├── .mvn └── wrapper │ ├── maven-wrapper.jar │ └── maven-wrapper.properties ├── src ├── main │ ├── resources │ │ └── application.properties │ └── java │ │ └── com │ │ └── example │ │ └── JwtAuthentication │ │ ├── dto │ │ └── AssignRole.java │ │ ├── entities │ │ ├── JwtRequest.java │ │ ├── JwtResponse.java │ │ ├── Role.java │ │ └── User.java │ │ ├── repositories │ │ ├── RoleRepo.java │ │ └── UserRepo.java │ │ ├── JwtAuthenticationApplication.java │ │ ├── services │ │ ├── RoleService.java │ │ ├── UserService.java │ │ └── JwtService.java │ │ ├── controller │ │ ├── RoleController.java │ │ ├── JwtController.java │ │ └── UserController.java │ │ ├── config │ │ ├── JwtAuthenticationEntryPoint.java │ │ ├── CorsConfiguration.java │ │ ├── JwtRequestFilter.java │ │ └── WebSecurityConfiguration.java │ │ └── util │ │ └── JwtUtil.java └── test │ └── java │ └── com │ └── example │ └── JwtAuthentication │ └── JwtAuthenticationApplicationTests.java ├── .gitignore ├── pom.xml ├── README.md ├── mvnw.cmd └── mvnw /.mvn/wrapper/maven-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bertoxious/SpringBootJWT/HEAD/.mvn/wrapper/maven-wrapper.jar -------------------------------------------------------------------------------- /src/main/resources/application.properties: -------------------------------------------------------------------------------- 1 | spring.jpa.hibernate.ddl-auto:create 2 | spring.main.allow-circular-references:true -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/dto/AssignRole.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.dto; 2 | 3 | import lombok.Data; 4 | 5 | @Data 6 | public class AssignRole { 7 | String username; 8 | String role; 9 | } 10 | -------------------------------------------------------------------------------- /.mvn/wrapper/maven-wrapper.properties: -------------------------------------------------------------------------------- 1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.8.4/apache-maven-3.8.4-bin.zip 2 | wrapperUrl=https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar 3 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/entities/JwtRequest.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.entities; 2 | 3 | import lombok.Data; 4 | 5 | @Data 6 | public class JwtRequest { 7 | 8 | private String username; 9 | private String userPassword; 10 | 11 | } 12 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/entities/JwtResponse.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.entities; 2 | 3 | import lombok.AllArgsConstructor; 4 | import lombok.Data; 5 | 6 | @Data 7 | @AllArgsConstructor 8 | public class JwtResponse { 9 | 10 | private User user; 11 | private String jwtToken; 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/test/java/com/example/JwtAuthentication/JwtAuthenticationApplicationTests.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication; 2 | 3 | import org.junit.jupiter.api.Test; 4 | import org.springframework.boot.test.context.SpringBootTest; 5 | 6 | @SpringBootTest 7 | class JwtAuthenticationApplicationTests { 8 | 9 | @Test 10 | void contextLoads() { 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/repositories/RoleRepo.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.repositories; 2 | 3 | import com.example.JwtAuthentication.entities.Role; 4 | import org.springframework.data.jpa.repository.JpaRepository; 5 | import org.springframework.stereotype.Repository; 6 | 7 | @Repository 8 | public interface RoleRepo extends JpaRepository { 9 | } 10 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/repositories/UserRepo.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.repositories; 2 | 3 | import com.example.JwtAuthentication.entities.User; 4 | import org.springframework.data.jpa.repository.JpaRepository; 5 | import org.springframework.stereotype.Repository; 6 | 7 | @Repository 8 | public interface UserRepo extends JpaRepository { 9 | } 10 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/JwtAuthenticationApplication.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication; 2 | 3 | import org.springframework.boot.SpringApplication; 4 | import org.springframework.boot.autoconfigure.SpringBootApplication; 5 | 6 | @SpringBootApplication 7 | public class JwtAuthenticationApplication { 8 | 9 | public static void main(String[] args) { 10 | SpringApplication.run(JwtAuthenticationApplication.class, args); 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/entities/Role.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.entities; 2 | 3 | import lombok.AllArgsConstructor; 4 | import lombok.Data; 5 | import lombok.NoArgsConstructor; 6 | 7 | import javax.persistence.Entity; 8 | import javax.persistence.Id; 9 | 10 | @Entity 11 | @Data 12 | @AllArgsConstructor 13 | @NoArgsConstructor 14 | public class Role { 15 | 16 | @Id 17 | private String roleName; 18 | private String roleDescription; 19 | 20 | } 21 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | HELP.md 2 | target/ 3 | !.mvn/wrapper/maven-wrapper.jar 4 | !**/src/main/**/target/ 5 | !**/src/test/**/target/ 6 | 7 | ### STS ### 8 | .apt_generated 9 | .classpath 10 | .factorypath 11 | .project 12 | .settings 13 | .springBeans 14 | .sts4-cache 15 | 16 | ### IntelliJ IDEA ### 17 | .idea 18 | *.iws 19 | *.iml 20 | *.ipr 21 | 22 | ### NetBeans ### 23 | /nbproject/private/ 24 | /nbbuild/ 25 | /dist/ 26 | /nbdist/ 27 | /.nb-gradle/ 28 | build/ 29 | !**/src/main/**/build/ 30 | !**/src/test/**/build/ 31 | 32 | ### VS Code ### 33 | .vscode/ 34 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/services/RoleService.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.services; 2 | 3 | import com.example.JwtAuthentication.entities.Role; 4 | import com.example.JwtAuthentication.repositories.RoleRepo; 5 | import org.springframework.beans.factory.annotation.Autowired; 6 | import org.springframework.stereotype.Service; 7 | 8 | @Service 9 | public class RoleService { 10 | 11 | @Autowired 12 | private RoleRepo roleRepo; 13 | 14 | public Role addRole(Role role){ 15 | return roleRepo.save(role); 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/controller/RoleController.