Initial Commit

rajsingha · rajsingha · commit a9e7f1c9cd5d · 2020-04-26T21:29:29.000+05:30
diff --git a/pom.xml b/pom.xml
@@ -24,6 +24,11 @@
 			<artifactId>spring-boot-starter-web</artifactId>
 		</dependency>
 
+		<dependency>
+			<groupId>com.fasterxml.jackson.dataformat</groupId>
+			<artifactId>jackson-dataformat-xml</artifactId>
+		</dependency>
+
 		<dependency>
 			<groupId>org.springframework.boot</groupId>
 			<artifactId>spring-boot-starter-data-jpa</artifactId>
diff --git a/src/main/java/com/webservice/mobile/app/MobileAppWebServicesApplication.java b/src/main/java/com/webservice/mobile/app/MobileAppWebServicesApplication.java
@@ -1,5 +1,6 @@
 package com.webservice.mobile.app;
 
+import com.webservice.mobile.app.security.AppProperties;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.context.annotation.Bean;
@@ -22,4 +23,9 @@ public SpringApplicationContext springApplicationContext(){
 		return new SpringApplicationContext();
 	}
 
+	@Bean(name = "AppProperties")
+	public AppProperties getAppProperties(){
+		return new AppProperties();
+	}
+
 }
diff --git a/src/main/java/com/webservice/mobile/app/SpringApplicationContext.java b/src/main/java/com/webservice/mobile/app/SpringApplicationContext.java
@@ -1,8 +1,10 @@
 package com.webservice.mobile.app;
 
+import com.webservice.mobile.app.security.AppProperties;
 import org.springframework.beans.BeansException;
 import org.springframework.context.ApplicationContext;
 import org.springframework.context.ApplicationContextAware;
+import org.springframework.context.annotation.Bean;
 
 public class SpringApplicationContext implements ApplicationContextAware {
 
@@ -16,4 +18,6 @@ public void setApplicationContext(ApplicationContext applicationContext) throws
     public static Object getBean(String beanName){
         return CONTEXT.getBean(beanName);
     }
+
+
 }
diff --git a/src/main/java/com/webservice/mobile/app/exceptions/UserServiceException.java b/src/main/java/com/webservice/mobile/app/exceptions/UserServiceException.java
@@ -0,0 +1,12 @@
+package com.webservice.mobile.app.exceptions;
+
+import com.webservice.mobile.app.service.UserService;
+
+public class UserServiceException extends RuntimeException{
+
+    private static final long serialVersionUID = 134877110171435607L;
+
+    public UserServiceException(String message){
+        super(message);
+    }
+}
diff --git a/src/main/java/com/webservice/mobile/app/io/repositories/UserRepository.java b/src/main/java/com/webservice/mobile/app/io/repositories/UserRepository.java
@@ -10,4 +10,5 @@ public interface UserRepository extends CrudRepository<UserEntity,Long> {
 
     UserEntity findUserByEmail(String email);
 
+    UserEntity findByUserId(String userId);
 }
diff --git a/src/main/java/com/webservice/mobile/app/security/AppProperties.java b/src/main/java/com/webservice/mobile/app/security/AppProperties.java
@@ -0,0 +1,18 @@
+package com.webservice.mobile.app.security;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.core.env.Environment;
+import org.springframework.stereotype.Component;
+
+@Component
+public class AppProperties {
+
+    @Autowired
+    private Environment environment;
+
+    public String  getTokenSecret(){
+
+        return environment.getProperty("tokenSecret");
+    }
+}
diff --git a/src/main/java/com/webservice/mobile/app/security/AuthenticationFilter.java b/src/main/java/com/webservice/mobile/app/security/AuthenticationFilter.java
@@ -64,7 +64,7 @@ protected void successfulAuthentication(HttpServletRequest request,
         String token = Jwts.builder()
                 .setSubject(userName)
                 .setExpiration(new Date(System.currentTimeMillis()+SecurityConstants.EXPIRATION_TIME))
-                .signWith(SignatureAlgorithm.HS512,SecurityConstants.TOKEN_SECRET)
+                .signWith(SignatureAlgorithm.HS512,SecurityConstants.getTokenSecret())
                 .compact();
 
         UserService userService = (UserService) SpringApplicationContext.getBean("userServiceImpl");
diff --git a/src/main/java/com/webservice/mobile/app/security/AuthorizationFilter.java b/src/main/java/com/webservice/mobile/app/security/AuthorizationFilter.java
@@ -0,0 +1,63 @@
+package com.webservice.mobile.app.security;
+
+
+import io.jsonwebtoken.Jwts;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
+
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.util.ArrayList;
+
+public class AuthorizationFilter extends BasicAuthenticationFilter {
+
+    public AuthorizationFilter (AuthenticationManager authenticationManager){
+        super(authenticationManager);
+    }
+
+    @Override
+    protected void doFilterInternal(HttpServletRequest request,
+                                    HttpServletResponse response,
+                                    FilterChain chain) throws IOException,
+            ServletException {
+
+        String header = request.getHeader(SecurityConstants.HEADER_STRING);
+        if (header == null|| !header.startsWith(SecurityConstants.TOKEN_PREFIX)){
+            chain.doFilter(request,response);
+            return;
+        }
+        UsernamePasswordAuthenticationToken authenticationToken =getAuthentication(request);
+        SecurityContextHolder.getContext().setAuthentication(authenticationToken);
+        chain.doFilter(request,response);
+
+
+
+    }
+
+    private UsernamePasswordAuthenticationToken getAuthentication(HttpServletRequest request) {
+        String token = request.getHeader(SecurityConstants.HEADER_STRING);
+        if (token != null) {
+            token = token.replace(SecurityConstants.TOKEN_PREFIX, "");
+
+            String user = Jwts.parser()
+                    .setSigningKey(SecurityConstants.getTokenSecret())
+                    .parseClaimsJws(token)
+                    .getBody()
+                    .getSubject();
+
+            if (user != null) {
+                return new UsernamePasswordAuthenticationToken(user, null, new ArrayList<>());
+
+            }
+
+            return null;
+        }
+        return null;
+    }
+
+}
diff --git a/src/main/java/com/webservice/mobile/app/security/SecurityConstants.java b/src/main/java/com/webservice/mobile/app/security/SecurityConstants.java
@@ -1,9 +1,17 @@
 package com.webservice.mobile.app.security;
 
+import com.webservice.mobile.app.SpringApplicationContext;
+
+
 public class SecurityConstants {
     public static final long EXPIRATION_TIME = 864000000; //Validity  10 Days
     public static final String TOKEN_PREFIX = "Bearer";
     public static final String HEADER_STRING = "Authorization";
     public static final String SIGN_UP_URL = "/users";
-    public static final String TOKEN_SECRET = "jf9i4jgu83nfl0";
+
+    public static String getTokenSecret(){
+        AppProperties appProperties = (AppProperties) SpringApplicationContext.
+                getBean("AppProperties");
+        return appProperties.getTokenSecret();
+    }
 }
diff --git a/src/main/java/com/webservice/mobile/app/security/WebSecurity.java b/src/main/java/com/webservice/mobile/app/security/WebSecurity.java
@@ -1,11 +1,13 @@
 package com.webservice.mobile.app.security;
 
+
 import com.webservice.mobile.app.service.UserService;
 import org.springframework.http.HttpMethod;
 import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.http.SessionCreationPolicy;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 
 @EnableWebSecurity
@@ -22,12 +24,21 @@ public WebSecurity(UserService userService, BCryptPasswordEncoder bCryptPassword
     protected void configure(HttpSecurity httpSecurity)throws Exception{
         httpSecurity.csrf().disable().authorizeRequests()
                 .antMatchers(HttpMethod.POST,SecurityConstants.SIGN_UP_URL)
-                .permitAll().anyRequest().authenticated().and()
-                .addFilter(new AuthenticationFilter(authenticationManager()));
+                .permitAll().anyRequest().authenticated()
+                .and()
+                .addFilter(getAuthenticationFilter())
+                .addFilter(new AuthorizationFilter(authenticationManager()))
+                .sessionManagement()
+                .sessionCreationPolicy(SessionCreationPolicy.STATELESS);
     }
 
