Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/spacecodee/springboot-security-open-template

This repository is a Spring Boot template for implementing JWT-based authentication and role-based access control. It includes secure user management, developer and admin protections, token security features, and integrated API documentation using Swagger and OpenAPI.
https://github.com/spacecodee/springboot-security-open-template

devcontainer docker docs gradle java postgresql springboot swagger

Last synced: about 2 months ago
JSON representation

This repository is a Spring Boot template for implementing JWT-based authentication and role-based access control. It includes secure user management, developer and admin protections, token security features, and integrated API documentation using Swagger and OpenAPI.

Awesome Lists containing this project

README 

        
# 🔐 Spring Security JWT Template - Spring Boot 3.3.5



## 📋 Prerequisites



- ☕ Java 23

- 🐘 PostgreSQL

- 💻 IDE: IntelliJ IDEA, Eclipse, etc.



## ⚙️ Configuration



Create `application-local.properties` in resources folder:



```properties

spring.datasource.url=jdbc:postgresql://localhost:5432/your_database

spring.datasource.username=your_username

spring.datasource.password=your_password

security.jwt.expiration-in-minutes=#expiration time in minutes

# Make it longer and encode with 'https://www.base64encode.org/'

security.jwt.secret-key=#your secret key

security.default.roles=#admin role

security.default.role=#user role

security.default.developer.role=#developer role

security.default.technician.role=#technician role

security.default.customer.role=#customer role

security.cors.allowed-origins=https://example.com,https://www.example.com

security.cors.allowed-methods=GET,POST,PUT,DELETE,OPTIONS

security.cors.allowed-headers=Authorization,Content-Type,Accept-Language

```



Create `.env` file in the .devcontainer folder of the application



```.env

POSTGRES_USER=#your-database-user

POSTGRES_PASSWORD=#your-database-password

POSTGRES_DB=#your-database-name

SPRING_PROFILES_ACTIVE=#your-spring-profile-local,dev,ect

JAVA_VERSION=21

GRADLE_VERSION=8.5

```



📚 Documentation

----------------



- 📖 Swagger UI available at:`/api/v1/swagger-ui/index.html`

- 🔍 OpenAPI docs at:`/api/v1/v3/api-docs`



🛡️ Security Features

---------------------



**User Management**



- ✅ JWT-based authentication

- ✅ Role-based access control

- ✅ Secure password handling

- ✅ Token invalidation on user updates

- ✅ Locale-based responses (en/es)



**Developer Protection**



- ✅ Cannot delete last remaining developer

- ✅ Automatic token invalidation before deletion

- ✅ Username uniqueness validation

- ✅ Safe update operations



**Admin Protection**



- ✅ Cannot delete last remaining admin

- ✅ Automatic token invalidation before deletion

- ✅ Username uniqueness validation

- ✅ Safe update operations



**Customer Management**



- ✅ Full CRUD operations

- ✅ Role-based access control

- ✅ Username uniqueness validation

- ✅ Safe update operations



**Business Rules**



*User Management:*



- System maintains at least one active user per role

- Validates unique usernames across all user types

- Auto-logout (token invalidation) on profile updates

- Internationalization support (i18n)



*Token Security:*



- Automatic invalidation on sensitive data changes

- Proper cleanup during user deletion

- Expiration handling

- Refresh token support

- JWT validation and cleanup



*API Documentation:*



- Swagger UI integration

- OpenAPI 3.0 specification

- Interactive API testing

- Endpoint authorization information



*Useful links:*



- To convert any text into Markdown format: [Markdown Converter](https://euangoddard.github.io/clipboard2markdown/)