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.controller; 2 | 3 | import com.example.JwtAuthentication.entities.Role; 4 | import com.example.JwtAuthentication.services.RoleService; 5 | import org.springframework.beans.factory.annotation.Autowired; 6 | import org.springframework.web.bind.annotation.PostMapping; 7 | import org.springframework.web.bind.annotation.RequestBody; 8 | import org.springframework.web.bind.annotation.RestController; 9 | 10 | @RestController 11 | public class RoleController { 12 | 13 | @Autowired 14 | private RoleService roleService; 15 | 16 | @PostMapping({"/add-role","addRole"}) 17 | public Role addRole(@RequestBody Role role){ 18 | return roleService.addRole(role); 19 | } 20 | 21 | } 22 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/entities/User.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.entities; 2 | 3 | import lombok.AllArgsConstructor; 4 | import lombok.Data; 5 | import lombok.NoArgsConstructor; 6 | 7 | import javax.persistence.*; 8 | import java.util.HashSet; 9 | import java.util.Set; 10 | 11 | @Entity 12 | @Data 13 | public class User { 14 | @Id 15 | private String userName; 16 | private String userFirstName; 17 | private String userLastName; 18 | private String userPassword; 19 | private String confirmPassword; 20 | 21 | 22 | @ManyToMany(fetch= FetchType.EAGER, cascade = CascadeType.ALL) 23 | @JoinTable(name = "USER_ROLE", 24 | joinColumns = @JoinColumn(name="USER_ID"), 25 | inverseJoinColumns = @JoinColumn(name="ROLE_ID")) 26 | Set roles = new HashSet<>(); 27 | 28 | } 29 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/config/JwtAuthenticationEntryPoint.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.config; 2 | 3 | import org.springframework.security.core.AuthenticationException; 4 | import org.springframework.security.web.AuthenticationEntryPoint; 5 | import org.springframework.stereotype.Component; 6 | 7 | import javax.servlet.ServletException; 8 | import javax.servlet.http.HttpServletRequest; 9 | import javax.servlet.http.HttpServletResponse; 10 | import java.io.IOException; 11 | 12 | @Component 13 | public class JwtAuthenticationEntryPoint implements AuthenticationEntryPoint { 14 | 15 | @Override 16 | public void commence(HttpServletRequest request, 17 | HttpServletResponse response, 18 | AuthenticationException authException 19 | ) throws IOException, ServletException { 20 | response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Unauthorized"); 21 | 22 | } 23 | } 24 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/controller/JwtController.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.controller; 2 | 3 | import com.example.JwtAuthentication.entities.JwtRequest; 4 | import com.example.JwtAuthentication.entities.JwtResponse; 5 | import com.example.JwtAuthentication.services.JwtService; 6 | import org.springframework.beans.factory.annotation.Autowired; 7 | import org.springframework.web.bind.annotation.CrossOrigin; 8 | import org.springframework.web.bind.annotation.PostMapping; 9 | import org.springframework.web.bind.annotation.RequestBody; 10 | import org.springframework.web.bind.annotation.RestController; 11 | 12 | @RestController 13 | @CrossOrigin 14 | public class JwtController { 15 | 16 | @Autowired 17 | private JwtService jwtService; 18 | 19 | @PostMapping({"/authenticate","/AUTHENTICATE"}) 20 | public JwtResponse createJwtToken(@RequestBody JwtRequest jwtRequest) throws Exception{ 21 | 22 | return jwtService.createJwtToken(jwtRequest); 23 | } 24 | 25 | 26 | } 27 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/config/CorsConfiguration.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.config; 2 | 3 | import org.springframework.context.annotation.Configuration; 4 | import org.springframework.web.servlet.config.annotation.CorsRegistry; 5 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurer; 6 | 7 | @Configuration 8 | public class CorsConfiguration { 9 | private static final String GET = "GET"; 10 | private static final String POST = "POST"; 11 | private static final String DELETE = "DELETE"; 12 | private static final String PUT = "PUT"; 13 | public WebMvcConfigurer corsConfigurer(){ 14 | return new WebMvcConfigurer() { 15 | @Override 16 | public void addCorsMappings(CorsRegistry registry) { 17 | // WebMvcConfigurer.super.addCorsMappings(registry); 18 | registry.addMapping("/**") 19 | .allowedMethods(GET, PUT, POST, DELETE) 20 | .allowedHeaders("*") 21 | .allowedOriginPatterns("*") 22 | .allowCredentials(true); 23 | } 24 | }; 25 | } 26 | } 27 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/controller/UserController.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.controller; 2 | 3 | import com.example.JwtAuthentication.dto.AssignRole; 4 | import com.example.JwtAuthentication.entities.User; 5 | import com.example.JwtAuthentication.services.UserService; 6 | import org.springframework.beans.factory.annotation.Autowired; 7 | import org.springframework.security.access.prepost.PreAuthorize; 8 | import org.springframework.web.bind.annotation.GetMapping; 9 | import org.springframework.web.bind.annotation.PostMapping; 10 | import org.springframework.web.bind.annotation.RequestBody; 11 | import org.springframework.web.bind.annotation.RestController; 12 | 13 | @RestController 14 | public class UserController { 15 | 16 | 17 | @Autowired 18 | private UserService userService; 19 | @PostMapping(value = {"/create-user","/register"}) 20 | public User createUser(@RequestBody User user){ 21 | return userService.addUser(user); 22 | } 23 | 24 | @GetMapping("/user-content") 25 | @PreAuthorize("hasRole('USER')") 26 | public String content(){ 27 | return "This is only accessible to user"; 28 | } 29 | 30 | @GetMapping("/admin-content") 31 | @PreAuthorize("hasRole('ADMIN')") 32 | public String adminContent(){ 33 | return "This is only accessible to admin"; 34 | } 35 | 36 | @PostMapping("/assign-role") 37 | public User assignRole(@RequestBody AssignRole assignRole) throws Exception{ 38 | return userService.assignRole(assignRole.getUsername(), assignRole.getRole()); 39 | } 40 | } 41 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/services/UserService.