     @Override
     protected void configure(AuthenticationManagerBuilder auth) throws Exception {
         auth.userDetailsService(userService).passwordEncoder(bCryptPasswordEncoder);
     }
+    public AuthenticationFilter getAuthenticationFilter() throws Exception{
+        final AuthenticationFilter filter = new AuthenticationFilter(authenticationManager());
+        filter.setFilterProcessesUrl("/users/login");
+        return filter;
+    }
 }
diff --git a/src/main/java/com/webservice/mobile/app/service/UserService.java b/src/main/java/com/webservice/mobile/app/service/UserService.java
@@ -6,4 +6,5 @@
 public interface UserService extends UserDetailsService {
     UserDTO createUser(UserDTO userDTO);
     UserDTO getUser(String email);
+    UserDTO getUserByUserId(String userId);
 }
diff --git a/src/main/java/com/webservice/mobile/app/service/impl/UserServiceImpl.java b/src/main/java/com/webservice/mobile/app/service/impl/UserServiceImpl.java
@@ -60,6 +60,17 @@ public UserDTO getUser(String email) {
 
     }
 
+    @Override
+    public UserDTO getUserByUserId(String userId) {
+
+        UserDTO returnValue = new UserDTO();
+        UserEntity userEntity = userRepository.findByUserId(userId);
+        if (userEntity == null) throw new UsernameNotFoundException(userId);
+        BeanUtils.copyProperties(userEntity,returnValue);
+
+        return returnValue;
+    }
+
     @Override
     public UserDetails loadUserByUsername(String email) throws UsernameNotFoundException {
         UserEntity userEntity= userRepository.findUserByEmail(email);
diff --git a/src/main/java/com/webservice/mobile/app/ui/controller/UserController.java b/src/main/java/com/webservice/mobile/app/ui/controller/UserController.java
@@ -1,11 +1,14 @@
 package com.webservice.mobile.app.ui.controller;
 
+import com.webservice.mobile.app.exceptions.UserServiceException;
 import com.webservice.mobile.app.service.UserService;
 import com.webservice.mobile.app.shared.dto.UserDTO;
 import com.webservice.mobile.app.ui.model.request.UserDetailsRequestModel;
+import com.webservice.mobile.app.ui.model.response.ErrorMessages;
 import com.webservice.mobile.app.ui.model.response.UserRest;
 import org.springframework.beans.BeanUtils;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.MediaType;
 import org.springframework.web.bind.annotation.*;
 
 @RestController
@@ -15,16 +18,29 @@ public class UserController {
     @Autowired
     UserService userService;
 
-    @GetMapping
-    public String getUser(){
-        return "get user was called";
+    @GetMapping(path = "/{id}", produces = {MediaType.APPLICATION_XML_VALUE,
+            MediaType.APPLICATION_JSON_VALUE})
+    public UserRest getUser(@PathVariable String id){
+        UserRest returnValue = new UserRest();
+        UserDTO userDTO = userService.getUserByUserId(id);
+        BeanUtils.copyProperties(userDTO,returnValue);
+        return returnValue;
     }
 
-    @PostMapping
-    public UserRest createUser(@RequestBody UserDetailsRequestModel userDetails){
+    @PostMapping(consumes = {MediaType.APPLICATION_XML_VALUE,
+            MediaType.APPLICATION_JSON_VALUE},
+            produces = {MediaType.APPLICATION_XML_VALUE,
+            MediaType.APPLICATION_JSON_VALUE}
+            )
+    public UserRest createUser(@RequestBody UserDetailsRequestModel userDetails) throws Exception {
 
