{"id":31727154,"url":"https://github.com/psv73/account-service","last_synced_at":"2026-05-05T17:31:32.207Z","repository":{"id":310469842,"uuid":"1038462508","full_name":"psv73/Account-Service","owner":"psv73","description":"Spring Boot microservice for user accounts and payroll with RBAC and security events","archived":false,"fork":false,"pushed_at":"2025-09-12T11:05:28.000Z","size":87,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-09-12T11:27:36.378Z","etag":null,"topics":["gradle","h2","java","rest-api","spring-boot","spring-security"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/psv73.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-08-15T08:40:04.000Z","updated_at":"2025-09-12T11:05:32.000Z","dependencies_parsed_at":"2025-09-12T11:18:57.457Z","dependency_job_id":"5eafa3dd-4db3-44df-a68d-adec77e97757","html_url":"https://github.com/psv73/Account-Service","commit_stats":null,"previous_names":["psv73/account-service"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/psv73/Account-Service","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/psv73%2FAccount-Service","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/psv73%2FAccount-Service/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/psv73%2FAccount-Service/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/psv73%2FAccount-Service/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/psv73","download_url":"https://codeload.github.com/psv73/Account-Service/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/psv73%2FAccount-Service/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279000851,"owners_count":26082950,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-09T02:00:07.460Z","response_time":59,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["gradle","h2","java","rest-api","spring-boot","spring-security"],"created_at":"2025-10-09T06:18:42.551Z","updated_at":"2025-10-09T06:18:47.586Z","avatar_url":"https://github.com/psv73.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🧾 Account Service – Payroll \u0026 User Management (Java, Spring Boot)\n![Build](https://github.com/psv73/Account-Service/actions/workflows/ci.yml/badge.svg)\n![Java](https://img.shields.io/badge/Java-21-blue.svg)\n![License](https://img.shields.io/badge/License-MIT-green.svg)\n\nA Spring Boot microservice for user account and payroll management with **role‑based access control (RBAC)**, authentication/authorization, and **security event logging**.\n\n\u003e Port used in examples: **28852**. H2 console is enabled for local development.\n\n---\n\n## 🚀 Features\n- **User management** → sign up, change password, list users (admin scope)\n- **Payroll** → add payments, list payments (per user \u0026 accountant views)\n- **Security** → RBAC (Administrator, User, Accountant, Auditor) + security events\n- **Validation \u0026 error handling** with clear JSON responses\n- **H2 console** (`/h2-console`) for local development; **Actuator shutdown** for tests\n\n---\n\n## 🧱 Tech Stack\n- Java 21 (compatible 17+)\n- Spring Boot 3.x: Web, Security, Data JPA\n- H2 (dev)\n- Gradle Wrapper, Git/GitHub\n- Docker (optional for deployment)\n\n---\n\n## ▶️ Getting Started\n\n**Prerequisites**: JDK 17+ (21 recommended), Git. No Gradle installation needed (wrapper included).\n\n```bash\ngit clone https://github.com/psv73/Account-Service.git\ncd Account-Service\n\n# build \u0026 run\n./gradlew clean bootRun\n\n# choose a custom port if needed\n./gradlew bootRun --args='--server.port=28852'\n```\n\n**H2 console**: `http://localhost:28852/h2-console` (FrameOptions configured as `sameOrigin`).\n\n---\n\n## 📚 Endpoints Overview (centralized in `AppPath`)\n\n```\n/api/auth/signup\n/api/auth/changepass\n/api/empl/payment\n/api/acct/payments\n/api/security/events\n/api/admin/user\n/api/admin/user/role\n/api/admin/user/access\n/h2-console/**\n/actuator/shutdown\n```\n\n---\n\n## 🔐 Access Rules (Spring Security — RBAC)\n```java\n.authorizeHttpRequests(auth -\u003e auth\n    .requestMatchers(AppPath.USER + \"/**\").hasRole(\"ADMINISTRATOR\")\n    .requestMatchers(HttpMethod.GET,  AppPath.PAYMENT).hasAnyRole(\"ACCOUNTANT\", \"USER\")\n    .requestMatchers(HttpMethod.GET,  AppPath.SECURITY_EVENT).hasRole(\"AUDITOR\")\n    .requestMatchers(HttpMethod.POST, AppPath.PAYMENTS).hasRole(\"ACCOUNTANT\")\n    .requestMatchers(HttpMethod.PUT,  AppPath.PAYMENTS).hasRole(\"ACCOUNTANT\")\n    .requestMatchers(HttpMethod.POST, AppPath.CHANGE_PASS).authenticated()\n    .requestMatchers(HttpMethod.POST, AppPath.SIGN_UP).permitAll()\n    .requestMatchers(HttpMethod.POST, AppPath.ACTUATOR_SHUTDOWN).permitAll()\n    .anyRequest().permitAll()\n);\n```\n\n---\n\n## 📌 Example Requests\n\n### 1) Sign up\n```http\nPOST http://localhost:28852/api/auth/signup\nContent-Type: application/json\n\n{\n  \"name\": \"John\",\n  \"lastname\": \"Doe\",\n  \"email\": \"john.black@acme.com\",\n  \"password\": \"oMoa3VvqnLxW\"\n}\n```\n\n✅ Response\n```json\n{\n  \"id\": 7952,\n  \"name\": \"John\",\n  \"lastname\": \"Doe\",\n  \"email\": \"john.black@acme.com\",\n  \"roles\": [\"ROLE_USER\"]\n}\n```\n\n### 2) Change password (authenticated)\n```http\nPOST http://localhost:28852/api/auth/changepass\nContent-Type: application/json\nAuthorization: Basic \u003cbase64(email:password)\u003e\n\n{ \"new_password\": \"oMoa3VvqnLxW\" }\n```\n\n✅ Response\n```json\n{\n  \"email\": \"johndoe1@acme.com\",\n  \"status\": \"The password has been updated successfully\"\n}\n```\n\n### 3) Add payment (ACCOUNTANT)\n```http\nPOST http://localhost:28852/api/empl/payment\nContent-Type: application/json\nAuthorization: Basic \u003cbase64(accountant_email:password)\u003e\n\n{ \"employee\": \"john.black@acme.com\", \"period\": \"08-2025\", \"salary\": 350000 }\n```\n\n✅ Response\n```json\n{ \"status\": \"Added successfully!\" }\n```\n\n### 4) List payments\n- **User view**\n```http\nGET http://localhost:28852/api/empl/payment\nAuthorization: Basic \u003cbase64(user_email:password)\u003e\n```\n- **Accountant view**\n```http\nGET http://localhost:28852/api/acct/payments\nAuthorization: Basic \u003cbase64(accountant_email:password)\u003e\n```\n\n---\n\n## 🔎 Audit \u0026 Security Events\n\n**Endpoint**\n```http\nGET http://localhost:28852/api/security/events\nAuthorization: Basic \u003cbase64(auditor_email:password)\u003e\n```\n\n**Response example**\n```json\n[\n  {\n    \"id\": 1,\n    \"date\": \"2025-08-15T10:20:54.282006\",\n    \"action\": \"CREATE_USER\",\n    \"subject\": \"Anonymous\",\n    \"object\": \"johndoe@acme.com\",\n    \"path\": \"/api/auth/signup\"\n  },\n  {\n    \"id\": 4,\n    \"date\": \"2025-08-15T10:22:05.260397\",\n    \"action\": \"ACCESS_DENIED\",\n    \"subject\": \"johndoe@acme.com\",\n    \"object\": \"/api/acct/payments\",\n    \"path\": \"/api/acct/payments\"\n  }\n]\n```\n\n---\n\n## 📂 Project Structure (high level)\n- `config/` – security configuration \u0026 beans\n- `controller/` – REST endpoints\n- `service/` – business logic\n- `repository/` – Spring Data JPA\n- `model/` – entities \u0026 DTOs\n- `exception/` – error handling\n\n---\n\n## 📈 What this project demonstrates\n- RBAC with Spring Security (Administrator/User/Accountant/Auditor)\n- Clean REST API design \u0026 validation\n- Consistent JSON errors and **security event** auditing\n- Dev‑friendly setup (H2 console, Gradle wrapper, profiles)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpsv73%2Faccount-service","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpsv73%2Faccount-service","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpsv73%2Faccount-service/lists"}