├── .gitignore
├── .mvn
└── wrapper
│ ├── MavenWrapperDownloader.java
│ ├── maven-wrapper.jar
│ └── maven-wrapper.properties
├── README.md
├── index.html
├── mvnw
├── mvnw.cmd
├── pom.xml
└── src
├── main
├── java
│ └── com
│ │ └── kunal52
│ │ └── springandfirebaseauth
│ │ ├── SpringandfirebaseauthApplication.java
│ │ ├── auth
│ │ ├── SecurityConfig.java
│ │ ├── SecurityFilter.java
│ │ ├── SecurityService.java
│ │ └── models
│ │ │ ├── CookieProperties.java
│ │ │ ├── Credentials.java
│ │ │ ├── FirebaseProperties.java
│ │ │ ├── SecurityProperties.java
│ │ │ └── User.java
│ │ ├── config
│ │ ├── FirebaseConfig.java
│ │ └── SpringConfig.java
│ │ ├── controller
│ │ ├── PrivateEndpoint.java
│ │ └── PublicEndpoints.java
│ │ └── utils
│ │ └── CookieUtils.java
└── resources
│ └── application.yml
└── test
└── java
└── com
└── kunal52
└── springandfirebaseauth
└── SpringandfirebaseauthApplicationTests.java
/.gitignore:
--------------------------------------------------------------------------------
1 | HELP.md
2 | target/
3 | !.mvn/wrapper/maven-wrapper.jar
4 | !**/src/main/**/target/
5 | !**/src/test/**/target/
6 |
7 | ### STS ###
8 | .apt_generated
9 | .classpath
10 | .factorypath
11 | .project
12 | .settings
13 | .springBeans
14 | .sts4-cache
15 |
16 | ### IntelliJ IDEA ###
17 | .idea
18 | *.iws
19 | *.iml
20 | *.ipr
21 |
22 | ### NetBeans ###
23 | /nbproject/private/
24 | /nbbuild/
25 | /dist/
26 | /nbdist/
27 | /.nb-gradle/
28 | build/
29 | !**/src/main/**/build/
30 | !**/src/test/**/build/
31 |
32 | ### VS Code ###
33 | .vscode/
34 |
--------------------------------------------------------------------------------
/.mvn/wrapper/MavenWrapperDownloader.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2007-present the original author or authors.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * https://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | import java.net.*;
18 | import java.io.*;
19 | import java.nio.channels.*;
20 | import java.util.Properties;
21 |
22 | public class MavenWrapperDownloader {
23 |
24 | private static final String WRAPPER_VERSION = "0.5.6";
25 | /**
26 | * Default URL to download the maven-wrapper.jar from, if no 'downloadUrl' is provided.
27 | */
28 | private static final String DEFAULT_DOWNLOAD_URL = "https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/"
29 | + WRAPPER_VERSION + "/maven-wrapper-" + WRAPPER_VERSION + ".jar";
30 |
31 | /**
32 | * Path to the maven-wrapper.properties file, which might contain a downloadUrl property to
33 | * use instead of the default one.
34 | */
35 | private static final String MAVEN_WRAPPER_PROPERTIES_PATH =
36 | ".mvn/wrapper/maven-wrapper.properties";
37 |
38 | /**
39 | * Path where the maven-wrapper.jar will be saved to.
40 | */
41 | private static final String MAVEN_WRAPPER_JAR_PATH =
42 | ".mvn/wrapper/maven-wrapper.jar";
43 |
44 | /**
45 | * Name of the property which should be used to override the default download url for the wrapper.
46 | */
47 | private static final String PROPERTY_NAME_WRAPPER_URL = "wrapperUrl";
48 |
49 | public static void main(String args[]) {
50 | System.out.println("- Downloader started");
51 | File baseDirectory = new File(args[0]);
52 | System.out.println("- Using base directory: " + baseDirectory.getAbsolutePath());
53 |
54 | // If the maven-wrapper.properties exists, read it and check if it contains a custom
55 | // wrapperUrl parameter.
56 | File mavenWrapperPropertyFile = new File(baseDirectory, MAVEN_WRAPPER_PROPERTIES_PATH);
57 | String url = DEFAULT_DOWNLOAD_URL;
58 | if (mavenWrapperPropertyFile.exists()) {
59 | FileInputStream mavenWrapperPropertyFileInputStream = null;
60 | try {
61 | mavenWrapperPropertyFileInputStream = new FileInputStream(mavenWrapperPropertyFile);
62 | Properties mavenWrapperProperties = new Properties();
63 | mavenWrapperProperties.load(mavenWrapperPropertyFileInputStream);
64 | url = mavenWrapperProperties.getProperty(PROPERTY_NAME_WRAPPER_URL, url);
65 | } catch (IOException e) {
66 | System.out.println("- ERROR loading '" + MAVEN_WRAPPER_PROPERTIES_PATH + "'");
67 | } finally {
68 | try {
69 | if (mavenWrapperPropertyFileInputStream != null) {
70 | mavenWrapperPropertyFileInputStream.close();
71 | }
72 | } catch (IOException e) {
73 | // Ignore ...
