├── .mvn └── wrapper │ ├── maven-wrapper.jar │ └── maven-wrapper.properties ├── src ├── test │ └── java │ │ └── com │ │ └── dailycodework │ │ └── sbend2endapplication │ │ └── SbEnd2endapplicationApplicationTests.java └── main │ ├── resources │ ├── templates │ │ ├── home.html │ │ ├── fragment │ │ │ ├── header.html │ │ │ └── navbar.html │ │ ├── error.html │ │ ├── forgot-password-form.html │ │ ├── update-user.html │ │ ├── users.html │ │ ├── fragments.html │ │ ├── password-reset-form.html │ │ ├── registration.html │ │ └── login.html │ └── application.yml │ └── java │ └── com │ └── dailycodework │ └── sbend2endapplication │ ├── SbEnd2endapplicationApplication.java │ ├── utility │ ├── UrlUtil.java │ └── TokenExpirationTime.java │ ├── registration │ ├── password │ │ ├── PasswordResetTokenRepository.java │ │ ├── IPasswordResetTokenService.java │ │ ├── PasswordResetToken.java │ │ └── PasswordResetTokenService.java │ ├── RegistrationRequest.java │ ├── token │ │ ├── VerificationTokenRepository.java │ │ ├── IVerificationTokenService.java │ │ ├── VerificationToken.java │ │ └── VerificationTokenService.java │ └── RegistrationController.java │ ├── user │ ├── IUserService.java │ ├── Role.java │ ├── UserRepository.java │ ├── User.java │ ├── UserController.java │ └── UserService.java │ ├── event │ ├── RegistrationCompleteEvent.java │ └── listener │ │ └── RegistrationCompleteEventListener.java │ ├── home │ └── HomeController.java │ └── security │ ├── EndToEndUserDetailsService.java │ ├── EndToEndUserDetails.java │ └── EndToEndSecurityDemo.java ├── .gitignore ├── pom.xml ├── mvnw.cmd └── mvnw /.mvn/wrapper/maven-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dailycodework/spring-mvc-web-app-with-thymeleaf/HEAD/.mvn/wrapper/maven-wrapper.jar -------------------------------------------------------------------------------- /src/test/java/com/dailycodework/sbend2endapplication/SbEnd2endapplicationApplicationTests.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication; 2 | 3 | import org.junit.jupiter.api.Test; 4 | import org.springframework.boot.test.context.SpringBootTest; 5 | 6 | @SpringBootTest 7 | class SbEnd2endapplicationApplicationTests { 8 | 9 | @Test 10 | void contextLoads() { 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/main/resources/templates/home.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | The Demo App 6 | 7 | 8 | 9 |
10 |
11 |

Welcome to our end to end web application security demo

12 |
13 | 14 | 15 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/SbEnd2endapplicationApplication.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication; 2 | 3 | import org.springframework.boot.SpringApplication; 4 | import org.springframework.boot.autoconfigure.SpringBootApplication; 5 | 6 | @SpringBootApplication 7 | public class SbEnd2endapplicationApplication { 8 | 9 | public static void main(String[] args) { 10 | SpringApplication.run(SbEnd2endapplicationApplication.class, args); 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/utility/UrlUtil.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.utility; 2 | 3 | import jakarta.servlet.http.HttpServletRequest; 4 | 5 | /** 6 | * @author Sampson Alfred 7 | */ 8 | 9 | public class UrlUtil { 10 | public static String getApplicationUrl(HttpServletRequest request){ 11 | String appUrl = request.getRequestURL().toString(); 12 | return appUrl.replace(request.getServletPath(), ""); 13 | 14 | } 15 | } 16 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/password/PasswordResetTokenRepository.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.password; 2 | 3 | import org.springframework.data.jpa.repository.JpaRepository; 4 | 5 | import java.util.Optional; 6 | 7 | /** 8 | * @author Sampson Alfred 9 | */ 10 | 11 | public interface PasswordResetTokenRepository extends JpaRepository { 12 | 13 | Optional findByToken(String theToken); 14 | } 15 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/RegistrationRequest.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration; 2 | 3 | import com.dailycodework.sbend2endapplication.user.Role; 4 | import lombok.Data; 5 | 6 | import java.util.List; 7 | 8 | /** 9 | * @author Sampson Alfred 10 | */ 11 | @Data 12 | public class RegistrationRequest { 13 | private String firstName; 14 | private String lastName; 15 | private String email; 16 | private String password; 17 | private List roles; 18 | } 19 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/token/VerificationTokenRepository.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.token; 2 | 3 | import org.springframework.data.jpa.repository.JpaRepository; 4 | import java.util.Optional; 5 | 6 | /** 7 | * @author Sampson Alfred 8 | */ 9 | 10 | public interface VerificationTokenRepository extends JpaRepository { 11 | 12 | Optional findByToken(String token); 13 | 14 | void deleteByUserId(Long id); 15 | } 16 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | HELP.md 2 | target/ 3 | !.mvn/wrapper/maven-wrapper.jar 4 | !**/src/main/**/target/ 5 | !**/src/test/**/target/ 6 | 7 | ### STS ### 8 | .apt_generated 9 | .classpath 10 | .factorypath 11 | .project 12 | .settings 13 | .springBeans 14 | .sts4-cache 15 | 16 | ### IntelliJ IDEA ### 17 | .idea 18 | *.iws 19 | *.iml 20 | *.ipr 21 | 22 | ### NetBeans ### 23 | /nbproject/private/ 24 | /nbbuild/ 25 | /dist/ 26 | /nbdist/ 27 | /.nb-gradle/ 28 | build/ 29 | !**/src/main/**/build/ 30 | !**/src/test/**/build/ 31 | 32 | ### VS Code ### 33 | .vscode/ 34 | -------------------------------------------------------------------------------- /src/main/resources/application.yml: -------------------------------------------------------------------------------- 1 | 2 | server: 3 | port: 9191 4 | spring: 5 | datasource: 6 | url: jdbc:mysql://localhost:3306/end_to_end_db 7 | username: root 8 | password: admin 9 | driver-class-name: com.mysql.cj.jdbc.Driver 10 | jpa: 11 | hibernate: 12 | ddl-auto: update 13 | show-sql: true 14 | mail: 15 | host: smtp.gmail.com 16 | port: 587 17 | username: dailycodeworks@gmail.com 18 | password: yr_email_pass 19 | properties: 20 | mail: 21 | smtp: 22 | auth: true 23 | starttls: 24 | enable: true 25 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/token/IVerificationTokenService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.token; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | 5 | import java.util.Optional; 6 | 7 | /** 8 | * @author Sampson Alfred 9 | */ 10 | 11 | public interface IVerificationTokenService { 12 | String validateToken(String token); 13 | void saveVerificationTokenForUser(User user, String token); 14 | Optional findByToken(String token); 15 | 16 | 17 | void deleteUserToken(Long id); 18 | } 19 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/utility/TokenExpirationTime.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.utility; 2 | 3 | import java.util.Calendar; 4 | import java.util.Date; 5 | 6 | /** 7 | * @author Sampson Alfred 8 | */ 9 | 10 | public class TokenExpirationTime { 11 | private static final int EXPIRATION_TIME = 10; 12 | 13 | public static Date getExpirationTime(){ 14 | Calendar calendar = Calendar.getInstance(); 15 | calendar.setTimeInMillis(new Date().getTime()); 16 | calendar.add(Calendar.MINUTE, EXPIRATION_TIME); 17 | return new Date(calendar.getTime().getTime()); 18 | } 19 | } 20 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/password/IPasswordResetTokenService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.password; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | 5 | import java.util.Optional; 6 | 7 | /** 8 | * @author Sampson Alfred 9 | */ 10 | 11 | public interface IPasswordResetTokenService { 12 | String validatePasswordResetToken(String theToken); 13 | 14 | Optional findUserByPasswordResetToken(String theToken); 15 | 16 | void resetPassword(User theUser, String password); 17 | 18 | void createPasswordResetTokenForUser(User user, String passwordResetToken); 19 | } 20 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/user/IUserService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.user; 2 | 3 | import com.dailycodework.sbend2endapplication.registration.RegistrationRequest; 4 | 5 | import java.util.List; 6 | import java.util.Optional; 7 | 8 | /** 9 | * @author Sampson Alfred 10 | */ 11 | 12 | public interface IUserService { 13 | List getAllUsers(); 14 | User registerUser(RegistrationRequest registrationRequest); 15 | Optional findByEmail(String email); 16 | 17 | Optional findById(Long id); 18 | 19 | void updateUser(Long id, String firstName, String lastName, String email); 20 | 21 | void deleteUser(Long id); 22 | } 23 | -------------------------------------------------------------------------------- /src/main/resources/templates/fragment/header.html: -------------------------------------------------------------------------------- 1 | 2 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/event/RegistrationCompleteEvent.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.event; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | import lombok.Getter; 5 | import lombok.Setter; 6 | import org.springframework.context.ApplicationEvent; 7 | 8 | /** 9 | * @author Sampson Alfred 10 | */ 11 | 12 | @Getter 13 | @Setter 14 | public class RegistrationCompleteEvent extends ApplicationEvent { 15 | private User user; 16 | private String confirmationUrl; 17 | public RegistrationCompleteEvent(User user, String confirmationUrl) { 18 | super(user); 19 | this.user = user; 20 | this.confirmationUrl = confirmationUrl; 21 | } 22 | } 23 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/home/HomeController.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.home; 2 | 3 | import org.springframework.stereotype.Controller; 4 | import org.springframework.web.bind.annotation.GetMapping; 5 | import org.springframework.web.bind.annotation.RequestMapping; 6 | 7 | /** 8 | * @author Sampson Alfred 9 | */ 10 | @Controller 11 | @RequestMapping("/") 12 | public class HomeController { 13 | @GetMapping 14 | public String homePage(){ 15 | return "home"; 16 | } 17 | @GetMapping("/login") 18 | public String login(){ 19 | return "login"; 20 | } 21 | @GetMapping("/error") 22 | public String error(){ 23 | return "error"; 24 | } 25 | 26 | } 27 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/user/Role.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.user; 2 | 3 | import jakarta.persistence.Entity; 4 | import jakarta.persistence.GeneratedValue; 5 | import jakarta.persistence.GenerationType; 6 | import jakarta.persistence.Id; 7 | import lombok.Getter; 8 | import lombok.NoArgsConstructor; 9 | import lombok.Setter; 10 | import org.yaml.snakeyaml.events.Event; 11 | 12 | /** 13 | * @author Sampson Alfred 14 | */ 15 | @Entity 16 | @Getter 17 | @Setter 18 | @NoArgsConstructor 19 | public class Role { 20 | @Id 21 | @GeneratedValue(strategy = GenerationType.IDENTITY) 22 | private Long id; 23 | private String name; 24 | 25 | public Role(String name) { 26 | this.name = name; 27 | } 28 | } 29 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/user/UserRepository.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.user; 2 | 3 | import org.springframework.data.jpa.repository.JpaRepository; 4 | import org.springframework.data.jpa.repository.Modifying; 5 | import org.springframework.data.jpa.repository.Query; 6 | 7 | import java.util.Optional; 8 | 9 | /** 10 | * @author Sampson Alfred 11 | */ 12 | 13 | public interface UserRepository extends JpaRepository { 14 | Optional findByEmail(String email); 15 | 16 | @Modifying 17 | @Query(value = "UPDATE User u set u.firstName =:firstName,"+ 18 | " u.lastName =:lastName," + "u.email =:email where u.id =:id") 19 | void update(String firstName, String lastName, String email, Long id); 20 | } 21 | -------------------------------------------------------------------------------- /src/main/resources/templates/error.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | Error 6 | 7 | 8 | 9 |
10 | 11 | 12 |
13 |
14 |

Invalid verification token

15 |
16 | 17 |
18 |

This verification link has already expired.

19 |
20 |
21 | Go to home page 22 |
23 | 24 | 25 | 26 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/token/VerificationToken.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.token; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | import com.dailycodework.sbend2endapplication.utility.TokenExpirationTime; 5 | import jakarta.persistence.*; 6 | import lombok.Getter; 7 | import lombok.NoArgsConstructor; 8 | import lombok.Setter; 9 | 10 | import java.util.Date; 11 | 12 | /** 13 | * @author Sampson Alfred 14 | */ 15 | @Getter 16 | @Setter 17 | @Entity 18 | @NoArgsConstructor 19 | public class VerificationToken { 20 | @Id 21 | @GeneratedValue(strategy = GenerationType.IDENTITY) 22 | private Long id; 23 | private String token; 24 | private Date expirationTime; 25 | @OneToOne 26 | @JoinColumn(name = "user_id") 27 | private User user; 28 | 29 | public VerificationToken(String token, User user) { 30 | this.token = token; 31 | this.user = user; 32 | this.expirationTime = TokenExpirationTime.getExpirationTime(); 33 | } 34 | } 35 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/password/PasswordResetToken.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.password; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | import com.dailycodework.sbend2endapplication.utility.TokenExpirationTime; 5 | import jakarta.persistence.*; 6 | import lombok.Getter; 7 | import lombok.NoArgsConstructor; 8 | import lombok.Setter; 9 | 10 | import java.util.Date; 11 | 12 | /** 13 | * @author Sampson Alfred 14 | */ 15 | @Getter 16 | @Setter 17 | @Entity 18 | @NoArgsConstructor 19 | public class PasswordResetToken { 20 | @Id 21 | @GeneratedValue(strategy = GenerationType.IDENTITY) 22 | private Long id; 23 | private String token; 24 | private Date expirationTime; 25 | @OneToOne 26 | @JoinColumn(name = "user_id") 27 | private User user; 28 | 29 | public PasswordResetToken(String token, User user) { 30 | this.token = token; 31 | this.user = user; 32 | this.expirationTime = TokenExpirationTime.getExpirationTime(); 33 | } 34 | } 35 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/security/EndToEndUserDetailsService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.security; 2 | 3 | import com.dailycodework.sbend2endapplication.user.UserRepository; 4 | import lombok.RequiredArgsConstructor; 5 | import org.springframework.security.core.userdetails.UserDetails; 6 | import org.springframework.security.core.userdetails.UserDetailsService; 7 | import org.springframework.security.core.userdetails.UsernameNotFoundException; 8 | import org.springframework.stereotype.Service; 9 | 10 | /** 11 | * @author Sampson Alfred 12 | */ 13 | @Service 14 | @RequiredArgsConstructor 15 | public class EndToEndUserDetailsService implements UserDetailsService { 16 | private final UserRepository userRepository; 17 | 18 | @Override 19 | public UserDetails loadUserByUsername(String email) throws UsernameNotFoundException { 20 | return userRepository.findByEmail(email) 21 | .map(EndToEndUserDetails::new) 22 | .orElseThrow(()-> new UsernameNotFoundException("User not found")); 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /.mvn/wrapper/maven-wrapper.properties: -------------------------------------------------------------------------------- 1 | # Licensed to the Apache Software Foundation (ASF) under one 2 | # or more contributor license agreements. See the NOTICE file 3 | # distributed with this work for additional information 4 | # regarding copyright ownership. The ASF licenses this file 5 | # to you under the Apache License, Version 2.0 (the 6 | # "License"); you may not use this file except in compliance 7 | # with the License. You may obtain a copy of the License at 8 | # 9 | # https://www.apache.org/licenses/LICENSE-2.0 10 | # 11 | # Unless required by applicable law or agreed to in writing, 12 | # software distributed under the License is distributed on an 13 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 14 | # KIND, either express or implied. See the License for the 15 | # specific language governing permissions and limitations 16 | # under the License. 17 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.8.7/apache-maven-3.8.7-bin.zip 18 | wrapperUrl=https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.1/maven-wrapper-3.1.1.jar 19 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/user/User.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.user; 2 | 3 | import com.dailycodework.sbend2endapplication.registration.token.VerificationToken; 4 | import jakarta.persistence.*; 5 | import lombok.Getter; 6 | import lombok.NoArgsConstructor; 7 | import lombok.Setter; 8 | import org.hibernate.annotations.NaturalId; 9 | 10 | import java.util.Collection; 11 | import java.util.Set; 12 | 13 | /** 14 | * @author Sampson Alfred 15 | */ 16 | @Entity 17 | @Getter 18 | @Setter 19 | @NoArgsConstructor 20 | public class User { 21 | @Id 22 | @GeneratedValue(strategy = GenerationType.IDENTITY) 23 | private Long id; 24 | private String firstName; 25 | private String lastName; 26 | @NaturalId(mutable = true) 27 | private String email; 28 | private String password; 29 | private boolean isEnabled = false; 30 | @ManyToMany(fetch = FetchType.EAGER, cascade = CascadeType.ALL) 31 | @JoinTable(name = "user_roles", 32 | joinColumns = @JoinColumn(name = "user_id", referencedColumnName = "id"), 33 | inverseJoinColumns = @JoinColumn(name = "role_id", referencedColumnName = "id")) 34 | private Collection roles; 35 | 36 | public User(String firstName, String lastName, String email, 37 | String password, Collection roles) { 38 | this.firstName = firstName; 39 | this.lastName = lastName; 40 | this.email = email; 41 | this.password = password; 42 | this.roles = roles; 43 | } 44 | } 45 | -------------------------------------------------------------------------------- /src/main/resources/templates/forgot-password-form.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | Password Reset Request 6 | 7 | 8 | 9 |
10 |
11 | 12 |
13 |
14 |

