Add statics

Author: Throyer

pom.xml

@@ -83,6 +83,27 @@
 			<version>0.9.1</version>
 		</dependency>
 
+		<!-- #region Web Jars -->
+		<!-- Locator -->
+		<dependency>
+			<groupId>org.webjars</groupId>
+			<artifactId>webjars-locator</artifactId>
+			<version>0.42</version>
+		</dependency>
+		<!-- Font Awesome -->
+		<dependency>
+			<groupId>org.webjars</groupId>
+			<artifactId>font-awesome</artifactId>
+			<version>5.15.4</version>
+		</dependency>
+		<!-- Bootstrap -->
+		<dependency>
+			<groupId>org.webjars</groupId>
+			<artifactId>bootstrap</artifactId>
+			<version>5.1.3</version>
+		</dependency>
+		<!-- #endregion -->
+
 		<dependency>
 			<groupId>org.springframework.boot</groupId>
 			<artifactId>spring-boot-devtools</artifactId>
@@ -160,7 +181,7 @@
 				<artifactId>jib-maven-plugin</artifactId>
 				<version>3.1.4</version>
 				<configuration>
-					<from>                           
+					<from>
 						<image>openjdk:16</image>
 					</from>
 					<to>

src/main/java/com/github/throyer/common/springboot/configurations/SpringSecurityConfiguration.java

@@ -1,10 +1,6 @@
 package com.github.throyer.common.springboot.configurations;
 
 import static com.github.throyer.common.springboot.errors.ValidationHandlers.forbidden;
-import static com.github.throyer.common.springboot.utils.Constants.CONFIGURATIONS.EVERY_HTML;
-import static com.github.throyer.common.springboot.utils.Constants.CONFIGURATIONS.FIRST;
-import static com.github.throyer.common.springboot.utils.Constants.CONFIGURATIONS.SECOND;
-import static com.github.throyer.common.springboot.utils.Constants.CONFIGURATIONS.SWAGGER_DOCS;
 import static com.github.throyer.common.springboot.utils.Constants.SECURITY.ACESSO_NEGADO_URL;
 import static com.github.throyer.common.springboot.utils.Constants.SECURITY.DAY_MILLISECONDS;
 import static com.github.throyer.common.springboot.utils.Constants.SECURITY.HOME_URL;
@@ -45,7 +41,7 @@
 public class SpringSecurityConfiguration {
 
     @Autowired
-    private SecurityService authService;
+    private SecurityService securityService;
 
     @Autowired
     private BCryptPasswordEncoder encoder;
@@ -59,13 +55,13 @@ public SpringSecurityConfiguration(@Value("${token.secret}") String secret) {
         SpringSecurityConfiguration.SECRET = secret;
     }
 
-    @Order(FIRST)
+    @Order(1)
     @Configuration
     public class Api extends WebSecurityConfigurerAdapter {
 
         @Override
         protected void configure(AuthenticationManagerBuilder auth) throws Exception {
-            auth.userDetailsService(authService)
+            auth.userDetailsService(securityService)
                 .passwordEncoder(encoder);
         }
 
@@ -102,7 +98,7 @@ protected void configure(HttpSecurity http) throws Exception {
         public void configure(WebSecurity web) throws Exception {
             web
                 .ignoring()
-                    .antMatchers(EVERY_HTML, SWAGGER_DOCS);
+                    .antMatchers(STATIC_FILES);
         }
 
         @Bean
@@ -112,13 +108,13 @@ protected AuthenticationManager authenticationManager() throws Exception {
         }
     }
 
-    @Order(SECOND)
+    @Order(2)
     @Configuration
     public class App extends WebSecurityConfigurerAdapter {
         @Override
         protected void configure(AuthenticationManagerBuilder auth) throws Exception {
             auth.
-                userDetailsService(authService)
+                userDetailsService(securityService)
                     .passwordEncoder(encoder);
         }
 