74 | }
75 | }
76 | }
77 | System.out.println("- Downloading from: " + url);
78 |
79 | File outputFile = new File(baseDirectory.getAbsolutePath(), MAVEN_WRAPPER_JAR_PATH);
80 | if (!outputFile.getParentFile().exists()) {
81 | if (!outputFile.getParentFile().mkdirs()) {
82 | System.out.println(
83 | "- ERROR creating output directory '" + outputFile.getParentFile().getAbsolutePath() + "'");
84 | }
85 | }
86 | System.out.println("- Downloading to: " + outputFile.getAbsolutePath());
87 | try {
88 | downloadFileFromURL(url, outputFile);
89 | System.out.println("Done");
90 | System.exit(0);
91 | } catch (Throwable e) {
92 | System.out.println("- Error downloading");
93 | e.printStackTrace();
94 | System.exit(1);
95 | }
96 | }
97 |
98 | private static void downloadFileFromURL(String urlString, File destination) throws Exception {
99 | if (System.getenv("MVNW_USERNAME") != null && System.getenv("MVNW_PASSWORD") != null) {
100 | String username = System.getenv("MVNW_USERNAME");
101 | char[] password = System.getenv("MVNW_PASSWORD").toCharArray();
102 | Authenticator.setDefault(new Authenticator() {
103 | @Override
104 | protected PasswordAuthentication getPasswordAuthentication() {
105 | return new PasswordAuthentication(username, password);
106 | }
107 | });
108 | }
109 | URL website = new URL(urlString);
110 | ReadableByteChannel rbc;
111 | rbc = Channels.newChannel(website.openStream());
112 | FileOutputStream fos = new FileOutputStream(destination);
113 | fos.getChannel().transferFrom(rbc, 0, Long.MAX_VALUE);
114 | fos.close();
115 | rbc.close();
116 | }
117 |
118 | }
119 |
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kunal52/springbootfirebaseauth/41b9ffe00dd1c76312ac4e867089eddc3db60bda/.mvn/wrapper/maven-wrapper.jar
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.properties:
--------------------------------------------------------------------------------
1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.6.3/apache-maven-3.6.3-bin.zip
2 | wrapperUrl=https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.5.6/maven-wrapper-0.5.6.jar
3 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # springbootfirebaseauth
2 | Spring Boot app with Firebase Auth
3 |
4 | [Medium Blog : Securing SpringBoot API using Firebase Authentication](https://www.google.com)
5 |
--------------------------------------------------------------------------------
/index.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 | Page Title
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
17 |
18 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
52 |
53 |
--------------------------------------------------------------------------------
/mvnw:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # ----------------------------------------------------------------------------
3 | # Licensed to the Apache Software Foundation (ASF) under one
4 | # or more contributor license agreements. See the NOTICE file
5 | # distributed with this work for additional information
6 | # regarding copyright ownership. The ASF licenses this file
7 | # to you under the Apache License, Version 2.0 (the
8 | # "License"); you may not use this file except in compliance
9 | # with the License. You may obtain a copy of the License at
10 | #
11 | # https://www.apache.org/licenses/LICENSE-2.0
12 | #
13 | # Unless required by applicable law or agreed to in writing,
14 | # software distributed under the License is distributed on an
15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16 | # KIND, either express or implied. See the License for the
17 | # specific language governing permissions and limitations
18 | # under the License.
19 | # ----------------------------------------------------------------------------
20 |
21 | # ----------------------------------------------------------------------------
22 | # Maven Start Up Batch script
23 | #
24 | # Required ENV vars:
25 | # ------------------
26 | # JAVA_HOME - location of a JDK home dir
27 | #
28 | # Optional ENV vars
29 | # -----------------
30 | # M2_HOME - location of maven2's installed home dir
31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven
32 | # e.g. to debug Maven itself, use
33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files
35 | # ----------------------------------------------------------------------------
36 |
37 | if [ -z "$MAVEN_SKIP_RC" ] ; then
38 |
39 | if [ -f /etc/mavenrc ] ; then
40 | . /etc/mavenrc
41 | fi
42 |
43 | if [ -f "$HOME/.mavenrc" ] ; then
44 | . "$HOME/.mavenrc"
45 | fi
46 |
47 | fi
48 |
49 | # OS specific support. $var _must_ be set to either true or false.
50 | cygwin=false;
51 | darwin=false;
52 | mingw=false
53 | case "`uname`" in
54 | CYGWIN*) cygwin=true ;;
55 | MINGW*) mingw=true;;
56 | Darwin*) darwin=true
57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home
58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html
59 | if [ -z "$JAVA_HOME" ]; then
60 | if [ -x "/usr/libexec/java_home" ]; then
61 | export JAVA_HOME="`/usr/libexec/java_home`"
62 | else
63 | export JAVA_HOME="/Library/Java/Home"
64 | fi
65 | fi
66 | ;;
67 | esac
68 |
69 | if [ -z "$JAVA_HOME" ] ; then
70 | if [ -r /etc/gentoo-release ] ; then
71 | JAVA_HOME=`java-config --jre-home`
72 | fi
73 | fi
74 |
75 | if [ -z "$M2_HOME" ] ; then
76 | ## resolve links - $0 may be a link to maven's home
77 | PRG="$0"
78 |
79 | # need this for relative symlinks
80 | while [ -h "$PRG" ] ; do
81 | ls=`ls -ld "$PRG"`
82 | link=`expr "$ls" : '.*-> \(.*\)$'`
83 | if expr "$link" : '/.*' > /dev/null; then
84 | PRG="$link"
85 | else
86 | PRG="`dirname "$PRG"`/$link"
87 | fi
88 | done
89 |
90 | saveddir=`pwd`
91 |
92 | M2_HOME=`dirname "$PRG"`/..
93 |
94 | # make it fully qualified
95 | M2_HOME=`cd "$M2_HOME" && pwd`
96 |
97 | cd "$saveddir"
98 | # echo Using m2 at $M2_HOME
99 | fi
100 |
101 | # For Cygwin, ensure paths are in UNIX format before anything is touched
102 | if $cygwin ; then
103 | [ -n "$M2_HOME" ] &&
104 | M2_HOME=`cygpath --unix "$M2_HOME"`
105 | [ -n "$JAVA_HOME" ] &&
106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
107 | [ -n "$CLASSPATH" ] &&
108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
109 | fi
110 |
111 | # For Mingw, ensure paths are in UNIX format before anything is touched
112 | if $mingw ; then
113 | [ -n "$M2_HOME" ] &&
114 | M2_HOME="`(cd "$M2_HOME"; pwd)`"
115 | [ -n "$JAVA_HOME" ] &&
116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
117 | fi
118 |
119 | if [ -z "$JAVA_HOME" ]; then
120 | javaExecutable="`which javac`"
121 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then
122 | # readlink(1) is not available as standard on Solaris 10.
123 | readLink=`which readlink`
124 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then
125 | if $darwin ; then
126 | javaHome="`dirname \"$javaExecutable\"`"
127 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac"
128 | else
129 | javaExecutable="`readlink -f \"$javaExecutable\"`"
130 | fi
131 | javaHome="`dirname \"$javaExecutable\"`"
132 | javaHome=`expr "$javaHome" : '\(.*\)/bin'`
133 | JAVA_HOME="$javaHome"
134 | export JAVA_HOME
135 | fi
136 | fi
137 | fi
138 |
139 | if [ -z "$JAVACMD" ] ; then
140 | if [ -n "$JAVA_HOME" ] ; then
141 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
142 | # IBM's JDK on AIX uses strange locations for the executables
143 | JAVACMD="$JAVA_HOME/jre/sh/java"
144 | else
145 | JAVACMD="$JAVA_HOME/bin/java"
146 | fi
147 | else
148 | JAVACMD="`which java`"
149 | fi
150 | fi
151 |
152 | if [ ! -x "$JAVACMD" ] ; then
153 | echo "Error: JAVA_HOME is not defined correctly." >&2
154 | echo " We cannot execute $JAVACMD" >&2
155 | exit 1
156 | fi
157 |
158 | if [ -z "$JAVA_HOME" ] ; then
159 | echo "Warning: JAVA_HOME environment variable is not set."
160 | fi
161 |
162 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher
163 |
164 | # traverses directory structure from process work directory to filesystem root
165 | # first directory with .mvn subdirectory is considered project base directory
166 | find_maven_basedir() {
167 |
168 | if [ -z "$1" ]
169 | then
170 | echo "Path not specified to find_maven_basedir"
171 | return 1
172 | fi
173 |
174 | basedir="$1"
175 | wdir="$1"
176 | while [ "$wdir" != '/' ] ; do
177 | if [ -d "$wdir"/.mvn ] ; then
178 | basedir=$wdir
179 | break
180 | fi
181 | # workaround for JBEAP-8937 (on Solaris 10/Sparc)
182 | if [ -d "${wdir}" ]; then
183 | wdir=`cd "$wdir/.."; pwd`
184 | fi
185 | # end of workaround
186 | done
187 | echo "${basedir}"
188 | }
189 |
190 | # concatenates all lines of a file
191 | concat_lines() {
192 | if [ -f "$1" ]; then
193 | echo "$(tr -s '\n' ' ' < "$1")"
194 | fi
195 | }
196 |
197 | BASE_DIR=`find_maven_basedir "$(pwd)"`
198 | if [ -z "$BASE_DIR" ]; then
199 | exit 1;
200 | fi
201 |
202 | ##########################################################################################
203 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
204 | # This allows using the maven wrapper in projects that prohibit checking in binary data.
205 | ##########################################################################################
206 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then
207 | if [ "$MVNW_VERBOSE" = true ]; then
208 | echo "Found .mvn/wrapper/maven-wrapper.jar"
209 | fi
210 | else
211 | if [ "$MVNW_VERBOSE" = true ]; then
212 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..."
213 | fi
214 | if [ -n "$MVNW_REPOURL" ]; then
215 | jarUrl="$MVNW_REPOURL/io/takari/maven-wrapper/0.5.6/maven-wrapper-0.5.6.jar"
216 | else
217 | jarUrl="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.5.6/maven-wrapper-0.5.6.jar"
218 | fi
219 | while IFS="=" read key value; do
220 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;;
221 | esac
222 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties"
223 | if [ "$MVNW_VERBOSE" = true ]; then
224 | echo "Downloading from: $jarUrl"
225 | fi
226 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar"
227 | if $cygwin; then
228 | wrapperJarPath=`cygpath --path --windows "$wrapperJarPath"`
229 | fi
230 |
231 | if command -v wget > /dev/null; then
232 | if [ "$MVNW_VERBOSE" = true ]; then
233 | echo "Found wget ... using wget"
234 | fi
235 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then
236 | wget "$jarUrl" -O "$wrapperJarPath"
237 | else
238 | wget --http-user=$MVNW_USERNAME --http-password=$MVNW_PASSWORD "$jarUrl" -O "$wrapperJarPath"
239 | fi
240 | elif command -v curl > /dev/null; then
241 | if [ "$MVNW_VERBOSE" = true ]; then
242 | echo "Found curl ... using curl"
243 | fi
244 | if [ -z "$MVNW_USERNAME" ] || [ -z "$MVNW_PASSWORD" ]; then
245 | curl -o "$wrapperJarPath" "$jarUrl" -f
246 | else
247 | curl --user $MVNW_USERNAME:$MVNW_PASSWORD -o "$wrapperJarPath" "$jarUrl" -f
248 | fi
249 |
250 | else
251 | if [ "$MVNW_VERBOSE" = true ]; then
252 | echo "Falling back to using Java to download"
253 | fi
254 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java"
255 | # For Cygwin, switch paths to Windows format before running javac
256 | if $cygwin; then
257 | javaClass=`cygpath --path --windows "$javaClass"`
258 | fi
259 | if [ -e "$javaClass" ]; then
260 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
261 | if [ "$MVNW_VERBOSE" = true ]; then
262 | echo " - Compiling MavenWrapperDownloader.java ..."
263 | fi
264 | # Compiling the Java class
265 | ("$JAVA_HOME/bin/javac" "$javaClass")
266 | fi
267 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
268 | # Running the downloader
269 | if [ "$MVNW_VERBOSE" = true ]; then
270 | echo " - Running MavenWrapperDownloader.java ..."
271 | fi
272 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR")
273 | fi
274 | fi
275 | fi
276 | fi
277 | ##########################################################################################
278 | # End of extension
279 | ##########################################################################################
280 |
281 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"}
282 | if [ "$MVNW_VERBOSE" = true ]; then
283 | echo $MAVEN_PROJECTBASEDIR
284 | fi
285 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS"
286 |
287 | # For Cygwin, switch paths to Windows format before running java
288 | if $cygwin; then
289 | [ -n "$M2_HOME" ] &&
290 | M2_HOME=`cygpath --path --windows "$M2_HOME"`
291 | [ -n "$JAVA_HOME" ] &&
292 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"`
293 | [ -n "$CLASSPATH" ] &&
294 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
295 | [ -n "$MAVEN_PROJECTBASEDIR" ] &&
296 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"`
297 | fi
298 |
299 | # Provide a "standardized" way to retrieve the CLI args that will
300 | # work with both Windows and non-Windows executions.
301 | MAVEN_CMD_LINE_ARGS="$MAVEN_CONFIG $@"
302 | export MAVEN_CMD_LINE_ARGS
303 |
304 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
305 |
306 | exec "$JAVACMD" \
307 | $MAVEN_OPTS \
308 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \
309 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \
310 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@"
311 |
--------------------------------------------------------------------------------
/mvnw.cmd:
--------------------------------------------------------------------------------
1 | @REM ----------------------------------------------------------------------------
2 | @REM Licensed to the Apache Software Foundation (ASF) under one
3 | @REM or more contributor license agreements. See the NOTICE file
4 | @REM distributed with this work for additional information
5 | @REM regarding copyright ownership. The ASF licenses this file
6 | @REM to you under the Apache License, Version 2.0 (the
7 | @REM "License"); you may not use this file except in compliance
8 | @REM with the License. You may obtain a copy of the License at
9 | @REM
10 | @REM https://www.apache.org/licenses/LICENSE-2.0
11 | @REM
12 | @REM Unless required by applicable law or agreed to in writing,
13 | @REM software distributed under the License is distributed on an
14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | @REM KIND, either express or implied. See the License for the
16 | @REM specific language governing permissions and limitations
17 | @REM under the License.
18 | @REM ----------------------------------------------------------------------------
19 |
20 | @REM ----------------------------------------------------------------------------
21 | @REM Maven Start Up Batch script
22 | @REM
23 | @REM Required ENV vars:
24 | @REM JAVA_HOME - location of a JDK home dir
25 | @REM
26 | @REM Optional ENV vars
27 | @REM M2_HOME - location of maven2's installed home dir
28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands
29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a keystroke before ending
30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven
31 | @REM e.g. to debug Maven itself, use
32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files
34 | @REM ----------------------------------------------------------------------------
35 |
36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on'
37 | @echo off
38 | @REM set title of command window
39 | title %0
40 | @REM enable echoing by setting MAVEN_BATCH_ECHO to 'on'
41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO%
42 |
43 | @REM set %HOME% to equivalent of $HOME
44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%")
45 |
46 | @REM Execute a user defined script before this one
47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre
48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending
49 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat"
50 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd"
51 | :skipRcPre
52 |
53 | @setlocal
54 |
55 | set ERROR_CODE=0
56 |
57 | @REM To isolate internal variables from possible post scripts, we use another setlocal
58 | @setlocal
59 |
60 | @REM ==== START VALIDATION ====
61 | if not "%JAVA_HOME%" == "" goto OkJHome
62 |
63 | echo.
64 | echo Error: JAVA_HOME not found in your environment. >&2
65 | echo Please set the JAVA_HOME variable in your environment to match the >&2
66 | echo location of your Java installation. >&2
67 | echo.
68 | goto error
69 |
70 | :OkJHome
71 | if exist "%JAVA_HOME%\bin\java.exe" goto init
72 |
73 | echo.
74 | echo Error: JAVA_HOME is set to an invalid directory. >&2
75 | echo JAVA_HOME = "%JAVA_HOME%" >&2
76 | echo Please set the JAVA_HOME variable in your environment to match the >&2
77 | echo location of your Java installation. >&2
78 | echo.
79 | goto error
80 |
81 | @REM ==== END VALIDATION ====
82 |
83 | :init
84 |
85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn".
86 | @REM Fallback to current working directory if not found.
87 |
88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR%
89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir
90 |
91 | set EXEC_DIR=%CD%
92 | set WDIR=%EXEC_DIR%
93 | :findBaseDir
94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound
95 | cd ..
96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound
97 | set WDIR=%CD%
98 | goto findBaseDir
99 |
100 | :baseDirFound
101 | set MAVEN_PROJECTBASEDIR=%WDIR%
102 | cd "%EXEC_DIR%"
103 | goto endDetectBaseDir
104 |
105 | :baseDirNotFound
106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR%
107 | cd "%EXEC_DIR%"
108 |
109 | :endDetectBaseDir
110 |
111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig
112 |
113 | @setlocal EnableExtensions EnableDelayedExpansion
114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a
115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS%
116 |
117 | :endReadAdditionalConfig
118 |
119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe"
120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar"
121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
122 |
123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.5.6/maven-wrapper-0.5.6.jar"
124 |
125 | FOR /F "tokens=1,2 delims==" %%A IN ("%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties") DO (
126 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B
127 | )
128 |
129 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
130 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data.
131 | if exist %WRAPPER_JAR% (
132 | if "%MVNW_VERBOSE%" == "true" (
133 | echo Found %WRAPPER_JAR%
134 | )
135 | ) else (
136 | if not "%MVNW_REPOURL%" == "" (
137 | SET DOWNLOAD_URL="%MVNW_REPOURL%/io/takari/maven-wrapper/0.5.6/maven-wrapper-0.5.6.jar"
138 | )
139 | if "%MVNW_VERBOSE%" == "true" (
140 | echo Couldn't find %WRAPPER_JAR%, downloading it ...
141 | echo Downloading from: %DOWNLOAD_URL%
142 | )
143 |
144 | powershell -Command "&{"^
145 | "$webclient = new-object System.Net.WebClient;"^
146 | "if (-not ([string]::IsNullOrEmpty('%MVNW_USERNAME%') -and [string]::IsNullOrEmpty('%MVNW_PASSWORD%'))) {"^
147 | "$webclient.Credentials = new-object System.Net.NetworkCredential('%MVNW_USERNAME%', '%MVNW_PASSWORD%');"^
148 | "}"^
149 | "[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12; $webclient.DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')"^
150 | "}"
151 | if "%MVNW_VERBOSE%" == "true" (
152 | echo Finished downloading %WRAPPER_JAR%
153 | )
154 | )
155 | @REM End of extension
156 |
157 | @REM Provide a "standardized" way to retrieve the CLI args that will
158 | @REM work with both Windows and non-Windows executions.
