Dev

[hhadithya]

This pull request introduces significant changes to the backend application, focusing on improving security, adding new features, and enhancing the development workflow. Key updates include the addition of environment variables for testing and builds, new dependencies in the pom.xml file, enhanced security configurations, and the introduction of new controllers for authentication and email handling.

Development Workflow Enhancements:

• Added environment variables for testing and builds in .github/workflows/docker-build.yml, enabling better separation of test and production configurations. [1] [2] [3]

Dependency Updates:

• Updated pom.xml to include new dependencies such as spring-boot-starter-validation, spring-boot-starter-aop, h2, modelmapper, mockito-core, and junit-jupiter. These additions support validation, AOP, testing, and in-memory database usage. [1] [2] [3]
• Upgraded springdoc-openapi-starter-webmvc-ui to version 2.7.0 and added runtime scope to jjwt-jackson. [1] [2]

Security Enhancements:

• Enhanced SecurityConfig to include JWT authentication, OAuth2 login, and stateless session management. New endpoints for user authentication and email verification were added, with role-based access restrictions applied. [1] [2] [3]
• Introduced RoleBasedAccessAspect to enforce role-based access control using AOP.

New Features:

• Added AuthController to handle signup, login, logout, email verification, and user profile status.
• Introduced EmailController to handle sending HTML emails via the public API.

Application Configuration:

• Updated VoluntrixBackendApplication to include beans for ModelMapper and enable features like JPA repositories, scheduling, and Web MVC.

[sonarqubecloud]

Quality Gate failed

Failed conditions
C Reliability Rating on New Code (required ≥ A)
E Security Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE