Aakkiieezz
diff --git a/‎notes.txt
+4 b/‎notes.txt
+4
diff --git a/‎pom.xml
+6-17 b/‎pom.xml
+6-17
diff --git a/‎src/main/java/servie/track_servie/config/ApiSecurity.java
+35-53 b/‎src/main/java/servie/track_servie/config/ApiSecurity.java
+35-53
diff --git a/‎src/main/java/servie/track_servie/config/AppConfig.java
+5-42 b/‎src/main/java/servie/track_servie/config/AppConfig.java
+5-42
diff --git a/‎src/main/java/servie/track_servie/controller/AuthController.java
+23-54 b/‎src/main/java/servie/track_servie/controller/AuthController.java
+23-54
diff --git a/‎src/main/java/servie/track_servie/controller/EpisodeController.java
+9-5 b/‎src/main/java/servie/track_servie/controller/EpisodeController.java
+9-5
diff --git a/‎src/main/java/servie/track_servie/controller/ExportController.java
-4 b/‎src/main/java/servie/track_servie/controller/ExportController.java
-4
@@ -95,6 +95,10 @@ Backdrops
 1.778 2999 x 1687
 1.778 3840 x 2160
 
+Stills
+1357 x 764
+1.777 1920 × 1080
+1.777 3840 x 2160
 ######################################################################################################################################################
 Filters :
 
 
@@ -75,23 +75,6 @@
 			<artifactId>spring-boot-starter-security</artifactId>
 			<version>3.0.4</version>
 		</dependency>
-		<dependency>
-			<groupId>io.jsonwebtoken</groupId>
-			<artifactId>jjwt-impl</artifactId>
-			<version>0.11.5</version>
-			<scope>runtime</scope>
-		</dependency>
-		<dependency>
-			<groupId>io.jsonwebtoken</groupId>
-			<artifactId>jjwt-api</artifactId>
-			<version>0.11.5</version>
-		</dependency>
-		<dependency>
-			<groupId>io.jsonwebtoken</groupId>
-			<artifactId>jjwt-jackson</artifactId>
-			<version>0.11.5</version>
-			<scope>runtime</scope>
-		</dependency>
 		<dependency>
 			<groupId>org.springframework.boot</groupId>
 			<artifactId>spring-boot-starter-test</artifactId>
@@ -102,6 +85,12 @@
 			<artifactId>opencsv</artifactId>
 			<version>5.7.1</version>
 		</dependency>
+		<dependency>
+			<groupId>org.thymeleaf.extras</groupId>
+			<artifactId>thymeleaf-extras-springsecurity6</artifactId>
+			<version>3.1.1.RELEASE</version>
+		</dependency>
+
 	</dependencies>
 	<build>
 		<plugins>
 
@@ -1,69 +1,51 @@
 package servie.track_servie.config;
 
 import lombok.RequiredArgsConstructor;
-import servie.track_servie.filters.AuthenticationTokenFilter;
-// import org.springframework.boot.web.servlet.FilterRegistrationBean;
+import servie.track_servie.service.CustomUserDetailsService;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-// import org.springframework.core.Ordered;
-import org.springframework.security.authentication.AuthenticationProvider;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
-import org.springframework.security.config.http.SessionCreationPolicy;
+import org.springframework.security.config.annotation.web.configurers.LogoutConfigurer;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.security.web.SecurityFilterChain;
-import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
-// import org.springframework.web.cors.CorsConfiguration;
-// import org.springframework.web.cors.CorsConfigurationSource;
-// import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
-// import org.springframework.web.filter.CorsFilter;
-// import java.util.Arrays;
-// import java.util.List;
 
 @Configuration
 @EnableWebSecurity
 @RequiredArgsConstructor
 public class ApiSecurity
 {
-    private final AuthenticationTokenFilter jwtAuthFilter;
-    private final AuthenticationProvider authenticationProvider;
+	@Bean
+	public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception
+	{
+		http.authorizeHttpRequests(reuest -> reuest.requestMatchers("src/main/resources/static/css/mystyles.css", "/track-servie/auth/register", "/track-servie/auth/login").permitAll().anyRequest().authenticated())
+				.formLogin(form -> form.loginPage("/track-servie/auth/login")
+						.defaultSuccessUrl("/track-servie/servies", true).permitAll())
+				.logout(LogoutConfigurer::permitAll);
+		return http.build();
+	}
 
-    @Bean
-    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception
-    {
-        http.csrf().disable().authorizeHttpRequests(auth ->
-        {
-            auth.requestMatchers("/track-servie/**").permitAll();
-            auth.anyRequest().authenticated();
-        }).sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and().authenticationProvider(authenticationProvider).addFilterBefore(jwtAuthFilter, UsernamePasswordAuthenticationFilter.class);
-        return http.build();
-    }
-    // @Bean
-    // public FilterRegistrationBean corsFilter()
-    // {
-    //     UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
-    //     CorsConfiguration config = new CorsConfiguration();
-    //     config.setAllowCredentials(true);
-    //     config.setAllowedOriginPatterns(Arrays.asList("*"));
-    //     config.setAllowedMethods(Arrays.asList("POST", "OPTIONS", "GET", "DELETE", "PUT"));
-    //     config.setAllowedHeaders(Arrays.asList("X-Requested-With", "Origin", "Content-Type", "Accept", "Authorization", "X-USER-ID"));
-    //     source.registerCorsConfiguration("/**", config);
-    //     FilterRegistrationBean bean = new FilterRegistrationBean(new CorsFilter(source));
-    //     bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
-    //     return bean;
-    // }
-    // @Bean
-    // CorsConfigurationSource corsConfigurationSource()
-    // {
-    //     CorsConfiguration configuration = new CorsConfiguration();
-    //     configuration.setAllowedOrigins(List.of("*"));
-    //     // configuration.setAllowedOrigins(Arrays.asList("http://localhost:8080"));
-    //     configuration.setAllowedMethods(List.of("*"));
-    //     // configuration.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE", "OPTIONS"));
-    //     configuration.setAllowedHeaders(List.of("*"));
-    //     // configuration.setAllowedHeaders(Arrays.asList("*"));
-    //     configuration.setAllowCredentials(true);
-    //     UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
-    //     source.registerCorsConfiguration("/**", configuration);
-    //     return source;
-    // }
+	@Bean
+	public PasswordEncoder passwordEncoder()
+	{
+		return new BCryptPasswordEncoder();
+	}
+
+	@Bean
+	public UserDetailsService userDetailsService()
+	{
+		return new CustomUserDetailsService();
+	}
+
+	@Bean
+	public AuthenticationManager authenticationManager(HttpSecurity http) throws Exception
+	{
+		AuthenticationManagerBuilder authenticationManagerBuilder = http.getSharedObject(AuthenticationManagerBuilder.class);
+		authenticationManagerBuilder.userDetailsService(userDetailsService()).passwordEncoder(passwordEncoder());
+		return authenticationManagerBuilder.build();
+	}
 }
@@ -2,53 +2,16 @@
 
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-import org.springframework.security.authentication.AuthenticationManager;
-import org.springframework.security.authentication.AuthenticationProvider;
-import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
-import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
-import org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer;
-import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
-import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.web.client.RestTemplate;
 import lombok.RequiredArgsConstructor;
-import servie.track_servie.service.JwtUserDetailsService;
 
 @Configuration
 @RequiredArgsConstructor
 public class AppConfig
 {
-    private final JwtUserDetailsService jwtUserDetailsService;
-
-    @Bean
-    public RestTemplate getRestTemplate()
-    {
-        return new RestTemplate();
-    }
-
-    @Bean
-    public AuthenticationProvider authenticationProvider()
-    {
-        DaoAuthenticationProvider authenticationProvider = new DaoAuthenticationProvider();
-        authenticationProvider.setUserDetailsService(jwtUserDetailsService);
-        authenticationProvider.setPasswordEncoder(passwordEncoder());
-        return authenticationProvider;
-    }
-
-    @Bean
-    public AuthenticationManager authenticationManager(AuthenticationConfiguration config) throws Exception
-    {
-        return config.getAuthenticationManager();
-    }
-
-    @Bean
-    public PasswordEncoder passwordEncoder()
-    {
-        return new BCryptPasswordEncoder();
-    }
-
-    @Bean
-    public WebSecurityCustomizer webSecurityCustomizer()
-    {
-        return (web) -> web.ignoring().requestMatchers("/css/**", "/templates/**");
-    }
+	@Bean
+	public RestTemplate getRestTemplate()
+	{
+		return new RestTemplate();
+	}
 }
@@ -1,75 +1,44 @@
 package servie.track_servie.controller;
 
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.security.authentication.AuthenticationManager;
-import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
-import org.springframework.security.core.Authentication;
-import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.Model;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.ModelAttribute;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
-import servie.track_servie.payload.dtos.LoginRequest;
-import servie.track_servie.utils.jwt.JwtUtils;
+import servie.track_servie.entity.User;
+import servie.track_servie.service.UserService;
 
 @Controller
-@RequestMapping("auth")
+@RequestMapping("/track-servie/auth")
 public class AuthController
 {
 	@Autowired
-	AuthenticationManager authenticationManager;
-	@Autowired
-	JwtUtils jwtUtils;
+	private UserService userService;
 
-	@GetMapping("login")
-	public String showLoginPage(Model model)
+	@GetMapping("/login")
+	public String getLoginForm()
 	{
-		model.addAttribute("loginForm", new LoginRequest());
 		return "LoginPage";
 	}
+	// @PostMapping("/login")
+	// public String getLoginForm(@ModelAttribute User user)
+	// {
+	// 	return "LoginPage";
+	// }
+
+	@GetMapping("/register")
+	public String register(Model model)
+	{
+		model.addAttribute("user", new User());
+		return "RegistrationPage";
+	}
 
