feat: added jwt config common files (#5)

Author: g-otn

pom.xml

@@ -69,6 +69,21 @@
       <artifactId>springdoc-openapi-starter-webmvc-ui</artifactId>
       <version>2.1.0</version>
     </dependency>
+    <dependency>
+      <groupId>io.jsonwebtoken</groupId>
+      <artifactId>jjwt-api</artifactId>
+      <version>0.12.3</version>
+    </dependency>
+    <dependency>
+      <groupId>io.jsonwebtoken</groupId>
+      <artifactId>jjwt-impl</artifactId>
+      <version>0.12.3</version>
+    </dependency>
+    <dependency>
+      <groupId>io.jsonwebtoken</groupId>
+      <artifactId>jjwt-jackson</artifactId>
+      <version>0.12.3</version>
+    </dependency>
   </dependencies>
   <profiles>
     <profile>

src/main/java/br/com/grupo63/techchallenge/common/config/JwtFilter.java

@@ -0,0 +1,37 @@
+package br.com.grupo63.techchallenge.common.config;
+
+import io.jsonwebtoken.Claims;
+import jakarta.servlet.*;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.util.StringUtils;
+
+import java.io.IOException;
+import java.security.GeneralSecurityException;
+
+@RequiredArgsConstructor
+public class JwtFilter implements Filter {
+
+    private final JwtService jwtService;
+
+    @Override
+    public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException, ServletException {
+        try {
+            String authHeader = ((HttpServletRequest) request).getHeader("Authorization");
+            if (!StringUtils.hasLength(authHeader) || !StringUtils.startsWithIgnoreCase(authHeader, "Bearer ")) {
+                throw new GeneralSecurityException("Missing or invalid authorization header");
+            }
+            String jwt = authHeader.substring(7);
+            Claims claims = jwtService.getClaims(jwt);
+            request.setAttribute("clientId", claims.get("sub"));
+            filterChain.doFilter(request, response);
+        } catch (Exception e) {
+            ((HttpServletResponse) response).setStatus(HttpServletResponse.SC_UNAUTHORIZED);
+            response.getWriter().write("Unauthorized: Missing or incorrect JWT Token.");
+        }
+    }
+}
+

src/main/java/br/com/grupo63/techchallenge/common/config/JwtService.java

@@ -0,0 +1,32 @@
+package br.com.grupo63.techchallenge.common.config;
+
+import io.jsonwebtoken.Claims;
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.io.Decoders;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Service;
+
+import java.security.Key;
+import java.security.KeyFactory;
+import java.security.NoSuchAlgorithmException;
+import java.security.spec.InvalidKeySpecException;
+import java.security.spec.X509EncodedKeySpec;
+
+@Service
+public class JwtService {
+
+    @Value("${jwt.token.key.public}")
+    private String jwtSigningKey;
+
+    public Claims getClaims(String token) throws NoSuchAlgorithmException, InvalidKeySpecException {
+        return Jwts.parser().setSigningKey(getSigningKey()).build().parseClaimsJws(token)
+                .getBody();
+    }
+
+    private Key getSigningKey() throws NoSuchAlgorithmException, InvalidKeySpecException {
+        byte[] keyBytes = Decoders.BASE64.decode(jwtSigningKey);
+        X509EncodedKeySpec spec = new X509EncodedKeySpec(keyBytes);
+        KeyFactory kf = KeyFactory.getInstance("RSA");
+        return kf.generatePublic(spec);
+    }
+}

src/main/resources/application.yml

@@ -0,0 +1,4 @@
+jwt:
+  token:
+    key:
+      public: "${JWT_PUBLIC_KEY}"