Lottery Assessment

Dockerfile

@@ -0,0 +1,10 @@
+
+FROM amazoncorretto:21.0.2-alpine3.18
+
+WORKDIR /app
+
+COPY . .
+
+RUN ["./gradlew","bootJar"]
+
+ENTRYPOINT ["java", "-jar", "build/libs/posttest-0.0.1-SNAPSHOT.jar"]

docker-compose.yml

@@ -0,0 +1,27 @@
+version: '3.8'
+
+services:
+  web:
+    image: assessment_con:latest
+    ports:
+      - "8888:8888"
+    environment:
+      - ENV_VARIABLE=value
+    depends_on:
+      - database
+    volumes:
+      - ./path/to/local/directory:/app/data
+
+  database:
+    image: postgres:latest
+    environment:
+      - POSTGRES_USER=postgres
+      - POSTGRES_PASSWORD=password
+      - POSTGRES_DB=lottery
+    ports:
+      - "5432:5432"
+    volumes:
+      - pgdata:/var/lib/postgresql/data
+
+volumes:
+  pgdata:

posttest/build.gradle

@@ -28,6 +28,13 @@ dependencies {
 	compileOnly 'org.projectlombok:lombok'
 	annotationProcessor 'org.projectlombok:lombok'
 	testImplementation 'org.springframework.boot:spring-boot-starter-test'
+
+	implementation 'org.hibernate.validator:hibernate-validator:6.2.0.Final'
+
+
+	implementation 'org.springframework.boot:spring-boot-starter-security'
+	testImplementation 'org.springframework.security:spring-security-test'
+
 }
 
 tasks.named('test') {

posttest/src/main/java/com/kbtg/bootcamp/posttest/PosttestApplication.java

@@ -6,8 +6,11 @@
 @SpringBootApplication
 public class PosttestApplication {
 
-	public static void main(String[] args) {
-		SpringApplication.run(PosttestApplication.class, args);
-	}
+    public static void main(String[] args) {
+        SpringApplication.run(PosttestApplication.class, args);
+        System.out.println("START OK! START OK!");
+
+
+    }
 
 }

posttest/src/main/java/com/kbtg/bootcamp/posttest/SecurityConfig.java

@@ -0,0 +1,59 @@
+package com.kbtg.bootcamp.posttest;
+
+import org.springframework.boot.autoconfigure.security.SecurityProperties;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.annotation.Order;
+import org.springframework.http.HttpMethod;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration;
+import org.springframework.security.core.userdetails.User;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.security.provisioning.InMemoryUserDetailsManager;
+import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.stereotype.Component;
+import static org.springframework.security.config.Customizer.withDefaults;
+
+@Component
+@EnableWebSecurity
+@Configuration
+public class SecurityConfig {
+
+    @Bean
+    SecurityFilterChain defaultSecurityFilterChain(HttpSecurity http) throws Exception {
+        return http
+                .csrf(httpSecurityCsrfConfigurer -> httpSecurityCsrfConfigurer.disable())
+                .authorizeHttpRequests((requests) -> requests
+                        .requestMatchers("/users/lotteries/**").permitAll()
+                        .requestMatchers("/users/**").permitAll()
+                        .requestMatchers(HttpMethod.POST, "/admin/lotteries").hasAuthority("ADMIN_CREATE")
+                        .requestMatchers(HttpMethod.GET, "/admin/lotteries").hasAuthority("ADMIN_READ")
+                        .anyRequest().authenticated()
+                )
+                .httpBasic(withDefaults())
+                .build();
+    }
+
+    @Bean
+    public PasswordEncoder passwordEncoder() {
+        return new BCryptPasswordEncoder();
+    }
+
+    @Bean
+    public UserDetailsService userDetailsService() {
+        BCryptPasswordEncoder encoder = new BCryptPasswordEncoder();
+
+        UserDetails user = User.withUsername("admin")
+                .password(encoder.encode("password"))
+                .authorities("ADMIN_CREATE", "ADMIN_READ")
+                .build();
+
+        return new InMemoryUserDetailsManager(user);
+    }
+
+}