fix: small fixes and some missing configs

Author: thgosi

src/main/java/br/com/grupo63/serviceorder/ServiceOrderApplication.java

@@ -1,9 +1,19 @@
 package br.com.grupo63.serviceorder;
 
+import io.swagger.v3.oas.annotations.enums.SecuritySchemeIn;
+import io.swagger.v3.oas.annotations.enums.SecuritySchemeType;
+import io.swagger.v3.oas.annotations.security.SecurityScheme;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.cloud.openfeign.EnableFeignClients;
 
+@SecurityScheme(
+		name = "bearerAuth",
+		type = SecuritySchemeType.HTTP,
+		scheme = "bearer",
+		bearerFormat = "JWT",
+		in = SecuritySchemeIn.HEADER
+)
 @SpringBootApplication
 @EnableFeignClients
 public class ServiceOrderApplication {

src/main/java/br/com/grupo63/serviceorder/adapter/OrderAdapter.java

@@ -38,7 +38,6 @@ public static void fillEntity(OrderControllerDTO dto, Order entity) {
         }).toList());
 
         entity.setClientId(dto.getClientId());
-        entity.setPaymentId(dto.getPaymentId());
     }
 
 }

src/main/java/br/com/grupo63/serviceorder/api/controller/order/OrderAPIController.java

@@ -42,23 +42,26 @@ public ResponseEntity<OrderControllerDTO> create(@Valid @RequestBody CreateOrder
     @Operation(
             tags = {"3ª chamada - Fluxo principal - Pagamento", "5ª chamada - Fluxo principal - Acompanhamento e entrega"},
             summary = "Recupera pedido",
-            description = "Exibe os dados de um pedido a partir de seu id")
+            description = "Exibe os dados de um pedido a partir de seu id",
+            security = @SecurityRequirement(name = "bearerAuth"))
     @GetMapping("/{id}")
     public ResponseEntity<OrderControllerDTO> read(@PathVariable("id") Long id) throws NotFoundException {
         return ResponseEntity.ok(controller.read(id));
     }
 
     @Operation(
             summary = "Listar pedidos",
-            description = "Lista todos os pedidos")
+            description = "Lista todos os pedidos",
+            security = @SecurityRequirement(name = "bearerAuth"))
     @GetMapping
     public ResponseEntity<List<OrderControllerDTO>> list() {
         return ResponseEntity.ok(controller.list());
     }
 
     @Operation(
             summary = "Excluir pedido",
-            description = "Exclui um pedido por id")
+            description = "Exclui um pedido por id",
+            security = @SecurityRequirement(name = "bearerAuth"))
     @DeleteMapping("/{id}")
     public ResponseEntity<DefaultResponseDTO> delete(@PathVariable("id") Long id) throws NotFoundException {
         controller.delete(id);

src/main/java/br/com/grupo63/serviceorder/config/JwtFilter.java

@@ -0,0 +1,40 @@
+package br.com.grupo63.serviceorder.config;
+
+import br.com.grupo63.serviceorder.ServiceOrderApplication;
+import io.jsonwebtoken.Claims;
+import jakarta.servlet.*;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.util.StringUtils;
+
+import java.io.IOException;
+import java.security.GeneralSecurityException;
+
+@RequiredArgsConstructor
+public class JwtFilter implements Filter {
+
+    private final JwtService jwtService;
+    private static Logger logger = LoggerFactory.getLogger(ServiceOrderApplication.class);
+
+    @Override
+    public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException, ServletException {
+        try {
+            String authHeader = ((HttpServletRequest) request).getHeader("Authorization");
+            logger.info("Auth header: " + authHeader);
+            if (!StringUtils.hasLength(authHeader) || !StringUtils.startsWithIgnoreCase(authHeader, "Bearer ")) {
+                throw new GeneralSecurityException("Missing or invalid authorization header");
+            }
+            String jwt = authHeader.substring(7);
+            Claims claims = jwtService.getClaims(jwt);
+            request.setAttribute("clientId", claims.get("sub"));
+            filterChain.doFilter(request, response);
+        } catch (Exception e) {
+            ((HttpServletResponse) response).setStatus(HttpServletResponse.SC_UNAUTHORIZED);
+            response.getWriter().write("Unauthorized: Missing or incorrect JWT Token.");
+            logger.info("Unauthorized: " + e.getMessage());
+        }
+    }
+}

src/main/java/br/com/grupo63/serviceorder/config/JwtFilterConfig.java

@@ -0,0 +1,23 @@
+package br.com.grupo63.serviceorder.config;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.web.servlet.FilterRegistrationBean;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+import java.util.List;
+
+@Configuration
+public class JwtFilterConfig {
+
+    @Autowired
+    private JwtService jwtService;
+
+    @Bean
+    public FilterRegistrationBean<JwtFilter> jwtFilterFilterRegistrationBean() {
+        FilterRegistrationBean<JwtFilter> jwtFilterFilterRegistrationBean = new FilterRegistrationBean<>();
+        jwtFilterFilterRegistrationBean.setFilter(new JwtFilter(jwtService));
+        jwtFilterFilterRegistrationBean.setUrlPatterns(List.of("/orders"));
+        return jwtFilterFilterRegistrationBean;
+    }
+}

src/main/java/br/com/grupo63/serviceorder/config/JwtService.java

@@ -0,0 +1,32 @@
+package br.com.grupo63.serviceorder.config;
+
+import io.jsonwebtoken.Claims;
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.io.Decoders;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Service;
+
+import java.security.Key;
+import java.security.KeyFactory;
+import java.security.NoSuchAlgorithmException;
+import java.security.spec.InvalidKeySpecException;
+import java.security.spec.X509EncodedKeySpec;
+
+@Service
+public class JwtService {
+
+    @Value("${jwt.token.key.public}")
+    private String jwtSigningKey;
+
+    public Claims getClaims(String token) throws NoSuchAlgorithmException, InvalidKeySpecException {
+        return Jwts.parser().setSigningKey(getSigningKey()).build().parseClaimsJws(token)
+                .getBody();
+    }
+
+    private Key getSigningKey() throws NoSuchAlgorithmException, InvalidKeySpecException {
+        byte[] keyBytes = Decoders.BASE64.decode(jwtSigningKey);
+        X509EncodedKeySpec spec = new X509EncodedKeySpec(keyBytes);
+        KeyFactory kf = KeyFactory.getInstance("RSA");
+        return kf.generatePublic(spec);
+    }
+}

src/main/java/br/com/grupo63/serviceorder/config/ValidationConfig.java

@@ -0,0 +1,29 @@
+package br.com.grupo63.serviceorder.config;
+
+import org.springframework.context.MessageSource;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.support.ResourceBundleMessageSource;
+import org.springframework.web.servlet.LocaleResolver;
+import org.springframework.web.servlet.i18n.FixedLocaleResolver;
+
+import java.util.Locale;
+
+@Configuration
+public class ValidationConfig {
+
+    @Bean
+    public MessageSource messageSource() {
+        ResourceBundleMessageSource source = new ResourceBundleMessageSource();
+        source.setBasename("messages");
+        source.setDefaultEncoding("UTF-8");
+        return source;
+    }
+
+    @Bean
+    public LocaleResolver localeResolver() {
+        FixedLocaleResolver localeResolver = new FixedLocaleResolver();
+        localeResolver.setDefaultLocale(new Locale("pt", "BR")); // Default locale is Portuguese Brazil
+        return localeResolver;
+    }
+}

src/main/java/br/com/grupo63/serviceorder/controller/dto/OrderControllerDTO.java

@@ -18,6 +18,5 @@ public class OrderControllerDTO extends AbstractControllerDTO {
     private Double totalPrice;
     private Long clientId;
     private List<OrderItemControllerDTO> items = new ArrayList<>();
-    private Long paymentId;
 
 }

src/main/java/br/com/grupo63/serviceorder/entity/order/Order.java

@@ -18,14 +18,12 @@ public class Order extends Entity {
     private Double totalPrice;
     private Long clientId;
     private List<OrderItem> items = new ArrayList<>();
-    private Long paymentId;
 
-    public Order(Long id, boolean deleted, Double totalPrice, Long clientId, List<OrderItem> items, Long paymentId) {
+    public Order(Long id, boolean deleted, Double totalPrice, Long clientId, List<OrderItem> items) {
         super(id, deleted);
         this.totalPrice = totalPrice;
         this.clientId = clientId;
         this.items = items;
-        this.paymentId = paymentId;
     }
 
     public OrderItem getByProductId(Long id) {

src/main/java/br/com/grupo63/serviceorder/gateway/order/entity/OrderPersistenceEntity.java

@@ -31,10 +31,6 @@ public class OrderPersistenceEntity extends PersistenceEntity {
     @OneToMany(cascade = CascadeType.ALL, fetch = FetchType.LAZY, mappedBy = "order")
     private List<OrderItemPersistenceEntity> items = new ArrayList<>();
 
-    @Basic
-    @Column(name = "ord_payment", nullable = false)
-    private Long paymentId;
-
     public OrderPersistenceEntity(Long id) {
         this.id = id;
     }
@@ -43,7 +39,6 @@ public OrderPersistenceEntity(Order order) {
         super(order);
         this.totalPrice = order.getTotalPrice();
         this.clientId = order.getClientId();
-        this.paymentId = order.getPaymentId();
         this.items = order.getItems().stream().map(item -> new OrderItemPersistenceEntity(item, this)).toList();
     }
 
@@ -53,8 +48,7 @@ public Order toModel() {
                 this.isDeleted(),
                 this.getTotalPrice(),
                 this.getClientId(),
-                this.getItems().stream().map(OrderItemPersistenceEntity::toModel).toList(),
-                this.getPaymentId());
+                this.getItems().stream().map(OrderItemPersistenceEntity::toModel).toList());
     }
 
 }