├── .gitignore
├── .mvn
└── wrapper
│ ├── maven-wrapper.jar
│ └── maven-wrapper.properties
├── mvnw
├── mvnw.cmd
├── pom.xml
└── src
├── main
├── java
│ └── com
│ │ └── example
│ │ └── fullstackbookjwtspringboot
│ │ ├── FullstackbookJwtSpringbootApplication.java
│ │ ├── config
│ │ ├── CorsConfiguration.java
│ │ └── SecurityConfiguration.java
│ │ ├── controller
│ │ ├── AuthController.java
│ │ └── TestController.java
│ │ ├── dto
│ │ ├── JwtResponse.java
│ │ ├── SignInRequest.java
│ │ └── SignUpRequest.java
│ │ ├── filter
│ │ ├── AuthTokenFilter.java
│ │ └── TestFilter.java
│ │ ├── model
│ │ ├── ERole.java
│ │ ├── Role.java
│ │ └── User.java
│ │ ├── repository
│ │ ├── RoleRepository.java
│ │ └── UserRepository.java
│ │ ├── service
│ │ ├── AuthEntryPointJwt.java
│ │ ├── UserDetailsImpl.java
│ │ └── UserDetailsServiceImpl.java
│ │ └── util
│ │ └── JwtUtil.java
└── resources
│ ├── application.properties
│ └── db
│ └── migration
│ ├── V1__create_roles_table.sql
│ ├── V2__create_users_table.sql
│ ├── V3__create_users_to_roles_table.sql
│ └── V4__insert_roles.sql
└── test
└── java
└── com
└── example
└── fullstackbookjwtspringboot
└── FullstackbookJwtSpringbootApplicationTests.java
/.gitignore:
--------------------------------------------------------------------------------
1 | HELP.md
2 | target/
3 | !.mvn/wrapper/maven-wrapper.jar
4 | !**/src/main/**/target/
5 | !**/src/test/**/target/
6 |
7 | ### STS ###
8 | .apt_generated
9 | .classpath
10 | .factorypath
11 | .project
12 | .settings
13 | .springBeans
14 | .sts4-cache
15 |
16 | ### IntelliJ IDEA ###
17 | .idea
18 | *.iws
19 | *.iml
20 | *.ipr
21 |
22 | ### NetBeans ###
23 | /nbproject/private/
24 | /nbbuild/
25 | /dist/
26 | /nbdist/
27 | /.nb-gradle/
28 | build/
29 | !**/src/main/**/build/
30 | !**/src/test/**/build/
31 |
32 | ### VS Code ###
33 | .vscode/
34 |
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/fullstackbook/fullstackbook-jwt-springboot/4ce8f84bf8628f4251e241673a1a00d2ed5ab05a/.mvn/wrapper/maven-wrapper.jar
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.properties:
--------------------------------------------------------------------------------
1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.8.6/apache-maven-3.8.6-bin.zip
2 | wrapperUrl=https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar
3 |
--------------------------------------------------------------------------------
/mvnw:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # ----------------------------------------------------------------------------
3 | # Licensed to the Apache Software Foundation (ASF) under one
4 | # or more contributor license agreements. See the NOTICE file
5 | # distributed with this work for additional information
6 | # regarding copyright ownership. The ASF licenses this file
7 | # to you under the Apache License, Version 2.0 (the
8 | # "License"); you may not use this file except in compliance
9 | # with the License. You may obtain a copy of the License at
10 | #
11 | # https://www.apache.org/licenses/LICENSE-2.0
12 | #
13 | # Unless required by applicable law or agreed to in writing,
14 | # software distributed under the License is distributed on an
15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16 | # KIND, either express or implied. See the License for the
17 | # specific language governing permissions and limitations
18 | # under the License.
19 | # ----------------------------------------------------------------------------
20 |
21 | # ----------------------------------------------------------------------------
22 | # Maven Start Up Batch script
23 | #
24 | # Required ENV vars:
25 | # ------------------
26 | # JAVA_HOME - location of a JDK home dir
27 | #
28 | # Optional ENV vars
29 | # -----------------
30 | # M2_HOME - location of maven2's installed home dir
31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven
32 | # e.g. to debug Maven itself, use
33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files
35 | # ----------------------------------------------------------------------------
36 |
37 | if [ -z "$MAVEN_SKIP_RC" ] ; then
38 |
39 | if [ -f /usr/local/etc/mavenrc ] ; then
40 | . /usr/local/etc/mavenrc
41 | fi
42 |
43 | if [ -f /etc/mavenrc ] ; then
44 | . /etc/mavenrc
45 | fi
46 |
47 | if [ -f "$HOME/.mavenrc" ] ; then
48 | . "$HOME/.mavenrc"
49 | fi
50 |
51 | fi
52 |
53 | # OS specific support. $var _must_ be set to either true or false.
54 | cygwin=false;
55 | darwin=false;
56 | mingw=false
57 | case "`uname`" in
58 | CYGWIN*) cygwin=true ;;
59 | MINGW*) mingw=true;;
60 | Darwin*) darwin=true
61 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home
62 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html
63 | if [ -z "$JAVA_HOME" ]; then
64 | if [ -x "/usr/libexec/java_home" ]; then
65 | export JAVA_HOME="`/usr/libexec/java_home`"
66 | else
67 | export JAVA_HOME="/Library/Java/Home"
68 | fi
69 | fi
70 | ;;
71 | esac
72 |
73 | if [ -z "$JAVA_HOME" ] ; then
74 | if [ -r /etc/gentoo-release ] ; then
75 | JAVA_HOME=`java-config --jre-home`
76 | fi
77 | fi
78 |
79 | if [ -z "$M2_HOME" ] ; then
80 | ## resolve links - $0 may be a link to maven's home
81 | PRG="$0"
82 |
83 | # need this for relative symlinks
84 | while [ -h "$PRG" ] ; do
85 | ls=`ls -ld "$PRG"`
86 | link=`expr "$ls" : '.*-> \(.*\)$'`
87 | if expr "$link" : '/.*' > /dev/null; then
88 | PRG="$link"
89 | else
90 | PRG="`dirname "$PRG"`/$link"
91 | fi
92 | done
93 |
94 | saveddir=`pwd`
95 |
96 | M2_HOME=`dirname "$PRG"`/..
