🐛fix: Error while generating tokens for Client Credentials grant (#103)

* Added Custom Application Token Enhancer and Refactored for explicit JSON Views

* Added Groups in User and App JWT

* Cleanup

* Cleanup

* Cleanup

* Cleanup

Author: Rahul Verma

src/main/java/org/overture/ego/config/AuthConfig.java

@@ -26,6 +26,8 @@
 import org.springframework.context.annotation.Configuration;
 import org.springframework.context.annotation.Primary;
 import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
 import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
 import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
@@ -75,6 +77,11 @@ public TokenStore tokenStore() {
     return new JwtTokenStore(accessTokenConverter());
   }
 
+  @Bean
+  public PasswordEncoder passwordEncoder() {
+    return new BCryptPasswordEncoder();
+  }
+
   @Bean
   public JwtAccessTokenConverter accessTokenConverter() {
     JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
@@ -93,12 +100,10 @@ public DefaultTokenServices tokenServices() {
     return defaultTokenServices;
   }
 
-
   @Override
   public void configure(ClientDetailsServiceConfigurer clients)
           throws Exception {
     clients.withClientDetails(clientDetailsService);
-
   }
 
   @Bean

src/main/java/org/overture/ego/controller/ApplicationController.java

@@ -16,6 +16,7 @@
 
 package org.overture.ego.controller;
 
+import com.fasterxml.jackson.annotation.JsonView;
 import io.swagger.annotations.ApiImplicitParam;
 import io.swagger.annotations.ApiImplicitParams;
 import io.swagger.annotations.ApiResponse;
@@ -31,6 +32,7 @@
 import org.overture.ego.service.ApplicationService;
 import org.overture.ego.service.GroupService;
 import org.overture.ego.service.UserService;
+import org.overture.ego.view.Views;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.data.domain.Pageable;
 import org.springframework.http.HttpHeaders;
@@ -75,9 +77,10 @@ public class ApplicationController {
   })
   @ApiResponses(
       value = {
-          @ApiResponse(code = 200, message = "Page of applications", response = PageDTO.class)
+          @ApiResponse(code = 200, message = "Page of Applications", response = PageDTO.class)
       }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<Application> getApplicationsList(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -112,6 +115,7 @@ Application create(
           @ApiResponse(code = 200, message = "Application Details", response = Application.class)
       }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   Application get(
       @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -164,9 +168,10 @@ public void deleteApplication(
   })
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Page of users of group", response = PageDTO.class)
+                  @ApiResponse(code = 200, message = "Page of Users of group", response = PageDTO.class)
           }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<User> getApplicationUsers(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -204,9 +209,10 @@ PageDTO<User> getApplicationUsers(
   })
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Page of applications of group", response = PageDTO.class)
+                  @ApiResponse(code = 200, message = "Page of Applications of group", response = PageDTO.class)
           }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<Group> getApplicationsGroups(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,

src/main/java/org/overture/ego/controller/GroupController.java

@@ -16,6 +16,7 @@
 
 package org.overture.ego.controller;
 
+import com.fasterxml.jackson.annotation.JsonView;
 import io.swagger.annotations.ApiImplicitParam;
 import io.swagger.annotations.ApiImplicitParams;
 import io.swagger.annotations.ApiResponse;
@@ -31,6 +32,7 @@
 import org.overture.ego.service.ApplicationService;
 import org.overture.ego.service.GroupService;
 import org.overture.ego.service.UserService;
+import org.overture.ego.view.Views;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.data.domain.Pageable;
 import org.springframework.http.HttpHeaders;
@@ -79,9 +81,10 @@ public class GroupController {
   })
   @ApiResponses(
       value = {
-          @ApiResponse(code = 200, message = "Page of groups", response = PageDTO.class)
+          @ApiResponse(code = 200, message = "Page of Groups", response = PageDTO.class)
       }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<Group> getGroupsList(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -116,6 +119,7 @@ Group createGroup(
           @ApiResponse(code = 200, message = "Group Details", response = Group.class)
       }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   Group getGroup(
       @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -169,9 +173,10 @@ public void deleteGroup(
   })
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Page of applications of group", response = PageDTO.class)
+                  @ApiResponse(code = 200, message = "Page of Applications of group", response = PageDTO.class)
           }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<Application> getGroupsApplications(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -241,9 +246,10 @@ public void deleteAppsFromGroup(
   })
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Page of users of group", response = PageDTO.class)
+                  @ApiResponse(code = 200, message = "Page of Users of group", response = PageDTO.class)
           }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<User> getGroupsUsers(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,

src/main/java/org/overture/ego/controller/UserController.java

@@ -16,6 +16,7 @@
 
 package org.overture.ego.controller;
 
