diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 0000000..3b41682 --- /dev/null +++ b/.gitattributes @@ -0,0 +1,2 @@ +/mvnw text eol=lf +*.cmd text eol=crlf diff --git a/.github/workflows/dev.yml b/.github/workflows/dev.yml new file mode 100644 index 0000000..ecd9d57 --- /dev/null +++ b/.github/workflows/dev.yml @@ -0,0 +1,26 @@ +name: Deploy in Railway -> Dev + +on: + push: + branches: + - Develop + +jobs: + deploy: + runs-on: ubuntu-latest + + steps: + - name: Check out code + uses: actions/checkout@v2 + + - name: Install curl + run: | + sudo apt-get update && sudo apt-get install -y curl + + - name: Install Railway CLI + run: | + curl -fsSL https://railway.app/install.sh | sh + + - name: Deploy to Railway + run: | + RAILWAY_TOKEN=${{ secrets.RAILWAY_TOKEN }} railway up --service=prontorecife_auth --environment dev --verbose \ No newline at end of file diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..549e00a --- /dev/null +++ b/.gitignore @@ -0,0 +1,33 @@ +HELP.md +target/ +!.mvn/wrapper/maven-wrapper.jar +!**/src/main/**/target/ +!**/src/test/**/target/ + +### STS ### +.apt_generated +.classpath +.factorypath +.project +.settings +.springBeans +.sts4-cache + +### IntelliJ IDEA ### +.idea +*.iws +*.iml +*.ipr + +### NetBeans ### +/nbproject/private/ +/nbbuild/ +/dist/ +/nbdist/ +/.nb-gradle/ +build/ +!**/src/main/**/build/ +!**/src/test/**/build/ + +### VS Code ### +.vscode/ diff --git a/.mvn/wrapper/maven-wrapper.properties b/.mvn/wrapper/maven-wrapper.properties new file mode 100644 index 0000000..d58dfb7 --- /dev/null +++ b/.mvn/wrapper/maven-wrapper.properties @@ -0,0 +1,19 @@ +# Licensed to the Apache Software Foundation (ASF) under one +# or more contributor license agreements. See the NOTICE file +# distributed with this work for additional information +# regarding copyright ownership. The ASF licenses this file +# to you under the Apache License, Version 2.0 (the +# "License"); you may not use this file except in compliance +# with the License. You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, +# software distributed under the License is distributed on an +# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY +# KIND, either express or implied. See the License for the +# specific language governing permissions and limitations +# under the License. +wrapperVersion=3.3.2 +distributionType=only-script +distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.9.9/apache-maven-3.9.9-bin.zip diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..67c6522 --- /dev/null +++ b/Dockerfile @@ -0,0 +1,13 @@ +FROM maven:3.9.8-amazoncorretto-21 AS build +WORKDIR /app +COPY . . + +RUN mvn clean package -DskipTests -Dmaven.resources.encoding=UTF-8 + +FROM openjdk:21-jdk +WORKDIR /app + +EXPOSE 8080 + +COPY --from=build /app/target/auth-0.0.1-SNAPSHOT.jar app.jar +ENTRYPOINT ["java", "-jar", "app.jar"] diff --git a/docker-compose.yml b/docker-compose.yml new file mode 100644 index 0000000..06d02da --- /dev/null +++ b/docker-compose.yml @@ -0,0 +1,46 @@ +services: + mysql: + image: mysql:8.0.40-debian + container_name: mysql + environment: + MYSQL_DATABASE: prontorecife + MYSQL_USER: root + MYSQL_PASSWORD: root + MYSQL_ROOT_PASSWORD: root + ports: + - "3307:3306" + healthcheck: + test: ["CMD", "mysqladmin", "ping", "-h", "localhost", "-u", "root", "-proot"] + interval: 10s + retries: 5 + start_period: 30s + timeout: 10s + + app: + depends_on: + mysql: + condition: service_healthy + build: . + container_name: prontorecife_app + environment: + SPRING_DATASOURCE_URL: jdbc:mysql://mysql:3306/prontorecife + SPRING_DATASOURCE_USERNAME: root + SPRING_DATASOURCE_PASSWORD: root + ports: + - "8081:8080" + + flyway: + image: flyway/flyway:8.5.11 + depends_on: + mysql: + condition: service_healthy + container_name: flyway + restart: always # Adicionado + environment: + FLYWAY_URL: jdbc:mysql://mysql:3306/prontorecife?allowPublicKeyRetrieval=true&useSSL=false + FLYWAY_USER: root + FLYWAY_PASSWORD: root + FLYWAY_SCHEMAS: prontorecife + volumes: + - ./flyway:/flyway/sql + command: -connectRetries=10 migrate diff --git a/mvnw b/mvnw new file mode 100644 index 0000000..19529dd --- /dev/null +++ b/mvnw @@ -0,0 +1,259 @@ +#!/bin/sh +# ---------------------------------------------------------------------------- +# Licensed to the Apache Software Foundation (ASF) under one +# or more contributor license agreements. See the NOTICE file +# distributed with this work for additional information +# regarding copyright ownership. The ASF licenses this file +# to you under the Apache License, Version 2.0 (the +# "License"); you may not use this file except in compliance +# with the License. You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, +# software distributed under the License is distributed on an +# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY +# KIND, either express or implied. See the License for the +# specific language governing permissions and limitations +# under the License. +# ---------------------------------------------------------------------------- + +# ---------------------------------------------------------------------------- +# Apache Maven Wrapper startup batch script, version 3.3.2 +# +# Optional ENV vars +# ----------------- +# JAVA_HOME - location of a JDK home dir, required when download maven via java source +# MVNW_REPOURL - repo url base for downloading maven distribution +# MVNW_USERNAME/MVNW_PASSWORD - user and password for downloading maven +# MVNW_VERBOSE - true: enable verbose log; debug: trace the mvnw script; others: silence the output +# ---------------------------------------------------------------------------- + +set -euf +[ "${MVNW_VERBOSE-}" != debug ] || set -x + +# OS specific support. +native_path() { printf %s\\n "$1"; } +case "$(uname)" in +CYGWIN* | MINGW*) + [ -z "${JAVA_HOME-}" ] || JAVA_HOME="$(cygpath --unix "$JAVA_HOME")" + native_path() { cygpath --path --windows "$1"; } + ;; +esac + +# set JAVACMD and JAVACCMD +set_java_home() { + # For Cygwin and MinGW, ensure paths are in Unix format before anything is touched + if [ -n "${JAVA_HOME-}" ]; then + if [ -x "$JAVA_HOME/jre/sh/java" ]; then + # IBM's JDK on AIX uses strange locations for the executables + JAVACMD="$JAVA_HOME/jre/sh/java" + JAVACCMD="$JAVA_HOME/jre/sh/javac" + else + JAVACMD="$JAVA_HOME/bin/java" + JAVACCMD="$JAVA_HOME/bin/javac" + + if [ ! -x "$JAVACMD" ] || [ ! -x "$JAVACCMD" ]; then + echo "The JAVA_HOME environment variable is not defined correctly, so mvnw cannot run." >&2 + echo "JAVA_HOME is set to \"$JAVA_HOME\", but \"\$JAVA_HOME/bin/java\" or \"\$JAVA_HOME/bin/javac\" does not exist." >&2 + return 1 + fi + fi + else + JAVACMD="$( + 'set' +e + 'unset' -f command 2>/dev/null + 'command' -v java + )" || : + JAVACCMD="$( + 'set' +e + 'unset' -f command 2>/dev/null + 'command' -v javac + )" || : + + if [ ! -x "${JAVACMD-}" ] || [ ! -x "${JAVACCMD-}" ]; then + echo "The java/javac command does not exist in PATH nor is JAVA_HOME set, so mvnw cannot run." >&2 + return 1 + fi + fi +} + +# hash string like Java String::hashCode +hash_string() { + str="${1:-}" h=0 + while [ -n "$str" ]; do + char="${str%"${str#?}"}" + h=$(((h * 31 + $(LC_CTYPE=C printf %d "'$char")) % 4294967296)) + str="${str#?}" + done + printf %x\\n $h +} + +verbose() { :; } +[ "${MVNW_VERBOSE-}" != true ] || verbose() { printf %s\\n "${1-}"; } + +die() { + printf %s\\n "$1" >&2 + exit 1 +} + +trim() { + # MWRAPPER-139: + # Trims trailing and leading whitespace, carriage returns, tabs, and linefeeds. + # Needed for removing poorly interpreted newline sequences when running in more + # exotic environments such as mingw bash on Windows. + printf "%s" "${1}" | tr -d '[:space:]' +} + +# parse distributionUrl and optional distributionSha256Sum, requires .mvn/wrapper/maven-wrapper.properties +while IFS="=" read -r key value; do + case "${key-}" in + distributionUrl) distributionUrl=$(trim "${value-}") ;; + distributionSha256Sum) distributionSha256Sum=$(trim "${value-}") ;; + esac +done <"${0%/*}/.mvn/wrapper/maven-wrapper.properties" +[ -n "${distributionUrl-}" ] || die "cannot read distributionUrl property in ${0%/*}/.mvn/wrapper/maven-wrapper.properties" + +case "${distributionUrl##*/}" in +maven-mvnd-*bin.*) + MVN_CMD=mvnd.sh _MVNW_REPO_PATTERN=/maven/mvnd/ + case "${PROCESSOR_ARCHITECTURE-}${PROCESSOR_ARCHITEW6432-}:$(uname -a)" in + *AMD64:CYGWIN* | *AMD64:MINGW*) distributionPlatform=windows-amd64 ;; + :Darwin*x86_64) distributionPlatform=darwin-amd64 ;; + :Darwin*arm64) distributionPlatform=darwin-aarch64 ;; + :Linux*x86_64*) distributionPlatform=linux-amd64 ;; + *) + echo "Cannot detect native platform for mvnd on $(uname)-$(uname -m), use pure java version" >&2 + distributionPlatform=linux-amd64 + ;; + esac + distributionUrl="${distributionUrl%-bin.*}-$distributionPlatform.zip" + ;; +maven-mvnd-*) MVN_CMD=mvnd.sh _MVNW_REPO_PATTERN=/maven/mvnd/ ;; +*) MVN_CMD="mvn${0##*/mvnw}" _MVNW_REPO_PATTERN=/org/apache/maven/ ;; +esac + +# apply MVNW_REPOURL and calculate MAVEN_HOME +# maven home pattern: ~/.m2/wrapper/dists/{apache-maven-,maven-mvnd--}/ +[ -z "${MVNW_REPOURL-}" ] || distributionUrl="$MVNW_REPOURL$_MVNW_REPO_PATTERN${distributionUrl#*"$_MVNW_REPO_PATTERN"}" +distributionUrlName="${distributionUrl##*/}" +distributionUrlNameMain="${distributionUrlName%.*}" +distributionUrlNameMain="${distributionUrlNameMain%-bin}" +MAVEN_USER_HOME="${MAVEN_USER_HOME:-${HOME}/.m2}" +MAVEN_HOME="${MAVEN_USER_HOME}/wrapper/dists/${distributionUrlNameMain-}/$(hash_string "$distributionUrl")" + +exec_maven() { + unset MVNW_VERBOSE MVNW_USERNAME MVNW_PASSWORD MVNW_REPOURL || : + exec "$MAVEN_HOME/bin/$MVN_CMD" "$@" || die "cannot exec $MAVEN_HOME/bin/$MVN_CMD" +} + +if [ -d "$MAVEN_HOME" ]; then + verbose "found existing MAVEN_HOME at $MAVEN_HOME" + exec_maven "$@" +fi + +case "${distributionUrl-}" in +*?-bin.zip | *?maven-mvnd-?*-?*.zip) ;; +*) die "distributionUrl is not valid, must match *-bin.zip or maven-mvnd-*.zip, but found '${distributionUrl-}'" ;; +esac + +# prepare tmp dir +if TMP_DOWNLOAD_DIR="$(mktemp -d)" && [ -d "$TMP_DOWNLOAD_DIR" ]; then + clean() { rm -rf -- "$TMP_DOWNLOAD_DIR"; } + trap clean HUP INT TERM EXIT +else + die "cannot create temp dir" +fi + +mkdir -p -- "${MAVEN_HOME%/*}" + +# Download and Install Apache Maven +verbose "Couldn't find MAVEN_HOME, downloading and installing it ..." +verbose "Downloading from: $distributionUrl" +verbose "Downloading to: $TMP_DOWNLOAD_DIR/$distributionUrlName" + +# select .zip or .tar.gz +if ! command -v unzip >/dev/null; then + distributionUrl="${distributionUrl%.zip}.tar.gz" + distributionUrlName="${distributionUrl##*/}" +fi + +# verbose opt +__MVNW_QUIET_WGET=--quiet __MVNW_QUIET_CURL=--silent __MVNW_QUIET_UNZIP=-q __MVNW_QUIET_TAR='' +[ "${MVNW_VERBOSE-}" != true ] || __MVNW_QUIET_WGET='' __MVNW_QUIET_CURL='' __MVNW_QUIET_UNZIP='' __MVNW_QUIET_TAR=v + +# normalize http auth +case "${MVNW_PASSWORD:+has-password}" in +'') MVNW_USERNAME='' MVNW_PASSWORD='' ;; +has-password) [ -n "${MVNW_USERNAME-}" ] || MVNW_USERNAME='' MVNW_PASSWORD='' ;; +esac + +if [ -z "${MVNW_USERNAME-}" ] && command -v wget >/dev/null; then + verbose "Found wget ... using wget" + wget ${__MVNW_QUIET_WGET:+"$__MVNW_QUIET_WGET"} "$distributionUrl" -O "$TMP_DOWNLOAD_DIR/$distributionUrlName" || die "wget: Failed to fetch $distributionUrl" +elif [ -z "${MVNW_USERNAME-}" ] && command -v curl >/dev/null; then + verbose "Found curl ... using curl" + curl ${__MVNW_QUIET_CURL:+"$__MVNW_QUIET_CURL"} -f -L -o "$TMP_DOWNLOAD_DIR/$distributionUrlName" "$distributionUrl" || die "curl: Failed to fetch $distributionUrl" +elif set_java_home; then + verbose "Falling back to use Java to download" + javaSource="$TMP_DOWNLOAD_DIR/Downloader.java" + targetZip="$TMP_DOWNLOAD_DIR/$distributionUrlName" + cat >"$javaSource" <<-END + public class Downloader extends java.net.Authenticator + { + protected java.net.PasswordAuthentication getPasswordAuthentication() + { + return new java.net.PasswordAuthentication( System.getenv( "MVNW_USERNAME" ), System.getenv( "MVNW_PASSWORD" ).toCharArray() ); + } + public static void main( String[] args ) throws Exception + { + setDefault( new Downloader() ); + java.nio.file.Files.copy( java.net.URI.create( args[0] ).toURL().openStream(), java.nio.file.Paths.get( args[1] ).toAbsolutePath().normalize() ); + } + } + END + # For Cygwin/MinGW, switch paths to Windows format before running javac and java + verbose " - Compiling Downloader.java ..." + "$(native_path "$JAVACCMD")" "$(native_path "$javaSource")" || die "Failed to compile Downloader.java" + verbose " - Running Downloader.java ..." + "$(native_path "$JAVACMD")" -cp "$(native_path "$TMP_DOWNLOAD_DIR")" Downloader "$distributionUrl" "$(native_path "$targetZip")" +fi + +# If specified, validate the SHA-256 sum of the Maven distribution zip file +if [ -n "${distributionSha256Sum-}" ]; then + distributionSha256Result=false + if [ "$MVN_CMD" = mvnd.sh ]; then + echo "Checksum validation is not supported for maven-mvnd." >&2 + echo "Please disable validation by removing 'distributionSha256Sum' from your maven-wrapper.properties." >&2 + exit 1 + elif command -v sha256sum >/dev/null; then + if echo "$distributionSha256Sum $TMP_DOWNLOAD_DIR/$distributionUrlName" | sha256sum -c >/dev/null 2>&1; then + distributionSha256Result=true + fi + elif command -v shasum >/dev/null; then + if echo "$distributionSha256Sum $TMP_DOWNLOAD_DIR/$distributionUrlName" | shasum -a 256 -c >/dev/null 2>&1; then + distributionSha256Result=true + fi + else + echo "Checksum validation was requested but neither 'sha256sum' or 'shasum' are available." >&2 + echo "Please install either command, or disable validation by removing 'distributionSha256Sum' from your maven-wrapper.properties." >&2 + exit 1 + fi + if [ $distributionSha256Result = false ]; then + echo "Error: Failed to validate Maven distribution SHA-256, your Maven distribution might be compromised." >&2 + echo "If you updated your Maven version, you need to update the specified distributionSha256Sum property." >&2 + exit 1 + fi +fi + +# unzip and move +if command -v unzip >/dev/null; then + unzip ${__MVNW_QUIET_UNZIP:+"$__MVNW_QUIET_UNZIP"} "$TMP_DOWNLOAD_DIR/$distributionUrlName" -d "$TMP_DOWNLOAD_DIR" || die "failed to unzip" +else + tar xzf${__MVNW_QUIET_TAR:+"$__MVNW_QUIET_TAR"} "$TMP_DOWNLOAD_DIR/$distributionUrlName" -C "$TMP_DOWNLOAD_DIR" || die "failed to untar" +fi +printf %s\\n "$distributionUrl" >"$TMP_DOWNLOAD_DIR/$distributionUrlNameMain/mvnw.url" +mv -- "$TMP_DOWNLOAD_DIR/$distributionUrlNameMain" "$MAVEN_HOME" || [ -d "$MAVEN_HOME" ] || die "fail to move MAVEN_HOME" + +clean || : +exec_maven "$@" diff --git a/mvnw.cmd b/mvnw.cmd new file mode 100644 index 0000000..249bdf3 --- /dev/null +++ b/mvnw.cmd @@ -0,0 +1,149 @@ +<# : batch portion +@REM ---------------------------------------------------------------------------- +@REM Licensed to the Apache Software Foundation (ASF) under one +@REM or more contributor license agreements. See the NOTICE file +@REM distributed with this work for additional information +@REM regarding copyright ownership. The ASF licenses this file +@REM to you under the Apache License, Version 2.0 (the +@REM "License"); you may not use this file except in compliance +@REM with the License. You may obtain a copy of the License at +@REM +@REM http://www.apache.org/licenses/LICENSE-2.0 +@REM +@REM Unless required by applicable law or agreed to in writing, +@REM software distributed under the License is distributed on an +@REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY +@REM KIND, either express or implied. See the License for the +@REM specific language governing permissions and limitations +@REM under the License. +@REM ---------------------------------------------------------------------------- + +@REM ---------------------------------------------------------------------------- +@REM Apache Maven Wrapper startup batch script, version 3.3.2 +@REM +@REM Optional ENV vars +@REM MVNW_REPOURL - repo url base for downloading maven distribution +@REM MVNW_USERNAME/MVNW_PASSWORD - user and password for downloading maven +@REM MVNW_VERBOSE - true: enable verbose log; others: silence the output +@REM ---------------------------------------------------------------------------- + +@IF "%__MVNW_ARG0_NAME__%"=="" (SET __MVNW_ARG0_NAME__=%~nx0) +@SET __MVNW_CMD__= +@SET __MVNW_ERROR__= +@SET __MVNW_PSMODULEP_SAVE=%PSModulePath% +@SET PSModulePath= +@FOR /F "usebackq tokens=1* delims==" %%A IN (`powershell -noprofile "& {$scriptDir='%~dp0'; $script='%__MVNW_ARG0_NAME__%'; icm -ScriptBlock ([Scriptblock]::Create((Get-Content -Raw '%~f0'))) -NoNewScope}"`) DO @( + IF "%%A"=="MVN_CMD" (set __MVNW_CMD__=%%B) ELSE IF "%%B"=="" (echo %%A) ELSE (echo %%A=%%B) +) +@SET PSModulePath=%__MVNW_PSMODULEP_SAVE% +@SET __MVNW_PSMODULEP_SAVE= +@SET __MVNW_ARG0_NAME__= +@SET MVNW_USERNAME= +@SET MVNW_PASSWORD= +@IF NOT "%__MVNW_CMD__%"=="" (%__MVNW_CMD__% %*) +@echo Cannot start maven from wrapper >&2 && exit /b 1 +@GOTO :EOF +: end batch / begin powershell #> + +$ErrorActionPreference = "Stop" +if ($env:MVNW_VERBOSE -eq "true") { + $VerbosePreference = "Continue" +} + +# calculate distributionUrl, requires .mvn/wrapper/maven-wrapper.properties +$distributionUrl = (Get-Content -Raw "$scriptDir/.mvn/wrapper/maven-wrapper.properties" | ConvertFrom-StringData).distributionUrl +if (!$distributionUrl) { + Write-Error "cannot read distributionUrl property in $scriptDir/.mvn/wrapper/maven-wrapper.properties" +} + +switch -wildcard -casesensitive ( $($distributionUrl -replace '^.*/','') ) { + "maven-mvnd-*" { + $USE_MVND = $true + $distributionUrl = $distributionUrl -replace '-bin\.[^.]*$',"-windows-amd64.zip" + $MVN_CMD = "mvnd.cmd" + break + } + default { + $USE_MVND = $false + $MVN_CMD = $script -replace '^mvnw','mvn' + break + } +} + +# apply MVNW_REPOURL and calculate MAVEN_HOME +# maven home pattern: ~/.m2/wrapper/dists/{apache-maven-,maven-mvnd--}/ +if ($env:MVNW_REPOURL) { + $MVNW_REPO_PATTERN = if ($USE_MVND) { "/org/apache/maven/" } else { "/maven/mvnd/" } + $distributionUrl = "$env:MVNW_REPOURL$MVNW_REPO_PATTERN$($distributionUrl -replace '^.*'+$MVNW_REPO_PATTERN,'')" +} +$distributionUrlName = $distributionUrl -replace '^.*/','' +$distributionUrlNameMain = $distributionUrlName -replace '\.[^.]*$','' -replace '-bin$','' +$MAVEN_HOME_PARENT = "$HOME/.m2/wrapper/dists/$distributionUrlNameMain" +if ($env:MAVEN_USER_HOME) { + $MAVEN_HOME_PARENT = "$env:MAVEN_USER_HOME/wrapper/dists/$distributionUrlNameMain" +} +$MAVEN_HOME_NAME = ([System.Security.Cryptography.MD5]::Create().ComputeHash([byte[]][char[]]$distributionUrl) | ForEach-Object {$_.ToString("x2")}) -join '' +$MAVEN_HOME = "$MAVEN_HOME_PARENT/$MAVEN_HOME_NAME" + +if (Test-Path -Path "$MAVEN_HOME" -PathType Container) { + Write-Verbose "found existing MAVEN_HOME at $MAVEN_HOME" + Write-Output "MVN_CMD=$MAVEN_HOME/bin/$MVN_CMD" + exit $? +} + +if (! $distributionUrlNameMain -or ($distributionUrlName -eq $distributionUrlNameMain)) { + Write-Error "distributionUrl is not valid, must end with *-bin.zip, but found $distributionUrl" +} + +# prepare tmp dir +$TMP_DOWNLOAD_DIR_HOLDER = New-TemporaryFile +$TMP_DOWNLOAD_DIR = New-Item -Itemtype Directory -Path "$TMP_DOWNLOAD_DIR_HOLDER.dir" +$TMP_DOWNLOAD_DIR_HOLDER.Delete() | Out-Null +trap { + if ($TMP_DOWNLOAD_DIR.Exists) { + try { Remove-Item $TMP_DOWNLOAD_DIR -Recurse -Force | Out-Null } + catch { Write-Warning "Cannot remove $TMP_DOWNLOAD_DIR" } + } +} + +New-Item -Itemtype Directory -Path "$MAVEN_HOME_PARENT" -Force | Out-Null + +# Download and Install Apache Maven +Write-Verbose "Couldn't find MAVEN_HOME, downloading and installing it ..." +Write-Verbose "Downloading from: $distributionUrl" +Write-Verbose "Downloading to: $TMP_DOWNLOAD_DIR/$distributionUrlName" + +$webclient = New-Object System.Net.WebClient +if ($env:MVNW_USERNAME -and $env:MVNW_PASSWORD) { + $webclient.Credentials = New-Object System.Net.NetworkCredential($env:MVNW_USERNAME, $env:MVNW_PASSWORD) +} +[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12 +$webclient.DownloadFile($distributionUrl, "$TMP_DOWNLOAD_DIR/$distributionUrlName") | Out-Null + +# If specified, validate the SHA-256 sum of the Maven distribution zip file +$distributionSha256Sum = (Get-Content -Raw "$scriptDir/.mvn/wrapper/maven-wrapper.properties" | ConvertFrom-StringData).distributionSha256Sum +if ($distributionSha256Sum) { + if ($USE_MVND) { + Write-Error "Checksum validation is not supported for maven-mvnd. `nPlease disable validation by removing 'distributionSha256Sum' from your maven-wrapper.properties." + } + Import-Module $PSHOME\Modules\Microsoft.PowerShell.Utility -Function Get-FileHash + if ((Get-FileHash "$TMP_DOWNLOAD_DIR/$distributionUrlName" -Algorithm SHA256).Hash.ToLower() -ne $distributionSha256Sum) { + Write-Error "Error: Failed to validate Maven distribution SHA-256, your Maven distribution might be compromised. If you updated your Maven version, you need to update the specified distributionSha256Sum property." + } +} + +# unzip and move +Expand-Archive "$TMP_DOWNLOAD_DIR/$distributionUrlName" -DestinationPath "$TMP_DOWNLOAD_DIR" | Out-Null +Rename-Item -Path "$TMP_DOWNLOAD_DIR/$distributionUrlNameMain" -NewName $MAVEN_HOME_NAME | Out-Null +try { + Move-Item -Path "$TMP_DOWNLOAD_DIR/$MAVEN_HOME_NAME" -Destination $MAVEN_HOME_PARENT | Out-Null +} catch { + if (! (Test-Path -Path "$MAVEN_HOME" -PathType Container)) { + Write-Error "fail to move MAVEN_HOME" + } +} finally { + try { Remove-Item $TMP_DOWNLOAD_DIR -Recurse -Force | Out-Null } + catch { Write-Warning "Cannot remove $TMP_DOWNLOAD_DIR" } +} + +Write-Output "MVN_CMD=$MAVEN_HOME/bin/$MVN_CMD" diff --git a/pom.xml b/pom.xml new file mode 100644 index 0000000..22b636e --- /dev/null +++ b/pom.xml @@ -0,0 +1,123 @@ + + + 4.0.0 + + org.springframework.boot + spring-boot-starter-parent + 3.4.0 + + + br.com.prontorecife + auth + 0.0.1-SNAPSHOT + Auth + Micro service de autenticação do usuário + + + + + + + + + + + + + + + 21 + + + + org.springframework.boot + spring-boot-starter-data-jpa + + + org.springframework.boot + spring-boot-starter-validation + + + org.springframework.boot + spring-boot-starter-web + + + org.springframework.boot + spring-boot-starter-data-jdbc + + + mysql + mysql-connector-java + 8.0.33 + + + org.projectlombok + lombok + true + + + org.springframework.boot + spring-boot-starter-test + test + + + org.springframework.boot + spring-boot-starter-data-redis + + + com.auth0 + java-jwt + 3.19.4 + + + io.jsonwebtoken + jjwt-api + 0.12.6 + + + io.jsonwebtoken + jjwt-impl + 0.12.6 + runtime + + + io.jsonwebtoken + jjwt-jackson + 0.12.6 + runtime + + + org.springframework.boot + spring-boot-starter-security + + + org.springframework.security + spring-security-test + test + + + org.springdoc + springdoc-openapi-starter-webmvc-ui + 2.7.0 + + + + + + + org.springframework.boot + spring-boot-maven-plugin + + + + org.projectlombok + lombok + + + + + + + + diff --git a/src/main/java/br/com/prontorecife/auth/AuthApplication.java b/src/main/java/br/com/prontorecife/auth/AuthApplication.java new file mode 100644 index 0000000..1b554f9 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/AuthApplication.java @@ -0,0 +1,14 @@ +package br.com.prontorecife.auth; + +import org.springframework.boot.SpringApplication; +import org.springframework.boot.autoconfigure.SpringBootApplication; + +@SpringBootApplication +public class AuthApplication { + + public static void main(String[] args) { + SpringApplication.run(AuthApplication.class, args); + } + + +} diff --git a/src/main/java/br/com/prontorecife/auth/Controller/AuthenticationController.java b/src/main/java/br/com/prontorecife/auth/Controller/AuthenticationController.java new file mode 100644 index 0000000..0c9622a --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Controller/AuthenticationController.java @@ -0,0 +1,40 @@ +package br.com.prontorecife.auth.Controller; + +import br.com.prontorecife.auth.DTOs.AuthenticationRequestDTO; +import br.com.prontorecife.auth.DTOs.SessionDTO; +import br.com.prontorecife.auth.Service.AuthenticationService; +import br.com.prontorecife.auth.Service.TokenService; +import lombok.RequiredArgsConstructor; +import lombok.extern.slf4j.Slf4j; +import org.springframework.http.HttpStatus; +import org.springframework.http.HttpStatusCode; +import org.springframework.http.ResponseEntity; +import org.springframework.web.bind.annotation.*; + +@RestController +@RequiredArgsConstructor +@RequestMapping("/auth") +@Slf4j +public class AuthenticationController { + private final TokenService tokenService; + private final AuthenticationService authenticationService; + + @PostMapping("/login") + public SessionDTO login(@RequestBody AuthenticationRequestDTO request){ + String token = authenticationService.authenticate(request); + return new SessionDTO(token); + } + @PostMapping("/logout") + public ResponseEntity logout(@RequestBody SessionDTO request){ + + long expirationTimeInSeconds = 86400; + tokenService.invalidateToken(request.getAccessToken(), expirationTimeInSeconds); + + return ResponseEntity.ok("Logout realizado com sucesso!"); + } + @PostMapping("/session") + public ResponseEntity verifySession(@RequestHeader(name="x-auth", required = true) String request){ + boolean valid = tokenService.validateToken(request); + return valid ? ResponseEntity.ok().build() : ResponseEntity.status(HttpStatus.FORBIDDEN).build(); + } +} diff --git a/src/main/java/br/com/prontorecife/auth/DTOs/AuthenticationRequestDTO.java b/src/main/java/br/com/prontorecife/auth/DTOs/AuthenticationRequestDTO.java new file mode 100644 index 0000000..35dcb1f --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/DTOs/AuthenticationRequestDTO.java @@ -0,0 +1,13 @@ +package br.com.prontorecife.auth.DTOs; + +import br.com.prontorecife.auth.Enum.LoginFlowEnum; +import lombok.Getter; +import lombok.Setter; + +@Getter +@Setter +public class AuthenticationRequestDTO { + private String identificador; + private String senha; + private LoginFlowEnum flow; +} diff --git a/src/main/java/br/com/prontorecife/auth/DTOs/ExceptionResponseDTO.java b/src/main/java/br/com/prontorecife/auth/DTOs/ExceptionResponseDTO.java new file mode 100644 index 0000000..d989af2 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/DTOs/ExceptionResponseDTO.java @@ -0,0 +1,13 @@ +package br.com.prontorecife.auth.DTOs; + +import lombok.Getter; +import lombok.Setter; + +import java.util.Map; + +@Getter +@Setter +public class ExceptionResponseDTO { + String message; + Map erros; +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/DTOs/SessionDTO.java b/src/main/java/br/com/prontorecife/auth/DTOs/SessionDTO.java new file mode 100644 index 0000000..f944670 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/DTOs/SessionDTO.java @@ -0,0 +1,12 @@ +package br.com.prontorecife.auth.DTOs; + +import lombok.AllArgsConstructor; +import lombok.Getter; +import lombok.Setter; + +@Getter +@Setter +@AllArgsConstructor +public class SessionDTO { + private String accessToken; +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/Enum/LoginFlowEnum.java b/src/main/java/br/com/prontorecife/auth/Enum/LoginFlowEnum.java new file mode 100644 index 0000000..585fda9 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Enum/LoginFlowEnum.java @@ -0,0 +1,20 @@ +package br.com.prontorecife.auth.Enum; + +import com.fasterxml.jackson.annotation.JsonCreator; +import com.fasterxml.jackson.annotation.JsonValue; + +public enum LoginFlowEnum { + CRM, + CPF; + + @JsonValue + @Override + public String toString() { + return name(); + } + + @JsonCreator + public static LoginFlowEnum fromValue(String value) { + return LoginFlowEnum.valueOf(value.toUpperCase()); + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/Exceptions/AuthorizationHeaderException.java b/src/main/java/br/com/prontorecife/auth/Exceptions/AuthorizationHeaderException.java new file mode 100644 index 0000000..6e9eff0 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Exceptions/AuthorizationHeaderException.java @@ -0,0 +1,12 @@ +package br.com.prontorecife.auth.Exceptions; + +import org.springframework.http.HttpStatus; + +public class AuthorizationHeaderException extends BaseException{ + + public AuthorizationHeaderException(){ + super(HttpStatus.UNAUTHORIZED, + "Authorization Header Error.", + "Authorization Header is null or empty."); + } +} diff --git a/src/main/java/br/com/prontorecife/auth/Exceptions/BaseException.java b/src/main/java/br/com/prontorecife/auth/Exceptions/BaseException.java new file mode 100644 index 0000000..912cc67 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Exceptions/BaseException.java @@ -0,0 +1,19 @@ +package br.com.prontorecife.auth.Exceptions; + +import lombok.RequiredArgsConstructor; +import org.springframework.http.HttpStatus; +import org.springframework.http.ProblemDetail; + +@RequiredArgsConstructor +public class BaseException extends RuntimeException { + private final HttpStatus httpStatus; + private final String title; + private final String detail; + + public ProblemDetail problemDetail(){ + ProblemDetail probD = ProblemDetail.forStatus(httpStatus); + probD.setTitle(title); + probD.setDetail(detail); + return probD; + } +} diff --git a/src/main/java/br/com/prontorecife/auth/Exceptions/CustomException.java b/src/main/java/br/com/prontorecife/auth/Exceptions/CustomException.java new file mode 100644 index 0000000..e21bcf0 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Exceptions/CustomException.java @@ -0,0 +1,19 @@ +package br.com.prontorecife.auth.Exceptions; + +import lombok.Getter; + +import org.springframework.http.HttpStatus; + +import java.util.Map; + +@Getter +public class CustomException extends RuntimeException { + private final HttpStatus httpStatus; + private final Map errors; + + public CustomException(String message, HttpStatus httpStatus, Map errors) { + super(message); + this.httpStatus = httpStatus; + this.errors = errors; + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/Exceptions/GlobalExceptionHandler.java b/src/main/java/br/com/prontorecife/auth/Exceptions/GlobalExceptionHandler.java new file mode 100644 index 0000000..0e18968 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Exceptions/GlobalExceptionHandler.java @@ -0,0 +1,25 @@ +package br.com.prontorecife.auth.Exceptions; + +import br.com.prontorecife.auth.DTOs.ExceptionResponseDTO; +import org.springframework.http.ProblemDetail; +import org.springframework.http.ResponseEntity; +import org.springframework.web.bind.annotation.ControllerAdvice; +import org.springframework.web.bind.annotation.ExceptionHandler; + +@ControllerAdvice +public class GlobalExceptionHandler { + @ExceptionHandler(BaseException.class) + public ResponseEntity handleUnauthorizedInSecurity(BaseException exception){ + ProblemDetail probD = exception.problemDetail(); + return ResponseEntity.status(probD.getStatus()).body(probD); + } + @ExceptionHandler(CustomException.class) + public ResponseEntity handleCustomException(CustomException ex) { + ExceptionResponseDTO response = new ExceptionResponseDTO(); + response.setMessage(ex.getMessage()); + response.setErros(ex.getErrors()); + return ResponseEntity + .status(ex.getHttpStatus()) + .body(response); + } +} diff --git a/src/main/java/br/com/prontorecife/auth/Models/MedicoModel.java b/src/main/java/br/com/prontorecife/auth/Models/MedicoModel.java new file mode 100644 index 0000000..5dde4b3 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Models/MedicoModel.java @@ -0,0 +1,36 @@ +package br.com.prontorecife.auth.Models; + +import jakarta.persistence.*; +import lombok.Getter; +import lombok.Setter; + +import java.util.UUID; + + +@Entity +@Table(name = "medico") +@Getter @Setter +public class MedicoModel{ + + @Id + private String id; + @Column(name = "crm", unique = true) + private String CRM; + @Column(name = "email") + private String email; + @Column(name = "senha") + private String senha; + @Column(name = "nome_completo") + private String nomeCompleto; + private String telefone; + + + + + @PrePersist + public void prePersist() { + if (id == null) { + id = UUID.randomUUID().toString(); + } + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/Models/PacienteModel.java b/src/main/java/br/com/prontorecife/auth/Models/PacienteModel.java new file mode 100644 index 0000000..1e7d009 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Models/PacienteModel.java @@ -0,0 +1,47 @@ +package br.com.prontorecife.auth.Models; + +import jakarta.persistence.*; +import lombok.AllArgsConstructor; +import lombok.Getter; +import lombok.NoArgsConstructor; +import lombok.Setter; + +import java.time.LocalDate; +import java.util.UUID; + +@Entity +@Table(name = "paciente") +@Getter @Setter +@AllArgsConstructor +@NoArgsConstructor +public class PacienteModel{ + @Id + private String id; + @Column (name = "nome_completo") + private String nomeCompleto; + @Column(name = "cpf", unique = true, length = 14) + private String CPF; + @Column(name = "data_nascimento") + private LocalDate dataNascimento; + private String genero; + @Column(name = "email", unique = true) + private String email; + private String senha; + private String telefone; + @Column(name = "contato_representante", unique = true) + private String contatoRepresentante; + private String endereco; + private String alergia; + @Column(name = "condicoes_cronicas", unique = true) + private String condicoesCronicas; + @Column(name = "responsavel_cpf", unique = true) + private String responsavelCpf; + + + @PrePersist + public void prePersist() { + if (id == null) { + id = UUID.randomUUID().toString(); + } + } +} diff --git a/src/main/java/br/com/prontorecife/auth/Repositories/MedicoRepository.java b/src/main/java/br/com/prontorecife/auth/Repositories/MedicoRepository.java new file mode 100644 index 0000000..ee11b3e --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Repositories/MedicoRepository.java @@ -0,0 +1,15 @@ +package br.com.prontorecife.auth.Repositories; + +import br.com.prontorecife.auth.Models.MedicoModel; +import jakarta.transaction.Transactional; +import org.springframework.data.jpa.repository.JpaRepository; +import org.springframework.stereotype.Repository; + +import java.util.Optional; + +@Repository +public interface MedicoRepository extends JpaRepository { + Optional findByCRM(String CRM); + @Transactional + void deleteByCRM(String CRM); +} diff --git a/src/main/java/br/com/prontorecife/auth/Repositories/PacienteRepository.java b/src/main/java/br/com/prontorecife/auth/Repositories/PacienteRepository.java new file mode 100644 index 0000000..f50e9f4 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Repositories/PacienteRepository.java @@ -0,0 +1,17 @@ +package br.com.prontorecife.auth.Repositories; + +import br.com.prontorecife.auth.Models.PacienteModel; +import jakarta.validation.constraints.NotBlank; +import jakarta.validation.constraints.Pattern; +import org.springframework.data.jpa.repository.JpaRepository; +import org.springframework.stereotype.Repository; + +import java.util.List; +import java.util.Optional; + +@Repository +public interface PacienteRepository extends JpaRepository { + Optional findByCPF(@NotBlank @Pattern(regexp = "\\d{11}") String CPF); + List findByResponsavelCpf(String CPF); + +} diff --git a/src/main/java/br/com/prontorecife/auth/Security/SecurityFilter.java b/src/main/java/br/com/prontorecife/auth/Security/SecurityFilter.java new file mode 100644 index 0000000..5a7c9f3 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Security/SecurityFilter.java @@ -0,0 +1,49 @@ +package br.com.prontorecife.auth.Security; + +import br.com.prontorecife.auth.Exceptions.AuthorizationHeaderException; +import br.com.prontorecife.auth.Service.TokenService; +import jakarta.servlet.FilterChain; +import jakarta.servlet.ServletException; +import jakarta.servlet.http.HttpServletRequest; +import jakarta.servlet.http.HttpServletResponse; +import lombok.NonNull; +import lombok.RequiredArgsConstructor; +import lombok.extern.slf4j.Slf4j; +import org.springframework.security.core.AuthenticationException; +import org.springframework.stereotype.Component; +import org.springframework.web.filter.OncePerRequestFilter; + +import java.io.IOException; + +@Component +@RequiredArgsConstructor +@Slf4j +public class SecurityFilter extends OncePerRequestFilter { + + private final TokenService tokenService; + + protected void doFilterInternal(@NonNull HttpServletRequest request, @NonNull HttpServletResponse response, @NonNull FilterChain filterChain) throws ServletException, IOException, AuthenticationException { + if (request.getRequestURI().startsWith("/swagger") + || request.getRequestURI().startsWith("/v3/api-docs") + || request.getRequestURI().startsWith("/auth/login") + || request.getRequestURI().startsWith("/auth/logout")){ + filterChain.doFilter(request, response); + return; + } + String token = this.recoverToken(request); + log.info(token); + if (tokenService.isTokenInvalid(token)) { + response.setStatus(HttpServletResponse.SC_UNAUTHORIZED); + response.getWriter().write("Token invalido ou expirado!"); + return; + } + filterChain.doFilter(request, response); + } + private String recoverToken (HttpServletRequest request){ + String authHeader = String.valueOf(request.getHeader("x-auth")); + if (authHeader == null || authHeader.isEmpty()) { + throw new AuthorizationHeaderException(); + } + return authHeader; + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/Service/AuthenticationService.java b/src/main/java/br/com/prontorecife/auth/Service/AuthenticationService.java new file mode 100644 index 0000000..17e25f1 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Service/AuthenticationService.java @@ -0,0 +1,49 @@ +package br.com.prontorecife.auth.Service; + +import br.com.prontorecife.auth.DTOs.AuthenticationRequestDTO; +import br.com.prontorecife.auth.Enum.LoginFlowEnum; +import br.com.prontorecife.auth.Exceptions.CustomException; +import br.com.prontorecife.auth.Models.MedicoModel; +import br.com.prontorecife.auth.Models.PacienteModel; +import br.com.prontorecife.auth.Repositories.MedicoRepository; +import br.com.prontorecife.auth.Repositories.PacienteRepository; +import lombok.RequiredArgsConstructor; +import org.springframework.http.HttpStatus; + +import org.springframework.security.crypto.password.PasswordEncoder; +import org.springframework.stereotype.Service; + +@Service +@RequiredArgsConstructor +public class AuthenticationService { + private final MedicoRepository medicoRepository; + private final PacienteRepository pacienteRepository; + private final PasswordEncoder passwordEncoder; + private final TokenService tokenService; + + public String authenticate(AuthenticationRequestDTO request){ + if (request.getFlow() == LoginFlowEnum.CRM) { + MedicoModel medico = getMedico(request.getIdentificador()); + if (!passwordEncoder.matches(request.getSenha(), medico.getSenha())) { + throw new CustomException("CRM ou Senha Incorreta!", HttpStatus.UNAUTHORIZED, null); + } + return tokenService.generateToken(medico.getId()); + } + if (request.getFlow() == LoginFlowEnum.CPF) { + PacienteModel paciente = getPaciente(request.getIdentificador()); + if (!passwordEncoder.matches(request.getSenha(), paciente.getSenha())) { + throw new CustomException("CPF ou Senha Incorreta!", HttpStatus.UNAUTHORIZED, null); + } + return tokenService.generateToken(paciente.getId()); + } + return "Invalid Flow!"; + } + public MedicoModel getMedico(String crm){ + return medicoRepository.findByCRM(crm).orElseThrow(() -> + new RuntimeException("Medico Não Encontrado!")); + } + public PacienteModel getPaciente(String cpf){ + return pacienteRepository.findByCPF(cpf).orElseThrow(() -> + new RuntimeException("Paciente Não Encontrado!")); + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/Service/RedisService.java b/src/main/java/br/com/prontorecife/auth/Service/RedisService.java new file mode 100644 index 0000000..ac3b1ee --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Service/RedisService.java @@ -0,0 +1,20 @@ +package br.com.prontorecife.auth.Service; + +import lombok.RequiredArgsConstructor; +import org.springframework.data.redis.core.StringRedisTemplate; +import org.springframework.stereotype.Service; + +import java.util.concurrent.TimeUnit; + +@Service +@RequiredArgsConstructor +public class RedisService { + private final StringRedisTemplate redisTemplate; + + public void addTokenToBlacklist(String token, long duration){ + redisTemplate.opsForValue().set(token, "blacklisted", duration, TimeUnit.SECONDS); + } + public boolean isTokenBlacklisted(String token){ + return redisTemplate.hasKey(token); + } +} diff --git a/src/main/java/br/com/prontorecife/auth/Service/TokenService.java b/src/main/java/br/com/prontorecife/auth/Service/TokenService.java new file mode 100644 index 0000000..6243fc0 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/Service/TokenService.java @@ -0,0 +1,66 @@ +package br.com.prontorecife.auth.Service; + +import br.com.prontorecife.auth.Exceptions.CustomException; +import com.auth0.jwt.JWT; +import com.auth0.jwt.interfaces.DecodedJWT; +import com.mysql.cj.util.StringUtils; +import io.jsonwebtoken.Jwts; +import lombok.RequiredArgsConstructor; +import org.springframework.beans.factory.annotation.Value; +import org.springframework.http.HttpStatus; +import org.springframework.stereotype.Service; +import com.auth0.jwt.algorithms.Algorithm; + +import javax.crypto.SecretKey; +import javax.crypto.spec.SecretKeySpec; +import java.security.Key; +import java.time.Instant; +import java.time.temporal.ChronoUnit; +import java.util.Date; +import java.util.List; +import java.util.Map; +import java.util.concurrent.ConcurrentHashMap; + +@Service +@RequiredArgsConstructor +public class TokenService { + @Value("${jjwt.secret}") + private String jjwtSecret; + private final RedisService redisService; + private final ConcurrentHashMap invalidatedTokens = new ConcurrentHashMap<>(); + + public String generateToken(String id){ + return Jwts.builder() + .subject(id) + .issuedAt(new Date()) + .expiration(Date.from(Instant.now().plus(24, ChronoUnit.HOURS))) + .signWith(getSecretKey()) + .compact(); + } + private SecretKey getSecretKey() { + return new SecretKeySpec(jjwtSecret.getBytes(), "HmacSHA256"); + } + public boolean validateToken(String token){ + Algorithm algorithm = encryptor(jjwtSecret); + try { + JWT.require(algorithm) + .build() + .verify(token) + .getToken(); + + return !redisService.isTokenBlacklisted(token); + + }catch (Exception e){ + throw new CustomException("Sessão invalida!", HttpStatus.FORBIDDEN, Map.of("error", e.getMessage())); + } + } + public void invalidateToken(String token, long expirationTime){ + redisService.addTokenToBlacklist(token, expirationTime); + } + public boolean isTokenInvalid(String token) { + return !redisService.isTokenBlacklisted(token); + } + public Algorithm encryptor(String jjwtSecret){ + return Algorithm.HMAC256(jjwtSecret); + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/config/RedisConfig.java b/src/main/java/br/com/prontorecife/auth/config/RedisConfig.java new file mode 100644 index 0000000..101507e --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/config/RedisConfig.java @@ -0,0 +1,21 @@ +package br.com.prontorecife.auth.config; + +import org.springframework.context.annotation.Bean; +import org.springframework.context.annotation.Configuration; +import org.springframework.data.redis.connection.RedisConnectionFactory; +import org.springframework.data.redis.core.RedisTemplate; +import org.springframework.data.redis.serializer.GenericJackson2JsonRedisSerializer; +import org.springframework.data.redis.serializer.StringRedisSerializer; + +@Configuration +public class RedisConfig { + + @Bean + public RedisTemplate redisTemplate(RedisConnectionFactory connectionFactory) { + RedisTemplate template = new RedisTemplate<>(); + template.setConnectionFactory(connectionFactory); + template.setKeySerializer(new StringRedisSerializer()); + template.setValueSerializer(new GenericJackson2JsonRedisSerializer()); + return template; + } +} \ No newline at end of file diff --git a/src/main/java/br/com/prontorecife/auth/config/SecurityConfiguration.java b/src/main/java/br/com/prontorecife/auth/config/SecurityConfiguration.java new file mode 100644 index 0000000..1a31f05 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/config/SecurityConfiguration.java @@ -0,0 +1,27 @@ +package br.com.prontorecife.auth.config; + +import org.springframework.context.annotation.Bean; +import org.springframework.context.annotation.Configuration; +import org.springframework.security.config.annotation.web.builders.HttpSecurity; +import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; +import org.springframework.security.config.http.SessionCreationPolicy; +import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; +import org.springframework.security.crypto.password.PasswordEncoder; +import org.springframework.security.web.SecurityFilterChain; + +@Configuration +@EnableWebSecurity +public class SecurityConfiguration { + + @Bean + public SecurityFilterChain securityFilterChain(HttpSecurity httpSecurity) throws Exception { + return httpSecurity.csrf(csrf -> csrf.disable()) + .sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS)) + .authorizeHttpRequests(authorize -> authorize.anyRequest().permitAll()) + .build(); + } + @Bean + public PasswordEncoder passwordEncoder(){ + return new BCryptPasswordEncoder(); + } +} diff --git a/src/main/java/br/com/prontorecife/auth/config/WebConfig.java b/src/main/java/br/com/prontorecife/auth/config/WebConfig.java new file mode 100644 index 0000000..d07cdf8 --- /dev/null +++ b/src/main/java/br/com/prontorecife/auth/config/WebConfig.java @@ -0,0 +1,16 @@ +package br.com.prontorecife.auth.config; + +import org.springframework.context.annotation.Configuration; +import org.springframework.web.servlet.config.annotation.CorsRegistry; +import org.springframework.web.servlet.config.annotation.WebMvcConfigurer; + +@Configuration +public class WebConfig implements WebMvcConfigurer { + @Override + public void addCorsMappings(CorsRegistry registry) { + registry.addMapping("/**") + .allowedOrigins("*") + .allowedMethods("GET", "POST", "PUT", "DELETE", "OPTIONS", "PATCH") + .allowedHeaders("*"); + } +} diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties new file mode 100644 index 0000000..534af73 --- /dev/null +++ b/src/main/resources/application.properties @@ -0,0 +1,16 @@ +spring.application.name=Auth +spring.datasource.url=jdbc:mysql://autorack.proxy.rlwy.net:32736/prontorecife +spring.datasource.username=root +spring.datasource.password=ZMNMcoCclYMYjKAAGygxbyccOcpiQQVc +spring.data.redis.host=junction.proxy.rlwy.net +spring.data.redis.port=30951 +server.port=8083 +spring.data.redis.password=ffLHhJnwImcmhCsuikcixfUdPOdIOEHj +spring.jpa.hibernate.ddl-auto=none +spring.datasource.hikari.maximum-pool-size=10 +springdoc.swagger-ui.path=/swagger-ui.html +jjwt.secret = VGhlIHN0YW5kYXJkIExvcmVtIElwc3VtIHBhc3NhZ2UsIHVzZWQgc2luY2UgdGhlIDE1MDBz +spring.datasource.driver-class-name=com.mysql.cj.jdbc.Driver + +spring.jpa.defer-datasource-initialization=true +spring.sql.init.mode=always \ No newline at end of file diff --git a/src/test/java/br/com/prontorecife/auth/AuthApplicationTests.java b/src/test/java/br/com/prontorecife/auth/AuthApplicationTests.java new file mode 100644 index 0000000..57054ef --- /dev/null +++ b/src/test/java/br/com/prontorecife/auth/AuthApplicationTests.java @@ -0,0 +1,13 @@ +package br.com.prontorecife.auth; + +import org.junit.jupiter.api.Test; +import org.springframework.boot.test.context.SpringBootTest; + +@SpringBootTest +class AuthApplicationTests { + + @Test + void contextLoads() { + } + +}