Docker for easier local dev

Author: eahrold

.gitignore

@@ -3,3 +3,4 @@
 /.idea/
 /.micronaut/
 /build/
+AuthGenHash/bin

AuthGenHash/.sdkmanrc

@@ -0,0 +1,3 @@
+# Enable auto-env through the sdkman_auto_env config
+# Add key=value pairs of SDKs to use below
+java=21.0.4-tem

AuthGenHash/build.gradle

@@ -1,6 +1,8 @@
 plugins {
-    id("com.github.johnrengelman.shadow") version "8.1.1"
-    id("io.micronaut.application") version "4.2.1"
+  id("com.gradleup.shadow") version "${shadowVersion}"
+  id("io.micronaut.application") version "${micronautPluginVersion}"
+  id("io.micronaut.test-resources") version "${micronautPluginVersion}"
+  id("io.micronaut.aot") version "${micronautPluginVersion}"
 }
 
 version = "0.1"
@@ -27,8 +29,8 @@ application {
     mainClass.set("io.unityfoundation.auth.AuthGenHashCommand")
 }
 java {
-    sourceCompatibility = JavaVersion.toVersion("17")
-    targetCompatibility = JavaVersion.toVersion("17")
+    sourceCompatibility = JavaVersion.toVersion("21")
+    targetCompatibility = JavaVersion.toVersion("21")
 }
 
 

AuthGenHash/gradle.properties

@@ -1 +1,6 @@
-micronautVersion=4.2.4
+# Java
+javaVersion=21
+# Micronaut
+micronautVersion=4.8.2
+micronautPluginVersion=4.5.3
+shadowVersion=8.3.6

AuthGenHash/gradle/wrapper/gradle-wrapper.jar

@@ -1,6 +1,6 @@
 distributionBase=GRADLE_USER_HOME
 distributionPath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-8.4-bin.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-8.13-bin.zip
 networkTimeout=10000
 validateDistributionUrl=true
 zipStoreBase=GRADLE_USER_HOME

AuthGenHash/gradle/wrapper/gradle-wrapper.properties

@@ -1,11 +1,11 @@
 # Build the frontend and serve with nginx
-FROM node:18
+FROM node:24 AS builder
 
 COPY frontend frontend
 WORKDIR frontend
 RUN npm install && npm run build
 
 FROM nginx:1.24.0-alpine
 
-COPY --from=0 /frontend/build /usr/share/nginx/html
+COPY --from=builder /frontend/build /usr/share/nginx/html
 COPY nginx-default.conf /etc/nginx/conf.d/default.conf

AuthGenHash/gradlew

@@ -0,0 +1,171 @@
+# UnityAuth
+
+UnityAuth is a comprehensive authentication and authorization service built with modern microservices architecture. It provides JWT-based authentication, user management, and a web-based administration interface.
+
+## Local Development QuickStart
+
+To launch and be a pure consumer of the auth service, you can use the docker compose from the root:
+
+```sh
+docker-compose -f docker-compose.local.yml up
+```
+
+This will start:
+
+- **UnityAuth API** on port http://localhost:8081
+- **Frontend UI** on port http://localhost:3001
+- **MySQL Database** for data persistence
+
+You can log in with these accounts.
+**Password for all the following accounts is 'test'**
+
+- **Unity Administrator** `[email protected]`
+- **Tenant Administrator** `[email protected]`
+- **Libre311 Administrator** `[email protected]`
+- **Libre311 Request Manager** `[email protected]`
+- **Libre311 Jurisdiction Administrator** `[email protected]`
+- **Libre311 Jurisdiction Request Manager** `[email protected]`
+- **Stl sub-tenant admin** `[email protected]`
+
+## Project Structure
+
+This repository contains three main subprojects:
+
+### 1. UnityAuth (Main Service)
+
+**Location:** `/UnityAuth/`
+**Technology:** Java 21 + Micronaut Framework
+
+The core authentication service that provides:
+
+- JWT token generation and validation
+- User authentication and authorization
+- RESTful API endpoints for authentication operations
+- Database integration with MySQL
+- JWK (JSON Web Key) management for token signing
+- Flyway database migrations
+
+**Key Features:**
+
+- Micronaut-based microservice architecture
+- JWT security with configurable key rotation
+- BCrypt password hashing
+- Database connection pooling with HikariCP
+- Reactive programming support with Reactor
+
+### 2. AuthGenHash (Utility Tool)
+
+**Location:** `/AuthGenHash/`
+**Technology:** Java 17 + Micronaut + PicoCLI
+
+A command-line utility for generating secure password hashes compatible with the UnityAuth service.
+
+**Purpose:**
+
+- Generate BCrypt password hashes for administrative users
+- Secure password handling (interactive mode prevents history logging)
+- Standalone tool for initial system setup and user management
+
+**Usage:**
+
+```bash
+cd AuthGenHash
+./gradlew shadowJar
+java -jar build/libs/AuthGenHash-0.1-all.jar -p
+```
+
+### 3. Frontend (Web Administration Interface)
+
+**Location:** `/frontend/`
+**Technology:** SvelteKit + TypeScript + Tailwind CSS
+
+A modern web application providing administrative interface for the UnityAuth service.
+
+**Features:**
+
+- User authentication and session management
+- User administration and management
+- Tenant management capabilities
+- Settings configuration
+- Responsive design with Tailwind CSS
+- TypeScript for type safety
+- Comprehensive testing with Playwright and Vitest
+
+**Key Technologies:**
+
+- SvelteKit for the web framework
+- TypeScript for type safety
+- Tailwind CSS for styling
+- Playwright for end-to-end testing
+- Vitest for unit testing
+- ESLint and Prettier for code quality
+
+## Architecture Overview
+
+The system follows a microservices architecture:
+
+1. **Database Layer:** MySQL database for persistent storage
+2. **API Layer:** UnityAuth service provides REST APIs
+3. **Frontend Layer:** SvelteKit web application
+4. **Utility Layer:** AuthGenHash for administrative tasks
+
+## Client Integration
+
+To integrate with the UnityAuth service, add this configuration to your client application's `application.yaml`:
+
+```yaml
+security:
+  enabled: true
+  token:
+    enabled: true
+    jwt:
+      enabled: true
+      signatures:
+        jwks:
+          unity:
+            url: ${AUTH_JWKS:`http://localhost:8081/keys`}
+```
+
+## Security Configuration
+
+The service uses JSON Web Keys (JWK) for token signing. To generate primary and secondary keys:
+
+1. Visit <https://mkjwk.org/>
+2. Generate JSON Web Keys
+3. Set environment variables:
+   - `JWK_PRIMARY`: Primary signing key
+   - `JWK_SECONDARY`: Secondary signing key for rotation
+
+## Development Environment
+
+### Prerequisites
+
+- Java 17 or higher
+- Node.js 18 or higher
+- Docker and Docker Compose
+- MySQL 8.0 (if running locally)
+
+### Individual Service Development
+
+#### UnityAuth Service
+
+```bash
+cd UnityAuth
+./gradlew run
+```
+
+#### Frontend Development
+
+```bash
+cd frontend
+npm install
+npm run dev
+```
+
+#### AuthGenHash Utility
+
+```bash
+cd AuthGenHash
+./gradlew shadowJar
+java -jar build/libs/AuthGenHash-0.1-all.jar -p
+```