├── README.md
├── pom.xml
├── spring-boot-security-oauth2-example.iml
└── src
    └── main
        ├── java
            └── com
            │   └── devglan
            │       ├── Application.java
            │       ├── config
            │           ├── AuthorizationServerConfig.java
            │           ├── ResourceServerConfig.java
            │           └── SecurityConfig.java
            │       ├── controller
            │           └── UserController.java
            │       ├── dao
            │           └── UserDao.java
            │       ├── model
            │           └── User.java
            │       └── service
            │           ├── UserService.java
            │           └── impl
            │               └── UserServiceImpl.java
        └── resources
            └── application.properties


/README.md:
--------------------------------------------------------------------------------
 1 | # spring-boot-security-oauth2
 2 | This article aims to provide a working example of spring boot security oauth2. To ge started with this project just checkout the project
 3 | and set up the database configuration as per application.properties and run Application.java as a java application and you are done.
 4 | The complete explanation is provided on my blog - [spring security oauth2 example](http://www.devglan.com/spring-security/spring-boot-security-oauth2-example)
 5 | This project uses
 6 | 1. Spring Boot 1.5.8.RELEASE
 7 | 2. Java 8
 8 | 3. MySql
 9 | 
10 | Visit [spring security](http://www.devglan.com/tutorial/topics/spring-security) for other similar articles on spring security.
11 | 


--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <project xmlns="http://maven.apache.org/POM/4.0.0"
 3 |          xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 |          xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
 5 |     <modelVersion>4.0.0</modelVersion>
 6 | 
 7 |     <groupId>com.devglan</groupId>
 8 |     <artifactId>spring-boot-security-oauth2-example</artifactId>
 9 |     <version>1.0-SNAPSHOT</version>
10 | 
11 |     <parent>
12 |         <groupId>org.springframework.boot</groupId>
13 |         <artifactId>spring-boot-starter-parent</artifactId>
14 |         <version>1.5.8.RELEASE</version>
15 |     </parent>
16 | 
17 |     <dependencies>
18 |         <dependency>
19 |             <groupId>org.springframework.boot</groupId>
20 |             <artifactId>spring-boot-starter-web</artifactId>
21 |         </dependency>
22 |         <dependency>
23 |             <groupId>org.springframework.boot</groupId>
24 |             <artifactId>spring-boot-starter-data-jpa</artifactId>
25 |         </dependency>
26 |         <dependency>
27 |             <groupId>org.springframework.boot</groupId>
28 |             <artifactId>spring-boot-starter-security</artifactId>
29 |         </dependency>
30 |         <dependency>
31 |             <groupId>org.springframework.security.oauth</groupId>
32 |             <artifactId>spring-security-oauth2</artifactId>
33 |         </dependency>
34 |         <dependency>
35 |             <groupId>mysql</groupId>
36 |             <artifactId>mysql-connector-java</artifactId>
37 |         </dependency>
38 |         <dependency>
39 |             <groupId>commons-dbcp</groupId>
40 |             <artifactId>commons-dbcp</artifactId>
41 |         </dependency>
42 |     </dependencies>
43 | 
44 |     <properties>
45 |         <java.version>1.8</java.version>
46 |     </properties>
47 | 
48 | 
49 |     <build>
50 |         <plugins>
51 |             <plugin>
52 |                 <groupId>org.springframework.boot</groupId>
53 |                 <artifactId>spring-boot-maven-plugin</artifactId>
54 |             </plugin>
55 |         </plugins>
56 |     </build>
57 | </project>


