├── .gitignore
├── .mvn
└── wrapper
│ ├── MavenWrapperDownloader.java
│ ├── maven-wrapper.jar
│ └── maven-wrapper.properties
├── mvnw
├── mvnw.cmd
├── pom.xml
└── src
├── main
├── java
│ └── net
│ │ └── proselyte
│ │ └── jwtappdemo
│ │ ├── JwtAppDemoApplication.java
│ │ ├── config
│ │ └── SecurityConfig.java
│ │ ├── dto
│ │ ├── AdminUserDto.java
│ │ ├── AuthenticationRequestDto.java
│ │ └── UserDto.java
│ │ ├── model
│ │ ├── BaseEntity.java
│ │ ├── Role.java
│ │ ├── Status.java
│ │ └── User.java
│ │ ├── repository
│ │ ├── RoleRepository.java
│ │ └── UserRepository.java
│ │ ├── rest
│ │ ├── AdminRestControllerV1.java
│ │ ├── AuthenticationRestControllerV1.java
│ │ └── UserRestControllerV1.java
│ │ ├── security
│ │ ├── JwtUserDetailsService.java
│ │ └── jwt
│ │ │ ├── JwtAuthenticationException.java
│ │ │ ├── JwtConfigurer.java
│ │ │ ├── JwtTokenFilter.java
│ │ │ ├── JwtTokenProvider.java
│ │ │ ├── JwtUser.java
│ │ │ └── JwtUserFactory.java
│ │ └── service
│ │ ├── UserService.java
│ │ └── impl
│ │ └── UserServiceImpl.java
└── resources
│ ├── application.properties
│ └── liquibase
│ ├── db.changelog-1.0.xml
│ └── db.changelog-master.xml
└── test
└── java
└── net
└── proselyte
└── jwtappdemo
└── JwtAppDemoApplicationTests.java
/.gitignore:
--------------------------------------------------------------------------------
1 | HELP.md
2 | /target/
3 | !.mvn/wrapper/maven-wrapper.jar
4 |
5 | ### STS ###
6 | .apt_generated
7 | .classpath
8 | .factorypath
9 | .project
10 | .settings
11 | .springBeans
12 | .sts4-cache
13 |
14 | ### IntelliJ IDEA ###
15 | .idea
16 | *.iws
17 | *.iml
18 | *.ipr
19 |
20 | ### NetBeans ###
21 | /nbproject/private/
22 | /nbbuild/
23 | /dist/
24 | /nbdist/
25 | /.nb-gradle/
26 | /build/
27 |
28 | ### VS Code ###
29 | .vscode/
30 |
--------------------------------------------------------------------------------
/.mvn/wrapper/MavenWrapperDownloader.java:
--------------------------------------------------------------------------------
1 | /*
2 | Licensed to the Apache Software Foundation (ASF) under one
3 | or more contributor license agreements. See the NOTICE file
4 | distributed with this work for additional information
5 | regarding copyright ownership. The ASF licenses this file
6 | to you under the Apache License, Version 2.0 (the
7 | "License"); you may not use this file except in compliance
8 | with the License. You may obtain a copy of the License at
9 |
10 | https://www.apache.org/licenses/LICENSE-2.0
11 |
12 | Unless required by applicable law or agreed to in writing,
13 | software distributed under the License is distributed on an
14 | "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | KIND, either express or implied. See the License for the
16 | specific language governing permissions and limitations
17 | under the License.
18 | */
19 |
20 | import java.io.File;
21 | import java.io.FileInputStream;
22 | import java.io.FileOutputStream;
23 | import java.io.IOException;
24 | import java.net.URL;
25 | import java.nio.channels.Channels;
26 | import java.nio.channels.ReadableByteChannel;
27 | import java.util.Properties;
28 |
29 | public class MavenWrapperDownloader {
30 |
31 | /**
32 | * Default URL to download the maven-wrapper.jar from, if no 'downloadUrl' is provided.
33 | */
34 | private static final String DEFAULT_DOWNLOAD_URL =
35 | "https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar";
36 |
37 | /**
38 | * Path to the maven-wrapper.properties file, which might contain a downloadUrl property to
39 | * use instead of the default one.
40 | */
41 | private static final String MAVEN_WRAPPER_PROPERTIES_PATH =
42 | ".mvn/wrapper/maven-wrapper.properties";
43 |
44 | /**
45 | * Path where the maven-wrapper.jar will be saved to.
46 | */
47 | private static final String MAVEN_WRAPPER_JAR_PATH =
48 | ".mvn/wrapper/maven-wrapper.jar";
49 |
50 | /**
51 | * Name of the property which should be used to override the default download url for the wrapper.
52 | */
53 | private static final String PROPERTY_NAME_WRAPPER_URL = "wrapperUrl";
54 |
55 | public static void main(String args[]) {
56 | System.out.println("- Downloader started");
57 | File baseDirectory = new File(args[0]);
58 | System.out.println("- Using base directory: " + baseDirectory.getAbsolutePath());
59 |
60 | // If the maven-wrapper.properties exists, read it and check if it contains a custom
61 | // wrapperUrl parameter.
62 | File mavenWrapperPropertyFile = new File(baseDirectory, MAVEN_WRAPPER_PROPERTIES_PATH);
63 | String url = DEFAULT_DOWNLOAD_URL;
64 | if(mavenWrapperPropertyFile.exists()) {
65 | FileInputStream mavenWrapperPropertyFileInputStream = null;
66 | try {
67 | mavenWrapperPropertyFileInputStream = new FileInputStream(mavenWrapperPropertyFile);
68 | Properties mavenWrapperProperties = new Properties();
69 | mavenWrapperProperties.load(mavenWrapperPropertyFileInputStream);
70 | url = mavenWrapperProperties.getProperty(PROPERTY_NAME_WRAPPER_URL, url);
71 | } catch (IOException e) {
72 | System.out.println("- ERROR loading '" + MAVEN_WRAPPER_PROPERTIES_PATH + "'");
73 | } finally {
74 | try {
75 | if(mavenWrapperPropertyFileInputStream != null) {
76 | mavenWrapperPropertyFileInputStream.close();
77 | }
78 | } catch (IOException e) {
79 | // Ignore ...
80 | }
81 | }
82 | }
83 | System.out.println("- Downloading from: : " + url);
84 |
85 | File outputFile = new File(baseDirectory.getAbsolutePath(), MAVEN_WRAPPER_JAR_PATH);
86 | if(!outputFile.getParentFile().exists()) {
87 | if(!outputFile.getParentFile().mkdirs()) {
88 | System.out.println(
89 | "- ERROR creating output direcrory '" + outputFile.getParentFile().getAbsolutePath() + "'");
90 | }
91 | }
92 | System.out.println("- Downloading to: " + outputFile.getAbsolutePath());
93 | try {
94 | downloadFileFromURL(url, outputFile);
95 | System.out.println("Done");
96 | System.exit(0);
97 | } catch (Throwable e) {
98 | System.out.println("- Error downloading");
99 | e.printStackTrace();
100 | System.exit(1);
101 | }
102 | }
103 |
104 | private static void downloadFileFromURL(String urlString, File destination) throws Exception {
105 | URL website = new URL(urlString);
106 | ReadableByteChannel rbc;
107 | rbc = Channels.newChannel(website.openStream());
108 | FileOutputStream fos = new FileOutputStream(destination);
109 | fos.getChannel().transferFrom(rbc, 0, Long.MAX_VALUE);
110 | fos.close();
111 | rbc.close();
112 | }
113 |
114 | }
115 |
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/proselytear/jwtappdemo/b2d4fe54cb80f2ea2a5badbb1b4c4ed11ea58a91/.mvn/wrapper/maven-wrapper.jar
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.properties:
--------------------------------------------------------------------------------
1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.6.0/apache-maven-3.6.0-bin.zip
2 |
--------------------------------------------------------------------------------
/mvnw:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # ----------------------------------------------------------------------------
3 | # Licensed to the Apache Software Foundation (ASF) under one
4 | # or more contributor license agreements. See the NOTICE file
5 | # distributed with this work for additional information
6 | # regarding copyright ownership. The ASF licenses this file
7 | # to you under the Apache License, Version 2.0 (the
8 | # "License"); you may not use this file except in compliance
9 | # with the License. You may obtain a copy of the License at
10 | #
11 | # https://www.apache.org/licenses/LICENSE-2.0
12 | #
13 | # Unless required by applicable law or agreed to in writing,
14 | # software distributed under the License is distributed on an
15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16 | # KIND, either express or implied. See the License for the
17 | # specific language governing permissions and limitations
18 | # under the License.
19 | # ----------------------------------------------------------------------------
20 |
21 | # ----------------------------------------------------------------------------
22 | # Maven2 Start Up Batch script
23 | #
24 | # Required ENV vars:
25 | # ------------------
26 | # JAVA_HOME - location of a JDK home dir
27 | #
28 | # Optional ENV vars
29 | # -----------------
30 | # M2_HOME - location of maven2's installed home dir
31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven
32 | # e.g. to debug Maven itself, use
33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files
35 | # ----------------------------------------------------------------------------
36 |
37 | if [ -z "$MAVEN_SKIP_RC" ] ; then
38 |
39 | if [ -f /etc/mavenrc ] ; then
40 | . /etc/mavenrc
41 | fi
42 |
43 | if [ -f "$HOME/.mavenrc" ] ; then
44 | . "$HOME/.mavenrc"
45 | fi
46 |
47 | fi
48 |
49 | # OS specific support. $var _must_ be set to either true or false.
50 | cygwin=false;
51 | darwin=false;
52 | mingw=false
53 | case "`uname`" in
54 | CYGWIN*) cygwin=true ;;
55 | MINGW*) mingw=true;;
56 | Darwin*) darwin=true
57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home
58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html
59 | if [ -z "$JAVA_HOME" ]; then
60 | if [ -x "/usr/libexec/java_home" ]; then
61 | export JAVA_HOME="`/usr/libexec/java_home`"
62 | else
63 | export JAVA_HOME="/Library/Java/Home"
64 | fi
65 | fi
66 | ;;
67 | esac
68 |
69 | if [ -z "$JAVA_HOME" ] ; then
70 | if [ -r /etc/gentoo-release ] ; then
71 | JAVA_HOME=`java-config --jre-home`
72 | fi
73 | fi
74 |
75 | if [ -z "$M2_HOME" ] ; then
76 | ## resolve links - $0 may be a link to maven's home
77 | PRG="$0"
78 |
79 | # need this for relative symlinks
80 | while [ -h "$PRG" ] ; do
81 | ls=`ls -ld "$PRG"`
82 | link=`expr "$ls" : '.*-> \(.*\)$'`
83 | if expr "$link" : '/.*' > /dev/null; then
84 | PRG="$link"
85 | else
86 | PRG="`dirname "$PRG"`/$link"
87 | fi
88 | done
89 |
90 | saveddir=`pwd`
91 |
92 | M2_HOME=`dirname "$PRG"`/..
93 |
94 | # make it fully qualified
95 | M2_HOME=`cd "$M2_HOME" && pwd`
96 |
97 | cd "$saveddir"
98 | # echo Using m2 at $M2_HOME
99 | fi
100 |
101 | # For Cygwin, ensure paths are in UNIX format before anything is touched
102 | if $cygwin ; then
103 | [ -n "$M2_HOME" ] &&
104 | M2_HOME=`cygpath --unix "$M2_HOME"`
105 | [ -n "$JAVA_HOME" ] &&
106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
107 | [ -n "$CLASSPATH" ] &&
108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
109 | fi
110 |
111 | # For Mingw, ensure paths are in UNIX format before anything is touched
112 | if $mingw ; then
113 | [ -n "$M2_HOME" ] &&
114 | M2_HOME="`(cd "$M2_HOME"; pwd)`"
115 | [ -n "$JAVA_HOME" ] &&
116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
117 | # TODO classpath?
118 | fi
119 |
120 | if [ -z "$JAVA_HOME" ]; then
121 | javaExecutable="`which javac`"
122 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then
123 | # readlink(1) is not available as standard on Solaris 10.
124 | readLink=`which readlink`
125 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then
126 | if $darwin ; then
127 | javaHome="`dirname \"$javaExecutable\"`"
128 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac"
129 | else
130 | javaExecutable="`readlink -f \"$javaExecutable\"`"
131 | fi
132 | javaHome="`dirname \"$javaExecutable\"`"
133 | javaHome=`expr "$javaHome" : '\(.*\)/bin'`
134 | JAVA_HOME="$javaHome"
135 | export JAVA_HOME
136 | fi
137 | fi
138 | fi
139 |
140 | if [ -z "$JAVACMD" ] ; then
141 | if [ -n "$JAVA_HOME" ] ; then
142 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
143 | # IBM's JDK on AIX uses strange locations for the executables
144 | JAVACMD="$JAVA_HOME/jre/sh/java"
145 | else
146 | JAVACMD="$JAVA_HOME/bin/java"
147 | fi
148 | else
149 | JAVACMD="`which java`"
150 | fi
151 | fi
152 |
153 | if [ ! -x "$JAVACMD" ] ; then
154 | echo "Error: JAVA_HOME is not defined correctly." >&2
155 | echo " We cannot execute $JAVACMD" >&2
156 | exit 1
157 | fi
158 |
159 | if [ -z "$JAVA_HOME" ] ; then
160 | echo "Warning: JAVA_HOME environment variable is not set."
161 | fi
162 |
163 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher
164 |
165 | # traverses directory structure from process work directory to filesystem root
166 | # first directory with .mvn subdirectory is considered project base directory
167 | find_maven_basedir() {
168 |
169 | if [ -z "$1" ]
170 | then
171 | echo "Path not specified to find_maven_basedir"
172 | return 1
173 | fi
174 |
175 | basedir="$1"
176 | wdir="$1"
177 | while [ "$wdir" != '/' ] ; do
178 | if [ -d "$wdir"/.mvn ] ; then
179 | basedir=$wdir
180 | break
181 | fi
182 | # workaround for JBEAP-8937 (on Solaris 10/Sparc)
183 | if [ -d "${wdir}" ]; then
184 | wdir=`cd "$wdir/.."; pwd`
185 | fi
186 | # end of workaround
187 | done
188 | echo "${basedir}"
189 | }
190 |
191 | # concatenates all lines of a file
192 | concat_lines() {
193 | if [ -f "$1" ]; then
194 | echo "$(tr -s '\n' ' ' < "$1")"
195 | fi
196 | }
197 |
198 | BASE_DIR=`find_maven_basedir "$(pwd)"`
199 | if [ -z "$BASE_DIR" ]; then
200 | exit 1;
201 | fi
202 |
203 | ##########################################################################################
204 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
205 | # This allows using the maven wrapper in projects that prohibit checking in binary data.
206 | ##########################################################################################
207 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then
208 | if [ "$MVNW_VERBOSE" = true ]; then
209 | echo "Found .mvn/wrapper/maven-wrapper.jar"
210 | fi
211 | else
212 | if [ "$MVNW_VERBOSE" = true ]; then
213 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..."
214 | fi
215 | jarUrl="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar"
216 | while IFS="=" read key value; do
217 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;;
218 | esac
219 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties"
220 | if [ "$MVNW_VERBOSE" = true ]; then
221 | echo "Downloading from: $jarUrl"
222 | fi
223 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar"
224 |
225 | if command -v wget > /dev/null; then
226 | if [ "$MVNW_VERBOSE" = true ]; then
227 | echo "Found wget ... using wget"
228 | fi
229 | wget "$jarUrl" -O "$wrapperJarPath"
230 | elif command -v curl > /dev/null; then
231 | if [ "$MVNW_VERBOSE" = true ]; then
232 | echo "Found curl ... using curl"
233 | fi
234 | curl -o "$wrapperJarPath" "$jarUrl"
235 | else
236 | if [ "$MVNW_VERBOSE" = true ]; then
237 | echo "Falling back to using Java to download"
238 | fi
239 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java"
240 | if [ -e "$javaClass" ]; then
241 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
242 | if [ "$MVNW_VERBOSE" = true ]; then
243 | echo " - Compiling MavenWrapperDownloader.java ..."
244 | fi
245 | # Compiling the Java class
246 | ("$JAVA_HOME/bin/javac" "$javaClass")
247 | fi
248 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
249 | # Running the downloader
250 | if [ "$MVNW_VERBOSE" = true ]; then
251 | echo " - Running MavenWrapperDownloader.java ..."
252 | fi
253 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR")
254 | fi
255 | fi
256 | fi
257 | fi
258 | ##########################################################################################
259 | # End of extension
260 | ##########################################################################################
261 |
262 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"}
263 | if [ "$MVNW_VERBOSE" = true ]; then
264 | echo $MAVEN_PROJECTBASEDIR
265 | fi
266 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS"
267 |
268 | # For Cygwin, switch paths to Windows format before running java
269 | if $cygwin; then
270 | [ -n "$M2_HOME" ] &&
271 | M2_HOME=`cygpath --path --windows "$M2_HOME"`
272 | [ -n "$JAVA_HOME" ] &&
273 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"`
274 | [ -n "$CLASSPATH" ] &&
275 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
276 | [ -n "$MAVEN_PROJECTBASEDIR" ] &&
277 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"`
278 | fi
279 |
280 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
281 |
282 | exec "$JAVACMD" \
283 | $MAVEN_OPTS \
284 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \
285 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \
286 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@"
287 |
--------------------------------------------------------------------------------
/mvnw.cmd:
--------------------------------------------------------------------------------
1 | @REM ----------------------------------------------------------------------------
2 | @REM Licensed to the Apache Software Foundation (ASF) under one
3 | @REM or more contributor license agreements. See the NOTICE file
4 | @REM distributed with this work for additional information
5 | @REM regarding copyright ownership. The ASF licenses this file
6 | @REM to you under the Apache License, Version 2.0 (the
7 | @REM "License"); you may not use this file except in compliance
8 | @REM with the License. You may obtain a copy of the License at
9 | @REM
10 | @REM https://www.apache.org/licenses/LICENSE-2.0
11 | @REM
12 | @REM Unless required by applicable law or agreed to in writing,
13 | @REM software distributed under the License is distributed on an
14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | @REM KIND, either express or implied. See the License for the
16 | @REM specific language governing permissions and limitations
17 | @REM under the License.
18 | @REM ----------------------------------------------------------------------------
19 |
20 | @REM ----------------------------------------------------------------------------
21 | @REM Maven2 Start Up Batch script
22 | @REM
23 | @REM Required ENV vars:
24 | @REM JAVA_HOME - location of a JDK home dir
25 | @REM
26 | @REM Optional ENV vars
27 | @REM M2_HOME - location of maven2's installed home dir
28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands
29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a key stroke before ending
30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven
31 | @REM e.g. to debug Maven itself, use
32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files
34 | @REM ----------------------------------------------------------------------------
35 |
36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on'
37 | @echo off
38 | @REM set title of command window
39 | title %0
40 | @REM enable echoing my setting MAVEN_BATCH_ECHO to 'on'
41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO%
42 |
43 | @REM set %HOME% to equivalent of $HOME
44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%")
45 |
46 | @REM Execute a user defined script before this one
47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre
48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending
49 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat"
50 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd"
51 | :skipRcPre
52 |
53 | @setlocal
54 |
55 | set ERROR_CODE=0
56 |
57 | @REM To isolate internal variables from possible post scripts, we use another setlocal
58 | @setlocal
59 |
60 | @REM ==== START VALIDATION ====
61 | if not "%JAVA_HOME%" == "" goto OkJHome
62 |
63 | echo.
64 | echo Error: JAVA_HOME not found in your environment. >&2
65 | echo Please set the JAVA_HOME variable in your environment to match the >&2
66 | echo location of your Java installation. >&2
67 | echo.
68 | goto error
69 |
70 | :OkJHome
71 | if exist "%JAVA_HOME%\bin\java.exe" goto init
72 |
73 | echo.
74 | echo Error: JAVA_HOME is set to an invalid directory. >&2
75 | echo JAVA_HOME = "%JAVA_HOME%" >&2
76 | echo Please set the JAVA_HOME variable in your environment to match the >&2
77 | echo location of your Java installation. >&2
78 | echo.
79 | goto error
80 |
81 | @REM ==== END VALIDATION ====
82 |
83 | :init
84 |
85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn".
86 | @REM Fallback to current working directory if not found.
87 |
88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR%
89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir
90 |
91 | set EXEC_DIR=%CD%
92 | set WDIR=%EXEC_DIR%
93 | :findBaseDir
94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound
95 | cd ..
96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound
97 | set WDIR=%CD%
98 | goto findBaseDir
99 |
100 | :baseDirFound
101 | set MAVEN_PROJECTBASEDIR=%WDIR%
102 | cd "%EXEC_DIR%"
103 | goto endDetectBaseDir
104 |
105 | :baseDirNotFound
106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR%
107 | cd "%EXEC_DIR%"
108 |
109 | :endDetectBaseDir
110 |
111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig
112 |
113 | @setlocal EnableExtensions EnableDelayedExpansion
114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a
115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS%
116 |
117 | :endReadAdditionalConfig
118 |
119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe"
120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar"
121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
122 |
123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar"
124 | FOR /F "tokens=1,2 delims==" %%A IN (%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties) DO (
125 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B
126 | )
127 |
128 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
129 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data.
130 | if exist %WRAPPER_JAR% (
131 | echo Found %WRAPPER_JAR%
132 | ) else (
133 | echo Couldn't find %WRAPPER_JAR%, downloading it ...
