├── README.md ├── angular-11-client ├── .browserslistrc ├── .editorconfig ├── .gitignore ├── README.md ├── angular-11-jwt-authentication-flow.png ├── angular-11-jwt-authentication-overview.png ├── angular.json ├── e2e │ ├── protractor.conf.js │ ├── src │ │ ├── app.e2e-spec.ts │ │ └── app.po.ts │ └── tsconfig.json ├── karma.conf.js ├── package-lock.json ├── package.json ├── src │ ├── app │ │ ├── _helpers │ │ │ └── auth.interceptor.ts │ │ ├── _services │ │ │ ├── auth.service.spec.ts │ │ │ ├── auth.service.ts │ │ │ ├── token-storage.service.spec.ts │ │ │ ├── token-storage.service.ts │ │ │ ├── user.service.spec.ts │ │ │ └── user.service.ts │ │ ├── app-routing.module.ts │ │ ├── app.component.css │ │ ├── app.component.html │ │ ├── app.component.spec.ts │ │ ├── app.component.ts │ │ ├── app.module.ts │ │ ├── board-admin │ │ │ ├── board-admin.component.css │ │ │ ├── board-admin.component.html │ │ │ ├── board-admin.component.spec.ts │ │ │ └── board-admin.component.ts │ │ ├── board-moderator │ │ │ ├── board-moderator.component.css │ │ │ ├── board-moderator.component.html │ │ │ ├── board-moderator.component.spec.ts │ │ │ └── board-moderator.component.ts │ │ ├── board-user │ │ │ ├── board-user.component.css │ │ │ ├── board-user.component.html │ │ │ ├── board-user.component.spec.ts │ │ │ └── board-user.component.ts │ │ ├── home │ │ │ ├── home.component.css │ │ │ ├── home.component.html │ │ │ ├── home.component.spec.ts │ │ │ └── home.component.ts │ │ ├── login │ │ │ ├── login.component.css │ │ │ ├── login.component.html │ │ │ ├── login.component.spec.ts │ │ │ └── login.component.ts │ │ ├── profile │ │ │ ├── profile.component.css │ │ │ ├── profile.component.html │ │ │ ├── profile.component.spec.ts │ │ │ └── profile.component.ts │ │ └── register │ │ │ ├── register.component.css │ │ │ ├── register.component.html │ │ │ ├── register.component.spec.ts │ │ │ └── register.component.ts │ ├── assets │ │ └── .gitkeep │ ├── environments │ │ ├── environment.prod.ts │ │ └── environment.ts │ ├── favicon.ico │ ├── index.html │ ├── main.ts │ ├── polyfills.ts │ ├── styles.css │ └── test.ts ├── tsconfig.app.json ├── tsconfig.json ├── tsconfig.spec.json └── tslint.json ├── angular-11-spring-boot-jwt-authentication-authorization-client.png ├── angular-11-spring-boot-jwt-authentication-authorization-failed.png ├── angular-11-spring-boot-jwt-authentication-authorization-flow.png ├── angular-11-spring-boot-jwt-authentication-authorization-server.png ├── angular-11-spring-boot-jwt-authentication-authorization-successful.png ├── angular-11-spring-boot-jwt-authentication-form-validation.png ├── angular-11-spring-boot-jwt-authentication-public-page.png ├── angular-11-spring-boot-jwt-authentication-user-login.png ├── angular-11-spring-boot-jwt-authentication-user-profile.png ├── angular-11-spring-boot-jwt-authentication-user-registration.png ├── angular-11-spring-boot-jwt-authentication-user.png └── spring-boot-server ├── .gitignore ├── .mvn └── wrapper │ ├── MavenWrapperDownloader.java │ ├── maven-wrapper.jar │ └── maven-wrapper.properties ├── README.md ├── mvnw ├── mvnw.cmd ├── pom.xml ├── spring-boot-jwt-authentication-spring-security-architecture.png ├── spring-boot-jwt-authentication-spring-security-flow.png └── src ├── main ├── java │ └── com │ │ └── bezkoder │ │ └── springjwt │ │ ├── SpringBootSecurityJwtApplication.java │ │ ├── controllers │ │ ├── AuthController.java │ │ └── TestController.java │ │ ├── models │ │ ├── ERole.java │ │ ├── Role.java │ │ └── User.java │ │ ├── payload │ │ ├── request │ │ │ ├── LoginRequest.java │ │ │ └── SignupRequest.java │ │ └── response │ │ │ ├── JwtResponse.java │ │ │ └── MessageResponse.java │ │ ├── repository │ │ ├── RoleRepository.java │ │ └── UserRepository.java │ │ └── security │ │ ├── WebSecurityConfig.java │ │ ├── jwt │ │ ├── AuthEntryPointJwt.java │ │ ├── AuthTokenFilter.java │ │ └── JwtUtils.java │ │ └── services │ │ ├── UserDetailsImpl.java │ │ └── UserDetailsServiceImpl.java └── resources │ └── application.properties └── test └── java └── com └── bezkoder └── springjwt └── SpringBootSecurityJwtApplicationTests.java /README.md: -------------------------------------------------------------------------------- 1 | In this tutorial, I will show you how to build a full stack Angular 11 + Spring Boot JWT Authentication example. The back-end server uses Spring Boot with Spring Security for JWT Authentication & Authorization, Spring Data JPA for interacting with database. The front-end will be built using Angular 11 with HttpInterceptor & Form validation. 2 | 3 | ## Angular 11 Spring Boot JWT Authentication example 4 | It will be a full stack, with Spring Boot for back-end and Angular 11 for front-end. The system is secured by Spring Security with JWT Authentication. 5 | 6 | User can signup new account, login with username & password. 7 | Authorization by the role of the User (admin, moderator, user) 8 | Screenshots 9 | Here are UI screenshots of our system. 10 | 11 | – Anyone can access a public page before logging in: 12 | 13 | ![Angular 11 Spring Boot JWT Authentication Public Page](angular-11-spring-boot-jwt-authentication-public-page.png) 14 | 15 | – New user registration: 16 | 17 | ![Angular 11 Spring Boot JWT Authentication User Registration](angular-11-spring-boot-jwt-authentication-user-registration.png) 18 | 19 | – Signup Form Validation: 20 | 21 | ![Angular 11 Spring Boot JWT Authentication Form Validation](angular-11-spring-boot-jwt-authentication-form-validation.png) 22 | 23 | – After signup is successful, User can login: 24 | 25 | ![Angular 11 Spring Boot JWT Authentication User Login](angular-11-spring-boot-jwt-authentication-user-login.png) 26 | 27 | -Loggedin User can access Profile page/ User page: 28 | 29 | ![Angular 11 Spring Boot JWT Authentication Profile Page](angular-11-spring-boot-jwt-authentication-user-profile.png) 30 | 31 | ![Angular 11 Spring Boot JWT Authentication User Board](angular-11-spring-boot-jwt-authentication-user.png) 32 | 33 | – This is UI for **admin**: 34 | 35 | ![Angular 11 Spring Boot JWT Authentication Admin UI](angular-11-spring-boot-jwt-authentication-authorization-successful.png) 36 | 37 | – If a User who doesn’t have Admin role tries to access **Admin**/**Moderator Board** page: 38 | 39 | ![Angular 11 Spring Boot JWT Authentication Authorization](angular-11-spring-boot-jwt-authentication-authorization-failed.png) 40 | 41 | ## Demo 42 | This is full Angular + Spring Boot JWT authentication demo (with form validation, check signup username/email duplicates, test authorization with 3 roles: Admin, Moderator, User). 43 | 44 | [![Angular + Spring Boot JWT Authentication & Authorization example](http://img.youtube.com/vi/QdXHkybzrUU/0.jpg)](http://www.youtube.com/watch?v=QdXHkybzrUU) 45 | 46 | ## Flow for User Registration and User Login 47 | The diagram shows flow for User Registration process and User Login process. 48 | ![Angular 11 Spring Boot JWT Authentication Flow](angular-11-spring-boot-jwt-authentication-authorization-flow.png) 49 | 50 | It’s not too difficult to understand. We have 2 endpoints for authentication: 51 | 52 | * `api/auth/signup` for User Registration 53 | * `api/auth/signin` for User Login 54 | 55 | If Client wants to send request to protected data/endpoints, a legal JWT must be added to HTTP Authorization Header. 56 | 57 | ## Spring Boot & Spring Security for Back-end 58 | ![Angular 11 Spring Boot JWT Authentication Back-end](angular-11-spring-boot-jwt-authentication-authorization-server.png) 59 | 60 | ## Angular 11 for Front-end 61 | ![Angular 11 Spring Boot JWT Authentication Front-end](angular-11-spring-boot-jwt-authentication-authorization-client.png) 62 | 63 | For more details, please visit: 64 | [https://bezkoder.com/angular-11-spring-boot-jwt-auth/](https://bezkoder.com/angular-11-spring-boot-jwt-auth/) 65 | 66 | More Pactice: 67 | > [Angular 11 + Spring Boot + MySQL](https://bezkoder.com/angular-11-spring-boot-crud/) 68 | 69 | > [Angular 11 + Spring Boot + PostgreSQL](https://bezkoder.com/angular-11-spring-boot-postgresql/) 70 | 71 | > [Angular 11 + Spring Boot + MongoDB](https://bezkoder.com/angular-11-spring-boot-mongodb/) 72 | 73 | > [Angular 11 + Spring Boot: File upload example](https://bezkoder.com/angular-11-spring-boot-file-upload/) 74 | 75 | > [Angular 11 + Spring Boot: Pagination example](https://bezkoder.com/pagination-spring-boot-angular-11/) 76 | 77 | Serverless with Firebase: 78 | > [Angular 11 Firebase CRUD Realtime DB | AngularFireDatabase](https://bezkoder.com/angular-11-firebase-crud/) 79 | 80 | > [Angular 11 Firestore CRUD | AngularFireStore](https://bezkoder.com/angular-11-firestore-crud-angularfirestore/) 81 | 82 | > [Angular 11 Upload File to Firebase Storage example](https://bezkoder.com/angular-11-file-upload-firebase-storage/) 83 | 84 | Integration (run back-end & front-end on same server/port) 85 | > [How to Integrate Angular with Spring Boot Rest API](https://bezkoder.com/integrate-angular-spring-boot/) -------------------------------------------------------------------------------- /angular-11-client/.browserslistrc: -------------------------------------------------------------------------------- 1 | # This file is used by the build system to adjust CSS and JS output to support the specified browsers below. 2 | # For additional information regarding the format and rule options, please see: 3 | # https://github.com/browserslist/browserslist#queries 4 | 5 | # For the full list of supported browsers by the Angular framework, please see: 6 | # https://angular.io/guide/browser-support 7 | 8 | # You can see what browsers were selected by your queries by running: 9 | # npx browserslist 10 | 11 | last 1 Chrome version 12 | last 1 Firefox version 13 | last 2 Edge major versions 14 | last 2 Safari major versions 15 | last 2 iOS major versions 16 | Firefox ESR 17 | not IE 11 # Angular supports IE 11 only as an opt-in. To opt-in, remove the 'not' prefix on this line. 18 | -------------------------------------------------------------------------------- /angular-11-client/.editorconfig: -------------------------------------------------------------------------------- 1 | # Editor configuration, see https://editorconfig.org 2 | root = true 3 | 4 | [*] 5 | charset = utf-8 6 | indent_style = space 7 | indent_size = 2 8 | insert_final_newline = true 9 | trim_trailing_whitespace = true 10 | 11 | [*.ts] 12 | quote_type = single 13 | 14 | [*.md] 15 | max_line_length = off 16 | trim_trailing_whitespace = false 17 | -------------------------------------------------------------------------------- /angular-11-client/.gitignore: -------------------------------------------------------------------------------- 1 | # See http://help.github.com/ignore-files/ for more about ignoring files. 2 | 3 | # compiled output 4 | /dist 5 | /tmp 6 | /out-tsc 7 | # Only exists if Bazel was run 8 | /bazel-out 9 | 10 | # dependencies 11 | /node_modules 12 | 13 | # profiling files 14 | chrome-profiler-events*.json 15 | speed-measure-plugin*.json 16 | 17 | # IDEs and editors 18 | /.idea 19 | .project 20 | .classpath 21 | .c9/ 22 | *.launch 23 | .settings/ 24 | *.sublime-workspace 25 | 26 | # IDE - VSCode 27 | .vscode/* 28 | !.vscode/settings.json 29 | !.vscode/tasks.json 30 | !.vscode/launch.json 31 | !.vscode/extensions.json 32 | .history/* 33 | 34 | # misc 35 | /.sass-cache 36 | /connect.lock 37 | /coverage 38 | /libpeerconnection.log 39 | npm-debug.log 40 | yarn-error.log 41 | testem.log 42 | /typings 43 | 44 | # System Files 45 | .DS_Store 46 | Thumbs.db 47 | -------------------------------------------------------------------------------- /angular-11-client/README.md: -------------------------------------------------------------------------------- 1 | # Angular 11 JWT Authentication example 2 | 3 | ## Flow for User Registration and User Login 4 | For JWT – Token based Authentication with Web API, we’re gonna call 2 endpoints: 5 | - POST `api/auth/signup` for User Registration 6 | - POST `api/auth/signin` for User Login 7 | 8 | You can take a look at following flow to have an overview of Requests and Responses that Angular 10 Client will make or receive. 9 | 10 | ![angular-11-jwt-authentication-flow](angular-11-jwt-authentication-flow.png) 11 | 12 | ## Angular JWT App Diagram with Router and HttpInterceptor 13 | ![angular-11-jwt-authentication-overview](angular-11-jwt-authentication-overview.png) 14 | 15 | For more detail, please visit: 16 | > [Angular 11 JWT Authentication & Authorization with Web API](https://bezkoder.com/angular-11-jwt-auth/) 17 | 18 | ## With Spring Boot back-end 19 | 20 | > [Angular + Spring Boot: JWT Authentication & Authorization example](https://bezkoder.com/angular-11-spring-boot-jwt-auth/) 21 | 22 | Run `ng serve` for a dev server. Navigate to `http://localhost:4200/`. 23 | 24 | ## With Node.js Express back-end 25 | 26 | > [Angular + Node.js Express: JWT Authentication & Authorization example](https://bezkoder.com/node-js-express-angular-10-jwt-auth/) 27 | 28 | Open `app/_helpers/auth.interceptor.js`, modify the code to work with **x-access-token** like this: 29 | ```js 30 | ... 31 | 32 | // const TOKEN_HEADER_KEY = 'Authorization'; // for Spring Boot back-end 33 | const TOKEN_HEADER_KEY = 'x-access-token'; // for Node.js Express back-end 34 | 35 | @Injectable() 36 | export class AuthInterceptor implements HttpInterceptor { 37 | ... 38 | 39 | intercept(req: HttpRequest, next: HttpHandler): Observable> { 40 | ... 41 | if (token != null) { 42 | // for Spring Boot back-end 43 | // authReq = req.clone({ headers: req.headers.set(TOKEN_HEADER_KEY, 'Bearer ' + token) }); 44 | 45 | // for Node.js Express back-end 46 | authReq = req.clone({ headers: req.headers.set(TOKEN_HEADER_KEY, token) }); 47 | } 48 | return next.handle(authReq); 49 | } 50 | } 51 | 52 | ... 53 | ``` 54 | 55 | Run `ng serve --port 8081` for a dev server. Navigate to `http://localhost:8081/`. 56 | 57 | ## More practice 58 | > [Angular 11 CRUD Application example with Web API](https://bezkoder.com/angular-11-crud-app/) 59 | 60 | > [Angular 11 Pagination example | ngx-pagination](https://bezkoder.com/angular-11-pagination-ngx/) 61 | 62 | > [Angular 11 File Upload example with progress bar](https://bezkoder.com/angular-11-file-upload/) 63 | 64 | Fullstack with Node.js Express: 65 | > [Angular 11 + Node.js Express + MySQL](https://bezkoder.com/angular-11-node-js-express-mysql/) 66 | 67 | > [Angular 11 + Node.js Express + PostgreSQL](https://bezkoder.com/angular-11-node-js-express-postgresql/) 68 | 69 | > [Angular 11 + Node.js Express + MongoDB](https://bezkoder.com/angular-11-mongodb-node-js-express/) 70 | 71 | Fullstack with Spring Boot: 72 | > [Angular 11 + Spring Boot + MySQL](https://bezkoder.com/angular-11-spring-boot-crud/) 73 | 74 | > [Angular 11 + Spring Boot + PostgreSQL](https://bezkoder.com/angular-11-spring-boot-postgresql/) 75 | 76 | > [Angular 11 + Spring Boot + MongoDB](https://bezkoder.com/angular-11-spring-boot-mongodb/) 77 | 78 | > [Angular 11 + Spring Boot: File upload example](https://bezkoder.com/angular-11-spring-boot-file-upload/) 79 | 80 | > [Angular 11 + Spring Boot: Pagination example](https://bezkoder.com/pagination-spring-boot-angular-11/) 81 | 82 | Fullstack with Django: 83 | > [Angular 11 + Django Rest Framework](https://bezkoder.com/django-angular-11-crud-rest-framework/) 84 | 85 | > [Angular 11 + Django + PostgreSQL](https://bezkoder.com/django-angular-postgresql/) 86 | 87 | Serverless with Firebase: 88 | > [Angular 11 Firebase CRUD Realtime DB | AngularFireDatabase](https://bezkoder.com/angular-11-firebase-crud/) 89 | 90 | > [Angular 11 Firestore CRUD | AngularFireStore](https://bezkoder.com/angular-11-firestore-crud-angularfirestore/) 91 | 92 | > [Angular 11 Upload File to Firebase Storage: Display/Delete Files example](https://bezkoder.com/angular-11-file-upload-firebase-storage/) 93 | 94 | Integration (run back-end & front-end on same server/port) 95 | > [How to Integrate Angular 10 with Node.js Restful Services](https://bezkoder.com/integrate-angular-10-node-js/) 96 | 97 | > [How to Integrate Angular with Spring Boot Rest API](https://bezkoder.com/integrate-angular-spring-boot/) -------------------------------------------------------------------------------- /angular-11-client/angular-11-jwt-authentication-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/angular-11-jwt-authentication-flow.png -------------------------------------------------------------------------------- /angular-11-client/angular-11-jwt-authentication-overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/angular-11-jwt-authentication-overview.png -------------------------------------------------------------------------------- /angular-11-client/angular.json: -------------------------------------------------------------------------------- 1 | { 2 | "$schema": "./node_modules/@angular/cli/lib/config/schema.json", 3 | "version": 1, 4 | "newProjectRoot": "projects", 5 | "projects": { 6 | "Angular11JwtAuth": { 7 | "projectType": "application", 8 | "schematics": { 9 | "@schematics/angular:application": { 10 | "strict": true 11 | } 12 | }, 13 | "root": "", 14 | "sourceRoot": "src", 15 | "prefix": "app", 16 | "architect": { 17 | "build": { 18 | "builder": "@angular-devkit/build-angular:browser", 19 | "options": { 20 | "outputPath": "dist/Angular11JwtAuth", 21 | "index": "src/index.html", 22 | "main": "src/main.ts", 23 | "polyfills": "src/polyfills.ts", 24 | "tsConfig": "tsconfig.app.json", 25 | "aot": true, 26 | "assets": [ 27 | "src/favicon.ico", 28 | "src/assets" 29 | ], 30 | "styles": [ 31 | "src/styles.css" 32 | ], 33 | "scripts": [] 34 | }, 35 | "configurations": { 36 | "production": { 37 | "fileReplacements": [ 38 | { 39 | "replace": "src/environments/environment.ts", 40 | "with": "src/environments/environment.prod.ts" 41 | } 42 | ], 43 | "optimization": true, 44 | "outputHashing": "all", 45 | "sourceMap": false, 46 | "namedChunks": false, 47 | "extractLicenses": true, 48 | "vendorChunk": false, 49 | "buildOptimizer": true, 50 | "budgets": [ 51 | { 52 | "type": "initial", 53 | "maximumWarning": "500kb", 54 | "maximumError": "1mb" 55 | }, 56 | { 57 | "type": "anyComponentStyle", 58 | "maximumWarning": "2kb", 59 | "maximumError": "4kb" 60 | } 61 | ] 62 | } 63 | } 64 | }, 65 | "serve": { 66 | "builder": "@angular-devkit/build-angular:dev-server", 67 | "options": { 68 | "browserTarget": "Angular11JwtAuth:build" 69 | }, 70 | "configurations": { 71 | "production": { 72 | "browserTarget": "Angular11JwtAuth:build:production" 73 | } 74 | } 75 | }, 76 | "extract-i18n": { 77 | "builder": "@angular-devkit/build-angular:extract-i18n", 78 | "options": { 79 | "browserTarget": "Angular11JwtAuth:build" 80 | } 81 | }, 82 | "test": { 83 | "builder": "@angular-devkit/build-angular:karma", 84 | "options": { 85 | "main": "src/test.ts", 86 | "polyfills": "src/polyfills.ts", 87 | "tsConfig": "tsconfig.spec.json", 88 | "karmaConfig": "karma.conf.js", 89 | "assets": [ 90 | "src/favicon.ico", 91 | "src/assets" 92 | ], 93 | "styles": [ 94 | "src/styles.css" 95 | ], 96 | "scripts": [] 97 | } 98 | }, 99 | "lint": { 100 | "builder": "@angular-devkit/build-angular:tslint", 101 | "options": { 102 | "tsConfig": [ 103 | "tsconfig.app.json", 104 | "tsconfig.spec.json", 105 | "e2e/tsconfig.json" 106 | ], 107 | "exclude": [ 108 | "**/node_modules/**" 109 | ] 110 | } 111 | }, 112 | "e2e": { 113 | "builder": "@angular-devkit/build-angular:protractor", 114 | "options": { 115 | "protractorConfig": "e2e/protractor.conf.js", 116 | "devServerTarget": "Angular11JwtAuth:serve" 117 | }, 118 | "configurations": { 119 | "production": { 120 | "devServerTarget": "Angular11JwtAuth:serve:production" 121 | } 122 | } 123 | } 124 | } 125 | } 126 | }, 127 | "defaultProject": "Angular11JwtAuth" 128 | } 129 | -------------------------------------------------------------------------------- /angular-11-client/e2e/protractor.conf.js: -------------------------------------------------------------------------------- 1 | // @ts-check 2 | // Protractor configuration file, see link for more information 3 | // https://github.com/angular/protractor/blob/master/lib/config.ts 4 | 5 | const { SpecReporter, StacktraceOption } = require('jasmine-spec-reporter'); 6 | 7 | /** 8 | * @type { import("protractor").Config } 9 | */ 10 | exports.config = { 11 | allScriptsTimeout: 11000, 12 | specs: [ 13 | './src/**/*.e2e-spec.ts' 14 | ], 15 | capabilities: { 16 | browserName: 'chrome' 17 | }, 18 | directConnect: true, 19 | SELENIUM_PROMISE_MANAGER: false, 20 | baseUrl: 'http://localhost:4200/', 21 | framework: 'jasmine', 22 | jasmineNodeOpts: { 23 | showColors: true, 24 | defaultTimeoutInterval: 30000, 25 | print: function() {} 26 | }, 27 | onPrepare() { 28 | require('ts-node').register({ 29 | project: require('path').join(__dirname, './tsconfig.json') 30 | }); 31 | jasmine.getEnv().addReporter(new SpecReporter({ 32 | spec: { 33 | displayStacktrace: StacktraceOption.PRETTY 34 | } 35 | })); 36 | } 37 | }; -------------------------------------------------------------------------------- /angular-11-client/e2e/src/app.e2e-spec.ts: -------------------------------------------------------------------------------- 1 | import { AppPage } from './app.po'; 2 | import { browser, logging } from 'protractor'; 3 | 4 | describe('workspace-project App', () => { 5 | let page: AppPage; 6 | 7 | beforeEach(() => { 8 | page = new AppPage(); 9 | }); 10 | 11 | it('should display welcome message', async () => { 12 | await page.navigateTo(); 13 | expect(await page.getTitleText()).toEqual('Angular11JwtAuth app is running!'); 14 | }); 15 | 16 | afterEach(async () => { 17 | // Assert that there are no errors emitted from the browser 18 | const logs = await browser.manage().logs().get(logging.Type.BROWSER); 19 | expect(logs).not.toContain(jasmine.objectContaining({ 20 | level: logging.Level.SEVERE, 21 | } as logging.Entry)); 22 | }); 23 | }); 24 | -------------------------------------------------------------------------------- /angular-11-client/e2e/src/app.po.ts: -------------------------------------------------------------------------------- 1 | import { browser, by, element } from 'protractor'; 2 | 3 | export class AppPage { 4 | async navigateTo(): Promise { 5 | return browser.get(browser.baseUrl); 6 | } 7 | 8 | async getTitleText(): Promise { 9 | return element(by.css('app-root .content span')).getText(); 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /angular-11-client/e2e/tsconfig.json: -------------------------------------------------------------------------------- 1 | /* To learn more about this file see: https://angular.io/config/tsconfig. */ 2 | { 3 | "extends": "../tsconfig.json", 4 | "compilerOptions": { 5 | "outDir": "../out-tsc/e2e", 6 | "module": "commonjs", 7 | "target": "es2018", 8 | "types": [ 9 | "jasmine", 10 | "node" 11 | ] 12 | } 13 | } 14 | -------------------------------------------------------------------------------- /angular-11-client/karma.conf.js: -------------------------------------------------------------------------------- 1 | // Karma configuration file, see link for more information 2 | // https://karma-runner.github.io/1.0/config/configuration-file.html 3 | 4 | module.exports = function (config) { 5 | config.set({ 6 | basePath: '', 7 | frameworks: ['jasmine', '@angular-devkit/build-angular'], 8 | plugins: [ 9 | require('karma-jasmine'), 10 | require('karma-chrome-launcher'), 11 | require('karma-jasmine-html-reporter'), 12 | require('karma-coverage'), 13 | require('@angular-devkit/build-angular/plugins/karma') 14 | ], 15 | client: { 16 | clearContext: false // leave Jasmine Spec Runner output visible in browser 17 | }, 18 | jasmineHtmlReporter: { 19 | suppressAll: true // removes the duplicated traces 20 | }, 21 | coverageReporter: { 22 | dir: require('path').join(__dirname, './coverage/Angular11JwtAuth'), 23 | subdir: '.', 24 | reporters: [ 25 | { type: 'html' }, 26 | { type: 'text-summary' } 27 | ] 28 | }, 29 | reporters: ['progress', 'kjhtml'], 30 | port: 9876, 31 | colors: true, 32 | logLevel: config.LOG_INFO, 33 | autoWatch: true, 34 | browsers: ['Chrome'], 35 | singleRun: false, 36 | restartOnFileChange: true 37 | }); 38 | }; 39 | -------------------------------------------------------------------------------- /angular-11-client/package.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "angular11-jwt-auth", 3 | "version": "0.0.0", 4 | "scripts": { 5 | "ng": "ng", 6 | "start": "ng serve", 7 | "build": "ng build", 8 | "test": "ng test", 9 | "lint": "ng lint", 10 | "e2e": "ng e2e" 11 | }, 12 | "private": true, 13 | "dependencies": { 14 | "@angular/animations": "~11.0.1", 15 | "@angular/common": "~11.0.1", 16 | "@angular/compiler": "~11.0.1", 17 | "@angular/core": "~11.0.1", 18 | "@angular/forms": "~11.0.1", 19 | "@angular/platform-browser": "~11.0.1", 20 | "@angular/platform-browser-dynamic": "~11.0.1", 21 | "@angular/router": "~11.0.1", 22 | "rxjs": "~6.6.0", 23 | "tslib": "^2.0.0", 24 | "zone.js": "~0.10.2" 25 | }, 26 | "devDependencies": { 27 | "@angular-devkit/build-angular": "~0.1100.2", 28 | "@angular/cli": "~11.0.2", 29 | "@angular/compiler-cli": "~11.0.1", 30 | "@types/jasmine": "~3.6.0", 31 | "@types/node": "^12.11.1", 32 | "codelyzer": "^6.0.0", 33 | "jasmine-core": "~3.6.0", 34 | "jasmine-spec-reporter": "~5.0.0", 35 | "karma": "~5.1.0", 36 | "karma-chrome-launcher": "~3.1.0", 37 | "karma-coverage": "~2.0.3", 38 | "karma-jasmine": "~4.0.0", 39 | "karma-jasmine-html-reporter": "^1.5.0", 40 | "protractor": "~7.0.0", 41 | "ts-node": "~8.3.0", 42 | "tslint": "~6.1.0", 43 | "typescript": "~4.0.2" 44 | } 45 | } 46 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_helpers/auth.interceptor.ts: -------------------------------------------------------------------------------- 1 | import { HTTP_INTERCEPTORS, HttpEvent } from '@angular/common/http'; 2 | import { Injectable } from '@angular/core'; 3 | import { HttpInterceptor, HttpHandler, HttpRequest } from '@angular/common/http'; 4 | 5 | import { TokenStorageService } from '../_services/token-storage.service'; 6 | import { Observable } from 'rxjs'; 7 | 8 | const TOKEN_HEADER_KEY = 'Authorization'; // for Spring Boot back-end 9 | // const TOKEN_HEADER_KEY = 'x-access-token'; // for Node.js Express back-end 10 | 11 | @Injectable() 12 | export class AuthInterceptor implements HttpInterceptor { 13 | constructor(private token: TokenStorageService) { } 14 | 15 | intercept(req: HttpRequest, next: HttpHandler): Observable> { 16 | let authReq = req; 17 | const token = this.token.getToken(); 18 | if (token != null) { 19 | // for Spring Boot back-end 20 | authReq = req.clone({ headers: req.headers.set(TOKEN_HEADER_KEY, 'Bearer ' + token) }); 21 | 22 | // for Node.js Express back-end 23 | // authReq = req.clone({ headers: req.headers.set(TOKEN_HEADER_KEY, token) }); 24 | } 25 | return next.handle(authReq); 26 | } 27 | } 28 | 29 | export const authInterceptorProviders = [ 30 | { provide: HTTP_INTERCEPTORS, useClass: AuthInterceptor, multi: true } 31 | ]; 32 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_services/auth.service.spec.ts: -------------------------------------------------------------------------------- 1 | import { TestBed } from '@angular/core/testing'; 2 | 3 | import { AuthService } from './auth.service'; 4 | 5 | describe('AuthService', () => { 6 | let service: AuthService; 7 | 8 | beforeEach(() => { 9 | TestBed.configureTestingModule({}); 10 | service = TestBed.inject(AuthService); 11 | }); 12 | 13 | it('should be created', () => { 14 | expect(service).toBeTruthy(); 15 | }); 16 | }); 17 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_services/auth.service.ts: -------------------------------------------------------------------------------- 1 | import { Injectable } from '@angular/core'; 2 | import { HttpClient, HttpHeaders } from '@angular/common/http'; 3 | import { Observable } from 'rxjs'; 4 | 5 | const AUTH_API = 'http://localhost:8080/api/auth/'; 6 | 7 | const httpOptions = { 8 | headers: new HttpHeaders({ 'Content-Type': 'application/json' }) 9 | }; 10 | 11 | @Injectable({ 12 | providedIn: 'root' 13 | }) 14 | export class AuthService { 15 | constructor(private http: HttpClient) { } 16 | 17 | login(username: string, password: string): Observable { 18 | return this.http.post(AUTH_API + 'signin', { 19 | username, 20 | password 21 | }, httpOptions); 22 | } 23 | 24 | register(username: string, email: string, password: string): Observable { 25 | return this.http.post(AUTH_API + 'signup', { 26 | username, 27 | email, 28 | password 29 | }, httpOptions); 30 | } 31 | } 32 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_services/token-storage.service.spec.ts: -------------------------------------------------------------------------------- 1 | import { TestBed } from '@angular/core/testing'; 2 | 3 | import { TokenStorageService } from './token-storage.service'; 4 | 5 | describe('TokenStorageService', () => { 6 | let service: TokenStorageService; 7 | 8 | beforeEach(() => { 9 | TestBed.configureTestingModule({}); 10 | service = TestBed.inject(TokenStorageService); 11 | }); 12 | 13 | it('should be created', () => { 14 | expect(service).toBeTruthy(); 15 | }); 16 | }); 17 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_services/token-storage.service.ts: -------------------------------------------------------------------------------- 1 | import { Injectable } from '@angular/core'; 2 | 3 | const TOKEN_KEY = 'auth-token'; 4 | const USER_KEY = 'auth-user'; 5 | 6 | @Injectable({ 7 | providedIn: 'root' 8 | }) 9 | export class TokenStorageService { 10 | constructor() { } 11 | 12 | signOut(): void { 13 | window.sessionStorage.clear(); 14 | } 15 | 16 | public saveToken(token: string): void { 17 | window.sessionStorage.removeItem(TOKEN_KEY); 18 | window.sessionStorage.setItem(TOKEN_KEY, token); 19 | } 20 | 21 | public getToken(): string | null { 22 | return window.sessionStorage.getItem(TOKEN_KEY); 23 | } 24 | 25 | public saveUser(user: any): void { 26 | window.sessionStorage.removeItem(USER_KEY); 27 | window.sessionStorage.setItem(USER_KEY, JSON.stringify(user)); 28 | } 29 | 30 | public getUser(): any { 31 | const user = window.sessionStorage.getItem(USER_KEY); 32 | if (user) { 33 | return JSON.parse(user); 34 | } 35 | 36 | return {}; 37 | } 38 | } 39 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_services/user.service.spec.ts: -------------------------------------------------------------------------------- 1 | import { TestBed } from '@angular/core/testing'; 2 | 3 | import { UserService } from './user.service'; 4 | 5 | describe('UserService', () => { 6 | let service: UserService; 7 | 8 | beforeEach(() => { 9 | TestBed.configureTestingModule({}); 10 | service = TestBed.inject(UserService); 11 | }); 12 | 13 | it('should be created', () => { 14 | expect(service).toBeTruthy(); 15 | }); 16 | }); 17 | -------------------------------------------------------------------------------- /angular-11-client/src/app/_services/user.service.ts: -------------------------------------------------------------------------------- 1 | import { Injectable } from '@angular/core'; 2 | import { HttpClient } from '@angular/common/http'; 3 | import { Observable } from 'rxjs'; 4 | 5 | const API_URL = 'http://localhost:8080/api/test/'; 6 | 7 | @Injectable({ 8 | providedIn: 'root' 9 | }) 10 | export class UserService { 11 | constructor(private http: HttpClient) { } 12 | 13 | getPublicContent(): Observable { 14 | return this.http.get(API_URL + 'all', { responseType: 'text' }); 15 | } 16 | 17 | getUserBoard(): Observable { 18 | return this.http.get(API_URL + 'user', { responseType: 'text' }); 19 | } 20 | 21 | getModeratorBoard(): Observable { 22 | return this.http.get(API_URL + 'mod', { responseType: 'text' }); 23 | } 24 | 25 | getAdminBoard(): Observable { 26 | return this.http.get(API_URL + 'admin', { responseType: 'text' }); 27 | } 28 | } 29 | -------------------------------------------------------------------------------- /angular-11-client/src/app/app-routing.module.ts: -------------------------------------------------------------------------------- 1 | import { NgModule } from '@angular/core'; 2 | import { Routes, RouterModule } from '@angular/router'; 3 | 4 | import { RegisterComponent } from './register/register.component'; 5 | import { LoginComponent } from './login/login.component'; 6 | import { HomeComponent } from './home/home.component'; 7 | import { ProfileComponent } from './profile/profile.component'; 8 | import { BoardUserComponent } from './board-user/board-user.component'; 9 | import { BoardModeratorComponent } from './board-moderator/board-moderator.component'; 10 | import { BoardAdminComponent } from './board-admin/board-admin.component'; 11 | 12 | const routes: Routes = [ 13 | { path: 'home', component: HomeComponent }, 14 | { path: 'login', component: LoginComponent }, 15 | { path: 'register', component: RegisterComponent }, 16 | { path: 'profile', component: ProfileComponent }, 17 | { path: 'user', component: BoardUserComponent }, 18 | { path: 'mod', component: BoardModeratorComponent }, 19 | { path: 'admin', component: BoardAdminComponent }, 20 | { path: '', redirectTo: 'home', pathMatch: 'full' } 21 | ]; 22 | 23 | @NgModule({ 24 | imports: [RouterModule.forRoot(routes)], 25 | exports: [RouterModule] 26 | }) 27 | export class AppRoutingModule { } 28 | -------------------------------------------------------------------------------- /angular-11-client/src/app/app.component.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/app/app.component.css -------------------------------------------------------------------------------- /angular-11-client/src/app/app.component.html: -------------------------------------------------------------------------------- 1 |
2 | 37 | 38 |
39 | 40 |
41 |
42 | -------------------------------------------------------------------------------- /angular-11-client/src/app/app.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { TestBed } from '@angular/core/testing'; 2 | import { RouterTestingModule } from '@angular/router/testing'; 3 | import { AppComponent } from './app.component'; 4 | 5 | describe('AppComponent', () => { 6 | beforeEach(async () => { 7 | await TestBed.configureTestingModule({ 8 | imports: [ 9 | RouterTestingModule 10 | ], 11 | declarations: [ 12 | AppComponent 13 | ], 14 | }).compileComponents(); 15 | }); 16 | 17 | it('should create the app', () => { 18 | const fixture = TestBed.createComponent(AppComponent); 19 | const app = fixture.componentInstance; 20 | expect(app).toBeTruthy(); 21 | }); 22 | 23 | it(`should have as title 'Angular11JwtAuth'`, () => { 24 | const fixture = TestBed.createComponent(AppComponent); 25 | const app = fixture.componentInstance; 26 | expect(app.title).toEqual('Angular11JwtAuth'); 27 | }); 28 | 29 | it('should render title', () => { 30 | const fixture = TestBed.createComponent(AppComponent); 31 | fixture.detectChanges(); 32 | const compiled = fixture.nativeElement; 33 | expect(compiled.querySelector('.content span').textContent).toContain('Angular11JwtAuth app is running!'); 34 | }); 35 | }); 36 | -------------------------------------------------------------------------------- /angular-11-client/src/app/app.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { TokenStorageService } from './_services/token-storage.service'; 3 | 4 | @Component({ 5 | selector: 'app-root', 6 | templateUrl: './app.component.html', 7 | styleUrls: ['./app.component.css'] 8 | }) 9 | export class AppComponent implements OnInit { 10 | private roles: string[] = []; 11 | isLoggedIn = false; 12 | showAdminBoard = false; 13 | showModeratorBoard = false; 14 | username?: string; 15 | 16 | constructor(private tokenStorageService: TokenStorageService) { } 17 | 18 | ngOnInit(): void { 19 | this.isLoggedIn = !!this.tokenStorageService.getToken(); 20 | 21 | if (this.isLoggedIn) { 22 | const user = this.tokenStorageService.getUser(); 23 | this.roles = user.roles; 24 | 25 | this.showAdminBoard = this.roles.includes('ROLE_ADMIN'); 26 | this.showModeratorBoard = this.roles.includes('ROLE_MODERATOR'); 27 | 28 | this.username = user.username; 29 | } 30 | } 31 | 32 | logout(): void { 33 | this.tokenStorageService.signOut(); 34 | window.location.reload(); 35 | } 36 | } 37 | -------------------------------------------------------------------------------- /angular-11-client/src/app/app.module.ts: -------------------------------------------------------------------------------- 1 | import { BrowserModule } from '@angular/platform-browser'; 2 | import { NgModule } from '@angular/core'; 3 | import { FormsModule } from '@angular/forms'; 4 | import { HttpClientModule } from '@angular/common/http'; 5 | 6 | import { AppRoutingModule } from './app-routing.module'; 7 | import { AppComponent } from './app.component'; 8 | import { LoginComponent } from './login/login.component'; 9 | import { RegisterComponent } from './register/register.component'; 10 | import { HomeComponent } from './home/home.component'; 11 | import { ProfileComponent } from './profile/profile.component'; 12 | import { BoardAdminComponent } from './board-admin/board-admin.component'; 13 | import { BoardModeratorComponent } from './board-moderator/board-moderator.component'; 14 | import { BoardUserComponent } from './board-user/board-user.component'; 15 | 16 | import { authInterceptorProviders } from './_helpers/auth.interceptor'; 17 | 18 | @NgModule({ 19 | declarations: [ 20 | AppComponent, 21 | LoginComponent, 22 | RegisterComponent, 23 | HomeComponent, 24 | ProfileComponent, 25 | BoardAdminComponent, 26 | BoardModeratorComponent, 27 | BoardUserComponent 28 | ], 29 | imports: [ 30 | BrowserModule, 31 | AppRoutingModule, 32 | FormsModule, 33 | HttpClientModule 34 | ], 35 | providers: [authInterceptorProviders], 36 | bootstrap: [AppComponent] 37 | }) 38 | export class AppModule { } 39 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-admin/board-admin.component.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/app/board-admin/board-admin.component.css -------------------------------------------------------------------------------- /angular-11-client/src/app/board-admin/board-admin.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 |

{{ content }}

4 |
5 |
6 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-admin/board-admin.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { BoardAdminComponent } from './board-admin.component'; 4 | 5 | describe('BoardAdminComponent', () => { 6 | let component: BoardAdminComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ BoardAdminComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(BoardAdminComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-admin/board-admin.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { UserService } from '../_services/user.service'; 3 | 4 | @Component({ 5 | selector: 'app-board-admin', 6 | templateUrl: './board-admin.component.html', 7 | styleUrls: ['./board-admin.component.css'] 8 | }) 9 | export class BoardAdminComponent implements OnInit { 10 | content?: string; 11 | 12 | constructor(private userService: UserService) { } 13 | 14 | ngOnInit(): void { 15 | this.userService.getAdminBoard().subscribe( 16 | data => { 17 | this.content = data; 18 | }, 19 | err => { 20 | this.content = JSON.parse(err.error).message; 21 | } 22 | ); 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-moderator/board-moderator.component.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/app/board-moderator/board-moderator.component.css -------------------------------------------------------------------------------- /angular-11-client/src/app/board-moderator/board-moderator.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 |

{{ content }}

4 |
5 |
6 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-moderator/board-moderator.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { BoardModeratorComponent } from './board-moderator.component'; 4 | 5 | describe('BoardModeratorComponent', () => { 6 | let component: BoardModeratorComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ BoardModeratorComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(BoardModeratorComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-moderator/board-moderator.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { UserService } from '../_services/user.service'; 3 | 4 | @Component({ 5 | selector: 'app-board-moderator', 6 | templateUrl: './board-moderator.component.html', 7 | styleUrls: ['./board-moderator.component.css'] 8 | }) 9 | export class BoardModeratorComponent implements OnInit { 10 | content?: string; 11 | 12 | constructor(private userService: UserService) { } 13 | 14 | ngOnInit(): void { 15 | this.userService.getModeratorBoard().subscribe( 16 | data => { 17 | this.content = data; 18 | }, 19 | err => { 20 | this.content = JSON.parse(err.error).message; 21 | } 22 | ); 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-user/board-user.component.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/app/board-user/board-user.component.css -------------------------------------------------------------------------------- /angular-11-client/src/app/board-user/board-user.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 |

{{ content }}

4 |
5 |
6 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-user/board-user.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { BoardUserComponent } from './board-user.component'; 4 | 5 | describe('BoardUserComponent', () => { 6 | let component: BoardUserComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ BoardUserComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(BoardUserComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/board-user/board-user.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { UserService } from '../_services/user.service'; 3 | 4 | @Component({ 5 | selector: 'app-board-user', 6 | templateUrl: './board-user.component.html', 7 | styleUrls: ['./board-user.component.css'] 8 | }) 9 | export class BoardUserComponent implements OnInit { 10 | content?: string; 11 | 12 | constructor(private userService: UserService) { } 13 | 14 | ngOnInit(): void { 15 | this.userService.getUserBoard().subscribe( 16 | data => { 17 | this.content = data; 18 | }, 19 | err => { 20 | this.content = JSON.parse(err.error).message; 21 | } 22 | ); 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /angular-11-client/src/app/home/home.component.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/app/home/home.component.css -------------------------------------------------------------------------------- /angular-11-client/src/app/home/home.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 |

{{ content }}

4 |
5 |
6 | -------------------------------------------------------------------------------- /angular-11-client/src/app/home/home.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { HomeComponent } from './home.component'; 4 | 5 | describe('HomeComponent', () => { 6 | let component: HomeComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ HomeComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(HomeComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/home/home.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { UserService } from '../_services/user.service'; 3 | 4 | @Component({ 5 | selector: 'app-home', 6 | templateUrl: './home.component.html', 7 | styleUrls: ['./home.component.css'] 8 | }) 9 | export class HomeComponent implements OnInit { 10 | content?: string; 11 | 12 | constructor(private userService: UserService) { } 13 | 14 | ngOnInit(): void { 15 | this.userService.getPublicContent().subscribe( 16 | data => { 17 | this.content = data; 18 | }, 19 | err => { 20 | this.content = JSON.parse(err.error).message; 21 | } 22 | ); 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /angular-11-client/src/app/login/login.component.css: -------------------------------------------------------------------------------- 1 | label { 2 | display: block; 3 | margin-top: 10px; 4 | } 5 | 6 | .card-container.card { 7 | max-width: 400px !important; 8 | padding: 40px 40px; 9 | } 10 | 11 | .card { 12 | background-color: #f7f7f7; 13 | padding: 20px 25px 30px; 14 | margin: 0 auto 25px; 15 | margin-top: 50px; 16 | -moz-border-radius: 2px; 17 | -webkit-border-radius: 2px; 18 | border-radius: 2px; 19 | -moz-box-shadow: 0px 2px 2px rgba(0, 0, 0, 0.3); 20 | -webkit-box-shadow: 0px 2px 2px rgba(0, 0, 0, 0.3); 21 | box-shadow: 0px 2px 2px rgba(0, 0, 0, 0.3); 22 | } 23 | 24 | .profile-img-card { 25 | width: 96px; 26 | height: 96px; 27 | margin: 0 auto 10px; 28 | display: block; 29 | -moz-border-radius: 50%; 30 | -webkit-border-radius: 50%; 31 | border-radius: 50%; 32 | } -------------------------------------------------------------------------------- /angular-11-client/src/app/login/login.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 | 8 |
15 |
16 | 17 | 25 | 32 |
33 |
34 | 35 | 44 | 54 |
55 |
56 | 59 |
60 |
61 | 68 |
69 |
70 | 71 |
72 | Logged in as {{ roles }}. 73 |
74 |
75 |
76 | -------------------------------------------------------------------------------- /angular-11-client/src/app/login/login.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { LoginComponent } from './login.component'; 4 | 5 | describe('LoginComponent', () => { 6 | let component: LoginComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ LoginComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(LoginComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/login/login.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { AuthService } from '../_services/auth.service'; 3 | import { TokenStorageService } from '../_services/token-storage.service'; 4 | 5 | @Component({ 6 | selector: 'app-login', 7 | templateUrl: './login.component.html', 8 | styleUrls: ['./login.component.css'] 9 | }) 10 | export class LoginComponent implements OnInit { 11 | form: any = { 12 | username: null, 13 | password: null 14 | }; 15 | isLoggedIn = false; 16 | isLoginFailed = false; 17 | errorMessage = ''; 18 | roles: string[] = []; 19 | 20 | constructor(private authService: AuthService, private tokenStorage: TokenStorageService) { } 21 | 22 | ngOnInit(): void { 23 | if (this.tokenStorage.getToken()) { 24 | this.isLoggedIn = true; 25 | this.roles = this.tokenStorage.getUser().roles; 26 | } 27 | } 28 | 29 | onSubmit(): void { 30 | const { username, password } = this.form; 31 | 32 | this.authService.login(username, password).subscribe( 33 | data => { 34 | this.tokenStorage.saveToken(data.accessToken); 35 | this.tokenStorage.saveUser(data); 36 | 37 | this.isLoginFailed = false; 38 | this.isLoggedIn = true; 39 | this.roles = this.tokenStorage.getUser().roles; 40 | this.reloadPage(); 41 | }, 42 | err => { 43 | this.errorMessage = err.error.message; 44 | this.isLoginFailed = true; 45 | } 46 | ); 47 | } 48 | 49 | reloadPage(): void { 50 | window.location.reload(); 51 | } 52 | } 53 | -------------------------------------------------------------------------------- /angular-11-client/src/app/profile/profile.component.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/app/profile/profile.component.css -------------------------------------------------------------------------------- /angular-11-client/src/app/profile/profile.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 |

4 | {{ currentUser.username }} Profile 5 |

6 |
7 |

8 | Token: 9 | {{ currentUser.accessToken.substring(0, 20) }} ... 10 | {{ currentUser.accessToken.substr(currentUser.accessToken.length - 20) }} 11 |

12 |

13 | Email: 14 | {{ currentUser.email }} 15 |

16 | Roles: 17 |
    18 |
  • 19 | {{ role }} 20 |
    • 21 |
22 |
23 | 24 | 25 | Please login. 26 | 27 | -------------------------------------------------------------------------------- /angular-11-client/src/app/profile/profile.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { ProfileComponent } from './profile.component'; 4 | 5 | describe('ProfileComponent', () => { 6 | let component: ProfileComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ ProfileComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(ProfileComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/profile/profile.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { TokenStorageService } from '../_services/token-storage.service'; 3 | 4 | @Component({ 5 | selector: 'app-profile', 6 | templateUrl: './profile.component.html', 7 | styleUrls: ['./profile.component.css'] 8 | }) 9 | export class ProfileComponent implements OnInit { 10 | currentUser: any; 11 | 12 | constructor(private token: TokenStorageService) { } 13 | 14 | ngOnInit(): void { 15 | this.currentUser = this.token.getUser(); 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /angular-11-client/src/app/register/register.component.css: -------------------------------------------------------------------------------- 1 | label { 2 | display: block; 3 | margin-top: 10px; 4 | } 5 | 6 | .card-container.card { 7 | max-width: 400px !important; 8 | padding: 40px 40px; 9 | } 10 | 11 | .card { 12 | background-color: #f7f7f7; 13 | padding: 20px 25px 30px; 14 | margin: 0 auto 25px; 15 | margin-top: 50px; 16 | -moz-border-radius: 2px; 17 | -webkit-border-radius: 2px; 18 | border-radius: 2px; 19 | -moz-box-shadow: 0px 2px 2px rgba(0, 0, 0, 0.3); 20 | -webkit-box-shadow: 0px 2px 2px rgba(0, 0, 0, 0.3); 21 | box-shadow: 0px 2px 2px rgba(0, 0, 0, 0.3); 22 | } 23 | 24 | .profile-img-card { 25 | width: 96px; 26 | height: 96px; 27 | margin: 0 auto 10px; 28 | display: block; 29 | -moz-border-radius: 50%; 30 | -webkit-border-radius: 50%; 31 | border-radius: 50%; 32 | } -------------------------------------------------------------------------------- /angular-11-client/src/app/register/register.component.html: -------------------------------------------------------------------------------- 1 |
2 |
3 | 8 |
15 |
16 | 17 | 27 |
28 |
Username is required
29 |
30 | Username must be at least 3 characters 31 |
32 |
33 | Username must be at most 20 characters 34 |
35 |
36 |
37 |
38 | 39 | 48 |
49 |
Email is required
50 |
51 | Email must be a valid email address 52 |
53 |
54 |
55 |
56 | 57 | 66 |
67 |
Password is required
68 |
69 | Password must be at least 6 characters 70 |
71 |
72 |
73 |
74 | 75 |
76 | 77 |
78 | Signup failed!
{{ errorMessage }} 79 |
80 |
81 | 82 |
83 | Your registration is successful! 84 |
85 |
86 |
87 | -------------------------------------------------------------------------------- /angular-11-client/src/app/register/register.component.spec.ts: -------------------------------------------------------------------------------- 1 | import { ComponentFixture, TestBed } from '@angular/core/testing'; 2 | 3 | import { RegisterComponent } from './register.component'; 4 | 5 | describe('RegisterComponent', () => { 6 | let component: RegisterComponent; 7 | let fixture: ComponentFixture; 8 | 9 | beforeEach(async () => { 10 | await TestBed.configureTestingModule({ 11 | declarations: [ RegisterComponent ] 12 | }) 13 | .compileComponents(); 14 | }); 15 | 16 | beforeEach(() => { 17 | fixture = TestBed.createComponent(RegisterComponent); 18 | component = fixture.componentInstance; 19 | fixture.detectChanges(); 20 | }); 21 | 22 | it('should create', () => { 23 | expect(component).toBeTruthy(); 24 | }); 25 | }); 26 | -------------------------------------------------------------------------------- /angular-11-client/src/app/register/register.component.ts: -------------------------------------------------------------------------------- 1 | import { Component, OnInit } from '@angular/core'; 2 | import { AuthService } from '../_services/auth.service'; 3 | 4 | @Component({ 5 | selector: 'app-register', 6 | templateUrl: './register.component.html', 7 | styleUrls: ['./register.component.css'] 8 | }) 9 | export class RegisterComponent implements OnInit { 10 | form: any = { 11 | username: null, 12 | email: null, 13 | password: null 14 | }; 15 | isSuccessful = false; 16 | isSignUpFailed = false; 17 | errorMessage = ''; 18 | 19 | constructor(private authService: AuthService) { } 20 | 21 | ngOnInit(): void { 22 | } 23 | 24 | onSubmit(): void { 25 | const { username, email, password } = this.form; 26 | 27 | this.authService.register(username, email, password).subscribe( 28 | data => { 29 | console.log(data); 30 | this.isSuccessful = true; 31 | this.isSignUpFailed = false; 32 | }, 33 | err => { 34 | this.errorMessage = err.error.message; 35 | this.isSignUpFailed = true; 36 | } 37 | ); 38 | } 39 | } 40 | -------------------------------------------------------------------------------- /angular-11-client/src/assets/.gitkeep: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/assets/.gitkeep -------------------------------------------------------------------------------- /angular-11-client/src/environments/environment.prod.ts: -------------------------------------------------------------------------------- 1 | export const environment = { 2 | production: true 3 | }; 4 | -------------------------------------------------------------------------------- /angular-11-client/src/environments/environment.ts: -------------------------------------------------------------------------------- 1 | // This file can be replaced during build by using the `fileReplacements` array. 2 | // `ng build --prod` replaces `environment.ts` with `environment.prod.ts`. 3 | // The list of file replacements can be found in `angular.json`. 4 | 5 | export const environment = { 6 | production: false 7 | }; 8 | 9 | /* 10 | * For easier debugging in development mode, you can import the following file 11 | * to ignore zone related error stack frames such as `zone.run`, `zoneDelegate.invokeTask`. 12 | * 13 | * This import should be commented out in production mode because it will have a negative impact 14 | * on performance if an error is thrown. 15 | */ 16 | // import 'zone.js/dist/zone-error'; // Included with Angular CLI. 17 | -------------------------------------------------------------------------------- /angular-11-client/src/favicon.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-client/src/favicon.ico -------------------------------------------------------------------------------- /angular-11-client/src/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | Angular11JwtAuth 6 | 7 | 8 | 9 | 15 | 16 | 17 | 18 | 19 | 20 | -------------------------------------------------------------------------------- /angular-11-client/src/main.ts: -------------------------------------------------------------------------------- 1 | import { enableProdMode } from '@angular/core'; 2 | import { platformBrowserDynamic } from '@angular/platform-browser-dynamic'; 3 | 4 | import { AppModule } from './app/app.module'; 5 | import { environment } from './environments/environment'; 6 | 7 | if (environment.production) { 8 | enableProdMode(); 9 | } 10 | 11 | platformBrowserDynamic().bootstrapModule(AppModule) 12 | .catch(err => console.error(err)); 13 | -------------------------------------------------------------------------------- /angular-11-client/src/polyfills.ts: -------------------------------------------------------------------------------- 1 | /** 2 | * This file includes polyfills needed by Angular and is loaded before the app. 3 | * You can add your own extra polyfills to this file. 4 | * 5 | * This file is divided into 2 sections: 6 | * 1. Browser polyfills. These are applied before loading ZoneJS and are sorted by browsers. 7 | * 2. Application imports. Files imported after ZoneJS that should be loaded before your main 8 | * file. 9 | * 10 | * The current setup is for so-called "evergreen" browsers; the last versions of browsers that 11 | * automatically update themselves. This includes Safari >= 10, Chrome >= 55 (including Opera), 12 | * Edge >= 13 on the desktop, and iOS 10 and Chrome on mobile. 13 | * 14 | * Learn more in https://angular.io/guide/browser-support 15 | */ 16 | 17 | /*************************************************************************************************** 18 | * BROWSER POLYFILLS 19 | */ 20 | 21 | /** IE11 requires the following for NgClass support on SVG elements */ 22 | // import 'classlist.js'; // Run `npm install --save classlist.js`. 23 | 24 | /** 25 | * Web Animations `@angular/platform-browser/animations` 26 | * Only required if AnimationBuilder is used within the application and using IE/Edge or Safari. 27 | * Standard animation support in Angular DOES NOT require any polyfills (as of Angular 6.0). 28 | */ 29 | // import 'web-animations-js'; // Run `npm install --save web-animations-js`. 30 | 31 | /** 32 | * By default, zone.js will patch all possible macroTask and DomEvents 33 | * user can disable parts of macroTask/DomEvents patch by setting following flags 34 | * because those flags need to be set before `zone.js` being loaded, and webpack 35 | * will put import in the top of bundle, so user need to create a separate file 36 | * in this directory (for example: zone-flags.ts), and put the following flags 37 | * into that file, and then add the following code before importing zone.js. 38 | * import './zone-flags'; 39 | * 40 | * The flags allowed in zone-flags.ts are listed here. 41 | * 42 | * The following flags will work for all browsers. 43 | * 44 | * (window as any).__Zone_disable_requestAnimationFrame = true; // disable patch requestAnimationFrame 45 | * (window as any).__Zone_disable_on_property = true; // disable patch onProperty such as onclick 46 | * (window as any).__zone_symbol__UNPATCHED_EVENTS = ['scroll', 'mousemove']; // disable patch specified eventNames 47 | * 48 | * in IE/Edge developer tools, the addEventListener will also be wrapped by zone.js 49 | * with the following flag, it will bypass `zone.js` patch for IE/Edge 50 | * 51 | * (window as any).__Zone_enable_cross_context_check = true; 52 | * 53 | */ 54 | 55 | /*************************************************************************************************** 56 | * Zone JS is required by default for Angular itself. 57 | */ 58 | import 'zone.js/dist/zone'; // Included with Angular CLI. 59 | 60 | 61 | /*************************************************************************************************** 62 | * APPLICATION IMPORTS 63 | */ 64 | -------------------------------------------------------------------------------- /angular-11-client/src/styles.css: -------------------------------------------------------------------------------- 1 | /* You can add global styles to this file, and also import other style files */ 2 | -------------------------------------------------------------------------------- /angular-11-client/src/test.ts: -------------------------------------------------------------------------------- 1 | // This file is required by karma.conf.js and loads recursively all the .spec and framework files 2 | 3 | import 'zone.js/dist/zone-testing'; 4 | import { getTestBed } from '@angular/core/testing'; 5 | import { 6 | BrowserDynamicTestingModule, 7 | platformBrowserDynamicTesting 8 | } from '@angular/platform-browser-dynamic/testing'; 9 | 10 | declare const require: { 11 | context(path: string, deep?: boolean, filter?: RegExp): { 12 | keys(): string[]; 13 | (id: string): T; 14 | }; 15 | }; 16 | 17 | // First, initialize the Angular testing environment. 18 | getTestBed().initTestEnvironment( 19 | BrowserDynamicTestingModule, 20 | platformBrowserDynamicTesting() 21 | ); 22 | // Then we find all the tests. 23 | const context = require.context('./', true, /\.spec\.ts$/); 24 | // And load the modules. 25 | context.keys().map(context); 26 | -------------------------------------------------------------------------------- /angular-11-client/tsconfig.app.json: -------------------------------------------------------------------------------- 1 | /* To learn more about this file see: https://angular.io/config/tsconfig. */ 2 | { 3 | "extends": "./tsconfig.json", 4 | "compilerOptions": { 5 | "outDir": "./out-tsc/app", 6 | "types": [] 7 | }, 8 | "files": [ 9 | "src/main.ts", 10 | "src/polyfills.ts" 11 | ], 12 | "include": [ 13 | "src/**/*.d.ts" 14 | ] 15 | } 16 | -------------------------------------------------------------------------------- /angular-11-client/tsconfig.json: -------------------------------------------------------------------------------- 1 | /* To learn more about this file see: https://angular.io/config/tsconfig. */ 2 | { 3 | "compileOnSave": false, 4 | "compilerOptions": { 5 | "baseUrl": "./", 6 | "outDir": "./dist/out-tsc", 7 | "forceConsistentCasingInFileNames": true, 8 | "strict": true, 9 | "noImplicitReturns": true, 10 | "noFallthroughCasesInSwitch": true, 11 | "sourceMap": true, 12 | "declaration": false, 13 | "downlevelIteration": true, 14 | "experimentalDecorators": true, 15 | "moduleResolution": "node", 16 | "importHelpers": true, 17 | "target": "es2015", 18 | "module": "es2020", 19 | "lib": [ 20 | "es2018", 21 | "dom" 22 | ] 23 | }, 24 | "angularCompilerOptions": { 25 | "strictInjectionParameters": true, 26 | "strictInputAccessModifiers": true, 27 | "strictTemplates": true 28 | } 29 | } 30 | -------------------------------------------------------------------------------- /angular-11-client/tsconfig.spec.json: -------------------------------------------------------------------------------- 1 | /* To learn more about this file see: https://angular.io/config/tsconfig. */ 2 | { 3 | "extends": "./tsconfig.json", 4 | "compilerOptions": { 5 | "outDir": "./out-tsc/spec", 6 | "types": [ 7 | "jasmine" 8 | ] 9 | }, 10 | "files": [ 11 | "src/test.ts", 12 | "src/polyfills.ts" 13 | ], 14 | "include": [ 15 | "src/**/*.spec.ts", 16 | "src/**/*.d.ts" 17 | ] 18 | } 19 | -------------------------------------------------------------------------------- /angular-11-client/tslint.json: -------------------------------------------------------------------------------- 1 | { 2 | "extends": "tslint:recommended", 3 | "rulesDirectory": [ 4 | "codelyzer" 5 | ], 6 | "rules": { 7 | "align": { 8 | "options": [ 9 | "parameters", 10 | "statements" 11 | ] 12 | }, 13 | "array-type": false, 14 | "arrow-return-shorthand": true, 15 | "curly": true, 16 | "deprecation": { 17 | "severity": "warning" 18 | }, 19 | "eofline": true, 20 | "import-blacklist": [ 21 | true, 22 | "rxjs/Rx" 23 | ], 24 | "import-spacing": true, 25 | "indent": { 26 | "options": [ 27 | "spaces" 28 | ] 29 | }, 30 | "max-classes-per-file": false, 31 | "max-line-length": [ 32 | true, 33 | 140 34 | ], 35 | "member-ordering": [ 36 | true, 37 | { 38 | "order": [ 39 | "static-field", 40 | "instance-field", 41 | "static-method", 42 | "instance-method" 43 | ] 44 | } 45 | ], 46 | "no-console": [ 47 | true, 48 | "debug", 49 | "info", 50 | "time", 51 | "timeEnd", 52 | "trace" 53 | ], 54 | "no-empty": false, 55 | "no-inferrable-types": [ 56 | true, 57 | "ignore-params" 58 | ], 59 | "no-non-null-assertion": true, 60 | "no-redundant-jsdoc": true, 61 | "no-switch-case-fall-through": true, 62 | "no-var-requires": false, 63 | "object-literal-key-quotes": [ 64 | true, 65 | "as-needed" 66 | ], 67 | "quotemark": [ 68 | true, 69 | "single" 70 | ], 71 | "semicolon": { 72 | "options": [ 73 | "always" 74 | ] 75 | }, 76 | "space-before-function-paren": { 77 | "options": { 78 | "anonymous": "never", 79 | "asyncArrow": "always", 80 | "constructor": "never", 81 | "method": "never", 82 | "named": "never" 83 | } 84 | }, 85 | "typedef": [ 86 | true, 87 | "call-signature" 88 | ], 89 | "typedef-whitespace": { 90 | "options": [ 91 | { 92 | "call-signature": "nospace", 93 | "index-signature": "nospace", 94 | "parameter": "nospace", 95 | "property-declaration": "nospace", 96 | "variable-declaration": "nospace" 97 | }, 98 | { 99 | "call-signature": "onespace", 100 | "index-signature": "onespace", 101 | "parameter": "onespace", 102 | "property-declaration": "onespace", 103 | "variable-declaration": "onespace" 104 | } 105 | ] 106 | }, 107 | "variable-name": { 108 | "options": [ 109 | "ban-keywords", 110 | "check-format", 111 | "allow-pascal-case" 112 | ] 113 | }, 114 | "whitespace": { 115 | "options": [ 116 | "check-branch", 117 | "check-decl", 118 | "check-operator", 119 | "check-separator", 120 | "check-type", 121 | "check-typecast" 122 | ] 123 | }, 124 | "component-class-suffix": true, 125 | "contextual-lifecycle": true, 126 | "directive-class-suffix": true, 127 | "no-conflicting-lifecycle": true, 128 | "no-host-metadata-property": true, 129 | "no-input-rename": true, 130 | "no-inputs-metadata-property": true, 131 | "no-output-native": true, 132 | "no-output-on-prefix": true, 133 | "no-output-rename": true, 134 | "no-outputs-metadata-property": true, 135 | "template-banana-in-box": true, 136 | "template-no-negated-async": true, 137 | "use-lifecycle-interface": true, 138 | "use-pipe-transform-interface": true, 139 | "directive-selector": [ 140 | true, 141 | "attribute", 142 | "app", 143 | "camelCase" 144 | ], 145 | "component-selector": [ 146 | true, 147 | "element", 148 | "app", 149 | "kebab-case" 150 | ] 151 | } 152 | } 153 | -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-authorization-client.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-authorization-client.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-authorization-failed.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-authorization-failed.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-authorization-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-authorization-flow.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-authorization-server.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-authorization-server.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-authorization-successful.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-authorization-successful.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-form-validation.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-form-validation.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-public-page.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-public-page.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-user-login.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-user-login.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-user-profile.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-user-profile.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-user-registration.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-user-registration.png -------------------------------------------------------------------------------- /angular-11-spring-boot-jwt-authentication-user.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/angular-11-spring-boot-jwt-authentication-user.png -------------------------------------------------------------------------------- /spring-boot-server/.gitignore: -------------------------------------------------------------------------------- 1 | HELP.md 2 | target/ 3 | !.mvn/wrapper/maven-wrapper.jar 4 | !**/src/main/** 5 | !**/src/test/** 6 | 7 | ### STS ### 8 | .apt_generated 9 | .classpath 10 | .factorypath 11 | .project 12 | .settings 13 | .springBeans 14 | .sts4-cache 15 | 16 | ### IntelliJ IDEA ### 17 | .idea 18 | *.iws 19 | *.iml 20 | *.ipr 21 | 22 | ### NetBeans ### 23 | /nbproject/private/ 24 | /nbbuild/ 25 | /dist/ 26 | /nbdist/ 27 | /.nb-gradle/ 28 | build/ 29 | 30 | ### VS Code ### 31 | .vscode/ 32 | -------------------------------------------------------------------------------- /spring-boot-server/.mvn/wrapper/MavenWrapperDownloader.java: -------------------------------------------------------------------------------- 1 | /* 2 | Licensed to the Apache Software Foundation (ASF) under one 3 | or more contributor license agreements. See the NOTICE file 4 | distributed with this work for additional information 5 | regarding copyright ownership. The ASF licenses this file 6 | to you under the Apache License, Version 2.0 (the 7 | "License"); you may not use this file except in compliance 8 | with the License. You may obtain a copy of the License at 9 | 10 | https://www.apache.org/licenses/LICENSE-2.0 11 | 12 | Unless required by applicable law or agreed to in writing, 13 | software distributed under the License is distributed on an 14 | "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | KIND, either express or implied. See the License for the 16 | specific language governing permissions and limitations 17 | under the License. 18 | */ 19 | 20 | import java.io.File; 21 | import java.io.FileInputStream; 22 | import java.io.FileOutputStream; 23 | import java.io.IOException; 24 | import java.net.URL; 25 | import java.nio.channels.Channels; 26 | import java.nio.channels.ReadableByteChannel; 27 | import java.util.Properties; 28 | 29 | public class MavenWrapperDownloader { 30 | 31 | /** 32 | * Default URL to download the maven-wrapper.jar from, if no 'downloadUrl' is provided. 33 | */ 34 | private static final String DEFAULT_DOWNLOAD_URL = 35 | "https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar"; 36 | 37 | /** 38 | * Path to the maven-wrapper.properties file, which might contain a downloadUrl property to 39 | * use instead of the default one. 40 | */ 41 | private static final String MAVEN_WRAPPER_PROPERTIES_PATH = 42 | ".mvn/wrapper/maven-wrapper.properties"; 43 | 44 | /** 45 | * Path where the maven-wrapper.jar will be saved to. 46 | */ 47 | private static final String MAVEN_WRAPPER_JAR_PATH = 48 | ".mvn/wrapper/maven-wrapper.jar"; 49 | 50 | /** 51 | * Name of the property which should be used to override the default download url for the wrapper. 52 | */ 53 | private static final String PROPERTY_NAME_WRAPPER_URL = "wrapperUrl"; 54 | 55 | public static void main(String args[]) { 56 | System.out.println("- Downloader started"); 57 | File baseDirectory = new File(args[0]); 58 | System.out.println("- Using base directory: " + baseDirectory.getAbsolutePath()); 59 | 60 | // If the maven-wrapper.properties exists, read it and check if it contains a custom 61 | // wrapperUrl parameter. 62 | File mavenWrapperPropertyFile = new File(baseDirectory, MAVEN_WRAPPER_PROPERTIES_PATH); 63 | String url = DEFAULT_DOWNLOAD_URL; 64 | if(mavenWrapperPropertyFile.exists()) { 65 | FileInputStream mavenWrapperPropertyFileInputStream = null; 66 | try { 67 | mavenWrapperPropertyFileInputStream = new FileInputStream(mavenWrapperPropertyFile); 68 | Properties mavenWrapperProperties = new Properties(); 69 | mavenWrapperProperties.load(mavenWrapperPropertyFileInputStream); 70 | url = mavenWrapperProperties.getProperty(PROPERTY_NAME_WRAPPER_URL, url); 71 | } catch (IOException e) { 72 | System.out.println("- ERROR loading '" + MAVEN_WRAPPER_PROPERTIES_PATH + "'"); 73 | } finally { 74 | try { 75 | if(mavenWrapperPropertyFileInputStream != null) { 76 | mavenWrapperPropertyFileInputStream.close(); 77 | } 78 | } catch (IOException e) { 79 | // Ignore ... 80 | } 81 | } 82 | } 83 | System.out.println("- Downloading from: : " + url); 84 | 85 | File outputFile = new File(baseDirectory.getAbsolutePath(), MAVEN_WRAPPER_JAR_PATH); 86 | if(!outputFile.getParentFile().exists()) { 87 | if(!outputFile.getParentFile().mkdirs()) { 88 | System.out.println( 89 | "- ERROR creating output direcrory '" + outputFile.getParentFile().getAbsolutePath() + "'"); 90 | } 91 | } 92 | System.out.println("- Downloading to: " + outputFile.getAbsolutePath()); 93 | try { 94 | downloadFileFromURL(url, outputFile); 95 | System.out.println("Done"); 96 | System.exit(0); 97 | } catch (Throwable e) { 98 | System.out.println("- Error downloading"); 99 | e.printStackTrace(); 100 | System.exit(1); 101 | } 102 | } 103 | 104 | private static void downloadFileFromURL(String urlString, File destination) throws Exception { 105 | URL website = new URL(urlString); 106 | ReadableByteChannel rbc; 107 | rbc = Channels.newChannel(website.openStream()); 108 | FileOutputStream fos = new FileOutputStream(destination); 109 | fos.getChannel().transferFrom(rbc, 0, Long.MAX_VALUE); 110 | fos.close(); 111 | rbc.close(); 112 | } 113 | 114 | } 115 | -------------------------------------------------------------------------------- /spring-boot-server/.mvn/wrapper/maven-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/spring-boot-server/.mvn/wrapper/maven-wrapper.jar -------------------------------------------------------------------------------- /spring-boot-server/.mvn/wrapper/maven-wrapper.properties: -------------------------------------------------------------------------------- 1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.6.0/apache-maven-3.6.0-bin.zip 2 | -------------------------------------------------------------------------------- /spring-boot-server/README.md: -------------------------------------------------------------------------------- 1 | # Spring Boot JWT Authentication example with Spring Security & Spring Data JPA 2 | 3 | ## User Registration, User Login and Authorization process. 4 | The diagram shows flow of how we implement User Registration, User Login and Authorization process. 5 | 6 | ![spring-boot-jwt-authentication-spring-security-flow](spring-boot-jwt-authentication-spring-security-flow.png) 7 | 8 | ## Spring Boot Server Architecture with Spring Security 9 | You can have an overview of our Spring Boot Server with the diagram below: 10 | 11 | ![spring-boot-jwt-authentication-spring-security-architecture](spring-boot-jwt-authentication-spring-security-architecture.png) 12 | 13 | For more detail, please visit: 14 | > [Secure Spring Boot App with Spring Security & JWT Authentication](https://bezkoder.com/spring-boot-jwt-authentication/) 15 | 16 | > [For MongoDB](https://bezkoder.com/spring-boot-jwt-auth-mongodb/) 17 | 18 | ## Fullstack Authentication 19 | 20 | > [Spring Boot + Vue.js JWT Authentication](https://bezkoder.com/spring-boot-vue-js-authentication-jwt-spring-security/) 21 | 22 | > [Spring Boot + Angular 8 JWT Authentication](https://bezkoder.com/angular-spring-boot-jwt-auth/) 23 | 24 | > [Spring Boot + Angular 10 JWT Authentication](https://bezkoder.com/angular-10-spring-boot-jwt-auth/) 25 | 26 | > [Spring Boot + Angular 11 JWT Authentication](https://bezkoder.com/angular-11-spring-boot-jwt-auth/) 27 | 28 | > [Spring Boot + React JWT Authentication](https://bezkoder.com/spring-boot-react-jwt-auth/) 29 | 30 | ## Fullstack CRUD App 31 | 32 | > [Vue.js + Spring Boot + MySQL/PostgreSQL example](https://bezkoder.com/spring-boot-vue-js-crud-example/) 33 | 34 | > [Angular + Spring Boot + MySQL example](https://bezkoder.com/angular-10-spring-boot-crud/) 35 | 36 | > [Angular + Spring Boot + PostgreSQL example](https://bezkoder.com/angular-10-spring-boot-postgresql/) 37 | 38 | > [React + Spring Boot + MySQL example](https://bezkoder.com/react-spring-boot-crud/) 39 | 40 | > [React + Spring Boot + PostgreSQL example](https://bezkoder.com/spring-boot-react-postgresql/) 41 | 42 | Run both Back-end & Front-end in one place: 43 | > [Integrate Angular with Spring Boot Rest API](https://bezkoder.com/integrate-angular-spring-boot/) 44 | 45 | > [Integrate React.js with Spring Boot Rest API](https://bezkoder.com/integrate-reactjs-spring-boot/) 46 | 47 | ## Dependency 48 | – If you want to use PostgreSQL: 49 | ```xml 50 | 51 | org.postgresql 52 | postgresql 53 | runtime 54 | 55 | ``` 56 | – or MySQL: 57 | ```xml 58 | 59 | mysql 60 | mysql-connector-java 61 | runtime 62 | 63 | ``` 64 | ## Configure Spring Datasource, JPA, App properties 65 | Open `src/main/resources/application.properties` 66 | - For PostgreSQL: 67 | ``` 68 | spring.datasource.url= jdbc:postgresql://localhost:5432/testdb 69 | spring.datasource.username= postgres 70 | spring.datasource.password= 123 71 | 72 | spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation= true 73 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.PostgreSQLDialect 74 | 75 | # Hibernate ddl auto (create, create-drop, validate, update) 76 | spring.jpa.hibernate.ddl-auto= update 77 | 78 | # App Properties 79 | bezkoder.app.jwtSecret= bezKoderSecretKey 80 | bezkoder.app.jwtExpirationMs= 86400000 81 | ``` 82 | - For MySQL 83 | ``` 84 | spring.datasource.url= jdbc:mysql://localhost:3306/testdb?useSSL=false 85 | spring.datasource.username= root 86 | spring.datasource.password= 123456 87 | 88 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.MySQL5InnoDBDialect 89 | spring.jpa.hibernate.ddl-auto= update 90 | 91 | # App Properties 92 | bezkoder.app.jwtSecret= bezKoderSecretKey 93 | bezkoder.app.jwtExpirationMs= 86400000 94 | ``` 95 | ## Run Spring Boot application 96 | ``` 97 | mvn spring-boot:run 98 | ``` 99 | 100 | ## Run following SQL insert statements 101 | ``` 102 | INSERT INTO roles(name) VALUES('ROLE_USER'); 103 | INSERT INTO roles(name) VALUES('ROLE_MODERATOR'); 104 | INSERT INTO roles(name) VALUES('ROLE_ADMIN'); 105 | ``` 106 | -------------------------------------------------------------------------------- /spring-boot-server/mvnw: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # ---------------------------------------------------------------------------- 3 | # Licensed to the Apache Software Foundation (ASF) under one 4 | # or more contributor license agreements. See the NOTICE file 5 | # distributed with this work for additional information 6 | # regarding copyright ownership. The ASF licenses this file 7 | # to you under the Apache License, Version 2.0 (the 8 | # "License"); you may not use this file except in compliance 9 | # with the License. You may obtain a copy of the License at 10 | # 11 | # https://www.apache.org/licenses/LICENSE-2.0 12 | # 13 | # Unless required by applicable law or agreed to in writing, 14 | # software distributed under the License is distributed on an 15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 16 | # KIND, either express or implied. See the License for the 17 | # specific language governing permissions and limitations 18 | # under the License. 