Spring Boot Data Rest JPA - Entity custom create (User) -


i trying learn spring. created project spring boot using following tools:

  • spring data jpa
  • spring data rest
  • spring hateoas
  • spring security

i trying create user entity. want user have encrypted password (+ salt).

when post /api/users create new user. 

{ "firstname":"john", "lastname":"doe", "email":"johndoe@example.com", "password":"12345678" }

but have 2 problems:

  • the password saved in clear-text
  • the salt null
+----+---------------------+-----------+----------+----------+------+ | id |        email        | firstname | lastname | password | salt | +----+---------------------+-----------+----------+----------+------+ |  1 | johndoe@example.com | john      | doe      | 12345678 | null | +----+---------------------+-----------+----------+----------+------+

the problem think default constructor used , not other 1 have created. new spring , jpa must missing something. here code.

user.java

@entity @table(name = "users") public class user{      @id     @generatedvalue     private long id;      @column(nullable = false)     public string firstname;      @column(nullable = false)     public string lastname;      @column(nullable = false, unique = true)     public string email;      @jsonignore     @column(nullable = false)     public string password;      @jsonignore     @column     private string salt;      public user() {}      public user(string email, string firstname, string lastname, string password) {         this.email = email;         this.firstname = firstname;         this.lastname = lastname;         this.salt = uuid.randomuuid().tostring();         this.password = new bcryptpasswordencoder().encode(password + this.salt);     }       @jsonignore     public string getsalt() {         return salt;     }      @jsonproperty     public void setsalt(string salt) {         this.salt = salt;     }      public string getemail() {         return email;     }      public void setemail(string email) {         this.email = email;     }      public string getfirstname() {         return firstname;     }      public void setfirstname(string firstname) {         this.firstname = firstname;     }      public long getid() {         return id;     }      public void setid(long id) {         this.id = id;     }      public string getlastname() {         return lastname;     }      public void setlastname(string lastname) {         this.lastname = lastname;     }      @jsonignore     public string getpassword() {         return password;     }      @jsonproperty     public void setpassword(string password) {         this.password = password;     }  }

userrepository.java

public interface userrepository extends jparepository<user, long> {      public user findbyemail(string email);      public user findbyemailandpassword(string email, string password); }

application.java

@springbootapplication public class application {       public static void main(string[] args) {         springapplication.run(application .class, args);     }  }

also if finds did wrong, point me where/how should put user login code (decryption).

thanks.

if want spring use constructor, need to

  • remove no-argument constructor
  • annotate every parameter in other constructor @jsonproperty this
public user(@jsonproperty("email") string email,              @jsonproperty("firstname") string firstname,              @jsonproperty("lastname") string lastname,              @jsonproperty("password") string password) {     this.email = email;     this.firstname = firstname;     this.lastname = lastname;     this.password = new bcryptpasswordencoder().encode(password); }

you don't need provide salt value bcryptpasswordencoder because salts passwords itself.


Comments

Post a Comment

Popular posts from this blog

javascript - Using jquery append to add option values into a select element not working -

i'm looking dynamically populate select element names of items stored array. for reason it's not working , i'm not sure why. html: <div class="col-md-4 col-md-offset-4"> <select class="select1"> </select> , <select class="select2"> </select> </div> note i'm using bootstrap layout. here's jquery i'm using try , populate ".select1" jquery: select: function() { $.each(state.greens, function(index, value) { $(".select1").append("<option value =' " + index + " '>" + state.greens[index].name + "</option>"); }); } note function 'select' stored within object called 'display'. state.greens name of array i'm trying access. so @ end of html page call display.select(); call function. no error messages showing in console. also, saw question: appending ...
Read more

user interface - how to replace an ongoing process of image capture from another process call over the same ImageLabel in python's GUI TKinter -

i trying use following code create interactive gui changes color-space(hsv, rbg, grayscale etc) on event of button click. display opencv video in tkinter using multiprocessing being new python having problems multiprocessing , attempts on making gui change it's color space on button clicks hangs entire system. on it's implementation highly appreciated. thankyou. below code: import cv2 pil import image,imagetk import tkinter tk import numpy np multiprocessing import process , queue def quit_it(root,process): root.destroy() process.terminate() def black_andwhite(root,process): process.terminate p=process(target=capture_image, args=(5,queue, )) p.start() root.after(0, func=lambda: update_all(root, image_label, queue)) def update_image(image_label, queue): frame = queue.get() = image.fromarray(frame) b = imagetk.photoimage(image=a) image_label.configure(image=b) image_label._image_cache = b root.update() def update_all(root...
Read more

javascript - Restarting Supervisor and effect on FlaskSocketIO -

in index.html (html/javascript) have: $(document).ready(function(){ namespace = '/test'; var socket = io.connect('http://' + document.domain + ':' + location.port + namespace); socket.on('connect', function() { socket.emit('join', {room: 'venue_1'}); }); socket.on('my response', function(msg) { $('#log').append('<br>received #' + ': ' + msg.data); }); }); on server have: @socketio.on('connect', namespace='/test') def test_connect(): if session.get('venue_id'): emit('my response', {'data': 'connected'}) session.pop('venue_id', none) else: request.namespace.disconnect() @socketio.on('join', namespace='/test') def join(message): join_room(message['room']) room = message[...
Read more