97 |
98 | # make it fully qualified
99 | M2_HOME=`cd "$M2_HOME" && pwd`
100 |
101 | cd "$saveddir"
102 | # echo Using m2 at $M2_HOME
103 | fi
104 |
105 | # For Cygwin, ensure paths are in UNIX format before anything is touched
106 | if $cygwin ; then
107 | [ -n "$M2_HOME" ] &&
108 | M2_HOME=`cygpath --unix "$M2_HOME"`
109 | [ -n "$JAVA_HOME" ] &&
110 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
111 | [ -n "$CLASSPATH" ] &&
112 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
113 | fi
114 |
115 | # For Mingw, ensure paths are in UNIX format before anything is touched
116 | if $mingw ; then
117 | [ -n "$M2_HOME" ] &&
118 | M2_HOME="`(cd "$M2_HOME"; pwd)`"
119 | [ -n "$JAVA_HOME" ] &&
120 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
121 | fi
122 |
123 | if [ -z "$JAVA_HOME" ]; then
124 | javaExecutable="`which javac`"
125 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then
126 | # readlink(1) is not available as standard on Solaris 10.
127 | readLink=`which readlink`
128 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then
129 | if $darwin ; then
130 | javaHome="`dirname \"$javaExecutable\"`"
131 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac"
132 | else
133 | javaExecutable="`readlink -f \"$javaExecutable\"`"
134 | fi
135 | javaHome="`dirname \"$javaExecutable\"`"
136 | javaHome=`expr "$javaHome" : '\(.*\)/bin'`
137 | JAVA_HOME="$javaHome"
138 | export JAVA_HOME
139 | fi
140 | fi
141 | fi
142 |
143 | if [ -z "$JAVACMD" ] ; then
144 | if [ -n "$JAVA_HOME" ] ; then
145 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
146 | # IBM's JDK on AIX uses strange locations for the executables
147 | JAVACMD="$JAVA_HOME/jre/sh/java"
148 | else
149 | JAVACMD="$JAVA_HOME/bin/java"
150 | fi
151 | else
152 | JAVACMD="`\\unset -f command; \\command -v java`"
153 | fi
154 | fi
155 |
156 | if [ ! -x "$JAVACMD" ] ; then
157 | echo "Error: JAVA_HOME is not defined correctly." >&2
158 | echo " We cannot execute $JAVACMD" >&2
159 | exit 1
160 | fi
161 |
162 | if [ -z "$JAVA_HOME" ] ; then
163 | echo "Warning: JAVA_HOME environment variable is not set."
164 | fi
165 |
166 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher
167 |
168 | # traverses directory structure from process work directory to filesystem root
169 | # first directory with .mvn subdirectory is considered project base directory
170 | find_maven_basedir() {
171 |
172 | if [ -z "$1" ]
173 | then
174 | echo "Path not specified to find_maven_basedir"
175 | return 1
176 | fi
177 |
178 | basedir="$1"
179 | wdir="$1"
180 | while [ "$wdir" != '/' ] ; do
181 | if [ -d "$wdir"/.mvn ] ; then
182 | basedir=$wdir
183 | break
184 | fi
185 | # workaround for JBEAP-8937 (on Solaris 10/Sparc)
186 | if [ -d "${wdir}" ]; then
187 | wdir=`cd "$wdir/.."; pwd`
188 | fi
189 | # end of workaround
190 | done
191 | echo "${basedir}"
192 | }
193 |
194 | # concatenates all lines of a file
195 | concat_lines() {
196 | if [ -f "$1" ]; then
197 | echo "$(tr -s '\n' ' ' < "$1")"
198 | fi
199 | }
200 |
201 | BASE_DIR=`find_maven_basedir "$(pwd)"`
202 | if [ -z "$BASE_DIR" ]; then
203 | exit 1;
204 | fi
205 |
206 | ##########################################################################################
207 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
208 | # This allows using the maven wrapper in projects that prohibit checking in binary data.
209 | ##########################################################################################
210 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then
211 | if [ "$MVNW_VERBOSE" = true ]; then
212 | echo "Found .mvn/wrapper/maven-wrapper.jar"
213 | fi
214 | else
215 | if [ "$MVNW_VERBOSE" = true ]; then
216 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..."
217 | fi
218 | if [ -n "$MVNW_REPOURL" ]; then
219 | jarUrl="$MVNW_REPOURL/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar"
220 | else
221 | jarUrl="https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar"
222 | fi
223 | while IFS="=" read key value; do
224 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;;
225 | esac
226 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties"
227 | if [ "$MVNW_VERBOSE" = true ]; then
228 | echo "Downloading from: $jarUrl"
229 | fi
230 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar"
231 | if $cygwin; then
232 | wrapperJarPath=`cygpath --path --windows "$wrapperJarPath"`
233 | fi
234 |
235 | if command -v wget > /dev/null; then
236 | if [ "$MVNW_VERBOSE" = true ]; then
237 | echo "Found wget ... using wget"
238 | fi
239 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then
240 | wget "$jarUrl" -O "$wrapperJarPath" || rm -f "$wrapperJarPath"
241 | else
242 | wget --http-user=$MVNW_USERNAME --http-password=$MVNW_PASSWORD "$jarUrl" -O "$wrapperJarPath" || rm -f "$wrapperJarPath"
243 | fi
244 | elif command -v curl > /dev/null; then
245 | if [ "$MVNW_VERBOSE" = true ]; then
246 | echo "Found curl ... using curl"
247 | fi
248 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then
249 | curl -o "$wrapperJarPath" "$jarUrl" -f
250 | else
251 | curl --user $MVNW_USERNAME:$MVNW_PASSWORD -o "$wrapperJarPath" "$jarUrl" -f
252 | fi
253 |
254 | else
255 | if [ "$MVNW_VERBOSE" = true ]; then
256 | echo "Falling back to using Java to download"
257 | fi
258 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java"
259 | # For Cygwin, switch paths to Windows format before running javac
260 | if $cygwin; then
261 | javaClass=`cygpath --path --windows "$javaClass"`
262 | fi
263 | if [ -e "$javaClass" ]; then
264 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
265 | if [ "$MVNW_VERBOSE" = true ]; then
266 | echo " - Compiling MavenWrapperDownloader.java ..."
267 | fi
268 | # Compiling the Java class
269 | ("$JAVA_HOME/bin/javac" "$javaClass")
270 | fi
271 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
272 | # Running the downloader
273 | if [ "$MVNW_VERBOSE" = true ]; then
274 | echo " - Running MavenWrapperDownloader.java ..."