134 | echo Downloading from: %DOWNLOAD_URL%
135 | powershell -Command "(New-Object Net.WebClient).DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')"
136 | echo Finished downloading %WRAPPER_JAR%
137 | )
138 | @REM End of extension
139 |
140 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %*
141 | if ERRORLEVEL 1 goto error
142 | goto end
143 |
144 | :error
145 | set ERROR_CODE=1
146 |
147 | :end
148 | @endlocal & set ERROR_CODE=%ERROR_CODE%
149 |
150 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost
151 | @REM check for post script, once with legacy .bat ending and once with .cmd ending
152 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat"
153 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd"
154 | :skipRcPost
155 |
156 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on'
157 | if "%MAVEN_BATCH_PAUSE%" == "on" pause
158 |
159 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE%
160 |
161 | exit /B %ERROR_CODE%
162 |
--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
1 |
2 |
4 | 4.0.0
5 |
6 | org.springframework.boot
7 | spring-boot-starter-parent
8 | 2.1.4.RELEASE
9 |
10 |
11 | net.proselyte
12 | jwtappdemo
13 | 0.0.1-SNAPSHOT
14 | JwtAppDemo
15 | JWT based spring security REST API
16 |
17 |
18 | 1.8
19 | 8.0.15
20 | 0.8.0
21 |
22 |
23 |
24 |
25 |
26 | org.springframework.boot
27 | spring-boot-starter-data-jpa
28 |
29 |
30 | org.springframework.boot
31 | spring-boot-starter-security
32 |
33 |
34 | org.springframework.boot
35 | spring-boot-starter-web
36 |
37 |
38 |
39 |
40 | org.liquibase
41 | liquibase-core
42 |
43 |
44 |
45 |
46 | mysql
47 | mysql-connector-java
48 | ${mysql.connetor.version}
49 |
50 |
51 |
52 |
53 |
54 | io.jsonwebtoken
55 | jjwt
56 | ${jsonwebtoken.version}
57 |
58 |
59 |
60 |
61 | org.projectlombok
62 | lombok
63 | true
64 |
65 |
66 |
67 |
68 | org.springframework.boot
69 | spring-boot-starter-test
70 | test
71 |
72 |
73 | org.springframework.security
74 | spring-security-test
75 | test
76 |
77 |
78 |
79 |
80 |
81 |
82 | org.springframework.boot
83 | spring-boot-maven-plugin
84 |
85 |
86 |
87 |
88 |
89 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/JwtAppDemoApplication.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo;
2 |
3 | import org.springframework.boot.SpringApplication;
4 | import org.springframework.boot.autoconfigure.SpringBootApplication;
5 |
6 | @SpringBootApplication
7 | public class JwtAppDemoApplication {
8 |
9 | public static void main(String[] args) {
10 | SpringApplication.run(JwtAppDemoApplication.class, args);
11 | }
12 |
13 | }
14 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/config/SecurityConfig.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.config;
2 |
3 | import net.proselyte.jwtappdemo.security.jwt.JwtConfigurer;
4 | import net.proselyte.jwtappdemo.security.jwt.JwtTokenProvider;
5 | import org.springframework.beans.factory.annotation.Autowired;
6 | import org.springframework.context.annotation.Bean;
7 | import org.springframework.context.annotation.Configuration;
8 | import org.springframework.security.authentication.AuthenticationManager;
9 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
10 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
11 | import org.springframework.security.config.http.SessionCreationPolicy;
12 |
13 | /**
14 | * Security configuration class for JWT based Spring Security application.
15 | *
16 | * @author Eugene Suleimanov
17 | * @version 1.0
18 | */
19 |
20 | @Configuration
21 | public class SecurityConfig extends WebSecurityConfigurerAdapter {
22 |
23 | private final JwtTokenProvider jwtTokenProvider;
24 |
25 | private static final String ADMIN_ENDPOINT = "/api/v1/admin/**";
26 | private static final String LOGIN_ENDPOINT = "/api/v1/auth/login";
27 |
28 | @Autowired
29 | public SecurityConfig(JwtTokenProvider jwtTokenProvider) {
30 | this.jwtTokenProvider = jwtTokenProvider;
31 | }
32 |
33 | @Bean
34 | @Override
35 | public AuthenticationManager authenticationManagerBean() throws Exception {
36 | return super.authenticationManagerBean();
37 | }
38 |
39 | @Override
40 | protected void configure(HttpSecurity http) throws Exception {
41 | http
42 | .httpBasic().disable()
43 | .csrf().disable()
44 | .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS)
45 | .and()
46 | .authorizeRequests()
47 | .antMatchers(LOGIN_ENDPOINT).permitAll()
48 | .antMatchers(ADMIN_ENDPOINT).hasRole("ADMIN")
49 | .anyRequest().authenticated()
50 | .and()
51 | .apply(new JwtConfigurer(jwtTokenProvider));
52 | }
53 | }
54 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/dto/AdminUserDto.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.dto;
2 |
3 | import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
4 | import lombok.Data;
5 | import net.proselyte.jwtappdemo.model.Status;
6 | import net.proselyte.jwtappdemo.model.User;
7 |
8 | /**
9 | * DTO class for user requests by ROLE_ADMIN
10 | *
11 | * @author Eugene Suleimanov
12 | * @version 1.0
13 | */
14 |
15 | @Data
16 | @JsonIgnoreProperties(ignoreUnknown = true)
17 | public class AdminUserDto {
18 | private Long id;
19 | private String username;
20 | private String firstName;
21 | private String lastName;
22 | private String email;
23 | private String status;
24 |
25 | public User toUser() {
26 | User user = new User();
27 | user.setId(id);
28 | user.setUsername(username);
29 | user.setFirstName(firstName);
30 | user.setLastName(lastName);
31 | user.setEmail(email);
32 | user.setStatus(Status.valueOf(status));
33 | return user;
34 | }
35 |
36 | public static AdminUserDto fromUser(User user) {
37 | AdminUserDto adminUserDto = new AdminUserDto();
38 | adminUserDto.setId(user.getId());
39 | adminUserDto.setUsername(user.getUsername());
40 | adminUserDto.setFirstName(user.getFirstName());
41 | adminUserDto.setLastName(user.getLastName());
42 | adminUserDto.setEmail(user.getEmail());
43 | adminUserDto.setStatus(user.getStatus().name());
44 | return adminUserDto;
45 | }
46 | }
47 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/dto/AuthenticationRequestDto.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.dto;
2 |
3 | import lombok.Data;
4 |
5 | /**
6 | * DTO class for authentication (login) request.
7 | *
8 | * @author Eugene Suleimanov
9 | * @version 1.0
10 | */
11 |
12 | @Data
13 | public class AuthenticationRequestDto {
14 | private String username;
15 | private String password;
16 | }
17 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/dto/UserDto.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.dto;
2 |
3 | import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
4 | import lombok.Data;
5 | import net.proselyte.jwtappdemo.model.User;
6 |
7 | /**
8 | * DTO class for user requests by ROLE_USER
9 | *
10 | * @author Eugene Suleimanov
11 | * @version 1.0
12 | */
13 |
14 | @Data
15 | @JsonIgnoreProperties(ignoreUnknown = true)
16 | public class UserDto {
17 | private Long id;
18 | private String username;
19 | private String firstName;
20 | private String lastName;
21 | private String email;
22 |
23 | public User toUser(){
24 | User user = new User();
25 | user.setId(id);
26 | user.setUsername(username);
27 | user.setFirstName(firstName);
28 | user.setLastName(lastName);
29 | user.setEmail(email);
30 |
31 | return user;
32 | }
33 |
34 | public static UserDto fromUser(User user) {
35 | UserDto userDto = new UserDto();
36 | userDto.setId(user.getId());
37 | userDto.setUsername(user.getUsername());
38 | userDto.setFirstName(user.getFirstName());
39 | userDto.setLastName(user.getLastName());
40 | userDto.setEmail(user.getEmail());
41 |
42 | return userDto;
43 | }
44 | }
45 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/model/BaseEntity.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.model;
2 |
3 | import lombok.Data;
4 | import org.springframework.data.annotation.CreatedDate;
5 | import org.springframework.data.annotation.LastModifiedDate;
6 |
7 | import javax.persistence.Column;
8 | import javax.persistence.EnumType;
9 | import javax.persistence.Enumerated;
10 | import javax.persistence.GeneratedValue;
11 | import javax.persistence.GenerationType;
12 | import javax.persistence.Id;
13 | import javax.persistence.MappedSuperclass;
14 | import java.util.Date;
15 |
16 | /**
17 | * Base class with property 'id'.
