Max665/sharepulse
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

- Added error response if login info is false

Browse Source 
- Added simple token validation (DOES NOT CHECK IF TOKEN IS EXPIRED YET)
- Added Softwaretest for AuthenticationService.java
This commit is contained in:
Max W. 2024-04-07 23:23:19 +02:00
parent 33d2f28222
commit 278b613230
3 changed files with 74 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/main/java/de/w665/sharepulse/rest/mappings/AuthenticationController.java
View File

@ -32,6 +32,11 @@ public class AuthenticationController {
response.put("token", token);
response.put("success", token != null);
if(token == null) {
log.debug("Authentication failed for username: " + authenticationRequest.getUsername());
return new ResponseEntity<>(response, HttpStatus.UNAUTHORIZED);
}
return new ResponseEntity<>(response, HttpStatus.OK);
}
}

12
src/main/java/de/w665/sharepulse/service/AuthenticationService.java
View File

@ -2,7 +2,7 @@ package de.w665.sharepulse.service;
import de.w665.sharepulse.db.repo.UserRepository;
import de.w665.sharepulse.model.User;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.*;
import io.jsonwebtoken.security.Keys;
import jakarta.annotation.PostConstruct;
import lombok.extern.slf4j.Slf4j;
@ -60,4 +60,14 @@ public class AuthenticationService {
.signWith(secretKey)
.compact();
}
public boolean validateToken(String token) {
try {
Jwt<?,?> jwt = Jwts.parser().verifyWith(secretKey).build().parseSignedClaims(token);
// TODO: Check if token is expired
return true;
} catch (Exception e) {
return false;
}
}
}

58
src/test/java/de/w665/sharepulse/AuthenticationServiceTest.java Normal file
View File

@ -0,0 +1,58 @@
package de.w665.sharepulse;
import de.w665.sharepulse.db.repo.UserRepository;
import de.w665.sharepulse.model.User;
import de.w665.sharepulse.service.AuthenticationService;
import org.junit.jupiter.api.BeforeEach;
import org.junit.jupiter.api.Test;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.boot.test.context.SpringBootTest;
import org.springframework.boot.test.mock.mockito.MockBean;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import java.util.Optional;
import static org.junit.jupiter.api.Assertions.*;
import static org.mockito.ArgumentMatchers.anyString;
import static org.mockito.Mockito.when;
@SpringBootTest
public class AuthenticationServiceTest {
@MockBean
private UserRepository userRepository;
@Autowired
private AuthenticationService authenticationService;
private User mockUser;
private String username = "testUser";
private String password = "testPass";
@BeforeEach
public void setup() {
mockUser = new User();
mockUser.setUsername(username);
mockUser.setPassword(new BCryptPasswordEncoder().encode(password));
when(userRepository.retrieveUserByUsername(anyString())).thenReturn(Optional.of(mockUser));
}
@Test
public void whenValidUsernameAndPassword_thenAuthenticateShouldReturnToken() {
String token = authenticationService.authenticate(username, password);
assertNotNull(token, "Token should not be null for valid credentials");
}
@Test
public void whenValidToken_thenValidateTokenShouldReturnTrue() {
String token = authenticationService.authenticate(username, password);
assertTrue(authenticationService.validateToken(token), "Token validation should return true for a valid token");
}
@Test
public void whenInvalidToken_thenValidateTokenShouldReturnFalse() {
String invalidToken = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJ0ZXN0VXNlciJ9.WrongSignature";
assertFalse(authenticationService.validateToken(invalidToken), "Token validation should return false for an invalid token");
}
}