275 | fi
276 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR")
277 | fi
278 | fi
279 | fi
280 | fi
281 | ##########################################################################################
282 | # End of extension
283 | ##########################################################################################
284 |
285 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"}
286 | if [ "$MVNW_VERBOSE" = true ]; then
287 | echo $MAVEN_PROJECTBASEDIR
288 | fi
289 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS"
290 |
291 | # For Cygwin, switch paths to Windows format before running java
292 | if $cygwin; then
293 | [ -n "$M2_HOME" ] &&
294 | M2_HOME=`cygpath --path --windows "$M2_HOME"`
295 | [ -n "$JAVA_HOME" ] &&
296 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"`
297 | [ -n "$CLASSPATH" ] &&
298 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
299 | [ -n "$MAVEN_PROJECTBASEDIR" ] &&
300 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"`
301 | fi
302 |
303 | # Provide a "standardized" way to retrieve the CLI args that will
304 | # work with both Windows and non-Windows executions.
305 | MAVEN_CMD_LINE_ARGS="$MAVEN_CONFIG $@"
306 | export MAVEN_CMD_LINE_ARGS
307 |
308 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
309 |
310 | exec "$JAVACMD" \
311 | $MAVEN_OPTS \
312 | $MAVEN_DEBUG_OPTS \
313 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \
314 | "-Dmaven.home=${M2_HOME}" \
315 | "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \
316 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@"
317 |
--------------------------------------------------------------------------------
/mvnw.cmd:
--------------------------------------------------------------------------------
1 | @REM ----------------------------------------------------------------------------
2 | @REM Licensed to the Apache Software Foundation (ASF) under one
3 | @REM or more contributor license agreements. See the NOTICE file
4 | @REM distributed with this work for additional information
5 | @REM regarding copyright ownership. The ASF licenses this file
6 | @REM to you under the Apache License, Version 2.0 (the
7 | @REM "License"); you may not use this file except in compliance
8 | @REM with the License. You may obtain a copy of the License at
9 | @REM
10 | @REM https://www.apache.org/licenses/LICENSE-2.0
11 | @REM
12 | @REM Unless required by applicable law or agreed to in writing,
13 | @REM software distributed under the License is distributed on an
14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | @REM KIND, either express or implied. See the License for the
16 | @REM specific language governing permissions and limitations
17 | @REM under the License.
18 | @REM ----------------------------------------------------------------------------
19 |
20 | @REM ----------------------------------------------------------------------------
21 | @REM Maven Start Up Batch script
22 | @REM
23 | @REM Required ENV vars:
24 | @REM JAVA_HOME - location of a JDK home dir
25 | @REM
26 | @REM Optional ENV vars
27 | @REM M2_HOME - location of maven2's installed home dir
28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands
29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a keystroke before ending
30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven
31 | @REM e.g. to debug Maven itself, use
32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files
34 | @REM ----------------------------------------------------------------------------
35 |
36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on'
37 | @echo off
38 | @REM set title of command window
39 | title %0
40 | @REM enable echoing by setting MAVEN_BATCH_ECHO to 'on'
41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO%
42 |
43 | @REM set %HOME% to equivalent of $HOME
44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%")
45 |
46 | @REM Execute a user defined script before this one
47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre
48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending
49 | if exist "%USERPROFILE%\mavenrc_pre.bat" call "%USERPROFILE%\mavenrc_pre.bat" %*
50 | if exist "%USERPROFILE%\mavenrc_pre.cmd" call "%USERPROFILE%\mavenrc_pre.cmd" %*
51 | :skipRcPre
52 |
53 | @setlocal
54 |
55 | set ERROR_CODE=0
56 |
57 | @REM To isolate internal variables from possible post scripts, we use another setlocal
58 | @setlocal
59 |
60 | @REM ==== START VALIDATION ====
61 | if not "%JAVA_HOME%" == "" goto OkJHome
62 |
63 | echo.
64 | echo Error: JAVA_HOME not found in your environment. >&2
65 | echo Please set the JAVA_HOME variable in your environment to match the >&2
66 | echo location of your Java installation. >&2
67 | echo.
68 | goto error
69 |
70 | :OkJHome
71 | if exist "%JAVA_HOME%\bin\java.exe" goto init
72 |
73 | echo.
74 | echo Error: JAVA_HOME is set to an invalid directory. >&2
75 | echo JAVA_HOME = "%JAVA_HOME%" >&2
76 | echo Please set the JAVA_HOME variable in your environment to match the >&2
77 | echo location of your Java installation. >&2
78 | echo.
79 | goto error
80 |
81 | @REM ==== END VALIDATION ====
82 |
83 | :init
84 |
85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn".
86 | @REM Fallback to current working directory if not found.
87 |
88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR%
89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir
90 |
91 | set EXEC_DIR=%CD%
92 | set WDIR=%EXEC_DIR%
93 | :findBaseDir
94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound
95 | cd ..
96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound
97 | set WDIR=%CD%
98 | goto findBaseDir
99 |
100 | :baseDirFound
101 | set MAVEN_PROJECTBASEDIR=%WDIR%
102 | cd "%EXEC_DIR%"
103 | goto endDetectBaseDir
104 |
105 | :baseDirNotFound
106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR%
107 | cd "%EXEC_DIR%"
108 |
109 | :endDetectBaseDir
110 |
111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig
112 |
113 | @setlocal EnableExtensions EnableDelayedExpansion
114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a
115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS%
116 |
117 | :endReadAdditionalConfig
118 |
119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe"
120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar"
121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
122 |
123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar"
124 |
125 | FOR /F "usebackq tokens=1,2 delims==" %%A IN ("%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties") DO (
126 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B
127 | )
128 |
129 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
130 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data.
131 | if exist %WRAPPER_JAR% (
132 | if "%MVNW_VERBOSE%" == "true" (
133 | echo Found %WRAPPER_JAR%
134 | )
135 | ) else (
136 | if not "%MVNW_REPOURL%" == "" (
137 | SET DOWNLOAD_URL="%MVNW_REPOURL%/org/apache/maven/wrapper/maven-wrapper/3.1.0/maven-wrapper-3.1.0.jar"
138 | )
139 | if "%MVNW_VERBOSE%" == "true" (
140 | echo Couldn't find %WRAPPER_JAR%, downloading it ...
