• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• oauth2-blog-master
  • src
    • main
      • resources
        • db
          • changelog
            • db.changelog-master.yaml
        • application-prod.properties
        • application-default.properties
      • java
        • com
          • patternmatch
            • oauth2blog
              • resources
                • Admin.java
                • Token.java
                • Hello.java
              • entity
                • AppUser.java
              • config
                • TokenStoreConfig.java
                • ResourceServerConfig.java
                • SecurityConfig.java
                • AuthorizationServerConfig.java
                • Const.java
              • service
                • DefaultAuthenticationProvider.java
                • DefaultUserDetailsService.java
              • model
                • Welcome.java
              • repository
                • AppUserRepository.java
              • Oauth2BlogApplication.java
    • test
      • java
        • com
          • patternmatch
            • oauth2blog
              • resources
                • HelloMvcTest.java
                • HelloMockUserTest.java
                • HelloE2ETest.java
              • config
                • TestConfig.java
              • Oauth2BlogApplicationTests.java
  • gradle
    • wrapper
      • gradle-wrapper.properties
      • gradle-wrapper.jar
  • gradlew.bat
  • LICENSE
  • gradlew
  • build.gradle
  • README.md
  • settings.gradle
  • .gitignore

package com.patternmatch.oauth2blog.service;

import com.patternmatch.oauth2blog.entity.AppUser;
import com.patternmatch.oauth2blog.repository.AppUserRepository;
import org.springframework.security.authentication.AuthenticationProvider;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.UsernameNotFoundException;

import java.util.Collections;
import java.util.Optional;

public class DefaultAuthenticationProvider implements AuthenticationProvider {

    private final AppUserRepository appUserRepository;

    public DefaultAuthenticationProvider(AppUserRepository appUserRepository) {
        this.appUserRepository = appUserRepository;
    }

    @Override
    public Authentication authenticate(final Authentication authentication) throws AuthenticationException {

        if (authentication.getName() == null || authentication.getCredentials() == null) {
            return null;
        }

        if (authentication.getName().isEmpty() || authentication.getCredentials().toString().isEmpty()) {
            return null;
        }

        final Optional<AppUser> appUser = this.appUserRepository.findById(authentication.getName());

        if (appUser.isPresent()) {
            final AppUser user = appUser.get();
            final String providedUserEmail = authentication.getName();
            final Object providedUserPassword = authentication.getCredentials();

            if (providedUserEmail.equalsIgnoreCase(user.getUserEmail())
                    && providedUserPassword.equals(user.getUserPass())) {
                return new UsernamePasswordAuthenticationToken(
                        user.getUserEmail(),
                        user.getUserPass(),
                        Collections.singleton(new SimpleGrantedAuthority(user.getUserRole())));
            }
        }

        throw new UsernameNotFoundException("Invalid username or password.");
    }

    @Override
    public boolean supports(final Class<?> authentication) {
        return authentication.equals(UsernamePasswordAuthenticationToken.class);
    }
}