baso53
/ add-admin-controller.java
Created
November 13, 2021 21:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @RestController | |
| @RequestMapping("/admin") | |
| @RequiredArgsConstructor | |
| public class AdminController { | |
| private final UserManagementService userManagementService; | |
| @Secured("ROLE_ANONYMOUS") | |
| @PostMapping(path = "/user-claims/{uid}") | |
| public void setUserClaims( |
baso53
/ web-security-config-add-method-security.java
Last active
November 13, 2021 21:31
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @EnableGlobalMethodSecurity(prePostEnabled = true, securedEnabled = true) | |
| public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter { | |
| @Override | |
| protected void configure(HttpSecurity http) throws Exception { | |
| http.csrf().disable(); | |
| http.oauth2ResourceServer() | |
| .jwt(); | |
| } |
baso53
/ set-user-claims-list.java
Last active
November 13, 2021 21:42
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @Service | |
| @RequiredArgsConstructor | |
| public class UserManagementService { | |
| private final FirebaseAuth firebaseAuth; | |
| public void setUserClaims(String uid, List<Permission> requestedPermissions) throws FirebaseAuthException { | |
| List<String> permissions = requestedPermissions | |
| .stream() | |
| .map(Enum::toString) |
baso53
/ add-permission-enum.java
Last active
November 13, 2021 20:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public enum Permission { | |
| READ, | |
| WRITE | |
| } |
baso53
/ add-firebase-auth-bean.java
Created
November 13, 2021 20:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @Configuration | |
| public class FirebaseAuthConfig { | |
| @Value("classpath:service-account.json") | |
| Resource serviceAccount; | |
| @Bean | |
| FirebaseAuth firebaseAuth() throws IOException { | |
| var options = FirebaseOptions.builder() | |
| .setCredentials(GoogleCredentials.fromStream(serviceAccount.getInputStream())) |
baso53
/ add-firebase-admin.groovy
Last active
November 13, 2021 20:09
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| dependencies { | |
| // ... | |
| implementation 'com.google.firebase:firebase-admin:8.1.0' | |
| compileOnly 'org.projectlombok:lombok' | |
| annotationProcessor 'org.projectlombok:lombok' | |
| // ... | |
| } |
baso53
/ make-the-request.sh
Created
November 12, 2021 17:05
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl --location --request GET 'http://localhost:8080/app/test' \ | |
| --header 'Authorization: Bearer [your JWT token]' \ |
baso53
/ AppControllerPart1.java
Created
November 12, 2021 17:00
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @RestController | |
| @RequestMapping("/app") | |
| public class AppController { | |
| @GetMapping(path = "/test") | |
| public String test(Principal principal) { | |
| return principal.getName(); | |
| } | |
| } |
baso53
/ application.properties
Created
November 12, 2021 16:42
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| spring.security.oauth2.resourceserver.jwt.jwk-set-uri=https://www.googleapis.com/service_accounts/v1/jwk/securetoken%40system.gserviceaccount.com |
baso53
/ WebSecurityConfigurationPart1.java
Last active
August 23, 2023 08:56
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @Configuration | |
| public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter { | |
| @Override | |
| protected void configure(HttpSecurity http) throws Exception { | |
| http.authorizeRequests() | |
| .anyRequest() | |
| .authenticated(); | |
| http.oauth2ResourceServer() |