159 | set MAVEN_CMD_LINE_ARGS=%*
160 |
161 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %*
162 | if ERRORLEVEL 1 goto error
163 | goto end
164 |
165 | :error
166 | set ERROR_CODE=1
167 |
168 | :end
169 | @endlocal & set ERROR_CODE=%ERROR_CODE%
170 |
171 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost
172 | @REM check for post script, once with legacy .bat ending and once with .cmd ending
173 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat"
174 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd"
175 | :skipRcPost
176 |
177 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on'
178 | if "%MAVEN_BATCH_PAUSE%" == "on" pause
179 |
180 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE%
181 |
182 | exit /B %ERROR_CODE%
183 |
--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
1 |
2 |
4 | 4.0.0
5 |
6 | org.springframework.boot
7 | spring-boot-starter-parent
8 | 2.3.3.RELEASE
9 |
10 |
11 | com.kunal52
12 | springandfirebaseauth
13 | 0.0.1-SNAPSHOT
14 | springandfirebaseauth
15 | Spring Boot with Firebase Auth
16 |
17 |
18 | 11
19 |
20 |
21 |
22 |
23 | org.springframework.boot
24 | spring-boot-starter-security
25 |
26 |
27 | org.springframework.boot
28 | spring-boot-starter-web
29 |
30 |
31 |
32 | org.springframework.boot
33 | spring-boot-starter-data-jpa
34 |
35 |
36 |
37 | org.springframework.boot
38 | spring-boot-starter-validation
39 |
40 |
41 |
42 | org.springframework.boot
43 | spring-boot-configuration-processor
44 | true
45 |
46 |
47 |
48 | mysql
49 | mysql-connector-java
50 |
51 |
52 |
53 | com.fasterxml.jackson.core
54 | jackson-databind
55 |
56 |
57 |
58 |
59 | com.h2database
60 | h2
61 |
62 |
63 |
64 | com.google.firebase
65 | firebase-admin
66 | 6.13.0
67 |
68 |
69 |
70 | org.springframework.boot
71 | spring-boot-devtools
72 | runtime
73 | true
74 |
75 |
76 | org.projectlombok
77 | lombok
78 | true
79 |
80 |
81 | org.springframework.boot
82 | spring-boot-starter-test
83 | test
84 |
85 |
86 | org.junit.vintage
87 | junit-vintage-engine
88 |
89 |
90 |
91 |
92 | jakarta.validation
93 | jakarta.validation-api
94 | 2.0.2
95 |
96 |
97 | junit
98 | junit
99 | test
100 |
101 |
102 | commons-lang
103 | commons-lang
104 | 2.5
105 |
106 |
107 |
108 |
109 |
110 |
111 |
112 | org.springframework.boot
113 | spring-boot-maven-plugin
114 |
115 |
116 |
117 |
118 |
119 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/SpringandfirebaseauthApplication.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth;
2 |
3 | import org.springframework.boot.SpringApplication;
4 | import org.springframework.boot.autoconfigure.SpringBootApplication;
5 |
6 | @SpringBootApplication
7 | public class SpringandfirebaseauthApplication {
8 |
9 | public static void main(String[] args) {
10 | SpringApplication.run(SpringandfirebaseauthApplication.class, args);
11 | }
12 |
13 | }
14 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/SecurityConfig.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth;
2 |
3 | import com.fasterxml.jackson.databind.ObjectMapper;
4 | import com.kunal52.springandfirebaseauth.auth.models.SecurityProperties;
5 | import org.springframework.beans.factory.annotation.Autowired;
6 | import org.springframework.context.annotation.Bean;
7 | import org.springframework.context.annotation.Configuration;
8 | import org.springframework.http.HttpMethod;
9 | import org.springframework.http.HttpStatus;
10 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
11 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
12 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
13 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
14 | import org.springframework.security.config.http.SessionCreationPolicy;
15 | import org.springframework.security.web.AuthenticationEntryPoint;
16 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
17 | import org.springframework.web.cors.CorsConfiguration;
18 | import org.springframework.web.cors.CorsConfigurationSource;
19 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
20 |
21 | import java.sql.Timestamp;
22 | import java.util.Date;
23 | import java.util.HashMap;
24 | import java.util.Map;
25 |
26 |
27 | @Configuration
28 | @EnableWebSecurity
29 | @EnableGlobalMethodSecurity(securedEnabled = true, jsr250Enabled = true, prePostEnabled = true)
30 | public class SecurityConfig extends WebSecurityConfigurerAdapter {
31 |
32 | @Autowired
33 | ObjectMapper objectMapper;
34 |
35 | @Autowired
36 | SecurityProperties restSecProps;
37 |
38 | @Autowired
39 | public SecurityFilter tokenAuthenticationFilter;
40 |
41 | @Bean
42 | public AuthenticationEntryPoint restAuthenticationEntryPoint() {
43 | return (httpServletRequest, httpServletResponse, e) -> {
44 | Map errorObject = new HashMap<>();
45 | int errorCode = 401;
46 | errorObject.put("message", "Unauthorized access of protected resource, invalid credentials");
47 | errorObject.put("error", HttpStatus.UNAUTHORIZED);
48 | errorObject.put("code", errorCode);
49 | errorObject.put("timestamp", new Timestamp(new Date().getTime()));
50 | httpServletResponse.setContentType("application/json;charset=UTF-8");
51 | httpServletResponse.setStatus(errorCode);
52 | httpServletResponse.getWriter().write(objectMapper.writeValueAsString(errorObject));
53 | };
54 | }
55 |
56 | @Bean
57 | CorsConfigurationSource corsConfigurationSource() {
58 | CorsConfiguration configuration = new CorsConfiguration();
59 | configuration.setAllowedOrigins(restSecProps.getAllowedOrigins());
60 | configuration.setAllowedMethods(restSecProps.getAllowedMethods());
61 | configuration.setAllowedHeaders(restSecProps.getAllowedHeaders());
62 | configuration.setAllowCredentials(restSecProps.isAllowCredentials());
63 | configuration.setExposedHeaders(restSecProps.getExposedHeaders());
64 | UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
65 | source.registerCorsConfiguration("/**", configuration);
66 | return source;
67 | }
68 |
69 | @Override
70 | protected void configure(HttpSecurity http) throws Exception {
71 | http.cors().configurationSource(corsConfigurationSource()).and().csrf().disable().formLogin().disable()
