WebFuzzing
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/README.md‎
Lines changed: 51 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/README.md‎
Lines changed: 51 additions & 0 deletions
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/pom.xml‎
Lines changed: 147 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/pom.xml‎
Lines changed: 147 additions & 0 deletions
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/NgSpringShoppingStoreApplication.java‎
Lines changed: 20 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/NgSpringShoppingStoreApplication.java‎
Lines changed: 20 additions & 0 deletions
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/AppSecurityConfig.java‎
Lines changed: 84 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/AppSecurityConfig.java‎
Lines changed: 84 additions & 0 deletions
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/CustomAccessDeniedHandler.java‎
Lines changed: 20 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/CustomAccessDeniedHandler.java‎
Lines changed: 20 additions & 0 deletions
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/ElasticSearchConfig.java‎
Lines changed: 30 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/ElasticSearchConfig.java‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/MailConfig.java‎
Lines changed: 20 additions & 0 deletions b/‎jdk_8_maven/cs/rest/original/angular-ecommerce/src/main/java/com/techie/shoppingstore/config/MailConfig.java‎
Lines changed: 20 additions & 0 deletions
@@ -0,0 +1,51 @@
+# SpringAngularEcommerce
+SpringAngularEcommerce is a shopping cart application developed as a pet project to get to know about different technologies.
+
+This project is still in development.
+
+Code for Angular app: https://github.com/SaiUpadhyayula/NgSpringShoppingStore-frontend
+
+#Features
+- Token Based User Authentication(JWT)
+- Product Search
+- Product Catalog
+- Payment Gateway (using Stripe) - TODO
+- Wishlist - TODO
+- Admin Console - TODO
+- Order Management - TODO
+- User Management - TODO
+- PDF Report Generation (Order Acknowledgment) - TODO
+
+
+#Technologies:
+- Spring Boot
+- Mongo DB
+- Angular
+- Redis for Caching
+- Elastic Search
+
+#Images of Application:
+1. Home Page
+
+![Home Page](https://github.com/SaiUpadhyayula/NgSpringShoppingStore/blob/master/src/main/resources/images/homepage.PNG)
+
+2. Category Page
+
+![Category Page](https://github.com/SaiUpadhyayula/NgSpringShoppingStore/blob/master/src/main/resources/images/category-page.PNG)
+
+3. Category Page With Filters
+
+![Category Page With Filters](https://github.com/SaiUpadhyayula/NgSpringShoppingStore/blob/master/src/main/resources/images/category-page-with-filters.PNG)
+
+4. Product Page
+
+![Product Page](https://github.com/SaiUpadhyayula/NgSpringShoppingStore/blob/master/src/main/resources/images/product-page.PNG)
+
+5. Product Page - Review Section
+
+![Product Page Review Section](https://github.com/SaiUpadhyayula/NgSpringShoppingStore/blob/master/src/main/resources/images/product-page-review-section.PNG)
+
+6. Search Page
+![Search Page](https://github.com/SaiUpadhyayula/NgSpringShoppingStore/blob/master/src/main/resources/images/search-page.PNG)
+
+
@@ -0,0 +1,147 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <parent>
+        <groupId>org.springframework.boot</groupId>
+        <artifactId>spring-boot-starter-parent</artifactId>
+        <version>2.1.1.RELEASE</version>
+        <relativePath/> <!-- lookup parent from repository -->
+    </parent>
+    <groupId>com.techie.shoppingstore</groupId>
+    <artifactId>NGSpringShoppingStore</artifactId>
+    <version>0.0.1-SNAPSHOT</version>
+    <name>NGSpringShoppingStore</name>
+    <description>Demo project for Spring Boot</description>
+
+    <properties>
+        <java.version>1.8</java.version>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-actuator</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-cache</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.data</groupId>
+            <artifactId>spring-data-mongodb</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-mail</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security.oauth</groupId>
+            <artifactId>spring-security-oauth2</artifactId>
+            <version>2.3.5.RELEASE</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-jwt</artifactId>
+            <version>1.0.9.RELEASE</version>
+        </dependency>
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+            <version>1.18.4</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt-api</artifactId>
+            <version>0.10.5</version>
+        </dependency>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt-impl</artifactId>
+            <scope>runtime</scope>
+            <version>0.10.5</version>
+        </dependency>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt-jackson</artifactId>
+            <scope>runtime</scope>
+            <version>0.10.5</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-thymeleaf</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-data-elasticsearch</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>com.mashape.unirest</groupId>
+            <artifactId>unirest-java</artifactId>
+            <version>1.4.9</version>
+        </dependency>
+        <dependency>
+            <groupId>org.elasticsearch.client</groupId>
+            <artifactId>elasticsearch-rest-high-level-client</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-data-redis</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.mapstruct</groupId>
+            <artifactId>mapstruct</artifactId>
+            <version>1.3.0.Final</version>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.springframework.boot</groupId>
+                <artifactId>spring-boot-maven-plugin</artifactId>
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <version>3.5.1</version> <!-- or newer version -->
+                <configuration>
+                    <source>1.8</source>
+                    <target>1.8</target>