141 | echo Downloading from: %DOWNLOAD_URL%
142 | )
143 |
144 | powershell -Command "&{"^
145 | "$webclient = new-object System.Net.WebClient;"^
146 | "if (-not ([string]::IsNullOrEmpty('%MVNW_USERNAME%') -and [string]::IsNullOrEmpty('%MVNW_PASSWORD%'))) {"^
147 | "$webclient.Credentials = new-object System.Net.NetworkCredential('%MVNW_USERNAME%', '%MVNW_PASSWORD%');"^
148 | "}"^
149 | "[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12; $webclient.DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')"^
150 | "}"
151 | if "%MVNW_VERBOSE%" == "true" (
152 | echo Finished downloading %WRAPPER_JAR%
153 | )
154 | )
155 | @REM End of extension
156 |
157 | @REM Provide a "standardized" way to retrieve the CLI args that will
158 | @REM work with both Windows and non-Windows executions.
159 | set MAVEN_CMD_LINE_ARGS=%*
160 |
161 | %MAVEN_JAVA_EXE% ^
162 | %JVM_CONFIG_MAVEN_PROPS% ^
163 | %MAVEN_OPTS% ^
164 | %MAVEN_DEBUG_OPTS% ^
165 | -classpath %WRAPPER_JAR% ^
166 | "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" ^
167 | %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %*
168 | if ERRORLEVEL 1 goto error
169 | goto end
170 |
171 | :error
172 | set ERROR_CODE=1
173 |
174 | :end
175 | @endlocal & set ERROR_CODE=%ERROR_CODE%
176 |
177 | if not "%MAVEN_SKIP_RC%"=="" goto skipRcPost
178 | @REM check for post script, once with legacy .bat ending and once with .cmd ending
179 | if exist "%USERPROFILE%\mavenrc_post.bat" call "%USERPROFILE%\mavenrc_post.bat"
180 | if exist "%USERPROFILE%\mavenrc_post.cmd" call "%USERPROFILE%\mavenrc_post.cmd"
181 | :skipRcPost
182 |
183 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on'
184 | if "%MAVEN_BATCH_PAUSE%"=="on" pause
185 |
186 | if "%MAVEN_TERMINATE_CMD%"=="on" exit %ERROR_CODE%
187 |
188 | cmd /C exit /B %ERROR_CODE%
189 |
--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
1 |
2 |
4 | 4.0.0
5 |
6 | org.springframework.boot
7 | spring-boot-starter-parent
8 | 2.7.3
9 |
10 |
11 | com.example
12 | fullstackbook-jwt-springboot
13 | 0.0.1-SNAPSHOT
14 | fullstackbook-jwt-springboot
15 | Demo project for Spring Boot
16 |
17 | 17
18 |
19 |
20 |
21 | org.springframework.boot
22 | spring-boot-starter-data-jpa
23 |
24 |
25 | org.springframework.boot
26 | spring-boot-starter-security
27 |
28 |
29 | org.springframework.boot
30 | spring-boot-starter-web
31 |
32 |
33 | org.flywaydb
34 | flyway-core
35 |
36 |
37 |
38 | org.postgresql
39 | postgresql
40 | runtime
41 |
42 |
43 | org.projectlombok
44 | lombok
45 | true
46 |
47 |
48 | org.springframework.boot
49 | spring-boot-starter-test
50 | test
51 |
52 |
53 | org.springframework.security
54 | spring-security-test
55 | test
56 |
57 |
58 |
59 | io.jsonwebtoken
60 | jjwt
61 | 0.9.1
62 |
63 |
64 |
65 |
66 |
67 |
68 | org.springframework.boot
69 | spring-boot-maven-plugin
70 |
71 |
72 |
73 | org.projectlombok
74 | lombok
75 |
76 |
77 |
78 |
79 |
80 | org.apache.maven.plugins
81 | maven-compiler-plugin
82 |
83 | 16
84 | 16
85 |
86 |
87 |
88 |
89 |
90 |
91 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/FullstackbookJwtSpringbootApplication.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot;
2 |
3 | import org.springframework.boot.SpringApplication;
4 | import org.springframework.boot.autoconfigure.SpringBootApplication;
5 |
6 | @SpringBootApplication
7 | public class FullstackbookJwtSpringbootApplication {
8 |
9 | public static void main(String[] args) {
10 | SpringApplication.run(FullstackbookJwtSpringbootApplication.class, args);
11 | }
12 |
13 | }
14 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/config/CorsConfiguration.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.config;
2 |
3 | import org.springframework.context.annotation.Bean;
4 | import org.springframework.context.annotation.Configuration;
5 | import org.springframework.web.servlet.config.annotation.CorsRegistry;
6 | import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
7 |
8 | @Configuration
9 | public class CorsConfiguration {
10 | @Bean
11 | public WebMvcConfigurer corsConfigurer() {
12 | return new WebMvcConfigurer() {
13 | @Override
14 | public void addCorsMappings(CorsRegistry registry) {
15 | registry.addMapping("/**").allowedMethods("GET", "PUT", "POST", "DELETE").allowedOrigins("http://localhost:3000");
16 | }
17 | };
18 | }
19 | }
20 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/config/SecurityConfiguration.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.config;
2 |
3 | import com.example.fullstackbookjwtspringboot.filter.AuthTokenFilter;
4 | import com.example.fullstackbookjwtspringboot.service.AuthEntryPointJwt;
5 | import com.example.fullstackbookjwtspringboot.service.UserDetailsServiceImpl;
6 | import org.springframework.context.annotation.Bean;
7 | import org.springframework.context.annotation.Configuration;
8 | import org.springframework.context.annotation.Primary;
9 | import org.springframework.security.authentication.AuthenticationManager;
10 | import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
11 | import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
12 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
13 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
14 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
15 | import org.springframework.security.config.http.SessionCreationPolicy;
16 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
17 | import org.springframework.security.crypto.password.PasswordEncoder;
18 | import org.springframework.security.web.SecurityFilterChain;
19 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
20 |
21 | @Configuration
22 | @EnableWebSecurity
23 | @EnableGlobalMethodSecurity(prePostEnabled = true)
24 | public class SecurityConfiguration {
25 | private UserDetailsServiceImpl userDetailsService;
26 | private AuthEntryPointJwt authEntryPointJwt;
27 | private AuthTokenFilter authTokenFilter;
28 |
29 | public SecurityConfiguration(UserDetailsServiceImpl userDetailsService, AuthEntryPointJwt authEntryPointJwt, AuthTokenFilter authTokenFilter) {
30 | this.userDetailsService = userDetailsService;
31 | this.authEntryPointJwt = authEntryPointJwt;
32 | this.authTokenFilter = authTokenFilter;
33 | }
34 |
35 | @Bean
36 | public PasswordEncoder passwordEncoder() {
37 | return new BCryptPasswordEncoder();
38 | }
39 |
40 | @Bean
