florian/kotlin-springboot-gradle-startup
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit

Browse Source
This commit is contained in:
Florian THIERRY
2025-11-14 14:17:55 +01:00
commit 56e178789f
68 changed files with 1776 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

45
.gitignore vendored Normal file
View File

@@ -0,0 +1,45 @@
.gradle
build/
!gradle/wrapper/gradle-wrapper.jar
!**/src/main/**/build/
!**/src/test/**/build/
### IntelliJ IDEA ###
.idea/*
*.iws
*.iml
*.ipr
out/
!**/src/main/**/out/
!**/src/test/**/out/
### Kotlin ###
.kotlin
### Eclipse ###
.apt_generated
.classpath
.factorypath
.project
.settings
.springBeans
.sts4-cache
bin/
!**/src/main/**/bin/
!**/src/test/**/bin/
### NetBeans ###
/nbproject/private/
/nbbuild/
/dist/
/nbdist/
/.nb-gradle/
### VS Code ###
.vscode/
### Mac OS ###
.DS_Store
### Postgresql data ###
imagora-infrastructure/docker/postgres_data

25
README.md Normal file
View File

@@ -0,0 +1,25 @@
# imagora
## User types
### All user types
Features:
- Login
### Administrator
Features:
- List existing users
- Get a user details
- Create a new user
- Update an existing user
- Delete an existing user
### Standard user
Features:
- List folders
- List photos in a folder
- Get a photo
- Create a new folder
- Upload a single photo in a folder
- Upload multiple photos in a zip archive
# Documentations
https://commons.apache.org/proper/commons-compress/examples.html#a7z

56
build.gradle.kts Normal file
View File

@@ -0,0 +1,56 @@
plugins {
kotlin("jvm") version "2.2.21"
kotlin("plugin.spring") version "2.2.21"
id("io.spring.dependency-management") version "1.1.7"
}
group = "org.takiguchi.imagora"
version = "0.0.1-SNAPSHOT"
java {
toolchain {
languageVersion = JavaLanguageVersion.of(21)
}
}
repositories {
mavenCentral()
}
subprojects {
apply(plugin = "java")
apply(plugin = "org.jetbrains.kotlin.jvm")
repositories {
mavenCentral()
}
dependencies {
implementation(platform("org.springframework.boot:spring-boot-dependencies:3.5.7"))
implementation("com.michael-bull.kotlin-result:kotlin-result:2.1.0")
testImplementation("org.jetbrains.kotlin:kotlin-test-junit5")
testImplementation("io.mockk:mockk:1.14.6")
testImplementation("org.springframework.boot:spring-boot-starter-test:3.5.7")
testImplementation("org.assertj:assertj-core:3.27.6")
}
tasks.withType<Test> {
useJUnitPlatform()
}
}
dependencyManagement {
imports {
mavenBom("org.springframework.boot:spring-boot-dependencies:3.5.7")
}
}
kotlin {
compilerOptions {
freeCompilerArgs.addAll("-Xjsr305=strict")
}
}
tasks.withType<Test> {
useJUnitPlatform()
}

7
gradle.properties Normal file
View File

@@ -0,0 +1,7 @@
# Enable the build cache to save time by reusing outputs produced by other successful builds.
# https://docs.gradle.org/current/userguide/build_cache.html
org.gradle.caching=true
# Enable the configuration cache to reuse the build configuration and enable parallel task execution.
# (Note that some plugins may not yet be compatible with the configuration cache.)
# https://docs.gradle.org/current/userguide/configuration_cache.html
org.gradle.configuration-cache=true

22
gradle/libs.versions.toml Normal file
View File

@@ -0,0 +1,22 @@
# Version catalog is a central place for you to declare and version dependencies
# https://docs.gradle.org/current/userguide/platforms.html#sub:version-catalog
# https://docs.gradle.org/current/userguide/platforms.html#sub::toml-dependencies-format
[versions]
kotlin = "2.2.20"
kotlinxDatetime = "0.6.2"
kotlinxSerializationJSON = "1.8.1"
kotlinxCoroutines = "1.10.2"
[libraries]
kotlinGradlePlugin = { module = "org.jetbrains.kotlin:kotlin-gradle-plugin", version.ref = "kotlin" }
kotlinxDatetime = { module = "org.jetbrains.kotlinx:kotlinx-datetime", version.ref = "kotlinxDatetime" }
kotlinxSerialization = { module = "org.jetbrains.kotlinx:kotlinx-serialization-json", version.ref = "kotlinxSerializationJSON" }
kotlinxCoroutines = { module = "org.jetbrains.kotlinx:kotlinx-coroutines-core", version.ref = "kotlinxCoroutines" }
# Libraries can be bundled together for easier import
[bundles]
kotlinxEcosystem = ["kotlinxDatetime", "kotlinxSerialization", "kotlinxCoroutines"]
[plugins]
kotlinPluginSerialization = { id = "org.jetbrains.kotlin.plugin.serialization", version.ref = "kotlin" }

BIN
gradle/wrapper/gradle-wrapper.jar vendored Normal file
View File

Binary file not shown.

6
gradle/wrapper/gradle-wrapper.properties vendored Normal file
View File

@@ -0,0 +1,6 @@
#Tue Nov 11 19:48:20 CET 2025
distributionBase=GRADLE_USER_HOME
distributionPath=wrapper/dists
distributionUrl=https\://services.gradle.org/distributions/gradle-8.14-bin.zip
zipStoreBase=GRADLE_USER_HOME
zipStorePath=wrapper/dists

234
gradlew vendored Executable file
View File

@@ -0,0 +1,234 @@
#!/bin/sh
#
# Copyright © 2015-2021 the original authors.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# https://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
##############################################################################
#
# Gradle start up script for POSIX generated by Gradle.
#
# Important for running:
#
# (1) You need a POSIX-compliant shell to run this script. If your /bin/sh is
# noncompliant, but you have some other compliant shell such as ksh or
# bash, then to run this script, type that shell name before the whole
# command line, like:
#
# ksh Gradle
#
# Busybox and similar reduced shells will NOT work, because this script
# requires all of these POSIX shell features:
# * functions;
# * expansions «$var», «${var}», «${var:-default}», «${var+SET}»,
# «${var#prefix}», «${var%suffix}», and «$( cmd )»;
# * compound commands having a testable exit status, especially «case»;
# * various built-in commands including «command», «set», and «ulimit».
#
# Important for patching:
#
# (2) This script targets any POSIX shell, so it avoids extensions provided
# by Bash, Ksh, etc; in particular arrays are avoided.
#
# The "traditional" practice of packing multiple parameters into a
# space-separated string is a well documented source of bugs and security
# problems, so this is (mostly) avoided, by progressively accumulating
# options in "$@", and eventually passing that to Java.
#
# Where the inherited environment variables (DEFAULT_JVM_OPTS, JAVA_OPTS,
# and GRADLE_OPTS) rely on word-splitting, this is performed explicitly;
# see the in-line comments for details.
#
# There are tweaks for specific operating systems such as AIX, CygWin,
# Darwin, MinGW, and NonStop.
#
# (3) This script is generated from the Groovy template
# https://github.com/gradle/gradle/blob/master/subprojects/plugins/src/main/resources/org/gradle/api/internal/plugins/unixStartScript.txt
# within the Gradle project.
#
# You can find Gradle at https://github.com/gradle/gradle/.
#
##############################################################################
# Attempt to set APP_HOME
# Resolve links: $0 may be a link
app_path=$0
# Need this for daisy-chained symlinks.
while
APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
[ -h "$app_path" ]
do
ls=$( ls -ld "$app_path" )
link=${ls#*' -> '}
case $link in #(
/*) app_path=$link ;; #(
*) app_path=$APP_HOME$link ;;
esac
done
APP_HOME=$( cd "${APP_HOME:-./}" && pwd -P ) || exit
APP_NAME="Gradle"
APP_BASE_NAME=${0##*/}
# Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"'
# Use the maximum available, or set MAX_FD != -1 to use that value.
MAX_FD=maximum
warn () {
echo "$*"
} >&2
die () {
echo
echo "$*"
echo
exit 1
} >&2
# OS specific support (must be 'true' or 'false').
cygwin=false
msys=false
darwin=false
nonstop=false
case "$( uname )" in #(
CYGWIN* ) cygwin=true ;; #(
Darwin* ) darwin=true ;; #(
MSYS* | MINGW* ) msys=true ;; #(
NONSTOP* ) nonstop=true ;;
esac
CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar
# Determine the Java command to use to start the JVM.
if [ -n "$JAVA_HOME" ] ; then
if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
# IBM's JDK on AIX uses strange locations for the executables
JAVACMD=$JAVA_HOME/jre/sh/java
else
JAVACMD=$JAVA_HOME/bin/java
fi
if [ ! -x "$JAVACMD" ] ; then
die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
Please set the JAVA_HOME variable in your environment to match the
location of your Java installation."
fi
else
JAVACMD=java
which java >/dev/null 2>&1 || die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
Please set the JAVA_HOME variable in your environment to match the
location of your Java installation."
fi
# Increase the maximum file descriptors if we can.
if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then
case $MAX_FD in #(
max*)
MAX_FD=$( ulimit -H -n ) ||
warn "Could not query maximum file descriptor limit"
esac
case $MAX_FD in #(
'' | soft) :;; #(
*)
ulimit -n "$MAX_FD" ||
warn "Could not set maximum file descriptor limit to $MAX_FD"
esac
fi
# Collect all arguments for the java command, stacking in reverse order:
# * args from the command line
# * the main class name
# * -classpath
# * -D...appname settings
# * --module-path (only if needed)
# * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables.
# For Cygwin or MSYS, switch paths to Windows format before running java
if "$cygwin" || "$msys" ; then
APP_HOME=$( cygpath --path --mixed "$APP_HOME" )
CLASSPATH=$( cygpath --path --mixed "$CLASSPATH" )
JAVACMD=$( cygpath --unix "$JAVACMD" )
# Now convert the arguments - kludge to limit ourselves to /bin/sh
for arg do
if
case $arg in #(
-*) false ;; # don't mess with options #(
/?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath
[ -e "$t" ] ;; #(
*) false ;;
esac
then
arg=$( cygpath --path --ignore --mixed "$arg" )
fi
# Roll the args list around exactly as many times as the number of
# args, so each arg winds up back in the position where it started, but
# possibly modified.
#
# NB: a `for` loop captures its iteration list before it begins, so
# changing the positional parameters here affects neither the number of
# iterations, nor the values presented in `arg`.
shift # remove old arg
set -- "$@" "$arg" # push replacement arg
done
fi
# Collect all arguments for the java command;
# * $DEFAULT_JVM_OPTS, $JAVA_OPTS, and $GRADLE_OPTS can contain fragments of
# shell script including quotes and variable substitutions, so put them in
# double quotes to make sure that they get re-expanded; and
# * put everything else in single quotes, so that it's not re-expanded.
set -- \
"-Dorg.gradle.appname=$APP_BASE_NAME" \
-classpath "$CLASSPATH" \
org.gradle.wrapper.GradleWrapperMain \
"$@"
# Use "xargs" to parse quoted args.
#
# With -n1 it outputs one arg per line, with the quotes and backslashes removed.
#
# In Bash we could simply go:
#
# readarray ARGS < <( xargs -n1 <<<"$var" ) &&
# set -- "${ARGS[@]}" "$@"
#
# but POSIX shell has neither arrays nor command substitution, so instead we
# post-process each arg (as a line of input to sed) to backslash-escape any
# character that might be a shell metacharacter, then use eval to reverse
# that process (while maintaining the separation between arguments), and wrap
# the whole thing up as a single "set" statement.
#
# This will of course break if any of these variables contains a newline or
# an unmatched quote.
#
eval "set -- $(
printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" |
xargs -n1 |
sed ' s~[^-[:alnum:]+,./:=@_]~\\&~g; ' |
tr '\n' ' '
)" '"$@"'
exec "$JAVACMD" "$@"

89
gradlew.bat vendored Normal file
View File

@@ -0,0 +1,89 @@
@rem
@rem Copyright 2015 the original author or authors.
@rem
@rem Licensed under the Apache License, Version 2.0 (the "License");
@rem you may not use this file except in compliance with the License.
@rem You may obtain a copy of the License at
@rem
@rem https://www.apache.org/licenses/LICENSE-2.0
@rem
@rem Unless required by applicable law or agreed to in writing, software
@rem distributed under the License is distributed on an "AS IS" BASIS,
@rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
@rem See the License for the specific language governing permissions and
@rem limitations under the License.
@rem
@if "%DEBUG%" == "" @echo off
@rem ##########################################################################
@rem
@rem Gradle startup script for Windows
@rem
@rem ##########################################################################
@rem Set local scope for the variables with windows NT shell
if "%OS%"=="Windows_NT" setlocal
set DIRNAME=%~dp0
if "%DIRNAME%" == "" set DIRNAME=.
set APP_BASE_NAME=%~n0
set APP_HOME=%DIRNAME%
@rem Resolve any "." and ".." in APP_HOME to make it shorter.
for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi
@rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m"
@rem Find java.exe
if defined JAVA_HOME goto findJavaFromJavaHome
set JAVA_EXE=java.exe
%JAVA_EXE% -version >NUL 2>&1
if "%ERRORLEVEL%" == "0" goto execute
echo.
echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
echo.
echo Please set the JAVA_HOME variable in your environment to match the
echo location of your Java installation.
goto fail
:findJavaFromJavaHome
set JAVA_HOME=%JAVA_HOME:"=%
set JAVA_EXE=%JAVA_HOME%/bin/java.exe
if exist "%JAVA_EXE%" goto execute
echo.
echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME%
echo.
echo Please set the JAVA_HOME variable in your environment to match the
echo location of your Java installation.
goto fail
:execute
@rem Setup the command line
set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar
@rem Execute Gradle
"%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %*
:end
@rem End local scope for the variables with windows NT shell
if "%ERRORLEVEL%"=="0" goto mainEnd
:fail
rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of
rem the _cmd.exe /c_ return code!
if not "" == "%GRADLE_EXIT_CONSOLE%" exit 1
exit /b 1
:mainEnd
if "%OS%"=="Windows_NT" endlocal
:omega

12
imagora-application/build.gradle.kts Normal file
View File

@@ -0,0 +1,12 @@
plugins {
kotlin("jvm")
id("io.spring.dependency-management") version "1.1.7"
}
dependencies {
implementation(kotlin("stdlib"))
implementation(project(":imagora-domain"))
implementation("org.springframework:spring-context")
implementation("org.springframework.boot:spring-boot-starter-security")
implementation("com.auth0:java-jwt:4.5.0")
}

12
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/core/configuration/GlobalServicesConfiguration.kt Normal file
View File

@@ -0,0 +1,12 @@
package org.takiguchi.imagora.application.core.configuration
import org.springframework.context.annotation.Bean
import org.springframework.context.annotation.Configuration
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
import org.springframework.security.crypto.password.PasswordEncoder
@Configuration
open class GlobalServicesConfiguration {
@Bean
open fun passwordEncoder(): PasswordEncoder = BCryptPasswordEncoder()
}

21
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/core/security/model/CustomUserDetails.kt Normal file
View File

@@ -0,0 +1,21 @@
package org.takiguchi.imagora.application.core.security.model
import org.springframework.security.core.GrantedAuthority
import org.springframework.security.core.authority.SimpleGrantedAuthority
import org.springframework.security.core.userdetails.UserDetails
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.model.UserRole
class CustomUserDetails(
val user: User,
) : UserDetails {
override fun getAuthorities(): Collection<GrantedAuthority?> =
user.roles
.map(UserRole::name)
.map { role -> "ROLE_$role" }
.map(::SimpleGrantedAuthority)
override fun getPassword(): String = user.encryptedPassword
override fun getUsername(): String = user.id.toString()
}

12
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/user/AuthenticationFacade.kt Normal file
View File

@@ -0,0 +1,12 @@
package org.takiguchi.imagora.application.user
import org.springframework.security.core.Authentication
import org.springframework.security.core.context.SecurityContextHolder
import org.springframework.stereotype.Component
@Component
class AuthenticationFacade {
fun getAuthentication(): Authentication {
return SecurityContextHolder.getContext().authentication
}
}

90
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/user/JwtService.kt Normal file
View File

@@ -0,0 +1,90 @@
package org.takiguchi.imagora.application.user
import com.auth0.jwt.JWT
import com.auth0.jwt.JWTVerifier
import com.auth0.jwt.algorithms.Algorithm
import com.auth0.jwt.exceptions.JWTVerificationException
import com.auth0.jwt.interfaces.Claim
import com.github.michaelbull.result.*
import org.springframework.beans.factory.annotation.Value
import org.springframework.stereotype.Service
import org.takiguchi.imagora.domain.core.error.TechnicalError
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.model.UserRole
import java.time.ZonedDateTime
import java.util.*
@Service
class JwtService(
@Value("\${application.security.jwt.secret-key}")
secretKey: String,
@param:Value("\${application.security.jwt.expiration-delay-in-minutes}")
private val tokenExpirationDelayInMinutes: Long
) {
private val algorithm: Algorithm = Algorithm.HMAC512(secretKey)
private val jwtVerifier: JWTVerifier = JWT.require(algorithm).build()
fun createJwt(user: User): Result<String, TechnicalError> =
ZonedDateTime.now().plusMinutes(tokenExpirationDelayInMinutes)
.let(ZonedDateTime::toInstant)
.let { expirationDateInstant ->
runCatching {
JWT.create()
.withSubject(user.id.toString())
.withExpiresAt(expirationDateInstant)
.withPayload(user.toJwtPayload())
.sign(algorithm)
}.mapError { throwable ->
TechnicalError("Technical error while JWT generation, caused by: ${throwable.message}.")
}
}
private fun User.toJwtPayload(): Map<String, Any> = mapOf(
"pseudo" to pseudo,
"email" to email,
"roles" to roles.joinToString(",")
)
fun isValid(token: String): Boolean = try {
jwtVerifier.verify(token)
true
} catch (error: JWTVerificationException) {
false
}
fun extractUser(token: String): Result<User, TechnicalError> = binding {
JWT.decode(token).claims
.let { claims ->
User(
id = (
claims[CLAIM_ID]?.asUuid()
?: Err(TechnicalError("User id is not defined in token."))
).bind(),
pseudo = claims[CLAIM_PSEUDO]?.asString()
?: Err(TechnicalError("User pseudo is not defined in token.")).bind(),
email = claims[CLAIM_EMAIL]?.asString()
?: Err(TechnicalError("User email is not defined in token.")).bind(),
encryptedPassword = "*****",
roles = (
claims[CLAIM_ROLES]?.asString()
?: Err(TechnicalError("User roles are not defined in token.")).bind()
)
.split(",")
.toList()
.map { role -> UserRole.fromString(role) ?: Err(TechnicalError("Unknown user role: $role.")).bind() }
)
}
}
private fun Claim.asUuid(): Result<UUID, TechnicalError> = runCatching {
UUID.fromString(this.asString())
}.mapError { throwable -> TechnicalError("User id deserialisation error.") }
companion object {
private const val CLAIM_ID = "sub"
private const val CLAIM_PSEUDO = "pseudo"
private const val CLAIM_EMAIL = "email"
private const val CLAIM_ROLES = "roles"
}
}

30
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/user/PasswordService.kt Normal file
View File

@@ -0,0 +1,30 @@
package org.takiguchi.imagora.application.user
import com.github.michaelbull.result.Err
import com.github.michaelbull.result.Ok
import com.github.michaelbull.result.Result
import org.springframework.beans.factory.annotation.Value
import org.springframework.security.crypto.password.PasswordEncoder
import org.springframework.stereotype.Service
import org.takiguchi.imagora.domain.core.error.TechnicalError
import org.takiguchi.imagora.domain.user.error.UserError
import org.takiguchi.imagora.domain.user.inputport.PasswordInputPort
@Service
open class PasswordService(
private val passwordEncoder: PasswordEncoder,
@param:Value("\${application.security.password.salt}")
private val passwordSalt: String
) : PasswordInputPort {
override fun encode(password: String): Result<String, TechnicalError> =
Ok(passwordEncoder.encode("$password$passwordSalt"))
override fun checkPasswordsAreMatching(
password: String,
encodedPassword: String
): Result<Unit, UserError> =
when (passwordEncoder.matches("$password$passwordSalt", encodedPassword)) {
true -> Ok(Unit)
else -> Err(UserError("Password does not match."))
}
}

40
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/user/UserAuthenticationDataUseCases.kt Normal file
View File

@@ -0,0 +1,40 @@
package org.takiguchi.imagora.application.user
import com.github.michaelbull.result.Result
import com.github.michaelbull.result.binding
import com.github.michaelbull.result.mapError
import org.springframework.stereotype.Service
import org.takiguchi.imagora.domain.user.error.UserError
import org.takiguchi.imagora.domain.user.model.RefreshToken
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.model.UserAuthenticationData
import java.time.ZonedDateTime
import java.util.*
@Service
class UserAuthenticationDataUseCases(
private val jwtService: JwtService
) {
fun createFromUser(user: User): Result<UserAuthenticationData, UserError> = binding {
val accessToken = jwtService.createJwt(user)
.mapError { technicalError ->
UserError("Technical error while generating JWT, caused by: ${technicalError.message}")
}.bind()
val refreshToken = RefreshToken(
userId = user.id,
value = UUID.randomUUID(),
expirationDate = ZonedDateTime.now()
)
UserAuthenticationData(
tokenType = TOKEN_TYPE,
accessToken = accessToken,
refreshToken = refreshToken
)
}
companion object {
private const val TOKEN_TYPE = "Bearer"
}
}

23
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/user/UserEditionRequestValidator.kt Normal file
View File

@@ -0,0 +1,23 @@
package org.takiguchi.imagora.application.user
import com.github.michaelbull.result.Err
import com.github.michaelbull.result.Ok
import com.github.michaelbull.result.Result
import org.springframework.stereotype.Component
import org.takiguchi.imagora.domain.user.error.UserError
@Component
class UserEditionRequestValidator {
fun validate(pseudo: String, email: String, password: String): Result<Unit, UserError> = when {
pseudo.trim().isEmpty() -> Err(UserError("User pseudo should not be empty nor blank."))
email.trim().isEmpty() -> Err(UserError("User email should not be empty nor blank."))
else -> validatePassword(password)
}
fun validatePassword(password: String): Result<Unit, UserError> = when {
password.trim().isEmpty() -> Err(UserError("Password should not be empty not blank."))
else -> Ok(Unit)
}
}

144
imagora-application/src/main/kotlin/org/takiguchi/imagora/application/user/UserUseCases.kt Normal file
View File

@@ -0,0 +1,144 @@
package org.takiguchi.imagora.application.user
import com.github.michaelbull.result.*
import org.springframework.stereotype.Service
import org.takiguchi.imagora.application.core.security.model.CustomUserDetails
import org.takiguchi.imagora.domain.user.error.AuthenticationRequiredError
import org.takiguchi.imagora.domain.user.error.UserError
import org.takiguchi.imagora.domain.user.inputport.UserInputPort
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.model.UserAuthenticationData
import org.takiguchi.imagora.domain.user.model.UserRole.STANDARD
import org.takiguchi.imagora.domain.user.outputport.UserOutputPort
import java.util.*
@Service
class UserUseCases(
private val authenticationFacade: AuthenticationFacade,
private val passwordService: PasswordService,
private val userAuthenticationDataUseCases: UserAuthenticationDataUseCases,
private val userEditionRequestValidator: UserEditionRequestValidator,
private val userOutputPort: UserOutputPort
) : UserInputPort {
override fun getAuthenticatedUser(): Result<User, AuthenticationRequiredError> =
Ok(authenticationFacade.getAuthentication())
.map { it.principal }
.toErrorIfNull { AuthenticationRequiredError() }
.toErrorIf({customerUserDetails ->
!CustomUserDetails::class.java.isInstance(customerUserDetails)
}) { AuthenticationRequiredError() }
.map { customerUserDetails -> CustomUserDetails::class.java.cast(customerUserDetails) }
.map(CustomUserDetails::user)
override fun getAll(): Result<List<User>, UserError> =
userOutputPort.getAll()
.mapError { technicalError ->
UserError("Unknown error while retrieving all users: ${technicalError.message}")
}
override fun getById(userId: UUID): Result<User?, UserError> =
userOutputPort.getById(userId)
.mapError { _ -> UserError("Unknown error while retrieving user by its id.") }
override fun create(
pseudo: String,
email: String,
password: String
): Result<UserAuthenticationData, UserError> = binding {
userEditionRequestValidator.validate(pseudo, email, password).bind()
checkPseudoAlreadyExists(pseudo).bind()
checkEmailAlreadyExists(email).bind()
val encodedPassword = passwordService.encode(password)
.mapError { technicalError -> UserError("Technical error while encoding password, caused by: ${technicalError.message}") }
.bind()
val newUser = User(
id = UUID.randomUUID(),
pseudo = pseudo,
email = email,
encryptedPassword = encodedPassword,
roles = listOf(STANDARD),
)
userOutputPort.save(newUser)
.mapError { technicalError ->
UserError("Technical error while creating new user, caused by: ${technicalError.message}")
}
.bind()
userAuthenticationDataUseCases.createFromUser(newUser).bind()
}
private fun checkPseudoAlreadyExists(pseudo: String): Result<Boolean, UserError> = userOutputPort.existsByPseudo(pseudo)
.mapError { technicalError ->
UserError("Technical error while checking if pseudo already exists or not.")
}
.toErrorIf({ emailAlreadyExists -> emailAlreadyExists }) {
UserError("User pseudo already exists.")
}
private fun checkEmailAlreadyExists(email: String): Result<Boolean, UserError> = userOutputPort.existsByEmail(email)
.mapError { technicalError ->
UserError("Technical error while checking if email already exists or not.")
}
.toErrorIf({ emailAlreadyExists -> emailAlreadyExists }) {
UserError("User email already exists.")
}
override fun setUserAdmin(userId: UUID): Result<Unit, UserError> = binding {
val existingUser = userOutputPort.getById(userId)
.mapError { technicalError ->
UserError("Technical error while setting user admin, caused by: ${technicalError.message}")
}
.toErrorIfNull { UserError("User with id \"$userId\" does not exist.") }
.bind()
val updatedUser = existingUser.setAdmin()
userOutputPort.save(updatedUser)
.mapError { technicalError ->
UserError("Technical error while saving user, caused by: ${technicalError.message}")
}
.bind()
}
override fun setUserStandard(userId: UUID): Result<Unit, UserError> {
TODO("Not yet implemented")
}
override fun update(
userId: UUID,
pseudo: String,
email: String
): Result<Unit, UserError> {
TODO("Not yet implemented")
}
override fun changePassword(
userId: UUID,
actualPassword: String,
newPassword: String
): Result<Unit, UserError> {
TODO("Not yet implemented")
}
override fun deleteById(userId: UUID): Result<Unit, UserError> {
TODO("Not yet implemented")
}
override fun login(
pseudoOrEmail: String,
password: String
): Result<UserAuthenticationData, UserError> = binding {
val user = userOutputPort.getByPseudoOrEmail(pseudoOrEmail)
.mapError { technicalError -> UserError("Technical error while retrieving user, caused by: ${technicalError.message}") }
.toErrorIfNull { UserError("User does not exist.") }
.bind()
passwordService.checkPasswordsAreMatching(password, user.encryptedPassword).bind()
userAuthenticationDataUseCases.createFromUser(user).bind()
}
}

7
imagora-domain/build.gradle.kts Normal file
View File

@@ -0,0 +1,7 @@
plugins {
kotlin("jvm")
}
dependencies {
implementation(kotlin("stdlib"))
}

3
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/core/error/BusinessError.kt Normal file
View File

@@ -0,0 +1,3 @@
package org.takiguchi.imagora.domain.core.error
open class BusinessError(message: String) : DomainError(message)

3
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/core/error/DomainError.kt Normal file
View File

@@ -0,0 +1,3 @@
package org.takiguchi.imagora.domain.core.error
open class DomainError(val message: String)

3
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/core/error/TechnicalError.kt Normal file
View File

@@ -0,0 +1,3 @@
package org.takiguchi.imagora.domain.core.error
open class TechnicalError(message: String) : DomainError(message)

3
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/error/AuthenticationRequiredError.kt Normal file
View File

@@ -0,0 +1,3 @@
package org.takiguchi.imagora.domain.user.error
class AuthenticationRequiredError() : UserError("Authentication is required.")

3
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/error/OperationNotPermittedError.kt Normal file
View File

@@ -0,0 +1,3 @@
package org.takiguchi.imagora.domain.user.error
class OperationNotPermittedError : UserError("Operation not permitted: You do not have rights to perform this operation.")

5
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/error/UserError.kt Normal file
View File

@@ -0,0 +1,5 @@
package org.takiguchi.imagora.domain.user.error
import org.takiguchi.imagora.domain.core.error.BusinessError
open class UserError(message: String) : BusinessError(message)

11
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/inputport/PasswordInputPort.kt Normal file
View File

@@ -0,0 +1,11 @@
package org.takiguchi.imagora.domain.user.inputport
import com.github.michaelbull.result.Result
import org.takiguchi.imagora.domain.core.error.TechnicalError
import org.takiguchi.imagora.domain.user.error.UserError
interface PasswordInputPort {
fun encode(password: String): Result<String, TechnicalError>
fun checkPasswordsAreMatching(password: String, encodedPassword: String): Result<Unit, UserError>
}

21
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/inputport/UserInputPort.kt Normal file
View File

@@ -0,0 +1,21 @@
package org.takiguchi.imagora.domain.user.inputport
import com.github.michaelbull.result.Result
import org.takiguchi.imagora.domain.user.error.AuthenticationRequiredError
import org.takiguchi.imagora.domain.user.error.UserError
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.model.UserAuthenticationData
import java.util.UUID
interface UserInputPort {
fun getAuthenticatedUser(): Result<User, AuthenticationRequiredError>
fun getAll(): Result<List<User>, UserError>
fun getById(userId: UUID): Result<User?, UserError>
fun create(pseudo: String, email: String, password: String): Result<UserAuthenticationData, UserError>
fun setUserAdmin(userId: UUID): Result<Unit, UserError>
fun setUserStandard(userId: UUID): Result<Unit, UserError>
fun update(userId: UUID, pseudo: String, email: String): Result<Unit, UserError>
fun changePassword(userId: UUID, actualPassword: String, newPassword: String): Result<Unit, UserError>
fun deleteById(userId: UUID): Result<Unit, UserError>
fun login(pseudoOrEmail: String, password: String): Result<UserAuthenticationData, UserError>
}

10
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/model/RefreshToken.kt Normal file
View File

@@ -0,0 +1,10 @@
package org.takiguchi.imagora.domain.user.model
import java.time.ZonedDateTime
import java.util.*
data class RefreshToken(
val userId: UUID,
val value: UUID,
val expirationDate: ZonedDateTime
)

18
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/model/User.kt Normal file
View File

@@ -0,0 +1,18 @@
package org.takiguchi.imagora.domain.user.model
import org.takiguchi.imagora.domain.user.model.UserRole.*
import java.util.UUID
data class User(
val id: UUID,
val pseudo: String,
val email: String,
val encryptedPassword: String,
val roles: List<UserRole>
) {
fun setAdmin(): User = copy(roles = listOf(STANDARD, ADMIN))
fun setStandard(): User = copy(roles = listOf(STANDARD))
fun isAdmin(): Boolean = roles.contains(ADMIN)
}

7
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/model/UserAuthenticationData.kt Normal file
View File

@@ -0,0 +1,7 @@
package org.takiguchi.imagora.domain.user.model
data class UserAuthenticationData(
val tokenType: String,
val accessToken: String,
val refreshToken: RefreshToken
)

14
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/model/UserRole.kt Normal file
View File

@@ -0,0 +1,14 @@
package org.takiguchi.imagora.domain.user.model
enum class UserRole {
STANDARD,
ADMIN;
companion object {
fun fromString(roleAsString: String): UserRole? = when (roleAsString) {
"STANDARD" -> STANDARD
"ADMIN" -> ADMIN
else -> null
}
}
}

16
imagora-domain/src/main/kotlin/org/takiguchi/imagora/domain/user/outputport/UserOutputPort.kt Normal file
View File

@@ -0,0 +1,16 @@
package org.takiguchi.imagora.domain.user.outputport
import com.github.michaelbull.result.Result
import org.takiguchi.imagora.domain.core.error.TechnicalError
import org.takiguchi.imagora.domain.user.model.User
import java.util.*
interface UserOutputPort {
fun getAll(): Result<List<User>, TechnicalError>
fun getById(userId: UUID): Result<User?, TechnicalError>
fun save(user: User): Result<Unit, TechnicalError>
fun deleteById(user: User): Result<Unit, TechnicalError>
fun existsByEmail(email: String): Result<Boolean, TechnicalError>
fun existsByPseudo(pseudo: String): Result<Boolean, TechnicalError>
fun getByPseudoOrEmail(pseudoOrEmail: String): Result<User?, TechnicalError>
}

14
imagora-exposition/build.gradle.kts Normal file
View File

@@ -0,0 +1,14 @@
plugins {
kotlin("jvm")
id("io.spring.dependency-management") version "1.1.7"
}
dependencies {
implementation(kotlin("stdlib"))
implementation(project(":imagora-domain"))
implementation(project(":imagora-application"))
implementation("org.springframework.boot:spring-boot-starter-web")
implementation("org.springframework.boot:spring-boot-starter-security")
implementation("tools.jackson.module:jackson-module-kotlin:3.0.2")
implementation("com.fasterxml.jackson.module:jackson-module-kotlin:2.18.3")
}

40
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/ExceptionHandlingConfiguration.kt Normal file
View File

@@ -0,0 +1,40 @@
package org.takiguchi.imagora.exposition.core
import org.springframework.context.annotation.Configuration
import org.springframework.http.HttpStatus.BAD_REQUEST
import org.springframework.http.HttpStatus.INTERNAL_SERVER_ERROR
import org.springframework.http.ResponseEntity
import org.springframework.http.converter.HttpMessageNotReadableException
import org.springframework.web.bind.annotation.ExceptionHandler
import org.springframework.web.bind.annotation.RestControllerAdvice
import org.takiguchi.imagora.exposition.core.model.HttpResponse
import org.takiguchi.imagora.exposition.core.model.HttpResponseError
import org.takiguchi.imagora.exposition.core.resulterror.exception.ResultErrorException
import org.takiguchi.imagora.exposition.core.resulterror.mapper.ResultErrorMapper
@Configuration
@RestControllerAdvice
open class ExceptionHandlingConfiguration(
private val resultErrorMapper: ResultErrorMapper
) {
@ExceptionHandler(HttpMessageNotReadableException::class)
fun handleHttpMessageNotReadableException(ex: HttpMessageNotReadableException): ResponseEntity<HttpResponse<Nothing>> {
val errorMessage = "Invalid request payload."
return ResponseEntity(HttpResponseError(errorMessage), BAD_REQUEST)
}
@ExceptionHandler(ResultErrorException::class)
fun handleResultError(ex: ResultErrorException): ResponseEntity<HttpResponse<Nothing>> {
return ResponseEntity(
HttpResponseError(ex.error.message),
resultErrorMapper.mapHttpStatus(ex.error)
)
}
@ExceptionHandler(Exception::class)
fun handleException(ex: Exception): ResponseEntity<HttpResponse<Nothing>> {
val errorMessage = "Internal Server Error with Cause: ${ex.message}"
return ResponseEntity(HttpResponseError(errorMessage), INTERNAL_SERVER_ERROR)
}
}

9
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/model/HttpResponse.kt Normal file
View File

@@ -0,0 +1,9 @@
package org.takiguchi.imagora.exposition.core.model
interface HttpResponse<T> {
fun getError(): String?
}
data class HttpResponseError<Nothing>(private val error: String) : HttpResponse<Nothing> {
override fun getError(): String? = error
}

16
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/resulterror/ResultErrorHelper.kt Normal file
View File

@@ -0,0 +1,16 @@
package org.takiguchi.imagora.exposition.core.resulterror
import com.github.michaelbull.result.Result
import com.github.michaelbull.result.annotation.UnsafeResultErrorAccess
import com.github.michaelbull.result.annotation.UnsafeResultValueAccess
import org.takiguchi.imagora.domain.core.error.DomainError
import org.takiguchi.imagora.exposition.core.resulterror.exception.ResultErrorException
@OptIn(UnsafeResultValueAccess::class, UnsafeResultErrorAccess::class)
inline fun <T> response(block: () -> Result<T, DomainError>): T {
val result = block()
return when (result.isOk) {
true -> result.value
false -> throw ResultErrorException(result.error)
}
}

5
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/resulterror/exception/ResultErrorException.kt Normal file
View File

@@ -0,0 +1,5 @@
package org.takiguchi.imagora.exposition.core.resulterror.exception
import org.takiguchi.imagora.domain.core.error.DomainError
data class ResultErrorException(val error: DomainError) : RuntimeException()

18
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/resulterror/mapper/ResultErrorMapper.kt Normal file
View File

@@ -0,0 +1,18 @@
package org.takiguchi.imagora.exposition.core.resulterror.mapper
import org.springframework.http.HttpStatus
import org.springframework.http.HttpStatus.INTERNAL_SERVER_ERROR
import org.springframework.stereotype.Component
import org.takiguchi.imagora.domain.core.error.DomainError
import org.takiguchi.imagora.domain.user.error.UserError
import org.takiguchi.imagora.exposition.core.resulterror.mapper.errormapper.UserErrorMapper
@Component
class ResultErrorMapper(
private val userErrorMapper: UserErrorMapper
) {
fun mapHttpStatus(error: DomainError): HttpStatus = when(error) {
is UserError -> userErrorMapper.map(error)
else -> INTERNAL_SERVER_ERROR
}
}

8
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/resulterror/mapper/errormapper/HttpStatusErrorMapper.kt Normal file
View File

@@ -0,0 +1,8 @@
package org.takiguchi.imagora.exposition.core.resulterror.mapper.errormapper
import org.springframework.http.HttpStatus
import org.takiguchi.imagora.domain.core.error.DomainError
interface HttpStatusErrorMapper<E : DomainError> {
fun map(error: E): HttpStatus
}

17
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/resulterror/mapper/errormapper/UserErrorMapper.kt Normal file
View File

@@ -0,0 +1,17 @@
package org.takiguchi.imagora.exposition.core.resulterror.mapper.errormapper
import org.springframework.http.HttpStatus
import org.springframework.http.HttpStatus.*
import org.springframework.stereotype.Component
import org.takiguchi.imagora.domain.user.error.AuthenticationRequiredError
import org.takiguchi.imagora.domain.user.error.OperationNotPermittedError
import org.takiguchi.imagora.domain.user.error.UserError
@Component
class UserErrorMapper : HttpStatusErrorMapper<UserError> {
override fun map(error: UserError): HttpStatus = when (error) {
is AuthenticationRequiredError -> UNAUTHORIZED
is OperationNotPermittedError -> FORBIDDEN
else -> BAD_REQUEST
}
}

28
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/security/CustomUserDetailsService.kt Normal file
View File

@@ -0,0 +1,28 @@
package org.takiguchi.imagora.exposition.core.security
import com.github.michaelbull.result.Ok
import com.github.michaelbull.result.flatMap
import com.github.michaelbull.result.map
import com.github.michaelbull.result.toErrorIfNull
import org.springframework.security.core.userdetails.UserDetails
import org.springframework.security.core.userdetails.UserDetailsService
import org.springframework.stereotype.Component
import org.takiguchi.imagora.application.core.security.model.CustomUserDetails
import org.takiguchi.imagora.domain.user.error.AuthenticationRequiredError
import org.takiguchi.imagora.domain.user.inputport.UserInputPort
import org.takiguchi.imagora.exposition.core.resulterror.response
import java.util.*
@Component
class CustomUserDetailsService(
private val userInputPort: UserInputPort
) : UserDetailsService {
override fun loadUserByUsername(username: String?): UserDetails = response {
username?.let(UUID::fromString)
.let(::Ok)
.toErrorIfNull { AuthenticationRequiredError() }
.flatMap { userId -> userInputPort.getById(userId) }
.toErrorIfNull { AuthenticationRequiredError() }
.map(::CustomUserDetails)
}
}

61
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/security/JwtAuthenticationFilter.kt Normal file
View File

@@ -0,0 +1,61 @@
package org.takiguchi.imagora.exposition.core.security
import com.github.michaelbull.result.*
import jakarta.servlet.FilterChain
import jakarta.servlet.http.HttpServletRequest
import jakarta.servlet.http.HttpServletResponse
import org.springframework.http.HttpHeaders.AUTHORIZATION
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken
import org.springframework.security.core.context.SecurityContextHolder
import org.springframework.security.web.authentication.WebAuthenticationDetailsSource
import org.springframework.stereotype.Component
import org.springframework.web.filter.OncePerRequestFilter
import org.takiguchi.imagora.application.core.security.model.CustomUserDetails
import org.takiguchi.imagora.application.user.JwtService
import org.takiguchi.imagora.domain.core.error.DomainError
import org.takiguchi.imagora.domain.user.error.AuthenticationRequiredError
import org.takiguchi.imagora.domain.user.model.User
@Component
class JwtAuthenticationFilter(
private val jwtService: JwtService,
) : OncePerRequestFilter() {
override fun doFilterInternal(
request: HttpServletRequest,
response: HttpServletResponse,
filterChain: FilterChain
) {
request.extractJwt()
.toErrorIf({token -> !jwtService.isValid(token)}) {::AuthenticationRequiredError}
.flatMap(jwtService::extractUser)
.map { it.toUsernamePasswordAuthenticationToken() }
.fold(
success = { token ->
token.details = WebAuthenticationDetailsSource().buildDetails(request)
SecurityContextHolder.getContext().authentication = token
},
failure = {}
)
filterChain.doFilter(request, response)
}
private fun HttpServletRequest.extractJwt(): Result<String, DomainError> = getHeader(AUTHORIZATION)
?.takeIf { it.isNotEmpty() }
?.takeIf { it.startsWith(BEARER_PREFIX) }
?.substring(BEARER_PREFIX.length)
.let(::Ok)
.toErrorIfNull(::AuthenticationRequiredError)
private fun User.toUsernamePasswordAuthenticationToken(): UsernamePasswordAuthenticationToken =
CustomUserDetails(this)
.let { details -> UsernamePasswordAuthenticationToken(
details,
null,
details.authorities
)}
private companion object {
private const val BEARER_PREFIX = "Bearer "
}
}

53
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/core/security/SecurityConfiguration.kt Normal file
View File

@@ -0,0 +1,53 @@
package org.takiguchi.imagora.exposition.core.security
import jakarta.servlet.DispatcherType.FORWARD
import jakarta.servlet.http.HttpServletResponse.SC_FORBIDDEN
import jakarta.servlet.http.HttpServletResponse.SC_UNAUTHORIZED
import org.springframework.context.annotation.Bean
import org.springframework.context.annotation.Configuration
import org.springframework.http.HttpMethod.OPTIONS
import org.springframework.http.HttpMethod.POST
import org.springframework.security.config.Customizer
import org.springframework.security.config.annotation.web.builders.HttpSecurity
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity
import org.springframework.security.config.annotation.web.configurers.CsrfConfigurer
import org.springframework.security.config.http.SessionCreationPolicy.STATELESS
import org.springframework.security.web.SecurityFilterChain
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
@Configuration
@EnableWebSecurity
open class SecurityConfiguration {
@Bean
open fun securityFilterChain(
httpSecurity: HttpSecurity,
jwtAuthenticationFilter: JwtAuthenticationFilter
): SecurityFilterChain {
httpSecurity
.csrf(CsrfConfigurer<HttpSecurity>::disable)
.httpBasic { Customizer.withDefaults<HttpSecurity>() }
.configureUnauthorizedAndForbiddenErrors()
.addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter::class.java)
.sessionManagement { customizer -> customizer.sessionCreationPolicy(STATELESS) }
.authorizeHttpRequests { requests ->
requests
.dispatcherTypeMatchers(FORWARD).permitAll()
.requestMatchers("/error").permitAll()
.requestMatchers(
POST,
"/api/users",
"/api/users/login",
).permitAll()
.requestMatchers(OPTIONS).permitAll()
.anyRequest().authenticated()
}
return httpSecurity.build()
}
private fun HttpSecurity.configureUnauthorizedAndForbiddenErrors(): HttpSecurity = exceptionHandling { configurer ->
configurer
.authenticationEntryPoint { _, response, _ -> response.sendError(SC_UNAUTHORIZED) }
.accessDeniedHandler { _, response, _ -> response.sendError(SC_FORBIDDEN) }
}
}

30
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/user/UserController.kt Normal file
View File

@@ -0,0 +1,30 @@
package org.takiguchi.imagora.exposition.user
import com.github.michaelbull.result.map
import org.springframework.web.bind.annotation.PostMapping
import org.springframework.web.bind.annotation.RequestBody
import org.springframework.web.bind.annotation.RequestMapping
import org.springframework.web.bind.annotation.RestController
import org.takiguchi.imagora.domain.user.inputport.UserInputPort
import org.takiguchi.imagora.exposition.core.resulterror.response
import org.takiguchi.imagora.exposition.user.model.CreateUserRequest
import org.takiguchi.imagora.exposition.user.model.LoginRequest
import org.takiguchi.imagora.exposition.user.model.UserAuthenticationDataDto
@RestController
@RequestMapping("/api/users")
class UserController(
private val userInputPort: UserInputPort
) {
@PostMapping
fun signup(@RequestBody request: CreateUserRequest): UserAuthenticationDataDto = response {
userInputPort.create(request.pseudo, request.email, request.password)
.map(::UserAuthenticationDataDto)
}
@PostMapping("/login")
fun login(@RequestBody request: LoginRequest): UserAuthenticationDataDto = response {
userInputPort.login(request.username, request.password)
.map(::UserAuthenticationDataDto)
}
}

7
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/user/model/CreateUserRequest.kt Normal file
View File

@@ -0,0 +1,7 @@
package org.takiguchi.imagora.exposition.user.model
data class CreateUserRequest(
val pseudo: String,
val email: String,
val password: String
)

7
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/user/model/LoginRequest.kt Normal file
View File

@@ -0,0 +1,7 @@
package org.takiguchi.imagora.exposition.user.model
data class LoginRequest(
// Pseudo or email
val username: String,
val password: String
)

23
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/user/model/RefreshTokenDto.kt Normal file
View File

@@ -0,0 +1,23 @@
package org.takiguchi.imagora.exposition.user.model
import org.takiguchi.imagora.domain.user.model.RefreshToken
import java.time.ZonedDateTime
import java.util.*
data class RefreshTokenDto(
val userId: UUID,
val value: UUID,
val expirationDate: ZonedDateTime
) {
constructor(refreshToken: RefreshToken) : this(
userId = refreshToken.userId,
value = refreshToken.value,
expirationDate = refreshToken.expirationDate
)
fun toDomain() = RefreshToken(
userId = userId,
value = value,
expirationDate = expirationDate
)
}

21
imagora-exposition/src/main/kotlin/org/takiguchi/imagora/exposition/user/model/UserAuthenticationDataDto.kt Normal file
View File

@@ -0,0 +1,21 @@
package org.takiguchi.imagora.exposition.user.model
import org.takiguchi.imagora.domain.user.model.UserAuthenticationData
data class UserAuthenticationDataDto(
val tokenType: String,
val accessToken: String,
val refreshToken: RefreshTokenDto
) {
constructor(data: UserAuthenticationData) : this(
tokenType = data.tokenType,
accessToken = data.accessToken,
refreshToken = RefreshTokenDto(data.refreshToken)
)
fun toDomain() = UserAuthenticationData(
tokenType = tokenType,
accessToken = accessToken,
refreshToken = refreshToken.toDomain()
)
}

15
imagora-infrastructure/build.gradle.kts Normal file
View File

@@ -0,0 +1,15 @@
plugins {
kotlin("jvm")
id("io.spring.dependency-management") version "1.1.7"
kotlin("plugin.jpa") version "2.2.21"
}
dependencies {
implementation(kotlin("stdlib"))
implementation(project(":imagora-domain"))
implementation(project(":imagora-application"))
implementation("org.springframework:spring-context")
implementation("org.springframework.boot:spring-boot-starter-data-jpa")
implementation("org.jetbrains.kotlin:kotlin-noarg:2.2.21")
implementation("org.postgresql:postgresql:42.7.8")
}

15
imagora-infrastructure/docker/docker-compose.yaml Normal file
View File

@@ -0,0 +1,15 @@
services:
imagora_database:
image: postgres:17
container_name: imagora_database
environment:
POSTGRES_USER: imagora_admin
POSTGRES_PASSWORD: P@ssword!
POSTGRES_DB: imagora_database
ports:
- "11979:5432"
volumes:
- "./postgres_data:/var/lib/postgresql/data"
volumes:
postgres_data:

10
imagora-infrastructure/sql/000_database_initialisation.sql Normal file
View File

@@ -0,0 +1,10 @@
CREATE EXTENSION IF NOT EXISTS "uuid-ossp";
CREATE USER imagora_user
WITH PASSWORD 'P@ssword!'
NOCREATEDB;
GRANT SELECT, INSERT, UPDATE, DELETE
ON ALL TABLES
IN SCHEMA public
TO imagora_user;

16
imagora-infrastructure/sql/001_tables_creation.sql Normal file
View File

@@ -0,0 +1,16 @@
CREATE TABLE IF NOT EXISTS "user" (
id UUID NOT NULL,
pseudo VARCHAR(256) NOT NULL,
email VARCHAR(256) NOT NULL,
encrypted_password VARCHAR(512) NOT NULL,
CONSTRAINT user_pk PRIMARY KEY (id)
);
CREATE TABLE IF NOT EXISTS user_roles (
user_id UUID NOT NULL,
role SMALLINT NOT NULL,
CONSTRAINT user_roles_pk PRIMARY KEY (user_id, role),
CONSTRAINT user_roles_user_id_fk FOREIGN KEY (user_id) REFERENCES "user" (id)
);
CREATE INDEX IF NOT EXISTS user_roles_user_id_idx ON user_roles (user_id);

10
imagora-infrastructure/src/main/kotlin/org/takiguchi/imagora/infrastructure/core/configuration/JpaConfiguration.kt Normal file
View File

@@ -0,0 +1,10 @@
package org.takiguchi.imagora.infrastructure.core.configuration
import org.springframework.boot.autoconfigure.domain.EntityScan
import org.springframework.context.annotation.Configuration
import org.springframework.data.jpa.repository.config.EnableJpaRepositories
@Configuration
@EnableJpaRepositories("org.takiguchi.imagora.infrastructure")
@EntityScan("org.takiguchi.imagora.infrastructure")
open class JpaConfiguration

65
imagora-infrastructure/src/main/kotlin/org/takiguchi/imagora/infrastructure/user/UserJpaAdapter.kt Normal file
View File

@@ -0,0 +1,65 @@
package org.takiguchi.imagora.infrastructure.user
import com.github.michaelbull.result.Result
import com.github.michaelbull.result.mapError
import com.github.michaelbull.result.runCatching
import org.springframework.stereotype.Component
import org.takiguchi.imagora.domain.core.error.TechnicalError
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.outputport.UserOutputPort
import org.takiguchi.imagora.infrastructure.user.model.UserEntity
import org.takiguchi.imagora.infrastructure.user.repository.UserJpaRepository
import java.util.*
@Component
class UserJpaAdapter(
private val userJpaRepository: UserJpaRepository
) : UserOutputPort {
override fun getAll(): Result<List<User>, TechnicalError> = runCatching {
userJpaRepository.findAll()
.map(UserEntity::toDomain)
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while retrieving all users.")
}
override fun getById(userId: UUID): Result<User?, TechnicalError> = runCatching {
userJpaRepository.findById(userId)
.map(UserEntity::toDomain)
.orElse(null)
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while retrieving user by its id.")
}
override fun save(user: User): Result<Unit, TechnicalError> = runCatching {
UserEntity(user).also(userJpaRepository::save)
Unit
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while saving user.")
}
override fun deleteById(user: User): Result<Unit, TechnicalError> = runCatching {
userJpaRepository.deleteById(user.id)
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while deleting user.")
}
override fun existsByEmail(email: String): Result<Boolean, TechnicalError> = runCatching {
userJpaRepository.existsByEmail(email)
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while checking user existence by its email.")
}
override fun existsByPseudo(pseudo: String): Result<Boolean, TechnicalError> = runCatching {
userJpaRepository.existsByEmail(pseudo)
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while checking user existence by its pseudo.")
}
override fun getByPseudoOrEmail(pseudoOrEmail: String): Result<User?, TechnicalError> = runCatching {
userJpaRepository.getByPseudoOrEmail(pseudoOrEmail)
?.toDomain()
}.mapError { throwable ->
TechnicalError(throwable.message ?: "Unknown error while retrieving user by its pseudo or email.")
}
}

42
imagora-infrastructure/src/main/kotlin/org/takiguchi/imagora/infrastructure/user/model/UserEntity.kt Normal file
View File

@@ -0,0 +1,42 @@
package org.takiguchi.imagora.infrastructure.user.model
import jakarta.persistence.*
import org.takiguchi.imagora.domain.user.model.User
import org.takiguchi.imagora.domain.user.model.UserRole
import java.util.*
@Entity
@Table(name = "`user`")
data class UserEntity(
@Id
val id: UUID,
@Column(nullable = false)
val pseudo: String,
@Column(nullable = false)
val email: String,
@Column(nullable = false)
val encryptedPassword: String,
@ElementCollection(targetClass = UserRole::class)
@CollectionTable(
name = "user_roles",
joinColumns = [JoinColumn(name = "user_id")]
)
@Column(name = "role")
val roles: List<UserRole>
) {
constructor(user: User) : this (
id = user.id,
pseudo = user.pseudo,
email = user.email,
encryptedPassword = user.encryptedPassword,
roles = user.roles,
)
fun toDomain() = User(
id = id,
pseudo = pseudo,
email = email,
encryptedPassword = encryptedPassword,
roles = roles
)
}

22
imagora-infrastructure/src/main/kotlin/org/takiguchi/imagora/infrastructure/user/repository/UserJpaRepository.kt Normal file
View File

@@ -0,0 +1,22 @@
package org.takiguchi.imagora.infrastructure.user.repository
import org.springframework.data.jpa.repository.JpaRepository
import org.springframework.data.jpa.repository.Query
import org.springframework.data.repository.query.Param
import org.springframework.stereotype.Repository
import org.takiguchi.imagora.infrastructure.user.model.UserEntity
import java.util.*
@Repository
interface UserJpaRepository : JpaRepository<UserEntity, UUID> {
fun existsByEmail(email: String): Boolean
@Query("SELECT u FROM UserEntity u JOIN FETCH u.roles WHERE u.pseudo = :pseudoOrEmail OR u.email = :pseudoOrEmail")
fun getByPseudoOrEmail(@Param("pseudoOrEmail") pseudoOrEmail: String): UserEntity?
@Query("SELECT u FROM UserEntity u JOIN FETCH u.roles")
override fun findAll(): List<UserEntity>
@Query("SELECT u FROM UserEntity u JOIN FETCH u.roles WHERE u.id = :userId")
override fun findById(@Param("userId") userId: UUID): Optional<UserEntity>
}

20
imagora-launcher/build.gradle.kts Normal file
View File

@@ -0,0 +1,20 @@
plugins {
kotlin("jvm")
id("org.springframework.boot") version "3.5.7"
id("io.spring.dependency-management") version "1.1.7"
}
dependencies {
implementation(kotlin("stdlib"))
implementation(kotlin("reflect"))
implementation(project(":imagora-domain"))
implementation(project(":imagora-application"))
implementation(project(":imagora-infrastructure"))
implementation(project(":imagora-exposition"))
implementation("org.springframework.boot:spring-boot-starter-web")
implementation("org.springframework.boot:spring-boot-devtools")
}
springBoot {
mainClass = "org.takiguchi.imagora.launcher.ApplicationLauncherKt"
}

22
imagora-launcher/src/main/kotlin/org/takiguchi/imagora/launcher/ApplicationLauncher.kt Normal file
View File

@@ -0,0 +1,22 @@
package org.takiguchi.imagora.launcher
import org.springframework.boot.autoconfigure.SpringBootApplication
import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration
import org.springframework.boot.runApplication
@SpringBootApplication(
scanBasePackages = [
"org.takiguchi.imagora.domain",
"org.takiguchi.imagora.application",
"org.takiguchi.imagora.infrastructure",
"org.takiguchi.imagora.exposition"
],
exclude = [
SecurityAutoConfiguration::class
]
)
open class ImagoraApplication
fun main(args: Array<String>) {
runApplication<ImagoraApplication>(*args)
}

25
imagora-launcher/src/main/resources/application-local.yaml Normal file
View File

@@ -0,0 +1,25 @@
application:
security:
jwt:
secret-key: secret
expiration-delay-in-minutes: 5
password:
salt: s@lT
server:
error:
whitelabel:
enabled: false # Disable html error responses.
include-stacktrace: never
http2:
enabled: true
spring:
datasource:
url: jdbc:postgresql://localhost:11979/imagora_database
username: imagora_user
password: P@ssword!
driver-class-name: org.postgresql.Driver
jpa:
show-sql: false
open-in-view: false

21
imagora-launcher/src/main/resources/application.yaml Normal file
View File

@@ -0,0 +1,21 @@
application:
security:
jwt:
secret-key: <JWT-SECRET-KEY>
expiration-delay-in-minutes: <JWT-EXPIRATION-DELAY-IN-MINUTES>
password:
salt: <PASSWORD-SALT>
server:
error:
include-stacktrace: never
spring:
datasource:
url: jdbc:postgresql://<URL>:<PORT>/<DATABASE_NAME>
username: <USERNAME>
password: <PASSWORD>
driver-class-name: org.postgresql.Driver
threads:
virtual:
enabled: true

25
rest-client-collection/Imagora/Users/Login as Admin.bru Normal file
View File

@@ -0,0 +1,25 @@
meta {
name: Login as Admin
type: http
seq: 4
}
post {
url: {{url}}/api/users/login
body: json
auth: inherit
}
body:json {
{
"username": "Admin",
"password": "P@ssword!"
}
}
script:post-response {
if (res.status === 200) {
bru.setEnvVar('userId', res.body.refreshToken.userId);
bru.setEnvVar('jwt', res.body.accessToken);
}
}

25
rest-client-collection/Imagora/Users/Login as Florian.bru Normal file
View File

@@ -0,0 +1,25 @@
meta {
name: Login as Florian
type: http
seq: 2
}
post {
url: {{url}}/api/users/login
body: json
auth: inherit
}
body:json {
{
"username": "Florian",
"password": "P@ssword!"
}
}
script:post-response {
if (res.status === 200) {
bru.setEnvVar('userId', res.body.refreshToken.userId);
bru.setEnvVar('jwt', res.body.accessToken);
}
}

25
rest-client-collection/Imagora/Users/Login as Thomas.bru Normal file
View File

@@ -0,0 +1,25 @@
meta {
name: Login as Thomas
type: http
seq: 3
}
post {
url: {{url}}/api/users/login
body: json
auth: inherit
}
body:json {
{
"username": "Joux",
"password": "P@ssword!"
}
}
script:post-response {
if (res.status === 200) {
bru.setEnvVar('userId', res.body.refreshToken.userId);
bru.setEnvVar('jwt', res.body.accessToken);
}
}

26
rest-client-collection/Imagora/Users/Signup.bru Normal file
View File

@@ -0,0 +1,26 @@
meta {
name: Signup
type: http
seq: 1
}
post {
url: {{url}}/api/users
body: json
auth: none
}
body:json {
{
"pseudo": "Admin",
"email": "admin@admin.com",
"password": "P@ssword!"
}
}
script:post-response {
if (res.status === 200) {
bru.setEnvVar('userId', res.body.refreshToken.userId);
bru.setEnvVar('jwt', res.body.accessToken);
}
}

4
rest-client-collection/Imagora/Users/folder.bru Normal file
View File

@@ -0,0 +1,4 @@
meta {
name: Users
seq: 6
}

9
rest-client-collection/Imagora/bruno.json Normal file
View File

@@ -0,0 +1,9 @@
{
"version": "1",
"name": "Imagora",
"type": "collection",
"ignore": [
"node_modules",
".git"
]
}

5
rest-client-collection/Imagora/environments/Localhost.bru Normal file
View File

@@ -0,0 +1,5 @@
vars {
url: http://localhost:8080
jwt: eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiI2N2VkZWUzYS00NmJiLTQ2OWItODRhZi0zNDA0Zjg0NDA1MTMiLCJleHAiOjE3NDY5NTYwMzMsInBzZXVkbyI6IkpvdXgiLCJlbWFpbCI6InRob21hcy5qb3V4QGdtYWlsLmNvbSIsInJvbGVzIjoiU1RBTkRBUkQifQ.O1I-yQeU09GXakktvBMY3QpSJS_PnLgIVFiMiqPQJOjaJ5z852R90rPHc76qKUBTuUqSmR-YFBGPNYa37e1xyg
userId: 67edee3a-46bb-469b-84af-3404f8440513
}

25
settings.gradle.kts Normal file
View File

@@ -0,0 +1,25 @@
// The settings file is the entry point of every Gradle build.
// Its primary purpose is to define the subprojects.
// It is also used for some aspects of project-wide configuration, like managing plugins, dependencies, etc.
// https://docs.gradle.org/current/userguide/settings_file_basics.html
dependencyResolutionManagement {
// Use Maven Central as the default repository (where Gradle will download dependencies) in all subprojects.
@Suppress("UnstableApiUsage")
repositories {
mavenCentral()
}
}
plugins {
// Use the Foojay Toolchains plugin to automatically download JDKs required by subprojects.
id("org.gradle.toolchains.foojay-resolver-convention") version "0.8.0"
}
include(":imagora-domain")
include(":imagora-application")
include(":imagora-exposition")
include(":imagora-infrastructure")
include(":imagora-launcher")
rootProject.name = "imagora"