Skip to content

Commit

Permalink
fix: replace Iterable with List, fix @PreAuthorize
Browse files Browse the repository at this point in the history
  • Loading branch information
Nhat-Original committed May 2, 2024
1 parent bfc103c commit 7530255
Show file tree
Hide file tree
Showing 6 changed files with 109 additions and 103 deletions.
2 changes: 1 addition & 1 deletion doc/example-feature/TaskController.java
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ public class TaskController {
private TaskService taskService;

@GetMapping
public Iterable<Task> getTaskList() {
public List<Task> getTaskList() {
return taskService.getTaskList();
}

Expand Down
2 changes: 1 addition & 1 deletion doc/example-feature/TaskService.java
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ public class TaskService {
@Autowired
private TaskRepository taskRepository;

public Iterable<Task> getTaskList() {
public List<Task> getTaskList() {
return taskRepository.findAll();
}

Expand Down
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
package com.github.nhatoriginal.spring.config;

import org.springframework.http.HttpMethod;
import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
import org.springframework.security.config.Customizer;
Expand Down Expand Up @@ -34,68 +35,70 @@
@Configuration
@EnableWebSecurity
@RequiredArgsConstructor
@EnableMethodSecurity
@EnableMethodSecurity(prePostEnabled = true)
public class SecurityConfig {
private final JwtAuthenticationFilter jwtAuthFilter;
private final UserService userService;
@Bean
public SecurityFilterChain securityFilterChain(HttpSecurity http, AuthenticationProvider authenticationProvider) throws Exception {
return http
.cors(corsConfigurationSource())
.securityMatcher("/api/**")
.authorizeHttpRequests(req ->
req.requestMatchers("/api/v1/auth/**")
.permitAll()
.anyRequest()
.authenticated()
)
.sessionManagement(session -> session.sessionCreationPolicy(STATELESS))
.authenticationProvider(authenticationProvider)
.addFilterBefore(jwtAuthFilter, UsernamePasswordAuthenticationFilter.class)
.logout(logout ->
logout.logoutUrl("/api/v1/auth/logout")).build();
}
private final JwtAuthenticationFilter jwtAuthFilter;
private final UserService userService;

@Bean
public SecurityFilterChain securityFilterChain(HttpSecurity http, AuthenticationProvider authenticationProvider)
throws Exception {
return http
.cors(corsConfigurationSource())
.securityMatcher("/api/**")
.authorizeHttpRequests(req -> req.requestMatchers("/api/v1/auth/**")
.permitAll()
.anyRequest()
.authenticated())
.sessionManagement(session -> session.sessionCreationPolicy(STATELESS))
.authenticationProvider(authenticationProvider)
.addFilterBefore(jwtAuthFilter, UsernamePasswordAuthenticationFilter.class)
.logout(logout -> logout.logoutUrl("/api/v1/auth/logout")).build();
}

@Bean
public PasswordEncoder passwordEncoder() {
return new BCryptPasswordEncoder();
}

@Bean
public PasswordEncoder passwordEncoder() {
return new BCryptPasswordEncoder();
}
@Bean
public Customizer<CorsConfigurer<HttpSecurity>> corsConfigurationSource() {
return cors -> {
CorsConfiguration configuration = new CorsConfiguration();
configuration.setAllowedOrigins(List.of("*"));
configuration.setAllowedMethods(Arrays.asList(
HttpMethod.GET.name(),
HttpMethod.HEAD.name(),
HttpMethod.POST.name(),
HttpMethod.PUT.name(),
HttpMethod.DELETE.name(),
HttpMethod.OPTIONS.name(),
HttpMethod.PATCH.name()
)
@Bean
public Customizer<CorsConfigurer<HttpSecurity>> corsConfigurationSource() {
return cors -> {
CorsConfiguration configuration = new CorsConfiguration();
configuration.setAllowedOrigins(List.of("*"));
configuration.setAllowedMethods(Arrays.asList(
HttpMethod.GET.name(),
HttpMethod.HEAD.name(),
HttpMethod.POST.name(),
HttpMethod.PUT.name(),
HttpMethod.DELETE.name(),
HttpMethod.OPTIONS.name(),
HttpMethod.PATCH.name())

);
configuration.setAllowedHeaders(List.of("Authorization ", "Cache-Control", "Content-Type", "Origin", "Accept",
"X-Requested-With", "Access-Control-Allow-Origin", "Access-Control-Allow-Headers",
"Access-Control-Request-Method", "Access-Control-Request-Headers", "Access-Control-Allow-Credentials",
"Access-Control-Expose-Headers", "Access-Control-Max-Age"));
configuration.setAllowCredentials(true);
UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
source.registerCorsConfiguration("/**", configuration);
cors.configurationSource(source);
};
}

