temprary array 'data[]'
41 |         combinationUtil(arr, data, 0, n-1, 0, r);
42 |     }
43 | 
44 |     /*Driver function to check for above function*/
45 |     public static void main (String[] args) {
46 |         int arr[] = {1, 2, 3, 4, 5};
47 |         int r = 5;
48 |         int n = arr.length;
49 |         printCombination(arr, n, r);
50 |     }
51 | }
52 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/common/camel/AuthComponent.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.common.camel;
 2 | 
 3 | import org.apache.camel.Endpoint;
 4 | import org.apache.camel.impl.DefaultComponent;
 5 | import org.slf4j.Logger;
 6 | import org.slf4j.LoggerFactory;
 7 | import java.util.Map;
 8 | 
 9 | @SuppressWarnings("WeakerAccess")
10 | public class AuthComponent extends DefaultComponent {
11 |     private Logger log = LoggerFactory.getLogger(AuthComponent.class);
12 | 
13 |     public static final String SERVER_URL = "serverUrl";
14 |     public static final String REALM = "realm";
15 |     public static final String CLIENT_ID = "clientID";
16 |     public static final String CLIENT_SECRET = "clientSecret";
17 |     public static final String GRANT_TYPE = "grantType";
18 |     public static final String USERNAME = "username";
19 |     public static final String PASSWORD = "password";
20 | 
21 |     @Override
22 |     protected Endpoint createEndpoint(String uri, String remaining, Map<String, Object> parameters) throws Exception {
23 |         Endpoint endpoint = new AuthEndpoint(uri, this);
24 |         setProperties(endpoint, parameters);
25 |         return endpoint;
26 |     }
27 | }
28 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/common/camel/AuthConsumer.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.common.camel;
 2 | 
 3 | import org.apache.camel.Processor;
 4 | import org.apache.camel.impl.ScheduledPollConsumer;
 5 | 
 6 | public class AuthConsumer extends ScheduledPollConsumer {
 7 |     private final AuthEndpoint endpoint;
 8 | 
 9 |     public AuthConsumer(AuthEndpoint endpoint, Processor processor) {
10 |         super(endpoint, processor);
11 |         this.endpoint = endpoint;
12 |     }
13 | 
14 |     @Override
15 |     protected int poll() throws Exception {
16 |         throw new RuntimeException("AuthComponent has no consumer...");
17 |     }
18 | }
19 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/common/camel/AuthProducer.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.common.camel;
 2 | 
 3 | import com.microservices.apigateway.security.common.oauth2.OAuth2ClientCredentials;
 4 | import com.microservices.apigateway.security.common.oauth2.Token;
 5 | import org.apache.camel.Exchange;
 6 | import org.apache.camel.impl.DefaultProducer;
 7 | 
 8 | public class AuthProducer extends DefaultProducer {
 9 |     protected AuthEndpoint endpoint;
10 |     protected OAuth2ClientCredentials oAuth2ClientCredentials;
11 | 
12 |     public AuthProducer(AuthEndpoint endpoint) {
13 |         super(endpoint);
14 |         this.endpoint = endpoint;
15 | 
16 |         log.info("[serverURL: {}, realm: {}, client_id: {}, client_secret: {}, grant_type: {}, username: {} characters, password: {} characters]",
17 |                 this.endpoint.getServerUrl(),
18 |                 this.endpoint.getRealm(),
19 |                 this.endpoint.getClientID(),
20 |                 this.endpoint.getClientSecret(),
21 |                 this.endpoint.getGrantType(),
22 |                 this.endpoint.getUsername() != null ? this.endpoint.getUsername().length() : 0,
23 |                 this.endpoint.getPassword() != null ? this.endpoint.getPassword().length() : 0);
24 | 
25 |         oAuth2ClientCredentials = new OAuth2ClientCredentials(
26 |                 this.endpoint.getServerUrl(),
27 |                 this.endpoint.getRealm(),
28 |                 this.endpoint.getClientID(),
29 |                 this.endpoint.getClientSecret(),
30 |                 this.endpoint.getGrantType(),
31 |                 this.endpoint.getUsername(),
32 |                 this.endpoint.getPassword());
33 |     }
34 | 
35 |     @SuppressWarnings("WeakerAccess")
36 |     protected Token getToken() {
37 |         return oAuth2ClientCredentials.getToken();
38 |     }
39 | 
40 |     @SuppressWarnings("unused")
41 |     protected String getBearer() {
42 |         String tokenString = null;
43 |         tokenString = getToken().getAccessToken();
44 |         if (tokenString == null) {
45 |             throw new NullPointerException("Token is null");
46 |         }
47 |         return String.format("Bearer %s", tokenString);
48 |     }
49 | 
50 |     public void process(Exchange exchange) throws Exception {
51 |         exchange.getIn().setHeader("Authorization", getBearer());
52 |     }
53 | 
54 | }
55 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/common/oauth2/OAuth2ClientCredentials.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.common.oauth2;
 2 | 
 3 | import org.keycloak.admin.client.Keycloak;
 4 | import org.keycloak.admin.client.KeycloakBuilder;
 5 | import org.keycloak.representations.AccessTokenResponse;
 6 | 
 7 | public class OAuth2ClientCredentials {
 8 |     private Keycloak keycloak;
 9 | 
10 |     public OAuth2ClientCredentials(
11 |             String serverUrl,
12 |             String realm,
13 |             String clientId,
14 |             String clientSecret,
15 |             String grantType,
16 |             String username,
17 |             String password) {
18 | 
19 |         keycloak = KeycloakBuilder.builder()
20 |             .clientId(clientId)
21 |             .clientSecret(clientSecret)
22 |             .grantType(grantType)
23 |             .realm(realm)
24 |             .serverUrl(serverUrl)
25 |             .username(username)
26 |             .password(password)
27 |             .build();
28 |     }
29 | 
30 |     public Token getToken() {
31 |         AccessTokenResponse accessToken = null;
32 |         accessToken = keycloak.tokenManager().getAccessToken();
33 |         return new Token(
34 |             accessToken.getToken(),
35 |             accessToken.getExpiresIn(),
36 |             accessToken.getRefreshExpiresIn(),
37 |             accessToken.getRefreshToken(),
38 |             accessToken.getTokenType(),
39 |             accessToken.getIdToken(),
40 |             accessToken.getNotBeforePolicy(),
41 |             accessToken.getSessionState(),
42 |             accessToken.getOtherClaims(),
43 |             accessToken.getScope());
44 |     }
45 | }
46 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/common/oauth2/Token.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.common.oauth2;
 2 | 
 3 | import java.util.Map;
 4 | 
 5 | public class Token {
 6 |     private String accessToken;
 7 |     private long expiresIn;
 8 |     private long refreshExpiresIn;
 9 |     private String refreshToken;
10 |     private String tokenType;
11 |     private String idToken;
12 |     private int notBeforePolicy;
13 |     private String sessionState;
14 |     private Map<String, Object> otherClaims;
15 |     private String scope;
16 | 
17 |     Token(
18 |             String accessToken,
19 |             long expiresIn,
20 |             long refreshExpiresIn,
21 |             String refreshToken,
22 |             String tokenType,
23 |             String idToken,
24 |             int notBeforePolicy,
25 |             String sessionState,
26 |             Map<String, Object> otherClaims,
27 |             String scope) {
28 | 
29 |         if (accessToken == null) {
30 |             throw new NullPointerException("Access Token is null");
31 |         }
32 |         if (refreshToken == null) {
33 |             throw new NullPointerException("Refresh Token is null");
34 |         }
35 |         if (tokenType == null) {
36 |             throw new NullPointerException("Token Type is null");
37 |         }
38 | 
39 |         this.accessToken = accessToken;
40 |         this.expiresIn = expiresIn;
41 |         this.refreshExpiresIn = refreshExpiresIn;
42 |         this.refreshToken = refreshToken;
43 |         this.tokenType = tokenType;
44 |         this.idToken = idToken;
45 |         this.notBeforePolicy = notBeforePolicy;
46 |         this.sessionState = sessionState;
47 |         this.otherClaims = otherClaims;
48 |         this.scope = scope;
49 |     }
50 | 
51 |     public String getAccessToken() {
52 |         return accessToken;
53 |     }
54 | 
55 |     public long getExpiresIn() {
56 |         return expiresIn;
57 |     }
58 | 
59 |     public long getRefreshExpiresIn() {
60 |         return refreshExpiresIn;
61 |     }
62 | 
63 |     public String getRefreshToken() {
64 |         return refreshToken;
65 |     }
66 | 
67 |     public String getTokenType() {
68 |         return tokenType;
69 |     }
70 | 
71 |     public String getIdToken() {
72 |         return idToken;
73 |     }
74 | 
75 |     public int getNotBeforePolicy() {
76 |         return notBeforePolicy;
77 |     }
78 | 
79 |     public String getSessionState() {
80 |         return sessionState;
81 |     }
82 | 
83 |     public Map<String, Object> getOtherClaims() {
84 |         return otherClaims;
85 |     }
86 | 
87 |     public String getScope() {
88 |         return scope;
89 |     }
90 | }
91 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/KeycloakServiceAccountConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.boot.context.properties.ConfigurationProperties;
 4 | import org.springframework.context.annotation.Configuration;
 5 | 
 6 | @Configuration
 7 | @ConfigurationProperties(prefix="keycloak-com.microservices.apigateway.security.service-account")
 8 | public class KeycloakServiceAccountConfiguration {
 9 | 
10 |     private String authServerUri;
11 |     private String realm;
12 |     private String clientId;
13 |     private String secret;
14 |     private String grantType;
15 |     private String username;
16 |     private String password;
17 | 
18 |     public String getAuthServerUri() {
19 |         return authServerUri;
20 |     }
21 | 
22 |     public void setAuthServerUri(String authServerUri) {
23 |         this.authServerUri = authServerUri;
24 |     }
25 | 
26 |     public String getRealm() {
27 |         return realm;
28 |     }
29 | 
30 |     public void setRealm(String realm) {
31 |         this.realm = realm;
32 |     }
33 | 
34 |     public String getClientId() {
35 |         return clientId;
36 |     }
37 | 
38 |     public void setClientId(String clientId) {
39 |         this.clientId = clientId;
40 |     }
41 | 
42 |     public String getSecret() {
43 |         return secret;
44 |     }
45 | 
46 |     public void setSecret(String secret) {
47 |         this.secret = secret;
48 |     }
49 | 
50 |     public String getGrantType() {
51 |         return grantType;
52 |     }
53 | 
54 |     public void setGrantType(String grantType) {
55 |         this.grantType = grantType;
56 |     }
57 | 
58 |     public String getUsername() {
59 |         return username;
60 |     }
61 | 
62 |     public void setUsername(String username) {
63 |         this.username = username;
64 |     }
65 | 
66 |     public String getPassword() {
67 |         return password;
68 |     }
69 | 
70 |     public void setPassword(String password) {
71 |         this.password = password;
72 |     }
73 | 
74 | 
75 | }
76 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/MetricsConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.boot.context.properties.ConfigurationProperties;
 4 | import org.springframework.context.annotation.Configuration;
 5 | 
 6 | @Configuration
 7 | @ConfigurationProperties(prefix="metrics")
 8 | public class MetricsConfiguration {
 9 | 
10 |     private String host;
11 |     private Integer port;
12 |     private String contextPath;
13 | 
14 |     public String getHost() {
15 |         return host;
16 |     }
17 | 
18 |     public void setHost(String host) {
19 |         this.host = host;
20 |     }
21 | 
22 |     public Integer getPort() {
23 |         return port;
24 |     }
25 | 
26 |     public void setPort(Integer port) {
27 |         this.port = port;
28 |     }
29 | 
30 |     public String getContextPath() {
31 |         return contextPath;
32 |     }
33 | 
34 |     public void setContextPath(String contextPath) {
35 |         this.contextPath = contextPath;
36 |     }
37 | }
38 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/MicrometerConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import io.micrometer.core.instrument.MeterRegistry;
 4 | import io.micrometer.spring.autoconfigure.MeterRegistryCustomizer;
 5 | import org.springframework.beans.factory.annotation.Value;
 6 | import org.springframework.context.annotation.Bean;
 7 | import org.springframework.context.annotation.Configuration;
 8 | 
 9 | @Configuration
10 | public class MicrometerConfiguration {
11 | 
12 |     @Value("${spring.application.name}")
13 |     private String applicationName;
14 | 
15 |     @Bean
16 |     MeterRegistryCustomizer meterRegistryCustomizer(MeterRegistry meterRegistry) {
17 |         return meterRegistry1 -> {
18 |             meterRegistry.config()
19 |                     .commonTags("application", applicationName);
20 |         };
21 |     }
22 | 
23 | }
24 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/ProductConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.boot.context.properties.ConfigurationProperties;
 4 | import org.springframework.context.annotation.Configuration;
 5 | 
 6 | @Configuration
 7 | @ConfigurationProperties(prefix="product")
 8 | public class ProductConfiguration {
 9 | 
10 |     private String host;
11 |     private Integer port;
12 |     private String contextPath;
13 |     private String statusPath;
14 |     private String apiKeyName;
15 | 
16 |     public String getHost() {
17 |         return host;
18 |     }
19 | 
20 |     public void setHost(String host) {
21 |         this.host = host;
22 |     }
23 | 
24 |     public Integer getPort() {
25 |         return port;
26 |     }
27 | 
28 |     public void setPort(Integer port) {
29 |         this.port = port;
30 |     }
31 | 
32 |     public String getContextPath() {
33 |         return contextPath;
34 |     }
35 | 
36 |     public void setContextPath(String contextPath) {
37 |         this.contextPath = contextPath;
38 |     }
39 | 
40 |     public String getApiKeyName() {
41 |         return apiKeyName;
42 |     }
43 | 
44 |     public void setApiKeyName(String apiKeyName) {
45 |         this.apiKeyName = apiKeyName;
46 |     }
47 | 
48 |     public String getStatusPath() {
49 |         return statusPath;
50 |     }
51 | 
52 |     public void setStatusPath(String statusPath) {
53 |         this.statusPath = statusPath;
54 |     }
55 | }
56 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/StockConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.boot.context.properties.ConfigurationProperties;
 4 | import org.springframework.context.annotation.Configuration;
 5 | 
 6 | @Configuration
 7 | @ConfigurationProperties(prefix="stock")
 8 | public class StockConfiguration {
 9 | 
10 |     private String host;
11 |     private Integer port;
12 |     private String contextPath;
13 |     private String statusPath;
14 |     private String apiKeyName;
15 | 
16 |     public String getHost() {
17 |         return host;
18 |     }
19 | 
20 |     public void setHost(String host) {
21 |         this.host = host;
22 |     }
23 | 
24 |     public Integer getPort() {
25 |         return port;
26 |     }
27 | 
28 |     public void setPort(Integer port) {
29 |         this.port = port;
30 |     }
31 | 
32 |     public String getContextPath() {
33 |         return contextPath;
34 |     }
35 | 
36 |     public void setContextPath(String contextPath) {
37 |         this.contextPath = contextPath;
38 |     }
39 | 
40 |     public String getApiKeyName() {
41 |         return apiKeyName;
42 |     }
43 | 
44 |     public void setApiKeyName(String apiKeyName) {
45 |         this.apiKeyName = apiKeyName;
46 |     }
47 | 
48 |     public String getStatusPath() {
49 |         return statusPath;
50 |     }
51 | 
52 |     public void setStatusPath(String statusPath) {
53 |         this.statusPath = statusPath;
54 |     }
55 | }
56 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/SupplierConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.boot.context.properties.ConfigurationProperties;
 4 | import org.springframework.context.annotation.Configuration;
 5 | 
 6 | @Configuration
 7 | @ConfigurationProperties(prefix="supplier")
 8 | public class SupplierConfiguration {
 9 | 
10 |     private String host;
11 |     private Integer port;
12 |     private String contextPath;
13 |     private String statusPath;
14 |     private String apiKeyName;
15 | 
16 |     public String getHost() {
17 |         return host;
18 |     }
19 | 
20 |     public void setHost(String host) {
21 |         this.host = host;
22 |     }
23 | 
24 |     public Integer getPort() {
25 |         return port;
26 |     }
27 | 
28 |     public void setPort(Integer port) {
29 |         this.port = port;
30 |     }
31 | 
32 |     public String getContextPath() {
33 |         return contextPath;
34 |     }
35 | 
36 |     public void setContextPath(String contextPath) {
37 |         this.contextPath = contextPath;
38 |     }
39 | 
40 |     public String getApiKeyName() {
41 |         return apiKeyName;
42 |     }
43 | 
44 |     public void setApiKeyName(String apiKeyName) {
45 |         this.apiKeyName = apiKeyName;
46 |     }
47 | 
48 |     public String getStatusPath() {
49 |         return statusPath;
50 |     }
51 | 
52 |     public void setStatusPath(String statusPath) {
53 |         this.statusPath = statusPath;
54 |     }
55 | }
56 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/configuration/TracingConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import io.jaegertracing.internal.samplers.ConstSampler;
 4 | import io.opentracing.Tracer;
 5 | import io.opentracing.util.GlobalTracer;
 6 | import org.springframework.beans.factory.annotation.Value;
 7 | import org.springframework.context.annotation.Bean;
 8 | import org.springframework.context.annotation.Configuration;
 9 | import javax.annotation.PostConstruct;
10 | 
11 | @Configuration
12 | public class TracingConfiguration {
13 | 
14 |     @Value("${jaeger.tracer.host}")
15 |     private String jaegerHost;
16 | 
17 |     @Value("${jaeger.tracer.port}")
18 |     private Integer jaegerPort;
19 | 
20 |     @Value("${spring.application.name}")
21 |     private String applicationName;
22 | 
23 |     @Bean
24 |     public Tracer tracer() {
25 |         return io.jaegertracing.Configuration.fromEnv(applicationName)
26 |                 .withSampler(
27 |                         io.jaegertracing.Configuration.SamplerConfiguration.fromEnv()
28 |                                 .withType(ConstSampler.TYPE)
29 |                                 .withParam(1))
30 |                 .withReporter(
31 |                         io.jaegertracing.Configuration.ReporterConfiguration.fromEnv()
32 |                                 .withLogSpans(true)
33 |                                 .withFlushInterval(1000)
34 |                                 .withMaxQueueSize(10000)
35 |                                 .withSender(
36 |                                         io.jaegertracing.Configuration.SenderConfiguration.fromEnv()
37 |                                                 .withAgentHost(jaegerHost)
38 |                                                 .withAgentPort(jaegerPort)
39 |                                 ))
40 |                 .getTracer();
41 |     }
42 | 
43 |     @PostConstruct
44 |     public void registerToGlobalTracer() {
45 |         if (!GlobalTracer.isRegistered()) {
46 |             GlobalTracer.register(tracer());
47 |         }
48 |     }
49 | }
50 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/model/ApiResponse.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model;
 2 | 
 3 | import com.fasterxml.jackson.annotation.JsonProperty;
 4 | import io.swagger.annotations.ApiModelProperty;
 5 | 
 6 | // Base response pojo with a status code and message
 7 | public class ApiResponse {
 8 |     @ApiModelProperty(value="Response code. 0 for success.", example="4000")
 9 |     @JsonProperty
10 |     private int code;
11 | 
12 |     @ApiModelProperty(value="Response message.", example="Invalid json content")
13 |     @JsonProperty
14 |     private String message;
15 | 
16 |     public ApiResponse() { };
17 | 
18 |     public ApiResponse(int code, String message) {
19 |         this.code = code;
20 |         this.message = message;
21 |     }
22 | 
23 |     public int getCode() {
24 |         return code;
25 |     }
26 | 
27 |     public void setCode(int code) {
28 |         this.code = code;
29 |     }
30 | 
31 |     public String getMessage() {
32 |         return message;
33 |     }
34 | 
35 |     public void setMessage(String message) {
36 |         this.message = message;
37 |     }
38 | 
39 |     //generated
40 |     @Override
41 |     public boolean equals(Object o) {
42 |         if (this == o) return true;
43 |         if (o == null || getClass() != o.getClass()) return false;
44 | 
45 |         ApiResponse that = (ApiResponse) o;
46 | 
47 |         if (code != that.code) return false;
48 |         return message != null ? message.equals(that.message) : that.message == null;
49 |     }
50 | 
51 |     @Override
52 |     public int hashCode() {
53 |         int result = code;
54 |         result = 31 * result + (message != null ? message.hashCode() : 0);
55 |         return result;
56 |     }
57 | 
58 |     @Override
59 |     public String toString() {
60 |         return "ApiResponse{" +
61 |                 "code=" + code +
62 |                 ", message='" + message + '\'' +
63 |                 '}';
64 |     }
65 | }
66 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/model/BaseModel.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.model;
2 | 
3 | import java.io.Serializable;
4 | 
5 | public class BaseModel implements Serializable { }
6 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/model/ErrorMessage.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model;
 2 | 
 3 | public class ErrorMessage {
 4 | 
 5 |     private String error;
 6 | 
 7 |     public ErrorMessage(String error) {
 8 |         this.error = error;
 9 |     }
10 | 
11 |     public String getError() {
12 |         return error;
13 |     }
14 | 
15 |     public void setError(String error) {
16 |         this.error = error;
17 |     }
18 | }
19 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/model/Event.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model;
 2 | 
 3 | import com.fasterxml.jackson.annotation.JsonInclude;
 4 | import com.fasterxml.jackson.annotation.JsonProperty;
 5 | import com.fasterxml.jackson.annotation.JsonPropertyOrder;
 6 | import io.swagger.annotations.ApiModelProperty;
 7 | import org.apache.commons.lang3.builder.ToStringBuilder;
 8 | 
 9 | import java.util.Objects;
10 | 
11 | @JsonInclude(JsonInclude.Include.NON_NULL)
12 | @JsonPropertyOrder({
13 |         "id","status"
14 | })
15 | public class Event extends BaseModel {
16 | 
17 |     @ApiModelProperty(readOnly=true, example="100")
18 |     @JsonProperty("id")
19 |     private Long id;
20 | 
21 |     @ApiModelProperty(readOnly=true, example="OK")
22 |     @JsonProperty("status")
23 |     private String status;
24 | 
25 |     public Event() { }
26 | 
27 |     public Event(String status) {
28 |         this.status = status;
29 |     }
30 | 
31 |     @JsonProperty("id")
32 |     public Long getId() {
33 |         return id;
34 |     }
35 | 
36 |     @JsonProperty("id")
37 |     public void setId(Long id) {
38 |         this.id = id;
39 |     }
40 | 
41 |     @JsonProperty("status")
42 |     public String getStatus() {
43 |         return status;
44 |     }
45 | 
46 |     @JsonProperty("status")
47 |     public void setStatus(String status) {
48 |         this.status = status;
49 |     }
50 | 
51 |     @Override
52 |     public String toString() {
53 |         return new ToStringBuilder(this).append("id", id).append("status", status).toString();
54 |     }
55 | 
56 |     @Override
57 |     public boolean equals(Object o) {
58 |         if (this == o) return true;
59 |         if (o == null || getClass() != o.getClass()) return false;
60 |         Event event = (Event) o;
61 |         return id.equals(event.id) &&
62 |                 status.equals(event.status);
63 |     }
64 | 
65 |     @Override
66 |     public int hashCode() {
67 |         return Objects.hash(id, status);
68 |     }
69 | }
70 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/model/Product.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model;
 2 | 
 3 | import com.fasterxml.jackson.annotation.JsonFormat;
 4 | import io.swagger.annotations.ApiModelProperty;
 5 | import java.time.LocalDateTime;
 6 | import java.util.Objects;
 7 | 
 8 | public class Product extends BaseModel {
 9 | 
10 |     private Long id;
11 |     private String name;
12 |     private String description;
13 |     private String code;
14 |     private Double price;
15 |     private Boolean active;
16 | 
17 |     @ApiModelProperty(readOnly=true, example="2019-01-31 18:00:00")
18 |     @JsonFormat(shape = JsonFormat.Shape.STRING, pattern = "yyyy-MM-dd HH:mm:ss")
19 |     private LocalDateTime created;
20 | 
21 |     public Long getId() {
22 |         return id;
23 |     }
24 | 
25 |     public void setId(Long id) {
26 |         this.id = id;
27 |     }
28 | 
29 |     public String getName() {
30 |         return name;
31 |     }
32 | 
33 |     public void setName(String name) {
34 |         this.name = name;
35 |     }
36 | 
37 |     public String getDescription() {
38 |         return description;
39 |     }
40 | 
41 |     public void setDescription(String description) {
42 |         this.description = description;
43 |     }
44 | 
45 |     public String getCode() {
46 |         return code;
47 |     }
48 | 
49 |     public void setCode(String code) {
50 |         this.code = code;
51 |     }
52 | 
53 |     public Double getPrice() {
54 |         return price;
55 |     }
56 | 
57 |     public void setPrice(Double price) {
58 |         this.price = price;
59 |     }
60 | 
61 |     public Boolean getActive() {
62 |         return active;
63 |     }
64 | 
65 |     public void setActive(Boolean active) {
66 |         this.active = active;
67 |     }
68 | 
69 |     public LocalDateTime getCreated() {
70 |         return created;
71 |     }
72 | 
73 |     public void setCreated(LocalDateTime created) {
74 |         this.created = created;
75 |     }
76 | 
77 |     @Override
78 |     public boolean equals(Object o) {
79 |         if (this == o) return true;
80 |         if (o == null || getClass() != o.getClass()) return false;
81 |         Product product = (Product) o;
82 |         return id.equals(product.id) &&
83 |                 name.equals(product.name) &&
84 |                 Objects.equals(description, product.description) &&
85 |                 code.equals(product.code) &&
86 |                 Objects.equals(price, product.price) &&
87 |                 active.equals(product.active) &&
88 |                 created.equals(product.created);
89 |     }
90 | 
91 |     @Override
92 |     public int hashCode() {
93 |         return Objects.hash(id, name, description, code, price, active, created);
94 |     }
95 | }
96 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/model/health/springboot2/Health.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model.health.springboot2;
 2 | 
 3 | import java.io.Serializable;
 4 | import java.util.HashMap;
 5 | import java.util.Map;
 6 | import com.fasterxml.jackson.annotation.JsonAnyGetter;
 7 | import com.fasterxml.jackson.annotation.JsonAnySetter;
 8 | import com.fasterxml.jackson.annotation.JsonIgnore;
 9 | import com.fasterxml.jackson.annotation.JsonInclude;
10 | import com.fasterxml.jackson.annotation.JsonProperty;
11 | import com.fasterxml.jackson.annotation.JsonPropertyOrder;
12 | import org.apache.commons.lang3.builder.ToStringBuilder;
13 | 
14 | @JsonInclude(JsonInclude.Include.NON_NULL)
15 | @JsonPropertyOrder({
16 |         "status"
17 | })
18 | public class Health implements Serializable {
19 | 
20 |     @JsonProperty("status")
21 |     private String status;
22 | 
23 |     @JsonIgnore
24 |     private Map<String, Object> additionalProperties = new HashMap<String, Object>();
25 | 
26 |     private final static long serialVersionUID = 4504776979039875142L;
27 | 
28 |     public Health() { }
29 | 
30 |     public Health(String status) {
31 |         super();
32 |         this.status = status;
33 |     }
34 | 
35 |     @JsonProperty("status")
36 |     public String getStatus() {
37 |         return status;
38 |     }
39 | 
40 |     @JsonProperty("status")
41 |     public void setStatus(String status) {
42 |         this.status = status;
43 |     }
44 | 
45 |     @JsonAnyGetter
46 |     public Map<String, Object> getAdditionalProperties() {
47 |         return this.additionalProperties;
48 |     }
49 | 
50 |     @JsonAnySetter
51 |     public void setAdditionalProperty(String name, Object value) {
52 |         this.additionalProperties.put(name, value);
53 |     }
54 | 
55 |     @Override
56 |     public String toString() {
57 |         return new ToStringBuilder(this).append("status", status).append("additionalProperties", additionalProperties).toString();
58 |     }
59 | 
60 | }
61 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/processor/ExceptionProcessor.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.processor;
 2 | 
 3 | import org.apache.camel.Exchange;
 4 | import org.apache.camel.Processor;
 5 | import org.slf4j.Logger;
 6 | import org.slf4j.LoggerFactory;
 7 | import org.springframework.http.HttpStatus;
 8 | import org.springframework.http.MediaType;
 9 | import org.springframework.stereotype.Component;
10 | 
11 | @Component
12 | public class ExceptionProcessor implements Processor {
13 | 
14 |     private static final transient Logger logger = LoggerFactory.getLogger(ExceptionProcessor.class);
15 | 
16 |     @Override
17 |     public void process(Exchange exchange) throws Exception {
18 |         Exception exception = (Exception) exchange.getProperty(Exchange.EXCEPTION_CAUGHT);
19 |         exchange.getIn().setBody("{\"error\": \"" + exception.getMessage() +"\"}");
20 |         exchange.getIn().setHeader(Exchange.CONTENT_TYPE, MediaType.APPLICATION_JSON);
21 |         exchange.getIn().setHeader(Exchange.HTTP_RESPONSE_CODE, HttpStatus.INTERNAL_SERVER_ERROR.value());
22 |     }
23 | }
24 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/java/com/microservices/apigateway/security/route/internal/MetricsInternalRoute.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.route.internal;
 2 | 
 3 | import com.microservices.apigateway.security.configuration.MetricsConfiguration;
 4 | import org.apache.camel.Exchange;
 5 | import org.apache.camel.builder.RouteBuilder;
 6 | import org.slf4j.Logger;
 7 | import org.slf4j.LoggerFactory;
 8 | import org.springframework.beans.factory.annotation.Autowired;
 9 | import org.springframework.stereotype.Component;
10 | import org.springframework.http.MediaType;
11 | 
12 | @Component("MetricsInternalRoute")
13 | public class MetricsInternalRoute extends RouteBuilder {
14 | 
15 |     static final Logger logger = LoggerFactory.getLogger(MetricsInternalRoute.class);
16 | 
17 |     @Autowired
18 |     private MetricsConfiguration metricsConfig;
19 | 
20 |     @Override
21 |     public void configure() throws Exception {
22 | 
23 |         // /--------------------------------------------------\
24 |         // | Internal route definition                        |
25 |         // | Actuator Endpoints (health, metrics, etc.)       |
26 |         // \--------------------------------------------------/
27 |         from("direct:internal-integration-health")
28 |             .id("direct-integration-health")
29 |                 .to("log:list?showHeaders=true&level=DEBUG")
30 |                 .removeHeader("origin")
31 |                 .removeHeader(Exchange.HTTP_PATH)
32 |                 .setHeader(Exchange.CONTENT_TYPE, constant(MediaType.APPLICATION_JSON))
33 |                 .removeHeader("breadcrumbId")
34 |                 .to("http4://" + metricsConfig.getHost() + ":" + metricsConfig.getPort() + "/" + metricsConfig.getContextPath() + "?connectTimeout=500&bridgeEndpoint=true&copyHeaders=true&connectionClose=true&type=metrics")
35 |             .end();
36 |     }
37 | }
38 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/resources/META-INF/services/org/apache/camel/component/auth:
--------------------------------------------------------------------------------
1 | class=com.microservices.apigateway.security.common.camel.AuthComponent
2 | 


--------------------------------------------------------------------------------
/auth-integration/src/main/resources/logback.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE xml>
 3 | <com.microservices.apigateway.security.configuration>
 4 | 
 5 |     <appender name="STDOUT" class="ch.qos.logback.core.ConsoleAppender">
 6 |         <!-- encoders are assigned the type ch.qos.logback.classic.encoder.PatternLayoutEncoder by default -->
 7 |         <encoder>
 8 |             <pattern>%d{yyyy-MM-dd HH:mm:ss.SSS} [%-5level] %logger{36} - %msg%n</pattern>
 9 |         </encoder>
10 |     </appender>
11 | 
12 |     <root level="INFO">
13 |         <appender-ref ref="STDOUT" />
14 |     </root>
15 | 
16 |     <logger name="com.microservices.apigateway.security" level="INFO"/>
17 | 
18 | </com.microservices.apigateway.security.configuration>
19 | 


--------------------------------------------------------------------------------
/auth-sso-common/META-INF/services/org/apache/camel/component/auth:
--------------------------------------------------------------------------------
1 | class=com.microservices.apigateway.security.common.camel.AuthComponent
2 | 


--------------------------------------------------------------------------------
/auth-sso-common/README.md:
--------------------------------------------------------------------------------
 1 | # auth-sso-parent
 2 | 
 3 | Este projeto tem como objetivo conter a implementação da obtenção do token JWT utilizando o RH-SSO utilizando o grant_type `Client Credentials` [Client Credentials](#referncias).
 4 | 
 5 | Nesta implementação de referência iremos utilizar uma biblioteca chamada ```keycloak-admin-client``` com versão compatível com a versão do adapter do RH-SSO, neste momento utilizamos o adapter de versão 7.2.4.
 6 | 
 7 | **NOTA**: Ambas as versões necessitam ser compatíveis uma com a outra, caso contrário poderá haver problemas na utilização de classes compartilhadas. Para saber qual a versão do pacote necessitamos verificar a versão contida em cada módulo (ex: ```keycloak-core```) dentro do zip do adapter do keycloak. Neste momento a versão é ```3.4.12.Final-redhat-2```.
 8 | 
 9 | # Referências
10 | 
11 | [Client Credentials](https://www.oauth.com/oauth2-servers/access-tokens/client-credentials/)
12 | 
13 | Para utilizá-lo defina a seguinte estrutura:
14 | 
15 | ```xml
16 | <parent>
17 |     <groupId>com.microservices.apigateway.security.common</groupId>
18 |     <artifactId>auth-sso-common</artifactId>
19 |     <version>1.0</version>
20 | </parent>
21 | ```
22 | 


--------------------------------------------------------------------------------
/auth-sso-common/build.metadata:
--------------------------------------------------------------------------------
 1 | # Created by buildmetadata-maven-plugin 1.7.0 ( SHA: 6f444cae ) 
 2 | build.artifactId=auth-sso-common
 3 | build.groupId=com.microservices.apigateway.security.common
 4 | build.java.compiler=HotSpot 64-Bit Tiered Compilers
 5 | build.java.runtime.name=Java(TM) SE Runtime Environment
 6 | build.java.runtime.version=1.8.0_202-ea-b03
 7 | build.java.vendor=Oracle Corporation
 8 | build.java.vm=Java HotSpot(TM) 64-Bit Server VM
 9 | build.maven.execution.cmdline=clean package
10 | build.maven.version=3.5.4
11 | build.version=1.0-SNAPSHOT
12 | build.version.full=1.0-SNAPSHOT
13 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/main/java/com/microservices/security/common/camel/AuthComponent.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.security.common.camel;
 2 | 
 3 | import org.apache.camel.Endpoint;
 4 | import org.apache.camel.impl.DefaultComponent;
 5 | import org.slf4j.Logger;
 6 | import org.slf4j.LoggerFactory;
 7 | 
 8 | import java.util.Map;
 9 | 
10 | @SuppressWarnings("WeakerAccess")
11 | public class AuthComponent extends DefaultComponent {
12 |     private Logger log = LoggerFactory.getLogger(AuthComponent.class);
13 | 
14 |     public static final String SERVER_URL = "serverUrl";
15 |     public static final String REALM = "realm";
16 |     public static final String CLIENT_ID = "clientID";
17 |     public static final String CLIENT_SECRET = "clientSecret";
18 |     public static final String GRANT_TYPE = "grantType";
19 |     public static final String USERNAME = "username";
20 |     public static final String PASSWORD = "password";
21 | 
22 |     @Override
23 |     protected Endpoint createEndpoint(String uri, String remaining, Map<String, Object> parameters) throws Exception {
24 |         Endpoint endpoint = new AuthEndpoint(uri, this);
25 |         setProperties(endpoint, parameters);
26 |         return endpoint;
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/main/java/com/microservices/security/common/camel/AuthConsumer.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.security.common.camel;
 2 | 
 3 | import org.apache.camel.Processor;
 4 | import org.apache.camel.impl.ScheduledPollConsumer;
 5 | 
 6 | public class AuthConsumer extends ScheduledPollConsumer {
 7 |     private final AuthEndpoint endpoint;
 8 | 
 9 |     public AuthConsumer(AuthEndpoint endpoint, Processor processor) {
10 |         super(endpoint, processor);
11 |         this.endpoint = endpoint;
12 |     }
13 | 
14 |     @Override
15 |     protected int poll() throws Exception {
16 |         throw new RuntimeException("AuthComponent has no consumer...");
17 |     }
18 | }
19 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/main/java/com/microservices/security/common/camel/AuthProducer.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.security.common.camel;
 2 | 
 3 | import com.microservices.security.common.oauth2.OAuth2ClientCredentials;
 4 | import com.microservices.security.common.oauth2.Token;
 5 | import org.apache.camel.Exchange;
 6 | import org.apache.camel.impl.DefaultProducer;
 7 | 
 8 | public class AuthProducer extends DefaultProducer {
 9 |     protected AuthEndpoint endpoint;
10 |     protected OAuth2ClientCredentials oAuth2ClientCredentials;
11 | 
12 |     public AuthProducer(AuthEndpoint endpoint) {
13 |         super(endpoint);
14 |         this.endpoint = endpoint;
15 | 
16 |         log.info("[serverURL: {}, realm: {}, client_id: {}, client_secret: {}, grant_type: {}, username: {} characters, password: {} characters]",
17 |                 this.endpoint.getServerUrl(),
18 |                 this.endpoint.getRealm(),
19 |                 this.endpoint.getClientID(),
20 |                 this.endpoint.getClientSecret(),
21 |                 this.endpoint.getGrantType(),
22 |                 this.endpoint.getUsername() != null ? this.endpoint.getUsername().length() : 0,
23 |                 this.endpoint.getPassword() != null ? this.endpoint.getPassword().length() : 0);
24 | 
25 |         oAuth2ClientCredentials = new OAuth2ClientCredentials(
26 |                 this.endpoint.getServerUrl(),
27 |                 this.endpoint.getRealm(),
28 |                 this.endpoint.getClientID(),
29 |                 this.endpoint.getClientSecret(),
30 |                 this.endpoint.getGrantType(),
31 |                 this.endpoint.getUsername(),
32 |                 this.endpoint.getPassword());
33 |     }
34 | 
35 |     @SuppressWarnings("WeakerAccess")
36 |     protected Token getToken() {
37 |         return oAuth2ClientCredentials.getToken();
38 |     }
39 | 
40 |     @SuppressWarnings("unused")
41 |     protected String getBearer() {
42 |         String tokenString = null;
43 |         tokenString = getToken().getAccessToken();
44 |         if (tokenString == null) {
45 |             throw new NullPointerException("Token is null");
46 |         }
47 |         return String.format("Bearer %s", tokenString);
48 |     }
49 | 
50 |     public void process(Exchange exchange) throws Exception {
51 |         exchange.getIn().setHeader("Authorization", getBearer());
52 |     }
53 | 
54 | }
55 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/main/java/com/microservices/security/common/oauth2/OAuth2ClientCredentials.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.security.common.oauth2;
 2 | 
 3 | import org.keycloak.admin.client.Keycloak;
 4 | import org.keycloak.admin.client.KeycloakBuilder;
 5 | import org.keycloak.representations.AccessTokenResponse;
 6 | 
 7 | public class OAuth2ClientCredentials {
 8 |     private Keycloak keycloak;
 9 | 
10 |     public OAuth2ClientCredentials(
11 |             String serverUrl,
12 |             String realm,
13 |             String clientId,
14 |             String clientSecret,
15 |             String grantType,
16 |             String username,
17 |             String password) {
18 | 
19 |         keycloak = KeycloakBuilder.builder()
20 |             .clientId(clientId)
21 |             .clientSecret(clientSecret)
22 |             .grantType(grantType)
23 |             .realm(realm)
24 |             .serverUrl(serverUrl)
25 |             .username(username)
26 |             .password(password)
27 |             .build();
28 |     }
29 | 
30 |     public Token getToken() {
31 |         AccessTokenResponse accessToken = null;
32 |         accessToken = keycloak.tokenManager().getAccessToken();
33 |         return new Token(
34 |             accessToken.getToken(),
35 |             accessToken.getExpiresIn(),
36 |             accessToken.getRefreshExpiresIn(),
37 |             accessToken.getRefreshToken(),
38 |             accessToken.getTokenType(),
39 |             accessToken.getIdToken(),
40 |             accessToken.getNotBeforePolicy(),
41 |             accessToken.getSessionState(),
42 |             accessToken.getOtherClaims(),
43 |             accessToken.getScope());
44 |     }
45 | }
46 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/main/java/com/microservices/security/common/oauth2/Token.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.security.common.oauth2;
 2 | 
 3 | import java.util.Map;
 4 | 
 5 | public class Token {
 6 |     private String accessToken;
 7 |     private long expiresIn;
 8 |     private long refreshExpiresIn;
 9 |     private String refreshToken;
10 |     private String tokenType;
11 |     private String idToken;
12 |     private int notBeforePolicy;
13 |     private String sessionState;
14 |     private Map<String, Object> otherClaims;
15 |     private String scope;
16 | 
17 |     Token(
18 |             String accessToken,
19 |             long expiresIn,
20 |             long refreshExpiresIn,
21 |             String refreshToken,
22 |             String tokenType,
23 |             String idToken,
24 |             int notBeforePolicy,
25 |             String sessionState,
26 |             Map<String, Object> otherClaims,
27 |             String scope) {
28 | 
29 |         if (accessToken == null) {
30 |             throw new NullPointerException("Access Token is null");
31 |         }
32 |         if (refreshToken == null) {
33 |             throw new NullPointerException("Refresh Token is null");
34 |         }
35 |         if (tokenType == null) {
36 |             throw new NullPointerException("Token Type is null");
37 |         }
38 | 
39 |         this.accessToken = accessToken;
40 |         this.expiresIn = expiresIn;
41 |         this.refreshExpiresIn = refreshExpiresIn;
42 |         this.refreshToken = refreshToken;
43 |         this.tokenType = tokenType;
44 |         this.idToken = idToken;
45 |         this.notBeforePolicy = notBeforePolicy;
46 |         this.sessionState = sessionState;
47 |         this.otherClaims = otherClaims;
48 |         this.scope = scope;
49 |     }
50 | 
51 |     public String getAccessToken() {
52 |         return accessToken;
53 |     }
54 | 
55 |     public long getExpiresIn() {
56 |         return expiresIn;
57 |     }
58 | 
59 |     public long getRefreshExpiresIn() {
60 |         return refreshExpiresIn;
61 |     }
62 | 
63 |     public String getRefreshToken() {
64 |         return refreshToken;
65 |     }
66 | 
67 |     public String getTokenType() {
68 |         return tokenType;
69 |     }
70 | 
71 |     public String getIdToken() {
72 |         return idToken;
73 |     }
74 | 
75 |     public int getNotBeforePolicy() {
76 |         return notBeforePolicy;
77 |     }
78 | 
79 |     public String getSessionState() {
80 |         return sessionState;
81 |     }
82 | 
83 |     public Map<String, Object> getOtherClaims() {
84 |         return otherClaims;
85 |     }
86 | 
87 |     public String getScope() {
88 |         return scope;
89 |     }
90 | }
91 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/main/resources/META-INF/services/org/apache/camel/component/auth:
--------------------------------------------------------------------------------
1 | class=com.microservices.security.common.camel.AuthComponent
2 | 


--------------------------------------------------------------------------------
/auth-sso-common/src/test/java/com/microservices/security/common/oauth2/OAuth2ClientCredentialsTest.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.security.common.oauth2;
 2 | 
 3 | import jdk.nashorn.internal.ir.annotations.Ignore;
 4 | import org.apache.http.client.methods.CloseableHttpResponse;
 5 | import org.apache.http.client.methods.HttpGet;
 6 | import org.apache.http.impl.client.CloseableHttpClient;
 7 | import org.apache.http.impl.client.HttpClients;
 8 | 
 9 | import java.io.IOException;
10 | import static org.junit.Assert.assertEquals;
11 | 
12 | public class OAuth2ClientCredentialsTest {
13 |     // @Test
14 |     @Ignore
15 |     public void testGetToken() throws IOException {
16 |         Token token = new OAuth2ClientCredentials(
17 |                 System.getenv("SERVER_URL"),
18 |                 System.getenv("REALM"),
19 |                 System.getenv("CLIENT_ID"),
20 |                 System.getenv("CLIENT_SECRET"),
21 |                 System.getenv("GRANT_TYPE"),
22 |                 System.getenv("USERNAME"),
23 |                 System.getenv("PASSWORD")).getToken();
24 | 
25 |         String accessToken = token.getAccessToken();
26 | 
27 |         CloseableHttpClient httpclient = HttpClients.createDefault();
28 | 
29 |         HttpGet httpGet = new HttpGet("API");
30 | 
31 |         httpGet.addHeader("Authorization", String.format("Bearer %s", accessToken));
32 | 
33 |         CloseableHttpResponse response1 = httpclient.execute(httpGet);
34 | 
35 |         assertEquals("Return code should be 200", 200, response1.getStatusLine().getStatusCode());
36 |     }
37 | }
38 | 


--------------------------------------------------------------------------------
/auth-sso-common/templates/README.md:
--------------------------------------------------------------------------------
 1 | # auth-sso-parent
 2 | 
 3 | Este projeto tem como objetivo conter a implementação da obtenção do token JWT utilizando o RH-SSO utilizando o grant_type `Client Credentials` [Client Credentials](#referncias).
 4 | 
 5 | Nesta implementação de referência iremos utilizar uma biblioteca chamada ```keycloak-admin-client``` com versão compatível com a versão do adapter do RH-SSO, neste momento utilizamos o adapter de versão 7.2.4.
 6 | 
 7 | **NOTA**: Ambas as versões necessitam ser compatíveis uma com a outra, caso contrário poderá haver problemas na utilização de classes compartilhadas. Para saber qual a versão do pacote necessitamos verificar a versão contida em cada módulo (ex: ```keycloak-core```) dentro do zip do adapter do keycloak. Neste momento a versão é ```3.4.12.Final-redhat-2```.
 8 | 
 9 | # Referências
10 | 
11 | [Client Credentials](https://www.oauth.com/oauth2-servers/access-tokens/client-credentials/)
12 | 
13 | Para utilizá-lo defina a seguinte estrutura:
14 | 
15 | ```xml
16 | <parent>
17 |     <groupId>com.microservices.apigateway.security.common</groupId>
18 |     <artifactId>auth-sso-common</artifactId>
19 |     <version>${project.version}</version>
20 | </parent>
21 | ```
22 | 