+                    <annotationProcessorPaths>
+                        <path>
+                            <groupId>org.mapstruct</groupId>
+                            <artifactId>mapstruct-processor</artifactId>
+                            <version>1.3.0.Final</version>
+                        </path>
+                        <path>
+                            <groupId>org.projectlombok</groupId>
+                            <artifactId>lombok</artifactId>
+                            <version>1.18.4</version>
+                        </path>
+                    </annotationProcessorPaths>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+
+</project>
@@ -0,0 +1,20 @@
+package com.techie.shoppingstore;
+
+import com.techie.shoppingstore.config.AppSecurityConfig;
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.cache.annotation.EnableCaching;
+import org.springframework.context.annotation.Import;
+import org.springframework.scheduling.annotation.EnableAsync;
+
+@SpringBootApplication
+@EnableCaching
+@EnableAsync
+@Import(AppSecurityConfig.class)
+public class NgSpringShoppingStoreApplication {
+
+    public static void main(String[] args) {
+        SpringApplication.run(NgSpringShoppingStoreApplication.class, args);
+    }
+
+}
@@ -0,0 +1,84 @@
+package com.techie.shoppingstore.config;
+
+import com.techie.shoppingstore.repository.UserRepository;
+import com.techie.shoppingstore.service.JWTAuthenticationFilter;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.http.HttpMethod;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.config.BeanIds;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.builders.WebSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.http.SessionCreationPolicy;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+
+@EnableWebSecurity
+public class AppSecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Autowired
+    private UserRepository userRepository;
+    @Autowired
+    private UserDetailsService userDetailsService;
+    @Autowired
+    private UnauthorizedEntryPoint unauthorizedEntryPoint;
+    @Autowired
+    private CustomAccessDeniedHandler customAccessDeniedHandler;
+
+    @Bean
+    public JWTAuthenticationFilter jwtAuthenticationFilter() {
+        return new JWTAuthenticationFilter();
+    }
+
+    @Bean(BeanIds.AUTHENTICATION_MANAGER)
+    @Override
+    public AuthenticationManager authenticationManagerBean() throws Exception {
+        return super.authenticationManagerBean();
+    }
+
+    @Override
+    public void configure(WebSecurity web) {
+        web.ignoring()
+                .antMatchers(HttpMethod.OPTIONS, "/**");
+    }
+
+    @Override
+    public void configure(HttpSecurity httpSecurity) throws Exception {
+        httpSecurity
+                .cors()
+                .and()
+                .csrf()
+                .disable()
+                .exceptionHandling()
+                .authenticationEntryPoint(unauthorizedEntryPoint)
+                .and()
+                .sessionManagement()
+                .sessionCreationPolicy(SessionCreationPolicy.STATELESS)
+                .and()
+                .authorizeRequests()
+                .antMatchers("/api/auth/**")
+                .permitAll()
+                .antMatchers("/api/store/catalog/**")
+                .permitAll()
+                .anyRequest().authenticated();
+
+
+        // Add our custom JWT security filter
+        httpSecurity.addFilterBefore(jwtAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class);
+    }
+
+    @Autowired
+    public void configureGlobal(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception {
+        authenticationManagerBuilder.userDetailsService(userDetailsService).passwordEncoder(encoder());
+    }
+
+    @Bean
+    PasswordEncoder encoder() {
+        return new BCryptPasswordEncoder(12);
+    }
+}
@@ -0,0 +1,20 @@
+package com.techie.shoppingstore.config;
+
+import org.springframework.security.access.AccessDeniedException;
+import org.springframework.security.web.access.AccessDeniedHandler;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+@Component
+public class CustomAccessDeniedHandler implements AccessDeniedHandler {
+    @Override
+    public void handle(HttpServletRequest httpServletRequest,
+                       HttpServletResponse httpServletResponse,
+                       AccessDeniedException accessDeniedException) throws IOException, ServletException {
+        httpServletResponse.setStatus(403);
+    }
+}
@@ -0,0 +1,30 @@
+package com.techie.shoppingstore.config;
+
+import com.techie.shoppingstore.exceptions.SpringStoreException;
+import org.elasticsearch.client.Client;
+import org.elasticsearch.common.settings.Settings;
+import org.elasticsearch.common.transport.TransportAddress;
+import org.elasticsearch.transport.client.PreBuiltTransportClient;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.data.elasticsearch.repository.config.EnableElasticsearchRepositories;
+
+import java.net.InetAddress;
+import java.net.UnknownHostException;
+
+@Configuration
+@EnableElasticsearchRepositories
+public class ElasticSearchConfig {
+
+    @Bean
+    public Client client() {
+        System.setProperty("es.set.netty.runtime.available.processors", "false");
+        try {
+            return new PreBuiltTransportClient(Settings.EMPTY)
+                    .addTransportAddress(new TransportAddress(InetAddress.getByName("localhost"), 9300));
+
+        } catch (UnknownHostException e) {
+            throw new SpringStoreException("An error occured when configuring Elastic Search");
+        }
+    }
+}
@@ -0,0 +1,20 @@
+package com.techie.shoppingstore.config;
+
+import lombok.Data;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Configuration;
+
+@Configuration
+@Data
+public class MailConfig {
+
+    @Value("${spring.mail.host}")
+    private String host;
+    @Value("${spring.mail.port}")
+    private int port;
+    @Value("${spring.mail.username}")
+    private String username;
+    @Value("${spring.mail.password}")
+    private String password;
+
+}