41 | public AuthenticationManager authenticationManager(AuthenticationConfiguration authenticationConfiguration) throws Exception {
42 | return authenticationConfiguration.getAuthenticationManager();
43 | }
44 |
45 | @Bean
46 | @Primary
47 | public AuthenticationManagerBuilder configureAuthenticationManagerBuilder(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception {
48 | authenticationManagerBuilder.userDetailsService(userDetailsService).passwordEncoder(passwordEncoder());
49 | return authenticationManagerBuilder;
50 | }
51 |
52 | @Bean
53 | public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
54 | http.cors().and().csrf().disable()
55 | .exceptionHandling().authenticationEntryPoint(authEntryPointJwt).and()
56 | .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
57 | .authorizeRequests().antMatchers("/api/auth/**").permitAll()
58 | .antMatchers("/api/test/**").permitAll()
59 | .anyRequest().authenticated();
60 | http.addFilterBefore(authTokenFilter, UsernamePasswordAuthenticationFilter.class);
61 | return http.build();
62 | }
63 | }
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/controller/AuthController.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.controller;
2 |
3 | import com.example.fullstackbookjwtspringboot.dto.JwtResponse;
4 | import com.example.fullstackbookjwtspringboot.dto.SignInRequest;
5 | import com.example.fullstackbookjwtspringboot.dto.SignUpRequest;
6 | import com.example.fullstackbookjwtspringboot.model.ERole;
7 | import com.example.fullstackbookjwtspringboot.model.Role;
8 | import com.example.fullstackbookjwtspringboot.model.User;
9 | import com.example.fullstackbookjwtspringboot.repository.RoleRepository;
10 | import com.example.fullstackbookjwtspringboot.repository.UserRepository;
11 | import com.example.fullstackbookjwtspringboot.service.UserDetailsImpl;
12 | import com.example.fullstackbookjwtspringboot.util.JwtUtil;
13 | import org.springframework.http.HttpStatus;
14 | import org.springframework.http.ResponseEntity;
15 | import org.springframework.security.authentication.AuthenticationManager;
16 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
17 | import org.springframework.security.core.Authentication;
18 | import org.springframework.security.core.context.SecurityContextHolder;
19 | import org.springframework.security.crypto.password.PasswordEncoder;
20 | import org.springframework.web.bind.annotation.*;
21 |
22 | import java.util.HashSet;
23 | import java.util.List;
24 | import java.util.Optional;
25 | import java.util.Set;
26 | import java.util.stream.Collectors;
27 |
28 | @RestController
29 | @RequestMapping("/api/auth")
30 | public class AuthController {
31 | private UserRepository userRepository;
32 | private RoleRepository roleRepository;
33 | private PasswordEncoder passwordEncoder;
34 | private AuthenticationManager authenticationManager;
35 | private JwtUtil jwtUtil;
36 |
37 | public AuthController(UserRepository userRepository,
38 | PasswordEncoder passwordEncoder,
39 | RoleRepository roleRepository,
40 | AuthenticationManager authenticationManager,
41 | JwtUtil jwtUtil) {
42 | this.userRepository = userRepository;
43 | this.roleRepository = roleRepository;
44 | this.passwordEncoder = passwordEncoder;
45 | this.authenticationManager = authenticationManager;
46 | this.jwtUtil = jwtUtil;
47 | }
48 |
49 | @PostMapping("/signin")
50 | public ResponseEntity signin(@RequestBody SignInRequest signInRequest) {
51 | Authentication authentication = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(signInRequest.getUsername(), signInRequest.getPassword()));
52 | SecurityContextHolder.getContext().setAuthentication(authentication);
53 | String jwt = jwtUtil.generateJwtToken(authentication);
54 | UserDetailsImpl userDetails = (UserDetailsImpl) authentication.getPrincipal();
55 | List roles = userDetails.getAuthorities().stream()
56 | .map(item -> item.getAuthority())
57 | .collect(Collectors.toList());
58 | JwtResponse res = new JwtResponse();
59 | res.setToken(jwt);
60 | res.setId(userDetails.getId());
61 | res.setUsername(userDetails.getUsername());
62 | res.setRoles(roles);
63 | return ResponseEntity.ok(res);
64 | }
65 |
66 | @PostMapping("/signup")
67 | public ResponseEntity signup(@RequestBody SignUpRequest signUpRequest) {
68 | if (userRepository.existsByUsername(signUpRequest.getUsername())) {
69 | return ResponseEntity.status(HttpStatus.BAD_REQUEST).body("username is already taken");
70 | }
71 | if (userRepository.existsByEmail(signUpRequest.getEmail())) {
72 | return ResponseEntity.status(HttpStatus.BAD_REQUEST).body("email is already taken");
73 | }
74 | String hashedPassword = passwordEncoder.encode(signUpRequest.getPassword());
75 | Set roles = new HashSet<>();
76 | Optional userRole = roleRepository.findByName(ERole.ROLE_USER);
77 | if (userRole.isEmpty()) {
78 | return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR).body("role not found");
79 | }
80 | roles.add(userRole.get());
81 | User user = new User();
82 | user.setUsername(signUpRequest.getUsername());
83 | user.setEmail(signUpRequest.getEmail());
84 | user.setPassword(hashedPassword);
85 | user.setRoles(roles);
86 | userRepository.save(user);
87 | return ResponseEntity.ok("User registered success");
88 | }
89 | }
90 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/controller/TestController.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.controller;
2 |
3 | import com.example.fullstackbookjwtspringboot.service.UserDetailsImpl;
4 | import com.fasterxml.jackson.databind.JsonNode;
5 | import com.fasterxml.jackson.databind.ObjectMapper;
6 | import lombok.extern.log4j.Log4j2;
7 | import org.apache.coyote.Response;
8 | import org.springframework.http.ResponseEntity;
9 | import org.springframework.security.access.prepost.PreAuthorize;
10 | import org.springframework.security.core.Authentication;
11 | import org.springframework.security.core.context.SecurityContext;
12 | import org.springframework.security.core.context.SecurityContextHolder;
13 | import org.springframework.web.bind.annotation.GetMapping;
14 | import org.springframework.web.bind.annotation.RequestMapping;
15 | import org.springframework.web.bind.annotation.RestController;
16 |
17 | @RestController
18 | @RequestMapping("/api/test")
19 | @Log4j2
20 | public class TestController {
21 | @GetMapping("/all")
22 | public String allAccess() {
23 | return "Public Content.";
24 | }
25 |
26 | @GetMapping("/user")
27 | @PreAuthorize("hasRole('USER') or hasRole('MODERATOR') or hasRole('ADMIN')")
28 | public String userAccess() {
29 | return "User Content.";
30 | }
31 |
32 | @GetMapping("/mod")
33 | @PreAuthorize("hasRole('MODERATOR')")
34 | public String moderatorAccess() {
35 | return "Moderator Board.";
36 | }
37 |
38 | @GetMapping("/admin")
39 | @PreAuthorize("hasRole('ADMIN')")
40 | public String adminAccess() {
41 | return "Admin Board.";
42 | }
43 |
44 | @GetMapping("/profile")
45 | @PreAuthorize("hasRole('USER') or hasRole('MODERATOR') or hasRole('ADMIN')")
46 | public UserDetailsImpl profile() {
47 | SecurityContext context = SecurityContextHolder.getContext();
48 | Authentication authentication = context.getAuthentication();
49 | UserDetailsImpl userDetails = (UserDetailsImpl) authentication.getPrincipal();
50 | log.info("username: {}", userDetails.getUsername());
51 | return userDetails;
52 | }
53 | }
54 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/dto/JwtResponse.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.dto;
2 |
3 | import lombok.Data;
4 | import lombok.NoArgsConstructor;
5 |
6 | import java.util.List;
7 |
8 | @Data
9 | @NoArgsConstructor
10 | public class JwtResponse {
11 | private String token;
12 | private String type = "Bearer";
13 | private Long id;
14 | private String username;
15 | private List roles;
16 | }
17 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/dto/SignInRequest.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.dto;
2 |
3 | import lombok.Data;
4 |
5 | @Data
6 | public class SignInRequest {
7 | private String username;
8 | private String password;
9 | }
10 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/dto/SignUpRequest.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.dto;
2 |
3 | import lombok.Data;
4 |
5 | @Data
6 | public class SignUpRequest {
7 | private String username;
8 | private String email;
9 | private String password;
10 | }
11 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/filter/AuthTokenFilter.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.filter;
2 |
3 | import com.example.fullstackbookjwtspringboot.service.UserDetailsServiceImpl;
4 | import com.example.fullstackbookjwtspringboot.util.JwtUtil;
5 | import lombok.extern.log4j.Log4j2;
6 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
7 | import org.springframework.security.core.context.SecurityContextHolder;
8 | import org.springframework.security.core.userdetails.UserDetails;
9 | import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
10 | import org.springframework.stereotype.Component;
11 | import org.springframework.util.StringUtils;
12 | import org.springframework.web.filter.OncePerRequestFilter;
13 |
14 | import javax.servlet.FilterChain;
15 | import javax.servlet.ServletException;
16 | import javax.servlet.http.HttpServletRequest;
17 | import javax.servlet.http.HttpServletResponse;
18 | import java.io.IOException;
19 |
20 | @Log4j2
21 | @Component
22 | public class AuthTokenFilter extends OncePerRequestFilter {
23 | private JwtUtil jwtUtil;
24 | private UserDetailsServiceImpl userDetailsService;
25 |
26 | public AuthTokenFilter(JwtUtil jwtUtil, UserDetailsServiceImpl userDetailsService) {
27 | this.jwtUtil = jwtUtil;
28 | this.userDetailsService = userDetailsService;
29 | }
30 |
31 | @Override
32 | protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
33 | try {
34 | String jwt = parseJwt(request);
35 | if (jwt != null && jwtUtil.validateJwtToken(jwt)) {
36 | String username = jwtUtil.getUserNameFromJwtToken(jwt);
37 | UserDetails userDetails = userDetailsService.loadUserByUsername(username);
38 | UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(userDetails, null,
39 | userDetails.getAuthorities());
40 | authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
41 | SecurityContextHolder.getContext().setAuthentication(authentication);
42 | }
43 | } catch (Exception e) {
44 | log.error("Cannot set user authentication: {}", e);
45 | }
46 | filterChain.doFilter(request, response);
47 | }
48 |
49 | private String parseJwt(HttpServletRequest request) {
50 | String headerAuth = request.getHeader("Authorization");
51 | if (StringUtils.hasText(headerAuth) && headerAuth.startsWith("Bearer ")) {
52 | return headerAuth.substring(7);
53 | }
54 | return null;
55 | }
56 | }
57 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/filter/TestFilter.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.filter;
2 |
3 | import org.springframework.stereotype.Component;
4 | import org.springframework.web.filter.OncePerRequestFilter;
5 |
6 | import javax.servlet.FilterChain;
7 | import javax.servlet.ServletException;
8 | import javax.servlet.http.HttpServletRequest;
9 | import javax.servlet.http.HttpServletResponse;
10 | import java.io.IOException;
11 |
12 | @Component
13 | public class TestFilter extends OncePerRequestFilter {
14 | @Override
15 | protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
16 | String tokenHeader = request.getHeader("Authorization");
17 | System.out.println("tokenHeader = " + tokenHeader);
18 | filterChain.doFilter(request, response);
19 | }
20 | }
21 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/model/ERole.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.model;
2 |
3 | public enum ERole {
4 | ROLE_USER,
5 | ROLE_ADMIN,
6 | ROLE_MODERATOR
7 | }
8 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/model/Role.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.model;
2 |
3 | import javax.persistence.*;
4 |
5 | @Entity
6 | @Table(name = "roles")
7 | public class Role {
8 | @Id
9 | @GeneratedValue(strategy = GenerationType.IDENTITY)
10 | private Long id;
11 |
12 | @Enumerated(EnumType.STRING)
13 | @Column
14 | private ERole name;
15 |
16 | public ERole getName() {
17 | return name;
18 | }
19 | }
20 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/model/User.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.model;
2 |
3 | import lombok.AllArgsConstructor;
4 | import lombok.Data;
5 | import lombok.NoArgsConstructor;
6 |
7 | import javax.persistence.*;
8 | import java.util.HashSet;
9 | import java.util.Set;
10 |
11 | @Entity
12 | @Table(name = "users")
13 | @Data
14 | @NoArgsConstructor
15 | public class User {
16 | @Id
17 | @GeneratedValue(strategy = GenerationType.IDENTITY)
18 | private Long id;
19 |
20 | @Column
21 | private String username;
22 |
23 | @Column
24 | private String email;
25 |
26 | @Column
27 | private String password;
28 |
29 | @ManyToMany(fetch = FetchType.EAGER)
30 | @JoinTable(name = "users_to_roles",
31 | joinColumns = @JoinColumn(name="user_id"),
32 | inverseJoinColumns = @JoinColumn(name="role_id"))
33 | private Set roles = new HashSet<>();
34 |
35 | public void setRoles(Set roles) {
36 | this.roles = roles;
37 | }
38 | }
39 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/repository/RoleRepository.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.repository;
2 |
3 | import com.example.fullstackbookjwtspringboot.model.ERole;
4 | import com.example.fullstackbookjwtspringboot.model.Role;
5 | import org.springframework.data.jpa.repository.JpaRepository;
6 |
7 | import java.util.Optional;
8 |
9 | public interface RoleRepository extends JpaRepository {
10 | Optional findByName(ERole name);
11 | }
12 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/repository/UserRepository.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.repository;
2 |
3 | import com.example.fullstackbookjwtspringboot.model.User;
4 | import org.springframework.data.jpa.repository.JpaRepository;
5 |
6 | import java.util.Optional;
7 |
8 | public interface UserRepository extends JpaRepository {
9 | Optional findByUsername(String username);
10 | Boolean existsByUsername(String username);
11 | Boolean existsByEmail(String email);
12 | }
13 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/service/AuthEntryPointJwt.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.service;
2 |
3 | import lombok.extern.log4j.Log4j2;
4 | import org.springframework.security.core.AuthenticationException;
5 | import org.springframework.security.web.AuthenticationEntryPoint;
6 | import org.springframework.stereotype.Component;
7 |
8 | import javax.servlet.ServletException;
9 | import javax.servlet.http.HttpServletRequest;
10 | import javax.servlet.http.HttpServletResponse;
11 | import java.io.IOException;
12 |
13 | @Log4j2
14 | @Component
15 | public class AuthEntryPointJwt implements AuthenticationEntryPoint {
16 | @Override
17 | public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
18 | log.error("Unauthorized error: {}", authException.getMessage());
19 | response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Error: Unauthorized");
20 | }
21 | }
22 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/service/UserDetailsImpl.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.service;
2 |
3 | import com.example.fullstackbookjwtspringboot.model.User;
4 | import com.fasterxml.jackson.annotation.JsonIgnore;
5 | import org.springframework.security.core.GrantedAuthority;
6 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
7 | import org.springframework.security.core.userdetails.UserDetails;
8 |
9 | import java.util.Collection;
10 | import java.util.List;
11 | import java.util.stream.Collectors;
12 |
13 | public class UserDetailsImpl implements UserDetails {
14 |
15 | private Long id;
16 | private String username;
17 | private String email;
18 | @JsonIgnore
19 | private String password;
20 | private Collection authorities;
21 | public UserDetailsImpl(Long id, String username, String email, String password,
22 | Collection authorities) {
23 | this.id = id;
24 | this.username = username;
25 | this.email = email;
26 | this.password = password;
27 | this.authorities = authorities;
28 | }
29 | public static UserDetailsImpl build(User user) {
30 | List authorities = user.getRoles().stream()
31 | .map(role -> new SimpleGrantedAuthority(role.getName().name()))
32 | .collect(Collectors.toList());
33 | return new UserDetailsImpl(
34 | user.getId(),
35 | user.getUsername(),
36 | user.getEmail(),
37 | user.getPassword(),
38 | authorities);
39 | }
40 |
41 | @Override
42 | public Collection getAuthorities() {
43 | return authorities;
44 | }
45 |
46 | @Override
47 | public String getPassword() {
48 | return password;
49 | }
50 |
51 | @Override
52 | public String getUsername() {
53 | return username;
54 | }
55 |
56 | @Override
57 | public boolean isAccountNonExpired() {
58 | return true;
59 | }
60 |
61 | @Override
62 | public boolean isAccountNonLocked() {
63 | return true;
64 | }
65 |
66 | @Override
67 | public boolean isCredentialsNonExpired() {
68 | return true;
69 | }
70 |
71 | @Override
72 | public boolean isEnabled() {
73 | return true;
74 | }
75 |
76 | public Long getId() {
77 | return id;
78 | }
79 | }
80 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/service/UserDetailsServiceImpl.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.service;
2 |
3 | import com.example.fullstackbookjwtspringboot.model.User;
4 | import com.example.fullstackbookjwtspringboot.repository.UserRepository;
5 | import org.springframework.security.core.userdetails.UserDetails;
6 | import org.springframework.security.core.userdetails.UserDetailsService;
7 | import org.springframework.security.core.userdetails.UsernameNotFoundException;
8 | import org.springframework.stereotype.Service;
9 |
10 | @Service
11 | public class UserDetailsServiceImpl implements UserDetailsService {
12 | private UserRepository userRepository;
13 |
14 | public UserDetailsServiceImpl(UserRepository userRepository) {
15 | this.userRepository = userRepository;
16 | }
17 |
18 | @Override
19 | public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
20 | User user = userRepository.findByUsername(username).orElseThrow(() -> new UsernameNotFoundException("User not found with username" + username));
21 | return UserDetailsImpl.build(user);
22 | }
23 | }
24 |
--------------------------------------------------------------------------------
/src/main/java/com/example/fullstackbookjwtspringboot/util/JwtUtil.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot.util;
2 |
3 | import com.example.fullstackbookjwtspringboot.service.UserDetailsImpl;
4 | import io.jsonwebtoken.*;
5 | import lombok.extern.log4j.Log4j2;
6 | import org.springframework.beans.factory.annotation.Value;
7 | import org.springframework.security.core.Authentication;
8 | import org.springframework.stereotype.Component;
9 |
10 | import java.util.Date;