--------------------------------------------------------------------------------
/maven-settings.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <settings xmlns="http://maven.apache.org/SETTINGS/1.0.0"
 3 |           xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 |           xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0 http://maven.apache.org/xsd/settings-1.0.0.xsd">
 5 | 
 6 |     <servers>
 7 |         <server>
 8 |             <id>nexus-snapshots</id>
 9 |             <username>admin</username>
10 |             <password>admin123</password>
11 |         </server>
12 |         <server>
13 |             <id>nexus-releases</id>
14 |             <username>admin</username>
15 |             <password>admin123</password>
16 |         </server>
17 |     </servers>
18 | 
19 |     <mirrors>
20 |         <mirror>
21 |             <id>central</id>
22 |             <name>central</name>
23 |             <url>http://nexus3-rabreu-workshop.apps.mdwocp4.rhbr-lab.com/com.microservices.apigateway.security.repository/maven-group/</url>
24 |             <mirrorOf>*</mirrorOf>
25 |         </mirror>
26 |     </mirrors>
27 | 
28 | </settings>
29 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/ProductApplication.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security;
 2 | 
 3 | import io.micrometer.core.instrument.config.MeterFilter;
 4 | import org.springframework.boot.SpringApplication;
 5 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 6 | import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
 7 | import org.springframework.boot.autoconfigure.security.servlet.UserDetailsServiceAutoConfiguration;
 8 | import org.springframework.boot.web.servlet.FilterRegistrationBean;
 9 | import org.springframework.context.annotation.Bean;
10 | import org.springframework.core.Ordered;
11 | import org.springframework.core.task.TaskExecutor;
12 | import org.springframework.scheduling.annotation.EnableAsync;
13 | import org.springframework.scheduling.concurrent.ThreadPoolTaskExecutor;
14 | import org.springframework.web.cors.CorsConfiguration;
15 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
16 | import org.springframework.web.filter.CorsFilter;
17 | 
18 | import java.util.Collections;
19 | 
20 | @EnableAsync
21 | @SpringBootApplication(exclude = {SecurityAutoConfiguration.class, UserDetailsServiceAutoConfiguration.class})
22 | public class ProductApplication {
23 | 
24 |     /**
25 |      * This filter can be used to exclude specific metrics.
26 |      * In the method below, we are hiding tomcat specific metrics.
27 |      * @return
28 |      */
29 |     @Bean
30 |     public MeterFilter excludeTomcatFilter() {
31 |         return MeterFilter.denyNameStartsWith("tomcat");
32 |     }
33 | 
34 |     @Bean("threadPoolTaskExecutor")
35 |     public TaskExecutor getAsyncExecutor() {
36 |         ThreadPoolTaskExecutor executor = new ThreadPoolTaskExecutor();
37 |         executor.setCorePoolSize(20);
38 |         executor.setMaxPoolSize(1000);
39 |         executor.setWaitForTasksToCompleteOnShutdown(true);
40 |         executor.setThreadNamePrefix("Async-");
41 |         return executor;
42 |     }
43 | 
44 |     @Bean
45 |     public FilterRegistrationBean<CorsFilter> simpleCorsFilter() {
46 |         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
47 |         CorsConfiguration config = new CorsConfiguration();
48 | 
49 |         config.setAllowCredentials(true);
50 |         config.setAllowedOrigins(Collections.singletonList("http://localhost:4200"));
51 |         config.setAllowedOrigins(Collections.singletonList("https://localhost:4200"));
52 |         config.setAllowedMethods(Collections.singletonList("*"));
53 |         config.setAllowedHeaders(Collections.singletonList("*"));
54 | 
55 |         source.registerCorsConfiguration("/**", config);
56 | 
57 |         FilterRegistrationBean<CorsFilter> bean = new FilterRegistrationBean<>(new CorsFilter(source));
58 |         bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
59 | 
60 |         return bean;
61 |     }
62 | 
63 |     public static void main(String[] args) {
64 |         SpringApplication.run(ProductApplication.class, args);
65 |     }
66 | 
67 | }
68 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/configuration/SwaggerConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurationSupport;
 6 | import springfox.documentation.builders.PathSelectors;
 7 | import springfox.documentation.builders.RequestHandlerSelectors;
 8 | import springfox.documentation.spi.DocumentationType;
 9 | import springfox.documentation.spring.web.plugins.Docket;
10 | import springfox.documentation.swagger2.annotations.EnableSwagger2;
11 | 
12 | @Configuration
13 | @EnableSwagger2
14 | public class SwaggerConfiguration extends WebMvcConfigurationSupport {
15 | 
16 |     /**
17 |      * Every Docket bean is picked up by the swagger-mvc framework - allowing for multiple
18 |      * swagger groups i.e. same code base multiple swagger resource listings.
19 |      */
20 |     @Bean
21 |     public Docket api(){
22 |         return new Docket(DocumentationType.SWAGGER_2)
23 |             .select()
24 |             .apis(RequestHandlerSelectors.any())
25 |             .paths(PathSelectors.regex("/api/v1/.*"))
26 |             .build();
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/configuration/TracingConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import io.jaegertracing.internal.samplers.ConstSampler;
 4 | import io.opentracing.Tracer;
 5 | import io.opentracing.util.GlobalTracer;
 6 | import org.springframework.beans.factory.annotation.Value;
 7 | import org.springframework.context.annotation.Bean;
 8 | import org.springframework.context.annotation.Configuration;
 9 | 
10 | import javax.annotation.PostConstruct;
11 | 
12 | @Configuration
13 | public class TracingConfiguration {
14 | 
15 |     @Value("${jaeger.tracer.host}")
16 |     private String jaegerHost;
17 | 
18 |     @Value("${jaeger.tracer.port}")
19 |     private Integer jaegerPort;
20 | 
21 |     @Value("${spring.application.name}")
22 |     private String applicationName;
23 | 
24 |     @Bean
25 |     public Tracer tracer() {
26 |         return io.jaegertracing.Configuration.fromEnv(applicationName)
27 |                 .withSampler(
28 |                         io.jaegertracing.Configuration.SamplerConfiguration.fromEnv()
29 |                                 .withType(ConstSampler.TYPE)
30 |                                 .withParam(1))
31 |                 .withReporter(
32 |                         io.jaegertracing.Configuration.ReporterConfiguration.fromEnv()
33 |                                 .withLogSpans(true)
34 |                                 .withFlushInterval(1000)
35 |                                 .withMaxQueueSize(10000)
36 |                                 .withSender(
37 |                                         io.jaegertracing.Configuration.SenderConfiguration.fromEnv()
38 |                                                 .withAgentHost(jaegerHost)
39 |                                                 .withAgentPort(jaegerPort)
40 |                                 ))
41 |                 .getTracer();
42 |     }
43 | 
44 |     @PostConstruct
45 |     public void registerToGlobalTracer() {
46 |         if (!GlobalTracer.isRegistered()) {
47 |             GlobalTracer.register(tracer());
48 |         }
49 |     }
50 | }
51 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/configuration/WebConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.http.MediaType;
 6 | import org.springframework.validation.beanvalidation.MethodValidationPostProcessor;
 7 | import org.springframework.web.servlet.config.annotation.ContentNegotiationConfigurer;
 8 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
 9 | 
10 | @Configuration
11 | public class WebConfiguration extends WebMvcConfigurerAdapter {
12 | 
13 |     @Override
14 |     public void configureContentNegotiation(ContentNegotiationConfigurer configurer) {
15 |         configurer.defaultContentType(MediaType.APPLICATION_JSON);
16 |     }
17 | 
18 |     /**
19 |      * Enable @Valid validation exception handler for @PathVariable, @RequestParam and @RequestHeader.
20 |      */
21 |     @Bean
22 |     public MethodValidationPostProcessor methodValidationPostProcessor() {
23 |         return new MethodValidationPostProcessor();
24 |     }
25 | }
26 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/controller/error/Error.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.error;
 2 | 
 3 | public class Error {
 4 | 
 5 |     private String field;
 6 |     private String value;
 7 |     private String message;
 8 | 
 9 |     public Error(String field, String value, String message) {
10 |         this.field = field;
11 |         this.value = value;
12 |         this.message = message;
13 |     }
14 | 
15 |     public String getField() {
16 |         return field;
17 |     }
18 | 
19 |     public void setField(String field) {
20 |         this.field = field;
21 |     }
22 | 
23 |     public String getValue() {
24 |         return value;
25 |     }
26 | 
27 |     public void setValue(String value) {
28 |         this.value = value;
29 |     }
30 | 
31 |     public String getMessage() {
32 |         return message;
33 |     }
34 | 
35 |     public void setMessage(String message) {
36 |         this.message = message;
37 |     }
38 | }
39 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/controller/validator/ProductValidator.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.validator;
 2 | 
 3 | import com.microservices.apigateway.security.model.Product;
 4 | import org.springframework.validation.Errors;
 5 | import org.springframework.validation.ValidationUtils;
 6 | import org.springframework.validation.Validator;
 7 | 
 8 | public class ProductValidator implements Validator {
 9 | 
10 |     @Override
11 |     public boolean supports(Class<?> clazz) {
12 |         return Product.class.isAssignableFrom(clazz);
13 |     }
14 | 
15 |     @Override
16 |     public void validate(Object target, Errors errors) {
17 |         ValidationUtils.rejectIfEmptyOrWhitespace(errors, "name", "validation.message.field.required");
18 |     }
19 | 
20 | }
21 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/model/BaseModel.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.model;
2 | 
3 | import java.io.Serializable;
4 | 
5 | public class BaseModel implements Serializable { }
6 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/repository/ProductRepository.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.repository;
2 | 
3 | import com.microservices.apigateway.security.model.Product;
4 | import org.springframework.data.jpa.repository.JpaRepository;
5 | import org.springframework.stereotype.Repository;
6 | 
7 | @Repository
8 | public interface ProductRepository extends JpaRepository<Product, Long> { }
9 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/java/com/microservices/apigateway/security/service/ProductService.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.service;
 2 | 
 3 | import com.microservices.apigateway.security.model.Product;
 4 | import com.microservices.apigateway.security.repository.ProductRepository;
 5 | import org.springframework.data.domain.Page;
 6 | import org.springframework.data.domain.Pageable;
 7 | import org.springframework.stereotype.Service;
 8 | import org.springframework.transaction.annotation.Transactional;
 9 | 
10 | import java.time.LocalDateTime;
11 | 
12 | @Service
13 | @Transactional
14 | public class ProductService {
15 | 
16 |     private final ProductRepository repository;
17 | 
18 |     public ProductService(ProductRepository repository
19 |     ) {
20 |         this.repository = repository;
21 |     }
22 | 
23 |     @Transactional(readOnly = true)
24 |     public Page<Product> findAll(Pageable pageable) {
25 |         Page<Product> result = repository.findAll(pageable);
26 |         return result;
27 |     }
28 | 
29 |     @Transactional(readOnly = true)
30 |     public Product findOne(Long id) {
31 |         return repository.findById(id).orElse(null);
32 |     }
33 | 
34 |     public Product save(Product product) {
35 |         product.setCreated(LocalDateTime.now());
36 |         product.setActive(true);
37 | 
38 |         return repository.save(product);
39 |     }
40 | 
41 |     public Product update(Product product) {
42 |         Product old = repository.findById(product.getId()).get();
43 | 
44 |         product.setCreated(old.getCreated());
45 |         product.setId(old.getId());
46 | 
47 |         return repository.save(product);
48 |     }
49 | 
50 |     public void delete(Long id) {
51 |         repository.deleteById(id);
52 |     }
53 | 
54 | }
55 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/resources/application.yaml:
--------------------------------------------------------------------------------
 1 | api:
 2 |   version: 1
 3 | 
 4 | logging:
 5 |   config: classpath:logback.xml
 6 |   level:
 7 |     io:
 8 |       jaegertracing: DEBUG
 9 | 
10 | # lets listen on all ports to ensure we can be invoked from the pod ip address
11 | # contextPath: /api/v${api.version}/*
12 | server:
13 |   address: 0.0.0.0
14 |   port: 8080
15 | 
16 | # =============================================
17 | # spring configurations
18 | # ---------------------------------------------
19 | spring:
20 |   application:
21 |     name: ${OPENSHIFT_APP_NAME:product-api}
22 |   jpa:
23 |     # log generated sql
24 |     database-platform: org.hibernate.dialect.H2Dialect
25 |     properties:
26 |       hibernate:
27 |         show_sql: true
28 |         use_sql_comments: true
29 |         format_sql: true
30 |         type: trace
31 |     hibernate:
32 |       ddl-auto: create-drop
33 |   h2:
34 |     # http://localhost:8080/h2-console
35 |     # connection url: jdbc:h2:mem:testdb
36 |     console:
37 |       enabled: true
38 |       path: /h2-console
39 |       settings:
40 |         trace: false
41 |         web-allow-others: false
42 |   jackson:
43 |     # JACKSON (JacksonProperties)
44 |     # Date format string or a fully-qualified date format class name
45 |     #spring.jackson.date-format=yyyy-MM-dd'T'HH:mm:ss.SSSZ
46 |     serialization:
47 |       write_dates_as_timestamps: true
48 | 
49 | # =============================================
50 | # spring actuator configurations
51 | # ---------------------------------------------
52 | management:
53 |   endpoint:
54 |     metrics:
55 |       enabled: true
56 |     prometheus:
57 |       enabled: true
58 |       # if you want to change the default prometheus endpoint, just change the 'id' to another value.
59 |       id: prometheus
60 |   endpoints:
61 |     web:
62 |       exposure:
63 |         include: ["*"]
64 |   metrics:
65 |     export:
66 |       prometheus:
67 |         enabled: true
68 | 
69 | # =============================================
70 | # opentracing configurations
71 | # ---------------------------------------------
72 | opentracing:
73 |   jaeger:
74 |     enabled: true
75 |     enable-b3-propagation: true
76 |     log-spans: true
77 |     const-sampler:
78 |       decision: true
79 |     http-sender:
80 |       url: http://jaeger-collector:14268/api/traces
81 | 
82 | jaeger.tracer:
83 |   host: ${OPENSHIFT_JAEGER_HOST:jaeger-agent.microservices.svc}
84 |   port: 6831
85 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/resources/data.sql:
--------------------------------------------------------------------------------
1 | insert into product(id,name,description,code,price,active,created) values (1, 'Eletric Guitar', 'Fender Eletric Guitar year 2001', '100', 500.99, true, '2019-06-15 10:00:00.0');
2 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/resources/logback.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <configuration>
 3 |     <include resource="org/springframework/boot/logging/logback/defaults.xml" />
 4 | 
 5 |     <property name="CONSOLE_LOG_PATTERN"
 6 |               value="%clr(%d{yyyy-MM-dd HH:mm:ss.SSS}){faint} %clr(${LOG_LEVEL_PATTERN:-%5p}) %clr([%t]){faint} %clr(%logger){cyan} %clr(:){faint} %m%n${LOG_EXCEPTION_CONVERSION_WORD:-%wEx}" />
 7 | 
 8 |     <include resource="org/springframework/boot/logging/logback/console-appender.xml" />
 9 | 
10 |     <root level="INFO">
11 |         <appender-ref ref="CONSOLE" />
12 |     </root>
13 | 
14 |     <logger name="org.springframework.web" level="INFO" />
15 | </configuration>
16 | 


--------------------------------------------------------------------------------
/product-insecure/src/main/resources/messages.properties:
--------------------------------------------------------------------------------
1 | # validation messages
2 | validation.message.field.required=field is required and may not be null
3 | validation.message.field.required.middleName=middle name is required
4 | 


--------------------------------------------------------------------------------
/product/configuration/configmap/product-api-env.yml:
--------------------------------------------------------------------------------
 1 | apiVersion: v1
 2 | kind: ConfigMap
 3 | metadata:
 4 |   name: product-api-config
 5 | data:
 6 |   OPENSHIFT_APP_NAME: product-api
 7 |   OPENSHIFT_REST_SECURITY_ISSUER_URI: https://sso73.apps.arekkusu.io/auth/realms/3scale-api
 8 |   OPENSHIFT_SECURITY_OAUTH2_RESOURCE: product_api
 9 |   OPENSHIFT_JAEGER_HOST: jaeger-agent.microservices.svc
10 |   OPENSHIFT_SECURITY_OAUTH2_PUBLIC_KEY: "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv18ZNpCtYUBFLaK/Ak1HLok1w3I+a/zm9qDyu903IRBd9FYzmZCGEKWJnhUAN8+T9OWqDHSkoe9MChP1dyTQi9gVp7IEv2MnEQTNCmBzGBN86XR2G1NDjELK0O8myuUdjimULAy2zNPX8ikF5Zzat47OtHSs2GLPxtqRqpS3QAmPaeI2R7NKxM7co8UmYbylpxZVO/PL05s3oJL2euKePbcUIXHPiH7b2epF5Ywe1ln8QpG3KnOjxSCFpobPDdBl82Rbby+XfTwzE+ixojspQJbdjEQKWCdgxrP/SUSLC6swva+Dq9ewelwyiSQQ1Y/ZkC2g833vNzp5goKGXkD0ywIDAQAB\n-----END PUBLIC KEY-----"
11 | 


--------------------------------------------------------------------------------
/product/configuration/secret/product-api.yml:
--------------------------------------------------------------------------------
1 | apiVersion: v1
2 | kind: Secret
3 | metadata:
4 |   name: product-api-secret
5 | type: Opaque
6 | data:
7 |   FOOBAR: foobar
8 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/ProductApplication.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security;
 2 | 
 3 | import io.micrometer.core.instrument.config.MeterFilter;
 4 | import org.springframework.boot.SpringApplication;
 5 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 6 | import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
 7 | import org.springframework.boot.autoconfigure.security.servlet.UserDetailsServiceAutoConfiguration;
 8 | import org.springframework.context.annotation.Bean;
 9 | import org.springframework.core.task.TaskExecutor;
10 | import org.springframework.scheduling.annotation.EnableAsync;
11 | import org.springframework.boot.web.servlet.FilterRegistrationBean;
12 | import org.springframework.core.Ordered;
13 | import org.springframework.scheduling.concurrent.ThreadPoolTaskExecutor;
14 | import org.springframework.web.cors.CorsConfiguration;
15 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
16 | import org.springframework.web.filter.CorsFilter;
17 | import java.util.Collections;
18 | 
19 | @EnableAsync
20 | @SpringBootApplication(exclude = {SecurityAutoConfiguration.class, UserDetailsServiceAutoConfiguration.class})
21 | public class ProductApplication {
22 | 
23 |     /**
24 |      * This filter can be used to exclude specific metrics.
25 |      * In the method below, we are hiding tomcat specific metrics.
26 |      * @return
27 |      */
28 |     @Bean
29 |     public MeterFilter excludeTomcatFilter() {
30 |         return MeterFilter.denyNameStartsWith("tomcat");
31 |     }
32 | 
33 |     @Bean("threadPoolTaskExecutor")
34 |     public TaskExecutor getAsyncExecutor() {
35 |         ThreadPoolTaskExecutor executor = new ThreadPoolTaskExecutor();
36 |         executor.setCorePoolSize(20);
37 |         executor.setMaxPoolSize(1000);
38 |         executor.setWaitForTasksToCompleteOnShutdown(true);
39 |         executor.setThreadNamePrefix("Async-");
40 |         return executor;
41 |     }
42 | 
43 |     @Bean
44 |     public FilterRegistrationBean<CorsFilter> simpleCorsFilter() {
45 |         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
46 |         CorsConfiguration config = new CorsConfiguration();
47 | 
48 |         config.setAllowCredentials(true);
49 |         config.setAllowedOrigins(Collections.singletonList("http://localhost:4200"));
50 |         config.setAllowedOrigins(Collections.singletonList("https://localhost:4200"));
51 |         config.setAllowedMethods(Collections.singletonList("*"));
52 |         config.setAllowedHeaders(Collections.singletonList("*"));
53 | 
54 |         source.registerCorsConfiguration("/**", config);
55 | 
56 |         FilterRegistrationBean<CorsFilter> bean = new FilterRegistrationBean<>(new CorsFilter(source));
57 |         bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
58 | 
59 |         return bean;
60 |     }
61 | 
62 |     public static void main(String[] args) {
63 |         SpringApplication.run(ProductApplication.class, args);
64 |     }
65 | 
66 | }
67 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/configuration/SwaggerConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurationSupport;
 6 | import springfox.documentation.builders.PathSelectors;
 7 | import springfox.documentation.builders.RequestHandlerSelectors;
 8 | import springfox.documentation.spi.DocumentationType;
 9 | import springfox.documentation.spring.web.plugins.Docket;
10 | import springfox.documentation.swagger2.annotations.EnableSwagger2;
11 | 
12 | @Configuration
13 | @EnableSwagger2
14 | public class SwaggerConfiguration extends WebMvcConfigurationSupport {
15 | 
16 |     /**
17 |      * Every Docket bean is picked up by the swagger-mvc framework - allowing for multiple
18 |      * swagger groups i.e. same code base multiple swagger resource listings.
19 |      */
20 |     @Bean
21 |     public Docket api(){
22 |         return new Docket(DocumentationType.SWAGGER_2)
23 |                 .select()
24 |                 .apis(RequestHandlerSelectors.any())
25 |                 .paths(PathSelectors.regex("/api/v1/.*"))
26 |                 .build();
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/configuration/TracingConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import io.jaegertracing.internal.samplers.ConstSampler;
 4 | import io.opentracing.Tracer;
 5 | import io.opentracing.util.GlobalTracer;
 6 | import org.springframework.beans.factory.annotation.Value;
 7 | import org.springframework.context.annotation.Bean;
 8 | import org.springframework.context.annotation.Configuration;
 9 | import javax.annotation.PostConstruct;
10 | 
11 | @Configuration
12 | public class TracingConfiguration {
13 | 
14 |     @Value("${jaeger.tracer.host}")
15 |     private String jaegerHost;
16 | 
17 |     @Value("${jaeger.tracer.port}")
18 |     private Integer jaegerPort;
19 | 
20 |     @Value("${spring.application.name}")
21 |     private String applicationName;
22 | 
23 |     @Bean
24 |     public Tracer tracer() {
25 |         return io.jaegertracing.Configuration.fromEnv(applicationName)
26 |                 .withSampler(
27 |                         io.jaegertracing.Configuration.SamplerConfiguration.fromEnv()
28 |                                 .withType(ConstSampler.TYPE)
29 |                                 .withParam(1))
30 |                 .withReporter(
31 |                         io.jaegertracing.Configuration.ReporterConfiguration.fromEnv()
32 |                                 .withLogSpans(true)
33 |                                 .withFlushInterval(1000)
34 |                                 .withMaxQueueSize(10000)
35 |                                 .withSender(
36 |                                         io.jaegertracing.Configuration.SenderConfiguration.fromEnv()
37 |                                                 .withAgentHost(jaegerHost)
38 |                                                 .withAgentPort(jaegerPort)
39 |                                 ))
40 |                 .getTracer();
41 |     }
42 | 
43 |     @PostConstruct
44 |     public void registerToGlobalTracer() {
45 |         if (!GlobalTracer.isRegistered()) {
46 |             GlobalTracer.register(tracer());
47 |         }
48 |     }
49 | }
50 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/configuration/WebConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.http.MediaType;
 6 | import org.springframework.validation.beanvalidation.MethodValidationPostProcessor;
 7 | import org.springframework.web.servlet.config.annotation.ContentNegotiationConfigurer;
 8 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
 9 | 
10 | @Configuration
11 | public class WebConfiguration extends WebMvcConfigurerAdapter {
12 | 
13 |     @Override
14 |     public void configureContentNegotiation(ContentNegotiationConfigurer configurer) {
15 |         configurer.defaultContentType(MediaType.APPLICATION_JSON);
16 |     }
17 | 
18 |     /**
19 |      * Enable @Valid validation exception handler for @PathVariable, @RequestParam and @RequestHeader.
20 |      */
21 |     @Bean
22 |     public MethodValidationPostProcessor methodValidationPostProcessor() {
23 |         return new MethodValidationPostProcessor();
24 |     }
25 | }
26 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/configuration/security/OAuth2RestTemplateConfigurer.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration.security;
 2 | 
 3 | import com.microservices.apigateway.security.configuration.security.OAuth2RestTemplateConfigurer .ServiceAccountEnabled;
 4 | import org.slf4j.Logger;
 5 | import org.slf4j.LoggerFactory;
 6 | import org.springframework.boot.autoconfigure.condition.AllNestedConditions;
 7 | import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
 8 | import org.springframework.context.annotation.Bean;
 9 | import org.springframework.context.annotation.Conditional;
10 | import org.springframework.context.annotation.Configuration;
11 | import org.springframework.security.oauth2.client.OAuth2RestTemplate;
12 | import org.springframework.security.oauth2.client.resource.OAuth2ProtectedResourceDetails;
13 | 
14 | /**
15 |  * OAuth2RestTemplateConfigurer is to create a bean of type {@link OAuth2RestTemplate}.
16 |  * <p>
17 |  *   This configurer is run only when following properties are set in application.properties.
18 |  * </p>
19 |  *
20 |  *   <code>rest.security.enabled=true</code>
21 |  *   <code>security.oauth2.client.grant-type=client_credentials</code>
22 |  *
23 |  */
24 | @Configuration
25 | @Conditional(value = {ServiceAccountEnabled.class})
26 | public class OAuth2RestTemplateConfigurer {
27 | 
28 |     private static final Logger LOG = LoggerFactory.getLogger(OAuth2RestTemplateConfigurer.class);
29 | 
30 |     @Bean
31 |     public OAuth2RestTemplate oauth2RestTemplate(OAuth2ProtectedResourceDetails details) {
32 |         OAuth2RestTemplate oAuth2RestTemplate = new OAuth2RestTemplate(details);
33 | 
34 |         LOG.debug("Begin OAuth2RestTemplate: getAccessToken");
35 |         /* To validate if required configurations are in place during startup */
36 |         oAuth2RestTemplate.getAccessToken();
37 |         LOG.debug("End OAuth2RestTemplate: getAccessToken");
38 |         return oAuth2RestTemplate;
39 |     }
40 | 
41 |     /**
42 |      * Condition class to configure OAuth2RestTemplate when both security is enabled and
43 |      * client credentials property is set for secured micro-com.microservices.apigateway.security.service
44 |      * to micro-com.microservices.apigateway.security.service call.
45 |      */
46 |     static class ServiceAccountEnabled extends AllNestedConditions {
47 | 
48 |         ServiceAccountEnabled() {
49 |             super(ConfigurationPhase.PARSE_CONFIGURATION);
50 |         }
51 | 
52 |         @ConditionalOnProperty(prefix = "rest.security", value = "enabled", havingValue = "true")
53 |         static class SecurityEnabled {}
54 | 
55 |         @ConditionalOnProperty(prefix = "security.oauth2.client", value = "grant-type", havingValue = "client_credentials")
56 |         static class ClientCredentialConfigurationExists {}
57 | 
58 |     }
59 | }
60 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/configuration/security/SecurityContextUtils.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration.security;
 2 | 
 3 | import java.util.HashSet;
 4 | import java.util.Set;
 5 | import org.slf4j.Logger;
 6 | import org.slf4j.LoggerFactory;
 7 | import org.springframework.security.core.Authentication;
 8 | import org.springframework.security.core.context.SecurityContext;
 9 | import org.springframework.security.core.context.SecurityContextHolder;
10 | import org.springframework.security.core.userdetails.UserDetails;
11 | import org.springframework.stereotype.Component;
12 | 
13 | /**
14 |  * SecurityContextUtils is used to get username and roles to set created by, last updated by fields.
15 |  */
16 | @Component
17 | public class SecurityContextUtils {
18 | 
19 |     private static final Logger LOGGER = LoggerFactory.getLogger(SecurityContextUtils.class);
20 | 
21 |     private static final String ANONYMOUS = "anonymous";
22 | 
23 |     private SecurityContextUtils() { }
24 | 
25 |     public static String getUserName() {
26 |         SecurityContext securityContext = SecurityContextHolder.getContext();
27 |         Authentication authentication = securityContext.getAuthentication();
28 |         String username = ANONYMOUS;
29 | 
30 |         if (null != authentication) {
31 |             if (authentication.getPrincipal() instanceof UserDetails) {
32 |                 UserDetails springSecurityUser = (UserDetails) authentication.getPrincipal();
33 |                 username = springSecurityUser.getUsername();
34 | 
35 |             } else if (authentication.getPrincipal() instanceof String) {
36 |                 username = (String) authentication.getPrincipal();
37 | 
38 |             } else {
39 |                 LOGGER.debug("User details not found in Security Context");
40 |             }
41 |         } else {
42 |             LOGGER.debug("Request not authenticated, hence no user name available");
43 |         }
44 | 
45 |         return username;
46 |     }
47 | 
48 |     public static Set<String> getUserRoles() {
49 |         SecurityContext securityContext = SecurityContextHolder.getContext();
50 |         Authentication authentication = securityContext.getAuthentication();
51 |         Set<String> roles = new HashSet<>();
52 | 
53 |         if (null != authentication) {
54 |             authentication.getAuthorities()
55 |                     .forEach(e -> roles.add(e.getAuthority()));
56 |         }
57 |         return roles;
58 |     }
59 | }
60 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/controller/error/Error.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.error;
 2 | 
 3 | public class Error {
 4 | 
 5 |     private String field;
 6 |     private String value;
 7 |     private String message;
 8 | 
 9 |     public Error(String field, String value, String message) {
10 |         this.field = field;
11 |         this.value = value;
12 |         this.message = message;
13 |     }
14 | 
15 |     public String getField() {
16 |         return field;
17 |     }
18 | 
19 |     public void setField(String field) {
20 |         this.field = field;
21 |     }
22 | 
23 |     public String getValue() {
24 |         return value;
25 |     }
26 | 
27 |     public void setValue(String value) {
28 |         this.value = value;
29 |     }
30 | 
31 |     public String getMessage() {
32 |         return message;
33 |     }
34 | 
35 |     public void setMessage(String message) {
36 |         this.message = message;
37 |     }
38 | }
39 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/controller/validator/ProductValidator.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.validator;
 2 | 
 3 | import com.microservices.apigateway.security.model.Product;
 4 | import org.springframework.validation.Errors;
 5 | import org.springframework.validation.ValidationUtils;
 6 | import org.springframework.validation.Validator;
 7 | 
 8 | public class ProductValidator implements Validator {
 9 | 
10 |     @Override
11 |     public boolean supports(Class<?> clazz) {
12 |         return Product.class.isAssignableFrom(clazz);
13 |     }
14 | 
15 |     @Override
16 |     public void validate(Object target, Errors errors) {
17 |         ValidationUtils.rejectIfEmptyOrWhitespace(errors, "name", "validation.message.field.required");
18 |     }
19 | 
20 | }
21 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/model/BaseModel.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.model;
2 | 
3 | import java.io.Serializable;
4 | 
5 | public class BaseModel implements Serializable { }
6 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/repository/ProductRepository.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.repository;
2 | 
3 | import com.microservices.apigateway.security.model.Product;
4 | import org.springframework.data.jpa.repository.JpaRepository;
5 | import org.springframework.stereotype.Repository;
6 | 
7 | @Repository
8 | public interface ProductRepository extends JpaRepository<Product, Long> { }
9 | 


--------------------------------------------------------------------------------
/product/src/main/java/com/microservices/apigateway/security/service/ProductService.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.service;
 2 | 
 3 | import com.microservices.apigateway.security.model.Product;
 4 | import com.microservices.apigateway.security.repository.ProductRepository;
 5 | import org.springframework.stereotype.Service;
 6 | import org.springframework.transaction.annotation.Transactional;
 7 | import org.springframework.data.domain.Page;
 8 | import org.springframework.data.domain.Pageable;
 9 | import java.time.LocalDateTime;
10 | 
11 | @Service
12 | @Transactional
13 | public class ProductService {
14 | 
15 |     private final ProductRepository repository;
16 | 
17 |     public ProductService(ProductRepository repository
18 |     ) {
19 |         this.repository = repository;
20 |     }
21 | 
22 |     @Transactional(readOnly = true)
23 |     public Page<Product> findAll(Pageable pageable) {
24 |         Page<Product> result = repository.findAll(pageable);
25 |         return result;
26 |     }
27 | 
28 |     @Transactional(readOnly = true)
29 |     public Product findOne(Long id) {
30 |         return repository.findById(id).orElse(null);
31 |     }
32 | 
33 |     public Product save(Product product) {
34 |         product.setCreated(LocalDateTime.now());
35 |         product.setActive(true);
36 | 
37 |         return repository.save(product);
38 |     }
39 | 
40 |     public Product update(Product product) {
41 |         Product old = repository.findById(product.getId()).get();
42 | 
43 |         product.setCreated(old.getCreated());
44 |         product.setId(old.getId());
45 | 
46 |         return repository.save(product);
47 |     }
48 | 
49 |     public void delete(Long id) {
50 |         repository.deleteById(id);
51 |     }
52 | 
53 | }
54 | 


--------------------------------------------------------------------------------
/product/src/main/resources/data.sql:
--------------------------------------------------------------------------------
1 | insert into product(id,name,description,code,price,active,created) values (1, 'Eletric Guitar', 'Fender Eletric Guitar year 2001', '100', 500.99, true, '2019-06-15 10:00:00.0');
2 | 


--------------------------------------------------------------------------------
/product/src/main/resources/logback.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <com.microservices.apigateway.security.configuration>
 3 |     <include resource="org/springframework/boot/logging/logback/defaults.xml" />
 4 | 
 5 |     <property name="CONSOLE_LOG_PATTERN"
 6 |               value="%clr(%d{yyyy-MM-dd HH:mm:ss.SSS}){faint} %clr(${LOG_LEVEL_PATTERN:-%5p}) %clr([%t]){faint} %clr(%logger){cyan} %clr(:){faint} %m%n${LOG_EXCEPTION_CONVERSION_WORD:-%wEx}" />
 7 | 
 8 |     <include resource="org/springframework/boot/logging/logback/console-appender.xml" />
 9 | 
10 |     <root level="INFO">
11 |         <appender-ref ref="CONSOLE" />
12 |     </root>
13 | 
14 |     <logger name="org.springframework.web" level="INFO" />
15 | </com.microservices.apigateway.security.configuration>
16 | 


--------------------------------------------------------------------------------
/product/src/main/resources/messages.properties:
--------------------------------------------------------------------------------
1 | # validation messages
2 | validation.message.field.required=field is required and may not be null
3 | validation.message.field.required.middleName=middle name is required
4 | 


--------------------------------------------------------------------------------
/stock/configuration/configmap/stock-api-env.yml:
--------------------------------------------------------------------------------
1 | apiVersion: v1
2 | kind: ConfigMap
3 | metadata:
4 |   name: stock-api-config
5 | data:
6 |   OPENSHIFT_APP_NAME: stock-api
7 |   OPENSHIFT_JAEGER_HOST: jaeger-agent.microservices.svc
8 | 


--------------------------------------------------------------------------------
/stock/configuration/secret/stock-api.yml:
--------------------------------------------------------------------------------
1 | apiVersion: v1
2 | kind: Secret
3 | metadata:
4 |   name: stock-api-secret
5 | type: Opaque
6 | data:
7 |   FOOBAR: foobar
8 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/StockApplication.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security;
 2 | 
 3 | import io.micrometer.core.instrument.config.MeterFilter;
 4 | import org.springframework.boot.SpringApplication;
 5 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 6 | import org.springframework.boot.web.servlet.FilterRegistrationBean;
 7 | import org.springframework.context.annotation.Bean;
 8 | import org.springframework.core.Ordered;
 9 | import org.springframework.core.task.TaskExecutor;
10 | import org.springframework.scheduling.annotation.EnableAsync;
11 | import org.springframework.scheduling.concurrent.ThreadPoolTaskExecutor;
12 | import org.springframework.web.cors.CorsConfiguration;
13 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
14 | import org.springframework.web.filter.CorsFilter;
15 | import java.util.Collections;
16 | 
17 | @EnableAsync
18 | @SpringBootApplication
19 | public class StockApplication {
20 | 
21 |     /**
22 |      * This filter can be used to exclude specific metrics.
23 |      * In the method below, we are hiding tomcat specific metrics.
24 |      * @return
25 |      */
26 |     @Bean
27 |     public MeterFilter excludeTomcatFilter() {
28 |         return MeterFilter.denyNameStartsWith("tomcat");
29 |     }
30 | 
31 |     @Bean("threadPoolTaskExecutor")
32 |     public TaskExecutor getAsyncExecutor() {
33 |         ThreadPoolTaskExecutor executor = new ThreadPoolTaskExecutor();
34 |         executor.setCorePoolSize(20);
35 |         executor.setMaxPoolSize(1000);
36 |         executor.setWaitForTasksToCompleteOnShutdown(true);
37 |         executor.setThreadNamePrefix("Async-");
38 |         return executor;
39 |     }
40 | 
41 |     @Bean
42 |     public FilterRegistrationBean<CorsFilter> simpleCorsFilter() {
43 |         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
44 |         CorsConfiguration config = new CorsConfiguration();
45 | 
46 |         config.setAllowCredentials(true);
47 |         config.setAllowedOrigins(Collections.singletonList("http://localhost:4200"));
48 |         config.setAllowedOrigins(Collections.singletonList("https://localhost:4200"));
49 |         config.setAllowedMethods(Collections.singletonList("*"));
50 |         config.setAllowedHeaders(Collections.singletonList("*"));
51 | 
52 |         source.registerCorsConfiguration("/**", config);
53 | 
54 |         FilterRegistrationBean<CorsFilter> bean = new FilterRegistrationBean<>(new CorsFilter(source));
55 |         bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
56 | 
57 |         return bean;
58 |     }
59 | 
60 |     public static void main(String[] args) {
61 |         SpringApplication.run(StockApplication.class, args);
62 |     }
63 | 
64 | }
65 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/configuration/SwaggerConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurationSupport;
 6 | import springfox.documentation.builders.PathSelectors;
 7 | import springfox.documentation.builders.RequestHandlerSelectors;
 8 | import springfox.documentation.spi.DocumentationType;
 9 | import springfox.documentation.spring.web.plugins.Docket;
10 | import springfox.documentation.swagger2.annotations.EnableSwagger2;
11 | 
12 | @Configuration
13 | @EnableSwagger2
14 | public class SwaggerConfiguration extends WebMvcConfigurationSupport {
15 | 
16 |     /**
17 |      * Every Docket bean is picked up by the swagger-mvc framework - allowing for multiple
18 |      * swagger groups i.e. same code base multiple swagger resource listings.
19 |      */
20 |     @Bean
21 |     public Docket api(){
22 |         return new Docket(DocumentationType.SWAGGER_2)
23 |                 .select()
24 |                 .apis(RequestHandlerSelectors.any())
25 |                 .paths(PathSelectors.regex("/api/v1/.*"))
26 |                 .build();
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/configuration/TracingConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import io.jaegertracing.internal.samplers.ConstSampler;
 4 | import io.opentracing.Tracer;
 5 | import io.opentracing.util.GlobalTracer;
 6 | import org.springframework.beans.factory.annotation.Value;
 7 | import org.springframework.context.annotation.Bean;
 8 | import org.springframework.context.annotation.Configuration;
 9 | 
10 | import javax.annotation.PostConstruct;
11 | 
12 | @Configuration
13 | public class TracingConfiguration {
14 | 
15 |     @Value("${jaeger.tracer.host}")
16 |     private String jaegerHost;
17 | 
18 |     @Value("${jaeger.tracer.port}")
19 |     private Integer jaegerPort;
20 | 
21 |     @Value("${spring.application.name}")
22 |     private String applicationName;
23 | 
24 |     @Bean
25 |     public Tracer tracer() {
26 |         return io.jaegertracing.Configuration.fromEnv(applicationName)
27 |                 .withSampler(
28 |                         io.jaegertracing.Configuration.SamplerConfiguration.fromEnv()
29 |                                 .withType(ConstSampler.TYPE)
30 |                                 .withParam(1))
31 |                 .withReporter(
32 |                         io.jaegertracing.Configuration.ReporterConfiguration.fromEnv()
33 |                                 .withLogSpans(true)
34 |                                 .withFlushInterval(1000)
35 |                                 .withMaxQueueSize(10000)
36 |                                 .withSender(
37 |                                         io.jaegertracing.Configuration.SenderConfiguration.fromEnv()
38 |                                                 .withAgentHost(jaegerHost)
39 |                                                 .withAgentPort(jaegerPort)
40 |                                 ))
41 |                 .getTracer();
42 |     }
43 | 
44 |     @PostConstruct
45 |     public void registerToGlobalTracer() {
46 |         if (!GlobalTracer.isRegistered()) {
47 |             GlobalTracer.register(tracer());
48 |         }
49 |     }
50 | }
51 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/controller/StockController.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller;
 2 | 
 3 | import com.microservices.apigateway.security.controller.validator.EventValidator;
 4 | import com.microservices.apigateway.security.model.Event;
 5 | import io.micrometer.core.annotation.Timed;
 6 | import io.swagger.annotations.ApiOperation;
 7 | import org.slf4j.Logger;
 8 | import org.slf4j.LoggerFactory;
 9 | import org.springframework.http.MediaType;
10 | import org.springframework.http.ResponseEntity;
11 | import org.springframework.validation.annotation.Validated;
12 | import org.springframework.web.bind.WebDataBinder;
13 | import org.springframework.web.bind.annotation.*;
14 | 
15 | import javax.validation.Valid;
16 | 
17 | @RestController
18 | @RequestMapping(path = "/api", produces = { MediaType.APPLICATION_JSON_VALUE, MediaType.APPLICATION_XML_VALUE })
19 | @Validated //required for @Valid on method parameters such as @RequesParam, @PathVariable, @RequestHeader
20 | public class StockController extends BaseController {
21 | 
22 |     private static Logger logger = LoggerFactory.getLogger(StockController.class);
23 | 
24 |     @Timed(value = "stock.sync", description = "Sync Operation")
25 |     @RequestMapping(path = "/v1/sync", method = RequestMethod.POST, consumes = { MediaType.APPLICATION_JSON_VALUE, MediaType.APPLICATION_XML_VALUE })
26 |     @ApiOperation(
27 |             value = "Sync",
28 |             notes = "Sync Stock",
29 |             response = Event.class)
30 |     public ResponseEntity<Event> sync(@Valid @RequestBody Event event) {
31 |         Event e = new Event("HELLO: " + event.getStatus());
32 |         return ResponseEntity.ok().body(e);
33 |     }
34 | 
35 |     @InitBinder("event")
36 |     protected void initBinder(WebDataBinder binder) {
37 |         binder.addValidators(new EventValidator());
38 |     }
39 | }
40 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/controller/error/Error.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.error;
 2 | 
 3 | public class Error {
 4 | 
 5 |     private String field;
 6 |     private String value;
 7 |     private String message;
 8 | 
 9 |     public Error(String field, String value, String message) {
10 |         this.field = field;
11 |         this.value = value;
12 |         this.message = message;
13 |     }
14 | 
15 |     public String getField() {
16 |         return field;
17 |     }
18 | 
19 |     public void setField(String field) {
20 |         this.field = field;
21 |     }
22 | 
23 |     public String getValue() {
24 |         return value;
25 |     }
26 | 
27 |     public void setValue(String value) {
28 |         this.value = value;
29 |     }
30 | 
31 |     public String getMessage() {
32 |         return message;
33 |     }
34 | 
35 |     public void setMessage(String message) {
36 |         this.message = message;
37 |     }
38 | }
39 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/controller/validator/EventValidator.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.validator;
 2 | 
 3 | import com.microservices.apigateway.security.model.Event;
 4 | import org.springframework.validation.Errors;
 5 | import org.springframework.validation.ValidationUtils;
 6 | import org.springframework.validation.Validator;
 7 | 
 8 | public class EventValidator implements Validator {
 9 | 
10 |     @Override
11 |     public boolean supports(Class<?> clazz) {
12 |         return Event.class.isAssignableFrom(clazz);
13 |     }
14 | 
15 |     @Override
16 |     public void validate(Object target, Errors errors) {
17 |         ValidationUtils.rejectIfEmptyOrWhitespace(errors, "status", "validation.message.field.required");
18 |     }
19 | 
20 | }
21 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/model/BaseModel.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.model;
2 | 
3 | import java.io.Serializable;
4 | 
5 | public class BaseModel implements Serializable { }
6 | 


--------------------------------------------------------------------------------
/stock/src/main/java/com/microservices/apigateway/security/model/Event.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model;
 2 | 
 3 | import javax.persistence.*;
 4 | import java.util.Objects;
 5 | 
 6 | @Entity
 7 | public class Event extends BaseModel{
 8 | 
 9 |     @Id
10 |     @GeneratedValue(strategy= GenerationType.AUTO)
11 |     @Column(name="id")
12 |     private Long id;
13 | 
14 |     @Column(name="status", nullable = true)
15 |     private String status;
16 | 
17 |     public Event() { }
18 | 
19 |     public Event(String status) {
20 |         this.status = status;
21 |     }
22 | 
23 |     public Long getId() {
24 |         return id;
25 |     }
26 | 
27 |     public void setId(Long id) {
28 |         this.id = id;
29 |     }
30 | 
31 |     public String getStatus() {
32 |         return status;
33 |     }
34 | 
35 |     public void setStatus(String status) {
36 |         this.status = status;
37 |     }
38 | 
39 |     @Override
40 |     public boolean equals(Object o) {
41 |         if (this == o) return true;
42 |         if (o == null || getClass() != o.getClass()) return false;
43 |         Event event = (Event) o;
44 |         return id.equals(event.id) &&
45 |                 status.equals(event.status);
46 |     }
47 | 
48 |     @Override
49 |     public int hashCode() {
50 |         return Objects.hash(id, status);
51 |     }
52 | }
53 | 


--------------------------------------------------------------------------------
/stock/src/main/resources/application.yaml:
--------------------------------------------------------------------------------
 1 | api:
 2 |   version: 1
 3 | 
 4 | logging:
 5 |   config: classpath:logback.xml
 6 |   level:
 7 |     io:
 8 |       jaegertracing: DEBUG
 9 | 
10 | # lets listen on all ports to ensure we can be invoked from the pod ip address
11 | # contextPath: /api/v${api.version}/*
12 | server:
13 |   address: 0.0.0.0
14 |   port: 8080
15 | 
16 | # =============================================
17 | # spring configurations
18 | # ---------------------------------------------
19 | spring:
20 |   application:
21 |     name: ${OPENSHIFT_APP_NAME:stock-api}
22 |   jpa:
23 |     # log generated sql
24 |     database-platform: org.hibernate.dialect.H2Dialect
25 |     properties:
26 |       hibernate:
27 |         show_sql: true
28 |         use_sql_comments: true
29 |         format_sql: true
30 |         type: trace
31 |     hibernate:
32 |       ddl-auto: create-drop
33 |   h2:
34 |     # http://localhost:8080/h2-console
35 |     # connection url: jdbc:h2:mem:testdb
36 |     console:
37 |       enabled: true
38 |       path: /h2-console
39 |       settings:
40 |         trace: false
41 |         web-allow-others: false
42 |   jackson:
43 |     # JACKSON (JacksonProperties)
44 |     # Date format string or a fully-qualified date format class name
45 |     #spring.jackson.date-format=yyyy-MM-dd'T'HH:mm:ss.SSSZ
46 |     serialization:
47 |       write_dates_as_timestamps: true
48 | 
49 | # =============================================
50 | # spring actuator configurations
51 | # ---------------------------------------------
52 | management:
53 |   endpoint:
54 |     metrics:
55 |       enabled: true
56 |     prometheus:
57 |       enabled: true
58 |       # if you want to change the default prometheus endpoint, just change the 'id' to another value.
59 |       id: prometheus
60 |   endpoints:
61 |     web:
62 |       exposure:
63 |         include: ["*"]
64 |   metrics:
65 |     export:
66 |       prometheus:
67 |         enabled: true
68 | 
69 | # =============================================
70 | # opentracing configurations
71 | # ---------------------------------------------
72 | opentracing:
73 |   jaeger:
74 |     enabled: true
75 |     enable-b3-propagation: true
76 |     log-spans: true
77 |     const-sampler:
78 |       decision: true
79 |     http-sender:
80 |       url: http://jaeger-collector:14268/api/traces
81 | 
82 | jaeger.tracer:
83 |   host: ${OPENSHIFT_JAEGER_HOST:jaeger-agent.microservices.svc}
84 |   port: 6831
85 | 


--------------------------------------------------------------------------------
/stock/src/main/resources/logback.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <com.microservices.apigateway.security.configuration>
 3 |     <include resource="org/springframework/boot/logging/logback/defaults.xml" />
 4 | 
 5 |     <property name="CONSOLE_LOG_PATTERN"
 6 |               value="%clr(%d{yyyy-MM-dd HH:mm:ss.SSS}){faint} %clr(${LOG_LEVEL_PATTERN:-%5p}) %clr([%t]){faint} %clr(%logger){cyan} %clr(:){faint} %m%n${LOG_EXCEPTION_CONVERSION_WORD:-%wEx}" />
 7 | 
 8 |     <include resource="org/springframework/boot/logging/logback/console-appender.xml" />
 9 | 
10 |     <root level="INFO">
11 |         <appender-ref ref="CONSOLE" />
12 |     </root>
13 | 
14 |     <logger name="org.springframework.web" level="INFO" />
15 | </com.microservices.apigateway.security.configuration>
16 | 


--------------------------------------------------------------------------------
/stock/src/main/resources/messages.properties:
--------------------------------------------------------------------------------
1 | # validation messages
2 | validation.message.field.required=field is required and may not be null
3 | validation.message.field.required.middleName=middle name is required
4 | 


--------------------------------------------------------------------------------
/supplier/configuration/configmap/supplier-api-env.yml:
--------------------------------------------------------------------------------
 1 | apiVersion: v1
 2 | kind: ConfigMap
 3 | metadata:
 4 |   name: supplier-api-config
 5 | data:
 6 |   OPENSHIFT_APP_NAME: supplier-api
 7 |   OPENSHIFT_REST_SECURITY_ISSUER_URI: https://sso73.apps.arekkusu.io/auth/realms/3scale-api
 8 |   OPENSHIFT_SECURITY_OAUTH2_RESOURCE: 847d10c1
 9 |   OPENSHIFT_JAEGER_HOST: jaeger-agent.microservices.svc
10 |   OPENSHIFT_SECURITY_OAUTH2_PUBLIC_KEY: "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv18ZNpCtYUBFLaK/Ak1HLok1w3I+a/zm9qDyu903IRBd9FYzmZCGEKWJnhUAN8+T9OWqDHSkoe9MChP1dyTQi9gVp7IEv2MnEQTNCmBzGBN86XR2G1NDjELK0O8myuUdjimULAy2zNPX8ikF5Zzat47OtHSs2GLPxtqRqpS3QAmPaeI2R7NKxM7co8UmYbylpxZVO/PL05s3oJL2euKePbcUIXHPiH7b2epF5Ywe1ln8QpG3KnOjxSCFpobPDdBl82Rbby+XfTwzE+ixojspQJbdjEQKWCdgxrP/SUSLC6swva+Dq9ewelwyiSQQ1Y/ZkC2g833vNzp5goKGXkD0ywIDAQAB\n-----END PUBLIC KEY-----"
11 | 


--------------------------------------------------------------------------------
/supplier/configuration/secret/supplier-api.yml:
--------------------------------------------------------------------------------
1 | apiVersion: v1
2 | kind: Secret
3 | metadata:
4 |   name: supplier-api-secret
5 | type: Opaque
6 | data:
7 |   FOOBAR: foobar
8 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/SupplierApplication.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security;
 2 | 
 3 | import io.micrometer.core.instrument.config.MeterFilter;
 4 | import org.springframework.boot.SpringApplication;
 5 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 6 | import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
 7 | import org.springframework.boot.autoconfigure.security.servlet.UserDetailsServiceAutoConfiguration;
 8 | import org.springframework.boot.web.servlet.FilterRegistrationBean;
 9 | import org.springframework.context.annotation.Bean;
10 | import org.springframework.core.Ordered;
11 | import org.springframework.core.task.TaskExecutor;
12 | import org.springframework.scheduling.annotation.EnableAsync;
13 | import org.springframework.scheduling.concurrent.ThreadPoolTaskExecutor;
14 | import org.springframework.web.cors.CorsConfiguration;
15 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
16 | import org.springframework.web.filter.CorsFilter;
17 | 
18 | import java.util.Collections;
19 | 
20 | @EnableAsync
21 | @SpringBootApplication(exclude = {SecurityAutoConfiguration.class, UserDetailsServiceAutoConfiguration.class})
22 | public class SupplierApplication {
23 | 
24 |     /**
25 |      * This filter can be used to exclude specific metrics.
26 |      * In the method below, we are hiding tomcat specific metrics.
27 |      * @return
28 |      */
29 |     @Bean
30 |     public MeterFilter excludeTomcatFilter() {
31 |         return MeterFilter.denyNameStartsWith("tomcat");
32 |     }
33 | 
34 |     @Bean("threadPoolTaskExecutor")
35 |     public TaskExecutor getAsyncExecutor() {
36 |         ThreadPoolTaskExecutor executor = new ThreadPoolTaskExecutor();
37 |         executor.setCorePoolSize(20);
38 |         executor.setMaxPoolSize(1000);
39 |         executor.setWaitForTasksToCompleteOnShutdown(true);
40 |         executor.setThreadNamePrefix("Async-");
41 |         return executor;
42 |     }
43 | 
44 |     @Bean
45 |     public FilterRegistrationBean<CorsFilter> simpleCorsFilter() {
46 |         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
47 |         CorsConfiguration config = new CorsConfiguration();
48 | 
49 |         config.setAllowCredentials(true);
50 |         config.setAllowedOrigins(Collections.singletonList("http://localhost:4200"));
51 |         config.setAllowedOrigins(Collections.singletonList("https://localhost:4200"));
52 |         config.setAllowedMethods(Collections.singletonList("*"));
53 |         config.setAllowedHeaders(Collections.singletonList("*"));
54 | 
55 |         source.registerCorsConfiguration("/**", config);
56 | 
57 |         FilterRegistrationBean<CorsFilter> bean = new FilterRegistrationBean<>(new CorsFilter(source));
58 |         bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
59 | 
60 |         return bean;
61 |     }
62 | 
63 |     public static void main(String[] args) {
64 |         SpringApplication.run(SupplierApplication.class, args);
65 |     }
66 | 
67 | }
68 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/configuration/SwaggerConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurationSupport;
 6 | import springfox.documentation.builders.PathSelectors;
 7 | import springfox.documentation.builders.RequestHandlerSelectors;
 8 | import springfox.documentation.spi.DocumentationType;
 9 | import springfox.documentation.spring.web.plugins.Docket;
10 | import springfox.documentation.swagger2.annotations.EnableSwagger2;
11 | 
12 | @Configuration
13 | @EnableSwagger2
14 | public class SwaggerConfiguration extends WebMvcConfigurationSupport {
15 | 
16 |     /**
17 |      * Every Docket bean is picked up by the swagger-mvc framework - allowing for multiple
18 |      * swagger groups i.e. same code base multiple swagger resource listings.
19 |      */
20 |     @Bean
21 |     public Docket api(){
22 |         return new Docket(DocumentationType.SWAGGER_2)
23 |                 .select()
24 |                 .apis(RequestHandlerSelectors.any())
25 |                 .paths(PathSelectors.regex("/api/v1/.*"))
26 |                 .build();
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/configuration/TracingConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import io.jaegertracing.internal.samplers.ConstSampler;
 4 | import io.opentracing.Tracer;
 5 | import io.opentracing.util.GlobalTracer;
 6 | import org.springframework.beans.factory.annotation.Value;
 7 | import org.springframework.context.annotation.Bean;
 8 | import org.springframework.context.annotation.Configuration;
 9 | 
10 | import javax.annotation.PostConstruct;
11 | 
12 | @Configuration
13 | public class TracingConfiguration {
14 | 
15 |     @Value("${jaeger.tracer.host}")
16 |     private String jaegerHost;
17 | 
18 |     @Value("${jaeger.tracer.port}")
19 |     private Integer jaegerPort;
20 | 
21 |     @Value("${spring.application.name}")
22 |     private String applicationName;
23 | 
24 |     @Bean
25 |     public Tracer tracer() {
26 |         return io.jaegertracing.Configuration.fromEnv(applicationName)
27 |                 .withSampler(
28 |                         io.jaegertracing.Configuration.SamplerConfiguration.fromEnv()
29 |                                 .withType(ConstSampler.TYPE)
30 |                                 .withParam(1))
31 |                 .withReporter(
32 |                         io.jaegertracing.Configuration.ReporterConfiguration.fromEnv()
33 |                                 .withLogSpans(true)
34 |                                 .withFlushInterval(1000)
35 |                                 .withMaxQueueSize(10000)
36 |                                 .withSender(
37 |                                         io.jaegertracing.Configuration.SenderConfiguration.fromEnv()
38 |                                                 .withAgentHost(jaegerHost)
39 |                                                 .withAgentPort(jaegerPort)
40 |                                 ))
41 |                 .getTracer();
42 |     }
43 | 
44 |     @PostConstruct
45 |     public void registerToGlobalTracer() {
46 |         if (!GlobalTracer.isRegistered()) {
47 |             GlobalTracer.register(tracer());
48 |         }
49 |     }
50 | }
51 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/configuration/WebConfiguration.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.http.MediaType;
 6 | import org.springframework.validation.beanvalidation.MethodValidationPostProcessor;
 7 | import org.springframework.web.servlet.config.annotation.ContentNegotiationConfigurer;
 8 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
 9 | 
10 | @Configuration
11 | public class WebConfiguration extends WebMvcConfigurerAdapter {
12 | 
13 |     @Override
14 |     public void configureContentNegotiation(ContentNegotiationConfigurer configurer) {
15 |         configurer.defaultContentType(MediaType.APPLICATION_JSON);
16 |     }
17 | 
18 |     /**
19 |      * Enable @Valid validation exception handler for @PathVariable, @RequestParam and @RequestHeader.
20 |      */
21 |     @Bean
22 |     public MethodValidationPostProcessor methodValidationPostProcessor() {
23 |         return new MethodValidationPostProcessor();
24 |     }
25 | }
26 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/configuration/security/OAuth2RestTemplateConfigurer.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration.security;
 2 | 
 3 | import com.microservices.apigateway.security.configuration.security.OAuth2RestTemplateConfigurer.ServiceAccountEnabled;
 4 | import org.slf4j.Logger;
 5 | import org.slf4j.LoggerFactory;
 6 | import org.springframework.boot.autoconfigure.condition.AllNestedConditions;
 7 | import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
 8 | import org.springframework.context.annotation.Bean;
 9 | import org.springframework.context.annotation.Conditional;
10 | import org.springframework.context.annotation.Configuration;
11 | import org.springframework.security.oauth2.client.OAuth2RestTemplate;
12 | import org.springframework.security.oauth2.client.resource.OAuth2ProtectedResourceDetails;
13 | 
14 | /**
15 |  * OAuth2RestTemplateConfigurer is to create a bean of type {@link OAuth2RestTemplate}.
16 |  * <p>
17 |  *   This configurer is run only when following properties are set in application.properties.
18 |  * </p>
19 |  *
20 |  *   <code>rest.security.enabled=true</code>
21 |  *   <code>security.oauth2.client.grant-type=client_credentials</code>
22 |  *
23 |  */
24 | @Configuration
25 | @Conditional(value = {ServiceAccountEnabled.class})
26 | public class OAuth2RestTemplateConfigurer {
27 | 
28 |     private static final Logger LOG = LoggerFactory.getLogger(OAuth2RestTemplateConfigurer.class);
29 | 
30 |     @Bean
31 |     public OAuth2RestTemplate oauth2RestTemplate(OAuth2ProtectedResourceDetails details) {
32 |         OAuth2RestTemplate oAuth2RestTemplate = new OAuth2RestTemplate(details);
33 | 
34 |         LOG.debug("Begin OAuth2RestTemplate: getAccessToken");
35 |         /* To validate if required configurations are in place during startup */
36 |         oAuth2RestTemplate.getAccessToken();
37 |         LOG.debug("End OAuth2RestTemplate: getAccessToken");
38 |         return oAuth2RestTemplate;
39 |     }
40 | 
41 |     /**
42 |      * Condition class to configure OAuth2RestTemplate when both security is enabled and
43 |      * client credentials property is set for secured micro-com.microservices.apigateway.security.service
44 |      * to micro-com.microservices.apigateway.security.service call.
45 |      */
46 |     static class ServiceAccountEnabled extends AllNestedConditions {
47 | 
48 |         ServiceAccountEnabled() {
49 |             super(ConfigurationPhase.PARSE_CONFIGURATION);
50 |         }
51 | 
52 |         @ConditionalOnProperty(prefix = "rest.security", value = "enabled", havingValue = "true")
53 |         static class SecurityEnabled {}
54 | 
55 |         @ConditionalOnProperty(prefix = "security.oauth2.client", value = "grant-type", havingValue = "client_credentials")
56 |         static class ClientCredentialConfigurationExists {}
57 | 
58 |     }
59 | }
60 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/configuration/security/SecurityContextUtils.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.configuration.security;
 2 | 
 3 | import org.slf4j.Logger;
 4 | import org.slf4j.LoggerFactory;
 5 | import org.springframework.security.core.Authentication;
 6 | import org.springframework.security.core.context.SecurityContext;
 7 | import org.springframework.security.core.context.SecurityContextHolder;
 8 | import org.springframework.security.core.userdetails.UserDetails;
 9 | import org.springframework.stereotype.Component;
10 | 
11 | import java.util.HashSet;
12 | import java.util.Set;
13 | 
14 | /**
15 |  * SecurityContextUtils is used to get username and roles to set created by, last updated by fields.
16 |  */
17 | @Component
18 | public class SecurityContextUtils {
19 | 
20 |     private static final Logger LOGGER = LoggerFactory.getLogger(SecurityContextUtils.class);
21 | 
22 |     private static final String ANONYMOUS = "anonymous";
23 | 
24 |     private SecurityContextUtils() { }
25 | 
26 |     public static String getUserName() {
27 |         SecurityContext securityContext = SecurityContextHolder.getContext();
28 |         Authentication authentication = securityContext.getAuthentication();
29 |         String username = ANONYMOUS;
30 | 
31 |         if (null != authentication) {
32 |             if (authentication.getPrincipal() instanceof UserDetails) {
33 |                 UserDetails springSecurityUser = (UserDetails) authentication.getPrincipal();
34 |                 username = springSecurityUser.getUsername();
35 | 
36 |             } else if (authentication.getPrincipal() instanceof String) {
37 |                 username = (String) authentication.getPrincipal();
38 | 
39 |             } else {
40 |                 LOGGER.debug("User details not found in Security Context");
41 |             }
42 |         } else {
43 |             LOGGER.debug("Request not authenticated, hence no user name available");
44 |         }
45 | 
46 |         return username;
47 |     }
48 | 
49 |     public static Set<String> getUserRoles() {
50 |         SecurityContext securityContext = SecurityContextHolder.getContext();
51 |         Authentication authentication = securityContext.getAuthentication();
52 |         Set<String> roles = new HashSet<>();
53 | 
54 |         if (null != authentication) {
55 |             authentication.getAuthorities()
56 |                     .forEach(e -> roles.add(e.getAuthority()));
57 |         }
58 |         return roles;
59 |     }
60 | }
61 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/controller/SupplierController.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller;
 2 | 
 3 | import com.microservices.apigateway.security.controller.validator.EventValidator;
 4 | import com.microservices.apigateway.security.model.Event;
 5 | import io.micrometer.core.annotation.Timed;
 6 | import io.swagger.annotations.ApiOperation;
 7 | import org.slf4j.Logger;
 8 | import org.slf4j.LoggerFactory;
 9 | import org.springframework.http.MediaType;
10 | import org.springframework.http.ResponseEntity;
11 | import org.springframework.security.access.prepost.PreAuthorize;
12 | import org.springframework.validation.annotation.Validated;
13 | import org.springframework.web.bind.WebDataBinder;
14 | import org.springframework.web.bind.annotation.*;
15 | import javax.validation.Valid;
16 | 
17 | @RestController
18 | @RequestMapping(path = "/api", produces = { MediaType.APPLICATION_JSON_VALUE, MediaType.APPLICATION_XML_VALUE })
19 | @Validated //required for @Valid on method parameters such as @RequesParam, @PathVariable, @RequestHeader
20 | public class SupplierController extends BaseController {
21 | 
22 |     private static Logger logger = LoggerFactory.getLogger(SupplierController.class);
23 | 
24 |     @Timed(value = "supplier.sync", description = "Sync Operation")
25 |     @RequestMapping(path = "/v1/sync", method = RequestMethod.POST, consumes = { MediaType.APPLICATION_JSON_VALUE, MediaType.APPLICATION_XML_VALUE })
26 |     @ApiOperation(
27 |             value = "Sync",
28 |             notes = "Sync Supplier",
29 |             response = Event.class)
30 |     @PreAuthorize("hasAuthority('ROLE_SUPPLIER_MAINTAINER')")
31 |     public ResponseEntity<Event> sync(@Valid @RequestBody Event event) {
32 |         Event e = new Event("HELLO: " + event.getStatus());
33 |         return ResponseEntity.ok().body(e);
34 |     }
35 | 
36 |     @InitBinder("event")
37 |     protected void initBinder(WebDataBinder binder) {
38 |         binder.addValidators(new EventValidator());
39 |     }
40 | }
41 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/controller/error/Error.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.error;
 2 | 
 3 | public class Error {
 4 | 
 5 |     private String field;
 6 |     private String value;
 7 |     private String message;
 8 | 
 9 |     public Error(String field, String value, String message) {
10 |         this.field = field;
11 |         this.value = value;
12 |         this.message = message;
13 |     }
14 | 
15 |     public String getField() {
16 |         return field;
17 |     }
18 | 
19 |     public void setField(String field) {
20 |         this.field = field;
21 |     }
22 | 
23 |     public String getValue() {
24 |         return value;
25 |     }
26 | 
27 |     public void setValue(String value) {
28 |         this.value = value;
29 |     }
30 | 
31 |     public String getMessage() {
32 |         return message;
33 |     }
34 | 
35 |     public void setMessage(String message) {
36 |         this.message = message;
37 |     }
38 | }
39 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/controller/validator/EventValidator.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.controller.validator;
 2 | 
 3 | import com.microservices.apigateway.security.model.Event;
 4 | import org.springframework.validation.Errors;
 5 | import org.springframework.validation.ValidationUtils;
 6 | import org.springframework.validation.Validator;
 7 | 
 8 | public class EventValidator implements Validator {
 9 | 
10 |     @Override
11 |     public boolean supports(Class<?> clazz) {
12 |         return Event.class.isAssignableFrom(clazz);
13 |     }
14 | 
15 |     @Override
16 |     public void validate(Object target, Errors errors) {
17 |         ValidationUtils.rejectIfEmptyOrWhitespace(errors, "status", "validation.message.field.required");
18 |     }
19 | 
20 | }
21 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/model/BaseModel.java:
--------------------------------------------------------------------------------
1 | package com.microservices.apigateway.security.model;
2 | 
3 | import java.io.Serializable;
4 | 
5 | public class BaseModel implements Serializable { }
6 | 


--------------------------------------------------------------------------------
/supplier/src/main/java/com/microservices/apigateway/security/model/Event.java:
--------------------------------------------------------------------------------
 1 | package com.microservices.apigateway.security.model;
 2 | 
 3 | import javax.persistence.*;
 4 | import java.util.Objects;
 5 | 
 6 | @Entity
 7 | public class Event extends BaseModel {
 8 | 
 9 |     @Id
10 |     @GeneratedValue(strategy= GenerationType.AUTO)
11 |     @Column(name="id")
12 |     private Long id;
13 | 
14 |     @Column(name="status", nullable = true)
15 |     private String status;
16 | 
17 |     public Event() { }
18 | 
19 |     public Event(String status) {
20 |         this.status = status;
21 |     }
22 | 
23 |     public Long getId() {
24 |         return id;
25 |     }
26 | 
27 |     public void setId(Long id) {
28 |         this.id = id;
29 |     }
30 | 
31 |     public String getStatus() {
32 |         return status;
33 |     }
34 | 
35 |     public void setStatus(String status) {
36 |         this.status = status;
37 |     }
38 | 
39 |     @Override
40 |     public boolean equals(Object o) {
41 |         if (this == o) return true;
42 |         if (o == null || getClass() != o.getClass()) return false;
43 |         Event event = (Event) o;
44 |         return id.equals(event.id) &&
45 |                 status.equals(event.status);
46 |     }
47 | 
48 |     @Override
49 |     public int hashCode() {
50 |         return Objects.hash(id, status);
51 |     }
52 | }
53 | 


--------------------------------------------------------------------------------
/supplier/src/main/resources/logback.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <com.microservices.apigateway.security.configuration>
 3 |     <include resource="org/springframework/boot/logging/logback/defaults.xml" />
 4 | 
 5 |     <property name="CONSOLE_LOG_PATTERN"
 6 |               value="%clr(%d{yyyy-MM-dd HH:mm:ss.SSS}){faint} %clr(${LOG_LEVEL_PATTERN:-%5p}) %clr([%t]){faint} %clr(%logger){cyan} %clr(:){faint} %m%n${LOG_EXCEPTION_CONVERSION_WORD:-%wEx}" />
 7 | 
 8 |     <include resource="org/springframework/boot/logging/logback/console-appender.xml" />
 9 | 
10 |     <root level="DEBUG">
11 |         <appender-ref ref="CONSOLE" />
12 |     </root>
13 | 
14 |     <logger name="org.springframework.web" level="INFO" />
15 | </com.microservices.apigateway.security.configuration>
16 | 


--------------------------------------------------------------------------------
/supplier/src/main/resources/messages.properties:
--------------------------------------------------------------------------------
1 | # validation messages
2 | validation.message.field.required=field is required and may not be null
3 | validation.message.field.required.middleName=middle name is required
4 | 


--------------------------------------------------------------------------------
/webapp/README.md:
--------------------------------------------------------------------------------
1 | This project was based on https://github.com/mechevarria/ocp-sso
2 | originally created by Mike Echevarria (https://github.com/mechevarria)
3 | 
4 | External References:
5 | https://medium.com/@alexishevia/using-cors-in-express-cac7e29b005b#targetText=The%20easiest%20way%20to%20get,using%20the%20cors%20npm%20module.&targetText=The%20Access%2DControl%2DAllow%2D,allows%20access%20from%20any%20origin).
6 | 
7 | 


--------------------------------------------------------------------------------
/webapp/build-local.sh:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env bash
2 | 
3 | npm run build
4 | 


--------------------------------------------------------------------------------
/webapp/envsub.js:
--------------------------------------------------------------------------------
 1 | 'use strict';
 2 | 
 3 | const envsub = require('envsub');
 4 | 
 5 | const path = `${__dirname}/dist/assets/js`;
 6 | const templateFile = `${path}/env.template.js`;
 7 | const outputFile = `${path}/env.js`;
 8 | const options = {};
 9 | 
10 | envsub({templateFile, outputFile, options}).then((envobj) => {
11 |   // output file created
12 |   console.log(envobj.templateFile);
13 |   console.log(envobj.templateContents);
14 |   console.log(envobj.outputFile);
15 |   console.log(envobj.outputContents);
16 | }).catch((err) => {
17 |   console.error(err.message);
18 | });
19 | 


--------------------------------------------------------------------------------
/webapp/gen-cert.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | 
3 | openssl req -nodes -new -x509 -keyout server.key -out server.cert
4 | 


--------------------------------------------------------------------------------
/webapp/ocp-hotdeploy.sh:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env bash
 2 | 
 3 | # https://docs.okd.io/latest/dev_guide/copy_files_to_container.html
 4 | pod_name=$(oc get pods --selector app=nodejs-app | { read line1 ; read line2 ; echo "$line2" ; } | awk '{print $1;}')
 5 | 
 6 | # directory on pod
 7 | deploy_dir=/opt/app-root/src/dist
 8 | 
 9 | # exploded war directory
10 | dist_dir=$(pwd)/dist/
11 | 
12 | oc rsync ${dist_dir} ${pod_name}:${deploy_dir} --watch
13 | 


