A RESTful API for managing lost and found items, built with Spring Boot and PostgreSQL.
- User authentication with JWT
- Create, read, update, and delete lost items
- Create, read, update, and delete found items
- Search functionality for lost and found items
- Admin features for managing users and items
- System reports and statistics
- Java 21
- Spring Boot 3.4.5
- Spring Security with JWT Authentication
- Spring Data JPA
- PostgreSQL
- Maven
This project uses a non-conventional but more intuitive directory structure that places all source code directly within the src directory, rather than the standard Maven structure with src/main/java and nested packages.
Project Root/
├── resources/ # Application properties and static resources
│ └── application.properties # Main configuration file
├── src/
│ ├── config/ # Configuration classes (Security, JWT)
│ ├── controllers/ # REST controllers
│ │ ├── HomeController.java # Base API controller
│ │ └── v1/ # API v1 versioned controllers
│ │ ├── AuthController.java
│ │ ├── LostItemController.java
│ │ ├── FoundItemController.java
│ │ ├── SearchController.java
│ │ ├── ItemController.java
│ │ └── AdminController.java
│ ├── entities/ # JPA entities
│ │ ├── User.java
│ │ ├── LostItem.java
│ │ └── FoundItem.java
│ ├── exceptions/ # Custom exceptions and error handlers
│ │ ├── ResourceNotFoundException.java
│ │ └── GlobalExceptionHandler.java
│ ├── payloads/ # Request/Response DTOs
│ │ ├── request/
│ │ │ ├── LoginRequest.java
│ │ │ ├── SignupRequest.java
│ │ │ ├── LostItemRequest.java
│ │ │ └── FoundItemRequest.java
│ │ └── response/
│ │ └── ApiResponse.java
│ ├── repositories/ # JPA repositories
│ │ ├── UserRepository.java
│ │ ├── LostItemRepository.java
│ │ └── FoundItemRepository.java
│ ├── services/ # Business logic services
│ │ ├── AuthService.java
│ │ ├── LostItemService.java
│ │ ├── FoundItemService.java
│ │ └── AdminService.java
│ ├── utils/ # Utility classes
│ │ ├── JwtUtils.java
│ │ ├── UserDetailsImpl.java
│ │ └── UserDetailsServiceImpl.java
│ └── main.java # Application entry point
├── pom.xml # Maven configuration
└── README.md # Project documentation
-
No Package Hierarchy: Instead of having Java packages under
src/main/java, all code is directly undersrcdirectory with clear subdirectories -
Resources Folder: Placed at the root level instead of
src/main/resources -
Tests Directory: Located in
src/testsrather than the standardsrc/test/java -
Main Application Class: Named
main.javarather than a traditional class name, containing a non-publicMainclass to avoid filename restrictions -
Maven Configuration: Custom configuration in
pom.xmlto support this structure:
<build>
<sourceDirectory>${project.basedir}/src</sourceDirectory>
<testSourceDirectory>${project.basedir}/src/tests</testSourceDirectory>
<resources>
<resource>
<directory>${project.basedir}/resources</directory>
</resource>
</resources>
<!-- Other build configuration -->
</build>- Java 21
- Maven
- PostgreSQL database
- Create a PostgreSQL database named
lost_n_found:
CREATE DATABASE lost_n_found;- Update the
resources/application.propertieswith your database credentials:
spring.datasource.url=jdbc:postgresql://localhost:5432/lost_n_found
spring.datasource.username=postgres
spring.datasource.password=your_password- The application will automatically create all necessary tables on startup using Hibernate's schema generation.
- Clone the repository
- Navigate to the project directory
- Build the project:
mvn clean package
- Run the application:
java -jar target/lost_n_found-0.0.1-SNAPSHOT.jar
The API is organized around REST principles. All endpoints are versioned with /api/v1/ prefix and follow a consistent response format.
