added auth,property db and room db,org db

2026-01-24 16:11:40 +05:30
parent c360ff627d
commit 16f279fe5a
22 changed files with 1113 additions and 22 deletions
--- a/src/main/kotlin/com/android/trisolarisserver/security/FirebaseAuthFilter.kt
+++ b/src/main/kotlin/com/android/trisolarisserver/security/FirebaseAuthFilter.kt
@@ -0,0 +1,49 @@
+package com.android.trisolarisserver.security
+
+import com.android.trisolarisserver.db.repo.AppUserRepo
+import com.google.firebase.auth.FirebaseAuth
+import jakarta.servlet.FilterChain
+import jakarta.servlet.http.HttpServletRequest
+import jakarta.servlet.http.HttpServletResponse
+import org.springframework.http.HttpHeaders
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken
+import org.springframework.security.core.context.SecurityContextHolder
+import org.springframework.stereotype.Component
+import org.springframework.web.filter.OncePerRequestFilter
+import org.springframework.web.server.ResponseStatusException
+import org.springframework.http.HttpStatus
+
+@Component
+class FirebaseAuthFilter(
+    private val appUserRepo: AppUserRepo
+) : OncePerRequestFilter() {
+
+    override fun doFilterInternal(
+        request: HttpServletRequest,
+        response: HttpServletResponse,
+        filterChain: FilterChain
+    ) {
+        val header = request.getHeader(HttpHeaders.AUTHORIZATION)
+        if (header.isNullOrBlank() || !header.startsWith("Bearer ")) {
+            response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Missing Authorization token")
+            return
+        }
+        val token = header.removePrefix("Bearer ").trim()
+        try {
+            val decoded = FirebaseAuth.getInstance().verifyIdToken(token)
+            val firebaseUid = decoded.uid
+            val user = appUserRepo.findByFirebaseUid(firebaseUid)
+                ?: throw ResponseStatusException(HttpStatus.UNAUTHORIZED, "User not found")
+
+            val principal = MyPrincipal(
+                userId = user.id ?: throw ResponseStatusException(HttpStatus.UNAUTHORIZED, "User id missing"),
+                firebaseUid = firebaseUid
+            )
+            val auth = UsernamePasswordAuthenticationToken(principal, token, emptyList())
+            SecurityContextHolder.getContext().authentication = auth
+            filterChain.doFilter(request, response)
+        } catch (ex: Exception) {
+            response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Invalid token")
+        }
+    }
+}
--- a/src/main/kotlin/com/android/trisolarisserver/security/FirebaseConfig.kt
+++ b/src/main/kotlin/com/android/trisolarisserver/security/FirebaseConfig.kt
@@ -0,0 +1,23 @@
+package com.android.trisolarisserver.security
+
+import com.google.auth.oauth2.GoogleCredentials
+import com.google.firebase.FirebaseApp
+import com.google.firebase.FirebaseOptions
+import org.springframework.context.annotation.Configuration
+import org.springframework.core.io.ClassPathResource
+
+@Configuration
+class FirebaseConfig {
+    init {
+        if (FirebaseApp.getApps().isEmpty()) {
+            val options = FirebaseOptions.builder()
+                .setCredentials(
+                    GoogleCredentials.fromStream(
+                        ClassPathResource("firebase-service-account.json").inputStream
+                    )
+                )
+                .build()
+            FirebaseApp.initializeApp(options)
+        }
+    }
+}
--- a/src/main/kotlin/com/android/trisolarisserver/security/MyPrincipal.kt
+++ b/src/main/kotlin/com/android/trisolarisserver/security/MyPrincipal.kt
@@ -0,0 +1,8 @@
+package com.android.trisolarisserver.security
+
+import java.util.UUID
+
+data class MyPrincipal(
+    val userId: UUID,
+    val firebaseUid: String
+)
--- a/src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt
+++ b/src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt
@@ -0,0 +1,23 @@
+package com.android.trisolarisserver.security
+
+import org.springframework.context.annotation.Bean
+import org.springframework.context.annotation.Configuration
+import org.springframework.security.config.annotation.web.builders.HttpSecurity
+import org.springframework.security.config.http.SessionCreationPolicy
+import org.springframework.security.web.SecurityFilterChain
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
+
+@Configuration
+class SecurityConfig(
+    private val firebaseAuthFilter: FirebaseAuthFilter
+) {
+    @Bean
+    fun filterChain(http: HttpSecurity): SecurityFilterChain {
+        http
+            .csrf { it.disable() }
+            .sessionManagement { it.sessionCreationPolicy(SessionCreationPolicy.STATELESS) }
+            .authorizeHttpRequests { it.anyRequest().authenticated() }
+            .addFilterBefore(firebaseAuthFilter, UsernamePasswordAuthenticationFilter::class.java)
+        return http.build()
+    }
+}