Add AuthController and Payload definitions

Author: KydoDev

src/main/java/com/skia/lab/controllers/AuthController.java

@@ -0,0 +1,145 @@
+package com.skia.lab.controllers;
+
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+import java.util.stream.Collectors;
+
+import jakarta.validation.Valid;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.ResponseEntity;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.web.bind.annotation.CrossOrigin;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+import com.skia.lab.models.ERole;
+import com.skia.lab.models.Role;
+import com.skia.lab.models.User;
+import com.skia.lab.payload.request.LoginRequest;
+import com.skia.lab.payload.request.SignupRequest;
+import com.skia.lab.payload.response.JwtResponse;
+import com.skia.lab.payload.response.MessageResponse;
+import com.skia.lab.repository.RoleRepository;
+import com.skia.lab.repository.UserRepository;
+import com.skia.lab.security.jwt.JwtUtils;
+import com.skia.lab.security.services.UserDetailsImpl;
+
+
+
+
+
+
+@CrossOrigin(origins = "*", maxAge = 3600)
+@RestController
+@RequestMapping("/api/auth")
+public class AuthController {
+  @Autowired
+  AuthenticationManager authenticationManager;
+
+  @Autowired
+  UserRepository userRepository;
+
+  @Autowired
+  RoleRepository roleRepository;
+
+  @Autowired
+  PasswordEncoder encoder;
+
+  @Autowired
+  JwtUtils jwtUtils;
+
+  // /api/auth/signin
+  //   authenticate { username, pasword }
+  //   update SecurityContext using Authentication object
+  //   generate JWT
+  //   get UserDetails from Authentication object
+  //   response contains JWT and UserDetails data
+  @PostMapping("/signin")
+  public ResponseEntity<?> authenticateUser(@Valid @RequestBody LoginRequest loginRequest) {
+
+    Authentication authentication = authenticationManager.authenticate(
+        new UsernamePasswordAuthenticationToken(loginRequest.getUsername(), loginRequest.getPassword()));
+
+    SecurityContextHolder.getContext().setAuthentication(authentication);
+    String jwt = jwtUtils.generateJwtToken(authentication);
+    
+    UserDetailsImpl userDetails = (UserDetailsImpl) authentication.getPrincipal();    
+    List<String> roles = userDetails.getAuthorities().stream()
+        .map(item -> item.getAuthority())
+        .collect(Collectors.toList());
+
+    return ResponseEntity.ok(new JwtResponse(jwt, 
+                         userDetails.getId(), 
+                         userDetails.getUsername(), 
+                         userDetails.getEmail(), 
+                         roles));
+  }
+
+
+// /api/auth/signup
+//   check existing username/email
+//   create new User (with ROLE_USER if not specifying role)
+//   save User to database using UserRepository
+  @PostMapping("/signup")
+  public ResponseEntity<?> registerUser(@Valid @RequestBody SignupRequest signUpRequest) {
+    if (userRepository.existsByUsername(signUpRequest.getUsername())) {
+      return ResponseEntity
+          .badRequest()
+          .body(new MessageResponse("Error: Username is already taken!"));
+    }
+
+    if (userRepository.existsByEmail(signUpRequest.getEmail())) {
+      return ResponseEntity
+          .badRequest()
+          .body(new MessageResponse("Error: Email is already in use!"));
+    }
+
+    // Create new user's account
+    User user = new User(signUpRequest.getUsername(), 
+               signUpRequest.getEmail(),
+               encoder.encode(signUpRequest.getPassword()));
+
+    Set<String> strRoles = signUpRequest.getRole();
+    Set<Role> roles = new HashSet<>();
+
+    if (strRoles == null) {
+      Role userRole = roleRepository.findByName(ERole.ROLE_USER)
+          .orElseThrow(() -> new RuntimeException("Error: Role is not found."));
+      roles.add(userRole);
+    } else {
+      strRoles.forEach(role -> {
+        switch (role) {
+        case "admin":
+          Role adminRole = roleRepository.findByName(ERole.ROLE_ADMIN)
+              .orElseThrow(() -> new RuntimeException("Error: Role is not found."));
+          roles.add(adminRole);
+
+          break;
+        case "mod":
+          Role modRole = roleRepository.findByName(ERole.ROLE_MODERATOR)
+              .orElseThrow(() -> new RuntimeException("Error: Role is not found."));
+          roles.add(modRole);
+
+          break;
+        default:
+          Role userRole = roleRepository.findByName(ERole.ROLE_USER)
+              .orElseThrow(() -> new RuntimeException("Error: Role is not found."));
+          roles.add(userRole);
+        }
+      });
+    }
+
+    user.setRoles(roles);
+    userRepository.save(user);
+
+    return ResponseEntity.ok(new MessageResponse("User registered successfully!"));
+  }
+}

src/main/java/com/skia/lab/controllers/TestController.java

@@ -0,0 +1,41 @@
+package com.skia.lab.controllers;
+
+import org.springframework.security.access.prepost.PreAuthorize;
+import org.springframework.web.bind.annotation.CrossOrigin;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+
+// There are 4 APIs:
+// – /api/test/all for public access
+// – /api/test/user for users has ROLE_USER or ROLE_MODERATOR or ROLE_ADMIN or ROLE_GOD
+// – /api/test/mod for users has ROLE_MODERATOR
+// – /api/test/admin for users has ROLE_ADMIN
+@CrossOrigin(origins = "*", maxAge = 3600)
+@RestController
+@RequestMapping("/api/test")
+public class TestController {
+  @GetMapping("/all")
+  public String allAccess() {
+    return "Public Content.";
+  }
+
+  @GetMapping("/user")
+  @PreAuthorize("hasRole('USER') or hasRole('MODERATOR') or hasRole('ADMIN') or hasRole('GOD')")
+  public String userAccess() {
+    return "User Content.";
+  }
+
+  @GetMapping("/mod")
+  @PreAuthorize("hasRole('MODERATOR')")
+  public String moderatorAccess() {
+    return "Moderator Board.";
+  }
+
+  @GetMapping("/admin")
+  @PreAuthorize("hasRole('ADMIN')or hasRole('GOD')")
+  public String adminAccess() {
+    return "Admin Board.";
+  }
+}

src/main/java/com/skia/lab/models/ERole.java

@@ -1,7 +1,7 @@
 package com.skia.lab.models;
 
 public enum ERole {
-  ROLE_VIEWWR,
+  ROLE_VIEWER,
   ROLE_USER,
   ROLE_MODERATOR,
   ROLE_ADMIN,

src/main/java/com/skia/lab/payload/request/LoginRequest.java

@@ -0,0 +1,27 @@
+package com.skia.lab.payload.request;
+
+import jakarta.validation.constraints.NotBlank;
+
+public class LoginRequest {
+	@NotBlank
+  private String username;
+
+	@NotBlank
+	private String password;
+
+	public String getUsername() {
+		return username;
+	}
+
+	public void setUsername(String username) {
+		this.username = username;
+	}
+
+	public String getPassword() {
+		return password;
+	}
+
+	public void setPassword(String password) {
+		this.password = password;
+	}
+}

src/main/java/com/skia/lab/payload/request/SignupRequest.java

@@ -0,0 +1,54 @@
+package com.skia.lab.payload.request;
+
+import java.util.Set;
+
+import jakarta.validation.constraints.*;
+
+public class SignupRequest {
+  @NotBlank
+  @Size(min = 3, max = 20)
+  private String username;
+
+  @NotBlank
+  @Size(max = 50)
+  @Email
+  private String email;
+
+  private Set<String> role;
+
+  @NotBlank
+  @Size(min = 6, max = 40)
+  private String password;
+
+  public String getUsername() {
+    return username;
+  }
+
+  public void setUsername(String username) {
+    this.username = username;
+  }
+
+  public String getEmail() {
+    return email;
+  }
+
+  public void setEmail(String email) {
+    this.email = email;
+  }
+
+  public String getPassword() {
+    return password;
+  }
+
+  public void setPassword(String password) {
+    this.password = password;
+  }
+
+  public Set<String> getRole() {
+    return this.role;
+  }
+
+  public void setRole(Set<String> role) {
+    this.role = role;
+  }
+}

src/main/java/com/skia/lab/payload/response/JwtResponse.java

@@ -0,0 +1,64 @@
+package com.skia.lab.payload.response;
+
+import java.util.List;
+
+public class JwtResponse {
+  private String token;
+  private String type = "Bearer";
+  private Long id;
+  private String username;
+  private String email;
+  private List<String> roles;
+
+  public JwtResponse(String accessToken, Long id, String username, String email, List<String> roles) {
+    this.token = accessToken;
+    this.id = id;
+    this.username = username;
+    this.email = email;
+    this.roles = roles;
+  }
+
+  public String getAccessToken() {
+    return token;
+  }
+
+  public void setAccessToken(String accessToken) {
+    this.token = accessToken;
+  }
+
+  public String getTokenType() {
+    return type;
+  }
+
+  public void setTokenType(String tokenType) {
+    this.type = tokenType;
+  }
+
+  public Long getId() {
+    return id;
+  }
+
+  public void setId(Long id) {
+    this.id = id;
+  }
+
+  public String getEmail() {
+    return email;
+  }
+
+  public void setEmail(String email) {
+    this.email = email;
+  }
+
+  public String getUsername() {
+    return username;
+  }
+
+  public void setUsername(String username) {
+    this.username = username;
+  }
+
+  public List<String> getRoles() {
+    return roles;
+  }
+}

src/main/java/com/skia/lab/payload/response/MessageResponse.java

@@ -0,0 +1,17 @@
+package com.skia.lab.payload.response;
+
+public class MessageResponse {
+  private String message;
+
+  public MessageResponse(String message) {
+    this.message = message;
+  }
+
+  public String getMessage() {
+    return message;
+  }
+
+  public void setMessage(String message) {
+    this.message = message;
+  }
+}