Skip to content

Feature/oauth2login #20

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mattknatt merged 3 commits into from
Mar 31, 2026
Merged

Feature/oauth2login #20

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
eaf87a8
Add GitHub OAuth2 login configuration and security setup
mattknatt Mar 30, 2026
c4a1da2
Enhance security configuration with GitHub OAuth2 and in-memory user …
mattknatt Mar 30, 2026
b8b17fe
Update GitHub OAuth2 configuration, fix header fragment formatting, a…
mattknatt Mar 30, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions .env.template
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
# GitHub OAuth2 Credentials (DO NOT COMMIT THE ACTUAL .env FILE)
# Get these from GitHub Settings -> Developer settings -> OAuth Apps
GITHUB_CLIENT_ID=
GITHUB_CLIENT_SECRET=
5 changes: 5 additions & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,3 +31,8 @@ build/

### VS Code ###
.vscode/
.env
.env.local
.env.development.local
.env.test.local
.env.production.local
4 changes: 4 additions & 0 deletions pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -100,6 +100,10 @@
<groupId>org.thymeleaf.extras</groupId>
<artifactId>thymeleaf-extras-springsecurity6</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-oauth2-client</artifactId>
</dependency>
Comment thread
coderabbitai[bot] marked this conversation as resolved.
</dependencies>

<build>
Expand Down
45 changes: 45 additions & 0 deletions src/main/java/org/example/projektarendehantering/infrastructure/config/SecurityConfig.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,45 @@
package org.example.projektarendehantering.infrastructure.config;

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.provisioning.InMemoryUserDetailsManager;
import org.springframework.security.web.SecurityFilterChain;

@Configuration
@EnableWebSecurity
public class SecurityConfig {

@Bean
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
http
.authorizeHttpRequests(authorize -> authorize
.requestMatchers("/login**", "/error**", "/static/**", "/app.css", "/app.js").permitAll()
.anyRequest().authenticated()
)
.oauth2Login(oauth2 -> oauth2
.defaultSuccessUrl("/", true)
)
.formLogin(form -> form
.defaultSuccessUrl("/", true)
)
.logout(logout -> logout
.logoutSuccessUrl("/")
);
return http.build();
}

@Bean
public UserDetailsService userDetailsService() {
UserDetails admin = User.builder()
.username("admin")
.password("{noop}password") // {noop} means no password encoding (fine for dev)
.roles("ADMIN")
.build();
return new InMemoryUserDetailsManager(admin);
}
Comment thread
mattknatt marked this conversation as resolved.
}
8 changes: 7 additions & 1 deletion src/main/resources/application.properties
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,10 @@ spring.datasource.password=arende

spring.jpa.hibernate.ddl-auto=update
spring.datasource.driver-class-name=org.postgresql.Driver
spring.jpa.database-platform=org.hibernate.dialect.PostgreSQLDialect
spring.jpa.database-platform=org.hibernate.dialect.PostgreSQLDialect

# GitHub OAuth2 Login
spring.security.oauth2.client.registration.github.client-id=${GITHUB_CLIENT_ID:none}
spring.security.oauth2.client.registration.github.client-secret=${GITHUB_CLIENT_SECRET:none}
spring.security.oauth2.client.registration.github.scope=read:user,user:email
logging.level.org.springframework.security=DEBUG
23 changes: 9 additions & 14 deletions src/main/resources/templates/fragments/header.html
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,20 +13,15 @@
</nav>

<div class="auth" id="authBar">
<label class="auth-field">
<span class="auth-label">X-User-Id</span>
<input class="auth-input" id="authUserId" placeholder="uuid" />
</label>
<label class="auth-field">
<span class="auth-label">X-Role</span>
<select class="auth-input" id="authRole">
<option value="CASE_OWNER">CASE_OWNER</option>
<option value="HANDLER">HANDLER</option>
<option value="ADMIN">ADMIN</option>
<option value="OTHER">OTHER</option>
</select>
</label>
<button class="button button-secondary" type="button" id="authSave">Save</button>
<div th:if="${#authorization.expression('isAuthenticated()')}">
<span class="auth-label" th:text="'Logged in as: ' + ${#authentication.name}">User</span>
<form th:action="@{/logout}" method="post" style="display: inline;">
<button class="button button-secondary" type="submit">Logout</button>
</form>
</div>
<div th:unless="${#authorization.expression('isAuthenticated()')}">
<a th:href="@{/login}" class="button button-secondary">Login</a>
</div>
</div>
</div>
</header>
Expand Down
4 changes: 4 additions & 0 deletions src/test/resources/application.properties
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,3 +15,7 @@ spring.jpa.show-sql=true

# Disable Docker Compose auto-configuration during tests to avoid connection errors in CI
spring.docker.compose.enabled=false

spring.security.oauth2.client.registration.github.client-id=mock-id ?
spring.security.oauth2.client.registration.github.client-secret=mock-secret ?
spring.security.oauth2.client.registration.github.scope=read:user,user:email