No user found with this email

15 |
16 | 17 |
18 |

We have just sent a verification link to your email, please check to complete your request.

19 |
20 | 24 |
25 | 26 | 27 |

Forgot Password

28 |
29 | 30 |
31 |

32 | 33 |
34 | 35 |
36 |
37 | 38 |
39 |
40 |
41 |
42 | 43 | 44 | -------------------------------------------------------------------------------- /src/main/resources/templates/update-user.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | Update User 6 | 7 | 8 |
9 |
10 |

Edit User

11 |
12 | 13 |
14 | 15 |
16 | 18 |
19 |
20 | 21 |
22 | 23 |
24 | 26 |
27 |
28 | 29 |
30 | 31 |
32 | 34 |
35 |
36 |
37 | 38 |
39 |
40 |
41 | 42 | 43 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/user/UserController.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.user; 2 | 3 | import com.dailycodework.sbend2endapplication.registration.token.VerificationTokenService; 4 | import lombok.RequiredArgsConstructor; 5 | import lombok.extern.slf4j.Slf4j; 6 | import org.springframework.stereotype.Controller; 7 | import org.springframework.ui.Model; 8 | import org.springframework.web.bind.annotation.GetMapping; 9 | import org.springframework.web.bind.annotation.PathVariable; 10 | import org.springframework.web.bind.annotation.PostMapping; 11 | import org.springframework.web.bind.annotation.RequestMapping; 12 | 13 | 14 | import java.util.Optional; 15 | 16 | /** 17 | * @author Sampson Alfred 18 | */ 19 | @Slf4j 20 | @Controller 21 | @RequestMapping("/users") 22 | @RequiredArgsConstructor 23 | public class UserController { 24 | private final IUserService userService; 25 | 26 | @GetMapping 27 | public String getUsers(Model model){ 28 | model.addAttribute("users", userService.getAllUsers()); 29 | return "users"; 30 | } 31 | @GetMapping("/edit/{id}") 32 | public String showUpdateForm(@PathVariable("id") Long id, Model model){ 33 | Optional user = userService.findById(id); 34 | model.addAttribute("user", user.get()); 35 | return "update-user"; 36 | } 37 | 38 | @PostMapping("/update/{id}") 39 | public String updateUser(@PathVariable("id") Long id, User user){ 40 | userService.updateUser(id, user.getFirstName(), user.getLastName(), user.getEmail()); 41 | return "redirect:/users?update_success"; 42 | } 43 | @GetMapping("/delete/{id}") 44 | public String deleteUser(@PathVariable("id") Long id){ 45 | userService.deleteUser(id); 46 | return "redirect:/users?delete_success"; 47 | } 48 | } 49 | -------------------------------------------------------------------------------- /src/main/resources/templates/fragment/navbar.html: -------------------------------------------------------------------------------- 1 | 2 | 4 | 5 | 6 | 7 | 34 | 35 | 36 | 37 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/token/VerificationTokenService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.token; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | import com.dailycodework.sbend2endapplication.user.UserRepository; 5 | import lombok.RequiredArgsConstructor; 6 | import org.springframework.stereotype.Service; 7 | 8 | import java.util.Calendar; 9 | import java.util.Optional; 10 | 11 | /** 12 | * @author Sampson Alfred 13 | */ 14 | @Service 15 | @RequiredArgsConstructor 16 | public class VerificationTokenService implements IVerificationTokenService { 17 | private final VerificationTokenRepository tokenRepository; 18 | private final UserRepository userRepository; 19 | @Override 20 | public String validateToken(String token) { 21 | Optional theToken = tokenRepository.findByToken(token); 22 | if (theToken.isEmpty()){ 23 | return "INVALID"; 24 | } 25 | User user = theToken.get().getUser(); 26 | Calendar calendar = Calendar.getInstance(); 27 | if ((theToken.get().getExpirationTime().getTime()-calendar.getTime().getTime())<= 0){ 28 | return "EXPIRED"; 29 | } 30 | user.setEnabled(true); 31 | userRepository.save(user); 32 | return "VALID"; 33 | } 34 | 35 | @Override 36 | public void saveVerificationTokenForUser(User user, String token) { 37 | var verificationToken = new VerificationToken(token, user); 38 | tokenRepository.save(verificationToken); 39 | } 40 | @Override 41 | public Optional findByToken(String token) { 42 | return tokenRepository.findByToken(token); 43 | } 44 | 45 | @Override 46 | public void deleteUserToken(Long id) { 47 | tokenRepository.deleteByUserId(id); 48 | } 49 | } 50 | -------------------------------------------------------------------------------- /src/main/resources/templates/users.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | Users 6 | 7 | 8 |
9 |
10 |
11 |
12 | A User has been updated successfully. 13 |
14 |
15 | A User has been deleted successfully. 16 |
17 |
18 |
19 |

There are no users to display

20 |
21 |

All Users

22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 |
First NameLast NameEmailActions
EditDelete
41 |
42 |

