Initial Commit

Author: wissensalt

spring-angular-registration/pom.xml

@@ -0,0 +1,102 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<parent>
+		<groupId>org.springframework.boot</groupId>
+		<artifactId>spring-boot-starter-parent</artifactId>
+		<version>2.1.3.RELEASE</version>
+		<relativePath/> <!-- lookup parent from repository -->
+	</parent>
+	<groupId>com.wissensalt.test</groupId>
+	<artifactId>spring-angular-registration</artifactId>
+	<version>0.0.1-SNAPSHOT</version>
+	<name>spring-angular-registration</name>
+	<description>Demo project for Spring Boot</description>
+
+	<properties>
+		<java.version>1.8</java.version>
+	</properties>
+
+	<dependencies>
+		<dependency>
+			<groupId>javax.validation</groupId>
+			<artifactId>validation-api</artifactId>
+			<!--<version>2.0.1.Final</version>-->
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-data-jpa</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-security</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-web</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>org.postgresql</groupId>
+			<artifactId>postgresql</artifactId>
+			<scope>runtime</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.projectlombok</groupId>
+			<artifactId>lombok</artifactId>
+			<optional>true</optional>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-test</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.security</groupId>
+			<artifactId>spring-security-test</artifactId>
+			<scope>test</scope>
+		</dependency>
+	</dependencies>
+
+	<build>
+		<plugins>
+			<plugin>
+				<groupId>org.springframework.boot</groupId>
+				<artifactId>spring-boot-maven-plugin</artifactId>
+			</plugin>
+		</plugins>
+	</build>
+
+	<repositories>
+		<repository>
+			<id>spring-snapshots</id>
+			<name>Spring Snapshots</name>
+			<url>https://repo.spring.io/snapshot</url>
+			<snapshots>
+				<enabled>true</enabled>
+			</snapshots>
+		</repository>
+		<repository>
+			<id>spring-milestones</id>
+			<name>Spring Milestones</name>
+			<url>https://repo.spring.io/milestone</url>
+		</repository>
+	</repositories>
+	<pluginRepositories>
+		<pluginRepository>
+			<id>spring-snapshots</id>
+			<name>Spring Snapshots</name>
+			<url>https://repo.spring.io/snapshot</url>
+			<snapshots>
+				<enabled>true</enabled>
+			</snapshots>
+		</pluginRepository>
+		<pluginRepository>
+			<id>spring-milestones</id>
+			<name>Spring Milestones</name>
+			<url>https://repo.spring.io/milestone</url>
+		</pluginRepository>
+	</pluginRepositories>
+
+</project>

spring-angular-registration/src/main/java/com/wissensalt/test/sar/SpringAngularRegistrationApplication.java

@@ -0,0 +1,22 @@
+package com.wissensalt.test.sar;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+/*@ComponentScan(basePackages = {
+        "com.wissensalt.test.sar.dao",
+        "com.wissensalt.test.sar.endpoint",
+        "com.wissensalt.test.sar.service",
+        "com.wissensalt.test.sar.mapper",
+        "com.wissensalt.test.sar.validation",
+}, lazyInit = true)
+@EntityScan(basePackages = {"com.wissensalt.test.sar.model"})
+@EnableJpaRepositories(basePackages = {"com.wissensalt.test.sar.dao"})*/
+@SpringBootApplication
+public class SpringAngularRegistrationApplication {
+
+	public static void main(String[] args) {
+		SpringApplication.run(SpringAngularRegistrationApplication.class, args);
+	}
+
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/auditrail/AAuditTrail.java

@@ -0,0 +1,30 @@
+package com.wissensalt.test.sar.auditrail;
+
+import com.wissensalt.test.sar.model.base.ABaseAuditTrail;
+import lombok.AccessLevel;
+import lombok.Getter;
+import lombok.Setter;
+import org.springframework.data.jpa.domain.support.AuditingEntityListener;
+
+import javax.persistence.EntityListeners;
+import javax.persistence.MappedSuperclass;
+import javax.persistence.Transient;
+
+@MappedSuperclass
+@EntityListeners(AuditingEntityListener.class)
+public abstract class AAuditTrail extends ABaseAuditTrail {
+	/**
+	 *
+	 * 
+	 */
+	private static final long serialVersionUID = -5401587542468260575L;
+
+	@Getter(AccessLevel.NONE)
+	@Setter(AccessLevel.NONE)
+	@Transient
+	private AppAuditorAware auditorAware;
+
+	public AAuditTrail() {
+		auditorAware = new AppAuditorAware();
+	}
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/auditrail/AppAuditorAware.java

@@ -0,0 +1,35 @@
+package com.wissensalt.test.sar.auditrail;
+
+import org.springframework.data.domain.AuditorAware;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Component;
+
+import java.io.Serializable;
+import java.util.Optional;
+
+/**
+ * Created on 2/27/19.
+ *
+ * @author <a href="mailto:fauzi.knightmaster.achmad@gmail.com">Achmad Fauzi</a>
+ */
+@Component
+public class AppAuditorAware implements AuditorAware<String>, Serializable {
+    /**
+     *
+     *
+     */
+    private static final long serialVersionUID = 3916619591736957909L;
+
+    @Override
+    public Optional<String> getCurrentAuditor() {
+        String userName;
+        try{
+            userName = SecurityContextHolder.getContext().getAuthentication().getName();
+        }catch (Exception e) {
+            userName = "PUBLIC_USER";
+        }
+
+        return Optional.of(userName);
+    }
+
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/config/BasicAuthEntryPoint.java

@@ -0,0 +1,34 @@
+package com.wissensalt.test.sar.config;
+
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.io.PrintWriter;
+
+/**
+ * Created on 4/28/18.
+ *
+ * @author <a href="mailto:fauzi.knightmaster.achmad@gmail.com">Achmad Fauzi</a>
+ */
+@Component
+public class BasicAuthEntryPoint extends BasicAuthenticationEntryPoint {
+
+    @Override
+    public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
+        response.addHeader("WWW-Authenticate", "Basic realm=" + getRealmName());
+        response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
+        PrintWriter writer = response.getWriter();
+        writer.println("HTTP STATUS 401 - "+ authException.getMessage());
+    }
+
+    @Override
+    public void afterPropertiesSet() throws Exception {
+        setRealmName("SECURED-BASIC-REALM");
+        super.afterPropertiesSet();
+    }
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/config/CorsFilter.java

@@ -0,0 +1,27 @@
+package com.wissensalt.test.sar.config;
+
+import org.springframework.web.filter.GenericFilterBean;
+
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+/**
+ * Created on 5/11/18.
+ *
+ * @author <a href="mailto:fauzi.knightmaster.achmad@gmail.com">Achmad Fauzi</a>
+ */
+public class CorsFilter extends GenericFilterBean {
+    @Override
+    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
+        HttpServletResponse response = (HttpServletResponse) servletResponse;
+        response.setHeader("Access-Control-Allow-Origin", "*");
+        response.setHeader("Access-Control-Allow-Methods", "POST, PUT, GET, OPTIONS, DELETE");
+        response.setHeader("Access-Control-Max-Age", "3600");
+        response.setHeader("Access-Control-Allow-Headers", "Content-Type, Authorization, Content-Length, X-Requested-With");
+        filterChain.doFilter(servletRequest, servletResponse);
+    }
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/config/SecurityConfig.java

@@ -0,0 +1,84 @@
+package com.wissensalt.test.sar.config;
+
+import com.wissensalt.test.sar.service.impl.CustomUserDetailService;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
+import org.springframework.web.cors.CorsConfiguration;
+import org.springframework.web.cors.CorsConfigurationSource;
+import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
+
+import java.util.Arrays;
+
+import static com.wissensalt.test.sar.statval.ISarConstant.RoleName.ADMIN;
+
+/**
+ * Created on 4/27/18.
+ *
+ * @author <a href="mailto:fauzi.knightmaster.achmad@gmail.com">Achmad Fauzi</a>
+ */
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Autowired
+    private BasicAuthEntryPoint basicAuthEntryPoint;
+
+    @Bean
+    public PasswordEncoder passwordEncoder () {
+        return new BCryptPasswordEncoder();
+    }
+
+    @Autowired
+    private CustomUserDetailService customUserDetailService;
+
+    @Override
+    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
+        auth
+                .authenticationProvider(authenticationProvider());
+    }
+
+    @Bean
+    public DaoAuthenticationProvider authenticationProvider() {
+        DaoAuthenticationProvider provider = new DaoAuthenticationProvider();
+        provider.setUserDetailsService(customUserDetailService);
+        provider.setPasswordEncoder(passwordEncoder());
+        return provider;
+    }
+
+    @Override
+    protected void configure(HttpSecurity http) throws Exception {
+        http
+                .authorizeRequests()
+                .antMatchers("/registration/*").permitAll()
+                .antMatchers("/auth/*").permitAll()
+                .antMatchers("/api/*").hasRole(ADMIN)
+                .anyRequest().authenticated()
+                .and()
+                .httpBasic().authenticationEntryPoint(basicAuthEntryPoint)
+                .and()
+                .csrf().disable();
+
+
+        http.addFilterAfter(new CorsFilter(), BasicAuthenticationFilter.class);
+    }
+
+    @Bean
+    CorsConfigurationSource corsConfigurationSource()
+    {
+        CorsConfiguration configuration = new CorsConfiguration();
+        configuration.setAllowedOrigins(Arrays.asList("http://localhost:4200"));
+        configuration.setAllowedMethods(Arrays.asList("GET", "POST"));
+        UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
+        source.registerCorsConfiguration("/**", configuration);
+        return source;
+    }
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/dao/IRoleDAO.java

@@ -0,0 +1,17 @@
+package com.wissensalt.test.sar.dao;
+
+import com.wissensalt.test.sar.exception.DAOException;
+import com.wissensalt.test.sar.model.Role;
+import org.springframework.data.jpa.repository.JpaRepository;
+
+/**
+ * Created on 5/8/19.
+ *
+ * @author <a href="mailto:fauzi.knightmaster.achmad@gmail.com">Achmad Fauzi</a>
+ */
+public interface IRoleDAO extends JpaRepository<Role, Long> {
+
+    Role findByName(String p_Name) throws DAOException;
+
+    Role findByCode(String p_Code) throws DAOException;
+}

spring-angular-registration/src/main/java/com/wissensalt/test/sar/dao/IUserDAO.java

@@ -0,0 +1,21 @@
+package com.wissensalt.test.sar.dao;
+
+import com.wissensalt.test.sar.exception.DAOException;
+import com.wissensalt.test.sar.model.User;
+import org.springframework.data.jpa.repository.JpaRepository;
+
+/**
+ * Created on 5/8/19.
+ *
+ * @author <a href="mailto:fauzi.knightmaster.achmad@gmail.com">Achmad Fauzi</a>
+ */
+public interface IUserDAO extends JpaRepository<User, Long> {
+
+    User findByMobileNumber(String p_MobileNumber) throws DAOException;
+
+    User findByEmail(String p_Email) throws DAOException;
+
+    User findByCodeAndStatus(String p_Code, Boolean p_Status)throws DAOException;
+
+    User findByCodeOrEmail(String p_Code, String p_Email) throws DAOException;
+}