From e9723c18ad20ae8be03bf67c2d1cb4711c9d9b15 Mon Sep 17 00:00:00 2001
From: Milan Arezina <arezinamilann@gmail.com>
Date: Thu, 2 Oct 2025 01:25:58 +0200
Subject: [PATCH 1/4] feat: add all service functions for all backend
 controllers

---
 MiniKmsClient/src/app/api.service.ts | 70 ++++++++++++++++++++++++++++
 1 file changed, 70 insertions(+)

diff --git a/MiniKmsClient/src/app/api.service.ts b/MiniKmsClient/src/app/api.service.ts
index 409f9f5..fe2df1f 100644
--- a/MiniKmsClient/src/app/api.service.ts
+++ b/MiniKmsClient/src/app/api.service.ts
@@ -22,6 +22,25 @@ export interface KeyMetadata {
   rotatedAt?: Date;
 }
 
+export interface CryptoDTO {
+  message: string;
+  keyId: string;
+  version: number;
+  hmacBase64: string | null;
+}
+
+export interface SignRequestDTO{
+  message: string;
+  version: number;
+}
+
+export interface VerifyRequestDTO{
+  message: string;
+  signature: string;
+}
+
+export type EncryptType = "SYMMETRIC" | "ASYMMETRIC";
+
 @Injectable({
   providedIn: 'root'
 })
@@ -49,4 +68,55 @@ export class ApiService {
   deleteKey(id: string): Observable<void> {
     return this.http.delete<void>(`${this.baseUrl}/keys/${id}`);
   }
+
+  encrypt(cryptoDTO: CryptoDTO, encryptType: EncryptType): Observable<String>{
+    return(
+    encryptType == 'SYMMETRIC' ?
+      this.http.post<String>(`${this.baseUrl}/crypto/encrypt/symmetric`, cryptoDTO)
+      :
+      this.http.post<String>(`${this.baseUrl}/crypto/encrypt/asymmetric`, cryptoDTO)
+    )
+  }
+
+  decrypt(cryptoDTO: CryptoDTO, encryptType: EncryptType): Observable<String>{
+    return(
+    encryptType == 'SYMMETRIC' ?
+      this.http.post<String>(`${this.baseUrl}/crypto/decrypt/symmetric`, cryptoDTO)
+      :
+      this.http.post<String>(`${this.baseUrl}/crypto/decrypt/asymmetric`, cryptoDTO)
+    )
+  }
+
+  computeHmac(cryptoDTO: CryptoDTO) : Observable<String>{
+    return this.http.post<String>(`${this.baseUrl}/crypto/compute/hmac`, cryptoDTO)
+  }
+
+  verifyHmac(cryptoDTO: CryptoDTO) : Observable<String>{
+    return this.http.post<String>(`${this.baseUrl}/crypto/verify/hmac`, cryptoDTO)
+  }
+
+  sign(keyId: number, signRequestDTO: SignRequestDTO): Observable<string> {
+  return this.http.post<string>(
+    `${this.baseUrl}/signature/sign`,
+    signRequestDTO,
+    { params: { keyId: keyId.toString() } }
+  );
+}
+
+  verify(
+    keyId: number,
+    verifyRequestDTO: VerifyRequestDTO,
+    version: number | null
+  ): Observable<string> {
+    let params: any = { keyId: keyId.toString() };
+    if (version !== null) {
+      params.version = version.toString();
+    }
+
+    return this.http.post<string>(
+      `${this.baseUrl}/signature/verify`,
+      verifyRequestDTO,
+      { params }
+    );
+  }
 }

From 580350e8bf964d0a3a8e3b17082ac5ddb830de3c Mon Sep 17 00:00:00 2001
From: Milan Arezina <arezinamilann@gmail.com>
Date: Thu, 2 Oct 2025 03:26:30 +0200
Subject: [PATCH 2/4] feat: add signatures page

---
 MiniKmsClient/angular.json                    |  3 +
 MiniKmsClient/src/app/api.service.ts          | 82 ++++++++++---------
 MiniKmsClient/src/app/app-routing.module.ts   | 11 ++-
 MiniKmsClient/src/app/app.component.html      |  5 ++
 MiniKmsClient/src/app/app.module.ts           |  6 +-
 .../src/app/auth/auth.interceptor.ts          | 15 +++-
 .../crypto-ops/crypto-ops.component.html      | 55 +++++++++++++
 .../crypto-ops/crypto-ops.component.scss      | 51 ++++++++++++
 .../crypto-ops.component.spec.ts}             | 12 +--
 .../crypto/crypto-ops/crypto-ops.component.ts | 61 ++++++++++++++
 .../src/app/crypto/crypto.component.html      |  1 -
 .../src/app/crypto/crypto.component.scss      |  0
 .../src/app/crypto/crypto.component.ts        | 10 ---
 .../signature-ops.component.html              | 44 ++++++++++
 .../signature-ops.component.scss              | 53 ++++++++++++
 .../signature-ops.component.spec.ts           | 23 ++++++
 .../signature-ops/signature-ops.component.ts  | 52 ++++++++++++
 17 files changed, 423 insertions(+), 61 deletions(-)
 create mode 100644 MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html
 create mode 100644 MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.scss
 rename MiniKmsClient/src/app/crypto/{crypto.component.spec.ts => crypto-ops/crypto-ops.component.spec.ts} (53%)
 create mode 100644 MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.ts
 delete mode 100644 MiniKmsClient/src/app/crypto/crypto.component.html
 delete mode 100644 MiniKmsClient/src/app/crypto/crypto.component.scss
 delete mode 100644 MiniKmsClient/src/app/crypto/crypto.component.ts
 create mode 100644 MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html
 create mode 100644 MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.scss
 create mode 100644 MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.spec.ts
 create mode 100644 MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts

diff --git a/MiniKmsClient/angular.json b/MiniKmsClient/angular.json
index c9444ff..556a3aa 100644
--- a/MiniKmsClient/angular.json
+++ b/MiniKmsClient/angular.json
@@ -111,5 +111,8 @@
         }
       }
     }
+  },
+  "cli": {
+    "analytics": false
   }
 }
diff --git a/MiniKmsClient/src/app/api.service.ts b/MiniKmsClient/src/app/api.service.ts
index fe2df1f..7c6f69e 100644
--- a/MiniKmsClient/src/app/api.service.ts
+++ b/MiniKmsClient/src/app/api.service.ts
@@ -1,6 +1,6 @@
 import { Injectable } from '@angular/core';
 import { HttpClient, HttpHeaders } from '@angular/common/http';
-import { Observable } from 'rxjs';
+import { map, Observable } from 'rxjs';
 import { environment } from '../environments/environment';
 
 export interface LoginRequest {
@@ -25,13 +25,13 @@ export interface KeyMetadata {
 export interface CryptoDTO {
   message: string;
   keyId: string;
-  version: number;
+  version: number | null;
   hmacBase64: string | null;
 }
 
 export interface SignRequestDTO{
   message: string;
-  version: number;
+  version: number | null;
 }
 
 export interface VerifyRequestDTO{
@@ -69,54 +69,60 @@ export class ApiService {
     return this.http.delete<void>(`${this.baseUrl}/keys/${id}`);
   }
 
-  encrypt(cryptoDTO: CryptoDTO, encryptType: EncryptType): Observable<String>{
-    return(
-    encryptType == 'SYMMETRIC' ?
-      this.http.post<String>(`${this.baseUrl}/crypto/encrypt/symmetric`, cryptoDTO)
-      :
-      this.http.post<String>(`${this.baseUrl}/crypto/encrypt/asymmetric`, cryptoDTO)
-    )
+  encrypt(cryptoDTO: CryptoDTO, encryptType: EncryptType): Observable<string> {
+    const url = encryptType === 'SYMMETRIC' 
+      ? `${this.baseUrl}/crypto/encrypt/symmetric`
+      : `${this.baseUrl}/crypto/encrypt/asymmetric`;
+
+    return this.http.post(url, cryptoDTO, { responseType: 'text' });
   }
 
-  decrypt(cryptoDTO: CryptoDTO, encryptType: EncryptType): Observable<String>{
-    return(
-    encryptType == 'SYMMETRIC' ?
-      this.http.post<String>(`${this.baseUrl}/crypto/decrypt/symmetric`, cryptoDTO)
-      :
-      this.http.post<String>(`${this.baseUrl}/crypto/decrypt/asymmetric`, cryptoDTO)
-    )
+  decrypt(cryptoDTO: CryptoDTO, encryptType: EncryptType): Observable<string> {
+    const url = encryptType === 'SYMMETRIC' 
+      ? `${this.baseUrl}/crypto/decrypt/symmetric`
+      : `${this.baseUrl}/crypto/decrypt/asymmetric`;
+
+    return this.http.post(url, cryptoDTO, { responseType: 'text' });
   }
 
-  computeHmac(cryptoDTO: CryptoDTO) : Observable<String>{
-    return this.http.post<String>(`${this.baseUrl}/crypto/compute/hmac`, cryptoDTO)
+  computeHmac(cryptoDTO: CryptoDTO): Observable<string> {
+    return this.http.post(`${this.baseUrl}/crypto/compute/hmac`, cryptoDTO, { responseType: 'text' });
   }
 
-  verifyHmac(cryptoDTO: CryptoDTO) : Observable<String>{
-    return this.http.post<String>(`${this.baseUrl}/crypto/verify/hmac`, cryptoDTO)
+  verifyHmac(cryptoDTO: CryptoDTO): Observable<boolean> {
+    return this.http.post(`${this.baseUrl}/crypto/verify/hmac`, cryptoDTO, { responseType: 'text' })
+      .pipe(
+        map(res => res === 'true') // convert "true"/"false" string into boolean
+      );
   }
 
-  sign(keyId: number, signRequestDTO: SignRequestDTO): Observable<string> {
-  return this.http.post<string>(
-    `${this.baseUrl}/signature/sign`,
-    signRequestDTO,
-    { params: { keyId: keyId.toString() } }
-  );
-}
 
-  verify(
-    keyId: number,
-    verifyRequestDTO: VerifyRequestDTO,
-    version: number | null
-  ): Observable<string> {
-    let params: any = { keyId: keyId.toString() };
+  sign(keyId: string, signRequestDTO: SignRequestDTO): Observable<string> {
+    return this.http.post(
+      `${this.baseUrl}/signatures/sign`,
+      signRequestDTO,
+      {
+        params: { keyId },
+        responseType: 'text' // <-- treat response as plain text
+      }
+    );
+  }
+
+  verify(keyId: string, verifyRequestDTO: VerifyRequestDTO, version: number | null): Observable<boolean> {
+    const params: any = { keyId };
     if (version !== null) {
       params.version = version.toString();
     }
 
-    return this.http.post<string>(
-      `${this.baseUrl}/signature/verify`,
+    return this.http.post(
+      `${this.baseUrl}/signatures/verify`,
       verifyRequestDTO,
-      { params }
+      {
+        params,
+        responseType: 'text' // <-- treat response as plain text
+      }
+    ).pipe(
+      map(res => res === 'true') // convert "true"/"false" string into boolean
     );
   }
-}
+}
\ No newline at end of file
diff --git a/MiniKmsClient/src/app/app-routing.module.ts b/MiniKmsClient/src/app/app-routing.module.ts
index bafe6d1..cf3c7f4 100644
--- a/MiniKmsClient/src/app/app-routing.module.ts
+++ b/MiniKmsClient/src/app/app-routing.module.ts
@@ -3,7 +3,8 @@ import { RouterModule, Routes } from '@angular/router';
 import { authGuard } from './auth/auth.guard';
 import { ManageKeysComponent } from './manage-keys/manage-keys.component';
 import { LoginComponent } from './login/login.component';
-import { CryptoComponent } from './crypto/crypto.component';
+import { CryptoOpsComponent } from './crypto/crypto-ops/crypto-ops.component';
+import { SignatureOpsComponent } from './crypto/signature-ops/signature-ops.component';
 
 const routes: Routes = [
   { path: '', redirectTo: '/login', pathMatch: 'full' },
@@ -16,7 +17,13 @@ const routes: Routes = [
   },
   { 
     path: 'crypto', 
-    component: CryptoComponent,
+    component: CryptoOpsComponent,
+    canActivate: [authGuard],
+    data: { roles: ['manager', 'user'] }
+  },
+    { 
+    path: 'sertificates', 
+    component: SignatureOpsComponent,
     canActivate: [authGuard],
     data: { roles: ['manager', 'user'] }
   },
diff --git a/MiniKmsClient/src/app/app.component.html b/MiniKmsClient/src/app/app.component.html
index 1e7dd38..2841d95 100644
--- a/MiniKmsClient/src/app/app.component.html
+++ b/MiniKmsClient/src/app/app.component.html
@@ -16,6 +16,11 @@
       Crypto
     </a>
 
+    <!-- Both manager and user can see sertificates -->
+    <a mat-button routerLink="/sertificates">
+      Sertificates
+    </a>
+
     <!-- Logout button for authenticated users -->
     <button mat-button (click)="logout()">
       <mat-icon>logout</mat-icon>
diff --git a/MiniKmsClient/src/app/app.module.ts b/MiniKmsClient/src/app/app.module.ts
index 0c492fb..aaecf51 100644
--- a/MiniKmsClient/src/app/app.module.ts
+++ b/MiniKmsClient/src/app/app.module.ts
@@ -8,16 +8,18 @@ import { AppRoutingModule } from './app-routing.module';
 import { AppComponent } from './app.component';
 import { LoginComponent } from './login/login.component';
 import { ManageKeysComponent } from './manage-keys/manage-keys.component';
-import { CryptoComponent } from './crypto/crypto.component';
 import { MaterialModule } from './common/material/material.module';
 import { AuthInterceptorService } from './auth/auth.interceptor';
+import { CryptoOpsComponent } from './crypto/crypto-ops/crypto-ops.component';
+import { SignatureOpsComponent } from './crypto/signature-ops/signature-ops.component';
 