72 | .httpBasic().disable().exceptionHandling().authenticationEntryPoint(restAuthenticationEntryPoint())
73 | .and().authorizeRequests()
74 | .antMatchers(restSecProps.getAllowedPublicApis().toArray(String[]::new)).permitAll()
75 | .antMatchers(HttpMethod.OPTIONS, "/**").permitAll().anyRequest().authenticated().and()
76 | .addFilterBefore(tokenAuthenticationFilter, UsernamePasswordAuthenticationFilter.class)
77 | .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS);
78 | }
79 | }
80 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/SecurityFilter.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth;
2 |
3 | import com.google.firebase.auth.FirebaseAuth;
4 | import com.google.firebase.auth.FirebaseAuthException;
5 | import com.google.firebase.auth.FirebaseToken;
6 |
7 | import com.kunal52.springandfirebaseauth.auth.models.Credentials;
8 | import com.kunal52.springandfirebaseauth.auth.models.SecurityProperties;
9 | import com.kunal52.springandfirebaseauth.auth.models.User;
10 | import com.kunal52.springandfirebaseauth.utils.CookieUtils;
11 | import lombok.extern.slf4j.Slf4j;
12 | import org.springframework.beans.factory.annotation.Autowired;
13 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
14 | import org.springframework.security.core.context.SecurityContextHolder;
15 | import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
16 | import org.springframework.stereotype.Component;
17 | import org.springframework.web.filter.OncePerRequestFilter;
18 |
19 | import javax.servlet.FilterChain;
20 | import javax.servlet.ServletException;
21 | import javax.servlet.http.Cookie;
22 | import javax.servlet.http.HttpServletRequest;
23 | import javax.servlet.http.HttpServletResponse;
24 | import java.io.IOException;
25 |
26 | @Component
27 | @Slf4j
28 | public class SecurityFilter extends OncePerRequestFilter {
29 |
30 | @Autowired
31 | SecurityService securityService;
32 |
33 | @Autowired
34 | SecurityProperties restSecProps;
35 |
36 | @Autowired
37 | CookieUtils cookieUtils;
38 |
39 | @Autowired
40 | SecurityProperties securityProps;
41 |
42 | @Override
43 | protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
44 | throws ServletException, IOException {
45 | verifyToken(request);
46 | filterChain.doFilter(request, response);
47 | }
48 |
49 | private void verifyToken(HttpServletRequest request) {
50 | String session = null;
51 | FirebaseToken decodedToken = null;
52 | Credentials.CredentialType type = null;
53 | boolean strictServerSessionEnabled = securityProps.getFirebaseProps().isEnableStrictServerSession();
54 | Cookie sessionCookie = cookieUtils.getCookie("session");
55 | String token = securityService.getBearerToken(request);
56 | logger.info(token);
57 | try {
58 | if (sessionCookie != null) {
59 | session = sessionCookie.getValue();
60 | decodedToken = FirebaseAuth.getInstance().verifySessionCookie(session,
61 | securityProps.getFirebaseProps().isEnableCheckSessionRevoked());
62 | type = Credentials.CredentialType.SESSION;
63 | } else if (!strictServerSessionEnabled) {
64 | if (token != null && !token.equalsIgnoreCase("undefined")) {
65 | decodedToken = FirebaseAuth.getInstance().verifyIdToken(token);
66 | type = Credentials.CredentialType.ID_TOKEN;
67 | }
68 | }
69 | } catch (FirebaseAuthException e) {
70 | e.printStackTrace();
71 | log.error("Firebase Exception:: ", e.getLocalizedMessage());
72 | }
73 | User user = firebaseTokenToUserDto(decodedToken);
74 | if (user != null) {
75 | UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(user,
76 | new Credentials(type, decodedToken, token, session), null);
77 | authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
78 | SecurityContextHolder.getContext().setAuthentication(authentication);
79 | }
80 | }
81 |
82 | private User firebaseTokenToUserDto(FirebaseToken decodedToken) {
83 | User user = null;
84 | if (decodedToken != null) {
85 | user = new User();
86 | user.setUid(decodedToken.getUid());
87 | user.setName(decodedToken.getName());
88 | user.setEmail(decodedToken.getEmail());
89 | user.setPicture(decodedToken.getPicture());
90 | user.setIssuer(decodedToken.getIssuer());
91 | user.setEmailVerified(decodedToken.isEmailVerified());
92 | }
93 | return user;
94 | }
95 |
96 | }
97 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/SecurityService.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth;
2 |
3 | import com.kunal52.springandfirebaseauth.auth.models.Credentials;
4 | import com.kunal52.springandfirebaseauth.auth.models.SecurityProperties;
5 | import com.kunal52.springandfirebaseauth.auth.models.User;
6 | import com.kunal52.springandfirebaseauth.utils.CookieUtils;
7 | import org.springframework.beans.factory.annotation.Autowired;
8 | import org.springframework.security.core.context.SecurityContext;
9 | import org.springframework.security.core.context.SecurityContextHolder;
10 | import org.springframework.stereotype.Service;
11 | import org.springframework.util.StringUtils;
12 |
13 | import javax.servlet.http.HttpServletRequest;
14 |
15 |
16 | @Service
17 | public class SecurityService {
18 |
19 | @Autowired
20 | HttpServletRequest httpServletRequest;
21 |
22 | @Autowired
23 | CookieUtils cookieUtils;
24 |
25 | @Autowired
26 | SecurityProperties securityProps;
27 |
28 | public User getUser() {
29 | User userPrincipal = null;
30 | SecurityContext securityContext = SecurityContextHolder.getContext();
31 | Object principal = securityContext.getAuthentication().getPrincipal();
32 | if (principal instanceof User) {
33 | userPrincipal = ((User) principal);
34 | }
35 | return userPrincipal;
36 | }
37 |
38 | public Credentials getCredentials() {
39 | SecurityContext securityContext = SecurityContextHolder.getContext();
40 | return (Credentials) securityContext.getAuthentication().getCredentials();
41 | }
42 |
43 | public boolean isPublic() {
44 | return securityProps.getAllowedPublicApis().contains(httpServletRequest.getRequestURI());
45 | }
46 |
47 | public String getBearerToken(HttpServletRequest request) {