Success Response:
{
"status": 200, // HTTP status code
"message": "Operation successful", // Human-readable message
"data": { ... } // Response data (object or array)
}Error Response:
{
"status": 400, // HTTP status code
"error": "Validation failed" // Error message
}POST /api/v1/auth/signup
Request body:
{
"email": "user@example.com",
"password": "password123",
"firstName": "John",
"lastName": "Doe",
"phoneNumber": "1234567890",
"address": "123 Street, City"
}Response:
{
"status": 201,
"message": "User registered successfully",
"data": {
"id": 1,
"email": "user@example.com",
"firstName": "John",
"lastName": "Doe",
"phoneNumber": "1234567890",
"address": "123 Street, City",
"isAdmin": false,
"isBanned": false,
"createdAt": "2025-05-12T12:00:00",
"updatedAt": "2025-05-12T12:00:00"
}
}POST /api/v1/auth/signin
Request body:
{
"email": "user@example.com",
"password": "password123"
}Response:
{
"status": 200,
"message": "Authentication successful",
"data": {
"token": "eyJhbGciOiJIUzI1NiJ9...",
"user": {
"id": 1,
"email": "user@example.com",
"firstName": "John",
"lastName": "Doe",
// Other user properties
}
}
}POST /api/v1/lost-items
Headers:
Authorization: Bearer {jwt_token}
Request body:
{
"title": "Lost Smartphone",
"description": "iPhone 14 Pro, Space Gray, lost at the library",
"category": "Electronics",
"location": "University Library",
"imageUrl": "https://example.com/iphone.jpg",
"lostDate": "2025-05-10T15:30:00"
}Response:
{
"status": 201,
"message": "Lost item created successfully",
"data": {
"id": 1,
"userId": 1,
"title": "Lost Smartphone",
"description": "iPhone 14 Pro, Space Gray, lost at the library",
"category": "Electronics",
"location": "University Library",
"imageUrl": "https://example.com/iphone.jpg",
"lostDate": "2025-05-10T15:30:00",
"status": "pending",
"createdAt": "2025-05-12T12:00:00",
"updatedAt": "2025-05-12T12:00:00"
}
}GET /api/v1/lost-items/{id}
Headers:
Authorization: Bearer {jwt_token}
Response: Same as the create response.
PATCH /api/v1/lost-items/{id}
Headers:
Authorization: Bearer {jwt_token}
Request body (partial update):
{
"description": "Updated description with more details"
}Response: Updated lost item object.
DELETE /api/v1/lost-items/{id}
Headers:
Authorization: Bearer {jwt_token}
Response:
{
"status": 200,
"message": "Lost item deleted successfully",
"data": {
"message": "Lost item deleted successfully"
}
}Found items have similar endpoints to lost items, with the addition of a storageLocation field:
POST /api/v1/found-items
Request body:
{
"title": "Found Laptop",
"description": "Dell XPS 13, found at the cafeteria",
"category": "Electronics",
"location": "University Cafeteria",
"imageUrl": "https://example.com/laptop.jpg",
"foundDate": "2025-05-11T14:20:00",
"storageLocation": "Lost and Found Office"
}Other endpoints follow the same pattern as lost items:
GET /api/v1/found-items/{id}
PATCH /api/v1/found-items/{id}
DELETE /api/v1/found-items/{id}
Search for lost or found items based on various criteria:
GET /api/v1/search
Query parameters:
type: Required, either "lost" or "found"keyword: Optional, search in title and descriptionlocation: Optional, filter by locationstart_date: Optional, filter by date range start (ISO format)end_date: Optional, filter by date range end (ISO format)
Example:
GET /api/v1/search?type=lost&keyword=phone&location=library&start_date=2025-05-01&end_date=2025-05-12
Ban or unban a user:
PATCH /api/v1/admin/users/{id}
Headers:
Authorization: Bearer {admin_jwt_token}
Request body:
{
"is_banned": true
}Approve or reject a lost or found item:
PATCH /api/v1/admin/items/{id}
Headers:
Authorization: Bearer {admin_jwt_token}
Request body:
{
"status": "approved", // or "rejected"
"type": "lost" // or "found"
}Get system statistics:
GET /api/v1/admin/reports
Response:
{
"status": 200,
"message": "System reports retrieved successfully",
"data": {
"total_users": 10,
"active_users": 9,
"banned_users": 1,
"total_lost_items": 15,
"claimed_lost_items": 5,
"total_found_items": 12,
"claimed_found_items": 4
}
}- All endpoints except
/api/v1/auth/*require authentication via JWT token - Admin endpoints require the ADMIN role
- Passwords are encrypted using BCrypt before storing in the database
- JWT tokens expire after 24 hours
- Token contains user ID and role information for authorization
- CORS is configured to restrict access to the API
This project is open-source and available under the MIT License.