首頁 探索 說明
註冊 登入
dkb
/
auth-service
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: a0f7a06ec6
分支列表 標籤列表
auth-service
/
src
/
main
/
java
/
com
/
danielbohry
/
authservice
/
api
/
AuthController.java

AuthController.java 2.0 KB
文件歷史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152 
  1. package com.danielbohry.authservice.api;
    2. 

  2. 

  3. import com.danielbohry.authservice.api.dto.AuthenticationRequest;
    4. 

  4. import com.danielbohry.authservice.api.dto.AuthenticationResponse;
    5. 

  5. import com.danielbohry.authservice.domain.ApplicationUser;
    6. 

  6. import com.danielbohry.authservice.service.auth.AuthService;
    7. 

  7. import lombok.AllArgsConstructor;
    8. 

  8. import lombok.extern.slf4j.Slf4j;
    9. 

  9. import org.springframework.http.HttpStatus;
    10. 

  10. import org.springframework.http.ResponseEntity;
    11. 

  11. import org.springframework.security.core.GrantedAuthority;
    12. 

  12. import org.springframework.security.core.context.SecurityContext;
    13. 

  13. import org.springframework.security.core.context.SecurityContextHolder;
    14. 

  14. import org.springframework.web.bind.annotation.*;
    15. 

  15. 

  16. @Slf4j
    17. 

  17. @RestController
    18. 

  18. @AllArgsConstructor
    19. 

  19. @CrossOrigin
    20. 

  20. @RequestMapping("api")
    21. 

  21. public class AuthController {
    22. 

  22. 

  23.     private final AuthService service;
    24. 

  24. 

  25.     @PostMapping("register")
    26. 

  26.     public ResponseEntity<AuthenticationResponse> register(@RequestBody AuthenticationRequest request) {
    27. 

  27.         log.info("New signup for username [{}]", request.getUsername());
    28. 

  28.         var response = service.signup(request);
    29. 

  29.         return ResponseEntity.ok(response);
    30. 

  30.     }
    31. 

  31. 

  32.     @PostMapping("authenticate")
    33. 

  33.     public ResponseEntity<AuthenticationResponse> authenticate(@RequestBody AuthenticationRequest request) {
    34. 

  34.         log.info("New signing for username [{}]", request.getUsername());
    35. 

  35.         var response = service.signin(request);
    36. 

  36.         return ResponseEntity.ok(response);
    37. 

  37.     }
    38. 

  38. 

  39.     @PostMapping("authorize")
    40. 

  40.     public ResponseEntity<Object> authorize(@RequestParam(defaultValue = "USER", required = false) String authority) {
    41. 

  41.         SecurityContext context = SecurityContextHolder.getContext();
    42. 

  42.         Object principal = context.getAuthentication().getPrincipal();
    43. 

  43.         if (principal instanceof ApplicationUser user) {
    44. 

  44.             if (user.getAuthorities().stream().map(GrantedAuthority::getAuthority).toList().contains(authority)) {
    45. 

  45.                 return ResponseEntity.ok().build();
    46. 

  46.             }
    47. 

  47.         }
    48. 

  48. 

  49.         return ResponseEntity.status(HttpStatus.FORBIDDEN).build();
    50. 

  50.     }
    51. 

  51. 

  52. }
    53.