48 | String bearerToken = null;
49 | String authorization = request.getHeader("Authorization");
50 | if (StringUtils.hasText(authorization) && authorization.startsWith("Bearer ")) {
51 | bearerToken = authorization.substring(7);
52 | }
53 | return bearerToken;
54 | }
55 | }
56 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/models/CookieProperties.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth.models;
2 |
3 | import lombok.Data;
4 |
5 | @Data
6 | public class CookieProperties {
7 | String domain;
8 | String path;
9 | boolean httpOnly;
10 | boolean secure;
11 | int maxAgeInMinutes;
12 | }
13 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/models/Credentials.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth.models;
2 |
3 | import com.google.firebase.auth.FirebaseToken;
4 | import lombok.AllArgsConstructor;
5 | import lombok.Data;
6 |
7 | @Data
8 | @AllArgsConstructor
9 | public class Credentials {
10 |
11 | public enum CredentialType {
12 | ID_TOKEN, SESSION
13 | }
14 |
15 | private CredentialType type;
16 | private FirebaseToken decodedToken;
17 | private String idToken;
18 | private String session;
19 |
20 | }
21 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/models/FirebaseProperties.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth.models;
2 |
3 | import lombok.Data;
4 |
5 | @Data
6 | public class FirebaseProperties {
7 |
8 | int sessionExpiryInDays;
9 | String databaseUrl;
10 | boolean enableStrictServerSession;
11 | boolean enableCheckSessionRevoked;
12 | boolean enableLogoutEverywhere;
13 |
14 | }
15 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/models/SecurityProperties.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth.models;
2 |
3 | import lombok.Data;
4 | import org.springframework.boot.context.properties.ConfigurationProperties;
5 | import org.springframework.stereotype.Component;
6 |
7 | import java.util.List;
8 |
9 | @Component
10 | @ConfigurationProperties("security")
11 | @Data
12 | public class SecurityProperties {
13 |
14 | CookieProperties cookieProps;
15 | FirebaseProperties firebaseProps;
16 | boolean allowCredentials;
17 | List allowedOrigins;
18 | List allowedHeaders;
19 | List exposedHeaders;
20 | List allowedMethods;
21 | List allowedPublicApis;
22 |
23 | }
24 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/auth/models/User.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.auth.models;
2 |
3 | import lombok.Data;
4 |
5 | import java.io.Serializable;
6 |
7 | @Data
8 | public class User implements Serializable {
9 |
10 | /**
11 | *
12 | */
13 | private static final long serialVersionUID = 4408418647685225829L;
14 | private String uid;
15 | private String name;
16 | private String email;
17 | private boolean isEmailVerified;
18 | private String issuer;
19 | private String picture;
20 |
21 | }
22 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/config/FirebaseConfig.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.config;
2 |
3 | import com.google.auth.oauth2.GoogleCredentials;
4 | import com.google.firebase.FirebaseApp;
5 | import com.google.firebase.FirebaseOptions;
6 | import com.kunal52.springandfirebaseauth.auth.models.SecurityProperties;
7 | import org.springframework.beans.factory.annotation.Autowired;
8 | import org.springframework.context.annotation.Bean;
9 | import org.springframework.context.annotation.Configuration;
10 | import org.springframework.context.annotation.Primary;
11 | import org.springframework.core.io.ClassPathResource;
12 |
13 | import java.io.IOException;
14 | import java.io.InputStream;
15 |
16 | @Configuration
17 | public class FirebaseConfig {
18 |
19 | @Autowired
20 | SecurityProperties secProps;
21 |
22 | @Primary
23 | @Bean
24 | public void firebaseInit() {
25 | InputStream inputStream = null;
26 | try {
27 | inputStream = new ClassPathResource("firebase_config.json").getInputStream();
28 | } catch (IOException e3) {
29 | e3.printStackTrace();
30 | }
31 | try {
32 |
33 | FirebaseOptions options = new FirebaseOptions.Builder()
34 | .setCredentials(GoogleCredentials.fromStream(inputStream))
35 | .build();
36 |
37 | if (FirebaseApp.getApps().isEmpty()) {
38 | FirebaseApp.initializeApp(options);
39 | }
40 | System.out.println("Firebase Initialize");
41 |
42 | } catch (IOException e) {
43 | e.printStackTrace();
44 | }
45 | }
46 |
47 | }
48 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/config/SpringConfig.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.config;
2 |
3 | import org.springframework.context.annotation.Bean;
4 | import org.springframework.context.annotation.Configuration;
5 | import org.springframework.http.converter.StringHttpMessageConverter;
6 | import org.springframework.http.converter.json.MappingJackson2HttpMessageConverter;
7 | import org.springframework.web.client.RestTemplate;
8 |
9 | @Configuration
10 | public class SpringConfig {
11 |
12 | @Bean
13 | RestTemplate restTemplate() {
14 | RestTemplate restTemplate = new RestTemplate();
15 | restTemplate.getMessageConverters().add(new MappingJackson2HttpMessageConverter());
16 | restTemplate.getMessageConverters().add(new StringHttpMessageConverter());
17 | return restTemplate;
18 | }
19 |
20 | }
21 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/controller/PrivateEndpoint.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.controller;
2 |
3 | import com.kunal52.springandfirebaseauth.auth.models.User;
4 | import org.springframework.http.ResponseEntity;
5 | import org.springframework.security.core.annotation.AuthenticationPrincipal;
6 | import org.springframework.web.bind.annotation.GetMapping;
7 | import org.springframework.web.bind.annotation.RequestMapping;
8 | import org.springframework.web.bind.annotation.RestController;
9 |
10 | @RestController
11 | @RequestMapping("private")
12 | public class PrivateEndpoint {
13 |
14 | @GetMapping("user-details")
15 | public ResponseEntity getUserInfo(@AuthenticationPrincipal User user) {
16 | return ResponseEntity.ok(user);
17 | }
18 |
19 | }