 @NgModule({
   declarations: [
     AppComponent,
     LoginComponent,
     ManageKeysComponent,
-    CryptoComponent
+    CryptoOpsComponent,
+    SignatureOpsComponent,
   ],
   imports: [
     BrowserModule,
diff --git a/MiniKmsClient/src/app/auth/auth.interceptor.ts b/MiniKmsClient/src/app/auth/auth.interceptor.ts
index 9167c3d..73ce9c0 100644
--- a/MiniKmsClient/src/app/auth/auth.interceptor.ts
+++ b/MiniKmsClient/src/app/auth/auth.interceptor.ts
@@ -16,11 +16,22 @@ export const authInterceptor: HttpInterceptorFn = (req, next) => {
     });
   }
 
+    console.log('Outgoing request:', {
+    url: authReq.url,
+    method: authReq.method,
+    headers: authReq.headers.keys().reduce((acc, key) => {
+      acc[key] = authReq.headers.get(key);
+      return acc;
+    }, {} as any),
+    body: authReq.body,
+    params: authReq.params.toString()
+  });
+
   return next(authReq).pipe(
     catchError((error: HttpErrorResponse) => {
       if (error.status === 401 || error.status === 403) {
-        localStorage.removeItem('token');
-        router.navigate(['/login']);
+        // localStorage.removeItem('token');
+        // router.navigate(['/login']);
       }
       return throwError(() => error);
     })
diff --git a/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html
new file mode 100644
index 0000000..f8bc342
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html
@@ -0,0 +1,55 @@
+<div class="crypto-form">
+
+  <!-- Message input -->
+  <mat-form-field appearance="outline" class="full-width">
+    <mat-label>Message</mat-label>
+    <textarea matInput rows="4" [(ngModel)]="message"></textarea>
+  </mat-form-field>
+
+  <!-- Key ID + Version -->
+  <div class="row">
+    <mat-form-field appearance="outline" class="flex-2">
+      <mat-label>Key ID (UUID)</mat-label>
+      <input matInput [(ngModel)]="keyId">
+    </mat-form-field>
+
+    <mat-form-field appearance="outline" class="flex-1">
+      <mat-label>Version</mat-label>
+      <input matInput type="number" [(ngModel)]="version">
+    </mat-form-field>
+  </div>
+
+  <!-- Encrypt Type -->
+  <mat-form-field appearance="outline" class="full-width">
+    <mat-label>Encrypt Type</mat-label>
+    <mat-select [(ngModel)]="encryptType">
+      <mat-option value="SYMMETRIC">Symmetric</mat-option>
+      <mat-option value="ASYMMETRIC">Asymmetric</mat-option>
+    </mat-select>
+  </mat-form-field>
+
+  <!-- HMAC Base64 -->
+  <mat-form-field appearance="outline" class="full-width">
+    <mat-label>HMAC (Base64)</mat-label>
+    <textarea matInput rows="2" [(ngModel)]="hmacBase64"></textarea>
+  </mat-form-field>
+
+  <!-- Buttons -->
+  <div class="row buttons">
+    <button mat-raised-button color="primary" (click)="doEncrypt()">Encrypt</button>
+    <button mat-raised-button color="accent" (click)="doDecrypt()">Decrypt</button>
+    <button mat-raised-button color="primary" (click)="computeHmac()">Compute HMAC</button>
+    <button mat-raised-button color="accent" (click)="verifyHmac()">Verify HMAC</button>
+  </div>
+
+  <!-- Result -->
+  <div class="result-box" *ngIf="result">
+    <mat-card>
+      <mat-card-title>Result</mat-card-title>
+      <mat-card-content>{{ result }}</mat-card-content>
+    </mat-card>
+  </div>
+
+  <!-- Loading -->
+  <mat-progress-spinner *ngIf="isLoading" mode="indeterminate"></mat-progress-spinner>
+</div>
diff --git a/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.scss b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.scss
new file mode 100644
index 0000000..666ba5a
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.scss
@@ -0,0 +1,51 @@
+:host {
+  display: flex;
+  justify-content: center;
+  padding: 30px;
+  background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+  min-height: 100%;
+  box-sizing: border-box;
+}
+
+.crypto-form {
+  width: 70%;
+  max-width: 900px;
+  background: white;
+  padding: 24px;
+  border-radius: 12px;
+  box-shadow: 0 6px 18px rgba(0,0,0,0.2);
+  display: flex;
+  flex-direction: column;
+  gap: 20px;
+}
+
+.row {
+  display: flex;
+  gap: 16px;
+
+  .flex-1 { flex: 1; }
+  .flex-2 { flex: 2; }
+}
+
+.full-width {
+  width: 100%;
+}
+
+.buttons {
+  justify-content: center;
+  flex-wrap: wrap;
+  gap: 16px;
+}
+
+.result-box {
+  margin-top: 20px;
+  width: 100%;
+  display: block;
+}
+
+.result-box mat-card {
+  word-break: break-word;
+  display: flex;
+  flex-direction: column;
+  gap: 20px;
+}
diff --git a/MiniKmsClient/src/app/crypto/crypto.component.spec.ts b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.spec.ts
similarity index 53%
rename from MiniKmsClient/src/app/crypto/crypto.component.spec.ts
rename to MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.spec.ts
index f8a710b..d57041d 100644
--- a/MiniKmsClient/src/app/crypto/crypto.component.spec.ts
+++ b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.spec.ts
@@ -1,18 +1,18 @@
 import { ComponentFixture, TestBed } from '@angular/core/testing';
 
-import { CryptoComponent } from './crypto.component';
+import { CryptoOpsComponent } from './crypto-ops.component';
 
-describe('CryptoComponent', () => {
-  let component: CryptoComponent;
-  let fixture: ComponentFixture<CryptoComponent>;
+describe('CryptoOpsComponent', () => {
+  let component: CryptoOpsComponent;
+  let fixture: ComponentFixture<CryptoOpsComponent>;
 
   beforeEach(async () => {
     await TestBed.configureTestingModule({
-      declarations: [CryptoComponent]
+      declarations: [CryptoOpsComponent]
     })
     .compileComponents();
     
-    fixture = TestBed.createComponent(CryptoComponent);
+    fixture = TestBed.createComponent(CryptoOpsComponent);
     component = fixture.componentInstance;
     fixture.detectChanges();
   });
diff --git a/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.ts b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.ts
new file mode 100644
index 0000000..bed50fd
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.ts
@@ -0,0 +1,61 @@
+import { Component } from '@angular/core';
+import { ApiService, CryptoDTO, EncryptType } from '../../api.service';
+
+@Component({
+  selector: 'app-crypto-ops',
+  templateUrl: './crypto-ops.component.html',
+  styleUrls: ['./crypto-ops.component.scss']
+})
+export class CryptoOpsComponent {
+  message: string = '';
+  keyId: string = '';
+  version: number | null = null;
+  hmacBase64: string | null = null;
+  encryptType: EncryptType = 'SYMMETRIC';
+
+  result: string = '';
+  isLoading = false;
+
+  constructor(private apiService: ApiService) {}
+
+  private buildDTO(): CryptoDTO {
+    return {
+      message: this.message,
+      keyId: this.keyId,
+      version: this.version,
+      hmacBase64: this.hmacBase64
+    };
+  }
+
+  doEncrypt() {
+    this.isLoading = true;
+    this.apiService.encrypt(this.buildDTO(), this.encryptType).subscribe({
+      next: res => { this.result = res; this.isLoading = false; },
+      error: (err) => {this.isLoading = false; console.log(err);}
+    });
+  }
+
+  doDecrypt() {
+    this.isLoading = true;
+    this.apiService.decrypt(this.buildDTO(), this.encryptType).subscribe({
+      next: res => { this.result = res; this.isLoading = false; },
+      error: (err) => {this.isLoading = false; console.log(err);}
+    });
+  }
+
+  computeHmac() {
+    this.isLoading = true;
+    this.apiService.computeHmac(this.buildDTO()).subscribe({
+      next: res => { this.result = res; this.isLoading = false; },
+      error: () => this.isLoading = false
+    });
+  }
+
+  verifyHmac() {
+    this.isLoading = true;
+    this.apiService.verifyHmac(this.buildDTO()).subscribe({
+      next: res => { this.result = res ? "VALID" : "INVALID"; this.isLoading = false; },
+      error: () => this.isLoading = false
+    });
+  }
+}
diff --git a/MiniKmsClient/src/app/crypto/crypto.component.html b/MiniKmsClient/src/app/crypto/crypto.component.html
deleted file mode 100644
index 25ec4ed..0000000
--- a/MiniKmsClient/src/app/crypto/crypto.component.html
+++ /dev/null
@@ -1 +0,0 @@
-<p>crypto works!</p>
diff --git a/MiniKmsClient/src/app/crypto/crypto.component.scss b/MiniKmsClient/src/app/crypto/crypto.component.scss
deleted file mode 100644
index e69de29..0000000
diff --git a/MiniKmsClient/src/app/crypto/crypto.component.ts b/MiniKmsClient/src/app/crypto/crypto.component.ts
deleted file mode 100644
index 026de30..0000000
--- a/MiniKmsClient/src/app/crypto/crypto.component.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-import { Component } from '@angular/core';
-
-@Component({
-  selector: 'app-crypto',
-  templateUrl: './crypto.component.html',
-  styleUrl: './crypto.component.scss'
-})
-export class CryptoComponent {
-
-}
diff --git a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html
new file mode 100644
index 0000000..30065b3
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html
@@ -0,0 +1,44 @@
+<div class="signature-form">
+
+  <!-- Message -->
+  <mat-form-field appearance="outline" class="full-width">
+    <mat-label>Message</mat-label>
+    <textarea matInput rows="4" [(ngModel)]="message"></textarea>
+  </mat-form-field>
+
+  <!-- Key ID + Version -->
+  <div class="row">
+    <mat-form-field appearance="outline" class="flex-2">
+      <mat-label>Key ID (UUID)</mat-label>
+      <input matInput [(ngModel)]="keyId">
+    </mat-form-field>
+
+    <mat-form-field appearance="outline" class="flex-1">
+      <mat-label>Version (optional)</mat-label>
+      <input matInput type="number" [(ngModel)]="version">
+    </mat-form-field>
+  </div>
+
+  <!-- Signature Base64 -->
+  <mat-form-field appearance="outline" class="full-width">
+    <mat-label>Signature (Base64)</mat-label>
+    <textarea matInput rows="3" [(ngModel)]="signatureBase64"></textarea>
+  </mat-form-field>
+
+  <!-- Buttons -->
+  <div class="row buttons">
+    <button mat-raised-button color="primary" (click)="doSign()">Sign</button>
+    <button mat-raised-button color="accent" (click)="doVerify()">Verify</button>
+  </div>
+
+  <!-- Result -->
+  <div class="result-box" *ngIf="result">
+    <mat-card>
+      <mat-card-title>Result</mat-card-title>
+      <mat-card-content>{{ result }}</mat-card-content>
+    </mat-card>
+  </div>
+
+  <!-- Loading -->
+  <mat-progress-spinner *ngIf="isLoading" mode="indeterminate"></mat-progress-spinner>
+</div>
diff --git a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.scss b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.scss
new file mode 100644
index 0000000..ab7a834
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.scss
@@ -0,0 +1,53 @@
+:host {
+  display: flex;
+  justify-content: center;
+  padding: 30px;
+  background: linear-gradient(135deg, #43cea2 0%, #185a9d 100%);
+  min-height: 100%;
+  box-sizing: border-box;
+}
+
+.signature-form {
+  width: 70%;
+  max-width: 900px;
+  background: white;
+  padding: 24px;
+  border-radius: 12px;
+  box-shadow: 0 6px 18px rgba(0,0,0,0.2);
+  display: flex;
+  flex-direction: column;
+  gap: 20px;
+}
+
+.row {
+  display: flex;
+  gap: 16px;
+
+  .flex-1 { flex: 1; }
+  .flex-2 { flex: 2; }
+}
+
+.full-width {
+  width: 100%;
+}
+
+.buttons {
+  justify-content: center;
+  flex-wrap: wrap;
+  gap: 16px;
+}
+
+.result-box {
+  margin-top: 20px;
+  width: 100%;
+  display: block;  /* ensures it’s a block element */
+}
+
+.result-box mat-card {
+  word-break: break-word;  /* allows long Base64 strings to wrap */
+  display: flex;
+  flex-direction: column;
+  gap: 20px;
+}
+
+
diff --git a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.spec.ts b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.spec.ts
new file mode 100644
index 0000000..c2d7adc
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.spec.ts
@@ -0,0 +1,23 @@
+import { ComponentFixture, TestBed } from '@angular/core/testing';
+
+import { SignatureOpsComponent } from './signature-ops.component';
+
+describe('SignatureOpsComponent', () => {
+  let component: SignatureOpsComponent;
+  let fixture: ComponentFixture<SignatureOpsComponent>;
+
+  beforeEach(async () => {
+    await TestBed.configureTestingModule({
+      declarations: [SignatureOpsComponent]
+    })
+    .compileComponents();
+    
+    fixture = TestBed.createComponent(SignatureOpsComponent);
+    component = fixture.componentInstance;
+    fixture.detectChanges();
+  });
+
+  it('should create', () => {
+    expect(component).toBeTruthy();
+  });
+});
diff --git a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts
new file mode 100644
index 0000000..0e31008
--- /dev/null
+++ b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts
@@ -0,0 +1,52 @@
+import { Component } from '@angular/core';
+import { ApiService, SignRequestDTO, VerifyRequestDTO } from '../../api.service';
+
+@Component({
+  selector: 'app-signature-ops',
+  templateUrl: './signature-ops.component.html',
+  styleUrls: ['./signature-ops.component.scss']
+})
+export class SignatureOpsComponent {
+  keyId: string = '';
+  version: number | null = null;
+
+  message: string = '';
+  signatureBase64: string = '';
+
+  result: string = '';
+  isLoading = false;
+
+  constructor(private apiService: ApiService) {}
+
+  doSign() {
+    console.log('Token:', localStorage.getItem('token'));
+    this.isLoading = true;
+    const dto: SignRequestDTO = { message: this.message, version: this.version };
+
+    this.apiService.sign(this.keyId, dto).subscribe({
+      next: res => {
+        console.log("YEEEEY");
+        this.result = res;
+        this.signatureBase64 = res; // auto-fill so user can verify
+        this.isLoading = false;
+      },
+      error: (err) => {this.isLoading = false; console.log("Noooo"); console.log(err);}
+    });
+  }
+
+  doVerify() {
+    this.isLoading = true;
+    const dto: VerifyRequestDTO = {
+      message: this.message,
+      signature: this.signatureBase64
+    };
+
+    this.apiService.verify(this.keyId, dto, this.version).subscribe({
+      next: res => {
+        this.result = res ? 'VALID' : 'INVALID';
+        this.isLoading = false;
+      },
+      error: () => this.isLoading = false
+    });
+  }
+}

From 726c790f6233043c929bf6651267e09e1716686e Mon Sep 17 00:00:00 2001
From: Milan Arezina <arezinamilann@gmail.com>
Date: Thu, 2 Oct 2025 03:57:36 +0200
Subject: [PATCH 3/4] fix: frontend data not being sent correctly

---
 .../src/app/crypto/crypto-ops/crypto-ops.component.html    | 7 -------
 .../app/crypto/signature-ops/signature-ops.component.html  | 6 ------
 .../app/crypto/signature-ops/signature-ops.component.ts    | 1 -
 3 files changed, 14 deletions(-)

diff --git a/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html
index f8bc342..ae9ab31 100644
--- a/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html
+++ b/MiniKmsClient/src/app/crypto/crypto-ops/crypto-ops.component.html
@@ -1,12 +1,10 @@
 <div class="crypto-form">
 
-  <!-- Message input -->
   <mat-form-field appearance="outline" class="full-width">
     <mat-label>Message</mat-label>
     <textarea matInput rows="4" [(ngModel)]="message"></textarea>
   </mat-form-field>
 
-  <!-- Key ID + Version -->
   <div class="row">
     <mat-form-field appearance="outline" class="flex-2">
       <mat-label>Key ID (UUID)</mat-label>
@@ -19,7 +17,6 @@
     </mat-form-field>
   </div>
 
-  <!-- Encrypt Type -->
   <mat-form-field appearance="outline" class="full-width">
     <mat-label>Encrypt Type</mat-label>
     <mat-select [(ngModel)]="encryptType">
@@ -28,13 +25,11 @@
     </mat-select>
   </mat-form-field>
 
-  <!-- HMAC Base64 -->
   <mat-form-field appearance="outline" class="full-width">
     <mat-label>HMAC (Base64)</mat-label>
     <textarea matInput rows="2" [(ngModel)]="hmacBase64"></textarea>
   </mat-form-field>
 
-  <!-- Buttons -->
   <div class="row buttons">
     <button mat-raised-button color="primary" (click)="doEncrypt()">Encrypt</button>
     <button mat-raised-button color="accent" (click)="doDecrypt()">Decrypt</button>
@@ -42,7 +37,6 @@
     <button mat-raised-button color="accent" (click)="verifyHmac()">Verify HMAC</button>
   </div>
 
-  <!-- Result -->
   <div class="result-box" *ngIf="result">
     <mat-card>
       <mat-card-title>Result</mat-card-title>
@@ -50,6 +44,5 @@
     </mat-card>
   </div>
 
-  <!-- Loading -->
   <mat-progress-spinner *ngIf="isLoading" mode="indeterminate"></mat-progress-spinner>
 </div>
diff --git a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html
index 30065b3..27bc5eb 100644
--- a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html
+++ b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.html
@@ -1,12 +1,10 @@
 <div class="signature-form">
 
