Merge pull request #4 from alwinsimon/v1-dev-auth

V1 dev auth - Basic Auth Configuration done.

Author: alwinsimon

pom.xml

@@ -24,8 +24,7 @@
 
 		<dependency>
 			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-test</artifactId>
-			<scope>test</scope>
+			<artifactId>spring-boot-starter-security</artifactId>
 		</dependency>
 
 		<dependency>
@@ -38,6 +37,42 @@
 			<artifactId>postgresql</artifactId>
 			<scope>runtime</scope>
 		</dependency>
+
+		<dependency>
+			<groupId>org.projectlombok</groupId>
+			<artifactId>lombok</artifactId>
+			<optional>true</optional>
+		</dependency>
+
+		<dependency>
+			<groupId>io.jsonwebtoken</groupId>
+			<artifactId>jjwt-api</artifactId>
+			<version>0.11.5</version>
+		</dependency>
+
+		<dependency>
+			<groupId>io.jsonwebtoken</groupId>
+			<artifactId>jjwt-impl</artifactId>
+			<version>0.11.5</version>
+		</dependency>
+		
+		<dependency>
+			<groupId>io.jsonwebtoken</groupId>
+			<artifactId>jjwt-jackson</artifactId>
+			<version>0.11.5</version>
+		</dependency>
+
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-test</artifactId>
+			<scope>test</scope>
+		</dependency>
+
+		<dependency>
+			<groupId>org.springframework.security</groupId>
+			<artifactId>spring-security-test</artifactId>
+			<scope>test</scope>
+		</dependency>
 	</dependencies>
 
 	<build>

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Config/ApplicationConfig.java

@@ -0,0 +1,57 @@
+package com.alwinsimon.UserManagementJavaSpringBoot.Config;
+
+import com.alwinsimon.UserManagementJavaSpringBoot.Repository.UserRepository;
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.authentication.AuthenticationProvider;
+import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
+import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+@Configuration
+@RequiredArgsConstructor
+public class ApplicationConfig {
+
+    private final UserRepository userRepository;
+
+    @Bean
+    public UserDetailsService userDetailsService() {
+
+        return username -> userRepository.findByEmail(username)
+                .orElseThrow(() -> new UsernameNotFoundException("User not found."));
+    }
+
+    @Bean
+    public PasswordEncoder passwordEncoder() {
+
+        return new BCryptPasswordEncoder();
+
+    }
+
+    @Bean
+    public AuthenticationProvider authenticationProvider() {
+
+        // Creating an authentication provider with Data Access Object Authentication Provider
+        DaoAuthenticationProvider authProvider = new DaoAuthenticationProvider();
+
+        // Configuring authProvider
+        authProvider.setUserDetailsService(userDetailsService());
+        authProvider.setPasswordEncoder(passwordEncoder());
+
+        return authProvider;
+
+    }
+
+    @Bean
+    public AuthenticationManager authenticationManager(AuthenticationConfiguration authenticationConfiguration) throws Exception {
+
+        return authenticationConfiguration.getAuthenticationManager();
+
+    }
+
+}

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Config/Filter/JwtAuthenticationFilter.java

@@ -0,0 +1,80 @@
+package com.alwinsimon.UserManagementJavaSpringBoot.Config.Filter;
+
+import com.alwinsimon.UserManagementJavaSpringBoot.Service.JwtService;
+import jakarta.servlet.FilterChain;
+import jakarta.servlet.ServletException;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.springframework.lang.NonNull;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
+import org.springframework.stereotype.Component;
+import org.springframework.web.filter.OncePerRequestFilter;
+
+import java.io.IOException;
+
+@Component
+@RequiredArgsConstructor
+public class JwtAuthenticationFilter extends OncePerRequestFilter {
+
+    private final JwtService jwtService;
+    private final UserDetailsService userDetailsService;
+
+    @Override
+    protected void doFilterInternal(
+            @NonNull HttpServletRequest request,
+            @NonNull HttpServletResponse response,
+            @NonNull FilterChain filterChain
+    ) throws ServletException, IOException {
+
+        final String jwtFromRequest;
+        final String authHeaderFromRequest;
+        final String userEmail;
+
+        // Try to parse JWT from the request header if it exists.
+        authHeaderFromRequest = request.getHeader("Authorization");
+
+        // Return early if there is no valid authorization header.
+        if (authHeaderFromRequest == null || !authHeaderFromRequest.startsWith("Bearer ")) {
+            filterChain.doFilter(request, response);
+            return;
+        }
+
+        // Parse and store JWT Token received from Authorisation Header.
+        jwtFromRequest = authHeaderFromRequest.substring(7);
+
+        // Decrypt Token and find user email from token claims
+        userEmail = jwtService.extractUsername(jwtFromRequest);
+
+        if (userEmail != null && SecurityContextHolder.getContext().getAuthentication() == null) {
+            // Fetch user details from DB using userDetailsService.
+            UserDetails userDetails = this.userDetailsService.loadUserByUsername(userEmail);
+
+            if (jwtService.isTokenValid(jwtFromRequest, userDetails)) {
+                // Authenticate user as the Token is Valid
+
+                UsernamePasswordAuthenticationToken authToken = new UsernamePasswordAuthenticationToken(
+                        userDetails,
+                        null,
+                        userDetails.getAuthorities()
+                );
+
+                authToken.setDetails(
+                        new WebAuthenticationDetailsSource().buildDetails(request)
+                );
+
+                // Update Security Context Holder with authToken
+                SecurityContextHolder.getContext().setAuthentication(authToken);
+
+            }
+        }
+
+        // Passing the control to next filters for continuation of execution.
+        filterChain.doFilter(request, response);
+
+    }
+}

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Config/SecurityConfig.java

@@ -0,0 +1,42 @@
+package com.alwinsimon.UserManagementJavaSpringBoot.Config;
+
+import com.alwinsimon.UserManagementJavaSpringBoot.Config.Filter.JwtAuthenticationFilter;
+import jakarta.servlet.Filter;
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.authentication.AuthenticationProvider;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.http.SessionCreationPolicy;
+import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+
+@Configuration
+@EnableWebSecurity
+@RequiredArgsConstructor
+public class SecurityConfig {
+
+    private final JwtAuthenticationFilter jwtAuthenticationFilter;
+    private final AuthenticationProvider authenticationProvider;
+
+    @Bean
+    public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
+
+        http
+                .csrf((csrf) -> csrf.disable())
+                .authorizeHttpRequests(authorize ->authorize
+                        .requestMatchers("/health/","/api/v1/auth/**")
+                        .permitAll()
+                        .anyRequest()
+                        .authenticated()
+                )
+                .sessionManagement((session)->session
+                        .sessionCreationPolicy(SessionCreationPolicy.STATELESS)
+                )
+                .authenticationProvider(authenticationProvider)
+                .addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);
+
+        return http.build();
+    }
+}

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Controller/GeneralController.java

@@ -0,0 +1,34 @@
+package com.alwinsimon.UserManagementJavaSpringBoot.Controller;
+
+import org.springframework.web.bind.annotation.CrossOrigin;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+import java.time.ZoneOffset;
+import java.time.ZonedDateTime;
+import java.time.format.DateTimeFormatter;
+import java.util.HashMap;
+import java.util.Map;
+
+@RestController
+@RequestMapping("/health")
+@CrossOrigin("*")
+public class GeneralController {
+
+    @GetMapping("/")
+    public Map<String, String> getServerStatus() {
+
+        // Get the current date and time in UTC
+        ZonedDateTime currentDateTimeUtc = ZonedDateTime.now(ZoneOffset.UTC);
+        DateTimeFormatter formatter = DateTimeFormatter.ofPattern("EEEE, MMMM dd, yyyy, hh:mm:ss a");
+        String formattedDateTime = currentDateTimeUtc.format(formatter);
+
+        // Create a Map for the response
+        Map<String, String> response = new HashMap<>();
+        response.put("status", "SERVER and Systems are Up & Running.");
+        response.put("dateTime", formattedDateTime);
+
+        return response;
+    }
+}

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Model/Role.java

@@ -0,0 +1,6 @@
+package com.alwinsimon.UserManagementJavaSpringBoot.Model;
+
+public enum Role {
+    USER,
+    ADMIN
+}

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Model/User.java

@@ -1,16 +1,66 @@
 package com.alwinsimon.UserManagementJavaSpringBoot.Model;
 
 import jakarta.persistence.*;
+import lombok.Data;
+import lombok.AllArgsConstructor;
+import lombok.NoArgsConstructor;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
 
+import java.util.Collection;
+import java.util.List;
+
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
 @Entity
 @Table(name = "_user",uniqueConstraints = {@UniqueConstraint(columnNames = "email")})
-public class User {
+public class User implements UserDetails {
     @Id
-    @GeneratedValue(strategy = GenerationType.IDENTITY)
+    @GeneratedValue
     private Long id;
-    private String firstname;
-    private String lastname;
+    private String name;
+    private String gender;
     @Column(unique = true)
     private String email;
     private String password;
+
+    @Enumerated(EnumType.STRING)
+    private Role role;
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        return List.of(new SimpleGrantedAuthority(role.name()));
+    }
+
+    @Override
+    public String getUsername() {
+        return email;
+    }
+
+    @Override
+    public String getPassword() {
+        return password;
+    }
+
+    @Override
+    public boolean isAccountNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isAccountNonLocked() {
+        return true;
+    }
+
+    @Override
+    public boolean isCredentialsNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isEnabled() {
+        return true;
+    }
 }

src/main/java/com/alwinsimon/UserManagementJavaSpringBoot/Repository/UserRepository.java

@@ -1,7 +1,11 @@
 package com.alwinsimon.UserManagementJavaSpringBoot.Repository;
 
+import java.util.Optional;
 import com.alwinsimon.UserManagementJavaSpringBoot.Model.User;
 import org.springframework.data.jpa.repository.JpaRepository;
 
+
 public interface UserRepository extends JpaRepository <User, Long> {
+    Optional<User> findByEmail(String email);
+
 }