 
         UserRest returnValue = new UserRest();
+
+
+        if (userDetails.getFirstName().isEmpty()) throw new
+                UserServiceException(ErrorMessages.MISSING_REQUIRED_FIELD.getErrorMessage());
+
         UserDTO userDTO = new UserDTO();
         BeanUtils.copyProperties(userDetails,userDTO);
 
diff --git a/src/main/java/com/webservice/mobile/app/ui/model/response/ErrorMessages.java b/src/main/java/com/webservice/mobile/app/ui/model/response/ErrorMessages.java
@@ -0,0 +1,27 @@
+package com.webservice.mobile.app.ui.model.response;
+
+public enum ErrorMessages {
+
+    MISSING_REQUIRED_FIELD("Missing required field, Please check documentation for required fields"),
+    RECORD_ALREADY_EXISTS("Record already exists"),
+    INTERNAL_SERVER_DOWN("Internal Server Down"),
+    NO_RECORD_FOUND("Record with provided id is not found"),
+    AUTHENTICATION_FAILED("Authentication failed"),
+    COULD_NOT_UPDATE_RECORD("Could not update record"),
+    COULD_NOT_DELETE_RECORD("Could not delete record"),
+    EMAIL_ADDRESS_NOT_VERIFIED("Email address could not be verified");
+
+    private String errorMessage;
+
+    ErrorMessages(String errorMessage) {
+        this.errorMessage =errorMessage;
+    }
+
+    public String getErrorMessage() {
+        return errorMessage;
+    }
+
+    public void setErrorMessage(String errorMessage) {
+        this.errorMessage = errorMessage;
+    }
+}
diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties
@@ -2,4 +2,4 @@ spring.datasource.username=raj
 spring.datasource.password=raj
 spring.datasource.url=jdbc:mysql://localhost:3306/photo_app
 spring.jpa.hibernate.ddl-auto=update
-
+tokenSecret = jf9i4jgu83nfl0;

Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,6 @@`
`1`	`1`	`package com.webservice.mobile.app;`
`2`	`2`
	`3`	`+import com.webservice.mobile.app.security.AppProperties;`
`3`	`4`	`import org.springframework.boot.SpringApplication;`
`4`	`5`	`import org.springframework.boot.autoconfigure.SpringBootApplication;`
`5`	`6`	`import org.springframework.context.annotation.Bean;`
`@@ -22,4 +23,9 @@ public SpringApplicationContext springApplicationContext(){`
`22`	`23`	`return new SpringApplicationContext();`
`23`	`24`	`}`
`24`	`25`
	`26`	`+ @Bean(name = "AppProperties")`
	`27`	`+ public AppProperties getAppProperties(){`
	`28`	`+ return new AppProperties();`
	`29`	`+ }`
	`30`	`+`
`25`	`31`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,8 +1,10 @@`
`1`	`1`	`package com.webservice.mobile.app;`
`2`	`2`
	`3`	`+import com.webservice.mobile.app.security.AppProperties;`
`3`	`4`	`import org.springframework.beans.BeansException;`
`4`	`5`	`import org.springframework.context.ApplicationContext;`
`5`	`6`	`import org.springframework.context.ApplicationContextAware;`
	`7`	`+import org.springframework.context.annotation.Bean;`
`6`	`8`
`7`	`9`	`public class SpringApplicationContext implements ApplicationContextAware {`
`8`	`10`
`@@ -16,4 +18,6 @@ public void setApplicationContext(ApplicationContext applicationContext) throws`
`16`	`18`	`public static Object getBean(String beanName){`
`17`	`19`	`return CONTEXT.getBean(beanName);`
`18`	`20`	`}`
	`21`	`+`
	`22`	`+`
`19`	`23`	`}`
Original file line number	Diff line number	Diff line change
`@@ -10,4 +10,5 @@ public interface UserRepository extends CrudRepository<UserEntity,Long> {`
`10`	`10`
`11`	`11`	`UserEntity findUserByEmail(String email);`
`12`	`12`
	`13`	`+ UserEntity findByUserId(String userId);`
`13`	`14`	`}`