--------------------------------------------------------------------------------
/spring-boot-security-oauth2-example.iml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <module org.jetbrains.idea.maven.project.MavenProjectsManager.isMavenModule="true" type="JAVA_MODULE" version="4">
 3 |   <component name="FacetManager">
 4 |     <facet type="Spring" name="Spring">
 5 |       <configuration />
 6 |     </facet>
 7 |   </component>
 8 |   <component name="NewModuleRootManager" LANGUAGE_LEVEL="JDK_1_8">
 9 |     <output url="file://$MODULE_DIR$/target/classes" />
10 |     <output-test url="file://$MODULE_DIR$/target/test-classes" />
11 |     <content url="file://$MODULE_DIR$">
12 |       <sourceFolder url="file://$MODULE_DIR$/src/main/java" isTestSource="false" />
13 |       <sourceFolder url="file://$MODULE_DIR$/src/main/resources" type="java-resource" />
14 |       <sourceFolder url="file://$MODULE_DIR$/src/test/java" isTestSource="true" />
15 |       <excludeFolder url="file://$MODULE_DIR$/target" />
16 |     </content>
17 |     <orderEntry type="inheritedJdk" />
18 |     <orderEntry type="sourceFolder" forTests="false" />
19 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-web:1.5.8.RELEASE" level="project" />
20 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter:1.5.8.RELEASE" level="project" />
21 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot:1.5.8.RELEASE" level="project" />
22 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-autoconfigure:1.5.8.RELEASE" level="project" />
23 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-logging:1.5.8.RELEASE" level="project" />
24 |     <orderEntry type="library" name="Maven: ch.qos.logback:logback-classic:1.1.11" level="project" />
25 |     <orderEntry type="library" name="Maven: ch.qos.logback:logback-core:1.1.11" level="project" />
26 |     <orderEntry type="library" name="Maven: org.slf4j:jul-to-slf4j:1.7.25" level="project" />
27 |     <orderEntry type="library" name="Maven: org.slf4j:log4j-over-slf4j:1.7.25" level="project" />
28 |     <orderEntry type="library" scope="RUNTIME" name="Maven: org.yaml:snakeyaml:1.17" level="project" />
29 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-tomcat:1.5.8.RELEASE" level="project" />
30 |     <orderEntry type="library" name="Maven: org.apache.tomcat.embed:tomcat-embed-core:8.5.23" level="project" />
31 |     <orderEntry type="library" name="Maven: org.apache.tomcat:tomcat-annotations-api:8.5.23" level="project" />
32 |     <orderEntry type="library" name="Maven: org.apache.tomcat.embed:tomcat-embed-el:8.5.23" level="project" />
33 |     <orderEntry type="library" name="Maven: org.apache.tomcat.embed:tomcat-embed-websocket:8.5.23" level="project" />
34 |     <orderEntry type="library" name="Maven: org.hibernate:hibernate-validator:5.3.5.Final" level="project" />
35 |     <orderEntry type="library" name="Maven: javax.validation:validation-api:1.1.0.Final" level="project" />
36 |     <orderEntry type="library" name="Maven: org.jboss.logging:jboss-logging:3.3.1.Final" level="project" />
37 |     <orderEntry type="library" name="Maven: com.fasterxml:classmate:1.3.4" level="project" />
38 |     <orderEntry type="library" name="Maven: com.fasterxml.jackson.core:jackson-databind:2.8.10" level="project" />
39 |     <orderEntry type="library" name="Maven: com.fasterxml.jackson.core:jackson-annotations:2.8.0" level="project" />
40 |     <orderEntry type="library" name="Maven: com.fasterxml.jackson.core:jackson-core:2.8.10" level="project" />
41 |     <orderEntry type="library" name="Maven: org.springframework:spring-web:4.3.12.RELEASE" level="project" />
42 |     <orderEntry type="library" name="Maven: org.springframework:spring-webmvc:4.3.12.RELEASE" level="project" />
43 |     <orderEntry type="library" name="Maven: org.springframework:spring-expression:4.3.12.RELEASE" level="project" />
44 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-data-jpa:1.5.8.RELEASE" level="project" />
45 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-aop:1.5.8.RELEASE" level="project" />
46 |     <orderEntry type="library" name="Maven: org.aspectj:aspectjweaver:1.8.11" level="project" />