+import com.fasterxml.jackson.annotation.JsonView;
 import io.swagger.annotations.*;
 import lombok.extern.slf4j.Slf4j;
 import org.overture.ego.model.dto.PageDTO;
@@ -28,6 +29,7 @@
 import org.overture.ego.service.ApplicationService;
 import org.overture.ego.service.GroupService;
 import org.overture.ego.service.UserService;
+import org.overture.ego.view.Views;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.data.domain.Pageable;
 import org.springframework.http.HttpHeaders;
@@ -75,13 +77,14 @@ public class UserController {
   })
   @ApiResponses(
       value = {
-          @ApiResponse(code = 200, message = "Page of users", response = PageDTO.class)
+          @ApiResponse(code = 200, message = "Page of Users", response = PageDTO.class)
       }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<User> getUsersList(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
-          @ApiParam(value="Query string compares to users Name, Email, First Name, and Last Name fields.", required=false ) @RequestParam(value = "query", required = false) String query,
+          @ApiParam(value="Query string compares to Users Name, Email, First Name, and Last Name fields.", required=false ) @RequestParam(value = "query", required = false) String query,
           @ApiIgnore @Filters List<SearchFilter> filters,
           Pageable pageable)
   {
@@ -113,6 +116,7 @@ User create(
           @ApiResponse(code = 200, message = "User Details", response = User.class)
       }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   User getUser(
       @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -165,9 +169,10 @@ public void deleteUser(
   })
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Page of groups of user", response = PageDTO.class)
+                  @ApiResponse(code = 200, message = "Page of Groups of user", response = PageDTO.class)
           }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<Group> getUsersGroups(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -187,7 +192,7 @@ PageDTO<Group> getUsersGroups(
   @RequestMapping(method = RequestMethod.POST, value = "/{id}/groups")
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Add groups to user", response = String.class)
+                  @ApiResponse(code = 200, message = "Add Groups to user", response = String.class)
           }
   )
   public @ResponseBody
@@ -196,7 +201,7 @@ String addGroupsToUser(
           @PathVariable(value = "id", required = true) String userId,
           @RequestBody(required = true) List<String> groupIDs) {
     userService.addUsersToGroups(userId,groupIDs);
-    return "User added to : "+groupIDs.size() + " groups successfully.";
+    return "User added to : "+groupIDs.size() + " Group(s) successfully.";
   }
 
   @AdminScoped
@@ -239,6 +244,7 @@ public void deleteGroupFromUser(
                   @ApiResponse(code = 200, message = "Page of apps of user", response = PageDTO.class)
           }
   )
+  @JsonView(Views.REST.class)
   public @ResponseBody
   PageDTO<Application> getUsersApplications(
           @RequestHeader(value = HttpHeaders.AUTHORIZATION, required = true) final String accessToken,
@@ -258,7 +264,7 @@ PageDTO<Application> getUsersApplications(
   @RequestMapping(method = RequestMethod.POST, value = "/{id}/applications")
   @ApiResponses(
           value = {
-                  @ApiResponse(code = 200, message = "Add applications to user", response = String.class)
+                  @ApiResponse(code = 200, message = "Add Applications to user", response = String.class)
           }
   )
   public @ResponseBody

src/main/java/org/overture/ego/model/dto/PageDTO.java

@@ -17,13 +17,16 @@
 package org.overture.ego.model.dto;
 
 
+import com.fasterxml.jackson.annotation.JsonView;
 import lombok.Getter;
 import lombok.NonNull;
+import org.overture.ego.view.Views;
 import org.springframework.data.domain.Page;
 
 import java.util.List;
 
 @Getter
+@JsonView(Views.REST.class)
 public class PageDTO<T> {
 
   private final int limit;

src/main/java/org/overture/ego/model/entity/Application.java

@@ -19,36 +19,43 @@
 import com.fasterxml.jackson.annotation.JsonIgnore;
 import com.fasterxml.jackson.annotation.JsonInclude;
 import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import com.fasterxml.jackson.annotation.JsonView;
 import lombok.*;
 import org.hibernate.annotations.LazyCollection;
 import org.hibernate.annotations.LazyCollectionOption;
 import org.overture.ego.model.enums.Fields;
+import org.overture.ego.view.Views;
 
 import javax.persistence.*;
+import java.util.ArrayList;
 import java.util.HashSet;
 import java.util.List;
 import java.util.Set;
+import java.util.stream.Collectors;
 
 @Entity
 @Table(name = "egoapplication")
 @Data
-@ToString(exclude={"groups","users"})
+@ToString(exclude={"wholeGroups","wholeUsers"})
 @JsonPropertyOrder({"id", "name", "clientId", "clientSecret", "redirectUri", "description", "status"})
-@JsonInclude(JsonInclude.Include.ALWAYS)
+@JsonInclude(JsonInclude.Include.CUSTOM)
 @EqualsAndHashCode(of={"id"})
 @NoArgsConstructor
 @RequiredArgsConstructor
+@JsonView(Views.REST.class)
 public class Application {
 
   @Id
   @Column(nullable = false, name = Fields.ID, updatable = false)
   @GeneratedValue(strategy = GenerationType.IDENTITY)
   int id;
 
+  @JsonView({Views.JWTAccessToken.class,Views.REST.class})
   @NonNull
   @Column(nullable = false, name = Fields.NAME)
   String name;
 
+  @JsonView({Views.JWTAccessToken.class,Views.REST.class})
   @NonNull
   @Column(nullable = false, name = Fields.CLIENTID)
   String clientId;
@@ -57,24 +64,27 @@ public class Application {
   @Column(nullable = false, name = Fields.CLIENTSECRET)
   String clientSecret;
 
+  @JsonView({Views.JWTAccessToken.class,Views.REST.class})
   @Column(name = Fields.REDIRECTURI)
   String redirectUri;
 
+  @JsonView({Views.JWTAccessToken.class,Views.REST.class})
   @Column(name = Fields.DESCRIPTION)
   String description;
 
+  @JsonView(Views.JWTAccessToken.class)
   @Column(name = Fields.STATUS)
   String status;
 
-  @ManyToMany(mappedBy = "applications", cascade = CascadeType.ALL)
+  @ManyToMany(mappedBy = "wholeApplications", cascade = CascadeType.ALL)
   @LazyCollection(LazyCollectionOption.FALSE)
   @JsonIgnore
-  Set<Group> groups;
+  Set<Group> wholeGroups;
 
-  @ManyToMany(mappedBy = "applications", cascade = CascadeType.ALL)
+  @ManyToMany(mappedBy = "wholeApplications", cascade = CascadeType.ALL)
   @LazyCollection(LazyCollectionOption.FALSE)
   @JsonIgnore
-  Set<User> users;
+  Set<User> wholeUsers;
 
   @JsonIgnore
   public HashSet<String> getURISet(){
@@ -83,6 +93,14 @@ public HashSet<String> getURISet(){
     return output;
   }
 
+  @JsonView(Views.JWTAccessToken.class)
+  public List<String> getGroups(){
+    if(this.wholeGroups == null) {
+      return new ArrayList<String>();
+    }
+    return this.wholeGroups.stream().map(g -> g.getName()).collect(Collectors.toList());
+  }
+
   public void update(Application other) {
     this.name = other.name;
     this.clientId = other.clientId;
@@ -94,12 +112,12 @@ public void update(Application other) {
     // Do not update ID;
 
     // Update Users and Groups only if provided (not null)
-    if (other.users != null) {
-      this.users = other.users;
+    if (other.wholeUsers != null) {
+      this.wholeUsers = other.wholeUsers;
     }
 
-    if (other.groups != null) {
-      this.groups = other.groups;
+    if (other.wholeGroups != null) {
+      this.wholeGroups = other.wholeGroups;
     }
   }