18 | * Used as a base class for all objects that requires this property.
19 | *
20 | * @author Eugene Suleimanov
21 | * @version 1.0
22 | */
23 |
24 | @MappedSuperclass
25 | @Data
26 | public class BaseEntity {
27 |
28 | @Id
29 | @GeneratedValue(strategy = GenerationType.IDENTITY)
30 | private Long id;
31 |
32 | @CreatedDate
33 | @Column(name = "created")
34 | private Date created;
35 |
36 | @LastModifiedDate
37 | @Column(name = "updated")
38 | private Date updated;
39 |
40 | @Enumerated(EnumType.STRING)
41 | @Column(name = "status")
42 | private Status status;
43 | }
44 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/model/Role.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.model;
2 |
3 | import lombok.Data;
4 |
5 | import javax.persistence.Column;
6 | import javax.persistence.Entity;
7 | import javax.persistence.FetchType;
8 | import javax.persistence.ManyToMany;
9 | import javax.persistence.Table;
10 | import java.util.List;
11 |
12 | /**
13 | * Simple domain object that represents application user's role - ADMIN, USER, etc.
14 | *
15 | * @author Eugene Suleimanov
16 | * @version 1.0
17 | */
18 |
19 | @Entity
20 | @Table(name = "roles")
21 | @Data
22 | public class Role extends BaseEntity {
23 |
24 | @Column(name = "name")
25 | private String name;
26 |
27 | @ManyToMany(mappedBy = "roles", fetch = FetchType.LAZY)
28 | private List users;
29 |
30 | @Override
31 | public String toString() {
32 | return "Role{" +
33 | "id: " + super.getId() + ", " +
34 | "name: " + name + "}";
35 | }
36 | }
37 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/model/Status.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.model;
2 |
3 | /**
4 | * Enumeration that represents status of domain objects - ACTIVE, DELETED, etc.
5 | *
6 | * @author Eugene Suleimanov
7 | * @version 1.0
8 | */
9 |
10 | public enum Status {
11 | ACTIVE, NOT_ACTIVE, DELETED
12 | }
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/model/User.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.model;
2 |
3 | import lombok.Data;
4 |
5 | import javax.persistence.Column;
6 | import javax.persistence.Entity;
7 | import javax.persistence.FetchType;
8 | import javax.persistence.JoinColumn;
9 | import javax.persistence.JoinTable;
10 | import javax.persistence.ManyToMany;
11 | import javax.persistence.Table;
12 | import java.util.List;
13 |
14 |
15 | /**
16 | * Simple domain object that represents application user.
17 | *
18 | * @author Eugene Suleimanov
19 | * @version 1.0
20 | */
21 |
22 | @Entity
23 | @Table(name = "users")
24 | @Data
25 | public class User extends BaseEntity {
26 |
27 | @Column(name = "username")
28 | private String username;
29 |
30 | @Column(name = "first_name")
31 | private String firstName;
32 |
33 | @Column(name = "last_name")
34 | private String lastName;
35 |
36 | @Column(name = "email")
37 | private String email;
38 |
39 | @Column(name = "password")
40 | private String password;
41 |
42 | @ManyToMany(fetch = FetchType.EAGER)
43 | @JoinTable(name = "user_roles",
44 | joinColumns = {@JoinColumn(name = "user_id", referencedColumnName = "id")},
45 | inverseJoinColumns = {@JoinColumn(name = "role_id", referencedColumnName = "id")})
46 | private List roles;
47 | }
48 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/repository/RoleRepository.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.repository;
2 |
3 | import net.proselyte.jwtappdemo.model.Role;
4 | import org.springframework.data.jpa.repository.JpaRepository;
5 |
6 | /**
7 | * Repository interface that extends {@link JpaRepository} for class {@link Role}.
8 | *
9 | * @author Eugene Suleimanov
10 | * @version 1.0
11 | */
12 |
13 | public interface RoleRepository extends JpaRepository {
14 | Role findByName(String name);
15 | }
16 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/repository/UserRepository.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.repository;
2 |
3 | import net.proselyte.jwtappdemo.model.User;
4 | import org.springframework.data.jpa.repository.JpaRepository;
5 |
6 | /**
7 | * Repository interface that extends {@link JpaRepository} for class {@link User}.
8 | *
9 | * @author Eugene Suleimanov
10 | * @version 1.0
11 | */
12 |
13 | public interface UserRepository extends JpaRepository {
14 | User findByUsername(String name);
15 | }
16 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/rest/AdminRestControllerV1.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.rest;
2 |
3 | import net.proselyte.jwtappdemo.dto.AdminUserDto;
4 | import net.proselyte.jwtappdemo.model.User;
5 | import net.proselyte.jwtappdemo.service.UserService;
6 | import org.springframework.beans.factory.annotation.Autowired;
7 | import org.springframework.http.HttpStatus;
8 | import org.springframework.http.ResponseEntity;
9 | import org.springframework.web.bind.annotation.GetMapping;
10 | import org.springframework.web.bind.annotation.PathVariable;
11 | import org.springframework.web.bind.annotation.RequestMapping;
12 | import org.springframework.web.bind.annotation.RestController;
13 |
14 | /**
15 | * REST controller for ROLE_ADMIN requests.
16 | *
17 | * @author Eugene Suleimanov
18 | * @version 1.0
19 | */
20 |
21 | @RestController
22 | @RequestMapping(value = "/api/v1/admin/")
23 | public class AdminRestControllerV1 {
24 |
25 | private final UserService userService;
26 |
27 | @Autowired
28 | public AdminRestControllerV1(UserService userService) {
29 | this.userService = userService;
30 | }
31 |
32 | @GetMapping(value = "users/{id}")
33 | public ResponseEntity getUserById(@PathVariable(name = "id") Long id) {
34 | User user = userService.findById(id);
35 |
36 | if (user == null) {
37 | return new ResponseEntity<>(HttpStatus.NO_CONTENT);
38 | }
39 |
40 | AdminUserDto result = AdminUserDto.fromUser(user);
41 |
42 | return new ResponseEntity<>(result, HttpStatus.OK);
43 | }
44 | }
45 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/rest/AuthenticationRestControllerV1.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.rest;
2 |
3 | import net.proselyte.jwtappdemo.dto.AuthenticationRequestDto;
4 | import net.proselyte.jwtappdemo.model.User;
5 | import net.proselyte.jwtappdemo.security.jwt.JwtTokenProvider;
6 | import net.proselyte.jwtappdemo.service.UserService;
7 | import org.springframework.beans.factory.annotation.Autowired;
8 | import org.springframework.http.ResponseEntity;
9 | import org.springframework.security.authentication.AuthenticationManager;
10 | import org.springframework.security.authentication.BadCredentialsException;
11 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
12 | import org.springframework.security.core.AuthenticationException;
13 | import org.springframework.security.core.userdetails.UsernameNotFoundException;
14 | import org.springframework.web.bind.annotation.PostMapping;
15 | import org.springframework.web.bind.annotation.RequestBody;
16 | import org.springframework.web.bind.annotation.RequestMapping;
17 | import org.springframework.web.bind.annotation.RestController;
18 |
19 | import java.util.HashMap;
20 | import java.util.Map;
21 |
22 | /**
23 | * REST controller for authentication requests (login, logout, register, etc.)
24 | *
25 | * @author Eugene Suleimanov
26 | * @version 1.0
27 | */
28 |
29 | @RestController
30 | @RequestMapping(value = "/api/v1/auth/")
31 | public class AuthenticationRestControllerV1 {
32 |
33 | private final AuthenticationManager authenticationManager;
34 |
35 | private final JwtTokenProvider jwtTokenProvider;
36 |
37 | private final UserService userService;
38 |
39 | @Autowired
40 | public AuthenticationRestControllerV1(AuthenticationManager authenticationManager, JwtTokenProvider jwtTokenProvider, UserService userService) {
41 | this.authenticationManager = authenticationManager;
42 | this.jwtTokenProvider = jwtTokenProvider;
43 | this.userService = userService;
44 | }
45 |
46 | @PostMapping("login")
47 | public ResponseEntity login(@RequestBody AuthenticationRequestDto requestDto) {
48 | try {
49 | String username = requestDto.getUsername();
50 | authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(username, requestDto.getPassword()));
51 | User user = userService.findByUsername(username);
52 |
53 | if (user == null) {
54 | throw new UsernameNotFoundException("User with username: " + username + " not found");
55 | }
56 |
57 | String token = jwtTokenProvider.createToken(username, user.getRoles());
58 |
59 | Map response = new HashMap<>();
60 | response.put("username", username);
61 | response.put("token", token);
62 |
63 | return ResponseEntity.ok(response);
64 | } catch (AuthenticationException e) {
65 | throw new BadCredentialsException("Invalid username or password");
66 | }
67 | }
68 | }
69 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/rest/UserRestControllerV1.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.rest;
2 |
3 | import net.proselyte.jwtappdemo.dto.UserDto;
4 | import net.proselyte.jwtappdemo.model.User;
5 | import net.proselyte.jwtappdemo.service.UserService;
6 | import org.springframework.beans.factory.annotation.Autowired;
7 | import org.springframework.http.HttpStatus;
8 | import org.springframework.http.ResponseEntity;
9 | import org.springframework.web.bind.annotation.GetMapping;
10 | import org.springframework.web.bind.annotation.PathVariable;
11 | import org.springframework.web.bind.annotation.RequestMapping;
12 | import org.springframework.web.bind.annotation.RestController;
13 |
14 | /**
15 | * REST controller user connected requestst.
16 | *
17 | * @author Eugene Suleimanov
18 | * @version 1.0
19 | */
20 |
21 | @RestController
22 | @RequestMapping(value = "/api/v1/users/")
23 | public class UserRestControllerV1 {
24 | private final UserService userService;
25 |
26 | @Autowired
27 | public UserRestControllerV1(UserService userService) {
28 | this.userService = userService;
29 | }
30 |
31 | @GetMapping(value = "{id}")
32 | public ResponseEntity getUserById(@PathVariable(name = "id") Long id){
33 | User user = userService.findById(id);
34 |
35 | if(user == null){
36 | return new ResponseEntity<>(HttpStatus.NO_CONTENT);
37 | }
38 |
39 | UserDto result = UserDto.fromUser(user);
40 |
41 | return new ResponseEntity<>(result, HttpStatus.OK);
42 | }
43 | }
44 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/JwtUserDetailsService.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security;
2 |
3 | import lombok.extern.slf4j.Slf4j;
4 | import net.proselyte.jwtappdemo.model.User;
5 | import net.proselyte.jwtappdemo.security.jwt.JwtUser;
6 | import net.proselyte.jwtappdemo.security.jwt.JwtUserFactory;
7 | import net.proselyte.jwtappdemo.service.UserService;
8 | import org.springframework.beans.factory.annotation.Autowired;
9 | import org.springframework.security.core.userdetails.UserDetails;
10 | import org.springframework.security.core.userdetails.UserDetailsService;
11 | import org.springframework.security.core.userdetails.UsernameNotFoundException;
12 | import org.springframework.stereotype.Service;
13 |
14 | /**
15 | * Implementation of {@link UserDetailsService} interface for {@link JwtUser}.
16 | *
17 | * @author Eugene Suleimanov
18 | * @version 1.0
19 | */
20 |
21 | @Service
22 | @Slf4j
23 | public class JwtUserDetailsService implements UserDetailsService {
24 |
25 | private final UserService userService;
26 |
27 | @Autowired
28 | public JwtUserDetailsService(UserService userService) {
29 | this.userService = userService;
30 | }
31 |
32 | @Override
33 | public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
34 | User user = userService.findByUsername(username);
35 |
36 | if (user == null) {
37 | throw new UsernameNotFoundException("User with username: " + username + " not found");
38 | }
39 |
40 | JwtUser jwtUser = JwtUserFactory.create(user);
41 | log.info("IN loadUserByUsername - user with username: {} successfully loaded", username);
42 | return jwtUser;
43 | }
44 | }
45 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/jwt/JwtAuthenticationException.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security.jwt;
2 |
3 | import org.springframework.security.core.AuthenticationException;
4 |
5 | /**
6 | * Authetication exception for JwtAppDemo application.
7 | *
8 | * @author Eugene Suleimanov
9 | * @version 1.0
10 | */
11 |
12 | public class JwtAuthenticationException extends AuthenticationException {
13 | public JwtAuthenticationException(String msg, Throwable t) {
14 | super(msg, t);
15 | }
16 |
17 | public JwtAuthenticationException(String msg) {
18 | super(msg);
19 | }
20 | }
21 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/jwt/JwtConfigurer.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security.jwt;
2 |
3 | import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
4 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
5 | import org.springframework.security.web.DefaultSecurityFilterChain;
6 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
7 |
8 | /**
9 | * JWT configuration for application that add {@link JwtTokenFilter} for security chain.
10 | *
11 | * @author Eugene Suleimanov
12 | * @version 1.0
13 | */
14 |
15 | public class JwtConfigurer extends SecurityConfigurerAdapter {
16 | private JwtTokenProvider jwtTokenProvider;
17 |
18 | public JwtConfigurer(JwtTokenProvider jwtTokenProvider) {
19 | this.jwtTokenProvider = jwtTokenProvider;
20 | }
21 |
22 | @Override
23 | public void configure(HttpSecurity httpSecurity) throws Exception {
24 | JwtTokenFilter jwtTokenFilter = new JwtTokenFilter(jwtTokenProvider);
25 | httpSecurity.addFilterBefore(jwtTokenFilter, UsernamePasswordAuthenticationFilter.class);
26 | }
27 | }
28 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/jwt/JwtTokenFilter.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security.jwt;
2 |
3 | import org.springframework.security.core.Authentication;
4 | import org.springframework.security.core.context.SecurityContextHolder;
5 | import org.springframework.web.filter.GenericFilterBean;
6 |
7 | import javax.servlet.FilterChain;
8 | import javax.servlet.ServletException;
9 | import javax.servlet.ServletRequest;
10 | import javax.servlet.ServletResponse;
11 | import javax.servlet.http.HttpServletRequest;
12 | import java.io.IOException;
13 |
14 | /**
15 | * JWT token filter that handles all HTTP requests to application.
16 | *
17 | * @author Eugene Suliemanov
18 | * @version 1.0
19 | */
20 |
21 | public class JwtTokenFilter extends GenericFilterBean {
22 |
23 | private JwtTokenProvider jwtTokenProvider;
24 |
25 | public JwtTokenFilter(JwtTokenProvider jwtTokenProvider) {
26 | this.jwtTokenProvider = jwtTokenProvider;
27 | }
28 |
29 | @Override
30 | public void doFilter(ServletRequest req, ServletResponse res, FilterChain filterChain)
31 | throws IOException, ServletException {
32 |
33 | String token = jwtTokenProvider.resolveToken((HttpServletRequest) req);
34 | if (token != null && jwtTokenProvider.validateToken(token)) {
35 | Authentication auth = jwtTokenProvider.getAuthentication(token);
36 |
37 | if (auth != null) {
38 | SecurityContextHolder.getContext().setAuthentication(auth);
39 | }
40 | }
41 | filterChain.doFilter(req, res);
42 | }
43 |
44 | }
45 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/jwt/JwtTokenProvider.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security.jwt;
2 |
3 | import io.jsonwebtoken.Claims;
4 | import io.jsonwebtoken.Jws;
5 | import io.jsonwebtoken.JwtException;
6 | import io.jsonwebtoken.Jwts;
7 | import io.jsonwebtoken.SignatureAlgorithm;
8 | import net.proselyte.jwtappdemo.model.Role;
9 | import org.springframework.beans.factory.annotation.Autowired;
10 | import org.springframework.beans.factory.annotation.Value;
11 | import org.springframework.context.annotation.Bean;
12 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
13 | import org.springframework.security.core.Authentication;
14 | import org.springframework.security.core.userdetails.UserDetails;
15 | import org.springframework.security.core.userdetails.UserDetailsService;
16 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
17 | import org.springframework.stereotype.Component;
18 |
19 | import javax.annotation.PostConstruct;
20 | import javax.servlet.http.HttpServletRequest;
21 | import java.util.ArrayList;
22 | import java.util.Base64;
23 | import java.util.Date;
24 | import java.util.List;
25 |
26 | /**
27 | * Util class that provides methods for generation, validation, etc. of JWT token.
28 | *
29 | * @author Eugene Suleimanov
30 | * @version 1.0
31 | */
32 |
33 | @Component
34 | public class JwtTokenProvider {
35 |
36 | @Value("${jwt.token.secret}")
37 | private String secret;
38 |
39 | @Value("${jwt.token.expired}")
40 | private long validityInMilliseconds;
41 |
42 |
43 | @Autowired
44 | private UserDetailsService userDetailsService;
45 |
46 | @Bean
47 | public BCryptPasswordEncoder passwordEncoder() {
48 | BCryptPasswordEncoder bCryptPasswordEncoder = new BCryptPasswordEncoder();
49 | return bCryptPasswordEncoder;
50 | }
51 |
52 | @PostConstruct
53 | protected void init() {
54 | secret = Base64.getEncoder().encodeToString(secret.getBytes());
55 | }
56 |
57 | public String createToken(String username, List roles) {
58 |
59 | Claims claims = Jwts.claims().setSubject(username);
60 | claims.put("roles", getRoleNames(roles));
61 |
62 | Date now = new Date();
63 | Date validity = new Date(now.getTime() + validityInMilliseconds);
64 |
65 | return Jwts.builder()//
66 | .setClaims(claims)//
67 | .setIssuedAt(now)//
68 | .setExpiration(validity)//
69 | .signWith(SignatureAlgorithm.HS256, secret)//
70 | .compact();
71 | }
72 |
73 | public Authentication getAuthentication(String token) {
74 | UserDetails userDetails = this.userDetailsService.loadUserByUsername(getUsername(token));
75 | return new UsernamePasswordAuthenticationToken(userDetails, "", userDetails.getAuthorities());
76 | }
77 |
78 | public String getUsername(String token) {
79 | return Jwts.parser().setSigningKey(secret).parseClaimsJws(token).getBody().getSubject();
80 | }
81 |
82 | public String resolveToken(HttpServletRequest req) {
83 | String bearerToken = req.getHeader("Authorization");
84 | if (bearerToken != null && bearerToken.startsWith("Bearer_")) {
85 | return bearerToken.substring(7, bearerToken.length());
86 | }
87 | return null;
88 | }
89 |
90 | public boolean validateToken(String token) {
91 | try {
92 | Jws claims = Jwts.parser().setSigningKey(secret).parseClaimsJws(token);
93 |
94 | if (claims.getBody().getExpiration().before(new Date())) {
95 | return false;
96 | }
97 |
98 | return true;
99 | } catch (JwtException | IllegalArgumentException e) {
100 | throw new JwtAuthenticationException("JWT token is expired or invalid");
101 | }
102 | }
103 |
104 | private List getRoleNames(List userRoles) {
105 | List result = new ArrayList<>();
106 |
107 | userRoles.forEach(role -> {
108 | result.add(role.getName());
109 | });
110 |
111 | return result;
112 | }
113 | }
114 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/jwt/JwtUser.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security.jwt;
2 |
3 | import com.fasterxml.jackson.annotation.JsonIgnore;
4 | import net.proselyte.jwtappdemo.model.User;
5 | import org.springframework.security.core.GrantedAuthority;
6 | import org.springframework.security.core.userdetails.UserDetails;
7 |
8 | import java.util.Collection;
9 | import java.util.Date;
10 |
11 | /**
12 | * Spring Security wrapper for class {@link User}.
13 | *
14 | * @author Eugene Suleimanov
15 | * @version 1.0
16 | */
17 |
18 | public class JwtUser implements UserDetails {
19 |
20 | private final Long id;
21 | private final String username;
22 | private final String firstName;
23 | private final String lastName;
24 | private final String password;
25 | private final String email;
26 | private final boolean enabled;
27 | private final Date lastPasswordResetDate;
28 | private final Collection authorities;
29 |
30 | public JwtUser(
31 | Long id,
32 | String username,
33 | String firstName,
34 | String lastName,
35 | String email,
36 | String password, Collection authorities,
37 | boolean enabled,
38 | Date lastPasswordResetDate
39 | ) {
40 | this.id = id;
41 | this.username = username;
42 | this.firstName = firstName;
43 | this.lastName = lastName;
44 | this.email = email;
45 | this.password = password;
46 | this.authorities = authorities;
47 | this.enabled = enabled;
48 | this.lastPasswordResetDate = lastPasswordResetDate;
49 | }
50 |
51 | @JsonIgnore
52 | public Long getId() {
53 | return id;
54 | }
55 |
56 | @Override
57 | public String getUsername() {
58 | return username;
59 | }
60 |
61 | @JsonIgnore
62 | @Override
63 | public boolean isAccountNonExpired() {
64 | return true;
65 | }
66 |
67 | @JsonIgnore
68 | @Override
69 | public boolean isAccountNonLocked() {
70 | return true;
71 | }
72 |
73 | @JsonIgnore
74 | @Override
75 | public boolean isCredentialsNonExpired() {
76 | return true;
77 | }
78 |
79 | public String getFirstname() {
80 | return firstName;
81 | }
82 |
83 | public String getLastname() {
84 | return lastName;
85 | }
86 |
87 | public String getEmail() {
88 | return email;
89 | }
90 |
91 | @JsonIgnore
92 | @Override
93 | public String getPassword() {
94 | return password;
95 | }
96 |
97 | @Override
98 | public Collection getAuthorities() {
99 | return authorities;
100 | }
101 |
102 | @Override
103 | public boolean isEnabled() {
104 | return enabled;
105 | }
106 |
107 | @JsonIgnore
108 | public Date getLastPasswordResetDate() {
109 | return lastPasswordResetDate;
110 | }
111 | }
112 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/security/jwt/JwtUserFactory.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.security.jwt;
2 |
3 | import net.proselyte.jwtappdemo.model.Role;
4 | import net.proselyte.jwtappdemo.model.Status;
5 | import net.proselyte.jwtappdemo.model.User;
6 | import org.springframework.security.core.GrantedAuthority;
7 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
8 |
9 | import java.util.ArrayList;
10 | import java.util.List;
11 | import java.util.stream.Collectors;
12 |
13 | /**
14 | * Implementation of Factory Method for class {@link JwtUser}.
15 | *
16 | * @author Eugene Suleimanov
17 | * @version 1.0
18 | */
19 |
20 | public final class JwtUserFactory {
21 |
22 | public JwtUserFactory() {
23 | }
24 |
25 | public static JwtUser create(User user) {
26 | return new JwtUser(
27 | user.getId(),
28 | user.getUsername(),
29 | user.getFirstName(),
30 | user.getLastName(),
31 | user.getEmail(),
32 | user.getPassword(),
33 | mapToGrantedAuthorities(new ArrayList<>(user.getRoles())),
34 | user.getStatus().equals(Status.ACTIVE),
35 | user.getUpdated()
36 | );
37 | }
38 |
39 | private static List mapToGrantedAuthorities(List userRoles) {
40 | return userRoles.stream()
41 | .map(role ->
42 | new SimpleGrantedAuthority(role.getName())
43 | ).collect(Collectors.toList());
44 | }
45 | }
46 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/service/UserService.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.service;
2 |
3 | import net.proselyte.jwtappdemo.model.User;
4 |
5 | import java.util.List;
6 |
7 | /**
8 | * Service interface for class {@link User}.
9 | *
10 | * @author Eugene Suleimanov
11 | * @version 1.0
12 | */
13 |
14 | public interface UserService {
15 |
16 | User register(User user);
17 |
18 | List getAll();
19 |
20 | User findByUsername(String username);
21 |
22 | User findById(Long id);
23 |
24 | void delete(Long id);
25 | }
26 |
--------------------------------------------------------------------------------
/src/main/java/net/proselyte/jwtappdemo/service/impl/UserServiceImpl.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo.service.impl;
2 |
3 | import lombok.extern.slf4j.Slf4j;
4 | import net.proselyte.jwtappdemo.model.Role;
5 | import net.proselyte.jwtappdemo.model.Status;
6 | import net.proselyte.jwtappdemo.model.User;
7 | import net.proselyte.jwtappdemo.repository.RoleRepository;
8 | import net.proselyte.jwtappdemo.repository.UserRepository;
9 | import net.proselyte.jwtappdemo.service.UserService;
10 | import org.springframework.beans.factory.annotation.Autowired;
11 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
12 | import org.springframework.stereotype.Service;
13 |
14 | import java.util.ArrayList;
15 | import java.util.List;
16 |
17 | /**
18 | * Implementation of {@link UserService} interface.
19 | * Wrapper for {@link UserRepository} + business logic.
20 | *
21 | * @author Eugene Suleimanov
22 | * @version 1.0
23 | */
24 |
25 | @Service
26 | @Slf4j
27 | public class UserServiceImpl implements UserService {
28 |
29 | private final UserRepository userRepository;
30 | private final RoleRepository roleRepository;
31 | private final BCryptPasswordEncoder passwordEncoder;
32 |
33 | @Autowired
34 | public UserServiceImpl(UserRepository userRepository, RoleRepository roleRepository, BCryptPasswordEncoder passwordEncoder) {
35 | this.userRepository = userRepository;
36 | this.roleRepository = roleRepository;
37 | this.passwordEncoder = passwordEncoder;
38 | }
39 |
40 | @Override
41 | public User register(User user) {
42 | Role roleUser = roleRepository.findByName("ROLE_USER");
43 | List userRoles = new ArrayList<>();
44 | userRoles.add(roleUser);
45 |
46 | user.setPassword(passwordEncoder.encode(user.getPassword()));
47 | user.setRoles(userRoles);
48 | user.setStatus(Status.ACTIVE);
49 |
50 | User registeredUser = userRepository.save(user);
51 |
52 | log.info("IN register - user: {} successfully registered", registeredUser);
53 |
54 | return registeredUser;
55 | }
56 |
57 | @Override
58 | public List getAll() {
59 | List result = userRepository.findAll();
60 | log.info("IN getAll - {} users found", result.size());
61 | return result;
62 | }
63 |
64 | @Override
65 | public User findByUsername(String username) {
66 | User result = userRepository.findByUsername(username);
67 | log.info("IN findByUsername - user: {} found by username: {}", result, username);
68 | return result;
69 | }
70 |
71 | @Override
72 | public User findById(Long id) {
73 | User result = userRepository.findById(id).orElse(null);
74 |
75 | if (result == null) {
76 | log.warn("IN findById - no user found by id: {}", id);
77 | return null;
78 | }
79 |
80 | log.info("IN findById - user: {} found by id: {}", result);
81 | return result;
82 | }
83 |
84 | @Override
85 | public void delete(Long id) {
86 | userRepository.deleteById(id);
87 | log.info("IN delete - user with id: {} successfully deleted");
88 | }
89 | }
90 |
--------------------------------------------------------------------------------
/src/main/resources/application.properties:
--------------------------------------------------------------------------------
1 | server.port=8075
2 |
3 | spring.datasource.url=jdbc:mysql://localhost:3306/jwtappdemo?serverTimezone=UTC
4 | spring.datasource.driver-class-name=com.mysql.jdbc.Driver
5 | spring.datasource.username=root
6 | spring.datasource.password=root
7 |
8 | spring.liquibase.change-log=classpath:liquibase/db.changelog-master.xml
9 | spring.liquibase.url=jdbc:mysql://localhost:3306/jwtappdemo?serverTimezone=UTC
10 | spring.liquibase.user=root
11 | spring.liquibase.password=root
12 |
13 | jwt.token.secret=jwtappdemo
14 | jwt.token.expired=3600000
--------------------------------------------------------------------------------
/src/main/resources/liquibase/db.changelog-1.0.xml:
--------------------------------------------------------------------------------
1 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
51 |
52 |
53 |
54 |
55 |
56 |
57 |
58 |
59 |
60 |
61 |
62 |
63 |
64 |
65 |
66 |
67 |
68 |
69 |
70 |
71 |
72 |
73 |
74 |
75 |
76 |
77 |
78 |
79 |
80 |
81 |
82 |
83 |
90 |
91 |
92 |
93 |
100 |
101 |
102 |
103 |
104 |
105 |
106 |
107 |
108 |
109 |
110 |
111 |
--------------------------------------------------------------------------------
/src/main/resources/liquibase/db.changelog-master.xml:
--------------------------------------------------------------------------------
1 |
5 |
6 |
--------------------------------------------------------------------------------
/src/test/java/net/proselyte/jwtappdemo/JwtAppDemoApplicationTests.java:
--------------------------------------------------------------------------------
1 | package net.proselyte.jwtappdemo;
2 |
3 | import org.junit.Test;
4 | import org.junit.runner.RunWith;
5 | import org.springframework.boot.test.context.SpringBootTest;
6 | import org.springframework.test.context.junit4.SpringRunner;
7 |
8 | @RunWith(SpringRunner.class)
9 | @SpringBootTest
10 | public class JwtAppDemoApplicationTests {
11 |
12 | @Test
13 | public void contextLoads() {
14 | }
15 |
16 | }
17 |
--------------------------------------------------------------------------------