EMSI/CatalogueService
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Compare commits

base: EMSI:0b4680a7b52e870a573bd85d41db1c9631ba2e61
Branches Tags
EMSI:master
...
compare: EMSI:bacaf6af8ef4853ed7df09b2fb01df1ba0bfcffe
Branches Tags
EMSI:master

2 Commits
0b4680a7b5 ... bacaf6af8e

Author SHA1 Message Date
AbdellahASKI
bacaf6af8e Added security configs 2019-01-07 01:41:31 +01:00
AbdellahASKI
d521809bb1 Fixed the dumb error 2019-01-06 21:53:59 +01:00
6 changed files with 92 additions and 7 deletions
Expand all files Collapse all files

23
src/main/java/me/aski/catalogueservice/CatalogueServiceApplication.java
View File

@@ -3,6 +3,7 @@ package me.aski.catalogueservice;
import me.aski.catalogueservice.dao.CategoryRepository; import me.aski.catalogueservice.dao.CategoryRepository;
import me.aski.catalogueservice.dao.ProductRepository; import me.aski.catalogueservice.dao.ProductRepository;
import me.aski.catalogueservice.entities.Category; import me.aski.catalogueservice.entities.Category;
import me.aski.catalogueservice.entities.Product;
import org.springframework.boot.CommandLineRunner; import org.springframework.boot.CommandLineRunner;
import org.springframework.boot.SpringApplication; import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.SpringBootApplication; import org.springframework.boot.autoconfigure.SpringBootApplication;
@@ -23,12 +24,26 @@ public class CatalogueServiceApplication {
return args -> { return args -> {
categoryRepository.deleteAll(); categoryRepository.deleteAll();
Stream.of("C1 Ordinateur", "C2 Imprimantes").forEach(c -> { Stream.of("C1 Ordinateur", "C2 Imprimantes").forEach(c -> categoryRepository.save(new Category(c.split(" ")[0], c.split(" ")[1], new ArrayList<>())));
categoryRepository.save(new Category(c.split(" ")[0], c.split(" ")[1], new ArrayList<>()));
});
categoryRepository.findAll().forEach(System.out::println); categoryRepository.findAll().forEach(System.out::println);
Category c1 = categoryRepository.findById("C1").get();
productRepository.deleteAll();
Stream.of("P1", "P2", "P3").forEach(name -> {
Product p = productRepository.save(new Product(null, name, Math.random() * 1000, c1));
c1.getProducts().add(p);
categoryRepository.save(c1);
});
Category c2 = categoryRepository.findById("C2").get();
Stream.of("P4", "P5", "P6").forEach(name -> {
Product p = productRepository.save(new Product(null, name, Math.random() * 1000, c2));
c2.getProducts().add(p);
categoryRepository.save(c2);
});
productRepository.findAll().forEach(System.out::println);
}; };
} }
} }

3
src/main/java/me/aski/catalogueservice/dao/ProductRepository.java
View File

@@ -1,8 +1,9 @@
package me.aski.catalogueservice.dao; package me.aski.catalogueservice.dao;
import me.aski.catalogueservice.entities.Product;
import org.springframework.data.mongodb.repository.MongoRepository; import org.springframework.data.mongodb.repository.MongoRepository;
import org.springframework.data.rest.core.annotation.RepositoryRestResource; import org.springframework.data.rest.core.annotation.RepositoryRestResource;
@RepositoryRestResource @RepositoryRestResource
public interface ProductRepository extends MongoRepository<Process, String> { public interface ProductRepository extends MongoRepository<Product, String> {
} }

11
src/main/java/me/aski/catalogueservice/entities/Category.java
View File

@@ -3,7 +3,6 @@ package me.aski.catalogueservice.entities;
import lombok.AllArgsConstructor; import lombok.AllArgsConstructor;
import lombok.Data; import lombok.Data;
import lombok.NoArgsConstructor; import lombok.NoArgsConstructor;
import lombok.ToString;
import org.springframework.data.annotation.Id; import org.springframework.data.annotation.Id;
import org.springframework.data.mongodb.core.mapping.DBRef; import org.springframework.data.mongodb.core.mapping.DBRef;
import org.springframework.data.mongodb.core.mapping.Document; import org.springframework.data.mongodb.core.mapping.Document;
@@ -15,11 +14,19 @@ import java.util.Collection;
@Data @Data
@AllArgsConstructor @AllArgsConstructor
@NoArgsConstructor @NoArgsConstructor
@ToString //@ToString
public class Category { public class Category {
@Id @Id
private String id; private String id;
private String name; private String name;
@DBRef @DBRef
private Collection<Product> products = new ArrayList<>(); private Collection<Product> products = new ArrayList<>();
@Override
public String toString() {
return "Category{" +
"id='" + id + '\'' +
", name='" + name + '\'' +
'}';
}
} }

19
src/main/java/me/aski/catalogueservice/sec/JWTAuthorizationFilter.java Normal file
View File

@@ -0,0 +1,19 @@
package me.aski.catalogueservice.sec;
import org.springframework.web.filter.OncePerRequestFilter;
import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
public class JWTAuthorizationFilter extends OncePerRequestFilter {
@Override
protected void doFilterInternal(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, FilterChain filterChain) throws ServletException, IOException {
System.out.println("**********");
String jwt = httpServletRequest.getHeader("Authorization");
if (jwt == null) throw new RuntimeException("Not Authorized");
filterChain.doFilter(httpServletRequest, httpServletResponse);
}
}

42
src/main/java/me/aski/catalogueservice/sec/SecurityConfig.java Normal file
View File

@@ -0,0 +1,42 @@
package me.aski.catalogueservice.sec;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.config.http.SessionCreationPolicy;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.inMemoryAuthentication().
withUser("admin").password(passwordEncoder().encode("1234")).roles("ADMIN", "USER")
.and().
withUser("user").password(passwordEncoder().encode("1234")).roles("USER");
}
@Override
protected void configure(HttpSecurity http) throws Exception {
//super.configure(http);
http.csrf().disable();
http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS);
http.authorizeRequests().antMatchers("/categories/**").hasAuthority("ADMIN");
http.authorizeRequests().antMatchers("/products/**").hasAuthority("USER");
http.authorizeRequests().anyRequest().authenticated();
http.addFilterBefore(new JWTAuthorizationFilter(), UsernamePasswordAuthenticationFilter.class);
}
@Bean
public BCryptPasswordEncoder passwordEncoder() {
return new BCryptPasswordEncoder();
}
}

1
src/main/resources/application.properties
View File

@@ -0,0 +1 @@
spring.data.mongodb.uri=mongodb://localhost:27017/CatalogueService