11 |
12 | @Component
13 | @Log4j2
14 | public class JwtUtil {
15 | @Value("${fullstackbook.app.jwtSecret}")
16 | private String jwtSecret;
17 |
18 | @Value("${fullstackbook.app.jwtExpirationMs}")
19 | private int jwtExpirationMs;
20 |
21 | public String generateJwtToken(Authentication authentication) {
22 | UserDetailsImpl userPrincipal = (UserDetailsImpl) authentication.getPrincipal();
23 | return Jwts.builder().setSubject((userPrincipal.getUsername())).setIssuedAt(new Date())
24 | .setExpiration(new Date((new Date()).getTime() + jwtExpirationMs)).signWith(SignatureAlgorithm.HS512, jwtSecret)
25 | .compact();
26 | }
27 |
28 | public String getUserNameFromJwtToken(String token) {
29 | return Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(token).getBody().getSubject();
30 | }
31 |
32 | public boolean validateJwtToken(String authToken) {
33 | try {
34 | Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(authToken);
35 | return true;
36 | } catch (SignatureException e) {
37 | log.error("Invalid JWT signature: {}", e.getMessage());
38 | } catch (MalformedJwtException e) {
39 | log.error("Invalid JWT token: {}", e.getMessage());
40 | } catch (ExpiredJwtException e) {
41 | log.error("JWT token is expired: {}", e.getMessage());
42 | } catch (UnsupportedJwtException e) {
43 | log.error("JWT token is unsupported: {}", e.getMessage());
44 | } catch (IllegalArgumentException e) {
45 | log.error("JWT claims string is empty: {}", e.getMessage());
46 | }
47 | return false;
48 | }
49 | }
50 |
--------------------------------------------------------------------------------
/src/main/resources/application.properties:
--------------------------------------------------------------------------------
1 |
2 | spring.datasource.url=jdbc:postgresql://localhost:5432/fullstackbook-jwt-springboot
3 | spring.datasource.username=postgres
4 | spring.datasource.password=
5 | #spring.security.user.name=foo
6 | #spring.security.user.password=bar
7 | fullstackbook.app.jwtSecret=mysecret
8 | fullstackbook.app.jwtExpirationMs=86400000
--------------------------------------------------------------------------------
/src/main/resources/db/migration/V1__create_roles_table.sql:
--------------------------------------------------------------------------------
1 | create table roles (
2 | id serial primary key,
3 | name text not null unique
4 | );
5 |
--------------------------------------------------------------------------------
/src/main/resources/db/migration/V2__create_users_table.sql:
--------------------------------------------------------------------------------
1 | create table users (
2 | id serial primary key,
3 | username text not null,
4 | email text not null,
5 | password text
6 | );
7 |
--------------------------------------------------------------------------------
/src/main/resources/db/migration/V3__create_users_to_roles_table.sql:
--------------------------------------------------------------------------------
1 | create table users_to_roles (
2 | user_id int references users (id),
3 | role_id int references roles (id)
4 | );
--------------------------------------------------------------------------------
/src/main/resources/db/migration/V4__insert_roles.sql:
--------------------------------------------------------------------------------
1 | insert into roles (name) values ('ROLE_USER');
2 | insert into roles (name) values ('ROLE_MODERATOR');
3 | insert into roles (name) values ('ROLE_ADMIN');
--------------------------------------------------------------------------------
/src/test/java/com/example/fullstackbookjwtspringboot/FullstackbookJwtSpringbootApplicationTests.java:
--------------------------------------------------------------------------------
1 | package com.example.fullstackbookjwtspringboot;
2 |
3 | import io.jsonwebtoken.*;
4 | import lombok.extern.log4j.Log4j2;
5 | import org.junit.jupiter.api.Test;
6 | import org.springframework.boot.test.context.SpringBootTest;
7 | import org.springframework.security.authentication.TestingAuthenticationToken;
8 | import org.springframework.security.core.Authentication;
9 | import org.springframework.security.core.GrantedAuthority;
10 | import org.springframework.security.core.context.SecurityContext;
11 | import org.springframework.security.core.context.SecurityContextHolder;
12 |
13 | import java.util.Collection;
14 | import java.util.Date;
15 |
16 | @SpringBootTest
17 | @Log4j2
18 | class FullstackbookJwtSpringbootApplicationTests {
19 |
20 | @Test
21 | void contextLoads() {
22 | }
23 |
24 | @Test
25 | void test() {
26 | SecurityContext context = SecurityContextHolder.createEmptyContext();
27 | Authentication authentication = new TestingAuthenticationToken("username", "password", "ROLE_USER");
28 | context.setAuthentication(authentication);
29 | SecurityContextHolder.setContext(context);
30 |
31 | SecurityContext context2 = SecurityContextHolder.getContext();
32 | Authentication authentication2 = context2.getAuthentication();
33 | String username = authentication2.getName();
34 | Object principal = authentication2.getPrincipal();
35 | Collection authorities = authentication2.getAuthorities();
36 | log.info("username = " + username);
37 | log.info("principal = " + principal);
38 | log.info("authorities = " + authorities);
39 |
40 | String jwtSecret = "foobar";
41 | String token = Jwts
42 | .builder()
43 | .setSubject("username")
44 | .setIssuedAt(new Date())
45 | .setExpiration(new Date((new Date()).getTime() + 1000))
46 | .signWith(SignatureAlgorithm.HS256, jwtSecret)
47 | .compact();
48 |
49 | log.info("token = " + token);
50 |
51 | try {
52 | Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(token);
53 | log.info("jwt token is valid");
54 | } catch (SignatureException e) {
55 | log.error("Invalid JWT signature: {}", e.getMessage());
56 | } catch (MalformedJwtException e) {
57 | log.error("Invalid JWT token: {}", e.getMessage());
58 | } catch (ExpiredJwtException e) {
59 | log.error("JWT token is expired: {}", e.getMessage());
60 | } catch (UnsupportedJwtException e) {
61 | log.error("JWT token is unsupported: {}", e.getMessage());
62 | } catch (IllegalArgumentException e) {
63 | log.error("JWT claims string is empty: {}", e.getMessage());
64 | }
65 | }
66 |
67 | }
68 |
--------------------------------------------------------------------------------