20 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/controller/PublicEndpoints.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.controller;
2 |
3 | import org.springframework.http.ResponseEntity;
4 | import org.springframework.web.bind.annotation.GetMapping;
5 | import org.springframework.web.bind.annotation.RequestMapping;
6 | import org.springframework.web.bind.annotation.RestController;
7 |
8 | @RestController
9 | @RequestMapping("public")
10 | public class PublicEndpoints {
11 |
12 | @GetMapping("test")
13 | ResponseEntity getPublic() {
14 | return ResponseEntity.ok("OK");
15 | }
16 | }
17 |
--------------------------------------------------------------------------------
/src/main/java/com/kunal52/springandfirebaseauth/utils/CookieUtils.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth.utils;
2 |
3 | import com.kunal52.springandfirebaseauth.auth.models.SecurityProperties;
4 | import org.springframework.beans.factory.annotation.Autowired;
5 | import org.springframework.stereotype.Service;
6 | import org.springframework.web.util.WebUtils;
7 |
8 | import javax.servlet.http.Cookie;
9 | import javax.servlet.http.HttpServletRequest;
10 | import javax.servlet.http.HttpServletResponse;
11 |
12 |
13 | @Service
14 | public class CookieUtils {
15 |
16 | @Autowired
17 | HttpServletRequest httpServletRequest;
18 |
19 | @Autowired
20 | HttpServletResponse httpServletResponse;
21 |
22 | @Autowired
23 | SecurityProperties restSecProps;
24 |
25 | public Cookie getCookie(String name) {
26 | return WebUtils.getCookie(httpServletRequest, name);
27 | }
28 |
29 | public void setCookie(String name, String value, int expiryInMinutes) {
30 | int expiresInSeconds = expiryInMinutes * 60 * 60;
31 | Cookie cookie = new Cookie(name, value);
32 | cookie.setSecure(restSecProps.getCookieProps().isSecure());
33 | cookie.setPath(restSecProps.getCookieProps().getPath());
34 | cookie.setDomain(restSecProps.getCookieProps().getDomain());
35 | cookie.setMaxAge(expiresInSeconds);
36 | httpServletResponse.addCookie(cookie);
37 | }
38 |
39 | public void setSecureCookie(String name, String value, int expiryInMinutes) {
40 | int expiresInSeconds = expiryInMinutes * 60 * 60;
41 | Cookie cookie = new Cookie(name, value);
42 | cookie.setHttpOnly(restSecProps.getCookieProps().isHttpOnly());
43 | cookie.setSecure(restSecProps.getCookieProps().isSecure());
44 | cookie.setPath(restSecProps.getCookieProps().getPath());
45 | cookie.setDomain(restSecProps.getCookieProps().getDomain());
46 | cookie.setMaxAge(expiresInSeconds);
47 | httpServletResponse.addCookie(cookie);
48 | }
49 |
50 | public void setSecureCookie(String name, String value) {
51 | int expiresInMinutes = restSecProps.getCookieProps().getMaxAgeInMinutes();
52 | setSecureCookie(name, value, expiresInMinutes);
53 | }
54 |
55 | public void deleteSecureCookie(String name) {
56 | int expiresInSeconds = 0;
57 | Cookie cookie = new Cookie(name, null);
58 | cookie.setHttpOnly(restSecProps.getCookieProps().isHttpOnly());
59 | cookie.setSecure(restSecProps.getCookieProps().isSecure());
60 | cookie.setPath(restSecProps.getCookieProps().getPath());
61 | cookie.setDomain(restSecProps.getCookieProps().getDomain());
62 | cookie.setMaxAge(expiresInSeconds);
63 | httpServletResponse.addCookie(cookie);
64 | }
65 |
66 | public void deleteCookie(String name) {
67 | int expiresInSeconds = 0;
68 | Cookie cookie = new Cookie(name, null);
69 | cookie.setPath(restSecProps.getCookieProps().getPath());
70 | cookie.setDomain(restSecProps.getCookieProps().getDomain());
71 | cookie.setMaxAge(expiresInSeconds);
72 | httpServletResponse.addCookie(cookie);
73 | }
74 |
75 | }
76 |
--------------------------------------------------------------------------------
/src/main/resources/application.yml:
--------------------------------------------------------------------------------
1 | spring:
2 | servlet:
3 | multipart:
4 | enabled: true
5 | max-file-size: 10MB
6 | max-request-size: 215MB
7 | application:
8 | name: visualizer
9 | datasource:
10 | url: jdbc:h2:mem:testdb
11 | username: sa
12 | password: password
13 | # alternative datasource: external mysql database example
14 | # url: jdbc:mysql://localhost:3306/test
15 | # username: root
16 | # password: root
17 |
18 | jpa:
19 | # remove the next line, if you use mysql:
20 | database-platform: org.hibernate.dialect.H2Dialect
21 | hibernate:
22 | ddl-auto: update
23 |
24 |
25 | security:
26 | firebase-props:
27 | database-url: ${FIREBASE_DATABASE}
28 | enable-strict-server-session: false
29 | enable-check-session-revoked: false
30 | enable-logout-everywhere: false
31 | session-expiry-in-days: 5
32 | cookie-props:
33 | max-age-in-minutes: 7200
34 | http-only: true
35 | secure: true
36 | domain: ${DOMAIN}
37 | path: /
38 | allow-credentials: true
39 | allowed-origins:
40 | - https://${DOMAIN}
41 | - http://localhost:3000
42 | allowed-methods:
43 | - GET
44 | - POST
45 | - PUT
46 | - PATCH
47 | - DELETE
48 | - OPTIONS
49 | allowed-headers:
50 | - Authorization
51 | - Origin
52 | - Content-Type
53 | - Accept
54 | - Accept-Encoding
55 | - Accept-Language
56 | - Access-Control-Allow-Origin
57 | - Access-Control-Allow-Headers
58 | - Access-Control-Request-Method
59 | - X-Requested-With
60 | - X-Auth-Token
61 | - X-Xsrf-Token
62 | - Cache-Control
63 | - Id-Token
64 | allowed-public-apis:
65 | - /favicon.ico
66 | - /session/login
67 | - /public/**
68 | exposed-headers:
69 | - X-Xsrf-Token
70 |
71 |
72 |
73 |
74 |
75 |
76 |
77 |
--------------------------------------------------------------------------------
/src/test/java/com/kunal52/springandfirebaseauth/SpringandfirebaseauthApplicationTests.java:
--------------------------------------------------------------------------------
1 | package com.kunal52.springandfirebaseauth;
2 |
3 | import org.junit.jupiter.api.Test;
4 | import org.springframework.boot.test.context.SpringBootTest;
5 |
6 | @SpringBootTest
7 | class SpringandfirebaseauthApplicationTests {
8 |
9 | @Test
10 | void contextLoads() {
11 | }
12 |
13 | }
14 |
--------------------------------------------------------------------------------