Authentication with Spring Security + Spring data + MongoDB

Service Layer

You have to create a separate service implementing org.springframework.security.core.userdetails.UserDetailsService and inject it inside the AuthenticationManagerBuilder.

@Componentpublic class SecUserDetailsService implements UserDetailsService{    @Autowired    private UserRepository userRepository;    @Override    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {        /*Here add user data layer fetching from the MongoDB.          I have used userRepository*/        User user = userRepository.findByUsername(username);        if(user == null){            throw new UsernameNotFoundException(username);        }else{            UserDetails details = new SecUserDetails(user);            return details;        }    }}

Model

UserDetails Should be also implemented. This is the POJO which will keep the user authenticated details by the Spring. You may include your Entity data object wrapped inside it, as I have done.

public class SecUserDetails implements UserDetails {    private User user;    public SecUserDetails(User user) {        this.user = user;    }    ......    ......    ......}

Security Config

Autowire the service that we created before and set it inside the AuthenticationManagerBuilder

@Configuration@EnableWebSecuritypublic class SecurityConfig extends WebSecurityConfigurerAdapter {    @Autowired    SecUserDetailsService userDetailsService ;    @Autowired    public void configAuthBuilder(AuthenticationManagerBuilder builder) throws Exception {        builder.userDetailsService(userDetailsService);     }}

Create your own authentication provider providing a class that extends the UserDetailservice.Ensure content scanning is enable in your spring context xml file.

    <authentication-provider user-service-ref="userModelService">        <password-encoder hash="sha" />    </authentication-provider>

@Servicepublic class UserModelService implements UserDetailsService{@Autowiredprivate UserModelRepositoryImpl repository;public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException{    UserModel user = repository.findByUsername(username);     if( user == null )        throw new UsernameNotFoundException( "Name not found!" );      List<SimpleGrantedAuthority> authorities = Arrays.asList(new SimpleGrantedAuthority( user.getRole()));      return new User(user.getUsername(), user.getSHA1Password(), authorities ); }public void saveUserDetails(UserModel userModel){    repository.save(userModel);}

}

This class will enable spring query mongo for the username and password required for authentication. Next create the user model class.

public class UserModel{private String id;@Indexed(unique=true)private String username;private String password; public String getUsername() {    return username;}public void setUsername(String username) {    this.username = username;}public String getPassword() {    return password;}public void setPassword(String password) {    this.password = password;}

Create the user implementation class that extends the DAO.

@Servicepublic class UserModelService implements UserDetailsService{@Autowiredprivate UserModelRepositoryImpl repository;public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException{    UserModel user = repository.findByUsername(username);     if( user == null )        throw new UsernameNotFoundException( "Oops!" );      List<SimpleGrantedAuthority> authorities = Arrays.asList(new SimpleGrantedAuthority( user.getRole()));      return new User(user.getUsername(), user.getSHA1Password(), authorities ); }

Finally configure mongo and you're done.