Few Changes

reuben21 · reuben21 · commit e694fb0629c2 · 2021-02-07T15:20:44.000+05:30
diff --git a/src/main/java/com/reuben/store/config/AuthService.java b/src/main/java/com/reuben/store/config/AuthService.java
@@ -1,6 +1,9 @@
 package com.reuben.store.config;
 
 import com.reuben.store.model.Customer;
+import com.reuben.store.repository.CustomerRepository;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.security.core.userdetails.User;
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.security.core.userdetails.UserDetailsService;
 import org.springframework.security.core.userdetails.UsernameNotFoundException;
@@ -9,9 +12,15 @@
 @Service
 public class AuthService implements UserDetailsService {
 
+    @Autowired
+    private CustomerRepository customerRepository;
+
     @Override
     public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
-        System.out.println(username);
-        return null;
+        Customer customer = customerRepository.fetchCustomerByEmail(username);
+        if(customer == null) {
+            throw new UsernameNotFoundException("Invalid Email ID");
+        }
+        return new org.springframework.security.core.userdetails.User(customer.getEmail_id(), customer.getPassword(),customer.getAuthorities());
     }
 }
diff --git a/src/main/java/com/reuben/store/config/SecurityConfig.java b/src/main/java/com/reuben/store/config/SecurityConfig.java
@@ -46,11 +46,12 @@ private AuthenticationProvider authenticationProvider() {
     @Override
     protected void configure(HttpSecurity http) throws Exception {
         http.authorizeRequests()
+                .antMatchers("/**").permitAll()
                 .antMatchers("/customer").permitAll()
                 .antMatchers("/vendor").permitAll()
+                .antMatchers("/customer/{customer_id}").authenticated()
 
-                .antMatchers("/api/private/user/test").authenticated()
-                .antMatchers("/api/private/admin/test").hasAuthority("ADMIN")// hasAnyAuthority("ADMIN","USER")
+                .antMatchers("/product/purchase/{vendor_id}").hasAuthority("ADMIN")// hasAnyAuthority("ADMIN","USER")
                 .and()
                 .httpBasic();
         http.csrf().disable();
diff --git a/src/main/java/com/reuben/store/model/Customer.java b/src/main/java/com/reuben/store/model/Customer.java
@@ -1,9 +1,11 @@
 package com.reuben.store.model;
 
 import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
 import org.springframework.security.core.userdetails.UserDetails;
 
 import javax.persistence.*;
+import java.util.ArrayList;
 import java.util.Collection;
 import java.util.List;
 
@@ -68,7 +70,10 @@ public void setPassword(String password) {
 
     @Override
     public Collection<? extends GrantedAuthority> getAuthorities() {
-        return null;
+        List<GrantedAuthority> list = new ArrayList<>();
+        SimpleGrantedAuthority sga = new SimpleGrantedAuthority(role);
+        list.add(sga);
+        return list;
     }
 
 
