mindol1004/Blog_Project
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[Spring][쇼핑몰 프로젝트][9] 비밀번호 인코딩(BCryptPasswordEncoder 적용) - 2

Browse Source 
https://kimvampa.tistory.com/133
This commit is contained in:
SeoJin Kim
2021-01-20 19:34:12 +09:00
parent 21c6c0ca77
commit aa633e1b75
8 changed files with 67 additions and 28 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
VamPa/src/main/java/com/vam/controller/MemberController.java
View File

@@ -145,24 +145,40 @@ public class MemberController {
@RequestMapping(value="login", method=RequestMethod.POST)
public String loginPOST(HttpServletRequest request, MemberVO member, RedirectAttributes rttr) throws Exception{
//System.out.println("login 메서드 진입");
//System.out.println("전달된 데이터 : " + member);
HttpSession session = request.getSession();
MemberVO lvo = memberservice.memberLogin(member);
String rawPw = "";
String encodePw = "";
MemberVO lvo = memberservice.memberLogin(member); // 제출한아이디와 일치하는 아이디 있는지
if(lvo == null) { // 일치하지 않는 아이디, 비밀번호 입력 경우
if(lvo != null) { // 일치하는 아이디 존재시
int result = 0;
rttr.addFlashAttribute("result", result);
return "redirect:/member/login";
rawPw = member.getMemberPw(); // 사용자가 제출한 비밀번호
encodePw = lvo.getMemberPw(); // 데이터베이스에 저장한 인코딩된 비밀번호
if(true == pwEncoder.matches(rawPw, encodePw)) { // 비밀번호 일치여부 판단
lvo.setMemberPw(""); // 인코딩된 비밀번호 정보 지움
session.setAttribute("member", lvo); // session에 사용자의 정보 저장
return "redirect:/main"; // 메인페이지 이동
} else {
rttr.addFlashAttribute("result", 0);
return "redirect:/member/login"; // 로그인 페이지로 이동
}
} else { // 일치하는 아이디가 존재하지 않을 시 (로그인 실패)
rttr.addFlashAttribute("result", 0);
return "redirect:/member/login"; // 로그인 페이지로 이동
}
session.setAttribute("member", lvo); // 일치하는 아이디, 비밀번호 경우 (로그인 성공)
return "redirect:/main";
}
}

4
VamPa/src/main/resources/com/vam/mapper/MemberMapper.xml
View File

@@ -21,7 +21,9 @@
<!-- 로그인 -->
<select id="memberLogin" resultType="com.vam.model.MemberVO">
select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw}
select memberId, memberPw, memberName, adminck, money, point from book_member where memberId = #{memberId}
<!-- 기존코드 -->
<!-- select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw} -->
</select>

4
VamPa/target/classes/com/vam/mapper/MemberMapper.xml
View File

@@ -21,7 +21,9 @@
<!-- 로그인 -->
<select id="memberLogin" resultType="com.vam.model.MemberVO">
select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw}
select memberId, memberPw, memberName, adminck, money, point from book_member where memberId = #{memberId}
<!-- 기존코드 -->
<!-- select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw} -->
</select>

2
VamPa/target/m2e-wtp/web-resources/META-INF/maven/com.vam/controller/pom.properties
View File

@@ -1,5 +1,5 @@
#Generated by Maven Integration for Eclipse
#Wed Jan 20 01:28:43 KST 2021
#Wed Jan 20 18:37:06 KST 2021
m2e.projectLocation=C\:\\Users\\sjinj\\git\\Blog_Project\\VamPa
m2e.projectName=VamPa
groupId=com.vam

37
VamPa_MySQL/src/main/java/com/vam/controller/MemberController.java
View File

@@ -144,23 +144,38 @@ public class MemberController {
@RequestMapping(value="login", method=RequestMethod.POST)
public String loginPOST(HttpServletRequest request, MemberVO member, RedirectAttributes rttr) throws Exception{
//System.out.println("login 메서드 진입");
//System.out.println("전달된 데이터 : " + member);
HttpSession session = request.getSession();
MemberVO lvo = memberservice.memberLogin(member);
String rawPw = "";
String encodePw = "";
MemberVO lvo = memberservice.memberLogin(member); // 제출한아이디와 일치하는 아이디 있는지
if(lvo == null) { // 일치하지 않는 아이디, 비밀번호 입력 경우
if(lvo != null) { // 일치하는 아이디 존재시
int result = 0;
rttr.addFlashAttribute("result", result);
return "redirect:/member/login";
rawPw = member.getMemberPw(); // 사용자가 제출한 비밀번호
encodePw = lvo.getMemberPw(); // 데이터베이스에 저장한 인코딩된 비밀번호
if(true == pwEncoder.matches(rawPw, encodePw)) { // 비밀번호 일치여부 판단
lvo.setMemberPw(""); // 인코딩된 비밀번호 정보 지움
session.setAttribute("member", lvo); // session에 사용자의 정보 저장
return "redirect:/main"; // 메인페이지 이동
} else {
rttr.addFlashAttribute("result", 0);
return "redirect:/member/login"; // 로그인 페이지로 이동
}
} else { // 일치하는 아이디가 존재하지 않을 시 (로그인 실패)
rttr.addFlashAttribute("result", 0);
return "redirect:/member/login"; // 로그인 페이지로 이동
}
session.setAttribute("member", lvo); // 일치하는 아이디, 비밀번호 경우 (로그인 성공)
return "redirect:/main";
}
}

4
VamPa_MySQL/src/main/resources/com/vam/mapper/MemberMapper.xml
View File

@@ -21,7 +21,9 @@
<!-- 로그인 -->
<select id="memberLogin" resultType="com.vam.model.MemberVO">
select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw}
select memberId, memberPw, memberName, adminck, money, point from book_member where memberId = #{memberId}
<!-- 기존코드 -->
<!-- select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw} -->
</select>

4
VamPa_MySQL/target/classes/com/vam/mapper/MemberMapper.xml
View File

@@ -21,7 +21,9 @@
<!-- 로그인 -->
<select id="memberLogin" resultType="com.vam.model.MemberVO">
select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw}
select memberId, memberPw, memberName, adminck, money, point from book_member where memberId = #{memberId}
<!-- 기존코드 -->
<!-- select memberId, memberName, adminck, money, point from book_member where memberId = #{memberId} and memberPw = #{memberPw} -->
</select>

2
VamPa_MySQL/target/m2e-wtp/web-resources/META-INF/maven/com.vam/controller/pom.properties
View File

@@ -1,5 +1,5 @@
#Generated by Maven Integration for Eclipse
#Wed Jan 20 01:29:06 KST 2021
#Wed Jan 20 19:32:05 KST 2021
m2e.projectLocation=C\:\\Users\\sjinj\\git\\Blog_Project\\VamPa_MySQL
m2e.projectName=VamPa_MySQL
groupId=com.vam