Я пытаюсь создать систему аутентификации и авторизации, но что-то не так, но я не могу понять это. Вот классы:
securedEnabled = true,
jsr250Enabled = true,
prePostEnabled = true
public class SecurityConfig extends WebSecurityConfigurerAdapter {
DataSource dataSource;
CustomUserDetailsService customUserDetailsService;
private JwtAuthenticationEntryPoint unauthorizedHandler;
public JwtAuthenticationFilter jwtAuthenticationFilter() {
return new JwtAuthenticationFilter();
public void configure(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception {
.usersByUsernameQuery("select username,pass, enabled from users where username=?")
"SELECT u.username, r.name FROM users u" +
"INNER JOIN user_roles ur on u.userid = ur.user_id + "
+ "INNER JOIN roles r on ur.role_id=r.id where username=?");
public AuthenticationManager authenticationManagerBean() throws Exception {
return super.authenticationManagerBean();
public PasswordEncoder passwordEncoder() {
return new BCryptPasswordEncoder();
protected void configure(HttpSecurity http) throws Exception {
.antMatchers("/api/user/checkUsernameAvailability", "/api/user/checkEmailAvailability")
.antMatchers(HttpMethod.GET, "/api/polls/**", "/api/users/**")
// Add our custom JWT security filter
http.addFilterBefore(jwtAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class);
public class User implements Serializable {
private static final long serialVersionUID = 1L;
@GeneratedValue(strategy = GenerationType.IDENTITY)
private Long id;
@Size(min=2, message="Lastname should have atleast 2 characters")
private String lastname;
@Size(min=2, message="Name should have atleast 2 characters")
private String firstname;
private String email;
@Size(min=4, message="Username should have atleast 4 characters")
private String username;
private Date birthdate;
@Size(min=8, message="Password should have atleast 8 characters")
private String password;
private String city;
private String state;
@Column(name = "enabled")
private Short enabled;
@ManyToMany(fetch = FetchType.EAGER, cascade = CascadeType.ALL)
@JoinTable(name = "user_roles", joinColumns = {
@JoinColumn(name = "user_id") }, inverseJoinColumns = {
@JoinColumn(name = "role_id") })
private Set<Role> roles;
public User() {
public User(String username, String password) {
this.username = username;
this.password = password;
public Long getId() {
return id;
public void setId(Long id) {
this.id = id;
public String getLastname() {
return lastname;
public void setLastname(String lastname) {
this.lastname = lastname;
public String getFirstname() {
return firstname;
public void setFirstname(String firstname) {
this.firstname = firstname;
public String getEmail() {
return email;
public void setEmail(String email) {
this.email = email;
public String getUsername() {
return username;
public void setUsername(String username) {
this.username = username;
public String getPassword() {
return password;
public void setPassword(String password) {
this.password = password;
public String getCity() {
return city;
public void setCity(String city) {
this.city = city;
public String getState() {
return state;
public void setState(String state) {
this.state = state;
public Date getBirthdate() {
return birthdate;
public void setBirthdate(Date birthdate) {
this.birthdate = birthdate;
public Set<Role> getRoles() {
Set<Role> roles = new HashSet<>();
roles.add(new Role());
return roles;
public void setRoles(Set<Role> roles) {
this.roles = roles;
public Short getEnabled() {
return enabled;
public void setEnabled(Short enabled) {
this.enabled = enabled;
@Table(name = "roles")
public class Role {
@GeneratedValue(strategy = GenerationType.IDENTITY)
private Long id;
@Column(length = 60)
private RoleName name;
public Role() {
public Role(RoleName name) {
this.name = name;
public Long getId() {
return id;
public void setId(Long id) {
this.id = id;
public RoleName getName() {
return name;
public void setName(RoleName name) {
this.name = name;
public enum RoleName {
Я создал JWTTokenProvider, UserServiceDetailsService, UserServiceDetails и JWTAuthenticationEntryPoint. Я также настроил базу данных в файле .properties. Регистрация проходит успешно, но логин для созданного пользователя возвращает 401 (не авторизовано).
public class AuthController {
AuthenticationManager authenticationManager;
UserRepository userRepository;
PasswordEncoder passwordEncoder;
JwtTokenProvider tokenProvider;
public ResponseEntity<?> authenticateUser(@Valid @RequestBody LoginRequest loginRequest) {
Authentication authentication = authenticationManager.authenticate(
new UsernamePasswordAuthenticationToken(
String jwt = tokenProvider.generateToken(authentication);
return ResponseEntity.ok(new JwtAuthenticationResponse(jwt));
public ResponseEntity<?> registerUser(@Valid @RequestBody SignUpRequest signUpRequest) {
if(userRepository.existsByUsername(signUpRequest.getUsername())) {
return new ResponseEntity(new ApiResponse(false, "Username is already taken!"),
if(userRepository.existsByEmail(signUpRequest.getEmail())) {
return new ResponseEntity(new ApiResponse(false, "Email Address already in use!"),
// Creating user's account
// User user = new User(signUpRequest.getName(), signUpRequest.getUsername(),
// signUpRequest.getEmail(), signUpRequest.getPassword());
User user = new User();
user.setLastname("Bla bla");
// Use this code once the roles are in database
// Role userRole = roleRepository.findByName(RoleName.ROLE_USER)
// .orElseThrow(() -> new AppException("User Role not set."));
if(userRepository.numberOfUsers() == 0) {
Role userRole = new Role(RoleName.ROLE_ADMIN);
} else {
Role userRole = new Role(RoleName.ROLE_USER);
User result = userRepository.save(user);
URI location = ServletUriComponentsBuilder
return ResponseEntity.created(location).body(new ApiResponse(true, "User registered successfully"));
Кто-нибудь может мне помочь?
spring.jpa.database = POSTGRESQL
spring.datasource.platform = postgres
spring.jpa.show-sql = true
spring.datasource.driver-class-name = org.postgresql.Driver
# disable driver's feature detection
spring.jpa.properties.hibernate.temp.use_jdbc_metadata_defaults = false
# without detection you have to set the dialect by hand
spring.jpa.properties.hibernate.dialect = org.hibernate.dialect.PostgreSQLDialect
# parametri za konekciju (zameniti X sa odgovarajucim parametrima)
spring.jpa.hibernate.ddl-auto = create
spring.datasource.jdbcUrl = jdbc:postgresql://localhost:5432/resttest
spring.datasource.username = postgres
spring.datasource.password = klasikaK1
## proxy problem sa bean-ovima
spring.jackson.serialization.fail-on-empty-beans = false
## App Properties
app.jwtSecret= JWTSuperSecretKey
app.jwtExpirationInMs = 604800000
Нет сообщения, просто код 401 (не авторизован). Я могу создать пользователя и пароль хэшируется в базе данных.