[피오 & 노리] 웹서버 4단계 - 쿠키를 이용한 로그인 구현

src/main/java/db/SessionDataBase.java

@@ -0,0 +1,17 @@
+package db;
+
+import java.util.HashMap;
+import java.util.Map;
+
+public class SessionDataBase {
+
+    private static final Map<String, String> SESSIONS = new HashMap<>();
+
+    public static void save(String sessionId, String userId) {
+        SESSIONS.put(sessionId, userId);
+    }
+
+    public static void remove(String sessionId) {
+        SESSIONS.remove(sessionId);
+    }
+}

src/main/java/webserver/HttpRequest.java

@@ -22,8 +22,7 @@ public HttpRequest(BufferedReader br) throws IOException {
 
     private void init() throws IOException {
         String requestLine = URLDecoder.decode(br.readLine(), StandardCharsets.UTF_8);
-        String[] requestLineSplit = requestLine.split(" ");
-        this.requestLine = new RequestLine(requestLineSplit[0], requestLineSplit[1], requestLineSplit[2]);
+        this.requestLine = new RequestLine(requestLine);
         this.headers = IOUtils.readRequestHeader(br);
         this.parameters = parseParameter();
     }
@@ -48,4 +47,7 @@ public String getParameter(String key) {
         return parameters.get(key);
     }
 
+    public String getHeader(String header) {
+        return headers.get(header);
+    }
 }

src/main/java/webserver/HttpResponse.java

@@ -19,10 +19,32 @@ public HttpResponse(OutputStream out) {
     }
 
 
-    public void response302Header() {
+    public void response302WithExpiredCookieHeader(String path, String cookie) {
         try {
             dos.writeBytes("HTTP/1.1 302 FOUND \r\n");
-            dos.writeBytes("Location: http://localhost:8080/index.html\r\n");
+            dos.writeBytes("Location: http://localhost:8080" + path + "\r\n");
+            dos.writeBytes("Set-Cookie: sessionId=" + cookie + "; Max-Age=-1;  path=/");
+            dos.writeBytes("\r\n");
+        } catch (IOException e) {
+            log.error(e.getMessage());
+        }
+    }
+
+    public void response302WithCookieHeader(String path, String cookie) {
+        try {
+            dos.writeBytes("HTTP/1.1 302 FOUND \r\n");
+            dos.writeBytes("Location: http://localhost:8080" + path + "\r\n");
+            dos.writeBytes("Set-Cookie: sessionId=" + cookie + "; path=/");
+            dos.writeBytes("\r\n");
+        } catch (IOException e) {
+            log.error(e.getMessage());
+        }
+    }
+
+    public void response302Header(String path) {
+        try {
+            dos.writeBytes("HTTP/1.1 302 FOUND \r\n");
+            dos.writeBytes("Location: http://localhost:8080" + path + "\r\n");
             dos.writeBytes("\r\n");
         } catch (IOException e) {
             log.error(e.getMessage());

src/main/java/webserver/RequestHandler.java

@@ -1,16 +1,20 @@
 package webserver;
 
 import db.DataBase;
+import db.SessionDataBase;
 import java.io.BufferedReader;
 import java.io.IOException;
 import java.io.InputStream;
 import java.io.InputStreamReader;
 import java.io.OutputStream;
 import java.net.Socket;
 import java.nio.charset.StandardCharsets;
+import java.util.Map;
+import java.util.UUID;
 import model.User;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
+import util.HttpRequestUtils;
 
 public class RequestHandler extends Thread {
 
@@ -32,21 +36,57 @@ public void run() {
                 new InputStreamReader(in, StandardCharsets.UTF_8));
 
             HttpRequest httpRequest = new HttpRequest(br);
+            HttpResponse httpResponse = new HttpResponse(out);
 
-            if (httpRequest.getPath().contains("/user/create")) {
+            if (httpRequest.getPath().equals("/user/create")) {
                 User user = new User(
                     httpRequest.getParameter("userId"),
                     httpRequest.getParameter("password"),
                     httpRequest.getParameter("name"),
                     httpRequest.getParameter("email")
                 );
-                DataBase.addUser(user);
-                HttpResponse httpResponse = new HttpResponse(out);
-                httpResponse.response302Header();
+
+                try {
+                    DataBase.addUser(user);
+                    httpResponse.response302Header("/index.html");
+                } catch (IllegalArgumentException e) {
+                    log.debug("exception: {}", e.getMessage());
+                    httpResponse.response302Header("/user/form.html");
+                }
+                return;
+            }
+
+            if (httpRequest.getPath().equals("/user/login")) {
+                User user = DataBase.findUserById(httpRequest.getParameter("userId"));
+                if (user == null) {
+                    httpResponse.response302Header("/user/login_failed.html");
+                    return;
+                }
+                if (!user.getPassword().equals(httpRequest.getParameter("password"))) {
+                    httpResponse.response302Header("/user/login_failed.html");
+                    return;
+                }
+                String sessionId = UUID.randomUUID().toString();
+                log.debug("return cookie: {}", sessionId);
+                SessionDataBase.save(sessionId, user.getUserId());
+                httpResponse.response302WithCookieHeader("/index.html", sessionId);
+                return;
+            }
+
+            if (httpRequest.getPath().equals("/user/logout")) {
+                Map<String, String> cookies = HttpRequestUtils.parseCookies(
+                    httpRequest.getHeader("Cookie"));
+                String sessionId = cookies.get("sessionId");
+                log.debug("sessionId = {}", sessionId);
+                if (sessionId == null) {
+                    httpResponse.response302Header("/index.html");
+                    return;
+                }
+                httpResponse.response302WithExpiredCookieHeader("/index.html", sessionId);
+                SessionDataBase.remove(sessionId);
                 return;
             }
 
-            HttpResponse httpResponse = new HttpResponse(out);
             httpResponse.writeBody(httpRequest.getPath());
             httpResponse.response200Header();
             httpResponse.responseBody();

src/main/java/webserver/RequestLine.java

@@ -10,10 +10,11 @@ public class RequestLine {
     private String path;
     private String httpVersion;
 
-    public RequestLine(String httpMethod, String path, String httpVersion) {
-        this.httpMethod = httpMethod;
-        this.path = path;
-        this.httpVersion = httpVersion;
+    public RequestLine(String requestLine) {
+        String[] requestLineSplit = requestLine.split(" ");
+        this.httpMethod = requestLineSplit[0];
+        this.path = requestLineSplit[1];
+        this.httpVersion = requestLineSplit[2];
     }
 
     public String getPath() {

webapp/index.html

@@ -71,7 +71,7 @@
                 <li><a href="#loginModal" role="button" data-toggle="modal">로그인</a></li>
                 <li><a href="#registerModal" role="button" data-toggle="modal">회원가입</a></li>
                 -->
-                <li><a href="#" role="button">로그아웃</a></li>
+                <li><a href="/user/logout" role="button">로그아웃</a></li>
                 <li><a href="#" role="button">개인정보수정</a></li>
             </ul>
         </div>
@@ -145,4 +145,4 @@
 <script src="js/bootstrap.min.js"></script>
 <script src="js/scripts.js"></script>
 	</body>
-</html>
+</html>