feat(jpa-userdetails): change in-memory user details to jpa based user details"

- Implements UserDetails to AuthenticatedUser class
- Extend UserDetailService to JpaUserDetailsService
- Load Username from User entity (mapped to unique email)

Author: andriawan

app.http

@@ -1,13 +1,18 @@
 @base_url = http://localhost:8089
 @api = {{base_url}}/api/v1
-@username = admin
+@username = alice.johnson@example.com
 @passowrd = password
-@token = eyJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJhcHBzIiwic3ViIjoiYWRtaW4iLCJleHAiOjE3NDkyNjkwNjUsInVzZXJfaWQiOiIxIiwiaWF0IjoxNzQ5MjY5MDQ1LCJzY29wZSI6IiJ9.H_p96Hy7zH_bQ8K10vlZd6apQWEuIkgzIBXks5JYX5-B9pn8zPEzBpXSadpnzFl-8g7zfd_a9PEtjncLSV5opAX_QhHUXOiR18WeX8qxGFoXA5qpX5IuzL8dNvSIvhcQfaiqMwiFz7_4F2QGFGHZyPGJd_gZ0SUg_YA91dth0PkOobbH05gSknLEM9lGMqhiqCcFGsgVckiW8GdCbkGxqfgc6qixbpuaoRo92mm0h8Xajz3Q1wEXhsTgXkA_2Y4ejuhd-uFBaO4-mLccE9pnLPZ7OfmcP0tsHTX8A_8g9LC4G78HomaPCdphMIpG9oE70ZnOkCe2T6wOke8pY-udJg
+@token = eyJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJhcHBzIiwic3ViIjoiYm9iLnNtaXRoQGV4YW1wbGUuY29tIiwiZXhwIjoxNzQ5MzY2MjU0LCJ1c2VyX2lkIjoyLCJpYXQiOjE3NDkzNjYyMzQsInNjb3BlIjoiIn0.FBStVWnq6h45QVXN7oJA6wxLRDW0OoRCWkxUBstP4PfzKJ81UVJzFt8s5N5dEu1dKc5vd66lOIvDw9d6QfGs2DMNf3LYH53X9r1zhNi0fIsShYSWnrCNahYi7zaRmaGys4cUMBehNj4VQGF-fbxW3UdCgbGxsDlPvJviz76Nfo7TyVZlV9ccVJd1mKJHm0E06H_FK8qab_Rq40jLMMt8B5OM3qdNLN_j6fGds-xXclIsT_W-EaNecfhCcDJ_lkqxsJ-sEIrtpiEp4MD1SqMzbXsyoXKKu6gHzwEeGpI6_giQrdCLf2wFEKBhzPeH-9hKGj8afjw8UWTVXXE4zV8HnA
 @refresh = eyJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJhcHBzIiwic3ViIjoiYW5kcmlhd2FuIiwiZXhwIjoxNzQ5MjY1MTgyLCJpYXQiOjE3NDkyNjUwNjIsInNjb3BlIjoiIn0.SVX9hYqVBs4b-7yPUZkBOXSRyGN7n7AW2A5XsMdJws40UBJvpBzztl2ir7L7C8A1FvjOQ59Mz5rAGgXH9xytPwXhRF8KHIXZF_aUO--cYhbjleFPjA1J_Y0QtI5ncEoLz6wMHDuz04_xjvbHaejSVo1dgbcZsq3iYc3UrL_Rgz-CQiwARk8CsOeevAGukxz_px-IMYPA2BIypWHcdbsqkgzcjTMAY0xBjGTEND97p1omvPPIDkT-pln8k3zyUEjY9qeEUT1AJwDB_HgoXePTSeW08oVZvrcWeOSdiEP3q9iuIVo93LjVOApcHJyGWzjEqYe_h1mrm2ciQ541BbzsTQ
 GET {{api}}/users
 Accept: application/json
 Authorization: Bearer {{token}}
 
+###
+GET {{api}}/me
+Accept: application/json
+Authorization: Bearer {{token}}
+
 ###
 
 POST {{api}}/auth/login

src/main/java/com/andriawan/andresource/config/Security.java

@@ -1,5 +1,6 @@
 package com.andriawan.andresource.config;
 
+import com.andriawan.andresource.service.JpaUserDetailsService;
 import com.nimbusds.jose.jwk.JWK;
 import com.nimbusds.jose.jwk.JWKSet;
 import com.nimbusds.jose.jwk.RSAKey;
@@ -17,15 +18,12 @@
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.http.SessionCreationPolicy;
-import org.springframework.security.core.userdetails.User;
-import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.security.crypto.factory.PasswordEncoderFactories;
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.security.oauth2.jwt.JwtDecoder;
 import org.springframework.security.oauth2.jwt.JwtEncoder;
 import org.springframework.security.oauth2.jwt.NimbusJwtDecoder;
 import org.springframework.security.oauth2.jwt.NimbusJwtEncoder;
-import org.springframework.security.provisioning.InMemoryUserDetailsManager;
 import org.springframework.security.web.SecurityFilterChain;
 
 @Configuration
@@ -50,12 +48,7 @@ public class Security {
 
   @Autowired private CustomAuthenticationEntryPoint entryPoint;
 
-  @Bean
-  public InMemoryUserDetailsManager sampleUser() {
-    UserDetails user =
-        User.withUsername(sampeUsername).password("{noop}".concat(samplePassword)).build();
-    return new InMemoryUserDetailsManager(user);
-  }
+  @Autowired private JpaUserDetailsService jpaUserDetailsService;
 
   @Bean
   @Order(1)
@@ -64,6 +57,7 @@ public SecurityFilterChain loginFilterChain(HttpSecurity http) throws Exception
         .securityMatcher(loginRoute)
         .csrf(crsf -> crsf.disable())
         .exceptionHandling(exception -> exception.authenticationEntryPoint(entryPoint))
+        .userDetailsService(jpaUserDetailsService)
         .sessionManagement(
             session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
         .build();
@@ -76,6 +70,7 @@ public SecurityFilterChain apiFilterChain(HttpSecurity http) throws Exception {
             request ->
                 request.requestMatchers(publicRoute).permitAll().anyRequest().authenticated())
         .csrf(crsf -> crsf.disable())
+        .userDetailsService(jpaUserDetailsService)
         .oauth2ResourceServer(
             oauth2 -> oauth2.jwt(Customizer.withDefaults()).authenticationEntryPoint(entryPoint))
         .sessionManagement(

src/main/java/com/andriawan/andresource/entity/AuthenticatedUser.java

@@ -0,0 +1,37 @@
+package com.andriawan.andresource.entity;
+
+import java.util.ArrayList;
+import java.util.Collection;
+
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.UserDetails;
+
+public class AuthenticatedUser implements UserDetails {
+
+    private User user;
+
+    public AuthenticatedUser(User user) {
+        this.user = user;
+    }
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        final ArrayList<GrantedAuthority> roles = new ArrayList<GrantedAuthority>();
+        return roles;
+    }
+
+    @Override
+    public String getPassword() {
+        return user.getPassword();
+    }
+
+    @Override
+    public String getUsername() {
+        return user.getEmail(); 
+    }
+
+    public User getUser() {
+        return user;
+    }
+    
+}

src/main/java/com/andriawan/andresource/repository/UserRepository.java

@@ -1,6 +1,11 @@
 package com.andriawan.andresource.repository;
 
 import com.andriawan.andresource.entity.User;
+
+import java.util.Optional;
+
 import org.springframework.data.jpa.repository.JpaRepository;
 
-public interface UserRepository extends JpaRepository<User, Long> {}
+public interface UserRepository extends JpaRepository<User, Long> {
+    Optional<User> findByEmail(String email);
+}

src/main/java/com/andriawan/andresource/service/JpaUserDetailsService.java

@@ -0,0 +1,45 @@
+package com.andriawan.andresource.service;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.nio.charset.StandardCharsets;
+import java.util.Optional;
+
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
+
+import com.andriawan.andresource.entity.AuthenticatedUser;
+import com.andriawan.andresource.entity.User;
+import com.andriawan.andresource.repository.UserRepository;
+
+@Service
+public class JpaUserDetailsService implements UserDetailsService {
+
+    private final UserRepository userRepository;
+
+    private AuthenticatedUser authenticatedUser;
+
+    public JpaUserDetailsService(UserRepository userRepository) {
+        this.userRepository = userRepository;
+    }
+
+    public AuthenticatedUser getAuthenticatedUser() {
+        return authenticatedUser;
+    }
+
+    @Override
+    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
+        try {
+            String filteredUsername = URLDecoder.decode(username, StandardCharsets.UTF_8.name());
+            Optional<User> user = userRepository.findByEmail(filteredUsername);
+            authenticatedUser = user.map(AuthenticatedUser::new)
+                .orElseThrow(() -> new UsernameNotFoundException("Username not found"));
+            return authenticatedUser;
+        } catch (UnsupportedEncodingException e) {
+            return null;
+        }
+    }
+    
+}