Add a new user

43 |
44 |
45 | 46 | 47 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/security/EndToEndUserDetails.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.security; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | import lombok.Data; 5 | import org.springframework.security.core.GrantedAuthority; 6 | import org.springframework.security.core.authority.SimpleGrantedAuthority; 7 | import org.springframework.security.core.userdetails.UserDetails; 8 | 9 | import java.util.Arrays; 10 | import java.util.Collection; 11 | import java.util.List; 12 | import java.util.stream.Collectors; 13 | 14 | /** 15 | * @author Sampson Alfred 16 | */ 17 | @Data 18 | public class EndToEndUserDetails implements UserDetails { 19 | 20 | private String userName; 21 | private String password; 22 | private boolean isEnabled; 23 | private List authorities; 24 | 25 | public EndToEndUserDetails(User user) { 26 | this.userName = user.getEmail(); 27 | this.password = user.getPassword(); 28 | this.isEnabled = user.isEnabled(); 29 | this.authorities = 30 | Arrays.stream(user.getRoles().toString().split(",")) 31 | .map(SimpleGrantedAuthority::new) 32 | .collect(Collectors.toList()); 33 | } 34 | 35 | @Override 36 | public Collection getAuthorities() { 37 | return authorities; 38 | } 39 | 40 | @Override 41 | public String getPassword() { 42 | return password; 43 | } 44 | 45 | @Override 46 | public String getUsername() { 47 | return userName; 48 | } 49 | 50 | @Override 51 | public boolean isAccountNonExpired() { 52 | return true; 53 | } 54 | 55 | @Override 56 | public boolean isAccountNonLocked() { 57 | return true; 58 | } 59 | 60 | @Override 61 | public boolean isCredentialsNonExpired() { 62 | return true; 63 | } 64 | 65 | @Override 66 | public boolean isEnabled() { 67 | return isEnabled; 68 | } 69 | } 70 | -------------------------------------------------------------------------------- /src/main/resources/templates/fragments.html: -------------------------------------------------------------------------------- 1 | 2 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
11 | 37 |
38 | 39 | 40 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/password/PasswordResetTokenService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration.password; 2 | 3 | import com.dailycodework.sbend2endapplication.user.User; 4 | import com.dailycodework.sbend2endapplication.user.UserRepository; 5 | import lombok.RequiredArgsConstructor; 6 | import org.springframework.security.crypto.password.PasswordEncoder; 7 | import org.springframework.stereotype.Service; 8 | 9 | import java.util.Calendar; 10 | import java.util.Optional; 11 | 12 | /** 13 | * @author Sampson Alfred 14 | */ 15 | 16 | @Service 17 | @RequiredArgsConstructor 18 | public class PasswordResetTokenService implements IPasswordResetTokenService { 19 | private final PasswordResetTokenRepository passwordResetTokenRepository; 20 | private final UserRepository userRepository; 21 | private final PasswordEncoder passwordEncoder; 22 | 23 | 24 | @Override 25 | public String validatePasswordResetToken(String theToken) { 26 | Optional passwordResetToken = passwordResetTokenRepository.findByToken(theToken); 27 | if (passwordResetToken.isEmpty()){ 28 | return "invalid"; 29 | } 30 | Calendar calendar = Calendar.getInstance(); 31 | if ((passwordResetToken.get().getExpirationTime().getTime()-calendar.getTime().getTime())<= 0){ 32 | return "expired"; 33 | } 34 | return "valid"; 35 | } 36 | 37 | @Override 38 | public Optional findUserByPasswordResetToken(String theToken) { 39 | return Optional.ofNullable(passwordResetTokenRepository.findByToken(theToken).get().getUser()); 40 | } 41 | 42 | @Override 43 | public void resetPassword(User theUser, String newPassword) { 44 | theUser.setPassword(passwordEncoder.encode(newPassword)); 45 | userRepository.save(theUser); 46 | } 47 | @Override 48 | public void createPasswordResetTokenForUser(User user, String passwordResetToken) { 49 | PasswordResetToken resetToken = new PasswordResetToken(passwordResetToken, user); 50 | passwordResetTokenRepository.save(resetToken); 51 | } 52 | } 53 | -------------------------------------------------------------------------------- /src/main/resources/templates/password-reset-form.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | Reset Password 6 | 7 | 8 |
9 |
10 | 11 |
12 |

You have successfully reset your password, please log in here.

13 |
14 | 15 |
16 |
17 | 18 |

Reset your password

19 | 20 |
21 | 22 |
23 | 25 |
26 |
27 | 28 |
29 | 30 |
31 | 33 |
34 |
35 | 36 |
37 | 38 |
39 |
40 |
41 |
42 | 53 | 54 | 55 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/user/UserService.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.user; 2 | 3 | import com.dailycodework.sbend2endapplication.registration.RegistrationRequest; 4 | import com.dailycodework.sbend2endapplication.registration.token.VerificationTokenService; 5 | import jakarta.transaction.Transactional; 6 | import lombok.RequiredArgsConstructor; 7 | import org.springframework.security.core.userdetails.UsernameNotFoundException; 8 | import org.springframework.security.crypto.password.PasswordEncoder; 9 | import org.springframework.stereotype.Service; 10 | 11 | import java.util.Arrays; 12 | import java.util.List; 13 | import java.util.Optional; 14 | 15 | /** 16 | * @author Sampson Alfred 17 | */ 18 | @Service 19 | @RequiredArgsConstructor 20 | public class UserService implements IUserService { 21 | private final UserRepository userRepository; 22 | private final PasswordEncoder passwordEncoder; 23 | private final VerificationTokenService verificationTokenService; 24 | 25 | @Override 26 | public List getAllUsers() { 27 | return userRepository.findAll(); 28 | } 29 | 30 | @Override 31 | public User registerUser(RegistrationRequest registration) { 32 | var user = new User(registration.getFirstName(), registration.getLastName(), 33 | registration.getEmail(), 34 | passwordEncoder.encode(registration.getPassword()), 35 | Arrays.asList(new Role("ROLE_USER"))); 36 | return userRepository.save(user); 37 | } 38 | @Override 39 | public Optional findByEmail(String email) { 40 | return Optional.ofNullable(userRepository.findByEmail(email) 41 | .orElseThrow(() -> new UsernameNotFoundException("User not found"))); 42 | } 43 | 44 | @Override 45 | public Optional findById(Long id) { 46 | return userRepository.findById(id); 47 | } 48 | 49 | @Transactional 50 | @Override 51 | public void updateUser(Long id, String firstName, String lastName, String email) { 52 | userRepository.update(firstName, lastName, email, id); 53 | } 54 | 55 | @Transactional 56 | @Override 57 | public void deleteUser(Long id) { 58 | Optional theUser = userRepository.findById(id); 59 | theUser.ifPresent(user -> verificationTokenService.deleteUserToken(user.getId())); 60 | userRepository.deleteById(id); 61 | } 62 | } 63 | -------------------------------------------------------------------------------- /src/main/resources/templates/registration.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | User Registration Form 6 | 7 | 8 |
9 |
10 |
11 |
12 | Registration successful, 13 | please check your email to complete your registration. 14 |
15 |

User Registration Form

16 |
17 |
18 |
19 | 20 |
21 | 23 |
24 |
25 | 26 |
27 | 28 |
29 | 31 |
32 |
33 | 34 |
35 | 36 |
37 | 39 |
40 |
41 | 42 |
43 | 44 |
45 | 47 |
48 |
49 |
50 | 51 | Registered already? 52 | Login here. 53 | 54 |
55 |
56 |
57 | 58 | 59 | 60 | -------------------------------------------------------------------------------- /src/main/resources/templates/login.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | User Login 6 | 7 | 8 |
9 |
10 | 11 |
12 |
13 | 14 |
15 | 16 |
17 | 18 |
19 | 20 |
21 | 22 |
23 |
24 |

Email verified successfully, please log in here.

25 |
26 | 27 | 28 |
29 |

You have been logged out.

30 |
31 |
32 | 33 |
34 |

User Login Form

35 |
36 | 37 |
38 | 40 |
41 |
42 | 43 |
44 | 45 |
46 | 48 |
49 |
50 | 51 |
52 | 53 | Not registered yet? Register. 54 |
55 | Forgot password. 56 |
57 |
58 |
59 | 60 | 61 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/security/EndToEndSecurityDemo.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.security; 2 | 3 | import lombok.RequiredArgsConstructor; 4 | import org.springframework.context.annotation.Bean; 5 | import org.springframework.context.annotation.Configuration; 6 | import org.springframework.security.authentication.AuthenticationProvider; 7 | import org.springframework.security.authentication.dao.DaoAuthenticationProvider; 8 | import org.springframework.security.config.annotation.web.builders.HttpSecurity; 9 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; 10 | import org.springframework.security.core.userdetails.UserDetailsService; 11 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; 12 | import org.springframework.security.crypto.password.PasswordEncoder; 13 | import org.springframework.security.web.SecurityFilterChain; 14 | import org.springframework.security.web.util.matcher.AntPathRequestMatcher; 15 | 16 | /** 17 | * @author Sampson Alfred 18 | */ 19 | @Configuration 20 | @EnableWebSecurity 21 | @RequiredArgsConstructor 22 | public class EndToEndSecurityDemo { 23 | 24 | private final EndToEndUserDetailsService userDetailsService; 25 | @Bean 26 | public PasswordEncoder passwordEncoder(){ 27 | return new BCryptPasswordEncoder(); 28 | } 29 | @Bean 30 | public AuthenticationProvider authenticationProvider(){ 31 | DaoAuthenticationProvider authenticationProvider = new DaoAuthenticationProvider(); 32 | authenticationProvider.setUserDetailsService(userDetailsService); 33 | authenticationProvider.setPasswordEncoder(passwordEncoder()); 34 | return authenticationProvider; 35 | } 36 | @Bean 37 | public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception { 38 | return http.csrf().disable() 39 | .authorizeHttpRequests() 40 | .requestMatchers( 41 | "/", 42 | "/login", 43 | "/error", 44 | "/registration/**") 45 | .permitAll() 46 | .anyRequest() 47 | .authenticated() 48 | .and() 49 | .formLogin() 50 | .loginPage("/login") 51 | .usernameParameter("email") 52 | .defaultSuccessUrl("/") 53 | .permitAll().and() 54 | .logout() 55 | .invalidateHttpSession(true) 56 | .clearAuthentication(true) 57 | .logoutRequestMatcher(new AntPathRequestMatcher("/logout")) 58 | .logoutSuccessUrl("/") 59 | .and() 60 | .build(); 61 | } 62 | } 63 | -------------------------------------------------------------------------------- /pom.xml: -------------------------------------------------------------------------------- 1 | 2 | 4 | 4.0.0 5 | 6 | org.springframework.boot 7 | spring-boot-starter-parent 8 | 3.0.6 9 | 10 | 11 | com.dailycodework 12 | sb-end2endapplication 13 | 0.0.1-SNAPSHOT 14 | sb-end2endapplication 15 | sb-end2endapplication 16 | 17 | 17 18 | 19 | 20 | 21 | org.springframework.boot 22 | spring-boot-starter-data-jpa 23 | 24 | 25 | org.springframework.boot 26 | spring-boot-starter-security 27 | 28 | 29 | org.springframework.boot 30 | spring-boot-starter-thymeleaf 31 | 32 | 33 | org.springframework.boot 34 | spring-boot-starter-web 35 | 36 | 37 | org.thymeleaf.extras 38 | thymeleaf-extras-springsecurity6 39 | 40 | 41 | org.springframework.boot 42 | spring-boot-starter-mail 43 | 44 | 45 | org.springframework.boot 46 | spring-boot-devtools 47 | runtime 48 | true 49 | 50 | 51 | com.mysql 52 | mysql-connector-j 53 | runtime 54 | 55 | 56 | org.projectlombok 57 | lombok 58 | true 59 | 60 | 61 | org.springframework.boot 62 | spring-boot-starter-test 63 | test 64 | 65 | 66 | org.springframework.security 67 | spring-security-test 68 | test 69 | 70 | 71 | 72 | 73 | 74 | 75 | org.springframework.boot 76 | spring-boot-maven-plugin 77 | 78 | 79 | 80 | org.projectlombok 81 | lombok 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/event/listener/RegistrationCompleteEventListener.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.event.listener; 2 | 3 | import com.dailycodework.sbend2endapplication.event.RegistrationCompleteEvent; 4 | import com.dailycodework.sbend2endapplication.registration.token.VerificationTokenService; 5 | import com.dailycodework.sbend2endapplication.user.User; 6 | import jakarta.mail.MessagingException; 7 | import jakarta.mail.internet.MimeMessage; 8 | import lombok.RequiredArgsConstructor; 9 | import org.springframework.context.ApplicationListener; 10 | import org.springframework.mail.javamail.JavaMailSender; 11 | import org.springframework.mail.javamail.MimeMessageHelper; 12 | import org.springframework.stereotype.Component; 13 | 14 | import java.io.UnsupportedEncodingException; 15 | import java.util.UUID; 16 | 17 | /** 18 | * @author Sampson Alfred 19 | */ 20 | @Component 21 | @RequiredArgsConstructor 22 | public class RegistrationCompleteEventListener implements ApplicationListener { 23 | private final VerificationTokenService tokenService; 24 | private final JavaMailSender mailSender; 25 | private User user; 26 | 27 | @Override 28 | public void onApplicationEvent(RegistrationCompleteEvent event) { 29 | //1. get the user 30 | user = event.getUser(); 31 | //2. generate a token for the user 32 | String vToken = UUID.randomUUID().toString(); 33 | //3. save the token for the user 34 | tokenService.saveVerificationTokenForUser(user, vToken); 35 | //4. Build the verification url 36 | String url = event.getConfirmationUrl()+"/registration/verifyEmail?token="+vToken; 37 | //5. send the email to the user 38 | try { 39 | sendVerificationEmail(url); 40 | } catch (MessagingException | UnsupportedEncodingException e) { 41 | throw new RuntimeException(e); 42 | } 43 | } 44 | public void sendVerificationEmail(String url) throws MessagingException, UnsupportedEncodingException { 45 | String subject = "Email Verification"; 46 | String senderName = "Users Verification Service"; 47 | String mailContent = "

Hi, "+ user.getFirstName()+ ",

"+ 48 | "

Thank you for registering with us,"+"" + 49 | "Please, follow the link below to complete your registration.

"+ 50 | "Verify your email to activate your account"+ 51 | "

Thank you
Users Registration Portal Service"; 52 | emailMessage(subject, senderName, mailContent, mailSender, user); 53 | } 54 | 55 | 56 | public void sendPasswordResetVerificationEmail(String url) throws MessagingException, UnsupportedEncodingException { 57 | String subject = "Password Reset Request Verification"; 58 | String senderName = "Users Verification Service"; 59 | String mailContent = "

Hi, "+ user.getFirstName()+ ",

"+ 60 | "

You recently requested to reset your password,"+"" + 61 | "Please, follow the link below to complete the action.

"+ 62 | "Reset password"+ 63 | "

Users Registration Portal Service"; 64 | emailMessage(subject, senderName, mailContent, mailSender, user); 65 | } 66 | 67 | private static void emailMessage(String subject, String senderName, 68 | String mailContent, JavaMailSender mailSender, User theUser) 69 | throws MessagingException, UnsupportedEncodingException { 70 | MimeMessage message = mailSender.createMimeMessage(); 71 | var messageHelper = new MimeMessageHelper(message); 72 | messageHelper.setFrom("dailycodeworks@gmail.com", senderName); 73 | messageHelper.setTo(theUser.getEmail()); 74 | messageHelper.setSubject(subject); 75 | messageHelper.setText(mailContent, true); 76 | mailSender.send(message); 77 | } 78 | 79 | 80 | 81 | } 82 | -------------------------------------------------------------------------------- /src/main/java/com/dailycodework/sbend2endapplication/registration/RegistrationController.java: -------------------------------------------------------------------------------- 1 | package com.dailycodework.sbend2endapplication.registration; 2 | import com.dailycodework.sbend2endapplication.event.RegistrationCompleteEvent; 3 | import com.dailycodework.sbend2endapplication.event.listener.RegistrationCompleteEventListener; 4 | import com.dailycodework.sbend2endapplication.registration.password.IPasswordResetTokenService; 5 | import com.dailycodework.sbend2endapplication.registration.password.PasswordResetTokenService; 6 | import com.dailycodework.sbend2endapplication.registration.token.VerificationToken; 7 | import com.dailycodework.sbend2endapplication.registration.token.VerificationTokenService; 8 | import com.dailycodework.sbend2endapplication.user.IUserService; 9 | import com.dailycodework.sbend2endapplication.user.User; 10 | import com.dailycodework.sbend2endapplication.utility.UrlUtil; 11 | import jakarta.mail.MessagingException; 12 | import jakarta.servlet.http.HttpServletRequest; 13 | import lombok.RequiredArgsConstructor; 14 | import org.springframework.context.ApplicationEventPublisher; 15 | import org.springframework.stereotype.Controller; 16 | import org.springframework.ui.Model; 17 | import org.springframework.web.bind.annotation.*; 18 | 19 | 20 | import java.io.UnsupportedEncodingException; 21 | import java.util.Optional; 22 | import java.util.UUID; 23 | 24 | 25 | /** 26 | * @author Sampson Alfred 27 | */ 28 | @Controller 29 | @RequiredArgsConstructor 30 | @RequestMapping("/registration") 31 | public class RegistrationController { 32 | private final IUserService userService; 33 | private final ApplicationEventPublisher publisher; 34 | private final VerificationTokenService tokenService; 35 | private final IPasswordResetTokenService passwordResetTokenService; 36 | private final RegistrationCompleteEventListener eventListener; 37 | 38 | 39 | @GetMapping("/registration-form") 40 | public String showRegistrationForm(Model model) { 41 | model.addAttribute("user", new RegistrationRequest()); 42 | return "registration"; 43 | } 44 | @PostMapping("/register") 45 | public String registerUser(@ModelAttribute("user") RegistrationRequest registration, HttpServletRequest request) { 46 | User user = userService.registerUser(registration); 47 | publisher.publishEvent(new RegistrationCompleteEvent(user, UrlUtil.getApplicationUrl(request))); 48 | return "redirect:/registration/registration-form?success"; 49 | } 50 | @GetMapping("/verifyEmail") 51 | public String verifyEmail(@RequestParam("token") String token) { 52 | Optional theToken = tokenService.findByToken(token); 53 | if (theToken.isPresent() && theToken.get().getUser().isEnabled()) { 54 | return "redirect:/login?verified"; 55 | } 56 | String verificationResult = tokenService.validateToken(token); 57 | switch (verificationResult.toLowerCase()) { 58 | case "expired": 59 | return "redirect:/error?expired"; 60 | case "valid": 61 | return "redirect:/login?valid"; 62 | default: 63 | return "redirect:/error?invalid"; 64 | } 65 | } 66 | @GetMapping("/forgot-password-request") 67 | public String forgotPasswordForm(){ 68 | return "forgot-password-form"; 69 | } 70 | 71 | @PostMapping("/forgot-password") 72 | public String resetPasswordRequest(HttpServletRequest request, Model model){ 73 | String email = request.getParameter("email"); 74 | Optional user= userService.findByEmail(email); 75 | if (user.isEmpty()){ 76 | return "redirect:/registration/forgot-password-request?not_fond"; 77 | } 78 | String passwordResetToken = UUID.randomUUID().toString(); 79 | passwordResetTokenService.createPasswordResetTokenForUser(user.get(), passwordResetToken); 80 | //send password reset verification email to the user 81 | String url = UrlUtil.getApplicationUrl(request)+"/registration/password-reset-form?token="+passwordResetToken; 82 | try { 83 | eventListener.sendPasswordResetVerificationEmail(url); 84 | } catch (MessagingException | UnsupportedEncodingException e) { 85 | model.addAttribute("error", e.getMessage()); 86 | } 87 | return "redirect:/registration/forgot-password-request?success"; 88 | } 89 | @GetMapping("/password-reset-form") 90 | public String passwordResetForm(@RequestParam("token") String token, Model model){ 91 | model.addAttribute("token", token); 92 | return "password-reset-form"; 93 | } 94 | @PostMapping("/reset-password") 95 | public String resetPassword(HttpServletRequest request){ 96 | String theToken = request.getParameter("token"); 97 | String password = request.getParameter("password"); 98 | String tokenVerificationResult = passwordResetTokenService.validatePasswordResetToken(theToken); 99 | if (!tokenVerificationResult.equalsIgnoreCase("valid")){ 100 | return "redirect:/error?invalid_token"; 101 | } 102 | Optional theUser = passwordResetTokenService.findUserByPasswordResetToken(theToken); 103 | if (theUser.isPresent()){ 104 | passwordResetTokenService.resetPassword(theUser.get(), password); 105 | return "redirect:/login?reset_success"; 106 | } 107 | return "redirect:/error?not_found"; 108 | } 109 | } 110 | -------------------------------------------------------------------------------- /mvnw.cmd: -------------------------------------------------------------------------------- 1 | @REM ---------------------------------------------------------------------------- 2 | @REM Licensed to the Apache Software Foundation (ASF) under one 3 | @REM or more contributor license agreements. See the NOTICE file 4 | @REM distributed with this work for additional information 5 | @REM regarding copyright ownership. The ASF licenses this file 6 | @REM to you under the Apache License, Version 2.0 (the 7 | @REM "License"); you may not use this file except in compliance 8 | @REM with the License. You may obtain a copy of the License at 9 | @REM 10 | @REM https://www.apache.org/licenses/LICENSE-2.0 11 | @REM 12 | @REM Unless required by applicable law or agreed to in writing, 13 | @REM software distributed under the License is distributed on an 14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | @REM KIND, either express or implied. See the License for the 16 | @REM specific language governing permissions and limitations 17 | @REM under the License. 