Returns roles on login

steleks-proxy/src/main/java/ba/steles/security/SecurityConfig.java

@@ -33,6 +33,7 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
         http.csrf().disable().authorizeRequests()
                 .antMatchers(HttpMethod.OPTIONS).permitAll()
                 .antMatchers("/users/**", "/users", "/").permitAll()
+                .antMatchers("/users/users", "/users/users/**").hasRole("ADMIN")
                 .anyRequest().authenticated()
                 .and()
                 .addFilterBefore(new AuthenticationFilter(restTemplateBuilder.build(), discoveryClient), UsernamePasswordAuthenticationFilter.class);

users/src/main/java/ba/steleks/controller/AuthenticationController.java

@@ -3,6 +3,7 @@ package ba.steleks.controller;
 import ba.steleks.error.exception.CustomHttpStatusException;
 import ba.steleks.model.AuthRequest;
 import ba.steleks.model.User;
+import ba.steleks.model.UserRole;
 import ba.steleks.repository.UsersJpaRepository;
 import ba.steleks.security.SessionIdentifierGenerator;
 import ba.steleks.security.UserRoleFactory;
@@ -51,9 +52,10 @@ public class AuthenticationController {
         if (passwordEncoder.matches(body.getPassword(), user.getPasswordHash())) {
             String token = new SessionIdentifierGenerator().nextSessionId();
             tokenStore.saveToken(user.getId(), token);
-            Map<String, String> response = new HashMap<>();
+            Map<String, Object> response = new HashMap<>();
             response.put("token", token);
             response.put("userId", String.valueOf(user.getId()));
+            response.put("roles", UserRoleFactory.toStringSet(user.getUserRoles()));
             return ResponseEntity
                     .ok()
                     .body(response);