@@ -128,38 +124,31 @@ protected void configure(HttpSecurity http) throws Exception {
             http
                 .antMatcher("/app/**")
                     .authorizeRequests()
-                        .antMatchers(GET, /*LOGIN_URL*/ "/app/**")
+                        .antMatchers(GET, LOGIN_URL)
                             .permitAll()
                         .anyRequest()
-                            .authenticated();
-                //                 .and()
-                //                     .csrf()
-                //                         .disable()
-                //     .formLogin()
-                //         .loginPage(LOGIN_URL)
-                //             .failureUrl(LOGIN_ERROR_URL)
-                //             .defaultSuccessUrl(HOME_URL)
-                //         .usernameParameter(USERNAME_PARAMETER)
-                //         .passwordParameter(PASSWORD_PARAMETER)
-                // .and()                    
-                //     .rememberMe()
-                //         .key(SECRET)
-                //             .tokenValiditySeconds(DAY_MILLISECONDS)
-                // .and()                    
-                //     .logout()
-                //         .deleteCookies(SESSION_COOKIE_NAME)
-                //             .logoutRequestMatcher(new AntPathRequestMatcher(LOGOUT_URL))
-                //             .logoutSuccessUrl(LOGIN_URL)
-                // .and()
-                //     .exceptionHandling()
-                //         .accessDeniedPage(ACESSO_NEGADO_URL);
+                            .authenticated()
+                                .and()
+                                    .csrf()
+                                        .disable()
+                    .formLogin()
+                        .loginPage(LOGIN_URL)
+                            .failureUrl(LOGIN_ERROR_URL)
+                            .defaultSuccessUrl(HOME_URL)
+                        .usernameParameter(USERNAME_PARAMETER)
+                        .passwordParameter(PASSWORD_PARAMETER)
+                .and()                    
+                    .rememberMe()
+                        .key(SECRET)
+                            .tokenValiditySeconds(DAY_MILLISECONDS)
+                .and()                    
+                    .logout()
+                        .deleteCookies(SESSION_COOKIE_NAME)
+                            .logoutRequestMatcher(new AntPathRequestMatcher(LOGOUT_URL))
+                            .logoutSuccessUrl("/app")
+                .and()
+                    .exceptionHandling()
+                        .accessDeniedPage(ACESSO_NEGADO_URL);
         }
-        
-        @Override
-        public void configure(WebSecurity web) throws Exception {
-            web
-                .ignoring()
-                    .antMatchers(STATIC_FILES);
-        }    
     }
 }

src/main/java/com/github/throyer/common/springboot/configurations/SpringWebConfiguration.java

@@ -6,6 +6,7 @@
 import org.springframework.security.data.repository.query.SecurityEvaluationContextExtension;
 import org.springframework.web.servlet.config.annotation.CorsRegistry;
 import org.springframework.web.servlet.config.annotation.EnableWebMvc;
+import org.springframework.web.servlet.config.annotation.ResourceHandlerRegistry;
 import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
 
 @EnableWebMvc
@@ -25,6 +26,17 @@ public BCryptPasswordEncoder passwordEncoder() {
         return new BCryptPasswordEncoder();
     }
 
+    @Override
+    public void addResourceHandlers(ResourceHandlerRegistry registry) {
+        registry
+            .addResourceHandler("/**")
+                .addResourceLocations("classpath:/static/");
+        
+        registry
+            .addResourceHandler("/webjars/**")
+                .addResourceLocations("/webjars/");
+    }
+
     @Bean
     public SecurityEvaluationContextExtension securityEvaluationContextExtension() {
         return new SecurityEvaluationContextExtension();

src/main/java/com/github/throyer/common/springboot/controllers/app/LoginController.java

@@ -0,0 +1,14 @@
+package com.github.throyer.common.springboot.controllers.app;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+@Controller
+@RequestMapping("/app/login")
+public class LoginController {
+    @GetMapping
+    public String login() {
+        return "app/login/index";
+    }
+}

src/main/java/com/github/throyer/common/springboot/domain/services/security/SecurityService.java

@@ -35,7 +35,7 @@ public SecurityService(@Value("${token.secret}") String secret) {
 
