commit b782ed2374bbae65075d9a43036f477f8f43cd67 Author: nahwasa Date: Sat Feb 11 15:45:34 2023 +0900 헥사고날 아키텍쳐 구조로 짜본 코드 diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..c2065bc --- /dev/null +++ b/.gitignore @@ -0,0 +1,37 @@ +HELP.md +.gradle +build/ +!gradle/wrapper/gradle-wrapper.jar +!**/src/main/**/build/ +!**/src/test/**/build/ + +### STS ### +.apt_generated +.classpath +.factorypath +.project +.settings +.springBeans +.sts4-cache +bin/ +!**/src/main/**/bin/ +!**/src/test/**/bin/ + +### IntelliJ IDEA ### +.idea +*.iws +*.iml +*.ipr +out/ +!**/src/main/**/out/ +!**/src/test/**/out/ + +### NetBeans ### +/nbproject/private/ +/nbbuild/ +/dist/ +/nbdist/ +/.nb-gradle/ + +### VS Code ### +.vscode/ diff --git a/README.md b/README.md new file mode 100644 index 0000000..882d4e4 --- /dev/null +++ b/README.md @@ -0,0 +1,3 @@ +# spring-security-basic-setting-for-spring-boot-3 + +블로그 [스프링부트 3.0이상 Spring Security 기본 세팅 (스프링 시큐리티) 글](https://nahwasa.com/entry/%EC%8A%A4%ED%94%84%EB%A7%81%EB%B6%80%ED%8A%B8-30%EC%9D%B4%EC%83%81-Spring-Security-%EA%B8%B0%EB%B3%B8-%EC%84%B8%ED%8C%85-%EC%8A%A4%ED%94%84%EB%A7%81-%EC%8B%9C%ED%81%90%EB%A6%AC%ED%8B%B0) 설명 및 따라하기용 프로젝트 diff --git a/build.gradle b/build.gradle new file mode 100644 index 0000000..89aeeb7 --- /dev/null +++ b/build.gradle @@ -0,0 +1,28 @@ +plugins { + id 'java' + id 'org.springframework.boot' version '3.0.2' + id 'io.spring.dependency-management' version '1.1.0' +} + +group = 'com.nahwasa' +version = '0.0.1-SNAPSHOT' +sourceCompatibility = '17' + +repositories { + mavenCentral() +} + +dependencies { + implementation 'org.springframework.boot:spring-boot-starter-security' + implementation 'org.springframework.boot:spring-boot-starter-web' + implementation 'org.apache.tomcat.embed:tomcat-embed-jasper' + implementation 'org.springframework.boot:spring-boot-starter-data-jpa' + runtimeOnly 'com.h2database:h2' + + testImplementation 'org.springframework.boot:spring-boot-starter-test' + testImplementation 'org.springframework.security:spring-security-test' +} + +tasks.named('test') { + useJUnitPlatform() +} diff --git a/gradle/wrapper/gradle-wrapper.jar b/gradle/wrapper/gradle-wrapper.jar new file mode 100644 index 0000000..249e583 Binary files /dev/null and b/gradle/wrapper/gradle-wrapper.jar differ diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties new file mode 100644 index 0000000..070cb70 --- /dev/null +++ b/gradle/wrapper/gradle-wrapper.properties @@ -0,0 +1,5 @@ +distributionBase=GRADLE_USER_HOME +distributionPath=wrapper/dists +distributionUrl=https\://services.gradle.org/distributions/gradle-7.6-bin.zip +zipStoreBase=GRADLE_USER_HOME +zipStorePath=wrapper/dists diff --git a/gradlew b/gradlew new file mode 100644 index 0000000..a69d9cb --- /dev/null +++ b/gradlew @@ -0,0 +1,240 @@ +#!/bin/sh + +# +# Copyright © 2015-2021 the original authors. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# https://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + +############################################################################## +# +# Gradle start up script for POSIX generated by Gradle. +# +# Important for running: +# +# (1) You need a POSIX-compliant shell to run this script. If your /bin/sh is +# noncompliant, but you have some other compliant shell such as ksh or +# bash, then to run this script, type that shell name before the whole +# command line, like: +# +# ksh Gradle +# +# Busybox and similar reduced shells will NOT work, because this script +# requires all of these POSIX shell features: +# * functions; +# * expansions «$var», «${var}», «${var:-default}», «${var+SET}», +# «${var#prefix}», «${var%suffix}», and «$( cmd )»; +# * compound commands having a testable exit status, especially «case»; +# * various built-in commands including «command», «set», and «ulimit». +# +# Important for patching: +# +# (2) This script targets any POSIX shell, so it avoids extensions provided +# by Bash, Ksh, etc; in particular arrays are avoided. +# +# The "traditional" practice of packing multiple parameters into a +# space-separated string is a well documented source of bugs and security +# problems, so this is (mostly) avoided, by progressively accumulating +# options in "$@", and eventually passing that to Java. +# +# Where the inherited environment variables (DEFAULT_JVM_OPTS, JAVA_OPTS, +# and GRADLE_OPTS) rely on word-splitting, this is performed explicitly; +# see the in-line comments for details. +# +# There are tweaks for specific operating systems such as AIX, CygWin, +# Darwin, MinGW, and NonStop. +# +# (3) This script is generated from the Groovy template +# https://github.com/gradle/gradle/blob/master/subprojects/plugins/src/main/resources/org/gradle/api/internal/plugins/unixStartScript.txt +# within the Gradle project. +# +# You can find Gradle at https://github.com/gradle/gradle/. +# +############################################################################## + +# Attempt to set APP_HOME + +# Resolve links: $0 may be a link +app_path=$0 + +# Need this for daisy-chained symlinks. +while + APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path + [ -h "$app_path" ] +do + ls=$( ls -ld "$app_path" ) + link=${ls#*' -> '} + case $link in #( + /*) app_path=$link ;; #( + *) app_path=$APP_HOME$link ;; + esac +done + +APP_HOME=$( cd "${APP_HOME:-./}" && pwd -P ) || exit + +APP_NAME="Gradle" +APP_BASE_NAME=${0##*/} + +# Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script. +DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"' + +# Use the maximum available, or set MAX_FD != -1 to use that value. +MAX_FD=maximum + +warn () { + echo "$*" +} >&2 + +die () { + echo + echo "$*" + echo + exit 1 +} >&2 + +# OS specific support (must be 'true' or 'false'). +cygwin=false +msys=false +darwin=false +nonstop=false +case "$( uname )" in #( + CYGWIN* ) cygwin=true ;; #( + Darwin* ) darwin=true ;; #( + MSYS* | MINGW* ) msys=true ;; #( + NONSTOP* ) nonstop=true ;; +esac + +CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar + + +# Determine the Java command to use to start the JVM. +if [ -n "$JAVA_HOME" ] ; then + if [ -x "$JAVA_HOME/jre/sh/java" ] ; then + # IBM's JDK on AIX uses strange locations for the executables + JAVACMD=$JAVA_HOME/jre/sh/java + else + JAVACMD=$JAVA_HOME/bin/java + fi + if [ ! -x "$JAVACMD" ] ; then + die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME + +Please set the JAVA_HOME variable in your environment to match the +location of your Java installation." + fi +else + JAVACMD=java + which java >/dev/null 2>&1 || die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH. + +Please set the JAVA_HOME variable in your environment to match the +location of your Java installation." +fi + +# Increase the maximum file descriptors if we can. +if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then + case $MAX_FD in #( + max*) + MAX_FD=$( ulimit -H -n ) || + warn "Could not query maximum file descriptor limit" + esac + case $MAX_FD in #( + '' | soft) :;; #( + *) + ulimit -n "$MAX_FD" || + warn "Could not set maximum file descriptor limit to $MAX_FD" + esac +fi + +# Collect all arguments for the java command, stacking in reverse order: +# * args from the command line +# * the main class name +# * -classpath +# * -D...appname settings +# * --module-path (only if needed) +# * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables. + +# For Cygwin or MSYS, switch paths to Windows format before running java +if "$cygwin" || "$msys" ; then + APP_HOME=$( cygpath --path --mixed "$APP_HOME" ) + CLASSPATH=$( cygpath --path --mixed "$CLASSPATH" ) + + JAVACMD=$( cygpath --unix "$JAVACMD" ) + + # Now convert the arguments - kludge to limit ourselves to /bin/sh + for arg do + if + case $arg in #( + -*) false ;; # don't mess with options #( + /?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath + [ -e "$t" ] ;; #( + *) false ;; + esac + then + arg=$( cygpath --path --ignore --mixed "$arg" ) + fi + # Roll the args list around exactly as many times as the number of + # args, so each arg winds up back in the position where it started, but + # possibly modified. + # + # NB: a `for` loop captures its iteration list before it begins, so + # changing the positional parameters here affects neither the number of + # iterations, nor the values presented in `arg`. + shift # remove old arg + set -- "$@" "$arg" # push replacement arg + done +fi + +# Collect all arguments for the java command; +# * $DEFAULT_JVM_OPTS, $JAVA_OPTS, and $GRADLE_OPTS can contain fragments of +# shell script including quotes and variable substitutions, so put them in +# double quotes to make sure that they get re-expanded; and +# * put everything else in single quotes, so that it's not re-expanded. + +set -- \ + "-Dorg.gradle.appname=$APP_BASE_NAME" \ + -classpath "$CLASSPATH" \ + org.gradle.wrapper.GradleWrapperMain \ + "$@" + +# Stop when "xargs" is not available. +if ! command -v xargs >/dev/null 2>&1 +then + die "xargs is not available" +fi + +# Use "xargs" to parse quoted args. +# +# With -n1 it outputs one arg per line, with the quotes and backslashes removed. +# +# In Bash we could simply go: +# +# readarray ARGS < <( xargs -n1 <<<"$var" ) && +# set -- "${ARGS[@]}" "$@" +# +# but POSIX shell has neither arrays nor command substitution, so instead we +# post-process each arg (as a line of input to sed) to backslash-escape any +# character that might be a shell metacharacter, then use eval to reverse +# that process (while maintaining the separation between arguments), and wrap +# the whole thing up as a single "set" statement. +# +# This will of course break if any of these variables contains a newline or +# an unmatched quote. +# + +eval "set -- $( + printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" | + xargs -n1 | + sed ' s~[^-[:alnum:]+,./:=@_]~\\&~g; ' | + tr '\n' ' ' + )" '"$@"' + +exec "$JAVACMD" "$@" diff --git a/gradlew.bat b/gradlew.bat new file mode 100644 index 0000000..f127cfd --- /dev/null +++ b/gradlew.bat @@ -0,0 +1,91 @@ +@rem +@rem Copyright 2015 the original author or authors. +@rem +@rem Licensed under the Apache License, Version 2.0 (the "License"); +@rem you may not use this file except in compliance with the License. +@rem You may obtain a copy of the License at +@rem +@rem https://www.apache.org/licenses/LICENSE-2.0 +@rem +@rem Unless required by applicable law or agreed to in writing, software +@rem distributed under the License is distributed on an "AS IS" BASIS, +@rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +@rem See the License for the specific language governing permissions and +@rem limitations under the License. +@rem + +@if "%DEBUG%"=="" @echo off +@rem ########################################################################## +@rem +@rem Gradle startup script for Windows +@rem +@rem ########################################################################## + +@rem Set local scope for the variables with windows NT shell +if "%OS%"=="Windows_NT" setlocal + +set DIRNAME=%~dp0 +if "%DIRNAME%"=="" set DIRNAME=. +set APP_BASE_NAME=%~n0 +set APP_HOME=%DIRNAME% + +@rem Resolve any "." and ".." in APP_HOME to make it shorter. +for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi + +@rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script. +set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m" + +@rem Find java.exe +if defined JAVA_HOME goto findJavaFromJavaHome + +set JAVA_EXE=java.exe +%JAVA_EXE% -version >NUL 2>&1 +if %ERRORLEVEL% equ 0 goto execute + +echo. +echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH. +echo. +echo Please set the JAVA_HOME variable in your environment to match the +echo location of your Java installation. + +goto fail + +:findJavaFromJavaHome +set JAVA_HOME=%JAVA_HOME:"=% +set JAVA_EXE=%JAVA_HOME%/bin/java.exe + +if exist "%JAVA_EXE%" goto execute + +echo. +echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME% +echo. +echo Please set the JAVA_HOME variable in your environment to match the +echo location of your Java installation. + +goto fail + +:execute +@rem Setup the command line + +set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar + + +@rem Execute Gradle +"%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %* + +:end +@rem End local scope for the variables with windows NT shell +if %ERRORLEVEL% equ 0 goto mainEnd + +:fail +rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of +rem the _cmd.exe /c_ return code! +set EXIT_CODE=%ERRORLEVEL% +if %EXIT_CODE% equ 0 set EXIT_CODE=1 +if not ""=="%GRADLE_EXIT_CONSOLE%" exit %EXIT_CODE% +exit /b %EXIT_CODE% + +:mainEnd +if "%OS%"=="Windows_NT" endlocal + +:omega diff --git a/settings.gradle b/settings.gradle new file mode 100644 index 0000000..7f12e55 --- /dev/null +++ b/settings.gradle @@ -0,0 +1 @@ +rootProject.name = 'hexagonal-architecture-with-spring-boot-practice' diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/SpringBootSecurityBasicSettingApplication.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/SpringBootSecurityBasicSettingApplication.java new file mode 100644 index 0000000..b07e5b1 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/SpringBootSecurityBasicSettingApplication.java @@ -0,0 +1,13 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3; + +import org.springframework.boot.SpringApplication; +import org.springframework.boot.autoconfigure.SpringBootApplication; + +@SpringBootApplication +public class SpringBootSecurityBasicSettingApplication { + + public static void main(String[] args) { + SpringApplication.run(SpringBootSecurityBasicSettingApplication.class, args); + } + +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/security/MyUserDetailService.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/security/MyUserDetailService.java new file mode 100644 index 0000000..0b72392 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/security/MyUserDetailService.java @@ -0,0 +1,32 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.security; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.FindOneMemberUseCase; +import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member; +import org.springframework.security.core.userdetails.User; +import org.springframework.security.core.userdetails.UserDetails; +import org.springframework.security.core.userdetails.UserDetailsService; +import org.springframework.security.core.userdetails.UsernameNotFoundException; +import org.springframework.stereotype.Component; + +import java.util.Optional; + +@Component +public class MyUserDetailService implements UserDetailsService { + private final FindOneMemberUseCase findOneMemberUseCase; + + public MyUserDetailService(FindOneMemberUseCase findOneMemberUseCase) { + this.findOneMemberUseCase = findOneMemberUseCase; + } + + @Override + public UserDetails loadUserByUsername(String insertedUserId) throws UsernameNotFoundException { + Optional findOne = findOneMemberUseCase.findOne(insertedUserId); + Member member = findOne.orElseThrow(() -> new UsernameNotFoundException("없는 회원입니다 ㅠ")); + + return User.builder() + .username(member.getUserid()) + .password(member.getPw()) + .roles(member.getRoles()) + .build(); + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/AuthorizationController.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/AuthorizationController.java new file mode 100644 index 0000000..a9a821b --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/AuthorizationController.java @@ -0,0 +1,30 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.web; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence.MemberJoinEntity; +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.JoinMemberUseCase; +import org.springframework.http.ResponseEntity; +import org.springframework.web.bind.annotation.PostMapping; +import org.springframework.web.bind.annotation.RequestBody; +import org.springframework.web.bind.annotation.RequestMapping; +import org.springframework.web.bind.annotation.RestController; + +@RestController +@RequestMapping("/auth") +public class AuthorizationController { + + private final JoinMemberUseCase joinMemberUseCase; + + public AuthorizationController(JoinMemberUseCase joinMemberUseCase) { + this.joinMemberUseCase = joinMemberUseCase; + } + + @PostMapping("/join") + public ResponseEntity join(@RequestBody MemberJoinEntity dto) { + try { + joinMemberUseCase.join(dto.getUserid(), dto.getPw()); + return ResponseEntity.ok("join success"); + } catch (Exception e) { + return ResponseEntity.badRequest().body(e.getMessage()); + } + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/StatusCheckController.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/StatusCheckController.java new file mode 100644 index 0000000..0458cf8 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/StatusCheckController.java @@ -0,0 +1,16 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.web; + +import org.springframework.http.ResponseEntity; +import org.springframework.web.bind.annotation.GetMapping; +import org.springframework.web.bind.annotation.RequestMapping; +import org.springframework.web.bind.annotation.RestController; + +@RestController +@RequestMapping("/status") +public class StatusCheckController { + + @GetMapping + public ResponseEntity serverStatusCheck() { + return ResponseEntity.ok("ok"); + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/ViewController.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/ViewController.java new file mode 100644 index 0000000..ff92808 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/ViewController.java @@ -0,0 +1,44 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.web; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.config.AdminAuthorize; +import com.nahwasa.springsecuritybasicsettingforspringboot3.config.UserAuthorize; +import org.springframework.security.core.annotation.AuthenticationPrincipal; +import org.springframework.security.core.userdetails.User; +import org.springframework.stereotype.Controller; +import org.springframework.ui.Model; +import org.springframework.web.bind.annotation.GetMapping; +import org.springframework.web.bind.annotation.RequestMapping; + +@Controller +@RequestMapping("/view") +public class ViewController { + + @GetMapping("/login") + public String loginPage() { + return "login"; + } + + @GetMapping("/join") + public String joinPage() { + return "join"; + } + + @GetMapping("/dashboard") + public String dashboardPage(@AuthenticationPrincipal User user, Model model) { + model.addAttribute("loginId", user.getUsername()); + model.addAttribute("loginRoles", user.getAuthorities()); + return "dashboard"; + } + + @GetMapping("/setting/admin") + @AdminAuthorize + public String adminSettingPage() { + return "admin_setting"; + } + + @GetMapping("/setting/user") + @UserAuthorize + public String userSettingPage() { + return "user_setting"; + } +} \ No newline at end of file diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/DataJpaMemberRepository.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/DataJpaMemberRepository.java new file mode 100644 index 0000000..9350a9d --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/DataJpaMemberRepository.java @@ -0,0 +1,11 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member; +import org.springframework.data.jpa.repository.JpaRepository; + +import java.util.Optional; + +public interface DataJpaMemberRepository extends JpaRepository { + + Optional findByUserid(String userId); +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberJoinEntity.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberJoinEntity.java new file mode 100644 index 0000000..2917a54 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberJoinEntity.java @@ -0,0 +1,23 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence; + +public class MemberJoinEntity { + + private String userid; + private String pw; + + public String getUserid() { + return userid; + } + + public void setUserid(String userid) { + this.userid = userid; + } + + public String getPw() { + return pw; + } + + public void setPw(String pw) { + this.pw = pw; + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberRepository.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberRepository.java new file mode 100644 index 0000000..58f4ad5 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberRepository.java @@ -0,0 +1,42 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberFindOutputPort; +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberJoinOutputPort; +import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member; +import org.springframework.security.crypto.password.PasswordEncoder; +import org.springframework.stereotype.Repository; + +import java.util.Optional; + +@Repository +public class MemberRepository implements MemberFindOutputPort, MemberJoinOutputPort { + + private final PasswordEncoder passwordEncoder; + private final DataJpaMemberRepository repository; + + public MemberRepository(PasswordEncoder passwordEncoder, DataJpaMemberRepository repository) { + this.passwordEncoder = passwordEncoder; + this.repository = repository; + } + + @Override + public Optional findOne(String userId) { + return repository.findByUserid(userId); + } + + @Override + public Long join(String userid, String pw) { + Member member = Member.createUser(userid, pw, passwordEncoder); + validateDuplicateMember(member); + repository.save(member); + + return member.getId(); + } + + private void validateDuplicateMember(Member member) { + repository.findByUserid(member.getUserid()) + .ifPresent(m -> { + throw new IllegalStateException("이미 존재하는 회원입니다."); + }); + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/FindMemberInputPort.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/FindMemberInputPort.java new file mode 100644 index 0000000..4cdf455 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/FindMemberInputPort.java @@ -0,0 +1,23 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.in; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberFindOutputPort; +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.FindOneMemberUseCase; +import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member; +import org.springframework.stereotype.Service; + +import java.util.Optional; + +@Service +public class FindMemberInputPort implements FindOneMemberUseCase { + private final MemberFindOutputPort memberFindOutputPort; + + public FindMemberInputPort(MemberFindOutputPort memberFindOutputPort) { + this.memberFindOutputPort = memberFindOutputPort; + } + + + @Override + public Optional findOne(String userId) { + return memberFindOutputPort.findOne(userId); + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/RegisterMemberInputPort.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/RegisterMemberInputPort.java new file mode 100644 index 0000000..a3da756 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/RegisterMemberInputPort.java @@ -0,0 +1,20 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.in; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberJoinOutputPort; +import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.JoinMemberUseCase; +import org.springframework.stereotype.Service; + +@Service +public class RegisterMemberInputPort implements JoinMemberUseCase { + + private final MemberJoinOutputPort memberJoinOutputPort; + + public RegisterMemberInputPort(MemberJoinOutputPort memberJoinOutputPort) { + this.memberJoinOutputPort = memberJoinOutputPort; + } + + @Override + public void join(String userid, String pw) { + memberJoinOutputPort.join(userid, pw); + } +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberFindOutputPort.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberFindOutputPort.java new file mode 100644 index 0000000..b9badf4 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberFindOutputPort.java @@ -0,0 +1,10 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member; + +import java.util.Optional; + +public interface MemberFindOutputPort { + + Optional findOne(String userId); +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberJoinOutputPort.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberJoinOutputPort.java new file mode 100644 index 0000000..41ad8db --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberJoinOutputPort.java @@ -0,0 +1,6 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out; + +public interface MemberJoinOutputPort { + + Long join(String userid, String pw); +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/FindOneMemberUseCase.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/FindOneMemberUseCase.java new file mode 100644 index 0000000..a61dea9 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/FindOneMemberUseCase.java @@ -0,0 +1,10 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases; + +import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member; + +import java.util.Optional; + +public interface FindOneMemberUseCase { + + Optional findOne(String userId); +} \ No newline at end of file diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/JoinMemberUseCase.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/JoinMemberUseCase.java new file mode 100644 index 0000000..95e5c12 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/JoinMemberUseCase.java @@ -0,0 +1,6 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases; + +public interface JoinMemberUseCase { + + void join(String userid, String pw); +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/AdminAuthorize.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/AdminAuthorize.java new file mode 100644 index 0000000..ddc81e5 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/AdminAuthorize.java @@ -0,0 +1,14 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.config; + +import org.springframework.security.access.prepost.PreAuthorize; + +import java.lang.annotation.ElementType; +import java.lang.annotation.Retention; +import java.lang.annotation.RetentionPolicy; +import java.lang.annotation.Target; + +@Target({ ElementType.METHOD, ElementType.TYPE }) +@Retention(RetentionPolicy.RUNTIME) +@PreAuthorize("hasAnyRole('ADMIN')") +public @interface AdminAuthorize { +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/SpringSecurityConfig.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/SpringSecurityConfig.java new file mode 100644 index 0000000..a060d31 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/SpringSecurityConfig.java @@ -0,0 +1,43 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.config; + +import jakarta.servlet.DispatcherType; +import org.springframework.context.annotation.Bean; +import org.springframework.context.annotation.Configuration; +import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity; +import org.springframework.security.config.annotation.web.builders.HttpSecurity; +import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; +import org.springframework.security.crypto.password.PasswordEncoder; +import org.springframework.security.web.SecurityFilterChain; + +import static org.springframework.security.config.Customizer.withDefaults; + +@Configuration +@EnableMethodSecurity +public class SpringSecurityConfig { + + @Bean + public PasswordEncoder passwordEncoder() { + return new BCryptPasswordEncoder(); + } + + @Bean + public SecurityFilterChain filterChain(HttpSecurity http) throws Exception { + http.csrf().disable().cors().disable() + .authorizeHttpRequests(request -> request + .dispatcherTypeMatchers(DispatcherType.FORWARD).permitAll() + .requestMatchers("/status", "/images/**", "/view/join", "/auth/join").permitAll() + .anyRequest().authenticated() + ) + .formLogin(login -> login + .loginPage("/view/login") + .loginProcessingUrl("/login-process") + .usernameParameter("userid") + .passwordParameter("pw") + .defaultSuccessUrl("/view/dashboard", true) + .permitAll() + ) + .logout(withDefaults()); + + return http.build(); + } +} \ No newline at end of file diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/UserAuthorize.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/UserAuthorize.java new file mode 100644 index 0000000..c75b3a5 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/UserAuthorize.java @@ -0,0 +1,14 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.config; + +import org.springframework.security.access.prepost.PreAuthorize; + +import java.lang.annotation.ElementType; +import java.lang.annotation.Retention; +import java.lang.annotation.RetentionPolicy; +import java.lang.annotation.Target; + +@Target({ ElementType.METHOD, ElementType.TYPE }) +@Retention(RetentionPolicy.RUNTIME) +@PreAuthorize("hasAnyRole('USER')") +public @interface UserAuthorize { +} diff --git a/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/domain/Member.java b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/domain/Member.java new file mode 100644 index 0000000..988e372 --- /dev/null +++ b/src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/domain/Member.java @@ -0,0 +1,47 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3.domain; + +import jakarta.persistence.*; +import org.springframework.security.crypto.password.PasswordEncoder; + +@Entity +public class Member { + @Id + @GeneratedValue(strategy = GenerationType.IDENTITY) + private Long id; + + @Column(unique = true) + private String userid; + + private String pw; + + private String roles; + + private Member(Long id, String userid, String pw, String roleUser) { + this.id = id; + this.userid = userid; + this.pw = pw; + this.roles = roleUser; + } + + protected Member() {} + + public static Member createUser(String userId, String pw, PasswordEncoder passwordEncoder) { + return new Member(null, userId, passwordEncoder.encode(pw), "USER"); + } + + public Long getId() { + return id; + } + + public String getUserid() { + return userid; + } + + public String getPw() { + return pw; + } + + public String getRoles() { + return roles; + } +} diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties new file mode 100644 index 0000000..f1a6fd0 --- /dev/null +++ b/src/main/resources/application.properties @@ -0,0 +1,10 @@ +spring.mvc.view.prefix=/WEB-INF/views/ +spring.mvc.view.suffix=.jsp + +spring.datasource.driver-class-name=org.h2.Driver +spring.datasource.url=jdbc:h2:mem: +spring.datasource.username=sa +spring.datasource.password= +spring.sql.init.mode=always +spring.jpa.show-sql=true +spring.jpa.hibernate.ddl-auto=none \ No newline at end of file diff --git a/src/main/resources/data.sql b/src/main/resources/data.sql new file mode 100644 index 0000000..ea7af6c --- /dev/null +++ b/src/main/resources/data.sql @@ -0,0 +1,2 @@ +insert into member(userid, pw, roles) values ('nahwasa', '$2a$12$jcKXsj4ZAIkGgZdnUQ6EcOduMlurEtX7Szjhr.kQp2iQXNucjZMI6', 'ADMIN'); +insert into member(userid, pw, roles) values ('user', '$2a$12$jcKXsj4ZAIkGgZdnUQ6EcOduMlurEtX7Szjhr.kQp2iQXNucjZMI6', 'USER'); \ No newline at end of file diff --git a/src/main/resources/schema.sql b/src/main/resources/schema.sql new file mode 100644 index 0000000..3613a46 --- /dev/null +++ b/src/main/resources/schema.sql @@ -0,0 +1,10 @@ +drop table if exists member CASCADE; +create table member +( + id bigint generated by default as identity, + userid varchar(255) not null, + pw varchar(255) not null, + roles varchar(255) not null, + primary key (id), + unique (userid) +); \ No newline at end of file diff --git a/src/main/resources/static/images/nahwasa-profile.png b/src/main/resources/static/images/nahwasa-profile.png new file mode 100644 index 0000000..c4a4404 Binary files /dev/null and b/src/main/resources/static/images/nahwasa-profile.png differ diff --git a/src/main/webapp/WEB-INF/views/admin_setting.jsp b/src/main/webapp/WEB-INF/views/admin_setting.jsp new file mode 100644 index 0000000..0d87017 --- /dev/null +++ b/src/main/webapp/WEB-INF/views/admin_setting.jsp @@ -0,0 +1,19 @@ +<%@ page contentType="text/html;charset=UTF-8" language="java" %> + + + + + + + + 관리자 설정 + + + + + +
+ +
+ + \ No newline at end of file diff --git a/src/main/webapp/WEB-INF/views/dashboard.jsp b/src/main/webapp/WEB-INF/views/dashboard.jsp new file mode 100644 index 0000000..2fb9eeb --- /dev/null +++ b/src/main/webapp/WEB-INF/views/dashboard.jsp @@ -0,0 +1,39 @@ +<%@ page contentType="text/html;charset=UTF-8" language="java" %> + + + + + + + + 대시보드 + + + + + +
+ + +

접속 아이디

+

+ ${loginId} +

+
+

역할

+

+ ${loginRoles} +

+
+

역할에 따른 페이지 이동 권한 확인

+

+ + +

+
+
+ +
+
+ + \ No newline at end of file diff --git a/src/main/webapp/WEB-INF/views/join.jsp b/src/main/webapp/WEB-INF/views/join.jsp new file mode 100644 index 0000000..6a9c16c --- /dev/null +++ b/src/main/webapp/WEB-INF/views/join.jsp @@ -0,0 +1,60 @@ +<%@ page contentType="text/html;charset=UTF-8" language="java" %> + + + + + + + + 회원가입 + + + + + +
+ + + +
+ + \ No newline at end of file diff --git a/src/main/webapp/WEB-INF/views/login.jsp b/src/main/webapp/WEB-INF/views/login.jsp new file mode 100644 index 0000000..916baad --- /dev/null +++ b/src/main/webapp/WEB-INF/views/login.jsp @@ -0,0 +1,38 @@ +<%@ page contentType="text/html;charset=UTF-8" language="java" %> + + + + + + + + 로그인 + + + + + +
+ + + +
+ + \ No newline at end of file diff --git a/src/main/webapp/WEB-INF/views/user_setting.jsp b/src/main/webapp/WEB-INF/views/user_setting.jsp new file mode 100644 index 0000000..cb1a534 --- /dev/null +++ b/src/main/webapp/WEB-INF/views/user_setting.jsp @@ -0,0 +1,19 @@ +<%@ page contentType="text/html;charset=UTF-8" language="java" %> + + + + + + + + 관리자 설정 + + + + + +
+ +
+ + \ No newline at end of file diff --git a/src/test/java/com/nahwasa/springsecuritybasicsettingforspringboot3/StatusCheckControllerTest.java b/src/test/java/com/nahwasa/springsecuritybasicsettingforspringboot3/StatusCheckControllerTest.java new file mode 100644 index 0000000..69312f3 --- /dev/null +++ b/src/test/java/com/nahwasa/springsecuritybasicsettingforspringboot3/StatusCheckControllerTest.java @@ -0,0 +1,22 @@ +package com.nahwasa.springsecuritybasicsettingforspringboot3; + +import org.junit.jupiter.api.Test; +import org.springframework.boot.test.context.SpringBootTest; +import org.springframework.boot.test.web.client.TestRestTemplate; +import org.springframework.http.HttpStatus; +import org.springframework.http.ResponseEntity; + +import static org.assertj.core.api.Assertions.assertThat; + +@SpringBootTest +class StatusCheckControllerTest { + + @Test + void status_check_return_ok() { + TestRestTemplate rest = new TestRestTemplate(); + ResponseEntity res = rest.getForEntity("http://localhost:8080/status", String.class); + + assertThat(res.getStatusCode()).isEqualTo(HttpStatus.OK); + assertThat(res.getBody()).isEqualTo("ok"); + } +} \ No newline at end of file