19 | # ---------------------------------------------------------------------------- 20 | 21 | # ---------------------------------------------------------------------------- 22 | # Maven2 Start Up Batch script 23 | # 24 | # Required ENV vars: 25 | # ------------------ 26 | # JAVA_HOME - location of a JDK home dir 27 | # 28 | # Optional ENV vars 29 | # ----------------- 30 | # M2_HOME - location of maven2's installed home dir 31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven 32 | # e.g. to debug Maven itself, use 33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files 35 | # ---------------------------------------------------------------------------- 36 | 37 | if [ -z "$MAVEN_SKIP_RC" ] ; then 38 | 39 | if [ -f /etc/mavenrc ] ; then 40 | . /etc/mavenrc 41 | fi 42 | 43 | if [ -f "$HOME/.mavenrc" ] ; then 44 | . "$HOME/.mavenrc" 45 | fi 46 | 47 | fi 48 | 49 | # OS specific support. $var _must_ be set to either true or false. 50 | cygwin=false; 51 | darwin=false; 52 | mingw=false 53 | case "`uname`" in 54 | CYGWIN*) cygwin=true ;; 55 | MINGW*) mingw=true;; 56 | Darwin*) darwin=true 57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home 58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html 59 | if [ -z "$JAVA_HOME" ]; then 60 | if [ -x "/usr/libexec/java_home" ]; then 61 | export JAVA_HOME="`/usr/libexec/java_home`" 62 | else 63 | export JAVA_HOME="/Library/Java/Home" 64 | fi 65 | fi 66 | ;; 67 | esac 68 | 69 | if [ -z "$JAVA_HOME" ] ; then 70 | if [ -r /etc/gentoo-release ] ; then 71 | JAVA_HOME=`java-config --jre-home` 72 | fi 73 | fi 74 | 75 | if [ -z "$M2_HOME" ] ; then 76 | ## resolve links - $0 may be a link to maven's home 77 | PRG="$0" 78 | 79 | # need this for relative symlinks 80 | while [ -h "$PRG" ] ; do 81 | ls=`ls -ld "$PRG"` 82 | link=`expr "$ls" : '.*-> \(.*\)$'` 83 | if expr "$link" : '/.*' > /dev/null; then 84 | PRG="$link" 85 | else 86 | PRG="`dirname "$PRG"`/$link" 87 | fi 88 | done 89 | 90 | saveddir=`pwd` 91 | 92 | M2_HOME=`dirname "$PRG"`/.. 93 | 94 | # make it fully qualified 95 | M2_HOME=`cd "$M2_HOME" && pwd` 96 | 97 | cd "$saveddir" 98 | # echo Using m2 at $M2_HOME 99 | fi 100 | 101 | # For Cygwin, ensure paths are in UNIX format before anything is touched 102 | if $cygwin ; then 103 | [ -n "$M2_HOME" ] && 104 | M2_HOME=`cygpath --unix "$M2_HOME"` 105 | [ -n "$JAVA_HOME" ] && 106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"` 107 | [ -n "$CLASSPATH" ] && 108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"` 109 | fi 110 | 111 | # For Mingw, ensure paths are in UNIX format before anything is touched 112 | if $mingw ; then 113 | [ -n "$M2_HOME" ] && 114 | M2_HOME="`(cd "$M2_HOME"; pwd)`" 115 | [ -n "$JAVA_HOME" ] && 116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`" 117 | # TODO classpath? 118 | fi 119 | 120 | if [ -z "$JAVA_HOME" ]; then 121 | javaExecutable="`which javac`" 122 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then 123 | # readlink(1) is not available as standard on Solaris 10. 124 | readLink=`which readlink` 125 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then 126 | if $darwin ; then 127 | javaHome="`dirname \"$javaExecutable\"`" 128 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac" 129 | else 130 | javaExecutable="`readlink -f \"$javaExecutable\"`" 131 | fi 132 | javaHome="`dirname \"$javaExecutable\"`" 133 | javaHome=`expr "$javaHome" : '\(.*\)/bin'` 134 | JAVA_HOME="$javaHome" 135 | export JAVA_HOME 136 | fi 137 | fi 138 | fi 139 | 140 | if [ -z "$JAVACMD" ] ; then 141 | if [ -n "$JAVA_HOME" ] ; then 142 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 143 | # IBM's JDK on AIX uses strange locations for the executables 144 | JAVACMD="$JAVA_HOME/jre/sh/java" 145 | else 146 | JAVACMD="$JAVA_HOME/bin/java" 147 | fi 148 | else 149 | JAVACMD="`which java`" 150 | fi 151 | fi 152 | 153 | if [ ! -x "$JAVACMD" ] ; then 154 | echo "Error: JAVA_HOME is not defined correctly." >&2 155 | echo " We cannot execute $JAVACMD" >&2 156 | exit 1 157 | fi 158 | 159 | if [ -z "$JAVA_HOME" ] ; then 160 | echo "Warning: JAVA_HOME environment variable is not set." 161 | fi 162 | 163 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher 164 | 165 | # traverses directory structure from process work directory to filesystem root 166 | # first directory with .mvn subdirectory is considered project base directory 167 | find_maven_basedir() { 168 | 169 | if [ -z "$1" ] 170 | then 171 | echo "Path not specified to find_maven_basedir" 172 | return 1 173 | fi 174 | 175 | basedir="$1" 176 | wdir="$1" 177 | while [ "$wdir" != '/' ] ; do 178 | if [ -d "$wdir"/.mvn ] ; then 179 | basedir=$wdir 180 | break 181 | fi 182 | # workaround for JBEAP-8937 (on Solaris 10/Sparc) 183 | if [ -d "${wdir}" ]; then 184 | wdir=`cd "$wdir/.."; pwd` 185 | fi 186 | # end of workaround 187 | done 188 | echo "${basedir}" 189 | } 190 | 191 | # concatenates all lines of a file 192 | concat_lines() { 193 | if [ -f "$1" ]; then 194 | echo "$(tr -s '\n' ' ' < "$1")" 195 | fi 196 | } 197 | 198 | BASE_DIR=`find_maven_basedir "$(pwd)"` 199 | if [ -z "$BASE_DIR" ]; then 200 | exit 1; 201 | fi 202 | 203 | ########################################################################################## 204 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 205 | # This allows using the maven wrapper in projects that prohibit checking in binary data. 206 | ########################################################################################## 207 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then 208 | if [ "$MVNW_VERBOSE" = true ]; then 209 | echo "Found .mvn/wrapper/maven-wrapper.jar" 210 | fi 211 | else 212 | if [ "$MVNW_VERBOSE" = true ]; then 213 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..." 214 | fi 215 | jarUrl="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar" 216 | while IFS="=" read key value; do 217 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;; 218 | esac 219 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties" 220 | if [ "$MVNW_VERBOSE" = true ]; then 221 | echo "Downloading from: $jarUrl" 222 | fi 223 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" 224 | 225 | if command -v wget > /dev/null; then 226 | if [ "$MVNW_VERBOSE" = true ]; then 227 | echo "Found wget ... using wget" 228 | fi 229 | wget "$jarUrl" -O "$wrapperJarPath" 230 | elif command -v curl > /dev/null; then 231 | if [ "$MVNW_VERBOSE" = true ]; then 232 | echo "Found curl ... using curl" 233 | fi 234 | curl -o "$wrapperJarPath" "$jarUrl" 235 | else 236 | if [ "$MVNW_VERBOSE" = true ]; then 237 | echo "Falling back to using Java to download" 238 | fi 239 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java" 240 | if [ -e "$javaClass" ]; then 241 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 242 | if [ "$MVNW_VERBOSE" = true ]; then 243 | echo " - Compiling MavenWrapperDownloader.java ..." 244 | fi 245 | # Compiling the Java class 246 | ("$JAVA_HOME/bin/javac" "$javaClass") 247 | fi 248 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 249 | # Running the downloader 250 | if [ "$MVNW_VERBOSE" = true ]; then 251 | echo " - Running MavenWrapperDownloader.java ..." 252 | fi 253 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR") 254 | fi 255 | fi 256 | fi 257 | fi 258 | ########################################################################################## 259 | # End of extension 260 | ########################################################################################## 261 | 262 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"} 263 | if [ "$MVNW_VERBOSE" = true ]; then 264 | echo $MAVEN_PROJECTBASEDIR 265 | fi 266 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS" 267 | 268 | # For Cygwin, switch paths to Windows format before running java 269 | if $cygwin; then 270 | [ -n "$M2_HOME" ] && 271 | M2_HOME=`cygpath --path --windows "$M2_HOME"` 272 | [ -n "$JAVA_HOME" ] && 273 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"` 274 | [ -n "$CLASSPATH" ] && 275 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"` 276 | [ -n "$MAVEN_PROJECTBASEDIR" ] && 277 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"` 278 | fi 279 | 280 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 281 | 282 | exec "$JAVACMD" \ 283 | $MAVEN_OPTS \ 284 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \ 285 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \ 286 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@" 287 | -------------------------------------------------------------------------------- /spring-boot-server/mvnw.cmd: -------------------------------------------------------------------------------- 1 | @REM ---------------------------------------------------------------------------- 2 | @REM Licensed to the Apache Software Foundation (ASF) under one 3 | @REM or more contributor license agreements. See the NOTICE file 4 | @REM distributed with this work for additional information 5 | @REM regarding copyright ownership. The ASF licenses this file 6 | @REM to you under the Apache License, Version 2.0 (the 7 | @REM "License"); you may not use this file except in compliance 8 | @REM with the License. You may obtain a copy of the License at 9 | @REM 10 | @REM https://www.apache.org/licenses/LICENSE-2.0 11 | @REM 12 | @REM Unless required by applicable law or agreed to in writing, 13 | @REM software distributed under the License is distributed on an 14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | @REM KIND, either express or implied. See the License for the 16 | @REM specific language governing permissions and limitations 17 | @REM under the License. 18 | @REM ---------------------------------------------------------------------------- 19 | 20 | @REM ---------------------------------------------------------------------------- 21 | @REM Maven2 Start Up Batch script 22 | @REM 23 | @REM Required ENV vars: 24 | @REM JAVA_HOME - location of a JDK home dir 25 | @REM 26 | @REM Optional ENV vars 27 | @REM M2_HOME - location of maven2's installed home dir 28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands 29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a key stroke before ending 30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven 31 | @REM e.g. to debug Maven itself, use 32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files 34 | @REM ---------------------------------------------------------------------------- 35 | 36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on' 37 | @echo off 38 | @REM set title of command window 39 | title %0 40 | @REM enable echoing my setting MAVEN_BATCH_ECHO to 'on' 41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO% 42 | 43 | @REM set %HOME% to equivalent of $HOME 44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%") 45 | 46 | @REM Execute a user defined script before this one 47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre 48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending 49 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat" 50 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd" 51 | :skipRcPre 52 | 53 | @setlocal 54 | 55 | set ERROR_CODE=0 56 | 57 | @REM To isolate internal variables from possible post scripts, we use another setlocal 58 | @setlocal 59 | 60 | @REM ==== START VALIDATION ==== 61 | if not "%JAVA_HOME%" == "" goto OkJHome 62 | 63 | echo. 64 | echo Error: JAVA_HOME not found in your environment. >&2 65 | echo Please set the JAVA_HOME variable in your environment to match the >&2 66 | echo location of your Java installation. >&2 67 | echo. 68 | goto error 69 | 70 | :OkJHome 71 | if exist "%JAVA_HOME%\bin\java.exe" goto init 72 | 73 | echo. 74 | echo Error: JAVA_HOME is set to an invalid directory. >&2 75 | echo JAVA_HOME = "%JAVA_HOME%" >&2 76 | echo Please set the JAVA_HOME variable in your environment to match the >&2 77 | echo location of your Java installation. >&2 78 | echo. 79 | goto error 80 | 81 | @REM ==== END VALIDATION ==== 82 | 83 | :init 84 | 85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn". 86 | @REM Fallback to current working directory if not found. 87 | 88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR% 89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir 90 | 91 | set EXEC_DIR=%CD% 92 | set WDIR=%EXEC_DIR% 93 | :findBaseDir 94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound 95 | cd .. 96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound 97 | set WDIR=%CD% 98 | goto findBaseDir 99 | 100 | :baseDirFound 101 | set MAVEN_PROJECTBASEDIR=%WDIR% 102 | cd "%EXEC_DIR%" 103 | goto endDetectBaseDir 104 | 105 | :baseDirNotFound 106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR% 107 | cd "%EXEC_DIR%" 108 | 109 | :endDetectBaseDir 110 | 111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig 112 | 113 | @setlocal EnableExtensions EnableDelayedExpansion 114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a 115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS% 116 | 117 | :endReadAdditionalConfig 118 | 119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe" 120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar" 121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 122 | 123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar" 124 | FOR /F "tokens=1,2 delims==" %%A IN (%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties) DO ( 125 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B 126 | ) 127 | 128 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 129 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data. 130 | if exist %WRAPPER_JAR% ( 131 | echo Found %WRAPPER_JAR% 132 | ) else ( 133 | echo Couldn't find %WRAPPER_JAR%, downloading it ... 134 | echo Downloading from: %DOWNLOAD_URL% 135 | powershell -Command "(New-Object Net.WebClient).DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')" 136 | echo Finished downloading %WRAPPER_JAR% 137 | ) 138 | @REM End of extension 139 | 140 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %* 141 | if ERRORLEVEL 1 goto error 142 | goto end 143 | 144 | :error 145 | set ERROR_CODE=1 146 | 147 | :end 148 | @endlocal & set ERROR_CODE=%ERROR_CODE% 149 | 150 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost 151 | @REM check for post script, once with legacy .bat ending and once with .cmd ending 152 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat" 153 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd" 154 | :skipRcPost 155 | 156 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on' 157 | if "%MAVEN_BATCH_PAUSE%" == "on" pause 158 | 159 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE% 160 | 161 | exit /B %ERROR_CODE% 162 | -------------------------------------------------------------------------------- /spring-boot-server/pom.xml: -------------------------------------------------------------------------------- 1 | 2 | 5 | 4.0.0 6 | 7 | org.springframework.boot 8 | spring-boot-starter-parent 9 | 2.1.8.RELEASE 10 | 11 | 12 | com.bezkoder 13 | spring-boot-security-jwt 14 | 0.0.1-SNAPSHOT 15 | spring-boot-security-jwt 16 | Demo project for Spring Boot Security - JWT 17 | 18 | 19 | 1.8 20 | 21 | 22 | 23 | 24 | org.springframework.boot 25 | spring-boot-starter-data-jpa 26 | 27 | 28 | 29 | org.springframework.boot 30 | spring-boot-starter-security 31 | 32 | 33 | 34 | org.springframework.boot 35 | spring-boot-starter-web 36 | 37 | 38 | 39 | mysql 40 | mysql-connector-java 41 | runtime 42 | 43 | 44 | 45 | io.jsonwebtoken 46 | jjwt 47 | 0.9.1 48 | 49 | 50 | 51 | org.springframework.boot 52 | spring-boot-starter-test 53 | test 54 | 55 | 56 | 57 | org.springframework.security 58 | spring-security-test 59 | test 60 | 61 | 62 | 63 | 64 | 65 | 66 | org.springframework.boot 67 | spring-boot-maven-plugin 68 | 69 | 70 | 71 | 72 | 73 | -------------------------------------------------------------------------------- /spring-boot-server/spring-boot-jwt-authentication-spring-security-architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/spring-boot-server/spring-boot-jwt-authentication-spring-security-architecture.png -------------------------------------------------------------------------------- /spring-boot-server/spring-boot-jwt-authentication-spring-security-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bezkoder/angular-11-spring-boot-jwt-authentication/de839c85332035502ab05063e802721500004501/spring-boot-server/spring-boot-jwt-authentication-spring-security-flow.png -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplication.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt; 2 | 3 | import org.springframework.boot.SpringApplication; 4 | import org.springframework.boot.autoconfigure.SpringBootApplication; 5 | 6 | @SpringBootApplication 7 | public class SpringBootSecurityJwtApplication { 8 | 9 | public static void main(String[] args) { 10 | SpringApplication.run(SpringBootSecurityJwtApplication.class, args); 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/controllers/AuthController.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.controllers; 2 | 3 | import java.util.HashSet; 4 | import java.util.List; 5 | import java.util.Set; 6 | import java.util.stream.Collectors; 7 | 8 | import javax.validation.Valid; 9 | 10 | import org.springframework.beans.factory.annotation.Autowired; 11 | import org.springframework.http.ResponseEntity; 12 | import org.springframework.security.authentication.AuthenticationManager; 13 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; 14 | import org.springframework.security.core.Authentication; 15 | import org.springframework.security.core.context.SecurityContextHolder; 16 | import org.springframework.security.crypto.password.PasswordEncoder; 17 | import org.springframework.web.bind.annotation.CrossOrigin; 18 | import org.springframework.web.bind.annotation.PostMapping; 19 | import org.springframework.web.bind.annotation.RequestBody; 20 | import org.springframework.web.bind.annotation.RequestMapping; 21 | import org.springframework.web.bind.annotation.RestController; 22 | 23 | import com.bezkoder.springjwt.models.ERole; 24 | import com.bezkoder.springjwt.models.Role; 25 | import com.bezkoder.springjwt.models.User; 26 | import com.bezkoder.springjwt.payload.request.LoginRequest; 27 | import com.bezkoder.springjwt.payload.request.SignupRequest; 28 | import com.bezkoder.springjwt.payload.response.JwtResponse; 29 | import com.bezkoder.springjwt.payload.response.MessageResponse; 30 | import com.bezkoder.springjwt.repository.RoleRepository; 31 | import com.bezkoder.springjwt.repository.UserRepository; 32 | import com.bezkoder.springjwt.security.jwt.JwtUtils; 33 | import com.bezkoder.springjwt.security.services.UserDetailsImpl; 34 | 35 | @CrossOrigin(origins = "*", maxAge = 3600) 36 | @RestController 37 | @RequestMapping("/api/auth") 38 | public class AuthController { 39 | @Autowired 40 | AuthenticationManager authenticationManager; 41 | 42 | @Autowired 43 | UserRepository userRepository; 44 | 45 | @Autowired 46 | RoleRepository roleRepository; 47 | 48 | @Autowired 49 | PasswordEncoder encoder; 50 | 51 | @Autowired 52 | JwtUtils jwtUtils; 53 | 54 | @PostMapping("/signin") 55 | public ResponseEntity authenticateUser(@Valid @RequestBody LoginRequest loginRequest) { 56 | 57 | Authentication authentication = authenticationManager.authenticate( 58 | new UsernamePasswordAuthenticationToken(loginRequest.getUsername(), loginRequest.getPassword())); 59 | 60 | SecurityContextHolder.getContext().setAuthentication(authentication); 61 | String jwt = jwtUtils.generateJwtToken(authentication); 62 | 63 | UserDetailsImpl userDetails = (UserDetailsImpl) authentication.getPrincipal(); 64 | List roles = userDetails.getAuthorities().stream() 65 | .map(item -> item.getAuthority()) 66 | .collect(Collectors.toList()); 67 | 68 | return ResponseEntity.ok(new JwtResponse(jwt, 69 | userDetails.getId(), 70 | userDetails.getUsername(), 71 | userDetails.getEmail(), 72 | roles)); 73 | } 74 | 75 | @PostMapping("/signup") 76 | public ResponseEntity registerUser(@Valid @RequestBody SignupRequest signUpRequest) { 77 | if (userRepository.existsByUsername(signUpRequest.getUsername())) { 78 | return ResponseEntity 79 | .badRequest() 80 | .body(new MessageResponse("Error: Username is already taken!")); 81 | } 82 | 83 | if (userRepository.existsByEmail(signUpRequest.getEmail())) { 84 | return ResponseEntity 85 | .badRequest() 86 | .body(new MessageResponse("Error: Email is already in use!")); 87 | } 88 | 89 | // Create new user's account 90 | User user = new User(signUpRequest.getUsername(), 91 | signUpRequest.getEmail(), 92 | encoder.encode(signUpRequest.getPassword())); 93 | 94 | Set strRoles = signUpRequest.getRole(); 95 | Set roles = new HashSet<>(); 96 | 97 | if (strRoles == null) { 98 | Role userRole = roleRepository.findByName(ERole.ROLE_USER) 99 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 100 | roles.add(userRole); 101 | } else { 102 | strRoles.forEach(role -> { 103 | switch (role) { 104 | case "admin": 105 | Role adminRole = roleRepository.findByName(ERole.ROLE_ADMIN) 106 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 107 | roles.add(adminRole); 108 | 109 | break; 110 | case "mod": 111 | Role modRole = roleRepository.findByName(ERole.ROLE_MODERATOR) 112 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 113 | roles.add(modRole); 114 | 115 | break; 116 | default: 117 | Role userRole = roleRepository.findByName(ERole.ROLE_USER) 118 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 119 | roles.add(userRole); 120 | } 121 | }); 122 | } 123 | 124 | user.setRoles(roles); 125 | userRepository.save(user); 126 | 127 | return ResponseEntity.ok(new MessageResponse("User registered successfully!")); 128 | } 129 | } 130 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/controllers/TestController.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.controllers; 2 | 3 | import org.springframework.security.access.prepost.PreAuthorize; 4 | import org.springframework.web.bind.annotation.CrossOrigin; 5 | import org.springframework.web.bind.annotation.GetMapping; 6 | import org.springframework.web.bind.annotation.RequestMapping; 7 | import org.springframework.web.bind.annotation.RestController; 8 | 9 | @CrossOrigin(origins = "*", maxAge = 3600) 10 | @RestController 11 | @RequestMapping("/api/test") 12 | public class TestController { 13 | @GetMapping("/all") 14 | public String allAccess() { 15 | return "Public Content."; 16 | } 17 | 18 | @GetMapping("/user") 19 | @PreAuthorize("hasRole('USER') or hasRole('MODERATOR') or hasRole('ADMIN')") 20 | public String userAccess() { 21 | return "User Content."; 22 | } 23 | 24 | @GetMapping("/mod") 25 | @PreAuthorize("hasRole('MODERATOR')") 26 | public String moderatorAccess() { 27 | return "Moderator Board."; 28 | } 29 | 30 | @GetMapping("/admin") 31 | @PreAuthorize("hasRole('ADMIN')") 32 | public String adminAccess() { 33 | return "Admin Board."; 34 | } 35 | } 36 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/models/ERole.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.models; 2 | 3 | public enum ERole { 4 | ROLE_USER, 5 | ROLE_MODERATOR, 6 | ROLE_ADMIN 7 | } 8 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/models/Role.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.models; 2 | 3 | import javax.persistence.*; 4 | 5 | @Entity 6 | @Table(name = "roles") 7 | public class Role { 8 | @Id 9 | @GeneratedValue(strategy = GenerationType.IDENTITY) 10 | private Integer id; 11 | 12 | @Enumerated(EnumType.STRING) 13 | @Column(length = 20) 14 | private ERole name; 15 | 16 | public Role() { 17 | 18 | } 19 | 20 | public Role(ERole name) { 21 | this.name = name; 22 | } 23 | 24 | public Integer getId() { 25 | return id; 26 | } 27 | 28 | public void setId(Integer id) { 29 | this.id = id; 30 | } 31 | 32 | public ERole getName() { 33 | return name; 34 | } 35 | 36 | public void setName(ERole name) { 37 | this.name = name; 38 | } 39 | } -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/models/User.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.models; 2 | 3 | import java.util.HashSet; 4 | import java.util.Set; 5 | 6 | import javax.persistence.*; 7 | import javax.validation.constraints.Email; 8 | import javax.validation.constraints.NotBlank; 9 | import javax.validation.constraints.Size; 10 | 11 | @Entity 12 | @Table( name = "users", 13 | uniqueConstraints = { 14 | @UniqueConstraint(columnNames = "username"), 15 | @UniqueConstraint(columnNames = "email") 16 | }) 17 | public class User { 18 | @Id 19 | @GeneratedValue(strategy = GenerationType.IDENTITY) 20 | private Long id; 21 | 22 | @NotBlank 23 | @Size(max = 20) 24 | private String username; 25 | 26 | @NotBlank 27 | @Size(max = 50) 28 | @Email 29 | private String email; 30 | 31 | @NotBlank 32 | @Size(max = 120) 33 | private String password; 34 | 35 | @ManyToMany(fetch = FetchType.LAZY) 36 | @JoinTable( name = "user_roles", 37 | joinColumns = @JoinColumn(name = "user_id"), 38 | inverseJoinColumns = @JoinColumn(name = "role_id")) 39 | private Set roles = new HashSet<>(); 40 | 41 | public User() { 42 | } 43 | 44 | public User(String username, String email, String password) { 45 | this.username = username; 46 | this.email = email; 47 | this.password = password; 48 | } 49 | 50 | public Long getId() { 51 | return id; 52 | } 53 | 54 | public void setId(Long id) { 55 | this.id = id; 56 | } 57 | 58 | public String getUsername() { 59 | return username; 60 | } 61 | 62 | public void setUsername(String username) { 63 | this.username = username; 64 | } 65 | 66 | public String getEmail() { 67 | return email; 68 | } 69 | 70 | public void setEmail(String email) { 71 | this.email = email; 72 | } 73 | 74 | public String getPassword() { 75 | return password; 76 | } 77 | 78 | public void setPassword(String password) { 79 | this.password = password; 80 | } 81 | 82 | public Set getRoles() { 83 | return roles; 84 | } 85 | 86 | public void setRoles(Set roles) { 87 | this.roles = roles; 88 | } 89 | } 90 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/payload/request/LoginRequest.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.payload.request; 2 | 3 | import javax.validation.constraints.NotBlank; 4 | 5 | public class LoginRequest { 6 | @NotBlank 7 | private String username; 8 | 9 | @NotBlank 10 | private String password; 11 | 12 | public String getUsername() { 13 | return username; 14 | } 15 | 16 | public void setUsername(String username) { 17 | this.username = username; 18 | } 19 | 20 | public String getPassword() { 21 | return password; 22 | } 23 | 24 | public void setPassword(String password) { 25 | this.password = password; 26 | } 27 | } 28 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/payload/request/SignupRequest.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.payload.request; 2 | 3 | import java.util.Set; 4 | 5 | import javax.validation.constraints.*; 6 | 7 | public class SignupRequest { 8 | @NotBlank 9 | @Size(min = 3, max = 20) 10 | private String username; 11 | 12 | @NotBlank 13 | @Size(max = 50) 14 | @Email 15 | private String email; 16 | 17 | private Set role; 18 | 19 | @NotBlank 20 | @Size(min = 6, max = 40) 21 | private String password; 22 | 23 | public String getUsername() { 24 | return username; 25 | } 26 | 27 | public void setUsername(String username) { 28 | this.username = username; 29 | } 30 | 31 | public String getEmail() { 32 | return email; 33 | } 34 | 35 | public void setEmail(String email) { 36 | this.email = email; 37 | } 38 | 39 | public String getPassword() { 40 | return password; 41 | } 42 | 43 | public void setPassword(String password) { 44 | this.password = password; 45 | } 46 | 47 | public Set getRole() { 48 | return this.role; 49 | } 50 | 51 | public void setRole(Set role) { 52 | this.role = role; 53 | } 54 | } 55 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/payload/response/JwtResponse.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.payload.response; 2 | 3 | import java.util.List; 4 | 5 | public class JwtResponse { 6 | private String token; 7 | private String type = "Bearer"; 8 | private Long id; 9 | private String username; 10 | private String email; 11 | private List roles; 12 | 13 | public JwtResponse(String accessToken, Long id, String username, String email, List roles) { 14 | this.token = accessToken; 15 | this.id = id; 16 | this.username = username; 17 | this.email = email; 18 | this.roles = roles; 19 | } 20 | 21 | public String getAccessToken() { 22 | return token; 23 | } 24 | 25 | public void setAccessToken(String accessToken) { 26 | this.token = accessToken; 27 | } 28 | 29 | public String getTokenType() { 30 | return type; 31 | } 32 | 33 | public void setTokenType(String tokenType) { 34 | this.type = tokenType; 35 | } 36 | 37 | public Long getId() { 38 | return id; 39 | } 40 | 41 | public void setId(Long id) { 42 | this.id = id; 43 | } 44 | 45 | public String getEmail() { 46 | return email; 47 | } 48 | 49 | public void setEmail(String email) { 50 | this.email = email; 51 | } 52 | 53 | public String getUsername() { 54 | return username; 55 | } 56 | 57 | public void setUsername(String username) { 58 | this.username = username; 59 | } 60 | 61 | public List getRoles() { 62 | return roles; 63 | } 64 | } 65 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/payload/response/MessageResponse.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.payload.response; 2 | 3 | public class MessageResponse { 4 | private String message; 5 | 6 | public MessageResponse(String message) { 7 | this.message = message; 8 | } 9 | 10 | public String getMessage() { 11 | return message; 12 | } 13 | 14 | public void setMessage(String message) { 15 | this.message = message; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/repository/RoleRepository.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.repository; 2 | 3 | import java.util.Optional; 4 | 5 | import org.springframework.data.jpa.repository.JpaRepository; 6 | import org.springframework.stereotype.Repository; 7 | 8 | import com.bezkoder.springjwt.models.ERole; 9 | import com.bezkoder.springjwt.models.Role; 10 | 11 | @Repository 12 | public interface RoleRepository extends JpaRepository { 13 | Optional findByName(ERole name); 14 | } 15 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/repository/UserRepository.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.repository; 2 | 3 | import java.util.Optional; 4 | 5 | import org.springframework.data.jpa.repository.JpaRepository; 6 | import org.springframework.stereotype.Repository; 7 | 8 | import com.bezkoder.springjwt.models.User; 9 | 10 | @Repository 11 | public interface UserRepository extends JpaRepository { 12 | Optional findByUsername(String username); 13 | 14 | Boolean existsByUsername(String username); 15 | 16 | Boolean existsByEmail(String email); 17 | } 18 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/security/WebSecurityConfig.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.security; 2 | 3 | import org.springframework.beans.factory.annotation.Autowired; 4 | import org.springframework.context.annotation.Bean; 5 | import org.springframework.context.annotation.Configuration; 6 | import org.springframework.security.authentication.AuthenticationManager; 7 | import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; 8 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity; 9 | import org.springframework.security.config.annotation.web.builders.HttpSecurity; 10 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; 11 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; 12 | import org.springframework.security.config.http.SessionCreationPolicy; 13 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; 14 | import org.springframework.security.crypto.password.PasswordEncoder; 15 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter; 16 | 17 | import com.bezkoder.springjwt.security.jwt.AuthEntryPointJwt; 18 | import com.bezkoder.springjwt.security.jwt.AuthTokenFilter; 19 | import com.bezkoder.springjwt.security.services.UserDetailsServiceImpl; 20 | 21 | @Configuration 22 | @EnableWebSecurity 23 | @EnableGlobalMethodSecurity( 24 | // securedEnabled = true, 25 | // jsr250Enabled = true, 26 | prePostEnabled = true) 27 | public class WebSecurityConfig extends WebSecurityConfigurerAdapter { 28 | @Autowired 29 | UserDetailsServiceImpl userDetailsService; 30 | 31 | @Autowired 32 | private AuthEntryPointJwt unauthorizedHandler; 33 | 34 | @Bean 35 | public AuthTokenFilter authenticationJwtTokenFilter() { 36 | return new AuthTokenFilter(); 37 | } 38 | 39 | @Override 40 | public void configure(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception { 41 | authenticationManagerBuilder.userDetailsService(userDetailsService).passwordEncoder(passwordEncoder()); 42 | } 43 | 44 | @Bean 45 | @Override 46 | public AuthenticationManager authenticationManagerBean() throws Exception { 47 | return super.authenticationManagerBean(); 48 | } 49 | 50 | @Bean 51 | public PasswordEncoder passwordEncoder() { 52 | return new BCryptPasswordEncoder(); 53 | } 54 | 55 | @Override 56 | protected void configure(HttpSecurity http) throws Exception { 57 | http.cors().and().csrf().disable() 58 | .exceptionHandling().authenticationEntryPoint(unauthorizedHandler).and() 59 | .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and() 60 | .authorizeRequests().antMatchers("/api/auth/**").permitAll() 61 | .antMatchers("/api/test/**").permitAll() 62 | .anyRequest().authenticated(); 63 | 64 | http.addFilterBefore(authenticationJwtTokenFilter(), UsernamePasswordAuthenticationFilter.class); 65 | } 66 | } 67 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/security/jwt/AuthEntryPointJwt.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.security.jwt; 2 | 3 | import java.io.IOException; 4 | 5 | import javax.servlet.ServletException; 6 | import javax.servlet.http.HttpServletRequest; 7 | import javax.servlet.http.HttpServletResponse; 8 | 9 | import org.slf4j.Logger; 10 | import org.slf4j.LoggerFactory; 11 | import org.springframework.security.core.AuthenticationException; 12 | import org.springframework.security.web.AuthenticationEntryPoint; 13 | import org.springframework.stereotype.Component; 14 | 15 | @Component 16 | public class AuthEntryPointJwt implements AuthenticationEntryPoint { 17 | 18 | private static final Logger logger = LoggerFactory.getLogger(AuthEntryPointJwt.class); 19 | 20 | @Override 21 | public void commence(HttpServletRequest request, HttpServletResponse response, 22 | AuthenticationException authException) throws IOException, ServletException { 23 | logger.error("Unauthorized error: {}", authException.getMessage()); 24 | response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Error: Unauthorized"); 25 | } 26 | 27 | } 28 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/security/jwt/AuthTokenFilter.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.security.jwt; 2 | 3 | import java.io.IOException; 4 | 5 | import javax.servlet.FilterChain; 6 | import javax.servlet.ServletException; 7 | import javax.servlet.http.HttpServletRequest; 8 | import javax.servlet.http.HttpServletResponse; 9 | 10 | import org.slf4j.Logger; 11 | import org.slf4j.LoggerFactory; 12 | import org.springframework.beans.factory.annotation.Autowired; 13 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; 14 | import org.springframework.security.core.context.SecurityContextHolder; 15 | import org.springframework.security.core.userdetails.UserDetails; 16 | import org.springframework.security.web.authentication.WebAuthenticationDetailsSource; 17 | import org.springframework.util.StringUtils; 18 | import org.springframework.web.filter.OncePerRequestFilter; 19 | 20 | import com.bezkoder.springjwt.security.services.UserDetailsServiceImpl; 21 | 22 | public class AuthTokenFilter extends OncePerRequestFilter { 23 | @Autowired 24 | private JwtUtils jwtUtils; 25 | 26 | @Autowired 27 | private UserDetailsServiceImpl userDetailsService; 28 | 29 | private static final Logger logger = LoggerFactory.getLogger(AuthTokenFilter.class); 30 | 31 | @Override 32 | protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) 33 | throws ServletException, IOException { 34 | try { 35 | String jwt = parseJwt(request); 36 | if (jwt != null && jwtUtils.validateJwtToken(jwt)) { 37 | String username = jwtUtils.getUserNameFromJwtToken(jwt); 38 | 39 | UserDetails userDetails = userDetailsService.loadUserByUsername(username); 40 | UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken( 41 | userDetails, null, userDetails.getAuthorities()); 42 | authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request)); 43 | 44 | SecurityContextHolder.getContext().setAuthentication(authentication); 45 | } 46 | } catch (Exception e) { 47 | logger.error("Cannot set user authentication: {}", e); 48 | } 49 | 50 | filterChain.doFilter(request, response); 51 | } 52 | 53 | private String parseJwt(HttpServletRequest request) { 54 | String headerAuth = request.getHeader("Authorization"); 55 | 56 | if (StringUtils.hasText(headerAuth) && headerAuth.startsWith("Bearer ")) { 57 | return headerAuth.substring(7, headerAuth.length()); 58 | } 59 | 60 | return null; 61 | } 62 | } 63 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/security/jwt/JwtUtils.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.security.jwt; 2 | 3 | import java.util.Date; 4 | 5 | import org.slf4j.Logger; 6 | import org.slf4j.LoggerFactory; 7 | import org.springframework.beans.factory.annotation.Value; 8 | import org.springframework.security.core.Authentication; 9 | import org.springframework.stereotype.Component; 10 | 11 | import com.bezkoder.springjwt.security.services.UserDetailsImpl; 12 | import io.jsonwebtoken.*; 13 | 14 | @Component 15 | public class JwtUtils { 16 | private static final Logger logger = LoggerFactory.getLogger(JwtUtils.class); 17 | 18 | @Value("${bezkoder.app.jwtSecret}") 19 | private String jwtSecret; 20 | 21 | @Value("${bezkoder.app.jwtExpirationMs}") 22 | private int jwtExpirationMs; 23 | 24 | public String generateJwtToken(Authentication authentication) { 25 | 26 | UserDetailsImpl userPrincipal = (UserDetailsImpl) authentication.getPrincipal(); 27 | 28 | return Jwts.builder() 29 | .setSubject((userPrincipal.getUsername())) 30 | .setIssuedAt(new Date()) 31 | .setExpiration(new Date((new Date()).getTime() + jwtExpirationMs)) 32 | .signWith(SignatureAlgorithm.HS512, jwtSecret) 33 | .compact(); 34 | } 35 | 36 | public String getUserNameFromJwtToken(String token) { 37 | return Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(token).getBody().getSubject(); 38 | } 39 | 40 | public boolean validateJwtToken(String authToken) { 41 | try { 42 | Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(authToken); 43 | return true; 44 | } catch (SignatureException e) { 45 | logger.error("Invalid JWT signature: {}", e.getMessage()); 46 | } catch (MalformedJwtException e) { 47 | logger.error("Invalid JWT token: {}", e.getMessage()); 48 | } catch (ExpiredJwtException e) { 49 | logger.error("JWT token is expired: {}", e.getMessage()); 50 | } catch (UnsupportedJwtException e) { 51 | logger.error("JWT token is unsupported: {}", e.getMessage()); 52 | } catch (IllegalArgumentException e) { 53 | logger.error("JWT claims string is empty: {}", e.getMessage()); 54 | } 55 | 56 | return false; 57 | } 58 | } 59 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/security/services/UserDetailsImpl.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.security.services; 2 | 3 | import java.util.Collection; 4 | import java.util.List; 5 | import java.util.Objects; 6 | import java.util.stream.Collectors; 7 | 8 | import org.springframework.security.core.GrantedAuthority; 9 | import org.springframework.security.core.authority.SimpleGrantedAuthority; 10 | import org.springframework.security.core.userdetails.UserDetails; 11 | 12 | import com.bezkoder.springjwt.models.User; 13 | import com.fasterxml.jackson.annotation.JsonIgnore; 14 | 15 | public class UserDetailsImpl implements UserDetails { 16 | private static final long serialVersionUID = 1L; 17 | 18 | private Long id; 19 | 20 | private String username; 21 | 22 | private String email; 23 | 24 | @JsonIgnore 25 | private String password; 26 | 27 | private Collection authorities; 28 | 29 | public UserDetailsImpl(Long id, String username, String email, String password, 30 | Collection authorities) { 31 | this.id = id; 32 | this.username = username; 33 | this.email = email; 34 | this.password = password; 35 | this.authorities = authorities; 36 | } 37 | 38 | public static UserDetailsImpl build(User user) { 39 | List authorities = user.getRoles().stream() 40 | .map(role -> new SimpleGrantedAuthority(role.getName().name())) 41 | .collect(Collectors.toList()); 42 | 43 | return new UserDetailsImpl( 44 | user.getId(), 45 | user.getUsername(), 46 | user.getEmail(), 47 | user.getPassword(), 48 | authorities); 49 | } 50 | 51 | @Override 52 | public Collection getAuthorities() { 53 | return authorities; 54 | } 55 | 56 | public Long getId() { 57 | return id; 58 | } 59 | 60 | public String getEmail() { 61 | return email; 62 | } 63 | 64 | @Override 65 | public String getPassword() { 66 | return password; 67 | } 68 | 69 | @Override 70 | public String getUsername() { 71 | return username; 72 | } 73 | 74 | @Override 75 | public boolean isAccountNonExpired() { 76 | return true; 77 | } 78 | 79 | @Override 80 | public boolean isAccountNonLocked() { 81 | return true; 82 | } 83 | 84 | @Override 85 | public boolean isCredentialsNonExpired() { 86 | return true; 87 | } 88 | 89 | @Override 90 | public boolean isEnabled() { 91 | return true; 92 | } 93 | 94 | @Override 95 | public boolean equals(Object o) { 96 | if (this == o) 97 | return true; 98 | if (o == null || getClass() != o.getClass()) 99 | return false; 100 | UserDetailsImpl user = (UserDetailsImpl) o; 101 | return Objects.equals(id, user.id); 102 | } 103 | } 104 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/java/com/bezkoder/springjwt/security/services/UserDetailsServiceImpl.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt.security.services; 2 | 3 | import org.springframework.beans.factory.annotation.Autowired; 4 | import org.springframework.security.core.userdetails.UserDetails; 5 | import org.springframework.security.core.userdetails.UserDetailsService; 6 | import org.springframework.security.core.userdetails.UsernameNotFoundException; 7 | import org.springframework.stereotype.Service; 8 | import org.springframework.transaction.annotation.Transactional; 9 | 10 | import com.bezkoder.springjwt.models.User; 11 | import com.bezkoder.springjwt.repository.UserRepository; 12 | 13 | @Service 14 | public class UserDetailsServiceImpl implements UserDetailsService { 15 | @Autowired 16 | UserRepository userRepository; 17 | 18 | @Override 19 | @Transactional 20 | public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException { 21 | User user = userRepository.findByUsername(username) 22 | .orElseThrow(() -> new UsernameNotFoundException("User Not Found with username: " + username)); 23 | 24 | return UserDetailsImpl.build(user); 25 | } 26 | 27 | } 28 | -------------------------------------------------------------------------------- /spring-boot-server/src/main/resources/application.properties: -------------------------------------------------------------------------------- 1 | spring.datasource.url= jdbc:mysql://localhost:3306/testdb?useSSL=false 2 | spring.datasource.username= root 3 | spring.datasource.password= 123456 4 | 5 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.MySQL5InnoDBDialect 6 | spring.jpa.hibernate.ddl-auto= update 7 | 8 | # App Properties 9 | bezkoder.app.jwtSecret= bezKoderSecretKey 10 | bezkoder.app.jwtExpirationMs= 86400000 -------------------------------------------------------------------------------- /spring-boot-server/src/test/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplicationTests.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt; 2 | 3 | import org.junit.Test; 4 | import org.junit.runner.RunWith; 5 | import org.springframework.boot.test.context.SpringBootTest; 6 | import org.springframework.test.context.junit4.SpringRunner; 7 | 8 | @RunWith(SpringRunner.class) 9 | @SpringBootTest 10 | public class SpringBootSecurityJwtApplicationTests { 11 | 12 | @Test 13 | public void contextLoads() { 14 | } 15 | 16 | } 17 | --------------------------------------------------------------------------------