18 | @REM ---------------------------------------------------------------------------- 19 | 20 | @REM ---------------------------------------------------------------------------- 21 | @REM Maven Start Up Batch script 22 | @REM 23 | @REM Required ENV vars: 24 | @REM JAVA_HOME - location of a JDK home dir 25 | @REM 26 | @REM Optional ENV vars 27 | @REM M2_HOME - location of maven2's installed home dir 28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands 29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a keystroke before ending 30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven 31 | @REM e.g. to debug Maven itself, use 32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files 34 | @REM ---------------------------------------------------------------------------- 35 | 36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on' 37 | @echo off 38 | @REM set title of command window 39 | title %0 40 | @REM enable echoing by setting MAVEN_BATCH_ECHO to 'on' 41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO% 42 | 43 | @REM set %HOME% to equivalent of $HOME 44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%") 45 | 46 | @REM Execute a user defined script before this one 47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre 48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending 49 | if exist "%USERPROFILE%\mavenrc_pre.bat" call "%USERPROFILE%\mavenrc_pre.bat" %* 50 | if exist "%USERPROFILE%\mavenrc_pre.cmd" call "%USERPROFILE%\mavenrc_pre.cmd" %* 51 | :skipRcPre 52 | 53 | @setlocal 54 | 55 | set ERROR_CODE=0 56 | 57 | @REM To isolate internal variables from possible post scripts, we use another setlocal 58 | @setlocal 59 | 60 | @REM ==== START VALIDATION ==== 61 | if not "%JAVA_HOME%" == "" goto OkJHome 62 | 63 | echo. 64 | echo Error: JAVA_HOME not found in your environment. >&2 65 | echo Please set the JAVA_HOME variable in your environment to match the >&2 66 | echo location of your Java installation. >&2 67 | echo. 68 | goto error 69 | 70 | :OkJHome 71 | if exist "%JAVA_HOME%\bin\java.exe" goto init 72 | 73 | echo. 74 | echo Error: JAVA_HOME is set to an invalid directory. >&2 75 | echo JAVA_HOME = "%JAVA_HOME%" >&2 76 | echo Please set the JAVA_HOME variable in your environment to match the >&2 77 | echo location of your Java installation. >&2 78 | echo. 79 | goto error 80 | 81 | @REM ==== END VALIDATION ==== 82 | 83 | :init 84 | 85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn". 86 | @REM Fallback to current working directory if not found. 87 | 88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR% 89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir 90 | 91 | set EXEC_DIR=%CD% 92 | set WDIR=%EXEC_DIR% 93 | :findBaseDir 94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound 95 | cd .. 96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound 97 | set WDIR=%CD% 98 | goto findBaseDir 99 | 100 | :baseDirFound 101 | set MAVEN_PROJECTBASEDIR=%WDIR% 102 | cd "%EXEC_DIR%" 103 | goto endDetectBaseDir 104 | 105 | :baseDirNotFound 106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR% 107 | cd "%EXEC_DIR%" 108 | 109 | :endDetectBaseDir 110 | 111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig 112 | 113 | @setlocal EnableExtensions EnableDelayedExpansion 114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a 115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS% 116 | 117 | :endReadAdditionalConfig 118 | 119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe" 120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar" 121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 122 | 123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 124 | 125 | FOR /F "usebackq tokens=1,2 delims==" %%A IN ("%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties") DO ( 126 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B 127 | ) 128 | 129 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 130 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data. 131 | if exist %WRAPPER_JAR% ( 132 | if "%MVNW_VERBOSE%" == "true" ( 133 | echo Found %WRAPPER_JAR% 134 | ) 135 | ) else ( 136 | if not "%MVNW_REPOURL%" == "" ( 137 | SET DOWNLOAD_URL="%MVNW_REPOURL%/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 138 | ) 139 | if "%MVNW_VERBOSE%" == "true" ( 140 | echo Couldn't find %WRAPPER_JAR%, downloading it ... 141 | echo Downloading from: %DOWNLOAD_URL% 142 | ) 143 | 144 | powershell -Command "&{"^ 145 | "$webclient = new-object System.Net.WebClient;"^ 146 | "if (-not ([string]::IsNullOrEmpty('%MVNW_USERNAME%') -and [string]::IsNullOrEmpty('%MVNW_PASSWORD%'))) {"^ 147 | "$webclient.Credentials = new-object System.Net.NetworkCredential('%MVNW_USERNAME%', '%MVNW_PASSWORD%');"^ 148 | "}"^ 149 | "[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12; $webclient.DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')"^ 150 | "}" 151 | if "%MVNW_VERBOSE%" == "true" ( 152 | echo Finished downloading %WRAPPER_JAR% 153 | ) 154 | ) 155 | @REM End of extension 156 | 157 | @REM Provide a "standardized" way to retrieve the CLI args that will 158 | @REM work with both Windows and non-Windows executions. 159 | set MAVEN_CMD_LINE_ARGS=%* 160 | 161 | %MAVEN_JAVA_EXE% ^ 162 | %JVM_CONFIG_MAVEN_PROPS% ^ 163 | %MAVEN_OPTS% ^ 164 | %MAVEN_DEBUG_OPTS% ^ 165 | -classpath %WRAPPER_JAR% ^ 166 | "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" ^ 167 | %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %* 168 | if ERRORLEVEL 1 goto error 169 | goto end 170 | 171 | :error 172 | set ERROR_CODE=1 173 | 174 | :end 175 | @endlocal & set ERROR_CODE=%ERROR_CODE% 176 | 177 | if not "%MAVEN_SKIP_RC%"=="" goto skipRcPost 178 | @REM check for post script, once with legacy .bat ending and once with .cmd ending 179 | if exist "%USERPROFILE%\mavenrc_post.bat" call "%USERPROFILE%\mavenrc_post.bat" 180 | if exist "%USERPROFILE%\mavenrc_post.cmd" call "%USERPROFILE%\mavenrc_post.cmd" 181 | :skipRcPost 182 | 183 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on' 184 | if "%MAVEN_BATCH_PAUSE%"=="on" pause 185 | 186 | if "%MAVEN_TERMINATE_CMD%"=="on" exit %ERROR_CODE% 187 | 188 | cmd /C exit /B %ERROR_CODE% 189 | -------------------------------------------------------------------------------- /mvnw: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # ---------------------------------------------------------------------------- 3 | # Licensed to the Apache Software Foundation (ASF) under one 4 | # or more contributor license agreements. See the NOTICE file 5 | # distributed with this work for additional information 6 | # regarding copyright ownership. The ASF licenses this file 7 | # to you under the Apache License, Version 2.0 (the 8 | # "License"); you may not use this file except in compliance 9 | # with the License. You may obtain a copy of the License at 10 | # 11 | # https://www.apache.org/licenses/LICENSE-2.0 12 | # 13 | # Unless required by applicable law or agreed to in writing, 14 | # software distributed under the License is distributed on an 15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 16 | # KIND, either express or implied. See the License for the 17 | # specific language governing permissions and limitations 18 | # under the License. 19 | # ---------------------------------------------------------------------------- 20 | 21 | # ---------------------------------------------------------------------------- 22 | # Maven Start Up Batch script 23 | # 24 | # Required ENV vars: 25 | # ------------------ 26 | # JAVA_HOME - location of a JDK home dir 27 | # 28 | # Optional ENV vars 29 | # ----------------- 30 | # M2_HOME - location of maven2's installed home dir 31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven 32 | # e.g. to debug Maven itself, use 33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files 35 | # ---------------------------------------------------------------------------- 36 | 37 | if [ -z "$MAVEN_SKIP_RC" ] ; then 38 | 39 | if [ -f /usr/local/etc/mavenrc ] ; then 40 | . /usr/local/etc/mavenrc 41 | fi 42 | 43 | if [ -f /etc/mavenrc ] ; then 44 | . /etc/mavenrc 45 | fi 46 | 47 | if [ -f "$HOME/.mavenrc" ] ; then 48 | . "$HOME/.mavenrc" 49 | fi 50 | 51 | fi 52 | 53 | # OS specific support. $var _must_ be set to either true or false. 54 | cygwin=false; 55 | darwin=false; 56 | mingw=false 57 | case "`uname`" in 58 | CYGWIN*) cygwin=true ;; 59 | MINGW*) mingw=true;; 60 | Darwin*) darwin=true 61 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home 62 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html 63 | if [ -z "$JAVA_HOME" ]; then 64 | if [ -x "/usr/libexec/java_home" ]; then 65 | export JAVA_HOME="`/usr/libexec/java_home`" 66 | else 67 | export JAVA_HOME="/Library/Java/Home" 68 | fi 69 | fi 70 | ;; 71 | esac 72 | 73 | if [ -z "$JAVA_HOME" ] ; then 74 | if [ -r /etc/gentoo-release ] ; then 75 | JAVA_HOME=`java-config --jre-home` 76 | fi 77 | fi 78 | 79 | if [ -z "$M2_HOME" ] ; then 80 | ## resolve links - $0 may be a link to maven's home 81 | PRG="$0" 82 | 83 | # need this for relative symlinks 84 | while [ -h "$PRG" ] ; do 85 | ls=`ls -ld "$PRG"` 86 | link=`expr "$ls" : '.