Added Auth Integration

.codex/config.toml

@@ -5,5 +5,8 @@ command = "C:\\Users\\jamius19\\miniconda3\\envs\\awsmcp\\Scripts\\awslabs.opena
 args = ["--spec-url", "http://localhost:8080/v3/api-docs"]
 enabled = true
 
+[mcp_servers.flightdrift_openapi.tools.getOrganizations]
+approval_mode = "approve"
+
 [sandbox_workspace_write]
 network_access = true

AGENTS.md

@@ -8,4 +8,7 @@ Check `AGENTS.md` file within each application dir (i.e., `flightdrift-frontend/
 
 Keep your changes as small as possible and always ask before making a big change.
 
-When you create/modify any endpoint, update the relavant yml file(s) in the `api-collection\Flightdrift` OpenCollection directory.
+When you create/modify any endpoint, update the relavant yml file(s) in the `api-collection\Flightdrift` OpenCollection directory.
+
+## Tools
+1. Check if `rg` is available, if so use it, otherwise use `grep`.

api-collection/Flightdrift/Auth/Sign In.yml

@@ -20,7 +20,7 @@ runtime:
       code: |-
         var jsonData = res.getBody();
 
-        bru.set("auth_token", jsonData.data.token);
+        bru.setEnvVar("auth_token", jsonData.data.token);
 
 settings:
   encodeUrl: true
@@ -73,6 +73,12 @@ examples:
             "success": true,
             "message": "Signed in successfully",
             "data": {
-              "token": "eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJqYW1pdXMxOSIsImlhdCI6MTc3OTkwMjgxMiwiZXhwIjoxODY2MzAyODEyfQ.Y0Rca6ESQvV16n_VJxP4rzxVERvRaSzonuOFTfyD0Ytz1H4cMEnQ-crukQ0i0l_Bwf72m_aCUfqSamdABNB6Vg"
+              "token": "eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJqYW1pdXMxOSIsImlhdCI6MTc3OTkwMjgxMiwiZXhwIjoxODY2MzAyODEyfQ.Y0Rca6ESQvV16n_VJxP4rzxVERvRaSzonuOFTfyD0Ytz1H4cMEnQ-crukQ0i0l_Bwf72m_aCUfqSamdABNB6Vg",
+              "userInfo": {
+                "id": "0c71345a-0a0f-42a5-88dc-43616f65d5e3",
+                "name": "Jamius Siam",
+                "email": "jamius@example.com",
+                "username": "jamius19"
+              }
             }
           }

api-collection/Flightdrift/Auth/Signup.yml

@@ -11,7 +11,7 @@ http:
     data: |-
       {
           "name": "Jamius Siam",
-          "email": "jamiussiam@gmail.com",
+          "email": "jamius@example.com",
           "username": "jamius19",
           "password": "123"
       }
@@ -32,7 +32,7 @@ examples:
         data: |-
           {
               "name": "Jamius Siam",
-              "email": "jamiussiam@gmail.com",
+              "email": "jamius@example.com",
               "username": "jamius19",
               "password": "123"
           }
@@ -69,9 +69,9 @@ examples:
             "success": true,
             "message": "Account created successfully",
             "data": {
-              "id": "019e6a79-5e97-7b4d-9f53-b7d0e4a3f96c",
+              "id": "019e73b4-33b7-74fd-ad65-3bd068e2e46c",
               "name": "Jamius Siam",
-              "email": "jamiussiam@gmail.com",
+              "email": "jamius@example.com",
               "username": "jamius19"
             }
           }

api-collection/Flightdrift/Project/Create Project.yml

@@ -14,6 +14,7 @@ http:
     data: |-
       {
           "name": "Flightdrift",
+          "code": "ARTEMIS",
           "iconUrl": "https://example.com/project.png"
       }
   auth: inherit
@@ -42,6 +43,7 @@ examples:
         data: |-
           {
               "name": "Flightdrift",
+              "code": "ARTEMIS",
               "iconUrl": "https://example.com/project.png"
           }
     response:
@@ -60,6 +62,7 @@ examples:
               "project": {
                 "id": "019e6a80-e269-7ddc-9e6b-d25eccfd192d",
                 "name": "Flightdrift",
+                "code": "ARTEMIS",
                 "iconUrl": "https://example.com/project.png",
                 "organizationId": "019e6a80-6593-7416-8876-dec6b99510ab"
               }

api-collection/Flightdrift/Project/Edit Project.yml

@@ -14,6 +14,7 @@ http:
     data: |-
       {
           "name": "Flightdrift HQ",
+          "code": "ARTEMIS",
           "iconUrl": "https://example.com/project-updated.png"
       }
   auth: inherit
@@ -34,6 +35,7 @@ examples:
         data: |-
           {
               "name": "Flightdrift HQ",
+              "code": "ARTEMIS",
               "iconUrl": "https://example.com/project-updated.png"
           }
     response:
@@ -52,6 +54,7 @@ examples:
               "project": {
                 "id": "019e6a80-e269-7ddc-9e6b-d25eccfd192d",
                 "name": "Flightdrift HQ",
+                "code": "ARTEMIS",
                 "iconUrl": "https://example.com/project-updated.png",
                 "organizationId": "019e6a80-6593-7416-8876-dec6b99510ab"
               }

api-collection/Flightdrift/Project/Get Projects.yml

@@ -36,6 +36,7 @@ examples:
                 {
                   "id": "019e6a80-e269-7ddc-9e6b-d25eccfd192d",
                   "name": "Flightdrift",
+                  "code": "ARTEMIS",
                   "iconUrl": "https://example.com/project.png",
                   "organizationId": "019e6a80-6593-7416-8876-dec6b99510ab"
                 }

api-collection/Flightdrift/environments/Flightdrift-Dev.yml

@@ -0,0 +1 @@
+name: Flightdrift-Dev

api-collection/Flightdrift/opencollection.yml

@@ -27,8 +27,6 @@ request:
       value: 019e6a80-e269-7ddc-9e6b-d25eccfd192d
     - name: item_id
       value: 019b7a23-58a7-72f0-bdea-b39d8ab32191
-    - name: auth_token
-      value: eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJqYW1pdXMxOSIsImlhdCI6MTc3OTkwMjgxMiwiZXhwIjoxODY2MzAyODEyfQ.Y0Rca6ESQvV16n_VJxP4rzxVERvRaSzonuOFTfyD0Ytz1H4cMEnQ-crukQ0i0l_Bwf72m_aCUfqSamdABNB6Vg
 bundled: false
 extensions:
   bruno:

db/migration/1. account.sql

@@ -14,6 +14,7 @@ CREATE TABLE account
     updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
 );
 
+ALTER TABLE account OWNER TO flightdrift;
 
 CREATE TABLE blacklisted_auth_token
 (
@@ -23,3 +24,5 @@ CREATE TABLE blacklisted_auth_token
     created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
     updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
 );
+
+ALTER TABLE blacklisted_auth_token OWNER TO flightdrift;

db/migration/2. organization.sql

@@ -13,6 +13,8 @@ CREATE TABLE organization
     updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
 );
 
+ALTER TABLE organization OWNER TO flightdrift;
+
 CREATE TABLE account_organization_mapping
 (
     id              UUID PRIMARY KEY DEFAULT uuidv7(),
@@ -23,3 +25,5 @@ CREATE TABLE account_organization_mapping
     created_at      TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
     updated_at      TIMESTAMP DEFAULT CURRENT_TIMESTAMP
 );
+
+ALTER TABLE account_organization_mapping OWNER TO flightdrift;

db/migration/3. project.sql

@@ -6,11 +6,14 @@ CREATE TABLE project
 (
     id              UUID PRIMARY KEY DEFAULT uuidv7(),
     name            VARCHAR(50)  NOT NULL,
+    code            VARCHAR(10)  NOT NULL,
     icon_url        VARCHAR(1024),
     organization_id UUID REFERENCES organization (id) NOT NULL,
     version         BIGINT    DEFAULT 0,
     created_at      TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
     updated_at      TIMESTAMP DEFAULT CURRENT_TIMESTAMP
 );
 
+ALTER TABLE project OWNER TO flightdrift;
+
 CREATE INDEX idx_project_organization_id ON project (organization_id);

db/migration/4. item.sql

@@ -18,4 +18,6 @@ CREATE TABLE item
     )
 );
 
+ALTER TABLE item OWNER TO flightdrift;
+
 CREATE INDEX idx_item_project_id ON item (project_id);

db/migration/5. flag.sql

@@ -11,3 +11,5 @@ CREATE TABLE flag
     created_at TIMESTAMP        DEFAULT CURRENT_TIMESTAMP,
     updated_at TIMESTAMP        DEFAULT CURRENT_TIMESTAMP
 );
+
+ALTER TABLE flag OWNER TO flightdrift;

db/migration/6. setting.sql

@@ -11,3 +11,5 @@ CREATE TABLE setting
     created_at TIMESTAMP        DEFAULT CURRENT_TIMESTAMP,
     updated_at TIMESTAMP        DEFAULT CURRENT_TIMESTAMP
 );
+
+ALTER TABLE setting OWNER TO flightdrift;

flightdrift-backend/AGENTS.md

@@ -2,12 +2,11 @@ This is a Java 25 Spring Boot 4 project for a kanban-inspired project management
 
 ## Rules for Development
 1. Use Java 25 LTS features.
-2. Do not try to compile and test unless I ask you to.
-3. Use the `dto.com.flightdrift.flightdrift.ApiResponse` class for API responses.
-4. Add new lines between each instance variables of a class.
-5. Use Lombok and Jakarta persistence annotations where applicable.
-6. Use Lombok's `@Builder` when creating entites.
-7. DB related sql files can be found under `db/migration`
-
-## Tools
-1. Check if `rg` is available, if so use it, otherwise use `grep`.
+2. Compile to check for errors without running tests.
+3. Do not run tests for now.
+4. Use the `dto.com.flightdrift.flightdrift.ApiResponse` class for API responses.
+5. Update the OpenCollection files at `api-collection/Flightdrift` when adding/updating endpoints.
+6. Add new lines between each instance variable of a class.
+7. Use Lombok and Jakarta persistence annotations where applicable.
+8. Use Lombok's `@Builder` when creating entities.
+9. DB related SQL files can be found under `db/migration`

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/config/SecurityConfig.java

@@ -14,6 +14,8 @@
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+import org.springframework.web.servlet.config.annotation.CorsRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
 
 /*
  * Author: Jamius Siam
@@ -55,4 +57,14 @@ public PasswordEncoder passwordEncoder() {
     public AuthenticationManager authenticationManager(AuthenticationConfiguration authConfig) throws Exception {
         return authConfig.getAuthenticationManager();
     }
+
+    @Bean
+    public WebMvcConfigurer corsConfigurer() {
+        return new WebMvcConfigurer() {
+            @Override
+            public void addCorsMappings(CorsRegistry registry) {
+                registry.addMapping("/**").allowedOrigins("*");
+            }
+        };
+    }
 }

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/controller/AuthController.java

@@ -15,6 +15,7 @@
 import com.flightdrift.flightdrift.dto.auth.InvitationTokenResponse;
 import com.flightdrift.flightdrift.dto.auth.SignupResponse;
 import com.flightdrift.flightdrift.dto.auth.TokenResponse;
+import com.flightdrift.flightdrift.dto.auth.UserInfoResponse;
 import io.swagger.v3.oas.annotations.Hidden;
 import io.swagger.v3.oas.annotations.Operation;
 import io.swagger.v3.oas.annotations.security.SecurityRequirement;
@@ -91,11 +92,22 @@ public ResponseEntity<ApiResponse<?>> signin(@Valid @RequestBody SigninRequest s
 
         UserDetails userDetails = userDetailsService.loadUserByUsername(signinRequest.username());
         String token = jwtUtil.generateToken(userDetails);
+        Account account = accountRepository
+                .findByUsername(userDetails.getUsername())
+                .orElseThrow(() -> new IllegalStateException("Authenticated account not found"));
 
         return ResponseEntity.ok(new ApiResponse<>(
                 true,
                 "Signed in successfully",
-                new TokenResponse(token)
+                new TokenResponse(
+                        token,
+                        new UserInfoResponse(
+                                account.getId(),
+                                account.getName(),
+                                account.getEmail(),
+                                account.getUsername()
+                        )
+                )
         ));
     }
 

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/dto/auth/TokenResponse.java

@@ -4,5 +4,8 @@
  * Author: Jamius Siam
  * Since: 06/05/2026
  */
-public record TokenResponse(String token) {
+public record TokenResponse(
+        String token,
+        UserInfoResponse userInfo
+) {
 }

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/dto/auth/UserInfoResponse.java

@@ -0,0 +1,15 @@
+package com.flightdrift.flightdrift.dto.auth;
+
+import java.util.UUID;
+
+/*
+ * Author: Jamius Siam
+ * Since: 29/05/2026
+ */
+public record UserInfoResponse(
+        UUID id,
+        String name,
+        String email,
+        String username
+) {
+}

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/dto/project/CreateProjectRequest.java

@@ -12,6 +12,10 @@ public record CreateProjectRequest(
         @Size(max = 50, message = "Name must not exceed 50 characters")
         String name,
 
+        @NotBlank(message = "Code is required")
+        @Size(max = 10, message = "Code must not exceed 10 characters")
+        String code,
+
         @Size(max = 1024, message = "Icon URL must not exceed 1024 characters")
         String iconUrl
 ) {

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/dto/project/EditProjectRequest.java

@@ -12,6 +12,10 @@ public record EditProjectRequest(
         @Size(max = 50, message = "Name must not exceed 50 characters")
         String name,
 
+        @NotBlank(message = "Code is required")
+        @Size(max = 10, message = "Code must not exceed 10 characters")
+        String code,
+
         @Size(max = 1024, message = "Icon URL must not exceed 1024 characters")
         String iconUrl
 ) {

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/dto/project/ProjectResponse.java

@@ -11,13 +11,15 @@
 public record ProjectResponse(
         UUID id,
         String name,
+        String code,
         String iconUrl,
         UUID organizationId
 ) {
     public static ProjectResponse fromEntity(Project project) {
         return new ProjectResponse(
                 project.getId(),
                 project.getName(),
+                project.getCode(),
                 project.getIconUrl(),
                 project.getOrganization().getId()
         );

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/entity/Project.java

@@ -36,6 +36,9 @@ public class Project extends Auditable {
     @Column(nullable = false, length = 50)
     private String name;
 
+    @Column(nullable = false, length = 10)
+    private String code;
+
     @Column(name = "icon_url", length = 1024)
     private String iconUrl;
 

flightdrift-backend/src/main/java/com/flightdrift/flightdrift/exception/GlobalExceptionHandler.java

@@ -0,0 +1,37 @@
+package com.flightdrift.flightdrift.exception;
+
+import com.flightdrift.flightdrift.dto.ApiResponse;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+import org.springframework.web.bind.annotation.RestControllerAdvice;
+import org.springframework.web.server.ResponseStatusException;
+
+import static org.springframework.http.HttpStatus.INTERNAL_SERVER_ERROR;
+
+/*
+ * Author: Jamius Siam
+ * Since: 30/05/2026
+ */
+@Slf4j
+@RestControllerAdvice
+public class GlobalExceptionHandler {
+
+    @ExceptionHandler(ResponseStatusException.class)
+    public ResponseEntity<ApiResponse<?>> handleResponseStatusException(ResponseStatusException exception) {
+        String message = exception.getReason() == null ? exception.getMessage() : exception.getReason();
+
+        return ResponseEntity
+                .status(exception.getStatusCode())
+                .body(new ApiResponse<>(false, message, null));
+    }
+
+    @ExceptionHandler(Exception.class)
+    public ResponseEntity<ApiResponse<?>> handleException(Exception exception) {
+        log.error("Unhandled exception", exception);
+
+        return ResponseEntity
+                .status(INTERNAL_SERVER_ERROR)
+                .body(new ApiResponse<>(false, "Internal server error", null));
+    }
+}