/ - Diff - Vylepšení funkcí a rozhraní frameworku SPADe (Pícha) - PRO_grammers. - Redmine

.idea/inspectionProfiles/Project_Default.xml
	1	<component name="InspectionProjectProfileManager">
	2	<profile version="1.0">
	3	<option name="myName" value="Project Default" />
	4	<inspection_tool class="Eslint" enabled="true" level="WARNING" enabled_by_default="true" />
	5	</profile>
	6	</component>

             return new WebMvcConfigurer() {
                 @Override
                 public void addCorsMappings(CorsRegistry registry) {
                     registry.addMapping("/**").allowedOrigins("*");
                     registry.addMapping("/**")
                             .allowedOrigins("http://localhost:3000")
                             .allowCredentials(true);
+                }
             };
+        }

             return aOuthService.logoutUser(user);
+        }
         @GetMapping("/refresh")
         public ResponseEntity<String> refreshToken(@RequestHeader HttpHeaders headers) {
             final String authHeader = headers.getFirst(HttpHeaders.AUTHORIZATION);
             if (authHeader == null || !authHeader.startsWith("Bearer")) {
                 // err
+            }
             final String token = authHeader.substring(7);
             String jwtToken = null;
             ResponseEntity<String> response = aOuthService.refreshToken(token);
             if (response.getStatusCode().is2xxSuccessful()) {
                 jwtToken = response.getBody();
                 return getResponseEntity(UserModelStatusCodes.TOKEN_REFRESHED,jwtToken);
+            }
             return getResponseEntity(UserModelStatusCodes.TOKEN_EXPIRED, UserModelStatusCodes.TOKEN_EXPIRED.getLabel());
+        }
         /**
          * Method to create response
+         *

     package cz.zcu.fav.kiv.antipatterndetectionapp.v2.httpExceptions;
     import org.springframework.http.HttpStatus;
     import org.springframework.http.ResponseEntity;
     import org.springframework.web.bind.annotation.ControllerAdvice;
     import org.springframework.web.bind.annotation.ExceptionHandler;
     import org.springframework.web.client.HttpClientErrorException;
     @ControllerAdvice
     public class CustomExceptionHandler {
         @ExceptionHandler(HttpClientErrorException.Unauthorized.class)
         public ResponseEntity<String> handleUnauthorizedException(HttpClientErrorException.Unauthorized ex) {
             return ResponseEntity.status(HttpStatus.UNAUTHORIZED).body(ex.getResponseBodyAsString());
+        }
+    }

     package cz.zcu.fav.kiv.antipatterndetectionapp.v2.security;
     import cz.zcu.fav.kiv.antipatterndetectionapp.v2.httpExceptions.CustomExceptionHandler;
     import cz.zcu.fav.kiv.antipatterndetectionapp.v2.service.OAuthService;
     import org.springframework.http.*;
     import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
-...
                 }*/
             } catch (Exception e) {
                 SecurityContextHolder.clearContext();
                 response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
                 response.setStatus(HttpServletResponse.SC_INTERNAL_SERVER_ERROR);
                 response.getOutputStream().println("{\"error\" : \"Some other error related to jwt token!\"}");
                 return;
+            }
             chain.doFilter(request, response);
+        }
         @Override
         protected boolean shouldNotFilter(HttpServletRequest request) throws ServletException {
                 String path = request.getRequestURI().substring(request.getContextPath().length());
             return path.startsWith("/v2/user/");
+        }
+    }

             httpSecurity
                     .csrf().disable()
                     .authorizeRequests()
                     .antMatchers("/v2/user/register", "/v2/user/login").permitAll()
                     .mvcMatchers("/v2/user/register", "/v2/user/login", "/v2/user/refresh", "/v2/user/logout").permitAll()
                     .anyRequest().authenticated()
     //                .and()
     //                .exceptionHandling()
     //                .authenticationEntryPoint(new OAuthServiceImpl())
                     .and()
                     .sessionManagement()
                     .sessionCreationPolicy(SessionCreationPolicy.STATELESS)
                     .and()
                     .addFilterBefore(new JwtAuthenticationFilter(new OAuthServiceImpl()), UsernamePasswordAuthenticationFilter.class);
     //        httpSecurity.addFilterAfter(new JwtAuthenticationFilter(new OAuthServiceImpl()), UsernamePasswordAuthenticationFilter.class);
     //        httpSecurity.addFilter(new JwtAuthenticationFilter(new OAuthServiceImpl()));
+        }
+    }

src/main/java/cz/zcu/fav/kiv/antipatterndetectionapp/v2/service/OAuthService.java
10	10	public ResponseEntity<String> authenticate(String token);
11	11	public ResponseEntity<String> loginUser(User user);
12	12	public ResponseEntity<String> logoutUser(User user);
	13
	14	ResponseEntity<String> refreshToken(String token);
	15
13	16	}

     //    @Value("${auth.realm.logout}")
         private String AUTH_URL_LOGOUT = "http://localhost:8081/logout";
         private String AUTH_URL_REFRESH = "http://localhost:8081/refresh";
         /**
+         *
          */
-...
             return RequestBuilder.sendRequestResponse(AUTH_URL_LOGOUT, requestBody);
+        }
         @Override
         public ResponseEntity<String> refreshToken(String token) {
             return RequestBuilder.sendRequestResponse(AUTH_URL_REFRESH, token, true);
+        }
         @Override
         public UserDetails loadUserByUsername(String s) throws UsernameNotFoundException {
             final User user = this.userService.getUserByName(s);

             return response;
+        }
         public static ResponseEntity<String> sendRequestResponse(String url, String token, boolean get) {
             RestTemplate restTemplate = new RestTemplate();
             HttpHeaders headers = new HttpHeaders();
             headers.setContentType(MediaType.APPLICATION_JSON);
             //headers.set("X-spade-request",spadeSignature);
             headers.set(HttpHeaders.AUTHORIZATION, "Bearer " + token);
             HttpEntity<String> entity = new HttpEntity<>(null, headers);
             ResponseEntity<String> response = restTemplate.exchange(url, HttpMethod.GET, entity, String.class);
             return response;
+        }
+    }

ASWI - Pokročilé softwarové inženýrství » ASWI 2023 » Vylepšení funkcí a rozhraní frameworku SPADe (Pícha) - PRO_grammers.