     @Override
     public UserDetails loadUserByUsername(String email) throws UsernameNotFoundException {
-        return new Authorized(repository.findOptionalByEmail(email)
+        return new Authorized(repository.findOptionalByEmailFetchRoles(email)
                 .orElseThrow(() -> new UsernameNotFoundException(INVALID_USERNAME)));
     }
 

src/main/java/com/github/throyer/common/springboot/utils/Constants.java

@@ -19,7 +19,7 @@ public class SECURITY {
         public static final String HOME_URL = "/app";
         public static final String LOGIN_URL = "/app/login";
         public static final String LOGIN_ERROR_URL = LOGIN_URL + "?error=true";
-        public static final String ACESSO_NEGADO_URL = LOGIN_URL + "?negado=true";
+        public static final String ACESSO_NEGADO_URL = LOGIN_URL + "?denied=true";
         public static final String LOGOUT_URL = "/app/logout";
 
         public static final String SESSION_COOKIE_NAME = "JSESSIONID";
@@ -31,15 +31,9 @@ public class SECURITY {
             "/webjars/**",
             "/webjars/",
             "/js/**",
-            "/favicon.ico"
-        };
-    
-    }
-
-    public class CONFIGURATIONS {
-        public static final int FIRST = 1;
-        public static final int SECOND = 2;
-        public static final String EVERY_HTML = "/**.html";
-        public static final String SWAGGER_DOCS = "/documentation/**";
+            "/favicon.ico",
+            "/**.html",
+            "/documentation/**"
+        };    
     }
 }

src/main/resources/db/migration/V2021052906051622322329__insert_admin_and_roles.sql

@@ -1,31 +1,31 @@
 -- variables
 SET @name = 'admin';
 SET @email = 'admin@email.com';
-SET @password = '$2a$10$L9CP7W3JIKhVz5J/WiMP/.LEqvAMC915HxxON98MFtyJzXbIEnajS';
+SET @password = '$2a$10$QBuMJLbVmHzgvTwpxDynSetACNdCBjU5zgo.81RWEDzH46aUrgcNK';
 SET @adm = 'ADM';
 SET @user = 'USER';
 
 -- insert admin
-INSERT INTO "user"
-    ("name", "email", "password")
+INSERT INTO user
+    (name, email, password)
 VALUES
     (@name, @email, @password);
 
 -- insert roles
-INSERT INTO "role"
-    ("name", "initials", "description", "created_by")
+INSERT INTO role
+    (name, initials, description, created_by)
 VALUES
-    ('ADMINISTRADOR', @adm,  'Administrador do sistema', (SELECT id FROM "user" WHERE email = @email)),
-    ('USER',          @user, 'Usuário do sistema',       (SELECT id FROM "user" WHERE email = @email));
+    ('ADMINISTRADOR', @adm,  'Administrador do sistema', (SELECT id FROM user WHERE email = @email)),
+    ('USER',          @user, 'Usuário do sistema',       (SELECT id FROM user WHERE email = @email));
 
 -- put roles into admin
-INSERT INTO "user_role"
-    ("user_id", "role_id")
+INSERT INTO user_role
+    (user_id, role_id)
 VALUES
     (
-        (SELECT id FROM "user" WHERE email = @email),
-        (SELECT id FROM "role" WHERE initials = @adm)
+        (SELECT id FROM user WHERE email = @email),
+        (SELECT id FROM role WHERE initials = @adm)
     ),(
-        (SELECT id FROM "user" WHERE email = @email),
-        (SELECT id FROM "role" WHERE initials = @user)
+        (SELECT id FROM user WHERE email = @email),
+        (SELECT id FROM role WHERE initials = @user)
     );

src/main/resources/static/css/login.css

@@ -0,0 +1,39 @@
+.form {
+    width: 100%;
+    max-width: 330px;
+    padding: 15px;
+    margin: auto;
+}
+
+.form > .icon {
+    display: flex;
+    justify-content: center;
+}
+
+.form .checkbox {
+    font-weight: 400;
+}
+
+.form .form-control {
+    position: relative;
+    box-sizing: border-box;
+    height: auto;
+    padding: 10px;
+    font-size: 16px;
+}
+
+.form .form-control:focus {
+    z-index: 2;
+}
+
+.form input[type="email"] {
+    margin-bottom: -1px;
+    border-bottom-right-radius: 0;
+    border-bottom-left-radius: 0;
+}
+
+.form input[type="password"] {
+    margin-bottom: 10px;
+    border-top-left-radius: 0;
+    border-top-right-radius: 0;
+}