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.services; 2 | 3 | import com.example.JwtAuthentication.entities.Role; 4 | import com.example.JwtAuthentication.entities.User; 5 | import com.example.JwtAuthentication.repositories.RoleRepo; 6 | import com.example.JwtAuthentication.repositories.UserRepo; 7 | import org.springframework.beans.factory.annotation.Autowired; 8 | import org.springframework.security.crypto.password.PasswordEncoder; 9 | import org.springframework.stereotype.Service; 10 | 11 | import java.util.HashSet; 12 | import java.util.Set; 13 | 14 | @Service 15 | public class UserService { 16 | @Autowired 17 | private UserRepo userRepo; 18 | @Autowired 19 | private RoleRepo roleRepo; 20 | 21 | @Autowired 22 | private PasswordEncoder passwordEncoder; 23 | 24 | public User addUser(User user){ 25 | user.setUserPassword(getEncodedPassword(user.getUserPassword())); 26 | return userRepo.save(user); 27 | } 28 | 29 | public User assignRole(String username, String roleName) throws Exception{ 30 | try{ 31 | User user = userRepo.findById(username).get(); 32 | Set roles = new HashSet<>(); 33 | Role role = roleRepo.findById(roleName).get(); 34 | roles.add(role); 35 | user.setRoles(roles); 36 | 37 | return userRepo.save(user); 38 | } 39 | catch (Exception e){ 40 | throw new Exception("No Such User"); 41 | } 42 | } 43 | 44 | public String getEncodedPassword(String password){ 45 | return passwordEncoder.encode(password); 46 | } 47 | } 48 | -------------------------------------------------------------------------------- /pom.xml: -------------------------------------------------------------------------------- 1 | 2 | 4 | 4.0.0 5 | 6 | org.springframework.boot 7 | spring-boot-starter-parent 8 | 2.6.3 9 | 10 | 11 | com.example 12 | JwtAuthentication 13 | 0.0.1-SNAPSHOT 14 | JwtAuthentication 15 | Demo project for Spring Boot 16 | 17 | 11 18 | 19 | 20 | 21 | org.springframework.boot 22 | spring-boot-starter-data-jpa 23 | 24 | 25 | org.springframework.boot 26 | spring-boot-starter-web 27 | 28 | 29 | 30 | com.h2database 31 | h2 32 | runtime 33 | 34 | 35 | org.projectlombok 36 | lombok 37 | true 38 | 39 | 40 | org.springframework.boot 41 | spring-boot-starter-test 42 | test 43 | 44 | 45 | org.springframework.boot 46 | spring-boot-starter-security 47 | 48 | 49 | io.jsonwebtoken 50 | jjwt 51 | 0.9.1 52 | 53 | 54 | 55 | 56 | 57 | 58 | org.springframework.boot 59 | spring-boot-maven-plugin 60 | 61 | 62 | 63 | org.projectlombok 64 | lombok 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/util/JwtUtil.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.util; 2 | 3 | import io.jsonwebtoken.Claims; 4 | import io.jsonwebtoken.Jwts; 5 | import io.jsonwebtoken.SignatureAlgorithm; 6 | import org.springframework.security.core.userdetails.UserDetails; 7 | import org.springframework.security.core.userdetails.UserDetailsService; 8 | import org.springframework.stereotype.Component; 9 | 10 | import java.util.Date; 11 | import java.util.HashMap; 12 | import java.util.Map; 13 | import java.util.function.Function; 14 | 15 | @Component 16 | public class JwtUtil { 17 | private static final String SECRET_KEY = "GODS"; 18 | private static final int TOKEN_VALIDITY = 3600 * 5; 19 | public String getUsernameFromToken(String jwtToken){ 20 | return getClaimFromToken(jwtToken, Claims::getSubject); 21 | 22 | } 23 | 24 | private T getClaimFromToken(String jwtToken, Function claimResolver){ 25 | final Claims claims = getAllClaimsFromToken(jwtToken); 26 | return claimResolver.apply(claims); 27 | 28 | } 29 | 30 | private Claims getAllClaimsFromToken(String jwtToken){ 31 | return Jwts.parser().setSigningKey(SECRET_KEY).parseClaimsJws(jwtToken).getBody(); 32 | } 33 | 34 | public boolean validateToken(String token, UserDetails userDetails){ 35 | String username = getUsernameFromToken(token); 36 | return (username.equals(userDetails.getUsername()) && !isTokenExpired(token)); 37 | } 38 | 39 | private boolean isTokenExpired(String jwtToken){ 40 | Date expirationDate = getExpirationDateFromToken(jwtToken); 41 | return expirationDate.before(new Date()); 42 | } 43 | 44 | private Date getExpirationDateFromToken(String jwtToken){ 45 | return getClaimFromToken(jwtToken, Claims::getExpiration); 46 | } 47 | 48 | public String generateJwtToken(UserDetails userDetails){ 49 | Map claims = new HashMap<>(); 50 | return Jwts.builder(). 51 | setClaims(claims). 52 | setSubject(userDetails.getUsername()) 53 | .setIssuedAt(new Date(System.currentTimeMillis())) 54 | .setExpiration(new Date(System.currentTimeMillis()+TOKEN_VALIDITY * 1000)) 55 | .signWith(SignatureAlgorithm.HS256,SECRET_KEY) 56 | .compact(); 57 | 58 | } 59 | 60 | } 61 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/config/JwtRequestFilter.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.config; 2 | 3 | import com.example.JwtAuthentication.services.JwtService; 4 | import com.example.JwtAuthentication.util.JwtUtil; 5 | import io.jsonwebtoken.ExpiredJwtException; 6 | import org.springframework.beans.factory.annotation.Autowired; 7 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; 8 | import org.springframework.security.core.context.SecurityContextHolder; 9 | import org.springframework.security.core.userdetails.UserDetails; 10 | import org.springframework.security.web.authentication.WebAuthenticationDetailsSource; 11 | import org.springframework.stereotype.Component; 12 | import org.springframework.web.filter.OncePerRequestFilter; 13 | 14 | import javax.servlet.FilterChain; 15 | import javax.servlet.ServletException; 16 | import javax.servlet.http.HttpServletRequest; 17 | import javax.servlet.http.HttpServletResponse; 18 | import java.io.IOException; 19 | 20 | @Component 21 | public class JwtRequestFilter extends OncePerRequestFilter { 22 | 23 | @Autowired 24 | private JwtUtil jwtUtil; 25 | 26 | @Autowired 27 | private JwtService jwtService; 28 | 29 | @Override 30 | protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, 31 | FilterChain filterChain) throws ServletException, IOException { 32 | final String header = request.getHeader("Authorization"); 33 | String jwtToken = null; 34 | String username = null; 35 | if (header !=null && header.startsWith("Bearer ")){ 36 | jwtToken = header.substring(7);// separating out Bearer + space from jwt token 37 | 38 | try{ 39 | username = jwtUtil.getUsernameFromToken(jwtToken); 40 | } 41 | catch (IllegalArgumentException e){ 42 | System.out.println("Unable to get Jwt Token"); 43 | } 44 | catch (ExpiredJwtException e){ 45 | System.out.println("Jwt Token is expired"); 46 | } 47 | } 48 | else{ 49 | System.out.println("Jwt Token does not start with Bearer"); 50 | } 51 | 52 | if (username != null && SecurityContextHolder.getContext().getAuthentication() == null){ 53 | UserDetails userDetails = jwtService.loadUserByUsername(username); 54 | 55 | if (jwtUtil.validateToken(jwtToken, userDetails)){ 56 | 57 | UsernamePasswordAuthenticationToken usernamePasswordAuthenticationToken =new UsernamePasswordAuthenticationToken(userDetails, null, userDetails.getAuthorities()); 58 | usernamePasswordAuthenticationToken.setDetails(new WebAuthenticationDetailsSource().buildDetails(request)); 59 | 60 | SecurityContextHolder.getContext().setAuthentication(usernamePasswordAuthenticationToken); 61 | } 62 | } 63 | filterChain.doFilter(request, response); 64 | } 65 | } 66 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/config/WebSecurityConfiguration.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.config; 2 | 3 | import com.example.JwtAuthentication.services.JwtService; 4 | import org.springframework.beans.factory.annotation.Autowired; 5 | import org.springframework.context.annotation.Bean; 6 | import org.springframework.context.annotation.Configuration; 7 | import org.springframework.http.HttpHeaders; 8 | import org.springframework.http.HttpMethod; 9 | import org.springframework.security.authentication.AuthenticationManager; 10 | import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; 11 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity; 12 | import org.springframework.security.config.annotation.web.builders.HttpSecurity; 13 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; 14 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; 15 | import org.springframework.security.config.http.SessionCreationPolicy; 16 | import org.springframework.security.core.userdetails.UserDetailsService; 17 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; 18 | import org.springframework.security.crypto.password.PasswordEncoder; 19 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter; 20 | 21 | @Configuration 22 | @EnableWebSecurity 23 | @EnableGlobalMethodSecurity(prePostEnabled = true) 24 | public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter { 25 | @Autowired 26 | private JwtAuthenticationEntryPoint jwtAuthenticationEntryPoint; 27 | @Autowired 28 | private JwtRequestFilter jwtRequestFilter; 29 | @Autowired 30 | private UserDetailsService jwtService; 31 | 32 | @Bean 33 | @Override 34 | public AuthenticationManager authenticationManagerBean() throws Exception{ 35 | return super.authenticationManagerBean(); 36 | } 37 | 38 | @Override 39 | protected void configure(HttpSecurity httpSecurity) throws Exception{ 40 | httpSecurity.cors(); 41 | httpSecurity.csrf().disable() 42 | .authorizeRequests() 43 | .antMatchers("/authenticate","/AUTHENTICATE","/create-user","/add-role","/assign-role").permitAll() 44 | .antMatchers(HttpHeaders.ALLOW) 45 | .permitAll() 46 | .anyRequest().authenticated() 47 | .and() 48 | .exceptionHandling().authenticationEntryPoint(jwtAuthenticationEntryPoint) 49 | .and() 50 | .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS); 51 | 52 | httpSecurity.addFilterBefore(jwtRequestFilter, UsernamePasswordAuthenticationFilter.class); 53 | 54 | //antMathers() will contain those end point which we want to access without authorization 55 | } 56 | 57 | // Adding encoder for password encrpytion 58 | @Bean 59 | public PasswordEncoder passwordEncoder(){ 60 | return new BCryptPasswordEncoder(); 61 | } 62 | 63 | @Autowired 64 | public void configureGlobal(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception{ 65 | authenticationManagerBuilder.userDetailsService(jwtService).passwordEncoder(passwordEncoder()); 66 | 67 | } 68 | } 69 | -------------------------------------------------------------------------------- /src/main/java/com/example/JwtAuthentication/services/JwtService.java: -------------------------------------------------------------------------------- 1 | package com.example.JwtAuthentication.services; 2 | 3 | import com.example.JwtAuthentication.entities.JwtRequest; 4 | import com.example.JwtAuthentication.entities.JwtResponse; 5 | import com.example.JwtAuthentication.entities.User; 6 | import com.example.JwtAuthentication.repositories.UserRepo; 7 | import com.example.JwtAuthentication.util.JwtUtil; 8 | import org.springframework.beans.factory.annotation.Autowired; 9 | import org.springframework.security.authentication.AuthenticationManager; 10 | import org.springframework.security.authentication.BadCredentialsException; 11 | import org.springframework.security.authentication.DisabledException; 12 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; 13 | import org.springframework.security.core.annotation.AuthenticationPrincipal; 14 | import org.springframework.security.core.authority.SimpleGrantedAuthority; 15 | import org.springframework.security.core.userdetails.UserDetails; 16 | import org.springframework.security.core.userdetails.UserDetailsService; 17 | import org.springframework.security.core.userdetails.UsernameNotFoundException; 18 | import org.springframework.stereotype.Service; 19 | 20 | import java.util.HashSet; 21 | import java.util.Set; 22 | 23 | @Service 24 | public class JwtService implements UserDetailsService { 25 | 26 | @Autowired 27 | private UserRepo userRepo; 28 | 29 | @Autowired 30 | private JwtUtil jwtUtil; 31 | 32 | @Autowired 33 | private AuthenticationManager authenticationManager; 34 | 35 | public JwtResponse createJwtToken(JwtRequest jwtRequest) throws Exception{ 36 | String username = jwtRequest.getUsername(); 37 | String userPassword = jwtRequest.getUserPassword(); 38 | authenticate(username, userPassword); 39 | final UserDetails userDetails = loadUserByUsername(username); 40 | String newGeneratedToken = jwtUtil.generateJwtToken(userDetails); 41 | User user = userRepo.findById(username).get(); 42 | return new JwtResponse(user, newGeneratedToken); 43 | 44 | } 45 | 46 | @Override 47 | public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException { 48 | User user = userRepo.findById(username).get(); 49 | if (user != null){ 50 | return new org.springframework.security.core.userdetails.User( 51 | user.getUserName(), 52 | user.getUserPassword(), 53 | getAuthorities(user) 54 | ); 55 | } 56 | else { 57 | throw new UsernameNotFoundException("Username is not Valid"); 58 | } 59 | } 60 | 61 | private Set getAuthorities(User user){ 62 | Set authorities = new HashSet(); 63 | user.getRoles().forEach(role -> { 64 | authorities.add(new SimpleGrantedAuthority("ROLE_"+role.getRoleName())); 65 | }); 66 | return authorities; 67 | } 68 | 69 | private void authenticate(String username, String userPassword) throws Exception{ 70 | try{ 71 | authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(username, userPassword)); 72 | } 73 | catch(DisabledException e){ 74 | throw new Exception("User is disabled"); 75 | } 76 | catch (BadCredentialsException e){ 77 | throw new Exception("Bad Credentials from user"); 78 | } 79 | 80 | } 81 | } 82 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # SpringBootJWT 2 | 3 | ## STEPS : 4 | 5 | [1. Create User entity and Role entity along with their repos.](https://github.com/bertoxious/SpringBootJWT/tree/master/src/main/java/com/example/JwtAuthentication/entities) 6 | [2. Define relationship b/w both the entities.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/entities/User.java) 7 | [3. Create Service and Controllers for both of them.](https://github.com/bertoxious/SpringBootJWT/tree/master/src/main/java/com/example/JwtAuthentication/services) 8 | [4. Add CORS Configuration.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/config/CorsConfiguration.java) 9 | [5. Add WebSecurityConfiguration.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/config/WebSecurityConfiguration.java) 10 | [6. Create JwtRequest and Response entity.](https://github.com/bertoxious/SpringBootJWT/tree/master/src/main/java/com/example/JwtAuthentication/entities) 11 | [7. Create JwtService and add createJwtToken method.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/services/JwtService.java) 12 | [8. Create JWtAuthenticationEntryPoint.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/config/JwtAuthenticationEntryPoint.java) 13 | [9. Create a JWTRequestFilter and add it to the WebSecurityConfiguration.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/config/JwtRequestFilter.java) 14 | [10. Create a JWTUtil class containing all the logic for JWT token generation, expiration, validation, claims etc.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/util/JwtUtil.java) 15 | [11. Add PreAuthorize depeding upon role to the controller urls.](https://github.com/bertoxious/SpringBootJWT/blob/master/src/main/java/com/example/JwtAuthentication/controller/UserController.java) 16 | 17 | 18 | ## Dependencies 19 | 20 | ```xml 21 | 22 | org.springframework.boot 23 | spring-boot-starter-data-jpa 24 | 25 | 26 | org.springframework.boot 27 | spring-boot-starter-web 28 | 29 | 30 | com.h2database 31 | h2 32 | runtime 33 | 34 | 35 | org.projectlombok 36 | lombok 37 | true 38 | 39 | 40 | org.springframework.boot 41 | spring-boot-starter-test 42 | test 43 | 44 | 45 | org.springframework.boot 46 | spring-boot-starter-security 47 | 48 | 49 | io.jsonwebtoken 50 | jjwt 51 | 0.9.1 52 | 53 | ``` 54 | ## Endpoints 55 | **_URL_** 🟠 56 |
Create User 57 |

58 | 59 | ```url 60 | http://localhost:8080/create-user 61 | ``` 62 | **_Body_** 63 | ```json 64 | { 65 | "userName":"admin", 66 | "userFirstName":"Mr. Admin", 67 | "userLastName":"Lal", 68 | "confirmPassword":"admin@pass", 69 | "userPassword":"admin@pass" 70 | } 71 | ``` 72 |

73 |
74 |
Add Role 75 |

76 | 77 | ```url 78 | http://localhost:8080/add-role 79 | ``` 80 | **_Body_** 81 | ```json 82 | { 83 | "roleName":"ADMIN", 84 | "roleDescription":"Access to all the APIs" 85 | } 86 | ``` 87 | 88 |

89 |
90 |
Authenticate User 91 |

92 | 93 | ```url 94 | http://localhost:8080/authenticate 95 | ``` 96 | **_Body_** 97 | ```json 98 | { 99 | "username":"admin", 100 | "userPassword":"admin@pass" 101 | } 102 | ``` 103 | 104 | 105 |

106 |
107 |
Assign Role 108 |

109 | 110 | ```url 111 | http://localhost:8080/assign-role 112 | ``` 113 | **_Body_** 114 | ```json 115 | { 116 | "username":"admin", 117 | "role":"ADMIN" 118 | } 119 | ``` 120 | 121 | 122 | 123 |

124 |
125 | 126 | 127 | **_URL_** 🟢 128 |
Admin Content 129 |

130 | 131 | ```url 132 | http://localhost:8080/admin-content 133 | ``` 134 | 135 | 136 |

137 |
138 | 139 |
User Content 140 |

141 | 142 | ```url 143 | http://localhost:8080/user-content 144 | ``` 145 | 146 | 147 |

148 |
149 | 150 | -------------------------------------------------------------------------------- /mvnw.cmd: -------------------------------------------------------------------------------- 1 | @REM ---------------------------------------------------------------------------- 2 | @REM Licensed to the Apache Software Foundation (ASF) under one 3 | @REM or more contributor license agreements. See the NOTICE file 4 | @REM distributed with this work for additional information 5 | @REM regarding copyright ownership. The ASF licenses this file 6 | @REM to you under the Apache License, Version 2.0 (the 7 | @REM "License"); you may not use this file except in compliance 8 | @REM with the License. You may obtain a copy of the License at 9 | @REM 10 | @REM https://www.apache.org/licenses/LICENSE-2.0 11 | @REM 12 | @REM Unless required by applicable law or agreed to in writing, 13 | @REM software distributed under the License is distributed on an 14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | @REM KIND, either express or implied. See the License for the 16 | @REM specific language governing permissions and limitations 17 | @REM under the License. 18 | @REM ---------------------------------------------------------------------------- 19 | 20 | @REM ---------------------------------------------------------------------------- 21 | @REM Maven Start Up Batch script 22 | @REM 23 | @REM Required ENV vars: 24 | @REM JAVA_HOME - location of a JDK home dir 25 | @REM 26 | @REM Optional ENV vars 27 | @REM M2_HOME - location of maven2's installed home dir 28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands 29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a keystroke before ending 30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven 31 | @REM e.g. to debug Maven itself, use 32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files 34 | @REM ---------------------------------------------------------------------------- 35 | 36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on' 37 | @echo off 38 | @REM set title of command window 39 | title %0 40 | @REM enable echoing by setting MAVEN_BATCH_ECHO to 'on' 41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO% 42 | 43 | @REM set %HOME% to equivalent of $HOME 44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%") 45 | 46 | @REM Execute a user defined script before this one 47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre 48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending 49 | if exist "%USERPROFILE%\mavenrc_pre.bat" call "%USERPROFILE%\mavenrc_pre.bat" %* 50 | if exist "%USERPROFILE%\mavenrc_pre.cmd" call "%USERPROFILE%\mavenrc_pre.cmd" %* 51 | :skipRcPre 52 | 53 | @setlocal 54 | 55 | set ERROR_CODE=0 56 | 57 | @REM To isolate internal variables from possible post scripts, we use another setlocal 58 | @setlocal 59 | 60 | @REM ==== START VALIDATION ==== 61 | if not "%JAVA_HOME%" == "" goto OkJHome 62 | 63 | echo. 64 | echo Error: JAVA_HOME not found in your environment. >&2 65 | echo Please set the JAVA_HOME variable in your environment to match the >&2 66 | echo location of your Java installation. >&2 67 | echo. 68 | goto error 69 | 70 | :OkJHome 71 | if exist "%JAVA_HOME%\bin\java.exe" goto init 72 | 73 | echo. 74 | echo Error: JAVA_HOME is set to an invalid directory. >&2 75 | echo JAVA_HOME = "%JAVA_HOME%" >&2 76 | echo Please set the JAVA_HOME variable in your environment to match the >&2 77 | echo location of your Java installation. >&2 78 | echo. 79 | goto error 80 | 81 | @REM ==== END VALIDATION ==== 82 | 83 | :init 84 | 85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn". 86 | @REM Fallback to current working directory if not found. 87 | 88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR% 89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir 90 | 91 | set EXEC_DIR=%CD% 92 | set WDIR=%EXEC_DIR% 93 | :findBaseDir 94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound 95 | cd .. 96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound 97 | set WDIR=%CD% 98 | goto findBaseDir 99 | 100 | :baseDirFound 101 | set MAVEN_PROJECTBASEDIR=%WDIR% 102 | cd "%EXEC_DIR%" 103 | goto endDetectBaseDir 104 | 105 | :baseDirNotFound 106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR% 107 | cd "%EXEC_DIR%" 108 | 109 | :endDetectBaseDir 110 | 111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig 112 | 113 | @setlocal EnableExtensions EnableDelayedExpansion 114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a 115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS% 116 | 117 | :endReadAdditionalConfig 118 | 119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe" 120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar" 121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 122 | 123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 124 | 125 | FOR /F "usebackq tokens=1,2 delims==" %%A IN ("%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties") DO ( 126 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B 127 | ) 128 | 129 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 130 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data. 131 | if exist %WRAPPER_JAR% ( 132 | if "%MVNW_VERBOSE%" == "true" ( 133 | echo Found %WRAPPER_JAR% 134 | ) 135 | ) else ( 136 | if not "%MVNW_REPOURL%" == "" ( 137 | SET DOWNLOAD_URL="%MVNW_REPOURL%/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 138 | ) 139 | if "%MVNW_VERBOSE%" == "true" ( 140 | echo Couldn't find %WRAPPER_JAR%, downloading it ... 141 | echo Downloading from: %DOWNLOAD_URL% 142 | ) 143 | 144 | powershell -Command "&{"^ 145 | "$webclient = new-object System.Net.WebClient;"^ 146 | "if (-not ([string]::IsNullOrEmpty('%MVNW_USERNAME%') -and [string]::IsNullOrEmpty('%MVNW_PASSWORD%'))) {"^ 147 | "$webclient.Credentials = new-object System.Net.NetworkCredential('%MVNW_USERNAME%', '%MVNW_PASSWORD%');"^ 148 | "}"^ 149 | "[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12; $webclient.DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')"^ 150 | "}" 151 | if "%MVNW_VERBOSE%" == "true" ( 152 | echo Finished downloading %WRAPPER_JAR% 153 | ) 154 | ) 155 | @REM End of extension 156 | 157 | @REM Provide a "standardized" way to retrieve the CLI args that will 158 | @REM work with both Windows and non-Windows executions. 