-  <!-- Message -->
   <mat-form-field appearance="outline" class="full-width">
     <mat-label>Message</mat-label>
     <textarea matInput rows="4" [(ngModel)]="message"></textarea>
   </mat-form-field>
 
-  <!-- Key ID + Version -->
   <div class="row">
     <mat-form-field appearance="outline" class="flex-2">
       <mat-label>Key ID (UUID)</mat-label>
@@ -19,19 +17,16 @@
     </mat-form-field>
   </div>
 
-  <!-- Signature Base64 -->
   <mat-form-field appearance="outline" class="full-width">
     <mat-label>Signature (Base64)</mat-label>
     <textarea matInput rows="3" [(ngModel)]="signatureBase64"></textarea>
   </mat-form-field>
 
-  <!-- Buttons -->
   <div class="row buttons">
     <button mat-raised-button color="primary" (click)="doSign()">Sign</button>
     <button mat-raised-button color="accent" (click)="doVerify()">Verify</button>
   </div>
 
-  <!-- Result -->
   <div class="result-box" *ngIf="result">
     <mat-card>
       <mat-card-title>Result</mat-card-title>
@@ -39,6 +34,5 @@
     </mat-card>
   </div>
 
-  <!-- Loading -->
   <mat-progress-spinner *ngIf="isLoading" mode="indeterminate"></mat-progress-spinner>
 </div>
diff --git a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts
index 0e31008..b0ad25b 100644
--- a/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts
+++ b/MiniKmsClient/src/app/crypto/signature-ops/signature-ops.component.ts
@@ -27,7 +27,6 @@ export class SignatureOpsComponent {
       next: res => {
         console.log("YEEEEY");
         this.result = res;
-        this.signatureBase64 = res; // auto-fill so user can verify
         this.isLoading = false;
       },
       error: (err) => {this.isLoading = false; console.log("Noooo"); console.log(err);}

From aecde2b491006bbff5fd40194eb521d5922a2ea2 Mon Sep 17 00:00:00 2001
From: Milan Arezina <arezinamilann@gmail.com>
Date: Thu, 2 Oct 2025 04:13:52 +0200
Subject: [PATCH 4/4] feat: add metadata logging

---
 .../ftn/security/minikms/controller/SignatureController.java  | 4 ++--
 .../main/java/ftn/security/minikms/entity/KeyMetadata.java    | 2 ++
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/MiniKms/src/main/java/ftn/security/minikms/controller/SignatureController.java b/MiniKms/src/main/java/ftn/security/minikms/controller/SignatureController.java
index 75f69f0..579f2c6 100644
--- a/MiniKms/src/main/java/ftn/security/minikms/controller/SignatureController.java
+++ b/MiniKms/src/main/java/ftn/security/minikms/controller/SignatureController.java
@@ -35,7 +35,7 @@ public ResponseEntity<String> sign(@RequestParam UUID keyId,
 
     @PostMapping("/verify")
     @Transactional(readOnly = true)
-    public ResponseEntity<String> verify(@RequestParam UUID keyId,
+    public ResponseEntity<?> verify(@RequestParam UUID keyId,
                                          @RequestParam(required = false) Integer version,
                                          @RequestBody VerifyRequestDTO req) {
         try {
@@ -45,7 +45,7 @@ public ResponseEntity<String> verify(@RequestParam UUID keyId,
                     Base64.getDecoder().decode(req.getSignature()),
                     version
             );
-            return ResponseEntity.ok(valid ? "VALID" : "INVALID");
+            return ResponseEntity.ok(valid);
         } catch (GeneralSecurityException | IllegalArgumentException e) {
             return ResponseEntity.status(HttpStatus.BAD_REQUEST).body(e.getMessage());
         }
diff --git a/MiniKms/src/main/java/ftn/security/minikms/entity/KeyMetadata.java b/MiniKms/src/main/java/ftn/security/minikms/entity/KeyMetadata.java
index a138c3d..db04627 100644
--- a/MiniKms/src/main/java/ftn/security/minikms/entity/KeyMetadata.java
+++ b/MiniKms/src/main/java/ftn/security/minikms/entity/KeyMetadata.java
@@ -2,6 +2,7 @@
 
 import ftn.security.minikms.enumeration.KeyOperation;
 import ftn.security.minikms.enumeration.KeyType;
+import ftn.security.minikms.logging.EntityLogger;
 import jakarta.persistence.*;
 import lombok.Data;
 import lombok.EqualsAndHashCode;
@@ -16,6 +17,7 @@
 @EqualsAndHashCode(onlyExplicitlyIncluded = true)
 @Entity
 @Table(name = "keys")
+@EntityListeners(EntityLogger.class)
 public class KeyMetadata {
     @EqualsAndHashCode.Include
     @Id