47 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-jdbc:1.5.8.RELEASE" level="project" />
48 |     <orderEntry type="library" name="Maven: org.apache.tomcat:tomcat-jdbc:8.5.23" level="project" />
49 |     <orderEntry type="library" name="Maven: org.apache.tomcat:tomcat-juli:8.5.23" level="project" />
50 |     <orderEntry type="library" name="Maven: org.springframework:spring-jdbc:4.3.12.RELEASE" level="project" />
51 |     <orderEntry type="library" name="Maven: org.hibernate:hibernate-core:5.0.12.Final" level="project" />
52 |     <orderEntry type="library" name="Maven: org.hibernate.javax.persistence:hibernate-jpa-2.1-api:1.0.0.Final" level="project" />
53 |     <orderEntry type="library" name="Maven: org.javassist:javassist:3.21.0-GA" level="project" />
54 |     <orderEntry type="library" name="Maven: antlr:antlr:2.7.7" level="project" />
55 |     <orderEntry type="library" name="Maven: org.jboss:jandex:2.0.0.Final" level="project" />
56 |     <orderEntry type="library" name="Maven: dom4j:dom4j:1.6.1" level="project" />
57 |     <orderEntry type="library" name="Maven: org.hibernate.common:hibernate-commons-annotations:5.0.1.Final" level="project" />
58 |     <orderEntry type="library" name="Maven: org.hibernate:hibernate-entitymanager:5.0.12.Final" level="project" />
59 |     <orderEntry type="library" name="Maven: javax.transaction:javax.transaction-api:1.2" level="project" />
60 |     <orderEntry type="library" name="Maven: org.springframework.data:spring-data-jpa:1.11.8.RELEASE" level="project" />
61 |     <orderEntry type="library" name="Maven: org.springframework.data:spring-data-commons:1.13.8.RELEASE" level="project" />
62 |     <orderEntry type="library" name="Maven: org.springframework:spring-orm:4.3.12.RELEASE" level="project" />
63 |     <orderEntry type="library" name="Maven: org.springframework:spring-tx:4.3.12.RELEASE" level="project" />
64 |     <orderEntry type="library" name="Maven: org.slf4j:slf4j-api:1.7.25" level="project" />
65 |     <orderEntry type="library" name="Maven: org.slf4j:jcl-over-slf4j:1.7.25" level="project" />
66 |     <orderEntry type="library" name="Maven: org.springframework:spring-aspects:4.3.12.RELEASE" level="project" />
67 |     <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-security:1.5.8.RELEASE" level="project" />
68 |     <orderEntry type="library" name="Maven: org.springframework:spring-aop:4.3.12.RELEASE" level="project" />
69 |     <orderEntry type="library" name="Maven: org.springframework.security:spring-security-config:4.2.3.RELEASE" level="project" />
70 |     <orderEntry type="library" name="Maven: org.springframework.security:spring-security-web:4.2.3.RELEASE" level="project" />
71 |     <orderEntry type="library" name="Maven: org.springframework.security.oauth:spring-security-oauth2:2.0.14.RELEASE" level="project" />
72 |     <orderEntry type="library" name="Maven: org.springframework:spring-beans:4.3.12.RELEASE" level="project" />
73 |     <orderEntry type="library" name="Maven: org.springframework:spring-core:4.3.12.RELEASE" level="project" />
74 |     <orderEntry type="library" name="Maven: org.springframework:spring-context:4.3.12.RELEASE" level="project" />
75 |     <orderEntry type="library" name="Maven: org.springframework.security:spring-security-core:4.2.3.RELEASE" level="project" />
76 |     <orderEntry type="library" name="Maven: aopalliance:aopalliance:1.0" level="project" />
77 |     <orderEntry type="library" name="Maven: commons-codec:commons-codec:1.10" level="project" />
78 |     <orderEntry type="library" name="Maven: org.codehaus.jackson:jackson-mapper-asl:1.9.13" level="project" />
79 |     <orderEntry type="library" name="Maven: org.codehaus.jackson:jackson-core-asl:1.9.13" level="project" />
80 |     <orderEntry type="library" name="Maven: mysql:mysql-connector-java:5.1.44" level="project" />
81 |     <orderEntry type="library" name="Maven: commons-dbcp:commons-dbcp:1.4" level="project" />
82 |     <orderEntry type="library" name="Maven: commons-pool:commons-pool:1.6" level="project" />
83 |   </component>
84 | </module>


--------------------------------------------------------------------------------
/src/main/java/com/devglan/Application.java:
--------------------------------------------------------------------------------
 1 | package com.devglan;
 2 | 
 3 | import org.springframework.boot.SpringApplication;
 4 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 5 | 
 6 | @SpringBootApplication
 7 | public class Application {
 8 | 
 9 |     public static void main(String[] args) {
10 |         SpringApplication.run(Application.class, args);
11 |     }
12 | 
13 | }
14 | 


--------------------------------------------------------------------------------
/src/main/java/com/devglan/config/AuthorizationServerConfig.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.config;
 2 | 
 3 | import org.springframework.beans.factory.annotation.Autowired;
 4 | import org.springframework.context.annotation.Configuration;
 5 | import org.springframework.security.authentication.AuthenticationManager;
 6 | import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
 7 | import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
 8 | import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
 9 | import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerEndpointsConfigurer;
10 | import org.springframework.security.oauth2.provider.token.TokenStore;
11 | 
12 | @Configuration
13 | @EnableAuthorizationServer
14 | public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {
15 | 
16 | 	static final String CLIEN_ID = "devglan-client";
17 | 	static final String CLIENT_SECRET = "devglan-secret";
18 | 	static final String GRANT_TYPE_PASSWORD = "password";
19 | 	static final String AUTHORIZATION_CODE = "authorization_code";
20 |     static final String REFRESH_TOKEN = "refresh_token";
21 |     static final String IMPLICIT = "implicit";
22 | 	static final String SCOPE_READ = "read";
23 | 	static final String SCOPE_WRITE = "write";
24 |     static final String TRUST = "trust";
25 | 	static final int ACCESS_TOKEN_VALIDITY_SECONDS = 1*60*60;
26 |     static final int FREFRESH_TOKEN_VALIDITY_SECONDS = 6*60*60;
27 | 	
28 | 	@Autowired
29 | 	private TokenStore tokenStore;
30 | 
31 | 	@Autowired
32 | 	private AuthenticationManager authenticationManager;
33 | 
34 | 	@Override
35 | 	public void configure(ClientDetailsServiceConfigurer configurer) throws Exception {
36 | 
37 | 		configurer
38 | 				.inMemory()
39 | 				.withClient(CLIEN_ID)
40 | 				.secret(CLIENT_SECRET)
41 | 				.authorizedGrantTypes(GRANT_TYPE_PASSWORD, AUTHORIZATION_CODE, REFRESH_TOKEN, IMPLICIT )
42 | 				.scopes(SCOPE_READ, SCOPE_WRITE, TRUST)
43 | 				.accessTokenValiditySeconds(ACCESS_TOKEN_VALIDITY_SECONDS).
44 | 				refreshTokenValiditySeconds(FREFRESH_TOKEN_VALIDITY_SECONDS);
45 | 	}
46 | 
47 | 	@Override
48 | 	public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
49 | 		endpoints.tokenStore(tokenStore)
50 | 				.authenticationManager(authenticationManager);
51 | 	}
52 | }


--------------------------------------------------------------------------------
/src/main/java/com/devglan/config/ResourceServerConfig.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.config;
 2 | 
 3 | import org.springframework.context.annotation.Configuration;
 4 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 5 | import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
 6 | import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
 7 | import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
 8 | import org.springframework.security.oauth2.provider.error.OAuth2AccessDeniedHandler;
 9 | 
10 | @Configuration
11 | @EnableResourceServer
12 | public class ResourceServerConfig extends ResourceServerConfigurerAdapter {
13 | 
14 | 	private static final String RESOURCE_ID = "resource_id";
15 | 	
16 | 	@Override
17 | 	public void configure(ResourceServerSecurityConfigurer resources) {
18 | 		resources.resourceId(RESOURCE_ID).stateless(false);
19 | 	}
20 | 
21 | 	@Override
22 | 	public void configure(HttpSecurity http) throws Exception {
23 |         http.
24 |                 anonymous().disable()
25 |                 .authorizeRequests()
26 |                 .antMatchers("/users/**").access("hasRole('ADMIN')")
27 |                 .and().exceptionHandling().accessDeniedHandler(new OAuth2AccessDeniedHandler());
28 | 	}
29 | 
30 | }