--------------------------------------------------------------------------------
/webapp/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "name": "nodejs-webapp",
 3 |   "description": "node.js Angular client for remote REST FUSE API",
 4 |   "author": "Raphael Abreu <rabreu@redhat.com>",
 5 |   "version": "1.0.0",
 6 |   "license": "MIT",
 7 |   "repository": {
 8 |     "type": "git",
 9 |     "url": "git+https://github.com/aelkz/microservices-security.git"
10 |   },
11 |   "ng": "node_modules/@angular/cli/bin/ng",
12 |   "scripts": {
13 |     "ng": "$npm_package_ng",
14 |     "build": "$npm_package_ng build --delete-output-path --prod",
15 |     "buildDev": "$npm_package_ng build --watch",
16 |     "start": "node envsub.js && node server.js"
17 |   },
18 |   "dependencies": {
19 |     "@angular-devkit/build-angular": "~0.803.6",
20 |     "@angular/animations": "^8.2.8",
21 |     "@angular/cli": "^8.3.6",
22 |     "@angular/common": "^8.2.8",
23 |     "@angular/compiler": "^8.2.8",
24 |     "@angular/compiler-cli": "^8.2.8",
25 |     "@angular/core": "^8.2.8",
26 |     "@angular/forms": "^8.2.8",
27 |     "@angular/http": "^7.2.15",
28 |     "@angular/language-service": "^8.2.8",
29 |     "@angular/platform-browser": "^8.2.8",
30 |     "@angular/platform-browser-dynamic": "^8.2.8",
31 |     "@angular/router": "^8.2.8",
32 |     "@coreui/coreui": "^2.1.12",
33 |     "@coreui/icons": "^0.4.1",
34 |     "@fortawesome/angular-fontawesome": "^0.5.0",
35 |     "@fortawesome/fontawesome-svg-core": "^1.2.25",
36 |     "@fortawesome/free-brands-svg-icons": "^5.11.2",
37 |     "@fortawesome/free-solid-svg-icons": "^5.11.2",
38 |     "@types/datatables.net": "^1.10.17",
39 |     "@types/jquery": "^3.3.31",
40 |     "@types/node": "^12.7.8",
41 |     "angular-datatables": "^7.0.0",
42 |     "chart.js": "^2.8.0",
43 |     "codelyzer": "^5.1.2",
44 |     "compression": "^1.7.4",
45 |     "core-js": "^3.2.1",
46 |     "cors": "^2.8.5",
47 |     "datatables.net": "^1.10.19",
48 |     "datatables.net-bs4": "^1.10.19",
49 |     "datatables.net-responsive": "^2.2.3",
50 |     "datatables.net-responsive-bs4": "^2.2.3",
51 |     "envsub": "^3.0.9",
52 |     "express": "^4.17.1",
53 |     "http-proxy-middleware": "^0.20.0",
54 |     "jquery": "^3.5.0",
55 |     "keycloak-angular": "~6.1.0",
56 |     "morgan": "~1.9.1",
57 |     "ng2-charts": "^1.6.0",
58 |     "ngx-bootstrap": "~5.1.2",
59 |     "ngx-toastr": "^11.0.0",
60 |     "npm-sort": "0.0.4",
61 |     "rxjs": "~6.5.3",
62 |     "simple-line-icons": "^2.4.1",
63 |     "ts-node": "^8.4.1",
64 |     "tslib": "^1.10.0",
65 |     "tslint": "~5.20.0",
66 |     "zone.js": "^0.10.2"
67 |   },
68 |   "bugs": {
69 |     "url": "https://github.com/aelkz/microservices-security/issues"
70 |   },
71 |   "homepage": "https://github.com/aelkz/microservices-security#readme",
72 |   "main": "envsub.js",
73 |   "devDependencies": {
74 |     "typescript": "3.5.3"
75 |   },
76 |   "keywords": []
77 | }
78 | 


--------------------------------------------------------------------------------
/webapp/run-local.sh:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env bash
 2 | 
 3 | export PORT=4200
 4 | export AUTH_URL="https://sso73.apps.arekkusu.io/auth"
 5 | export AUTH_REALM="3scale-api"
 6 | export AUTH_CLIENT_ID="8f314bfa"
 7 | export KEYCLOAK="true"
 8 | 
 9 | export INTEGRATION_URI="https://auth-integration-api-production.apps.arekkusu.io"
10 | export PRODUCT_PATH="/product"
11 | export STOCK_PATH="/stock"
12 | export SUPPLIER_PATH="/supplier"
13 | 
14 | npm run start
15 | 


--------------------------------------------------------------------------------
/webapp/s2i-build.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # https://github.com/openshift/source-to-image/blob/master/docs/cli.md#s2i-build
 4 | 
 5 | source_location=.
 6 | builder_image=rhscl/nodejs-8-rhel7
 7 | tag=s2i-build/nodejs-web
 8 | flags=-c
 9 | 
10 | s2i build ${source_location} ${builder_image} ${tag} ${flags}
11 | 


--------------------------------------------------------------------------------
/webapp/s2i-run.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | tag=s2i-build/nodejs-web
 4 | 
 5 | if [[ "$1" = "local" ]] ; then
 6 |   port=4200
 7 |   npm_run=local
 8 | else
 9 |   port=8080
10 |   npm_run=start
11 | fi
12 | 
13 | docker run \
14 | -p ${port}:${port} \
15 | -e NPM_RUN=${npm_run} \
16 | ${tag}
17 | 


--------------------------------------------------------------------------------
/webapp/server.cert:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIIDyDCCArCgAwIBAgIJALwGnPPItwoYMA0GCSqGSIb3DQEBCwUAMHkxCzAJBgNV
 3 | BAYTAlVTMQswCQYDVQQIDAJWQTEPMA0GA1UEBwwGTWNMZWFuMRAwDgYDVQQKDAdS
 4 | ZWQgSGF0MRYwFAYDVQQLDA1QdWJsaWMgU2VjdG9yMSIwIAYJKoZIhvcNAQkBFhNt
 5 | ZWNoZXZhckByZWRoYXQuY29tMB4XDTE4MDgwMTEzMDUyMloXDTE4MDgzMTEzMDUy
 6 | MloweTELMAkGA1UEBhMCVVMxCzAJBgNVBAgMAlZBMQ8wDQYDVQQHDAZNY0xlYW4x
 7 | EDAOBgNVBAoMB1JlZCBIYXQxFjAUBgNVBAsMDVB1YmxpYyBTZWN0b3IxIjAgBgkq
 8 | hkiG9w0BCQEWE21lY2hldmFyQHJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUA
 9 | A4IBDwAwggEKAoIBAQDEZ/LwNSOBG508r5F5sqEnyhpJAiYNYenJxlJcLSJavQDH
10 | V2ZWLihxN/1nwVPrRuyJCwyjMbsIPHEDXoHHwIPOABD4lL0aHFAsztAhp1q54OfB
11 | nL8u28VN8EJEf+EgIIOHU+N1zpDzpXhvp0MaxwkEJwmv4vZXhEbwlLC2NHGjicXA
12 | ucg4ESLT13eQySqfbmF4YZD3NHEv8mdEfr6R8hzm2yyvX3GYwTBey+i3FATReEV1
13 | Md5n25KgDmrzFFkOTmEmotOHCfSPM6AHSIJQJmMFOg0WandpEgpV/5VwyMCTerB3
14 | sHIU1S2SbMmpDrXpOpMmE2/yH2uJ0x/Juq5Y2IWTAgMBAAGjUzBRMB0GA1UdDgQW
15 | BBQX79V9G4ckn8M4wK3JI4a0UyF9YDAfBgNVHSMEGDAWgBQX79V9G4ckn8M4wK3J
16 | I4a0UyF9YDAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQBHnTrI
17 | wHOAFAsPbstAUc493yvtf04H+2IH5aDwSuJ62dfhdl9G1G3j9zGLN9iaHnGQw0ZC
18 | Wi1w7WFZJ63ZHOzlIRWS8OszQZbBfYgBSwextYMW4/VYohl6WApUMqvOszU/cjOc
19 | fqmxoBIwHa3YThXGVKlAHpo5MkKSPAFCvobrAsoQMyLMBdmeFD+JvJmQ5MIDkG3S
20 | R1yjiVMDNnrF3y5ol6fPhIBLKlAKW0U14xg6IsLbqi8KNBdlMhok+l+X3ACDjG/T
21 | PUhfa+XN+hB0uNd+A0JiIPeGyCdNLaiDcbcplsHYv5KKiinjsreHjBsIqQN8eGQe
22 | zwA/FY3y7vp+18pn
23 | -----END CERTIFICATE-----
24 | 


--------------------------------------------------------------------------------
/webapp/server.js:
--------------------------------------------------------------------------------
 1 | 'use strict';
 2 | 
 3 | let compression = require('compression');
 4 | let express = require('express');
 5 | let logger = require('morgan');
 6 | let https = require('https');
 7 | let http = require('http');
 8 | let fs = require('fs');
 9 | let path = require('path');
10 | let proxy = require('http-proxy-middleware');
11 | let cors = require('cors');
12 | 
13 | let app = express();
14 | //app.use(cors());
15 | 
16 | let allowCrossDomain = function(req, res, next) {
17 |   res.header('Access-Control-Allow-Origin', '*');
18 |   res.header('Access-Control-Allow-Methods', 'GET,PUT,POST,DELETE,OPTIONS');
19 |   res.header('Access-Control-Allow-Headers', 'Access-Control-Allow-Headers", "Authorization, Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, Content-Length');
20 |   next();
21 | };
22 | 
23 | app.use(allowCrossDomain);
24 | 
25 | app.set('port', process.env.PORT || 8080);
26 | app.set('integration-com.microservices.apigateway.security.service', process.env.INTEGRATION_URI || 'http://auth-integration-api/v1/:8080');
27 | 
28 | app.use(compression());
29 | app.use(logger('combined'));
30 | app.use(express.static(path.join(__dirname, 'dist')));
31 | 
32 | // proxy for auth-integration-api backend
33 | /*
34 | app.use(
35 |   '/api/*',
36 |   proxy({
37 |     target: app.get('integration-com.microservices.apigateway.security.service'),
38 |     secure: false,
39 |     changeOrigin: true,
40 |     logLevel: 'debug',
41 |     pathRewrite: {
42 |       '^/integration-com.microservices.apigateway.security.service': ''
43 |     }
44 |   })
45 | );
46 | */
47 | 
48 | app.use((req, res) => {
49 |   // respond with index to process links
50 |   if (req.accepts('html')) {
51 |     res.sendFile(__dirname + '/dist/index.html');
52 |     return;
53 |   }
54 | 
55 |   // otherwise resource was not found
56 |   res.status(404);
57 |   if (req.accepts('json')) {
58 |     res.send({error: 'Not found'});
59 |     return;
60 |   }
61 | 
62 |   res.type('txt').send('Not found');
63 | });
64 | 
65 | const certConfig = {
66 |   key: fs.readFileSync('server.key'),
67 |   cert: fs.readFileSync(('server.cert'))
68 | };
69 | 
70 | // for local ssl
71 | if(app.get('port') !== 8080) {
72 |   https.createServer(certConfig, app)
73 |     .listen(app.get('port'), () => {
74 |       console.log('Express secure server listening on port ' + app.get('port'));
75 |     });
76 | } else {
77 |   // on openshift let route control ssl
78 |   http.createServer(app)
79 |     .listen(app.get('port'), () => {
80 |       console.log('Express server listening on port ' + app.get('port'));
81 |     });
82 | }
83 | 


--------------------------------------------------------------------------------
/webapp/server.key:
--------------------------------------------------------------------------------
 1 | -----BEGIN PRIVATE KEY-----
 2 | MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQDEZ/LwNSOBG508
 3 | r5F5sqEnyhpJAiYNYenJxlJcLSJavQDHV2ZWLihxN/1nwVPrRuyJCwyjMbsIPHED
 4 | XoHHwIPOABD4lL0aHFAsztAhp1q54OfBnL8u28VN8EJEf+EgIIOHU+N1zpDzpXhv
 5 | p0MaxwkEJwmv4vZXhEbwlLC2NHGjicXAucg4ESLT13eQySqfbmF4YZD3NHEv8mdE
 6 | fr6R8hzm2yyvX3GYwTBey+i3FATReEV1Md5n25KgDmrzFFkOTmEmotOHCfSPM6AH
 7 | SIJQJmMFOg0WandpEgpV/5VwyMCTerB3sHIU1S2SbMmpDrXpOpMmE2/yH2uJ0x/J
 8 | uq5Y2IWTAgMBAAECggEAY7ZCaCESPWG/mieoO5isqH66iYZFu1WSU5YUCif/4QFD
 9 | e/CrS+VzMseyJxLHgBMp0wmBCPkeczf8SDGawcbDI7p04z7gInltWtJEaFGGhgfg
10 | oTLq/OcmbEMl4ZDqwly/adz1BcIxZQEE++p27wlNUoZfLKSVXCkTuuBCNr65UsSj
11 | oE9PiZNUiZJ79lXcsRpokAI67dDy0Qv7mmvKKKtd6Tw9eZK4F0XVHk0cQTtFNbFG
12 | jP8ekVbYJLIin3g7nJ8liIB+UAlshcRGRHf5PQKyqOfRepYvRoBNhN0Q4cutbn7I
13 | PCcqUK8XuIAZBTYAk75vlE5EE7AoRlLgKw2P2g/fQQKBgQDkhSAACTITZmmFTymy
14 | teHoVF2lzdVw+2Jn/3+3HlZsN6dMFpp+KBc8w/iQwqsu9lxeCiXGsq83z9/PVIJX
15 | VibHif6qYseRcNMrGIBRq8qmxb5bEh5/ENqA/By2klW/avPdrGEZQJiD/wcsXeRZ
16 | 9a9vNZbkAwzVrLmjoQPrVqQqVwKBgQDcBjYg3+BeDgeKaOE+3EKYsuuk3g/G4kZn
17 | vNhWouZtP4dKuzzYCJfh+AAC9mID1CpGWLjoH55myfKZRJ56cxIZ9AAhYcDIUYV7
18 | FRTnK68E+eiwFxK2E8Xg1xDOgSk1RvaNZqzL708/lY19Pr0+BeTcBit6YExKuAUv
19 | HDxu3kJxJQKBgQCYGferrnMzMHZJseA6QA+GWSkf4/oOQnREbm4ujzXMv9pNrbnV
20 | AJA+9N1sVPYlwvrF6REtyN8RUf5Q/Jno0cHsDHCCLk9RAfy78YnvUl4HVRUXft7n
21 | ims1cRkXeB001FZPFJ5odXNOYCABKtmD+yBy8ANn7pPLYTUKsXBvYvLP7wKBgE21
22 | 1+pWiB1QITOuhVe5XcAm+Xl6gOICy1EabuJymKYfWP55ES1QI6zI9eAV+1pU1jWQ
23 | YoaBnGW7j/a4OK0Q9WS7PEyOBRP7TwTA1mgrkp5UUe3XyGEMrMgTzbjR/6b0kGIy
24 | 0Hca58eSX63LufUtCb74YuTPHEMLqbEQ7PtPfvINAoGAA01hzOaAZPo0zVB2fOne
25 | fmJc//F8JenjKHdXtJZYglLUTryoyJdr5tby2zxNcGrdUeVZHuFP3OpLULP3XQ4W
26 | 19PN8W1XixT5iIvVedg82Y4bvAtTcbDPOFLXpfbPe7+A1pJlc+qjDGpmdCsOPiuL
27 | HPfiYSTxrAlCqwbEjcNef8A=
28 | -----END PRIVATE KEY-----
29 | 


--------------------------------------------------------------------------------
/webapp/src/app/app-animations.ts:
--------------------------------------------------------------------------------
 1 | import {
 2 |     sequence,
 3 |     trigger,
 4 |     animate,
 5 |     style,
 6 |     group,
 7 |     query,
 8 |     transition,
 9 |     animateChild,
10 |     state,
11 |     animation,
12 |     useAnimation,
13 |     stagger
14 | } from '@angular/animations';
15 | 
16 | const reusable = animation(
17 |     [
18 |         style({
19 |             opacity: '{{opacity}}',
20 |             transform: 'scale({{scale}}) translate3d({{x}}, {{y}}, {{z}})'
21 |         }),
22 |         animate('{{duration}} {{delay}} cubic-bezier(0.0, 0.0, 0.2, 1)', style('*'))
23 |     ],
24 |     {
25 |         params: {
26 |             duration: '200ms',
27 |             delay: '0ms',
28 |             opacity: '0',
29 |             scale: '1',
30 |             x: '0',
31 |             y: '0',
32 |             z: '0'
33 |         }
34 |     }
35 | );
36 | 
37 | export const appAnimations = [
38 |     trigger('animate', [transition('void => *', [useAnimation(reusable)])]),
39 | 
40 |     trigger('fadeInOut', [
41 |         state(
42 |             '0',
43 |             style({
44 |                 opacity: 0,
45 |                 display: 'none'
46 |             })
47 |         ),
48 |         state(
49 |             '1',
50 |             style({
51 |                 opacity: 1,
52 |                 display: 'block'
53 |             })
54 |         ),
55 |         transition('0 => 1', animate('700ms')),
56 |         transition('1 => 0', animate('700ms'))
57 |     ]),
58 | 
59 |     trigger('fadeIn', [
60 |         state(
61 |             '0',
62 |             style({
63 |                 opacity: 0,
64 |                 display: 'none'
65 |             })
66 |         ),
67 |         transition('0 => 1', animate('300ms'))
68 |     ]),
69 | 
70 |     trigger('routerTransition', [
71 |         transition('* <=> *', [
72 |             query(':enter, :leave', style({ position: 'fixed', opacity: 1 })),
73 |             group([
74 |                 query(':enter', [
75 |                     style({ opacity:0 }),
76 |                     animate('1000ms ease-in-out', style({ opacity:1 }))
77 |                 ]),
78 |                 query(':leave', [
79 |                     style({ opacity:1 }),
80 |                     animate('1000ms ease-in-out', style({ opacity:0 }))]),
81 |             ])
82 |         ])
83 |     ])
84 | ];
85 | 


--------------------------------------------------------------------------------
/webapp/src/app/app-init.service.ts:
--------------------------------------------------------------------------------
 1 | import { Injectable } from '@angular/core';
 2 | import { KeycloakService, KeycloakOptions } from 'keycloak-angular';
 3 | 
 4 | @Injectable({
 5 |   providedIn: 'root'
 6 | })
 7 | export class AppInitService {
 8 |   private options: KeycloakOptions;
 9 | 
10 |   // _env is defined in env.js
11 |   constructor(private keycloak: KeycloakService) {
12 |     this.options = {
13 |       config: {
14 |         realm: window['_env'].realm,
15 |         url: window['_env'].url,
16 |         clientId: window['_env'].clientId,
17 |         credentials: {
18 |           secret: window['_env'].clientSecret
19 |         }
20 |       },
21 |       initOptions: {
22 |         onLoad: 'login-required'
23 |       },
24 |       bearerPrefix: 'Bearer'
25 |     };
26 |   }
27 | 
28 |   init(): Promise<any> {
29 |     let promise: Promise<any>;
30 | 
31 |     if (window['_env'].enabled === 'false') {
32 |       console.log('keycloak is not enabled');
33 |       promise = Promise.resolve(true);
34 |     } else {
35 |       promise = this.keycloak.init(this.options);
36 |     }
37 | 
38 |     return promise;
39 |   }
40 | }
41 | 


--------------------------------------------------------------------------------
/webapp/src/app/app.component.html:
--------------------------------------------------------------------------------
1 | <app-header></app-header>
2 | <div class="app-body">
3 |   <app-sidebar></app-sidebar>
4 |   <main class="main">
5 |     <app-breadcrumb></app-breadcrumb>
6 |     <div class="container-fluid"><router-outlet></router-outlet></div>
7 |   </main>
8 | </div>
9 | 


--------------------------------------------------------------------------------
/webapp/src/app/app.component.ts:
--------------------------------------------------------------------------------
1 | import { Component } from '@angular/core';
2 | 
3 | @Component({
4 |   selector: 'app-root',
5 |   templateUrl: './app.component.html'
6 | })
7 | export class AppComponent { }
8 | 


--------------------------------------------------------------------------------
/webapp/src/app/app.module.ts:
--------------------------------------------------------------------------------
 1 | import { BrowserModule } from '@angular/platform-browser';
 2 | import { NgModule, APP_INITIALIZER } from '@angular/core';
 3 | import { AppComponent } from './app.component';
 4 | import { FormsModule } from '@angular/forms';
 5 | import { HttpClientModule } from '@angular/common/http';
 6 | import { RouterModule } from '@angular/router';
 7 | import { AppRoutes } from './app.routes';
 8 | import { ModalModule } from 'ngx-bootstrap/modal';
 9 | import { BsDropdownModule } from 'ngx-bootstrap/dropdown';
10 | import { ProductComponent } from './product/product.component';
11 | import { HeaderComponent } from './header/header.component';
12 | import { HomeComponent } from './home/home.component';
13 | import { FontAwesomeModule } from '@fortawesome/angular-fontawesome';
14 | import { ToastrModule } from 'ngx-toastr';
15 | import { BrowserAnimationsModule } from '@angular/platform-browser/animations';
16 | import { CommonModule } from '@angular/common';
17 | import { ChartsModule } from 'ng2-charts';
18 | import { DataTablesModule } from 'angular-datatables';
19 | import { BreadcrumbComponent } from './breadcrumb/breadcrumb.component';
20 | import { SidebarComponent } from './sidebar/sidebar.component';
21 | import { StatusComponent } from './status/status.component';
22 | import { KeycloakAngularModule } from 'keycloak-angular';
23 | import { AppInitService } from './app-init.service';
24 | import { JsonDatePipe } from './product/json-date.pipe';
25 | import { MaintenanceComponent } from './maintenance/maintenance.component';
26 | 
27 | const pipes = [
28 |   JsonDatePipe
29 | ];
30 | 
31 | export function init(appInitService: AppInitService) {
32 |   return () => appInitService.init();
33 | }
34 | 
35 | @NgModule({
36 |   declarations: [
37 |     AppComponent,
38 |     ProductComponent,
39 |     HomeComponent,
40 |     HeaderComponent,
41 |     BreadcrumbComponent,
42 |     SidebarComponent,
43 |     StatusComponent,
44 |     MaintenanceComponent,
45 |     pipes
46 |   ],
47 |   imports: [
48 |     BrowserModule,
49 |     FormsModule,
50 |     FontAwesomeModule,
51 |     HttpClientModule,
52 |     RouterModule.forRoot(AppRoutes),
53 |     BsDropdownModule.forRoot(),
54 |     ModalModule.forRoot(),
55 |     CommonModule,
56 |     BrowserAnimationsModule,
57 |     ChartsModule,
58 |     DataTablesModule,
59 |     ToastrModule.forRoot({
60 |       maxOpened: 2,
61 |       positionClass: 'toast-bottom-center',
62 |       autoDismiss: true
63 |     }),
64 |     KeycloakAngularModule
65 |   ],
66 |   exports: pipes,
67 |   providers: [
68 |     {
69 |       provide: APP_INITIALIZER,
70 |       useFactory: init,
71 |       multi: true,
72 |       deps: [AppInitService]
73 |     }
74 |   ],
75 |   bootstrap: [AppComponent]
76 | })
77 | export class AppModule {}
78 | 


--------------------------------------------------------------------------------
/webapp/src/app/app.routes.ts:
--------------------------------------------------------------------------------
 1 | import { Routes } from '@angular/router';
 2 | import { HomeComponent } from './home/home.component';
 3 | import { ProductComponent } from './product/product.component';
 4 | import { StatusComponent } from './status/status.component';
 5 | import {MaintenanceComponent} from './maintenance/maintenance.component';
 6 | 
 7 | export const AppRoutes: Routes = [
 8 |   {
 9 |     path: 'home',
10 |     component: HomeComponent,
11 |     data: {
12 |       breadcrumb: 'Home'
13 |     },
14 |     children: [
15 |       {
16 |         path: 'status',
17 |         component: StatusComponent,
18 |         data: {
19 |           breadcrumb: 'Status'
20 |         }
21 |       },
22 |       {
23 |         path: 'maintenance',
24 |         component: MaintenanceComponent,
25 |         data: {
26 |           breadcrumb: 'Maintenance'
27 |         }
28 |       },
29 |       {
30 |         path: 'product',
31 |         component: ProductComponent,
32 |         data: {
33 |           breadcrumb: 'Product'
34 |         }
35 |       }
36 |     ]
37 |   },
38 |   { path: '', redirectTo: 'home', pathMatch: 'full' },
39 |   { path: '**', redirectTo: 'home' }
40 | ];
41 | 


--------------------------------------------------------------------------------
/webapp/src/app/auth.ts:
--------------------------------------------------------------------------------
 1 | import { KeycloakProfile, KeycloakInstance } from 'keycloak-js';
 2 | 
 3 | export class Auth {
 4 |   isLoggedIn?: boolean;
 5 |   instance?: KeycloakInstance;
 6 |   logoutUrl?: string;
 7 |   accountUrl?: string;
 8 |   profile?: KeycloakProfile;
 9 | }
10 | 


--------------------------------------------------------------------------------
/webapp/src/app/breadcrumb/breadcrumb.component.html:
--------------------------------------------------------------------------------
 1 | <ol class="breadcrumb">
 2 |   <li
 3 |     *ngFor="
 4 |       let breadcrumb of (breadcrumbs | async);
 5 |       let last = last;
 6 |       let first = first
 7 |     "
 8 |     class="breadcrumb-item"
 9 |     [ngClass]="{ active: last }"
10 |   >
11 |     <a *ngIf="!last" [routerLink]="[breadcrumb.url]">
12 |       {{ breadcrumb.label }}
13 |     </a>
14 |     <label *ngIf="last"> {{ breadcrumb.label }} </label>
15 |   </li>
16 | </ol>
17 | 


--------------------------------------------------------------------------------
/webapp/src/app/breadcrumb/breadcrumb.component.ts:
--------------------------------------------------------------------------------
 1 | import {Component, OnInit, ViewEncapsulation} from '@angular/core';
 2 | import {ActivatedRoute, NavigationEnd, Router} from '@angular/router';
 3 | import {BreadCrumb} from './breadcrumb';
 4 | import {distinctUntilChanged, filter, map} from 'rxjs/operators';
 5 | 
 6 | @Component({
 7 |   selector: 'app-breadcrumb',
 8 |   templateUrl: './breadcrumb.component.html',
 9 |   encapsulation: ViewEncapsulation.None
10 | })
11 | export class BreadcrumbComponent implements OnInit {
12 |   breadcrumbs = this.router.events.pipe(
13 |     filter(event => event instanceof NavigationEnd),
14 |     distinctUntilChanged(),
15 |     map(event => this.buildBreadCrumb(this.activatedRoute.firstChild))
16 |   );
17 |   title = '';
18 | 
19 |   // Build your breadcrumb starting with the root route of your current activated route
20 |   constructor(private activatedRoute: ActivatedRoute,
21 |               private router: Router) {
22 |   }
23 | 
24 |   ngOnInit() { }
25 | 
26 |   buildBreadCrumb(route: ActivatedRoute, url: string = '',
27 |                   breadcrumbs: Array<BreadCrumb> = []): Array<BreadCrumb> {
28 |     // If no routeConfig is available we are on the root path
29 |     const label = route.routeConfig ? route.routeConfig.data['breadcrumb'] : 'Home';
30 |     const path = route.routeConfig ? route.routeConfig.path : '';
31 |     // In the routeConfig the complete path is not available,
32 |     // so we rebuild it each time
33 |     const nextUrl = `${url}${path}/`;
34 |     const breadcrumb = {
35 |       label: label,
36 |       url: nextUrl
37 |     };
38 |     const newBreadcrumbs = [...breadcrumbs, breadcrumb];
39 |     if (route.firstChild) {
40 |       // If we are not on our current path yet,
41 |       // there will be more children to look after, to build our breadcrumb
42 |       return this.buildBreadCrumb(route.firstChild, nextUrl, newBreadcrumbs);
43 |     } else {
44 |       this.title = label;
45 |     }
46 |     return newBreadcrumbs;
47 |   }
48 | }
49 | 


--------------------------------------------------------------------------------
/webapp/src/app/breadcrumb/breadcrumb.ts:
--------------------------------------------------------------------------------
1 | export interface BreadCrumb {
2 |   label: string;
3 |   url: string;
4 | }
5 | 


--------------------------------------------------------------------------------
/webapp/src/app/header/header.component.css:
--------------------------------------------------------------------------------
 1 | .app-no-caret::after {
 2 |   display: none;
 3 | }
 4 | 
 5 | .app-pointer {
 6 |   cursor: pointer !important;
 7 | }
 8 | 
 9 | .app-underline:hover {
10 |   text-decoration: underline;
11 | }
12 | 
13 | .app-scrollable-menu {
14 |   height: auto;
15 |   max-height: 500px;
16 |   overflow-x: hidden;
17 | }
18 | 


--------------------------------------------------------------------------------
/webapp/src/app/header/header.component.html:
--------------------------------------------------------------------------------
 1 | <header class="app-header navbar">
 2 |   <!-- shown in mobile view -->
 3 |   <button class="navbar-toggler sidebar-toggler d-lg-none mr-auto" type="button" (click)="sidebarService.toggleSidebar()"><span class="navbar-toggler-icon"></span></button>
 4 | 
 5 |   <a class="navbar-brand" routerLink="home">
 6 |     <img class="navbar-brand-full" src="assets/img/Logo-RedHat-A-Color-RGB.svg" width="120" alt="Red Hat logo" />
 7 |     <img class="navbar-brand-minimized" src="assets/img/Logo-RedHat-A-Color-RGB.svg" width="30" height="30" alt="Red Hat Logo" />
 8 |   </a>
 9 | 
10 |   <!-- toggle sidebar -->
11 |   <button class="navbar-toggler sidebar-toggler d-md-down-none" type="button" (click)="sidebarService.toggleSidebar()"><span class="navbar-toggler-icon"></span></button>
12 | 
13 |   <!-- top right menu -->
14 |   <ul class="navbar-nav ml-auto">
15 |     <li class="nav-item dropdown d-none d-sm-block" dropdown placement="bottom right">
16 |       <a class="nav-link dropdown-toggle app-no-caret" href role="button" aria-haspopup="true" aria-expanded="false" dropdownToggle (click)="(false)">
17 |         <i class="icon-bell"></i> <span class="badge badge-pill badge-info" *ngIf="messages.length > 0">{{ messages.length }}</span>
18 |       </a>
19 |       <div *dropdownMenu class="dropdown-menu dropdown-menu-right app-scrollable-menu" [@animate]="{ value: '*', params: { opacity: '0', y: '50px', delay: '500ms' } }">
20 |         <div class="dropdown-header text-center app-pointer" (click)="clear()"><strong class="app-underline">Clear Messages</strong></div>
21 |         <a class="dropdown-item" *ngFor="let item of messages"> <fa-icon [icon]="item.className"></fa-icon> {{ item.text }} </a>
22 |       </div>
23 |     </li>
24 |     <li class="nav-item dropdown" dropdown placement="bottom right">
25 |       <a class="nav-link dropdown-toggle mr-2" href role="button" aria-haspopup="true" aria-expanded="false" dropdownToggle (click)="(false)">
26 |         <i class="icon-user mr-1"></i>
27 |       </a>
28 |       <div class="dropdown-menu dropdown-menu-right" aria-labelledby="navbarDropdown" *dropdownMenu>
29 |         <div class="dropdown-header text-center">
30 |           <strong>{{ username }}</strong>
31 |         </div>
32 |         <a class="dropdown-item app-pointer">
33 |           <li (click)="doAccount()"><fa-icon [icon]="accountIcon" class="mr-2"></fa-icon> Account</li>
34 |         </a>
35 |         <a class="dropdown-item app-pointer">
36 |           <li (click)="doLogout()"><fa-icon [icon]="logoutIcon" class="mr-2"></fa-icon> Logout</li>
37 |         </a>
38 |       </div>
39 |     </li>
40 |   </ul>
41 | </header>
42 | 


--------------------------------------------------------------------------------
/webapp/src/app/header/header.component.ts:
--------------------------------------------------------------------------------
 1 | import { Component, OnInit, Renderer2, HostListener } from '@angular/core';
 2 | import { MessageItem } from '../message/message-item';
 3 | import { IconDefinition, faLock, faShieldAlt } from '@fortawesome/free-solid-svg-icons';
 4 | import { MessageHistoryService } from '../message/message-history.service';
 5 | import { KeycloakService } from 'keycloak-angular';
 6 | import { SidebarService } from '../sidebar/sidebar.service';
 7 | 
 8 | @Component({
 9 |   styleUrls: ['./header.component.css'],
10 |   selector: 'app-header',
11 |   templateUrl: './header.component.html'
12 | })
13 | export class HeaderComponent implements OnInit {
14 |   accountUrl: string;
15 |   isLoggedIn: boolean = false;
16 |   logoutIcon: IconDefinition = faLock;
17 |   accountIcon: IconDefinition = faShieldAlt;
18 |   sidebarVisible: boolean = true;
19 |   username: string = 'Guest';
20 |   messages: MessageItem[];
21 | 
22 |   constructor(private messageHistoryService: MessageHistoryService, public sidebarService: SidebarService, private keycloak: KeycloakService) {
23 |     // hide sidebar by default on mobile
24 |     this.checkForMobile();
25 |   }
26 | 
27 |   @HostListener('window:resize', ['$event'])
28 |   checkForMobile() {
29 |     if (window.innerWidth < 640) {
30 |       this.sidebarService.toggleSidebar();
31 |     }
32 |   }
33 | 
34 |   doLogout(): void {
35 |     if (this.isLoggedIn) {
36 |       this.keycloak.logout();
37 |     }
38 |   }
39 | 
40 |   doAccount(): void {
41 |     if (this.isLoggedIn) {
42 |       window.open(this.accountUrl, '_blank');
43 |     }
44 |   }
45 | 
46 |   clear() {
47 |     this.messageHistoryService.clear();
48 |   }
49 | 
50 |   ngOnInit(): void {
51 |     this.messages = this.messageHistoryService.getHistory();
52 | 
53 |     this.keycloak.isLoggedIn().then(isLoggedIn => {
54 |       if (isLoggedIn) {
55 |         this.isLoggedIn = true;
56 |         this.username = this.keycloak.getUsername();
57 | 
58 |         const instance = this.keycloak.getKeycloakInstance();
59 |         this.accountUrl = `${instance.authServerUrl}/realms/${instance.realm}/account`;
60 |       }
61 |     });
62 |   }
63 | }
64 | 


--------------------------------------------------------------------------------
/webapp/src/app/home/home.component.html:
--------------------------------------------------------------------------------
 1 | <div *ngIf="route.children.length === 0">
 2 |   <div class="card-deck">
 3 |     <div class="card">
 4 |       <div class="card-body">
 5 |         <h4 class="card-title">Welcome {{ fullName }} !</h4>
 6 |         <p class="card-text">
 7 |           This application was created using the <a target="_blank" href="https://angular.io/" role="button"> Angular </a> and
 8 |           <a target="_blank" href="https://getbootstrap.com/" role="button"> Bootstrap </a> frameworks.
 9 |         </p>
10 |         <p class="card-text">
11 |           <a target="_blank" href="https://angular.io/" role="button"> <img src="assets/img/angular.svg" height="70" alt="angular" /> </a> &nbsp;&nbsp;
12 |           <a target="_blank" href="https://getbootstrap.com/" role="button"> <img src="assets/img/bootstrap.svg" height="50" alt="bootstrap" /> </a>
13 |         </p>
14 |       </div>
15 |     </div>
16 |     <div class="card">
17 |       <div class="card-body">
18 |         <h4 class="card-title">Runtime Frameworks</h4>
19 |         <p class="card-text">
20 |           This application runs natively on the
21 |           <a target="_blank" href="https://www.openshift.com/products/container-platform/" role="button"> Openshift Container Platform </a> as a
22 |           <a target="_blank" href="https://nodejs.org" role="button"> Node.js </a> application
23 |         </p>
24 |         <p class="card-text">
25 |           <a target="_blank" href="https://www.openshift.com/products/container-platform/" role="button">
26 |             <img src="assets/img/openshift.svg" height="50" alt="openshift" />
27 |           </a>
28 |           &nbsp;&nbsp; <a target="_blank" href="https://nodejs.org" role="button"> <img src="assets/img/nodejs.svg" height="55" alt="nodejs" /> </a>
29 |         </p>
30 |       </div>
31 |     </div>
32 |   </div>
33 | 
34 |   <p>
35 |     &nbsp;
36 |   </p>
37 | 
38 |   <div class="card-deck mb-3">
39 |     <div class="card">
40 |       <div class="card-header">Use Case Scenarios</div>
41 |       <div class="card-body">
42 |         <div class="card-text text-center">
43 |           <img src="assets/img/02.png" height="45%" width="45%" alt="use-case" />
44 |         </div>
45 |       </div>
46 |     </div>
47 |   </div>
48 | 
49 | </div>
50 | <router-outlet></router-outlet>
51 | 


--------------------------------------------------------------------------------
/webapp/src/app/home/home.component.ts:
--------------------------------------------------------------------------------
 1 | import {Component, OnInit} from '@angular/core';
 2 | import {ActivatedRoute} from '@angular/router';
 3 | import { KeycloakService } from 'keycloak-angular';
 4 | 
 5 | @Component({
 6 |   selector: 'app-home',
 7 |   templateUrl: './home.component.html'
 8 | })
 9 | export class HomeComponent implements OnInit {
10 |   fullName: string;
11 | 
12 |   constructor(public route: ActivatedRoute, private keycloak: KeycloakService) {
13 |     this.fullName = '';
14 |   }
15 | 
16 |   ngOnInit() {
17 |     this.keycloak.isLoggedIn().then(isLoggedIn => {
18 |       if (isLoggedIn) {
19 |         this.keycloak.loadUserProfile().then(profile => {
20 |           this.fullName = `${profile.firstName} ${profile.lastName}`;
21 |         });
22 |       }
23 |     });
24 |   }
25 | 
26 | }
27 | 


--------------------------------------------------------------------------------
/webapp/src/app/maintenance/maintenance.component.html:
--------------------------------------------------------------------------------
 1 | <div class="card-deck mb-3">
 2 |   <div class="card">
 3 |     <div class="card-header">Stock Maintenance</div>
 4 |     <div class="card-body">
 5 |       <div class="card-text">
 6 |         <p>Call stock-api maintenance</p>
 7 |         <p>ROLE: <b>STOCK_MAINTAINER</b></p>
 8 |         <p>
 9 |           Secured by Auth Integration API? <b>true</b><br>
10 |           Has it's own 3scale com.microservices.apigateway.security.service? (needs additional 3scale authentication) <b>false</b><br>
11 |           Is managed by Keycloak? <b>false</b><br>
12 |         </p>
13 |         <button class="btn btn-lg btn-danger" (click)="getStockMaintenance()" *ngIf="loadingStockMaintenanceAPI" [@fadeInOut]>
14 |           <fa-icon [icon]="circleIcon" class="mr-1" [spin]="true"></fa-icon>Stock Maintenance
15 |         </button>
16 |         <button class="btn btn-lg btn-success" (click)="getStockMaintenance()" *ngIf="!loadingStockMaintenanceAPI">
17 |           <fa-icon [icon]="cogIcon" class="mr-1"></fa-icon>Stock Maintenance
18 |         </button>
19 |       </div>
20 |     </div>
21 |   </div>
22 | 
23 |   <div class="card">
24 |     <div class="card-header">Supplier Maintenance</div>
25 |     <div class="card-body">
26 |       <div class="card-text">
27 |         <p>Call supplier-api maintenance</p>
28 |         <p>ROLE: <b>SUPPLIER_MAINTAINER</b></p>
29 |         <p>
30 |           Secured by Auth Integration API? <b>true</b><br>
31 |           Has it's own 3scale com.microservices.apigateway.security.service? (needs additional 3scale authentication) <b>true</b><br>
32 |           Is managed by Keycloak? <b>true</b><br>
33 |         </p>
34 |         <button class="btn btn-lg btn-danger" (click)="getSupplierMaintenance()" *ngIf="loadingSupplierMaintenanceAPI" [@fadeInOut]>
35 |           <fa-icon [icon]="circleIcon" class="mr-1" [spin]="true"></fa-icon>Supplier Maintenance
36 |         </button>
37 |         <button class="btn btn-lg btn-success" (click)="getSupplierMaintenance()" *ngIf="!loadingSupplierMaintenanceAPI">
38 |           <fa-icon [icon]="cogIcon" class="mr-1"></fa-icon>Supplier Maintenance
39 |         </button>
40 |       </div>
41 |     </div>
42 |   </div>
43 | </div>
44 | 
45 | <div class="card-deck">
46 |   <div class="card">
47 |     <div [ngClass]="
48 |     {
49 |       'card-header' : true,
50 |       'http_success' : isSuccess(),
51 |       'http_error' : isError(),
52 |       'http_loading' : isLoading()
53 |     }">HTTP Response</div>
54 |     <div class="card-body">
55 |       <div class="card-text">
56 |         <pre>{{ response | json }}</pre>
57 |       </div>
58 |     </div>
59 |   </div>
60 | </div>
61 | 


--------------------------------------------------------------------------------
/webapp/src/app/maintenance/maintenance.service.ts:
--------------------------------------------------------------------------------
 1 | import {Injectable} from '@angular/core';
 2 | import {HttpClient, HttpHeaders, HttpResponse} from '@angular/common/http';
 3 | import {MessageService} from '../message/message.service';
 4 | import {Observable, of} from 'rxjs';
 5 | import {catchError} from 'rxjs/operators';
 6 | import {Config} from 'codelyzer';
 7 | 
 8 | @Injectable({
 9 |   providedIn: 'root'
10 | })
11 | export class MaintenanceService {
12 |     private maintenanceAPI = window['_env'].integration_uri + '/api/v1';
13 | 
14 |     constructor(private messageService: MessageService, private http: HttpClient) { }
15 | 
16 |     getStockMaintenance(): Observable<HttpResponse<Config>> {
17 |         return this.http.get<Config>(`${this.maintenanceAPI}${window['_env'].stock_path}/maintenance`, {observe: 'response'})
18 |         .pipe(
19 |             catchError(error => {
20 |                 this.messageService.error(`getStockMaintenance() ${error.message}`);
21 |                 return of(error);
22 |             })
23 |         );
24 |     }
25 | 
26 |     getSupplierMaintenance(): Observable<HttpResponse<Config>> {
27 |         return this.http.get<Config>(`${this.maintenanceAPI}${window['_env'].supplier_path}/maintenance`, {observe: 'response'})
28 |         .pipe(
29 |             catchError(error => {
30 |                 this.messageService.error(`getSupplierMaintenance() ${error.message}`);
31 |                 return of(error);
32 |             })
33 |         );
34 |     }
35 | 
36 | }
37 | 


--------------------------------------------------------------------------------
/webapp/src/app/message/message-history.service.ts:
--------------------------------------------------------------------------------
 1 | import { Injectable } from '@angular/core';
 2 | import { MessageItem } from './message-item';
 3 | import { MessageService } from './message.service';
 4 | 
 5 | @Injectable({
 6 |   providedIn: 'root'
 7 | })
 8 | export class MessageHistoryService {
 9 |   messageHistory: MessageItem[];
10 | 
11 |   constructor(private messageService: MessageService) {
12 |     this.messageHistory = [];
13 |     messageService.newMessage$.subscribe(msg => this.messageHistory.push(msg));
14 |   }
15 | 
16 |   public clear(): void {
17 |     this.messageHistory.length = 0;
18 |   }
19 | 
20 |   getHistory(): MessageItem[] {
21 |     return this.messageHistory;
22 |   }
23 | }
24 | 


--------------------------------------------------------------------------------
/webapp/src/app/message/message-item.ts:
--------------------------------------------------------------------------------
 1 | import { IconDefinition } from '@fortawesome/free-solid-svg-icons';
 2 | 
 3 | export class MessageItem {
 4 |   className: IconDefinition;
 5 |   text: string;
 6 | 
 7 |   constructor(className: IconDefinition, text: string) {
 8 |     this.className = className;
 9 |     this.text = text;
10 |   }
11 | }
12 | 


--------------------------------------------------------------------------------
/webapp/src/app/message/message.service.ts:
--------------------------------------------------------------------------------
 1 | import { Injectable } from '@angular/core';
 2 | import { MessageItem } from './message-item';
 3 | import { ToastrService } from 'ngx-toastr';
 4 | import {
 5 |   faCheckCircle,
 6 |   IconDefinition
 7 | } from '@fortawesome/free-solid-svg-icons';
 8 | import { faTimesCircle } from '@fortawesome/free-solid-svg-icons';
 9 | import { faInfoCircle } from '@fortawesome/free-solid-svg-icons';
10 | import { faExclamationCircle } from '@fortawesome/free-solid-svg-icons';
11 | import { Subject } from 'rxjs/internal/Subject';
12 | 
13 | @Injectable({
14 |   providedIn: 'root'
15 | })
16 | export class MessageService {
17 | 
18 |   private successIcon: IconDefinition = faCheckCircle;
19 |   private errorIcon: IconDefinition = faTimesCircle;
20 |   private infoIcon: IconDefinition = faInfoCircle;
21 |   private warningIcon: IconDefinition = faExclamationCircle;
22 |   public newMessage$: Subject<MessageItem> = new Subject();
23 | 
24 |   constructor(private toaster: ToastrService) { }
25 | 
26 |   success(msg: string): void {
27 |     this.toaster.success(msg);
28 |     this.emitMessage(this.successIcon, msg);
29 |   }
30 | 
31 |   error(msg: string): void {
32 |     this.toaster.error(msg);
33 |     this.emitMessage(this.errorIcon, msg);
34 |   }
35 | 
36 |   info(msg: string): void {
37 |     this.toaster.info(msg);
38 |     this.emitMessage(this.infoIcon, msg);
39 |   }
40 | 
41 |   warning(msg: string): void {
42 |     this.toaster.warning(msg);
43 |     this.emitMessage(this.warningIcon, msg);
44 |   }
45 | 
46 |   private emitMessage(icon: IconDefinition, text: string): void {
47 |     const message = new MessageItem(icon, text);
48 | 
49 |     // message history com.microservices.apigateway.security.service will pick up the change
50 |     this.newMessage$.next(message);
51 |   }
52 | }
53 | 


--------------------------------------------------------------------------------
/webapp/src/app/product/deserializable.model.ts:
--------------------------------------------------------------------------------
1 | export interface Deserializable {
2 |     deserialize(input: any): this;
3 | }
4 | 


--------------------------------------------------------------------------------
/webapp/src/app/product/json-date.pipe.ts:
--------------------------------------------------------------------------------
 1 | import { Pipe, PipeTransform } from '@angular/core';
 2 | import {DatePipe} from '@angular/common';
 3 | 
 4 | // see: https://angular.io/api/common/DatePipe#targetText='shortTime'%20%3A%20equivalent%20to%20',01%20AM%20GMT%2B1%20).
 5 | 
 6 | @Pipe({ name: 'jsonDate' })
 7 | export class JsonDatePipe extends DatePipe implements PipeTransform {
 8 | 
 9 |     //     2019-06-15 10:00:00.0
10 |     //     2019, 6, 15, 10, 0
11 | 
12 |     transform(arr: Array<number>) {
13 |         if (arr == undefined) {
14 |             return 'invalid date';
15 |         }
16 | 
17 |         if (arr.length < 5) {
18 |             return 'invalid date';
19 |         }
20 | 
21 |         // new(year, month, date?, hours?, minutes?, seconds?, ms?): Date;
22 |         return super.transform(new Date(arr[0], arr[1], arr[2], arr[3], arr[4]), `dd/MMM/yyyy HH:mm:ss`);
23 |     }
24 | }
25 | 


--------------------------------------------------------------------------------
/webapp/src/app/product/product.component.css:
--------------------------------------------------------------------------------
1 | .app-pointer {
2 |   cursor: pointer !important;
3 | }


--------------------------------------------------------------------------------
/webapp/src/app/product/product.model.ts:
--------------------------------------------------------------------------------
 1 | import {Deserializable} from "./deserializable.model";
 2 | 
 3 | export class Product implements Deserializable {
 4 |   id: number;
 5 |   name: string;
 6 |   description: string;
 7 |   code: string;
 8 |   price: number;
 9 |   active: boolean;
10 |   created: number[];
11 | 
12 |   deserialize(input: any): this {
13 |     Object.assign(this, input);
14 |     return this;
15 |   }
16 | }
17 | 


--------------------------------------------------------------------------------
/webapp/src/app/product/product.pageable.model.ts:
--------------------------------------------------------------------------------
 1 | import {Deserializable} from "./deserializable.model";
 2 | import {Product} from "./product.model";
 3 | 
 4 | /*
 5 | from springboot apis:
 6 | org.springframework.data.domain.Page;
 7 | org.springframework.data.domain.Pageable;
 8 | */
 9 | export class ProductPageable implements Deserializable {
10 |   content: Product[];
11 |   pageable: {
12 |     sort: {
13 |       sorted: boolean;
14 |       unsorted: boolean;
15 |       empty: boolean;
16 |     };
17 |     offset: number;
18 |     pageSize: number;
19 |     pageNumber: number;
20 |     unpaged: boolean;
21 |     paged: boolean
22 |   };
23 |   totalPages: number;
24 |   last: boolean;
25 |   totalElements: number;
26 |   size: number;
27 |   number: number;
28 |   numberOfElements: number;
29 |   first: boolean;
30 |   sort: {
31 |     sorted: boolean;
32 |     unsorted: boolean;
33 |     empty: boolean
34 |   };
35 |   empty: boolean;
36 | 
37 |   deserialize(input: any): this {
38 |     // Assign input to our object BEFORE deserialize our recipes to prevent already de-serialized recipes from being overwritten.
39 |     Object.assign(this, input);
40 |     // Iterate over all recipes for our RecipePageable and map them to a proper `Product` com.microservices.apigateway.security.model
41 |     this.content = input.content.map(recipe => new Product().deserialize(recipe));
42 |     return this;
43 |   }
44 | }
45 | 


--------------------------------------------------------------------------------
/webapp/src/app/product/product.service.ts:
--------------------------------------------------------------------------------
 1 | import { Injectable } from '@angular/core';
 2 | import {HttpClient, HttpErrorResponse, HttpHeaders} from '@angular/common/http';
 3 | import {catchError, map, retry} from 'rxjs/operators';
 4 | import { MessageService } from '../message/message.service';
 5 | import { Observable, of } from 'rxjs';
 6 | import { Product } from './product.model';
 7 | import {ProductPageable} from './product.pageable.model';
 8 | 
 9 | @Injectable({
10 |   providedIn: 'root'
11 | })
12 | export class ProductService {
13 |   private productAPI = window['_env'].integration_uri + '/api/v1';
14 |   jsonType = 'application/json';
15 | 
16 |   constructor(
17 |     private messageService: MessageService,
18 |     private http: HttpClient
19 |   ) { }
20 | 
21 |   getProducts(): Observable<ProductPageable> {
22 |     return this.http.get<ProductPageable>(`${this.productAPI}/product`, this.headers()).pipe(
23 |       retry(1),
24 |       map(data => new ProductPageable().deserialize(data)),
25 |       catchError(res => {
26 |         return this.handleError('getProducts()', res);
27 |       })
28 |     );
29 |   }
30 | 
31 |   getProduct(id: number): Observable<Product> {
32 |     return this.http.get<Product>(`${this.productAPI}/product/${id}`, this.headers()).pipe(
33 |         retry(1),
34 |         map(data => new Product().deserialize(data)),
35 |         catchError(res => {
36 |           return this.handleError('getProduct(:id)', res);
37 |         })
38 |     );
39 |   }
40 | 
41 |   saveProduct(product: Product): Observable<Product> {
42 |     return this.http.post<Product>(`${this.productAPI}/product`, JSON.stringify(product), this.headers()).pipe(
43 |       catchError(res => {
44 |         return this.handleError('saveProduct(:product)', res);
45 |       })
46 |     );
47 |   }
48 | 
49 |   updateProduct(product: Product, id?: number): Observable<Product> {
50 |     if (id == null) {
51 |       id = product.id;
52 |     }
53 | 
54 |     return this.http.put<Product>(`${this.productAPI}/product/${id}`, JSON.stringify(product), this.headers()).pipe(
55 |       retry(1),
56 |       catchError(res => {
57 |         return this.handleError('updateProduct(:id, :product)', res);
58 |       })
59 |     );
60 |   }
61 | 
62 |   deleteProduct(id: number): Observable<any> {
63 |     return this.http.delete<Product>(`${this.productAPI}/product/${id}`, this.headers()).pipe(
64 |       retry(1),
65 |       catchError(res => {
66 |         return this.handleError('deleteProduct()', res);
67 |       })
68 |     );
69 |   }
70 | 
71 |   private handleError(method: string, res: HttpErrorResponse): Observable<any> {
72 |     this.messageService.error(`${method} ${res.message}`);
73 |     console.error(res.error);
74 |     return of(null);
75 |   }
76 | 
77 |   protected headers(): {} {
78 |     const requestOptions = {
79 |       headers: new HttpHeaders(),
80 |       observe: 'body',
81 |       responseType: 'json',
82 |       reportProgress: true
83 |     };
84 | 
85 |     requestOptions.headers.set('Accept', this.jsonType);
86 |     requestOptions.headers = requestOptions.headers.append('Content-Type', this.jsonType);
87 | 
88 |     return requestOptions;
89 |   }
90 | 
91 | }
92 | 


--------------------------------------------------------------------------------
/webapp/src/app/sidebar/sidebar.component.html:
--------------------------------------------------------------------------------
 1 | <div class="sidebar">
 2 |   <nav class="sidebar-nav ps">
 3 |     <ul class="nav">
 4 |       <li class="nav-item">
 5 |         <a class="nav-link" routerLink="home/status" routerLinkActive="nav-link-primary" (click)="closeOnMobile()">
 6 |           <i class="nav-icon icon-info"></i>Status
 7 |         </a>
 8 |       </li>
 9 |       <li class="nav-item">
10 |         <a class="nav-link" routerLink="home/maintenance" routerLinkActive="nav-link-primary" (click)="closeOnMobile()">
11 |           <i class="nav-icon icon-list"></i>Maintenance
12 |         </a>
13 |       </li>
14 |       <li class="nav-item">
15 |         <a class="nav-link" routerLink="home/product" routerLinkActive="nav-link-primary" (click)="closeOnMobile()">
16 |           <i class="nav-icon icon-list"></i>Products
17 |         </a>
18 |       </li>
19 |       <li class="nav-item">
20 |         <a class="nav-link" href="https://github.com/aelkz" target="_blank">
21 |           <fa-icon [icon]="githubIcon" class="nav-icon"></fa-icon> Github
22 |         </a>
23 |       </li>
24 |     </ul>
25 |   </nav>
26 | </div>
27 | 


--------------------------------------------------------------------------------
/webapp/src/app/sidebar/sidebar.component.ts:
--------------------------------------------------------------------------------
 1 | import { Component, OnInit } from '@angular/core';
 2 | import { IconDefinition } from '@fortawesome/free-solid-svg-icons';
 3 | import { faGithub } from '@fortawesome/free-brands-svg-icons';
 4 | import { SidebarService } from './sidebar.service';
 5 | 
 6 | @Component({
 7 |   selector: 'app-sidebar',
 8 |   templateUrl: './sidebar.component.html'
 9 | })
10 | export class SidebarComponent implements OnInit {
11 |   githubIcon: IconDefinition = faGithub;
12 | 
13 |   constructor(private sidebarService: SidebarService) { }
14 | 
15 |   closeOnMobile(): void {
16 |     if (window.innerWidth < 640) {
17 |       this.sidebarService.toggleSidebar();
18 |     }
19 |   }
20 | 
21 |   ngOnInit() { }
22 | }
23 | 


--------------------------------------------------------------------------------
/webapp/src/app/sidebar/sidebar.service.ts:
--------------------------------------------------------------------------------
 1 | import { Injectable, Renderer2, RendererFactory2 } from '@angular/core';
 2 | 
 3 | @Injectable({
 4 |   providedIn: 'root'
 5 | })
 6 | export class SidebarService {
 7 |   private renderer: Renderer2;
 8 |   sidebarVisible: boolean = true;
 9 | 
10 |   constructor(private rendererFactory: RendererFactory2) {
11 |     this.renderer = rendererFactory.createRenderer(null, null);
12 |   }
13 | 
14 |   toggleSidebar() {
15 |     this.sidebarVisible = !this.sidebarVisible;
16 | 
17 |     if (this.sidebarVisible === false) {
18 |       this.renderer.removeClass(document.body, 'sidebar-show');
19 |     } else {
20 |       this.renderer.addClass(document.body, 'sidebar-show');
21 |     }
22 |     // triggering this event so that the mapbox api will auto resize the map
23 |     if (window.innerWidth > 640) {
24 |       setTimeout(() => {
25 |         window.dispatchEvent(new Event('resize'));
26 |       }, 500);
27 |     }
28 |   }
29 | }
30 | 


--------------------------------------------------------------------------------
/webapp/src/app/status/status.service.ts:
--------------------------------------------------------------------------------
 1 | import {Injectable} from '@angular/core';
 2 | import {HttpClient, HttpResponse} from '@angular/common/http';
 3 | import {MessageService} from '../message/message.service';
 4 | import {Observable, of} from 'rxjs';
 5 | import {catchError} from 'rxjs/operators';
 6 | import {Config} from 'codelyzer';
 7 | 
 8 | @Injectable({
 9 |   providedIn: 'root'
10 | })
11 | export class StatusService {
12 |   private integrationAPI = window['_env'].integration_uri + '/api/v1';
13 | 
14 |   constructor(private messageService: MessageService, private http: HttpClient) { }
15 | 
16 |   getAuthIntegrationHealth(): Observable<HttpResponse<Config>> {
17 |     return this.http.get<Config>(`${this.integrationAPI}/status`, {observe: 'response'})
18 |       .pipe(
19 |         catchError(error => {
20 |           console.log(error);
21 |           this.messageService.error(`getAuthIntegrationHealth() ${error.message}`);
22 |           return of(error);
23 |         })
24 |       );
25 |   }
26 | 
27 |   getProductHealth(): Observable<HttpResponse<Config>> {
28 |     return this.http.get<Config>(`${this.integrationAPI}${window['_env'].product_path}/status`, {observe: 'response'})
29 |       .pipe(
30 |         catchError(error => {
31 |           this.messageService.error(`getProductHealth() ${error.message}`);
32 |           return of(error);
33 |         })
34 |       );
35 |   }
36 | 
37 |   getStockHealth(): Observable<HttpResponse<Config>> {
38 |     return this.http.get<Config>(`${this.integrationAPI}${window['_env'].stock_path}/status`, {observe: 'response'})
39 |       .pipe(
40 |         catchError(error => {
41 |           this.messageService.error(`getStockHealth() ${error.message}`);
42 |             return of(error);
43 |         })
44 |       );
45 |   }
46 | 
47 |   getSupplierHealth(): Observable<HttpResponse<Config>> {
48 |     return this.http.get<Config>(`${this.integrationAPI}${window['_env'].supplier_path}/status`, {observe: 'response'})
49 |       .pipe(
50 |         catchError(error => {
51 |           this.messageService.error(`getSupplierHealth() ${error.message}`);
52 |             return of(error);
53 |           })
54 |       );
55 |   }
56 | 
57 | }
58 | 


--------------------------------------------------------------------------------
/webapp/src/assets/.gitkeep:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/webapp/src/assets/.gitkeep


--------------------------------------------------------------------------------
/webapp/src/assets/img/02.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/webapp/src/assets/img/02.png


--------------------------------------------------------------------------------
/webapp/src/assets/img/Logo-RedHat-A-Color-RGB.svg:
--------------------------------------------------------------------------------
1 | <svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 613 145"><defs><style>.cls-1{fill:#e00;}</style></defs><title>RedHat-Logo-A-Color</title><path class="cls-1" d="M127.47,83.49c12.51,0,30.61-2.58,30.61-17.46a14,14,0,0,0-.31-3.42l-7.45-32.36c-1.72-7.12-3.23-10.35-15.73-16.6C124.89,8.69,103.76.5,97.51.5,91.69.5,90,8,83.06,8c-6.68,0-11.64-5.6-17.89-5.6-6,0-9.91,4.09-12.93,12.5,0,0-8.41,23.72-9.49,27.16A6.43,6.43,0,0,0,42.53,44c0,9.22,36.3,39.45,84.94,39.45M160,72.07c1.73,8.19,1.73,9.05,1.73,10.13,0,14-15.74,21.77-36.43,21.77C78.54,104,37.58,76.6,37.58,58.49a18.45,18.45,0,0,1,1.51-7.33C22.27,52,.5,55,.5,74.22c0,31.48,74.59,70.28,133.65,70.28,45.28,0,56.7-20.48,56.7-36.65,0-12.72-11-27.16-30.83-35.78"/><path d="M160,72.07c1.73,8.19,1.73,9.05,1.73,10.13,0,14-15.74,21.77-36.43,21.77C78.54,104,37.58,76.6,37.58,58.49a18.45,18.45,0,0,1,1.51-7.33l3.66-9.06A6.43,6.43,0,0,0,42.53,44c0,9.22,36.3,39.45,84.94,39.45,12.51,0,30.61-2.58,30.61-17.46a14,14,0,0,0-.31-3.42Z"/><path d="M579.74,92.8c0,11.89,7.15,17.67,20.19,17.67a52.11,52.11,0,0,0,11.89-1.68V95a24.84,24.84,0,0,1-7.68,1.16c-5.37,0-7.36-1.68-7.36-6.73V68.3h15.56V54.1H596.78v-18l-17,3.68V54.1H568.49V68.3h11.25Zm-53,.32c0-3.68,3.69-5.47,9.26-5.47a43.12,43.12,0,0,1,10.1,1.26v7.15a21.51,21.51,0,0,1-10.63,2.63c-5.46,0-8.73-2.1-8.73-5.57m5.2,17.56c6,0,10.84-1.26,15.36-4.31v3.37h16.82V74.08c0-13.56-9.14-21-24.39-21-8.52,0-16.94,2-26,6.1l6.1,12.52c6.52-2.74,12-4.42,16.83-4.42,7,0,10.62,2.73,10.62,8.31v2.73a49.53,49.53,0,0,0-12.62-1.58c-14.31,0-22.93,6-22.93,16.73,0,9.78,7.78,17.24,20.19,17.24m-92.44-.94h18.09V80.92h30.29v28.82H506V36.12H487.93V64.41H457.64V36.12H439.55ZM370.62,81.87c0-8,6.31-14.1,14.62-14.1A17.22,17.22,0,0,1,397,72.09V91.54A16.36,16.36,0,0,1,385.24,96c-8.2,0-14.62-6.1-14.62-14.09m26.61,27.87h16.83V32.44l-17,3.68V57.05a28.3,28.3,0,0,0-14.2-3.68c-16.19,0-28.92,12.51-28.92,28.5a28.25,28.25,0,0,0,28.4,28.6,25.12,25.12,0,0,0,14.93-4.83ZM320,67c5.36,0,9.88,3.47,11.67,8.83H308.47C310.15,70.3,314.36,67,320,67M291.33,82c0,16.2,13.25,28.82,30.28,28.82,9.36,0,16.2-2.53,23.25-8.42l-11.26-10c-2.63,2.74-6.52,4.21-11.14,4.21a14.39,14.39,0,0,1-13.68-8.83h39.65V83.55c0-17.67-11.88-30.39-28.08-30.39a28.57,28.57,0,0,0-29,28.81M262,51.58c6,0,9.36,3.78,9.36,8.31S268,68.2,262,68.2H244.11V51.58Zm-36,58.16h18.09V82.92h13.77l13.89,26.82H292l-16.2-29.45a22.27,22.27,0,0,0,13.88-20.72c0-13.25-10.41-23.45-26-23.45H226Z"/></svg>


--------------------------------------------------------------------------------
/webapp/src/assets/img/angular.svg:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <!-- Generator: Adobe Illustrator 19.1.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
 3 | <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
 4 | 	 viewBox="0 0 250 250" style="enable-background:new 0 0 250 250;" xml:space="preserve">
 5 | <style type="text/css">
 6 | 	.st0{fill:#DD0031;}
 7 | 	.st1{fill:#C3002F;}
 8 | 	.st2{fill:#FFFFFF;}
 9 | </style>
10 | <g>
11 | 	<polygon class="st0" points="125,30 125,30 125,30 31.9,63.2 46.1,186.3 125,230 125,230 125,230 203.9,186.3 218.1,63.2 	"/>
12 | 	<polygon class="st1" points="125,30 125,52.2 125,52.1 125,153.4 125,153.4 125,230 125,230 203.9,186.3 218.1,63.2 125,30 	"/>
13 | 	<path class="st2" d="M125,52.1L66.8,182.6h0h21.7h0l11.7-29.2h49.4l11.7,29.2h0h21.7h0L125,52.1L125,52.1L125,52.1L125,52.1
14 | 		L125,52.1z M142,135.4H108l17-40.9L142,135.4z"/>
15 | </g>
16 | </svg>
17 | 


--------------------------------------------------------------------------------
/webapp/src/assets/js/env.template.js:
--------------------------------------------------------------------------------
 1 | // blank values are replaced at runtime by the set-config.js node script
 2 | (function(window) {
 3 |   window._env = window._env || {};
 4 | 
 5 |   window._env.url = '${AUTH_URL}';
 6 |   window._env.realm = '${AUTH_REALM}';
 7 |   window._env.clientId = '${AUTH_CLIENT_ID}';
 8 |   window._env.clientSecret = '${AUTH_CLIENT_SECRET}';
 9 |   window._env.enabled = '${KEYCLOAK}';
10 | 
11 |   window._env.integration_uri = '${INTEGRATION_URI}';
12 |   window._env.stock_path = '${STOCK_PATH}';
13 |   window._env.supplier_path = '${SUPPLIER_PATH}';
14 |   window._env.product_path = '${PRODUCT_PATH}';
15 | 
16 | })(this);
17 | 


--------------------------------------------------------------------------------
/webapp/src/browserslist:
--------------------------------------------------------------------------------
1 | # This file is currently used by autoprefixer to adjust CSS to support the below specified browsers
2 | # For additional information regarding the format and rule options, please see:
3 | # https://github.com/browserslist/browserslist#queries
4 | # For IE 9-11 support, please uncomment the last line of the file and adjust as needed
5 | > 0.5%
6 | last 2 versions
7 | Firefox ESR
8 | not dead
9 | # IE 9-11


--------------------------------------------------------------------------------
/webapp/src/environments/environment.prod.ts:
--------------------------------------------------------------------------------
1 | export const environment = {
2 |   production: true
3 | };
4 | 


--------------------------------------------------------------------------------
/webapp/src/environments/environment.ts:
--------------------------------------------------------------------------------
 1 | // This file can be replaced during build by using the `fileReplacements` array.
 2 | // `ng build ---prod` replaces `environment.ts` with `environment.prod.ts`.
 3 | // The list of file replacements can be found in `angular.json`.
 4 | 
 5 | export const environment = {
 6 |   production: false
 7 | };
 8 | 
 9 | /*
10 |  * In development mode, to ignore zone related error stack frames such as
11 |  * `zone.run`, `zoneDelegate.invokeTask` for easier debugging, you can
12 |  * import the following file, but please comment it out in production mode
13 |  * because it will have performance impact when throw error
14 |  */
15 | // import 'zone.js/dist/zone-error';  // Included with Angular CLI.
16 | 


--------------------------------------------------------------------------------
/webapp/src/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/webapp/src/favicon.ico


--------------------------------------------------------------------------------
/webapp/src/index.html:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html lang="en">
 3 |   <head>
 4 |     <meta charset="utf-8" />
 5 |     <title>NodeJS Front-End</title>
 6 |     <base href="/" />
 7 |     <meta
 8 |       name="viewport"
 9 |       content="width=device-width, initial-scale=1, shrink-to-fit=no"
10 |     />
11 |     <link rel="icon" type="image/x-icon" href="favicon.ico" />
12 |     <script src="assets/js/env.js"></script>
13 |   </head>
14 |   <body class="app header-fixed sidebar-fixed sidebar-show">
15 |     <app-root></app-root>
16 |   </body>
17 | </html>
18 | 


--------------------------------------------------------------------------------
/webapp/src/main.ts:
--------------------------------------------------------------------------------
 1 | import { enableProdMode } from '@angular/core';
 2 | import { platformBrowserDynamic } from '@angular/platform-browser-dynamic';
 3 | 
 4 | import { AppModule } from './app/app.module';
 5 | import { environment } from './environments/environment';
 6 | 
 7 | if (environment.production) {
 8 |   enableProdMode();
 9 | }
10 | 
11 | platformBrowserDynamic()
12 |   .bootstrapModule(AppModule)
13 |   .catch(err => console.log(err));
14 | 


--------------------------------------------------------------------------------
/webapp/src/styles.scss:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/aelkz/microservices-security/62ee113faa163eab685c396f7c0299fd8bf631d4/webapp/src/styles.scss


--------------------------------------------------------------------------------
/webapp/src/tsconfig.app.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "extends": "../tsconfig.json",
 3 |   "compilerOptions": {
 4 |     "outDir": "../out-tsc/app",
 5 |     "paths": {},
 6 |     "module": "es2015",
 7 |     "types": []
 8 |   },
 9 |   "exclude": [
10 |     "src/test.ts",
11 |     "**/*.spec.ts"
12 |   ]
13 | }
14 | 


--------------------------------------------------------------------------------
/webapp/src/tslint.json:
--------------------------------------------------------------------------------
 1 | {
 2 |     "extends": "../tslint.json",
 3 |     "rules": {
 4 |         "directive-selector": [
 5 |             true,
 6 |             "attribute",
 7 |             "app",
 8 |             "camelCase"
 9 |         ],
10 |         "component-selector": [
11 |             true,
12 |             "element",
13 |             "app",
14 |             "kebab-case"
15 |         ],
16 |         "max-line-length": [
17 |           true,
18 |           160
19 |         ]
20 |     }
21 | }
22 | 


--------------------------------------------------------------------------------
/webapp/tsconfig.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "compileOnSave": false,
 3 |   "compilerOptions": {
 4 |     "baseUrl": "./",
 5 |     "importHelpers": true,
 6 |     "outDir": "./dist/out-tsc",
 7 |     "sourceMap": true,
 8 |     "declaration": false,
 9 |     "moduleResolution": "node",
10 |     "emitDecoratorMetadata": true,
11 |     "experimentalDecorators": true,
12 |     "target": "es5",
13 |     "typeRoots": [
14 |       "node_modules/@types"
15 |     ],
16 |     "lib": [
17 |       "es2017",
18 |       "dom"
19 |     ]
20 |   }
21 | }
22 | 


--------------------------------------------------------------------------------