Skip to content

sakhileln/authentication

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

48 Commits
docs
docs
 
 
src
src
 
 
.gitignore
.gitignore
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Jenkinsfile
Jenkinsfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

Authentication Service

A comprehensive Spring Boot authentication service with JWT tokens, MFA support, email verification, and OAuth2 integration.

Quick Start

Prerequisites

  • Java 17+
  • Maven 3.6+

Installation

  1. Clone and setup

    git clone https://github.com/sakhileln/authentication.git
cd authentication

  2. Configure environment

    export JWT_SECRET="your-super-secret-jwt-key-that-should-be-at-least-256-bits-long"
export MAIL_USERNAME="your-email@gmail.com"
export MAIL_PASSWORD="your-app-password"

  3. Run the application

    # Generate a test token
make token

# Export the token and test user endpoints
export TOKEN=<token_from_above>
make users

# Setup and run
make setup
make dev-up

# Clean up
make dev-down
make clean

  4. Access the API

    • Base URL: http://localhost:8080
    • Database: authdb.sqlite (created automatically)

Documentation

Features

  • JWT Authentication with refresh tokens
  • Email verification system
  • Password reset and management
  • Multi-Factor Authentication (TOTP)
  • OAuth2 integration (Google, GitHub)
  • SQLite3 database
  • Token revocation and management

Tech Stack

  • Java 17 + Spring Boot 3.2.0
  • Spring Security + JWT
  • Spring Data JPA + SQLite3
  • TOTP for MFA
  • Spring Mail for email notifications

Usage Examples

Register a new user

curl -X POST http://localhost:8080/auth/signup \
  -H "Content-Type: application/json" \
  -d '{
    "username": "sakhile",
    "email": "sakhile@mars.com",
    "password": "SecurePass123!",
    "confirmPassword": "SecurePass123!",
    "firstName": "Sakhile",
    "lastName": "Ndlazi"
  }'

Login

curl -X POST http://localhost:8080/auth/login \
  -H "Content-Type: application/json" \
  -d '{
    "email": "sakhile@mars.com",
    "password": "SecurePass123!"
  }'

See API Reference for complete examples.

Security

  • BCrypt password hashing
  • JWT with HMAC-SHA256 signing
  • Configurable token expiration
  • MFA with TOTP and backup codes
  • Email verification required
  • CORS configuration

License

This project is licensed under license.

Contributing

  1. Fork the repository
  2. Create a feature branch
  3. Make your changes
  4. Add tests
  5. Submit a pull request

Support

  • Check the documentation
  • Create an issue for bugs
  • Suggest features via issues

Contact

About

A comprehensive authentication system.

Topics

java jwt oauth2 database spring-boot authentication jwt-token sso

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Contributing

Contributing
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages