aarbit/scavengerhunt-api
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Adds isAdmin to JWT
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details

Browse Source
This commit is contained in:
aarbit
2026-05-16 16:14:29 -05:00
parent ec2bb1bcc6
commit 877e134166
3 changed files with 7 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/main/kotlin/net/halfbinary/scavengerhuntapi/config/JwtUtil.kt
View File

@@ -27,9 +27,10 @@ class JwtUtil {
} }
// Generate JWT token // Generate JWT token
fun generateToken(email: String): String { fun generateToken(email: String, isAdmin: Boolean): String {
return Jwts.builder() return Jwts.builder()
.subject(email) .subject(email)
.claim("isAdmin", isAdmin)
.issuedAt(Date()) .issuedAt(Date())
.expiration(Date(System.currentTimeMillis() + jwtExpirationMs)) .expiration(Date(System.currentTimeMillis() + jwtExpirationMs))
.signWith(key) .signWith(key)

2
src/main/kotlin/net/halfbinary/scavengerhuntapi/controller/AuthController.kt
View File

@@ -24,7 +24,7 @@ class AuthController(private val loginService: LoginService, private val jwtUtil
@PostMapping("/login") @PostMapping("/login")
fun login(@Valid @RequestBody body: LoginRequest): ResponseEntity<LoginResponse> { fun login(@Valid @RequestBody body: LoginRequest): ResponseEntity<LoginResponse> {
val result = loginService.login(body.toDomain()) val result = loginService.login(body.toDomain())
val accessToken = jwtUtils.generateToken(result.email) val accessToken = jwtUtils.generateToken(result.email, result.isAdmin)
val refreshToken = refreshTokenService.generateRefreshToken(result.email) val refreshToken = refreshTokenService.generateRefreshToken(result.email)
val loginResponse = LoginResponse(accessToken, refreshToken, result.name) val loginResponse = LoginResponse(accessToken, refreshToken, result.name)
return ResponseEntity.ok(loginResponse) return ResponseEntity.ok(loginResponse)

6
src/main/kotlin/net/halfbinary/scavengerhuntapi/service/RefreshTokenService.kt
View File

@@ -5,6 +5,7 @@ import net.halfbinary.scavengerhuntapi.error.exception.ExpiredRefreshTokenExcept
import net.halfbinary.scavengerhuntapi.error.exception.InvalidRefreshTokenException import net.halfbinary.scavengerhuntapi.error.exception.InvalidRefreshTokenException
import net.halfbinary.scavengerhuntapi.model.RefreshId import net.halfbinary.scavengerhuntapi.model.RefreshId
import net.halfbinary.scavengerhuntapi.model.record.RefreshTokenRecord import net.halfbinary.scavengerhuntapi.model.record.RefreshTokenRecord
import net.halfbinary.scavengerhuntapi.repository.HunterRepository
import net.halfbinary.scavengerhuntapi.repository.RefreshTokenRepository import net.halfbinary.scavengerhuntapi.repository.RefreshTokenRepository
import org.slf4j.LoggerFactory import org.slf4j.LoggerFactory
import org.springframework.data.repository.findByIdOrNull import org.springframework.data.repository.findByIdOrNull
@@ -13,7 +14,7 @@ import java.time.LocalDateTime
import java.time.temporal.ChronoUnit import java.time.temporal.ChronoUnit
@Service @Service
class RefreshTokenService(private val refreshTokenRepository: RefreshTokenRepository, private val jwtUtil: JwtUtil) { class RefreshTokenService(private val refreshTokenRepository: RefreshTokenRepository, private val jwtUtil: JwtUtil, private val hunterRepository: HunterRepository) {
companion object { companion object {
private val log = LoggerFactory.getLogger(RefreshTokenService::class.java) private val log = LoggerFactory.getLogger(RefreshTokenService::class.java)
@@ -25,7 +26,8 @@ class RefreshTokenService(private val refreshTokenRepository: RefreshTokenReposi
removeToken(tokenId) removeToken(tokenId)
throw ExpiredRefreshTokenException(tokenId) throw ExpiredRefreshTokenException(tokenId)
} else { } else {
jwtUtil.generateToken(refreshToken.email) val isAdmin = hunterRepository.findByEmail(refreshToken.email)?.isAdmin ?: false
jwtUtil.generateToken(refreshToken.email, isAdmin)
} }
}?: throw InvalidRefreshTokenException(tokenId) }?: throw InvalidRefreshTokenException(tokenId)
} }