*-> \(.*\)$'` 87 | if expr "$link" : '/.*' > /dev/null; then 88 | PRG="$link" 89 | else 90 | PRG="`dirname "$PRG"`/$link" 91 | fi 92 | done 93 | 94 | saveddir=`pwd` 95 | 96 | M2_HOME=`dirname "$PRG"`/.. 97 | 98 | # make it fully qualified 99 | M2_HOME=`cd "$M2_HOME" && pwd` 100 | 101 | cd "$saveddir" 102 | # echo Using m2 at $M2_HOME 103 | fi 104 | 105 | # For Cygwin, ensure paths are in UNIX format before anything is touched 106 | if $cygwin ; then 107 | [ -n "$M2_HOME" ] && 108 | M2_HOME=`cygpath --unix "$M2_HOME"` 109 | [ -n "$JAVA_HOME" ] && 110 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"` 111 | [ -n "$CLASSPATH" ] && 112 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"` 113 | fi 114 | 115 | # For Mingw, ensure paths are in UNIX format before anything is touched 116 | if $mingw ; then 117 | [ -n "$M2_HOME" ] && 118 | M2_HOME="`(cd "$M2_HOME"; pwd)`" 119 | [ -n "$JAVA_HOME" ] && 120 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`" 121 | fi 122 | 123 | if [ -z "$JAVA_HOME" ]; then 124 | javaExecutable="`which javac`" 125 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then 126 | # readlink(1) is not available as standard on Solaris 10. 127 | readLink=`which readlink` 128 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then 129 | if $darwin ; then 130 | javaHome="`dirname \"$javaExecutable\"`" 131 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac" 132 | else 133 | javaExecutable="`readlink -f \"$javaExecutable\"`" 134 | fi 135 | javaHome="`dirname \"$javaExecutable\"`" 136 | javaHome=`expr "$javaHome" : '\(.*\)/bin'` 137 | JAVA_HOME="$javaHome" 138 | export JAVA_HOME 139 | fi 140 | fi 141 | fi 142 | 143 | if [ -z "$JAVACMD" ] ; then 144 | if [ -n "$JAVA_HOME" ] ; then 145 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 146 | # IBM's JDK on AIX uses strange locations for the executables 147 | JAVACMD="$JAVA_HOME/jre/sh/java" 148 | else 149 | JAVACMD="$JAVA_HOME/bin/java" 150 | fi 151 | else 152 | JAVACMD="`\\unset -f command; \\command -v java`" 153 | fi 154 | fi 155 | 156 | if [ ! -x "$JAVACMD" ] ; then 157 | echo "Error: JAVA_HOME is not defined correctly." >&2 158 | echo " We cannot execute $JAVACMD" >&2 159 | exit 1 160 | fi 161 | 162 | if [ -z "$JAVA_HOME" ] ; then 163 | echo "Warning: JAVA_HOME environment variable is not set." 164 | fi 165 | 166 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher 167 | 168 | # traverses directory structure from process work directory to filesystem root 169 | # first directory with .mvn subdirectory is considered project base directory 170 | find_maven_basedir() { 171 | 172 | if [ -z "$1" ] 173 | then 174 | echo "Path not specified to find_maven_basedir" 175 | return 1 176 | fi 177 | 178 | basedir="$1" 179 | wdir="$1" 180 | while [ "$wdir" != '/' ] ; do 181 | if [ -d "$wdir"/.mvn ] ; then 182 | basedir=$wdir 183 | break 184 | fi 185 | # workaround for JBEAP-8937 (on Solaris 10/Sparc) 186 | if [ -d "${wdir}" ]; then 187 | wdir=`cd "$wdir/.."; pwd` 188 | fi 189 | # end of workaround 190 | done 191 | echo "${basedir}" 192 | } 193 | 194 | # concatenates all lines of a file 195 | concat_lines() { 196 | if [ -f "$1" ]; then 197 | echo "$(tr -s '\n' ' ' < "$1")" 198 | fi 199 | } 200 | 201 | BASE_DIR=`find_maven_basedir "$(pwd)"` 202 | if [ -z "$BASE_DIR" ]; then 203 | exit 1; 204 | fi 205 | 206 | ########################################################################################## 207 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 208 | # This allows using the maven wrapper in projects that prohibit checking in binary data. 209 | ########################################################################################## 210 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then 211 | if [ "$MVNW_VERBOSE" = true ]; then 212 | echo "Found .mvn/wrapper/maven-wrapper.jar" 213 | fi 214 | else 215 | if [ "$MVNW_VERBOSE" = true ]; then 216 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..." 217 | fi 218 | if [ -n "$MVNW_REPOURL" ]; then 219 | jarUrl="$MVNW_REPOURL/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 220 | else 221 | jarUrl="https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar" 222 | fi 223 | while IFS="=" read key value; do 224 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;; 225 | esac 226 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties" 227 | if [ "$MVNW_VERBOSE" = true ]; then 228 | echo "Downloading from: $jarUrl" 229 | fi 230 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" 231 | if $cygwin; then 232 | wrapperJarPath=`cygpath --path --windows "$wrapperJarPath"` 233 | fi 234 | 235 | if command -v wget > /dev/null; then 236 | if [ "$MVNW_VERBOSE" = true ]; then 237 | echo "Found wget ... using wget" 238 | fi 239 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then 240 | wget "$jarUrl" -O "$wrapperJarPath" || rm -f "$wrapperJarPath" 241 | else 242 | wget --http-user=$MVNW_USERNAME --http-password=$MVNW_PASSWORD "$jarUrl" -O "$wrapperJarPath" || rm -f "$wrapperJarPath" 243 | fi 244 | elif command -v curl > /dev/null; then 245 | if [ "$MVNW_VERBOSE" = true ]; then 246 | echo "Found curl ... using curl" 247 | fi 248 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then 249 | curl -o "$wrapperJarPath" "$jarUrl" -f 250 | else 251 | curl --user $MVNW_USERNAME:$MVNW_PASSWORD -o "$wrapperJarPath" "$jarUrl" -f 252 | fi 253 | 254 | else 255 | if [ "$MVNW_VERBOSE" = true ]; then 256 | echo "Falling back to using Java to download" 257 | fi 258 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java" 259 | # For Cygwin, switch paths to Windows format before running javac 260 | if $cygwin; then 261 | javaClass=`cygpath --path --windows "$javaClass"` 262 | fi 263 | if [ -e "$javaClass" ]; then 264 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 265 | if [ "$MVNW_VERBOSE" = true ]; then 266 | echo " - Compiling MavenWrapperDownloader.java ..." 267 | fi 268 | # Compiling the Java class 269 | ("$JAVA_HOME/bin/javac" "$javaClass") 270 | fi 271 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 272 | # Running the downloader 273 | if [ "$MVNW_VERBOSE" = true ]; then 274 | echo " - Running MavenWrapperDownloader.java ..." 275 | fi 276 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR") 277 | fi 278 | fi 279 | fi 280 | fi 281 | ########################################################################################## 282 | # End of extension 283 | ########################################################################################## 284 | 285 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"} 286 | if [ "$MVNW_VERBOSE" = true ]; then 287 | echo $MAVEN_PROJECTBASEDIR 288 | fi 289 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS" 290 | 291 | # For Cygwin, switch paths to Windows format before running java 292 | if $cygwin; then 293 | [ -n "$M2_HOME" ] && 294 | M2_HOME=`cygpath --path --windows "$M2_HOME"` 295 | [ -n "$JAVA_HOME" ] && 296 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"` 297 | [ -n "$CLASSPATH" ] && 298 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"` 299 | [ -n "$MAVEN_PROJECTBASEDIR" ] && 300 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"` 301 | fi 302 | 303 | # Provide a "standardized" way to retrieve the CLI args that will 304 | # work with both Windows and non-Windows executions. 305 | MAVEN_CMD_LINE_ARGS="$MAVEN_CONFIG $@" 306 | export MAVEN_CMD_LINE_ARGS 307 | 308 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 309 | 310 | exec "$JAVACMD" \ 311 | $MAVEN_OPTS \ 312 | $MAVEN_DEBUG_OPTS \ 313 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \ 314 | "-Dmaven.home=${M2_HOME}" \ 315 | "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \ 316 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@" 317 | --------------------------------------------------------------------------------