--------------------------------------------------------------------------------
/src/main/java/com/devglan/config/SecurityConfig.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.config;
 2 | 
 3 | import org.springframework.beans.factory.annotation.Autowired;
 4 | import org.springframework.boot.web.servlet.FilterRegistrationBean;
 5 | import org.springframework.context.annotation.Bean;
 6 | import org.springframework.context.annotation.Configuration;
 7 | import org.springframework.security.authentication.AuthenticationManager;
 8 | import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 9 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
10 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
11 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
12 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
13 | import org.springframework.security.core.userdetails.UserDetailsService;
14 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
15 | import org.springframework.security.oauth2.provider.token.TokenStore;
16 | import org.springframework.security.oauth2.provider.token.store.InMemoryTokenStore;
17 | import org.springframework.web.cors.CorsConfiguration;
18 | import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
19 | import org.springframework.web.filter.CorsFilter;
20 | 
21 | import javax.annotation.Resource;
22 | 
23 | @Configuration
24 | @EnableWebSecurity
25 | @EnableGlobalMethodSecurity(prePostEnabled = true)
26 | public class SecurityConfig extends WebSecurityConfigurerAdapter {
27 | 
28 |     @Resource(name = "userService")
29 |     private UserDetailsService userDetailsService;
30 | 
31 |     @Override
32 |     @Bean
33 |     public AuthenticationManager authenticationManagerBean() throws Exception {
34 |         return super.authenticationManagerBean();
35 |     }
36 | 
37 |     @Autowired
38 |     public void globalUserDetails(AuthenticationManagerBuilder auth) throws Exception {
39 |         auth.userDetailsService(userDetailsService)
40 |                 .passwordEncoder(encoder());
41 |     }
42 | 
43 |     @Override
44 |     protected void configure(HttpSecurity http) throws Exception {
45 |         http
46 |                 .csrf().disable()
47 |                 .anonymous().disable()
48 |                 .authorizeRequests()
49 |                 .antMatchers("/api-docs/**").permitAll();
50 |     }
51 | 
52 |     @Bean
53 |     public TokenStore tokenStore() {
54 |         return new InMemoryTokenStore();
55 |     }
56 | 
57 |     @Bean
58 |     public BCryptPasswordEncoder encoder(){
59 |         return new BCryptPasswordEncoder();
60 |     }
61 | 
62 |     @Bean
63 |     public FilterRegistrationBean corsFilter() {
64 |         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
65 |         CorsConfiguration config = new CorsConfiguration();
66 |         config.setAllowCredentials(true);
67 |         config.addAllowedOrigin("*");
68 |         config.addAllowedHeader("*");
69 |         config.addAllowedMethod("*");
70 |         source.registerCorsConfiguration("/**", config);
71 |         FilterRegistrationBean bean = new FilterRegistrationBean(new CorsFilter(source));
72 |         bean.setOrder(0);
73 |         return bean;
74 |     }
75 | }
76 | 


--------------------------------------------------------------------------------
/src/main/java/com/devglan/controller/UserController.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.controller;
 2 | 
 3 | import com.devglan.model.User;
 4 | import com.devglan.service.UserService;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 7 | import org.springframework.web.bind.annotation.*;
 8 | 
 9 | import java.util.List;
10 | 
11 | @RestController
12 | @RequestMapping("/users")
13 | public class UserController {
14 | 
15 |     @Autowired
16 |     private UserService userService;
17 | 
18 |     @RequestMapping(value="/user", method = RequestMethod.GET)
19 |     public List<User> listUser(){
20 |         return userService.findAll();
21 |     }
22 | 
23 |     @RequestMapping(value = "/user", method = RequestMethod.POST)
24 |     public User create(@RequestBody User user){
25 |         return userService.save(user);
26 |     }
27 | 
28 |     @RequestMapping(value = "/user/{id}", method = RequestMethod.DELETE)
29 |     public String delete(@PathVariable(value = "id") Long id){
30 |         userService.delete(id);
31 |         return "success";
32 |     }
33 | 
34 | }
35 | 


--------------------------------------------------------------------------------
/src/main/java/com/devglan/dao/UserDao.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.dao;
 2 | 
 3 | import com.devglan.model.User;
 4 | import org.springframework.data.repository.CrudRepository;
 5 | import org.springframework.stereotype.Repository;
 6 | 
 7 | @Repository
 8 | public interface UserDao extends CrudRepository<User, Long> {
 9 |     User findByUsername(String username);
10 | }
11 | 


--------------------------------------------------------------------------------
/src/main/java/com/devglan/model/User.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.model;
 2 | 
 3 | import com.fasterxml.jackson.annotation.JsonIgnore;
 4 | 
 5 | import javax.persistence.*;
 6 | 
 7 | @Entity
 8 | public class User {
 9 | 
10 |     @Id
11 |     @GeneratedValue(strategy= GenerationType.AUTO)
12 |     private long id;
13 |     @Column
14 |     private String username;
15 |     @Column
16 |     @JsonIgnore
17 |     private String password;
18 |     @Column
19 |     private long salary;
20 |     @Column
21 |     private int age;
22 | 
23 |     public long getId() {
24 |         return id;
25 |     }
26 | 
27 |     public void setId(long id) {
28 |         this.id = id;
29 |     }
30 | 
31 |     public String getUsername() {
32 |         return username;
33 |     }
34 | 
35 |     public void setUsername(String username) {
36 |         this.username = username;
37 |     }
38 | 
39 |     public String getPassword() {
40 |         return password;
41 |     }
42 | 
43 |     public void setPassword(String password) {
44 |         this.password = password;
45 |     }
46 | 
47 |     public long getSalary() {
48 |         return salary;
49 |     }
50 | 
51 |     public void setSalary(long salary) {
52 |         this.salary = salary;
53 |     }
54 | 
55 |     public int getAge() {
56 |         return age;
57 |     }
58 | 
59 |     public void setAge(int age) {
60 |         this.age = age;
61 |     }
62 | }
63 | 


--------------------------------------------------------------------------------
/src/main/java/com/devglan/service/UserService.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.service;
 2 | 
 3 | import com.devglan.model.User;
 4 | 
 5 | import java.util.List;
 6 | 
 7 | public interface UserService {
 8 | 
 9 |     User save(User user);
10 |     List<User> findAll();
11 |     void delete(long id);
12 | }
13 | 


--------------------------------------------------------------------------------
/src/main/java/com/devglan/service/impl/UserServiceImpl.java:
--------------------------------------------------------------------------------
 1 | package com.devglan.service.impl;
 2 | 
 3 | import com.devglan.dao.UserDao;
 4 | import com.devglan.model.User;
 5 | import com.devglan.service.UserService;
 6 | import org.springframework.beans.factory.annotation.Autowired;
 7 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
 8 | import org.springframework.security.core.userdetails.UserDetails;
 9 | import org.springframework.security.core.userdetails.UserDetailsService;
10 | import org.springframework.security.core.userdetails.UsernameNotFoundException;
11 | import org.springframework.stereotype.Component;
12 | import org.springframework.stereotype.Service;
13 | 
14 | import java.util.ArrayList;
15 | import java.util.Arrays;
16 | import java.util.List;
17 | 
18 | 
19 | @Service(value = "userService")
20 | public class UserServiceImpl implements UserDetailsService, UserService {
21 | 	
22 | 	@Autowired
23 | 	private UserDao userDao;
24 | 
25 | 	public UserDetails loadUserByUsername(String userId) throws UsernameNotFoundException {
26 | 		User user = userDao.findByUsername(userId);
27 | 		if(user == null){
28 | 			throw new UsernameNotFoundException("Invalid username or password.");
29 | 		}
30 | 		return new org.springframework.security.core.userdetails.User(user.getUsername(), user.getPassword(), getAuthority());
31 | 	}
32 | 
33 | 	private List<SimpleGrantedAuthority> getAuthority() {
34 | 		return Arrays.asList(new SimpleGrantedAuthority("ROLE_ADMIN"));
35 | 	}
36 | 
37 | 	public List<User> findAll() {
38 | 		List<User> list = new ArrayList<>();
39 | 		userDao.findAll().iterator().forEachRemaining(list::add);
40 | 		return list;
41 | 	}
42 | 
43 | 	@Override
44 | 	public void delete(long id) {
45 | 		userDao.delete(id);
46 | 	}
47 | 
48 | 	@Override
49 |     public User save(User user) {
50 |         return userDao.save(user);
51 |     }
52 | }
53 | 


--------------------------------------------------------------------------------
/src/main/resources/application.properties:
--------------------------------------------------------------------------------
1 | spring.datasource.url=jdbc:mysql://localhost:3306/test
2 | spring.datasource.username=root
3 | spring.datasource.password=root
4 | spring.jpa.hibernate.ddl-auto=update
5 | spring.jpa.show-sql=true
6 | spring.user.datasource.driver-class-name=com.mysql.jdbc.Driver
7 | security.oauth2.resource.filter-order=3


--------------------------------------------------------------------------------