159 | set MAVEN_CMD_LINE_ARGS=%* 160 | 161 | %MAVEN_JAVA_EXE% ^ 162 | %JVM_CONFIG_MAVEN_PROPS% ^ 163 | %MAVEN_OPTS% ^ 164 | %MAVEN_DEBUG_OPTS% ^ 165 | -classpath %WRAPPER_JAR% ^ 166 | "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" ^ 167 | %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %* 168 | if ERRORLEVEL 1 goto error 169 | goto end 170 | 171 | :error 172 | set ERROR_CODE=1 173 | 174 | :end 175 | @endlocal & set ERROR_CODE=%ERROR_CODE% 176 | 177 | if not "%MAVEN_SKIP_RC%"=="" goto skipRcPost 178 | @REM check for post script, once with legacy .bat ending and once with .cmd ending 179 | if exist "%USERPROFILE%\mavenrc_post.bat" call "%USERPROFILE%\mavenrc_post.bat" 180 | if exist "%USERPROFILE%\mavenrc_post.cmd" call "%USERPROFILE%\mavenrc_post.cmd" 181 | :skipRcPost 182 | 183 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on' 184 | if "%MAVEN_BATCH_PAUSE%"=="on" pause 185 | 186 | if "%MAVEN_TERMINATE_CMD%"=="on" exit %ERROR_CODE% 187 | 188 | cmd /C exit /B %ERROR_CODE% 189 | -------------------------------------------------------------------------------- /mvnw: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # ---------------------------------------------------------------------------- 3 | # Licensed to the Apache Software Foundation (ASF) under one 4 | # or more contributor license agreements. See the NOTICE file 5 | # distributed with this work for additional information 6 | # regarding copyright ownership. The ASF licenses this file 7 | # to you under the Apache License, Version 2.0 (the 8 | # "License"); you may not use this file except in compliance 9 | # with the License. You may obtain a copy of the License at 10 | # 11 | # https://www.apache.org/licenses/LICENSE-2.0 12 | # 13 | # Unless required by applicable law or agreed to in writing, 14 | # software distributed under the License is distributed on an 15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 16 | # KIND, either express or implied. See the License for the 17 | # specific language governing permissions and limitations 18 | # under the License. 19 | # ---------------------------------------------------------------------------- 20 | 21 | # ---------------------------------------------------------------------------- 22 | # Maven Start Up Batch script 23 | # 24 | # Required ENV vars: 25 | # ------------------ 26 | # JAVA_HOME - location of a JDK home dir 27 | # 28 | # Optional ENV vars 29 | # ----------------- 30 | # M2_HOME - location of maven2's installed home dir 31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven 32 | # e.g. to debug Maven itself, use 33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files 35 | # ---------------------------------------------------------------------------- 36 | 37 | if [ -z "$MAVEN_SKIP_RC" ] ; then 38 | 39 | if [ -f /usr/local/etc/mavenrc ] ; then 40 | . /usr/local/etc/mavenrc 41 | fi 42 | 43 | if [ -f /etc/mavenrc ] ; then 44 | . /etc/mavenrc 45 | fi 46 | 47 | if [ -f "$HOME/.mavenrc" ] ; then 48 | . "$HOME/.mavenrc" 49 | fi 50 | 51 | fi 52 | 53 | # OS specific support. $var _must_ be set to either true or false. 54 | cygwin=false; 55 | darwin=false; 56 | mingw=false 57 | case "`uname`" in 58 | CYGWIN*) cygwin=true ;; 59 | MINGW*) mingw=true;; 60 | Darwin*) darwin=true 61 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home 62 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html 63 | if [ -z "$JAVA_HOME" ]; then 64 | if [ -x "/usr/libexec/java_home" ]; then 65 | export JAVA_HOME="`/usr/libexec/java_home`" 66 | else 67 | export JAVA_HOME="/Library/Java/Home" 68 | fi 69 | fi 70 | ;; 71 | esac 72 | 73 | if [ -z "$JAVA_HOME" ] ; then 74 | if [ -r /etc/gentoo-release ] ; then 75 | JAVA_HOME=`java-config --jre-home` 76 | fi 77 | fi 78 | 79 | if [ -z "$M2_HOME" ] ; then 80 | ## resolve links - $0 may be a link to maven's home 81 | PRG="$0" 82 | 83 | # need this for relative symlinks 84 | while [ -h "$PRG" ] ; do 85 | ls=`ls -ld "$PRG"` 86 | link=`expr "$ls" : '.*-> \(.*\)$'` 87 | if expr "$link" : '/.*' > /dev/null; then 88 | PRG="$link" 89 | else 90 | PRG="`dirname "$PRG"`/$link" 91 | fi 92 | done 93 | 94 | saveddir=`pwd` 95 | 96 | M2_HOME=`dirname "$PRG"`/.. 97 | 98 | # make it fully qualified 99 | M2_HOME=`cd "$M2_HOME" && pwd` 100 | 101 | cd "$saveddir" 102 | # echo Using m2 at $M2_HOME 103 | fi 104 | 105 | # For Cygwin, ensure paths are in UNIX format before anything is touched 106 | if $cygwin ; then 107 | [ -n "$M2_HOME" ] && 108 | M2_HOME=`cygpath --unix "$M2_HOME"` 109 | [ -n "$JAVA_HOME" ] && 110 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"` 111 | [ -n "$CLASSPATH" ] && 112 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"` 113 | fi 114 | 115 | # For Mingw, ensure paths are in UNIX format before anything is touched 116 | if $mingw ; then 117 | [ -n "$M2_HOME" ] && 118 | M2_HOME="`(cd "$M2_HOME"; pwd)`" 119 | [ -n "$JAVA_HOME" ] && 120 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`" 121 | fi 122 | 123 | if [ -z "$JAVA_HOME" ]; then 124 | javaExecutable="`which javac`" 125 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then 126 | # readlink(1) is not available as standard on Solaris 10. 127 | readLink=`which readlink` 128 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then 129 | if $darwin ; then 130 | javaHome="`dirname \"$javaExecutable\"`" 131 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac" 132 | else 133 | javaExecutable="`readlink -f \"$javaExecutable\"`" 134 | fi 135 | javaHome="`dirname \"$javaExecutable\"`" 136 | javaHome=`expr "$javaHome" : '\(.*\)/bin'` 137 | JAVA_HOME="$javaHome" 138 | export JAVA_HOME 139 | fi 140 | fi 141 | fi 142 | 143 | if [ -z "$JAVACMD" ] ; then 144 | if [ -n "$JAVA_HOME" ] ; then 145 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 146 | # IBM's JDK on AIX uses strange locations for the executables 147 | JAVACMD="$JAVA_HOME/jre/sh/java" 148 | else 149 | JAVACMD="$JAVA_HOME/bin/java" 150 | fi 151 | else 152 | JAVACMD="`\\unset -f command; \\command -v java`" 153 | fi 154 | fi 155 | 156 | if [ ! -x "$JAVACMD" ] ; then 157 | echo "Error: JAVA_HOME is not defined correctly." >&2 158 | echo " We cannot execute $JAVACMD" >&2 159 | exit 1 160 | fi 161 | 162 | if [ -z "$JAVA_HOME" ] ; then 163 | echo "Warning: JAVA_HOME environment variable is not set." 164 | fi 165 | 166 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher 167 | 168 | # traverses directory structure from process work directory to filesystem root 169 | # first directory with .mvn subdirectory is considered project base directory 170 | find_maven_basedir() { 171 | 172 | if [ -z "$1" ] 173 | then 174 | echo "Path not specified to find_maven_basedir" 175 | return 1 176 | fi 177 | 178 | basedir="$1" 179 | wdir="$1" 180 | while [ "$wdir" != '/' ] ; do 181 | if [ -d "$wdir"/.mvn ] ; then 182 | basedir=$wdir 183 | break 184 | fi 185 | # workaround for JBEAP-8937 (on Solaris 10/Sparc) 186 | if [ -d "${wdir}" ]; then 187 | wdir=`cd "$wdir/.."; pwd` 188 | fi 189 | # end of workaround 190 | done 191 | echo "${basedir}" 192 | } 193 | 194 | # concatenates all lines of a file 195 | concat_lines() { 196 | if [ -f "$1" ]; then 197 | echo "$(tr -s '\n' ' ' < "$1")" 198 | fi 199 | } 200 | 201 | BASE_DIR=`find_maven_basedir "$(pwd)"` 202 | if [ -z "$BASE_DIR" ]; then 203 | exit 1; 204 | fi 205 | 206 | ########################################################################################## 207 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 208 | # This allows using the maven wrapper in projects that prohibit checking in binary data. 209 | ########################################################################################## 210 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then 211 | if [ "$MVNW_VERBOSE" = true ]; then 212 | echo "Found .mvn/wrapper/maven-wrapper.jar" 213 | fi 214 | else 215 | if [ "$MVNW_VERBOSE" = true ]; then 216 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..." 217 | fi 218 | if [ -n "$MVNW_REPOURL" ]; then 219 | jarUrl="$MVNW_REPOURL/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 220 | else 221 | jarUrl="https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 222 | fi 223 | while IFS="=" read key value; do 224 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;; 225 | esac 226 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties" 227 | if [ "$MVNW_VERBOSE" = true ]; then 228 | echo "Downloading from: $jarUrl" 229 | fi 230 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" 231 | if $cygwin; then 232 | wrapperJarPath=`cygpath --path --windows "$wrapperJarPath"` 233 | fi 234 | 235 | if command -v wget > /dev/null; then 236 | if [ "$MVNW_VERBOSE" = true ]; then 237 | echo "Found wget ... using wget" 238 | fi 239 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then 240 | wget "$jarUrl" -O "$wrapperJarPath" || rm -f "$wrapperJarPath" 241 | else 242 | wget --http-user=$MVNW_USERNAME --http-password=$MVNW_PASSWORD "$jarUrl" -O "$wrapperJarPath" || rm -f "$wrapperJarPath" 243 | fi 244 | elif command -v curl > /dev/null; then 245 | if [ "$MVNW_VERBOSE" = true ]; then 246 | echo "Found curl ... using curl" 247 | fi 248 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then 249 | curl -o "$wrapperJarPath" "$jarUrl" -f 250 | else 251 | curl --user $MVNW_USERNAME:$MVNW_PASSWORD -o "$wrapperJarPath" "$jarUrl" -f 252 | fi 253 | 254 | else 255 | if [ "$MVNW_VERBOSE" = true ]; then 256 | echo "Falling back to using Java to download" 257 | fi 258 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java" 259 | # For Cygwin, switch paths to Windows format before running javac 260 | if $cygwin; then 261 | javaClass=`cygpath --path --windows "$javaClass"` 262 | fi 263 | if [ -e "$javaClass" ]; then 264 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 265 | if [ "$MVNW_VERBOSE" = true ]; then 266 | echo " - Compiling MavenWrapperDownloader.java ..." 267 | fi 268 | # Compiling the Java class 269 | ("$JAVA_HOME/bin/javac" "$javaClass") 270 | fi 271 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 272 | # Running the downloader 273 | if [ "$MVNW_VERBOSE" = true ]; then 274 | echo " - Running MavenWrapperDownloader.java ..." 275 | fi 276 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR") 277 | fi 278 | fi 279 | fi 280 | fi 281 | ########################################################################################## 282 | # End of extension 283 | ########################################################################################## 284 | 285 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"} 286 | if [ "$MVNW_VERBOSE" = true ]; then 287 | echo $MAVEN_PROJECTBASEDIR 288 | fi 289 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS" 290 | 291 | # For Cygwin, switch paths to Windows format before running java 292 | if $cygwin; then 293 | [ -n "$M2_HOME" ] && 294 | M2_HOME=`cygpath --path --windows "$M2_HOME"` 295 | [ -n "$JAVA_HOME" ] && 296 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"` 297 | [ -n "$CLASSPATH" ] && 298 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"` 299 | [ -n "$MAVEN_PROJECTBASEDIR" ] && 300 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"` 301 | fi 302 | 303 | # Provide a "standardized" way to retrieve the CLI args that will 304 | # work with both Windows and non-Windows executions. 305 | MAVEN_CMD_LINE_ARGS="$MAVEN_CONFIG $@" 306 | export MAVEN_CMD_LINE_ARGS 307 | 308 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 309 | 310 | exec "$JAVACMD" \ 311 | $MAVEN_OPTS \ 312 | $MAVEN_DEBUG_OPTS \ 313 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \ 314 | "-Dmaven.home=${M2_HOME}" \ 315 | "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \ 316 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@" 317 | --------------------------------------------------------------------------------