____ _ _ _ _ _ _
| _ \ | | | | (_) | | (_) (_)
| |_) | __ _ | | | | _ ___ | |_ _ ___ _ _ __ ___
| _ < / _` | | | | | | | / __| | __| | | / __| | | | '_ \ / __|
| |_) | | (_| | | | | | | | \__ \ | |_ | | | (__ | | | | | | | (__ _
|____/ \__,_| |_| |_| |_| |___/ \__| |_| \___| |_| |_| |_| \___| (_)
.png)
# clone our repo
# --depth 1 removes all but one .git commit history
git clone --depth 1 https://github.com/NABEEL-AHMED-JAMIL/Api-Test-with-swagger_2
# change directory to our repo
cd Api-Test-with-swagger_2
# install the repo with mvn
mvn install
# start the server
mvn spring-boot:run
# the app will be running on port 8080
# there are two built-in user accounts to demonstrate the differing levels of access to the endpoints:
# - User - user:123
# - Admin - admin:123springboot-jwt-starter/
├──src/ * our source files
│ ├──main
│ │ ├──com.example.demo
│ │ │ ├──exception
│ │ │ │ └── DataFormatException.java
│ │ │ │ └── ResourceNotFoundException.java
│ │ │ ├──config
│ │ │ │ └── CachingConfig.java
│ │ │ │ └──SecurityConfigurer.java
│ │ │ │ └──SwaggerConfig.java
│ │ │ ├──model
│ │ │ │ ├──Authority.java
│ │ │ │ ├──CustomerTokenState.java
│ │ │ │ └──Product.java
│ │ │ │ └──Customer.java
│ │ │ │ └──RestErrorInfo.java
│ │ │ ├──repository
│ │ │ │ └──ProductRepository.java
│ │ │ │ └──CustomerRepository.java
│ │ │ ├──controller * rest endpoint folder
│ │ │ │ ├──AbstractRestHandler.java
│ │ │ │ ├──AuthenticationController.java
│ │ │ │ ├──CustomerController.java
│ │ │ │ ├──ICustomerController.java
│ │ │ │ ├──IProductController.java
│ │ │ │ ├──ProductController.java
│ │ │ ├──security
│ │ │ │ ├──auth
│ │ │ │ │ ├──JwtAuthenticationRequest.java
│ │ │ │ │ ├──LogoutSuccess.java
│ │ │ │ │ ├──RestAuthenticationEntryPoint.java
│ │ │ │ │ ├──TokenAuthenticationFilter.java
│ │ │ │ │ └──TokenBasedAuthentication.java
│ │ │ │ └──TokenHelper.java
│ │ │ ├──service
│ │ │ │ ├──customerservice
│ │ │ │ │ ├──CustomerService.java
│ │ │ │ │ └──CustomerServiceImpl.java
│ │ │ │ ├──fetchservice
│ │ │ │ │ └──FileFetchService.java
│ │ │ │ ├──productservice
│ │ │ │ │ ├─ProductService.java
│ │ │ │ │ └──ProductServiceImpl.java
│ │ │ │ └──UserService.java
│ │ │ └──Application.java
│ │ └──recources
│ │ ├──application.yml
│ │ └──application.properties
│ │ └──import.sql
│ │ └──ehcache.xml
│ │ └──banner.txt
│ └──test
└──pom.xml
- SecurityConfigurer.java: The server-side authentication configurations.
- application.yml: Application level properties i.e the token expire time, token secret etc. You can find a reference of all application properties here.
- JWT token TTL: JWT Tokens are configured to expire after 10 minutes, you can get a new token by signing in again.
- Using a different database: This Starter kit is using an embedded H2 database that is automatically configured by Spring Boot. If you want to connect to another database you have to specify the connection in the application.yml in the resource directory. Here is an example for a MySQL DB:
spring:
jpa:
hibernate:
# possible values: validate | update | create | create-drop
ddl-auto: create-drop
datasource:
url: jdbc:mysql://localhost/myDatabase
username: myUser
password: myPassword
driver-class-name: com.mysql.jdbc.Driver
Hint: For other databases like MySQL sequences don't work for ID generation. So you have to change the GenerationType in the entity beans to 'AUTO' or 'IDENTITY'.
JSON Web Tokens are an open, industry standard RFC 7519 method for representing claims securely between two parties. for more info, checkout https://jwt.io/
http://localhost:8080/swagger-ui.html for Check the out-put check the screen shot in screen-shot folder in project
-- password is 'password'
INSERT INTO Account (referenceId, username, password, enabled, credentialsexpired, expired, locked, version, createdBy, createdAt, updatedBy, updatedAt) VALUES ('a07bd221-3ecd-4893-a0f0-78d7c0fbf94e', 'user', '$2a$10$9/44Rne7kQqPXa0cY6NfG.3XzScMrCxFYjapoLq/wFmHz7EC9praK', true, false, false, false, 0, 'user', NOW(), NULL, NULL);
-- password is 'operations'
INSERT INTO Account (referenceId, username, password, enabled, credentialsexpired, expired, locked, version, createdBy, createdAt, updatedBy, updatedAt) VALUES ('7bd137c8-ab64-4a45-bf2d-d9bae3574622', 'operations', '$2a$10$CoMVfutnv1qZ.fNlHY1Na.rteiJhsDF0jB1o.76qXcfdWN6As27Zm', true, false, false, false, 0, 'user', NOW(), NULL, NULL);
INSERT INTO Role (id, code, label, ordinal, effectiveAt, expiresAt, createdAt) VALUES (1, 'ROLE_USER', 'User', 0, '2015-01-01 00:00:00', NULL, NOW());
INSERT INTO Role (id, code, label, ordinal, effectiveAt, expiresAt, createdAt) VALUES (2, 'ROLE_ADMIN', 'Admin', 1, '2015-01-01 00:00:00', NULL, NOW());
INSERT INTO Role (id, code, label, ordinal, effectiveAt, expiresAt, createdAt) VALUES (3, 'ROLE_SYSADMIN', 'System Admin', 2, '2015-01-01 00:00:00', NULL, NOW());
INSERT INTO AccountRole (accountId, roleId) SELECT a.id, r.id FROM Account a, Role r WHERE a.username = 'user' and r.id = 1;
INSERT INTO AccountRole (accountId, roleId) SELECT a.id, r.id FROM Account a, Role r WHERE a.username = 'operations' and r.id = 3;