);
configuration.setAllowedHeaders(List.of("Authorization ", "Cache-Control", "Content-Type", "Origin", "Accept", "X-Requested-With", "Access-Control-Allow-Origin", "Access-Control-Allow-Headers", "Access-Control-Request-Method", "Access-Control-Request-Headers", "Access-Control-Allow-Credentials", "Access-Control-Expose-Headers", "Access-Control-Max-Age"));
configuration.setAllowCredentials(true);
UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
source.registerCorsConfiguration("/**", configuration);
cors.configurationSource(source);
};
}
@Bean
public AuthenticationProvider authenticationProvider(PasswordEncoder passwordEncoder) {
DaoAuthenticationProvider authProvider = new DaoAuthenticationProvider();
authProvider.setUserDetailsService(userService);
authProvider.setPasswordEncoder(passwordEncoder);
return authProvider;
}
@Bean
public AuthenticationProvider authenticationProvider(PasswordEncoder passwordEncoder) {
DaoAuthenticationProvider authProvider = new DaoAuthenticationProvider();
authProvider.setUserDetailsService(userService);
authProvider.setPasswordEncoder(passwordEncoder);
return authProvider;
}

@Bean
public AuthenticationManager authenticationManager(AuthenticationConfiguration config)
throws Exception {
return config.getAuthenticationManager();
}
@Bean
public AuthenticationManager authenticationManager(AuthenticationConfiguration config)
throws Exception {
return config.getAuthenticationManager();
}

}
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
package com.github.nhatoriginal.spring.controller;

import java.util.List;
import java.util.UUID;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.GetMapping;
Expand All @@ -17,7 +18,7 @@ public class MenuItemController {
private MenuItemService menuItemService;

@GetMapping(Endpoint.MenuItem.GET_ALL)
public Iterable<MenuItem> getMenuItemList() {
public List<MenuItem> getMenuItemList() {
return menuItemService.getMenuItemList();
}

Expand Down
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
package com.github.nhatoriginal.spring.security;

import org.springframework.security.core.authority.SimpleGrantedAuthority;
import com.github.nhatoriginal.spring.model.User;
import org.springframework.security.core.GrantedAuthority;
Expand All @@ -8,45 +9,44 @@
import java.util.Collections;

public class CustomUserDetails implements UserDetails {
private final User user;

public CustomUserDetails(User user) {
this.user = user;
}

@Override
public Collection<? extends GrantedAuthority> getAuthorities() {
return Collections.singleton(new SimpleGrantedAuthority(user.getRole().name()));
}


@Override
public String getPassword() {
return user.getHashedPassword();
}

@Override
public String getUsername() {
return user.getEmail();
}

@Override
public boolean isAccountNonExpired() {
return true;
}

@Override
public boolean isAccountNonLocked() {
return true;
}

@Override
public boolean isCredentialsNonExpired() {
return true;
}

@Override
public boolean isEnabled() {
return true;
}
private final User user;

public CustomUserDetails(User user) {
this.user = user;
}

@Override
public Collection<? extends GrantedAuthority> getAuthorities() {
return Collections.singleton(new SimpleGrantedAuthority("ROLE_" + user.getRole().name()));
}

@Override
public String getPassword() {
return user.getHashedPassword();
}

@Override
public String getUsername() {
return user.getEmail();
}

@Override
public boolean isAccountNonExpired() {
return true;
}

@Override
public boolean isAccountNonLocked() {
return true;
}

@Override
public boolean isCredentialsNonExpired() {
return true;
}

@Override
public boolean isEnabled() {
return true;
}
}
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,8 @@
import org.springframework.web.server.ResponseStatusException;
import com.github.nhatoriginal.spring.model.MenuItem;
import com.github.nhatoriginal.spring.repository.MenuItemRepository;

import java.util.List;
import java.util.UUID;
import org.springframework.http.HttpStatus;

Expand All @@ -13,7 +15,7 @@ public class MenuItemService {
@Autowired
private MenuItemRepository menuItemRepository;

public Iterable<MenuItem> getMenuItemList() {
public List<MenuItem> getMenuItemList() {
return menuItemRepository.findAll();
}

Expand Down

0 comments on commit 7530255

Please sign in to comment.