🔧 : configurable admin password

pom.xml

@@ -142,6 +142,10 @@
 			<groupId>org.thymeleaf.extras</groupId>
 			<artifactId>thymeleaf-extras-springsecurity5</artifactId>
 		</dependency>
+		<dependency>
+			<groupId>org.springframework.security</groupId>
+			<artifactId>spring-security-test</artifactId>
+		</dependency>
 
 		<dependency>
 			<groupId>com.github.spullara.mustache.java</groupId>

src/main/java/io/codeka/gaia/config/SecurityConfig.java

@@ -23,6 +23,9 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
     @Value("${gaia.ldap.enabled:false}")
     private boolean ldapEnabled;
 
+    @Value("${gaia.admin-password:admin123}")
+    private String adminPassword;
+
     @Bean
     PasswordEncoder bcrypt(){
         return new BCryptPasswordEncoder();
@@ -46,7 +49,7 @@ public void configure(AuthenticationManagerBuilder auth) throws Exception {
         // configure default admin user
         auth
             .inMemoryAuthentication()
-                .withUser("admin").password(bcrypt().encode("admin123")).authorities("ROLE_ADMIN")
+                .withUser("admin").password(bcrypt().encode(adminPassword)).authorities("ROLE_ADMIN")
                 .and()
                 .withUser("user").password(bcrypt().encode("user123")).authorities("ROLE_USER");
 

src/main/resources/application.properties

@@ -11,4 +11,5 @@ management.health.ldap.enabled=${gaia.ldap.enabled:false}
 
 spring.data.mongodb.uri=${gaia.mongodb.uri}
 
-gaia.mongodb.uri=mongodb://localhost/gaia
+gaia.mongodb.uri=mongodb://localhost/gaia
+

src/test/java/io/codeka/gaia/config/SecurityConfigTest.java

@@ -0,0 +1,31 @@
+package io.codeka.gaia.config;
+
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.autoconfigure.web.servlet.AutoConfigureMockMvc;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.stereotype.Controller;
+import org.springframework.test.context.TestPropertySource;
+import org.springframework.test.web.servlet.MockMvc;
+
+import static org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestBuilders.formLogin;
+import static org.springframework.security.test.web.servlet.response.SecurityMockMvcResultMatchers.authenticated;
+
+@SpringBootTest(classes = {EmptyController.class, SecurityConfig.class})
+@AutoConfigureMockMvc
+@TestPropertySource(properties = "gaia.admin-password=admin456")
+class SecurityConfigTest {
+
+    @Autowired
+    private MockMvc mockMvc;
+
+    @Test
+    void adminUserPassword_shouldBeConfigurable() throws Exception {
+        mockMvc.perform(formLogin().user("admin").password("admin456"))
+                .andExpect(authenticated().withUsername("admin"));
+    }
+
+}
+
+@Controller
+class EmptyController{}