Skip to content
/ stall-service Public

A Spring Boot 3 microservice for managing exhibition stalls with JWT security, Kafka integration, and comprehensive REST API.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ExhibitFlow/stall-service

BranchesTags

Repository files navigation

Stall Service

Spring Boot microservice for managing exhibition stalls with OAuth2/JWT authentication, Kafka event streaming, and PostgreSQL persistence.

Table of Contents

Quick Start

Using Docker (Recommended)

# Copy environment template
cp .env.template .env

# Start all services
docker-compose up -d

# Get authentication token
./get-token.sh

# Test API
curl -H "Authorization: Bearer <token>" http://localhost:8081/api/stalls

Service URLs:

📚 Documentation:

Architecture

┌─────────┐           ┌──────────────────┐           ┌───────────────┐
│ Client  │──(1)───>  │  Identity Service│──(2)───>  │               │
│         │  Login    │  Custom OAuth2   │  JWT      │ Stall Service │
│         │  Request  │  Auth Server     │  Token    │  (Protected)  │
└─────────┘           └──────────────────┘           └───────────────┘
      │                                                     │
      └────────────────(3)──────────────────────────────────┘
              API Request with Bearer Token
                          │
                          ▼
              ┌───────────────────────┐
              │     PostgreSQL DB     │
              │ (Stall + Identity)    │
              └───────────────────────┘
                          │
                          ▼
              ┌───────────────────────┐
              │    Kafka Broker       │
              │  (Event Streaming)    │
              └───────────────────────┘

Service Network

┌─────────────────────────────────────────┐
│         stall-network (bridge)          │
├─────────────────────────────────────────┤
│  ┌──────────┐    ┌──────────────┐       │
│  │ postgres │    │  zookeeper   │       │
│  └────┬─────┘    └──────┬───────┘       │
│       │                 │               │
│  ┌────┴──────────┐ ┌────┴───────┐       │
│  │identity-service│ │   kafka    │       │
│  └────┬──────────┘ └────┬───────┘       │
│       │                 │               │
│       └────────┬────────┘               │
│         ┌──────┴───────┐                │
│         │stall-service │                │
│         └──────────────┘                │
└─────────────────────────────────────────┘
     Exposed Ports:
     5432, 8080, 8081, 9092, 2181

Features

  • Stall CRUD operations with validation
  • Status workflow: AVAILABLE → HELD → RESERVED
  • Advanced filtering by status, size, location
  • Pagination and sorting
  • OAuth2/JWT authentication via Custom Identity Service
  • Kafka event publishing for state changes
  • PostgreSQL with Flyway migrations
  • Seeded sample data (39 stalls)
  • OpenAPI/Swagger documentation
  • Health checks and actuator endpoints
  • Comprehensive test coverage

Technology Stack

  • Java 17
  • Spring Boot 3.2.0
  • Spring Security OAuth2 Resource Server
  • Spring Data JPA
  • Spring Kafka
  • PostgreSQL 15
  • Custom Identity Service (Spring Authorization Server)
  • Flyway
  • Docker & Docker Compose
  • Kafka 3.6
  • SpringDoc OpenAPI
  • JUnit 5 & Mockito

Entity Model

Stall

Field Type Description
id Long Auto-generated ID
code String Unique stall code (e.g., "A-001")
size Enum SMALL, MEDIUM, LARGE
location String Physical location
price BigDecimal Rental price
status Enum AVAILABLE, HELD, RESERVED
createdAt Timestamp Creation time
updatedAt Timestamp Last update time

Status Workflow

AVAILABLE ──hold──> HELD ──reserve──> RESERVED
    ▲                 │                  │
    │                 └──────release─────┘
    └───────────────release──────────────┘

All state transitions are idempotent.

API Endpoints

Public Endpoints (No Auth Required)

GET /actuator/health          # Health check
GET /swagger-ui.html          # Swagger UI
GET /api-docs                 # OpenAPI spec

Protected Endpoints (Require JWT)

List & Filter Stalls

GET /api/stalls                                    # All stalls (paginated)
GET /api/stalls?page=0&size=10                     # Custom pagination
GET /api/stalls?status=AVAILABLE                   # Filter by status
GET /api/stalls?stallSize=MEDIUM                   # Filter by size
GET /api/stalls?location=Hall A                    # Filter by location
GET /api/stalls?status=AVAILABLE&stallSize=LARGE   # Combined filters

Get Individual Stalls

GET /api/stalls/1              # Get by ID
GET /api/stalls/code/A-001     # Get by code

Create Stall

POST /api/stalls
Content-Type: application/json

{
  "code": "A-001",
  "size": "MEDIUM",
  "location": "Hall A - North Wing",
  "price": 1000.00
}

Update Stall

PUT /api/stalls/1
Content-Type: application/json

{
  "location": "Hall B - Updated",
  "price": 1200.00
}

State Management

POST /api/stalls/1/hold        # Hold stall
POST /api/stalls/1/reserve     # Reserve stall
POST /api/stalls/1/release     # Release stall (make available)

Docker Setup

Prerequisites

  • Docker 20.10+
  • Docker Compose 2.0+
  • Access to external Identity Service (already configured)

Start Services

# Copy and edit environment variables
cp .env.template .env

# Start all services
docker-compose up -d

# Check status
docker-compose ps

# View logs
docker-compose logs -f stall-service

Environment Variables

Edit .env file to customize:

# Database
POSTGRES_DB=stalldb
POSTGRES_USER=stalluser
POSTGRES_PASSWORD=stallpass

# Identity Service (External)
IDENTITY_URL=https://j2bxq20h-8081.asse.devtunnels.ms
IDENTITY_CLIENT_ID=stall-service-client
IDENTITY_CLIENT_SECRET=stall-service-secret

# Kafka
KAFKA_TOPIC_STALL_RESERVED=stall.reserved
KAFKA_TOPIC_STALL_RELEASED=stall.released

# Application
APP_PORT=8081

Health Checks

# Stall Service
curl http://localhost:8081/actuator/health

# PostgreSQL
docker exec stall-postgres pg_isready -U stalluser

# Identity Service
curl https://j2bxq20h-8081.asse.devtunnels.ms/api/v1/actuator/health

# Kafka
docker exec stall-kafka kafka-broker-api-versions --bootstrap-server localhost:9092

Database Access

# Connect to PostgreSQL
docker exec -it stall-postgres psql -U stalluser -d stalldb

# View stalls
SELECT code, size, location, price, status FROM stall ORDER BY code;

Kafka Management

# List topics
docker exec stall-kafka kafka-topics --bootstrap-server localhost:9092 --list

# Consume reserved stall events
docker exec stall-kafka kafka-console-consumer \
  --bootstrap-server localhost:9092 \
  --topic stall.reserved \
  --from-beginning

# Consume released stall events
docker exec stall-kafka kafka-console-consumer \
  --bootstrap-server localhost:9092 \
  --topic stall.released \
  --from-beginning

Stop Services

# Stop all
docker-compose down

# Stop and remove volumes (reset everything)
docker-compose down -v

# Rebuild from scratch
docker-compose down -v
docker-compose build --no-cache
docker-compose up -d

Security & Authentication

📖 Complete Guide: See IDENTITY_INTEGRATION.md for detailed integration documentation

Identity Service Configuration

Base URL: http://localhost:8080/api/v1 (or configure with IDENTITY_SERVICE_URL)
Login Endpoint: /auth/login
Register Endpoint: /auth/register
Token Introspection: /oauth/introspect

Authentication Method

  • JWT with HS512: Tokens validated using shared secret (HS512 algorithm)
  • Role-Based Access: VIEWER, MANAGER, ADMIN roles
  • Method Security: Fine-grained @PreAuthorize annotations
  • Token Claims: Includes roles, permissions, and user identity

Pre-configured Users

Username Password Roles Description
admin admin123 ADMIN, VIEWER Full access to all operations

New users: Register via /api/v1/auth/register (automatically get VIEWER role)

Role-Based Authorization

Endpoint Method VIEWER MANAGER ADMIN Description
GET /api/stalls List Read-only access
GET /api/stalls/{id} Get Read-only access
POST /api/stalls Create Admin only
PUT /api/stalls/{id} Update Manager or higher
POST /api/stalls/{id}/hold Hold Manager or higher
POST /api/stalls/{id}/release Release Manager or higher
POST /api/stalls/{id}/reserve Reserve Manager or higher

Get Authentication Token

Option 1: Helper Script (Easiest)

# Interactive menu for token retrieval
./get-token.sh

# Test integration end-to-end
./test-identity-integration.sh

Option 2: cURL

# Get token
curl -X POST "http://localhost:8080/api/v1/auth/login" \
  -H "Content-Type: application/json" \
  -d '{"username":"admin","password":"admin123"}'

# Extract token
TOKEN=$(curl -s -X POST "http://localhost:8080/api/v1/auth/login" \
  -H "Content-Type: application/json" \
  -d '{"username":"admin","password":"admin123"}' | jq -r '.accessToken')

# Use token
curl -H "Authorization: Bearer $TOKEN" http://localhost:8081/api/stalls

Option 3: Postman Collection

Import Stall-Service.postman_collection.json into Postman. Authentication requests automatically save tokens.

Option 4: Swagger UI

  1. Open http://localhost:8081/swagger-ui.html
  2. Click "Authorize"
  3. Enter: Bearer <your_token>
  4. Test endpoints

Token Details

  • Lifetime: 24 hours (86400 seconds)
  • Algorithm: HS512 (HMAC-SHA512)
  • Validation: Shared secret validation
  • Issuer: http://localhost:8080/api/v1
  • Refresh Token Lifetime: 7 days
  • Claims: roles, permissions, authorities, userId, username, email

Testing Authentication

# Without token (should fail with 401)
curl http://localhost:8081/api/stalls

# With valid token (should succeed)
TOKEN=$(./get-token.sh | grep "access_token" | cut -d'"' -f4)
curl -H "Authorization: Bearer $TOKEN" http://localhost:8081/api/stalls

Running Locally

Prerequisites

  • Java 17+
  • Maven 3.6+
  • PostgreSQL 12+
  • Kafka 2.8+ (optional)
  • External Identity Service access (pre-configured)

Setup Database

# Create database
createdb stalldb

# Create user
psql -d stalldb -c "CREATE USER stalluser WITH PASSWORD 'stallpass';"
psql -d stalldb -c "GRANT ALL PRIVILEGES ON DATABASE stalldb TO stalluser;"

Run Dependencies Only

# Start PostgreSQL, Kafka via Docker (Identity Service is external)
docker-compose up -d postgres kafka zookeeper

# Run application locally
mvn spring-boot:run

Build & Run

# Build
mvn clean install

# Run
mvn spring-boot:run

# Or run JAR
java -jar target/stall-service-0.0.1-SNAPSHOT.jar

Testing

Run Tests

# All tests
mvn test

# Unit tests only
mvn test -Dtest=*ServiceTest

# Integration tests only
mvn test -Dtest=*IntegrationTest

# With coverage
mvn clean test jacoco:report

Test Files

  • StallServiceTest.java - Unit tests for business logic
  • StallControllerIntegrationTest.java - Integration tests with test containers

Sample Data

The service includes 39 pre-seeded stalls via Flyway migration V2__seed_stalls.sql:

Hall A (13 stalls)

  • Small (A-001 to A-005): $500-$550
  • Medium (A-101 to A-105): $1000-$1050
  • Large (A-201 to A-203): $2000-$2500

Hall B (12 stalls)

  • Small (B-001 to B-005): $450-$475
  • Medium (B-101 to B-104): $950-$975
  • Large (B-201 to B-203): $1750-$1800

Hall C (11 stalls)

  • Small (C-001 to C-004): $525
  • Medium (C-101 to C-104): $1100-$1150
  • Large (C-201 to C-203): $2200-$2300

Outdoor Area (3 stalls)

  • Large (OUT-001 to OUT-003): $1500-$1600

Status Distribution:

  • AVAILABLE: 60%
  • HELD: 25%
  • RESERVED: 15%

Kafka Events

Stall Reserved Event

Topic: stall.reserved

{
  "stallId": 1,
  "code": "A-001",
  "status": "RESERVED",
  "location": "Hall A - North Wing"
}

Stall Released Event

Topic: stall.released

{
  "stallId": 1,
  "code": "A-001",
  "status": "AVAILABLE",
  "location": "Hall A - North Wing"
}

Events are published automatically on status changes.

Database Migrations

Flyway migrations in src/main/resources/db/migration/:

  • V1__create_stall_table.sql - Initial table schema
  • V2__seed_stalls.sql - Sample data seeding

Migrations run automatically on startup.

Error Handling

Status Code Description
400 Validation errors or invalid state transitions
401 Unauthorized (missing/invalid token)
404 Stall not found
409 Duplicate stall code
500 Internal server error

Error response format:

{
  "timestamp": "2025-11-22T10:30:00",
  "message": "Stall with code A-001 already exists",
  "details": "uri=/api/stalls"
}

Troubleshooting

401 Unauthorized with Valid Token

Causes:

  • Token expired (1 hour lifetime)
  • Wrong JWT secret
  • Service can't reach Identity Service JWK endpoint

Solution:

# Check logs
docker logs stall-service

# Verify Identity Service connectivity
curl https://j2bxq20h-8081.asse.devtunnels.ms/api/v1/.well-known/jwks.json

Can't Get Token from Identity Service

Causes:

  • Wrong username/password
  • Identity Service not running
  • Database migration not completed

Solution:

# Verify service is ready
curl https://j2bxq20h-8081.asse.devtunnels.ms/api/v1/actuator/health

# Test login endpoint
curl -X POST https://j2bxq20h-8081.asse.devtunnels.ms/api/v1/auth/login \
  -H "Content-Type: application/json" \
  -d '{"username":"admin","password":"admin123"}'

Database Connection Failed

Solution:

# Check PostgreSQL
docker-compose ps postgres
docker exec -it stall-postgres pg_isready -U stalluser

# Restart services
docker-compose restart postgres stall-service

Kafka Connection Issues

Solution:

# Check Kafka
docker-compose logs kafka

# Verify Kafka is ready
docker exec stall-kafka kafka-broker-api-versions --bootstrap-server localhost:9092

Complete Reset

docker-compose down -v
docker-compose build --no-cache
docker-compose up -d

Project Structure

src/main/java/com/exhibitflow/stall/
├── config/
│   ├── OpenApiConfig.java           # Swagger/OpenAPI configuration
│   └── SecurityConfig.java          # OAuth2/JWT security
├── controller/
│   └── StallController.java         # REST endpoints
├── dto/
│   ├── CreateStallRequest.java      # Create request DTO
│   ├── UpdateStallRequest.java      # Update request DTO
│   ├── StallResponse.java           # Response DTO
│   └── StallEventDto.java           # Kafka event DTO
├── event/
│   └── StallEventPublisher.java     # Kafka publisher
├── exception/
│   ├── GlobalExceptionHandler.java  # Global error handler
│   ├── ErrorResponse.java           # Error response format
│   └── ValidationErrorResponse.java # Validation errors
├── model/
│   ├── Stall.java                   # JPA entity
│   ├── StallSize.java               # Size enum
│   └── StallStatus.java             # Status enum
├── repository/
│   └── StallRepository.java         # JPA repository
├── service/
│   ├── StallService.java            # Business logic
│   ├── DuplicateStallCodeException.java
│   ├── InvalidStallStatusException.java
│   └── StallNotFoundException.java
└── StallServiceApplication.java     # Main application

src/main/resources/
├── application.yml                  # Application config
└── db/migration/
    ├── V1__create_stall_table.sql
    └── V2__seed_stalls.sql

Docker/Config Files:
├── Dockerfile                       # Multi-stage Docker build
├── docker-compose.yml               # Service orchestration
├── .env.template                    # Environment template
├── .dockerignore                    # Docker ignore rules
├── identity-service/                # Custom Identity Service code
├── get-token.sh                     # Token helper script
├── api_test.http                    # REST Client tests
└── Stall-Service.postman_collection.json  # Postman collection

About

A Spring Boot 3 microservice for managing exhibition stalls with JWT security, Kafka integration, and comprehensive REST API.

Topics

kafka spring-boot flyway spring-data-jpa spring-security-oauth2 spring-kafka

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages