mindol1004/hexagonal-architecture-with-spring-boot-practice
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

헥사고날 아키텍쳐 구조로 짜본 코드

Browse Source
This commit is contained in:
nahwasa
2023-02-11 15:45:34 +09:00
commit b782ed2374
36 changed files with 1028 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

37
.gitignore vendored Normal file
View File

@@ -0,0 +1,37 @@
HELP.md
.gradle
build/
!gradle/wrapper/gradle-wrapper.jar
!**/src/main/**/build/
!**/src/test/**/build/
### STS ###
.apt_generated
.classpath
.factorypath
.project
.settings
.springBeans
.sts4-cache
bin/
!**/src/main/**/bin/
!**/src/test/**/bin/
### IntelliJ IDEA ###
.idea
*.iws
*.iml
*.ipr
out/
!**/src/main/**/out/
!**/src/test/**/out/
### NetBeans ###
/nbproject/private/
/nbbuild/
/dist/
/nbdist/
/.nb-gradle/
### VS Code ###
.vscode/

3
README.md Normal file
View File

@@ -0,0 +1,3 @@
# spring-security-basic-setting-for-spring-boot-3
블로그 [스프링부트 3.0이상 Spring Security 기본 세팅 (스프링 시큐리티) 글](https://nahwasa.com/entry/%EC%8A%A4%ED%94%84%EB%A7%81%EB%B6%80%ED%8A%B8-30%EC%9D%B4%EC%83%81-Spring-Security-%EA%B8%B0%EB%B3%B8-%EC%84%B8%ED%8C%85-%EC%8A%A4%ED%94%84%EB%A7%81-%EC%8B%9C%ED%81%90%EB%A6%AC%ED%8B%B0) 설명 및 따라하기용 프로젝트

28
build.gradle Normal file
View File

@@ -0,0 +1,28 @@
plugins {
id 'java'
id 'org.springframework.boot' version '3.0.2'
id 'io.spring.dependency-management' version '1.1.0'
}
group = 'com.nahwasa'
version = '0.0.1-SNAPSHOT'
sourceCompatibility = '17'
repositories {
mavenCentral()
}
dependencies {
implementation 'org.springframework.boot:spring-boot-starter-security'
implementation 'org.springframework.boot:spring-boot-starter-web'
implementation 'org.apache.tomcat.embed:tomcat-embed-jasper'
implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
runtimeOnly 'com.h2database:h2'
testImplementation 'org.springframework.boot:spring-boot-starter-test'
testImplementation 'org.springframework.security:spring-security-test'
}
tasks.named('test') {
useJUnitPlatform()
}

BIN
gradle/wrapper/gradle-wrapper.jar vendored Normal file
View File

Binary file not shown.

5
gradle/wrapper/gradle-wrapper.properties vendored Normal file
View File

@@ -0,0 +1,5 @@
distributionBase=GRADLE_USER_HOME
distributionPath=wrapper/dists
distributionUrl=https\://services.gradle.org/distributions/gradle-7.6-bin.zip
zipStoreBase=GRADLE_USER_HOME
zipStorePath=wrapper/dists

240
gradlew vendored Normal file
View File

@@ -0,0 +1,240 @@
#!/bin/sh
#
# Copyright © 2015-2021 the original authors.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# https://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
##############################################################################
#
# Gradle start up script for POSIX generated by Gradle.
#
# Important for running:
#
# (1) You need a POSIX-compliant shell to run this script. If your /bin/sh is
# noncompliant, but you have some other compliant shell such as ksh or
# bash, then to run this script, type that shell name before the whole
# command line, like:
#
# ksh Gradle
#
# Busybox and similar reduced shells will NOT work, because this script
# requires all of these POSIX shell features:
# * functions;
# * expansions «$var», «${var}», «${var:-default}», «${var+SET}»,
# «${var#prefix}», «${var%suffix}», and «$( cmd )»;
# * compound commands having a testable exit status, especially «case»;
# * various built-in commands including «command», «set», and «ulimit».
#
# Important for patching:
#
# (2) This script targets any POSIX shell, so it avoids extensions provided
# by Bash, Ksh, etc; in particular arrays are avoided.
#
# The "traditional" practice of packing multiple parameters into a
# space-separated string is a well documented source of bugs and security
# problems, so this is (mostly) avoided, by progressively accumulating
# options in "$@", and eventually passing that to Java.
#
# Where the inherited environment variables (DEFAULT_JVM_OPTS, JAVA_OPTS,
# and GRADLE_OPTS) rely on word-splitting, this is performed explicitly;
# see the in-line comments for details.
#
# There are tweaks for specific operating systems such as AIX, CygWin,
# Darwin, MinGW, and NonStop.
#
# (3) This script is generated from the Groovy template
# https://github.com/gradle/gradle/blob/master/subprojects/plugins/src/main/resources/org/gradle/api/internal/plugins/unixStartScript.txt
# within the Gradle project.
#
# You can find Gradle at https://github.com/gradle/gradle/.
#
##############################################################################
# Attempt to set APP_HOME
# Resolve links: $0 may be a link
app_path=$0
# Need this for daisy-chained symlinks.
while
APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
[ -h "$app_path" ]
do
ls=$( ls -ld "$app_path" )
link=${ls#*' -> '}
case $link in #(
/*) app_path=$link ;; #(
*) app_path=$APP_HOME$link ;;
esac
done
APP_HOME=$( cd "${APP_HOME:-./}" && pwd -P ) || exit
APP_NAME="Gradle"
APP_BASE_NAME=${0##*/}
# Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"'
# Use the maximum available, or set MAX_FD != -1 to use that value.
MAX_FD=maximum
warn () {
echo "$*"
} >&2
die () {
echo
echo "$*"
echo
exit 1
} >&2
# OS specific support (must be 'true' or 'false').
cygwin=false
msys=false
darwin=false
nonstop=false
case "$( uname )" in #(
CYGWIN* ) cygwin=true ;; #(
Darwin* ) darwin=true ;; #(
MSYS* | MINGW* ) msys=true ;; #(
NONSTOP* ) nonstop=true ;;
esac
CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar
# Determine the Java command to use to start the JVM.
if [ -n "$JAVA_HOME" ] ; then
if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
# IBM's JDK on AIX uses strange locations for the executables
JAVACMD=$JAVA_HOME/jre/sh/java
else
JAVACMD=$JAVA_HOME/bin/java
fi
if [ ! -x "$JAVACMD" ] ; then
die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
Please set the JAVA_HOME variable in your environment to match the
location of your Java installation."
fi
else
JAVACMD=java
which java >/dev/null 2>&1 || die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
Please set the JAVA_HOME variable in your environment to match the
location of your Java installation."
fi
# Increase the maximum file descriptors if we can.
if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then
case $MAX_FD in #(
max*)
MAX_FD=$( ulimit -H -n ) ||
warn "Could not query maximum file descriptor limit"
esac
case $MAX_FD in #(
'' | soft) :;; #(
*)
ulimit -n "$MAX_FD" ||
warn "Could not set maximum file descriptor limit to $MAX_FD"
esac
fi
# Collect all arguments for the java command, stacking in reverse order:
# * args from the command line
# * the main class name
# * -classpath
# * -D...appname settings
# * --module-path (only if needed)
# * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables.
# For Cygwin or MSYS, switch paths to Windows format before running java
if "$cygwin" || "$msys" ; then
APP_HOME=$( cygpath --path --mixed "$APP_HOME" )
CLASSPATH=$( cygpath --path --mixed "$CLASSPATH" )
JAVACMD=$( cygpath --unix "$JAVACMD" )
# Now convert the arguments - kludge to limit ourselves to /bin/sh
for arg do
if
case $arg in #(
-*) false ;; # don't mess with options #(
/?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath
[ -e "$t" ] ;; #(
*) false ;;
esac
then
arg=$( cygpath --path --ignore --mixed "$arg" )
fi
# Roll the args list around exactly as many times as the number of
# args, so each arg winds up back in the position where it started, but
# possibly modified.
#
# NB: a `for` loop captures its iteration list before it begins, so
# changing the positional parameters here affects neither the number of
# iterations, nor the values presented in `arg`.
shift # remove old arg
set -- "$@" "$arg" # push replacement arg
done
fi
# Collect all arguments for the java command;
# * $DEFAULT_JVM_OPTS, $JAVA_OPTS, and $GRADLE_OPTS can contain fragments of
# shell script including quotes and variable substitutions, so put them in
# double quotes to make sure that they get re-expanded; and
# * put everything else in single quotes, so that it's not re-expanded.
set -- \
"-Dorg.gradle.appname=$APP_BASE_NAME" \
-classpath "$CLASSPATH" \
org.gradle.wrapper.GradleWrapperMain \
"$@"
# Stop when "xargs" is not available.
if ! command -v xargs >/dev/null 2>&1
then
die "xargs is not available"
fi
# Use "xargs" to parse quoted args.
#
# With -n1 it outputs one arg per line, with the quotes and backslashes removed.
#
# In Bash we could simply go:
#
# readarray ARGS < <( xargs -n1 <<<"$var" ) &&
# set -- "${ARGS[@]}" "$@"
#
# but POSIX shell has neither arrays nor command substitution, so instead we
# post-process each arg (as a line of input to sed) to backslash-escape any
# character that might be a shell metacharacter, then use eval to reverse
# that process (while maintaining the separation between arguments), and wrap
# the whole thing up as a single "set" statement.
#
# This will of course break if any of these variables contains a newline or
# an unmatched quote.
#
eval "set -- $(
printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" |
xargs -n1 |
sed ' s~[^-[:alnum:]+,./:=@_]~\\&~g; ' |
tr '\n' ' '
)" '"$@"'
exec "$JAVACMD" "$@"

91
gradlew.bat vendored Normal file
View File

@@ -0,0 +1,91 @@
@rem
@rem Copyright 2015 the original author or authors.
@rem
@rem Licensed under the Apache License, Version 2.0 (the "License");
@rem you may not use this file except in compliance with the License.
@rem You may obtain a copy of the License at
@rem
@rem https://www.apache.org/licenses/LICENSE-2.0
@rem
@rem Unless required by applicable law or agreed to in writing, software
@rem distributed under the License is distributed on an "AS IS" BASIS,
@rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
@rem See the License for the specific language governing permissions and
@rem limitations under the License.
@rem
@if "%DEBUG%"=="" @echo off
@rem ##########################################################################
@rem
@rem Gradle startup script for Windows
@rem
@rem ##########################################################################
@rem Set local scope for the variables with windows NT shell
if "%OS%"=="Windows_NT" setlocal
set DIRNAME=%~dp0
if "%DIRNAME%"=="" set DIRNAME=.
set APP_BASE_NAME=%~n0
set APP_HOME=%DIRNAME%
@rem Resolve any "." and ".." in APP_HOME to make it shorter.
for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi
@rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m"
@rem Find java.exe
if defined JAVA_HOME goto findJavaFromJavaHome
set JAVA_EXE=java.exe
%JAVA_EXE% -version >NUL 2>&1
if %ERRORLEVEL% equ 0 goto execute
echo.
echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
echo.
echo Please set the JAVA_HOME variable in your environment to match the
echo location of your Java installation.
goto fail
:findJavaFromJavaHome
set JAVA_HOME=%JAVA_HOME:"=%
set JAVA_EXE=%JAVA_HOME%/bin/java.exe
if exist "%JAVA_EXE%" goto execute
echo.
echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME%
echo.
echo Please set the JAVA_HOME variable in your environment to match the
echo location of your Java installation.
goto fail
:execute
@rem Setup the command line
set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar
@rem Execute Gradle
"%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %*
:end
@rem End local scope for the variables with windows NT shell
if %ERRORLEVEL% equ 0 goto mainEnd
:fail
rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of
rem the _cmd.exe /c_ return code!
set EXIT_CODE=%ERRORLEVEL%
if %EXIT_CODE% equ 0 set EXIT_CODE=1
if not ""=="%GRADLE_EXIT_CONSOLE%" exit %EXIT_CODE%
exit /b %EXIT_CODE%
:mainEnd
if "%OS%"=="Windows_NT" endlocal
:omega

1
settings.gradle Normal file
View File

@@ -0,0 +1 @@
rootProject.name = 'hexagonal-architecture-with-spring-boot-practice'

13
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/SpringBootSecurityBasicSettingApplication.java Normal file
View File

@@ -0,0 +1,13 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3;
import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.SpringBootApplication;
@SpringBootApplication
public class SpringBootSecurityBasicSettingApplication {
public static void main(String[] args) {
SpringApplication.run(SpringBootSecurityBasicSettingApplication.class, args);
}
}

32
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/security/MyUserDetailService.java Normal file
View File

@@ -0,0 +1,32 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.security;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.FindOneMemberUseCase;
import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Component;
import java.util.Optional;
@Component
public class MyUserDetailService implements UserDetailsService {
private final FindOneMemberUseCase findOneMemberUseCase;
public MyUserDetailService(FindOneMemberUseCase findOneMemberUseCase) {
this.findOneMemberUseCase = findOneMemberUseCase;
}
@Override
public UserDetails loadUserByUsername(String insertedUserId) throws UsernameNotFoundException {
Optional<Member> findOne = findOneMemberUseCase.findOne(insertedUserId);
Member member = findOne.orElseThrow(() -> new UsernameNotFoundException("없는 회원입니다 ㅠ"));
return User.builder()
.username(member.getUserid())
.password(member.getPw())
.roles(member.getRoles())
.build();
}
}

30
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/AuthorizationController.java Normal file
View File

@@ -0,0 +1,30 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.web;
import com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence.MemberJoinEntity;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.JoinMemberUseCase;
import org.springframework.http.ResponseEntity;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;
@RestController
@RequestMapping("/auth")
public class AuthorizationController {
private final JoinMemberUseCase joinMemberUseCase;
public AuthorizationController(JoinMemberUseCase joinMemberUseCase) {
this.joinMemberUseCase = joinMemberUseCase;
}
@PostMapping("/join")
public ResponseEntity<String> join(@RequestBody MemberJoinEntity dto) {
try {
joinMemberUseCase.join(dto.getUserid(), dto.getPw());
return ResponseEntity.ok("join success");
} catch (Exception e) {
return ResponseEntity.badRequest().body(e.getMessage());
}
}
}

16
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/StatusCheckController.java Normal file
View File

@@ -0,0 +1,16 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.web;
import org.springframework.http.ResponseEntity;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;
@RestController
@RequestMapping("/status")
public class StatusCheckController {
@GetMapping
public ResponseEntity<String> serverStatusCheck() {
return ResponseEntity.ok("ok");
}
}

44
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/in/web/ViewController.java Normal file
View File

@@ -0,0 +1,44 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.in.web;
import com.nahwasa.springsecuritybasicsettingforspringboot3.config.AdminAuthorize;
import com.nahwasa.springsecuritybasicsettingforspringboot3.config.UserAuthorize;
import org.springframework.security.core.annotation.AuthenticationPrincipal;
import org.springframework.security.core.userdetails.User;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
@Controller
@RequestMapping("/view")
public class ViewController {
@GetMapping("/login")
public String loginPage() {
return "login";
}
@GetMapping("/join")
public String joinPage() {
return "join";
}
@GetMapping("/dashboard")
public String dashboardPage(@AuthenticationPrincipal User user, Model model) {
model.addAttribute("loginId", user.getUsername());
model.addAttribute("loginRoles", user.getAuthorities());
return "dashboard";
}
@GetMapping("/setting/admin")
@AdminAuthorize
public String adminSettingPage() {
return "admin_setting";
}
@GetMapping("/setting/user")
@UserAuthorize
public String userSettingPage() {
return "user_setting";
}
}

11
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/DataJpaMemberRepository.java Normal file
View File

@@ -0,0 +1,11 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence;
import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member;
import org.springframework.data.jpa.repository.JpaRepository;
import java.util.Optional;
public interface DataJpaMemberRepository extends JpaRepository<Member, Long> {
Optional<Member> findByUserid(String userId);
}

23
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberJoinEntity.java Normal file
View File

@@ -0,0 +1,23 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence;
public class MemberJoinEntity {
private String userid;
private String pw;
public String getUserid() {
return userid;
}
public void setUserid(String userid) {
this.userid = userid;
}
public String getPw() {
return pw;
}
public void setPw(String pw) {
this.pw = pw;
}
}

42
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/adapter/out/persistence/MemberRepository.java Normal file
View File

@@ -0,0 +1,42 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.adapter.out.persistence;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberFindOutputPort;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberJoinOutputPort;
import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.stereotype.Repository;
import java.util.Optional;
@Repository
public class MemberRepository implements MemberFindOutputPort, MemberJoinOutputPort {
private final PasswordEncoder passwordEncoder;
private final DataJpaMemberRepository repository;
public MemberRepository(PasswordEncoder passwordEncoder, DataJpaMemberRepository repository) {
this.passwordEncoder = passwordEncoder;
this.repository = repository;
}
@Override
public Optional<Member> findOne(String userId) {
return repository.findByUserid(userId);
}
@Override
public Long join(String userid, String pw) {
Member member = Member.createUser(userid, pw, passwordEncoder);
validateDuplicateMember(member);
repository.save(member);
return member.getId();
}
private void validateDuplicateMember(Member member) {
repository.findByUserid(member.getUserid())
.ifPresent(m -> {
throw new IllegalStateException("이미 존재하는 회원입니다.");
});
}
}

23
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/FindMemberInputPort.java Normal file
View File

@@ -0,0 +1,23 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.in;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberFindOutputPort;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.FindOneMemberUseCase;
import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member;
import org.springframework.stereotype.Service;
import java.util.Optional;
@Service
public class FindMemberInputPort implements FindOneMemberUseCase {
private final MemberFindOutputPort memberFindOutputPort;
public FindMemberInputPort(MemberFindOutputPort memberFindOutputPort) {
this.memberFindOutputPort = memberFindOutputPort;
}
@Override
public Optional<Member> findOne(String userId) {
return memberFindOutputPort.findOne(userId);
}
}

20
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/in/RegisterMemberInputPort.java Normal file
View File

@@ -0,0 +1,20 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.in;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out.MemberJoinOutputPort;
import com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases.JoinMemberUseCase;
import org.springframework.stereotype.Service;
@Service
public class RegisterMemberInputPort implements JoinMemberUseCase {
private final MemberJoinOutputPort memberJoinOutputPort;
public RegisterMemberInputPort(MemberJoinOutputPort memberJoinOutputPort) {
this.memberJoinOutputPort = memberJoinOutputPort;
}
@Override
public void join(String userid, String pw) {
memberJoinOutputPort.join(userid, pw);
}
}

10
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberFindOutputPort.java Normal file
View File

@@ -0,0 +1,10 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out;
import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member;
import java.util.Optional;
public interface MemberFindOutputPort {
Optional<Member> findOne(String userId);
}

6
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/port/out/MemberJoinOutputPort.java Normal file
View File

@@ -0,0 +1,6 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.application.port.out;
public interface MemberJoinOutputPort {
Long join(String userid, String pw);
}

10
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/FindOneMemberUseCase.java Normal file
View File

@@ -0,0 +1,10 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases;
import com.nahwasa.springsecuritybasicsettingforspringboot3.domain.Member;
import java.util.Optional;
public interface FindOneMemberUseCase {
Optional<Member> findOne(String userId);
}

6
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/application/usecases/JoinMemberUseCase.java Normal file
View File

@@ -0,0 +1,6 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.application.usecases;
public interface JoinMemberUseCase {
void join(String userid, String pw);
}

14
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/AdminAuthorize.java Normal file
View File

@@ -0,0 +1,14 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.config;
import org.springframework.security.access.prepost.PreAuthorize;
import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;
@Target({ ElementType.METHOD, ElementType.TYPE })
@Retention(RetentionPolicy.RUNTIME)
@PreAuthorize("hasAnyRole('ADMIN')")
public @interface AdminAuthorize {
}

43
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/SpringSecurityConfig.java Normal file
View File

@@ -0,0 +1,43 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.config;
import jakarta.servlet.DispatcherType;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.web.SecurityFilterChain;
import static org.springframework.security.config.Customizer.withDefaults;
@Configuration
@EnableMethodSecurity
public class SpringSecurityConfig {
@Bean
public PasswordEncoder passwordEncoder() {
return new BCryptPasswordEncoder();
}
@Bean
public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
http.csrf().disable().cors().disable()
.authorizeHttpRequests(request -> request
.dispatcherTypeMatchers(DispatcherType.FORWARD).permitAll()
.requestMatchers("/status", "/images/**", "/view/join", "/auth/join").permitAll()
.anyRequest().authenticated()
)
.formLogin(login -> login
.loginPage("/view/login")
.loginProcessingUrl("/login-process")
.usernameParameter("userid")
.passwordParameter("pw")
.defaultSuccessUrl("/view/dashboard", true)
.permitAll()
)
.logout(withDefaults());
return http.build();
}
}

14
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/config/UserAuthorize.java Normal file
View File

@@ -0,0 +1,14 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.config;
import org.springframework.security.access.prepost.PreAuthorize;
import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;
@Target({ ElementType.METHOD, ElementType.TYPE })
@Retention(RetentionPolicy.RUNTIME)
@PreAuthorize("hasAnyRole('USER')")
public @interface UserAuthorize {
}

47
src/main/java/com/nahwasa/springsecuritybasicsettingforspringboot3/domain/Member.java Normal file
View File

@@ -0,0 +1,47 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3.domain;
import jakarta.persistence.*;
import org.springframework.security.crypto.password.PasswordEncoder;
@Entity
public class Member {
@Id
@GeneratedValue(strategy = GenerationType.IDENTITY)
private Long id;
@Column(unique = true)
private String userid;
private String pw;
private String roles;
private Member(Long id, String userid, String pw, String roleUser) {
this.id = id;
this.userid = userid;
this.pw = pw;
this.roles = roleUser;
}
protected Member() {}
public static Member createUser(String userId, String pw, PasswordEncoder passwordEncoder) {
return new Member(null, userId, passwordEncoder.encode(pw), "USER");
}
public Long getId() {
return id;
}
public String getUserid() {
return userid;
}
public String getPw() {
return pw;
}
public String getRoles() {
return roles;
}
}

10
src/main/resources/application.properties Normal file
View File

@@ -0,0 +1,10 @@
spring.mvc.view.prefix=/WEB-INF/views/
spring.mvc.view.suffix=.jsp
spring.datasource.driver-class-name=org.h2.Driver
spring.datasource.url=jdbc:h2:mem:
spring.datasource.username=sa
spring.datasource.password=
spring.sql.init.mode=always
spring.jpa.show-sql=true
spring.jpa.hibernate.ddl-auto=none

2
src/main/resources/data.sql Normal file
View File

@@ -0,0 +1,2 @@
insert into member(userid, pw, roles) values ('nahwasa', '$2a$12$jcKXsj4ZAIkGgZdnUQ6EcOduMlurEtX7Szjhr.kQp2iQXNucjZMI6', 'ADMIN');
insert into member(userid, pw, roles) values ('user', '$2a$12$jcKXsj4ZAIkGgZdnUQ6EcOduMlurEtX7Szjhr.kQp2iQXNucjZMI6', 'USER');

10
src/main/resources/schema.sql Normal file
View File

@@ -0,0 +1,10 @@
drop table if exists member CASCADE;
create table member
(
id bigint generated by default as identity,
userid varchar(255) not null,
pw varchar(255) not null,
roles varchar(255) not null,
primary key (id),
unique (userid)
);

BIN
src/main/resources/static/images/nahwasa-profile.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 103 KiB

19
src/main/webapp/WEB-INF/views/admin_setting.jsp Normal file
View File

@@ -0,0 +1,19 @@
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<!DOCTYPE html>
<html lang="ko">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<meta name="description" content="">
<meta name="author" content="">
<title>관리자 설정</title>
<link href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-/Y6pD6FV/Vv2HJnA6t+vslU6fwYXjCFtcEpHbNJ0lyAFsXTsjBbfaDjzALeQsN6M" crossorigin="anonymous">
<link href="https://getbootstrap.com/docs/4.0/examples/signin/signin.css" rel="stylesheet" crossorigin="anonymous">
</head>
<body>
<div class="container">
<h2 class="form-signin-heading text-center mb-5">관리자 설정 페이지 입니다.</h2>
</div>
</body>
</html>

39
src/main/webapp/WEB-INF/views/dashboard.jsp Normal file
View File

@@ -0,0 +1,39 @@
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<!DOCTYPE html>
<html lang="ko">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<meta name="description" content="">
<meta name="author" content="">
<title>대시보드</title>
<link href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-/Y6pD6FV/Vv2HJnA6t+vslU6fwYXjCFtcEpHbNJ0lyAFsXTsjBbfaDjzALeQsN6M" crossorigin="anonymous">
<link href="https://getbootstrap.com/docs/4.0/examples/signin/signin.css" rel="stylesheet" crossorigin="anonymous">
</head>
<body>
<div class="container">
<h3 class="form-signin-heading text-center mb-5">nahwasa.com</h3>
<h3 class="overview-normalize">접속 아이디</h3>
<p>
${loginId}
</p>
<hr/>
<h3 class="overview-normalize">역할</h3>
<p>
${loginRoles}
</p>
<hr/>
<h3 class="overview-normalize">역할에 따른 페이지 이동 권한 확인</h3>
<p>
<button onclick="location.href='/view/setting/admin'" class="btn btn-sm btn-success">관리자 설정 페이지(관리자만)</button>
<button onclick="location.href='/view/setting/user'" class="btn btn-sm btn-info">유저 설정 페이지(유저만)</button>
</p>
<hr/>
<form method="post" action="/logout">
<button class="btn btn-sm btn-danger btn-block" type="submit">로그아웃</button>
</form>
</div>
</body>
</html>

60
src/main/webapp/WEB-INF/views/join.jsp Normal file
View File

@@ -0,0 +1,60 @@
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<!DOCTYPE html>
<html lang="ko">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<meta name="description" content="">
<meta name="author" content="">
<title>회원가입</title>
<link href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-/Y6pD6FV/Vv2HJnA6t+vslU6fwYXjCFtcEpHbNJ0lyAFsXTsjBbfaDjzALeQsN6M" crossorigin="anonymous">
<link href="https://getbootstrap.com/docs/4.0/examples/signin/signin.css" rel="stylesheet" crossorigin="anonymous">
</head>
<body>
<div class="container">
<form class="form-signin" id='join_form'>
<h2 class="form-signin-heading text-center mb-5">회원가입!</h2>
<p>
<label for="username" class="sr-only">아이디</label>
<input type="text" id="username" name="userid" class="form-control" placeholder="아이디" required="" autofocus="">
</p>
<p>
<label for="password" class="sr-only">비밀번호</label>
<input type="password" id="password" name="pw" class="form-control" placeholder="비밀번호" required="">
</p>
<button class="btn btn-lg btn-primary btn-block" type="submit">회원가입</button>
</form>
<script>
const form = document.getElementById('join_form');
form.addEventListener('submit', e => {
e.preventDefault();
const data = new FormData(form);
const param = JSON.stringify(Object.fromEntries(data));
fetch('/auth/join', {
method: 'POST',
body: param,
headers: {
'Content-Type': 'application/json'
}
})
.then(response => {
debugger;
if (response.status == 200) {
window.location.href = '/view/login';
alert("회원가입 성공")
} else {
alert("회원가입 실패")
}
})
.catch(error => console.log(error))
});
</script>
</div>
</body>
</html>

38
src/main/webapp/WEB-INF/views/login.jsp Normal file
View File

@@ -0,0 +1,38 @@
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<!DOCTYPE html>
<html lang="ko">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<meta name="description" content="">
<meta name="author" content="">
<title>로그인</title>
<link href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-/Y6pD6FV/Vv2HJnA6t+vslU6fwYXjCFtcEpHbNJ0lyAFsXTsjBbfaDjzALeQsN6M" crossorigin="anonymous">
<link href="https://getbootstrap.com/docs/4.0/examples/signin/signin.css" rel="stylesheet" crossorigin="anonymous">
</head>
<body>
<div class="container">
<form class="form-signin" method="post" action="/login-process">
<p class="text-center">
<img src="/images/nahwasa-profile.png" class="img-thumbnail" style="width: 200px;" alt="이 글이 보인다면 시큐리티 설정 잘못한거임!">
</p>
<h2 class="form-signin-heading text-center mb-5">nahwasa.com</h2>
<p>
<label for="username" class="sr-only">아이디</label>
<input type="text" id="username" name="userid" class="form-control" placeholder="아이디" required="" autofocus="">
</p>
<p>
<label for="password" class="sr-only">비밀번호</label>
<input type="password" id="password" name="pw" class="form-control" placeholder="비밀번호" required="">
</p>
<button class="btn btn-lg btn-primary btn-block" type="submit">로그인</button>
</form>
<form class="form-signin" method="get" action="/view/join">
<button class="btn btn-lg btn-warning btn-block" type="submit">회원가입하기</button>
</form>
</div>
</body>
</html>

19
src/main/webapp/WEB-INF/views/user_setting.jsp Normal file
View File

@@ -0,0 +1,19 @@
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<!DOCTYPE html>
<html lang="ko">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<meta name="description" content="">
<meta name="author" content="">
<title>관리자 설정</title>
<link href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-/Y6pD6FV/Vv2HJnA6t+vslU6fwYXjCFtcEpHbNJ0lyAFsXTsjBbfaDjzALeQsN6M" crossorigin="anonymous">
<link href="https://getbootstrap.com/docs/4.0/examples/signin/signin.css" rel="stylesheet" crossorigin="anonymous">
</head>
<body>
<div class="container">
<h2 class="form-signin-heading text-center mb-5">유저 설정 페이지 입니다.</h2>
</div>
</body>
</html>

22
src/test/java/com/nahwasa/springsecuritybasicsettingforspringboot3/StatusCheckControllerTest.java Normal file
View File

@@ -0,0 +1,22 @@
package com.nahwasa.springsecuritybasicsettingforspringboot3;
import org.junit.jupiter.api.Test;
import org.springframework.boot.test.context.SpringBootTest;
import org.springframework.boot.test.web.client.TestRestTemplate;
import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import static org.assertj.core.api.Assertions.assertThat;
@SpringBootTest
class StatusCheckControllerTest {
@Test
void status_check_return_ok() {
TestRestTemplate rest = new TestRestTemplate();
ResponseEntity<String> res = rest.getForEntity("http://localhost:8080/status", String.class);
assertThat(res.getStatusCode()).isEqualTo(HttpStatus.OK);
assertThat(res.getBody()).isEqualTo("ok");
}
}