AuthenticationPrincipal example

Author: rwinch

samples/webflux-security/build.gradle

@@ -15,7 +15,7 @@ repositories {
 }
 
 dependencies {
-	implementation 'org.springframework.boot:spring-boot-starter-graphql'
+	implementation project(":spring-graphql")
 	implementation 'org.springframework.boot:spring-boot-starter-webflux'
 	implementation 'org.springframework.boot:spring-boot-starter-security'
 	implementation 'org.springframework.boot:spring-boot-starter-actuator'

samples/webflux-security/src/main/java/io/spring/sample/graphql/CurrentUserController.java

@@ -0,0 +1,32 @@
+/*
+ * Copyright 2002-2022 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package io.spring.sample.graphql;
+
+import org.springframework.graphql.data.method.annotation.QueryMapping;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.stereotype.Controller;
+import reactor.core.publisher.Mono;
+
+@Controller
+public class CurrentUserController {
+
+	@QueryMapping
+	Mono<String> username(@AuthenticationPrincipal Mono<UserDetails> userDetails) {
+		return userDetails.map(UserDetails::getUsername);
+	}
+
+}

samples/webflux-security/src/main/resources/graphql/schema.graphqls

@@ -1,5 +1,6 @@
 type Query {
     employees: [Employee]
+    username: String
 }
 type Mutation {
     # restricted

samples/webflux-security/src/main/resources/graphql/username.graphql

@@ -0,0 +1,3 @@
+query {
+    username
+}

samples/webflux-security/src/test/java/io/spring/sample/graphql/SampleApplicationTests.java

@@ -22,6 +22,7 @@
 import org.springframework.boot.test.context.SpringBootTest;
 import org.springframework.graphql.execution.ErrorType;
 import org.springframework.graphql.test.tester.WebGraphQlTester;
+import org.springframework.security.test.context.support.WithMockUser;
 
 import static org.assertj.core.api.Assertions.assertThat;
 import static org.assertj.core.api.Assertions.assertThatThrownBy;
@@ -71,6 +72,14 @@ void canQueryName() {
 				.path("employees[0].name").entity(String.class).isEqualTo("Andi");
 	}
 
+	@Test
+	@WithMockUser("rob")
+	void canQueryUsername() {
+		this.graphQlTester.queryName("username")
+				.execute()
+				.path("username").entity(String.class).isEqualTo("rob");
+	}
+
 	@Test
 	void canNotQuerySalary() {
 		this.graphQlTester.queryName("employeesNamesAndSalaries")