-	@PostMapping("login")
-	// @CrossOrigin(origins = "http://localhost:8080")
-	public String authenticateUser(@ModelAttribute("loginForm") LoginRequest loginRequest, Model model)
+	@PostMapping("/register")
+	public String register(@ModelAttribute User user)
 	{
-		Authentication authentication;
-		try
-		{
-			authentication = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(loginRequest.getEmail(), loginRequest.getPassword()));
-		}
-		catch(RuntimeException e)
-		{
-			// return new ResponseEntity<>(new Response("Invalid credentials."),
-			// HttpStatus.FORBIDDEN);
-			return "redirect:/track-servie/auth/login";
-		}
-		SecurityContextHolder.getContext().setAuthentication(authentication);
-		String jwtToken = jwtUtils.generateJwtToken(authentication);
-		// AuthUser userDetails = (AuthUser) authentication.getPrincipal();
-		// List<String> roles =
-		// userDetails.getAuthorities().stream().map(GrantedAuthority::getAuthority)
-		// .collect(Collectors.toList());
-		// Map<String, Object> responseData = new HashMap<>();
-		// responseData.put("email", userDetails.getUsername());
-		// responseData.put("roles", roles);
-		// response.addHeader("Authorization", "Bearer " + jwtToken);
-		// request.setAttribute("Authorization", "Bearer " + jwtToken);
-		// Map<String, String> headers = new HashMap<>();
-		// headers.put("Authorization", "Bearer " + jwtToken);
-		// HttpServletRequestWrapper requestWrapper = new
-		// CustomHttpServletRequestWrapper(request, headers);
-		// redirectAttributes.addFlashAttribute("requestWrapper", requestWrapper);
-		// redirectAttributes.addAttribute("type", "tv");
-		// redirectAttributes.addAttribute("query", "breaking bad");
-		// return "redirect:/track-servie/servies/search";
-		model.addAttribute("jwtToken", jwtToken);
-		return "redirect:/track-servie/servies";
+		userService.register(user);
+		return "redirect:/track-servie/auth/login?success";
 	}
-}
-// HttpHeaders headers = new HttpHeaders();
-// headers.set("Authorization", "Bearer " + jwtToken);
-// CustomHttpServletResponseWrapper responseWrapper = new
-// CustomHttpServletResponseWrapper(headers2, "Bearer " + jwtToken);
-// redirectAttributes.addFlashAttribute("headers", responseWrapper);
+}
@@ -2,7 +2,8 @@
 
 import java.util.List;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.beans.factory.annotation.Value;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.Model;
 import org.springframework.web.bind.annotation.GetMapping;
@@ -11,6 +12,7 @@
 import org.springframework.web.bind.annotation.RequestParam;
 import servie.track_servie.payload.dtos.episodePageDtos.EpisodeDtoEpisodePage;
 import servie.track_servie.payload.dtos.operationsImage.Image;
+import servie.track_servie.repository.UserRepository;
 import servie.track_servie.service.EpisodeService;
 
 @Controller
@@ -19,8 +21,8 @@ public class EpisodeController
 {
 	@Autowired
 	EpisodeService episodeService;
-	@Value("${user-id}")
-	private Integer userId;
+	@Autowired
+	private UserRepository userRepository;
 
 	// Returns EpisodePage containing selected Episode from SeasonPage
 	@GetMapping("")
@@ -41,16 +43,18 @@ public String getEpisode(@PathVariable Integer tmdbId, @PathVariable Integer sea
 
 	// Toggles the watch button of Episode located on SeasonPage
 	@GetMapping("toggleback")
-	public String toggleEpisodeWatch(@PathVariable Integer tmdbId, @PathVariable Integer seasonNo, @PathVariable Integer episodeNo)
+	public String toggleEpisodeWatch(@PathVariable Integer tmdbId, @PathVariable Integer seasonNo, @PathVariable Integer episodeNo, @AuthenticationPrincipal UserDetails userDetails)
 	{
+		Integer userId = userRepository.findByEmail(userDetails.getUsername()).get().getId();
 		episodeService.toggleEpisodeWatch(userId, tmdbId, seasonNo, episodeNo);
 		return "redirect:/track-servie/servies/"+tmdbId+"/Season/"+seasonNo;
 	}
 
 	// Toggles the watch button of Episode located on EpisodePage
 	@GetMapping("toggle")
-	public String toggleEpWatch(@PathVariable Integer tmdbId, @PathVariable Integer seasonNo, @PathVariable Integer episodeNo)
+	public String toggleEpWatch(@PathVariable Integer tmdbId, @PathVariable Integer seasonNo, @PathVariable Integer episodeNo, @AuthenticationPrincipal UserDetails userDetails)
 	{
+		Integer userId = userRepository.findByEmail(userDetails.getUsername()).get().getId();
 		episodeService.toggleEpisodeWatch(userId, tmdbId, seasonNo, episodeNo);
 		return "redirect:/track-servie/servies/"+tmdbId+"/Season/"+seasonNo+"/Episode/"+episodeNo;
 	}