[Spring Data JPA] 한경준 미션 제출합니다.

build.gradle

@@ -15,7 +15,7 @@ repositories {
 dependencies {
     implementation 'org.springframework.boot:spring-boot-starter-web'
     implementation 'org.springframework.boot:spring-boot-starter-thymeleaf'
-    implementation 'org.springframework.boot:spring-boot-starter-jdbc'
+    implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
 
     implementation 'dev.akkinoc.spring.boot:logback-access-spring-boot-starter:4.0.0'
 

src/main/java/roomescape/auth/AdminInterceptor.java

@@ -0,0 +1,33 @@
+package roomescape.auth;
+
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.stereotype.Component;
+import org.springframework.web.servlet.HandlerInterceptor;
+import roomescape.member.Member;
+import roomescape.member.MemberRepository;
+import roomescape.member.MemberService;
+
+@Component
+public class AdminInterceptor implements HandlerInterceptor {
+    private final MemberRepository memberRepository;
+    private final MemberService memberService;
+
+    public AdminInterceptor(MemberRepository memberRepository, MemberService memberService) {
+        this.memberRepository = memberRepository;
+        this.memberService = memberService;
+    }
+
+    @Override
+    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
+        Long memberId = memberService.checkLogin(request).getId();
+        Member member = memberRepository.findById(memberId).get();
+
+        if (member == null || !member.getRole().equals("ADMIN")) {
+            response.setStatus(401);
+            return false;
+        }
+
+        return true;
+    }
+}

src/main/java/roomescape/auth/AuthController.java

@@ -0,0 +1,42 @@
+package roomescape.auth;
+
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import roomescape.member.LoginMember;
+import roomescape.member.MemberService;
+
+@Controller
+public class AuthController {
+    MemberService memberService;
+
+    public AuthController(MemberService memberService) {
+        this.memberService = memberService;
+    }
+
+    @PostMapping("/login")
+    public ResponseEntity<Void> tokenLogin(@RequestBody LoginRequest request, HttpServletResponse response) {
+
+        String accessToken = memberService.loginByEmailAndPassword(request);
+
+        Cookie cookie = new Cookie("token", accessToken);
+        cookie.setHttpOnly(true);
+        cookie.setPath("/");
+        response.addCookie(cookie);
+
+        return ResponseEntity.ok().build();
+    }
+
+    @GetMapping("/login/check")
+    public ResponseEntity<LoginMember> loginCheck(HttpServletRequest request) {
+
+        LoginMember loginMember = memberService.checkLogin(request);
+
+        return ResponseEntity.ok().body(loginMember);
+    }
+}

src/main/java/roomescape/auth/AuthWebConfiguration.java

@@ -0,0 +1,35 @@
+package roomescape.auth;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+import roomescape.member.MemberService;
+
+import java.util.List;
+
+@Configuration
+public class AuthWebConfiguration implements WebMvcConfigurer {
+
+    private final LoginMemberArgumentResolver loginMemberArgumentResolver;
+    private final AdminInterceptor adminInterceptor;
+
+    public AuthWebConfiguration(
+            LoginMemberArgumentResolver loginMemberArgumentResolver,
+            AdminInterceptor adminInterceptor
+    ) {
+        this.loginMemberArgumentResolver = loginMemberArgumentResolver;
+        this.adminInterceptor = adminInterceptor;
+    }
+
+    @Override
+    public void addArgumentResolvers(List<HandlerMethodArgumentResolver> resolvers) {
+        resolvers.add(loginMemberArgumentResolver);
+    }
+
+    @Override
+    public void addInterceptors(InterceptorRegistry registry) {
+        registry.addInterceptor(adminInterceptor)
+                .addPathPatterns("/admin");
+    }
+}

src/main/java/roomescape/auth/Authentication.java

@@ -0,0 +1,11 @@
+package roomescape.auth;
+
+import java.lang.annotation.ElementType;
+import java.lang.annotation.Retention;
+import java.lang.annotation.RetentionPolicy;
+import java.lang.annotation.Target;
+
+@Retention(RetentionPolicy.RUNTIME)
+@Target(ElementType.PARAMETER)
+public @interface Authentication {
+}

src/main/java/roomescape/auth/Extractor.java

@@ -0,0 +1,30 @@
+package roomescape.auth;
+
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.security.Keys;
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.stereotype.Component;
+
+@Component
+public class Extractor {
+
+    public String extractToken(HttpServletRequest request) {
+        Cookie[] cookies = request.getCookies();
+
+        for (Cookie cookie : cookies) {
+            if (cookie.getName().equals("token")) {
+                return cookie.getValue();
+            }
+        }
+        return "";
+    }
+
+    public Long extractId(String token) {
+        return Long.valueOf(Jwts.parserBuilder()
+                .setSigningKey(Keys.hmacShaKeyFor("Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E=".getBytes()))
+                .build()
+                .parseClaimsJws(token)
+                .getBody().getSubject());
+    }
+}

src/main/java/roomescape/auth/LoginMemberArgumentResolver.java

@@ -0,0 +1,38 @@
+package roomescape.auth;
+
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.core.MethodParameter;
+import org.springframework.stereotype.Component;
+import org.springframework.web.bind.support.WebDataBinderFactory;
+import org.springframework.web.context.request.NativeWebRequest;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.method.support.ModelAndViewContainer;
+import roomescape.member.LoginMember;
+import roomescape.member.MemberService;
+
+import java.lang.annotation.Annotation;
+
+@Component
+public class LoginMemberArgumentResolver implements HandlerMethodArgumentResolver {
+    private MemberService memberService;
+
+    public LoginMemberArgumentResolver(MemberService memberService) {
+        this.memberService = memberService;
+    }
+
+    @Override
+    public boolean supportsParameter(MethodParameter parameter) {
+        return parameter.hasParameterAnnotation(Annotation.class)
+        && parameter.getParameterType().equals(LoginMember.class);
+    }
+
+    @Override
+    public Object resolveArgument(MethodParameter parameter,
+                                  ModelAndViewContainer mavContainer,
+                                  NativeWebRequest webRequest,
+                                  WebDataBinderFactory binderFactory) throws Exception {
+
+        HttpServletRequest request = (HttpServletRequest) webRequest.getNativeRequest();
+        return memberService.checkLogin(request);
+    }
+}

src/main/java/roomescape/auth/LoginRequest.java

@@ -0,0 +1,7 @@
+package roomescape.auth;
+
+public record LoginRequest(
+        String email,
+        String password
+) {
+}

src/main/java/roomescape/auth/TokenProvider.java

@@ -0,0 +1,21 @@
+package roomescape.auth;
+
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.security.Keys;
+import org.springframework.stereotype.Component;
+import roomescape.member.Member;
+
+@Component
+public class TokenProvider {
+    private String secretKey = "Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E=";
+
+    public String createToken(Member member) {
+        String accessToken = Jwts.builder()
+                .setSubject(member.getId().toString())
+                .claim("name", member.getName())
+                .claim("role", member.getRole())
+                .signWith(Keys.hmacShaKeyFor(secretKey.getBytes()))
+                .compact();
+        return accessToken;
+    }
+}

src/main/java/roomescape/member/MemberResponse.java → src/main/java/roomescape/member/LoginMember.java

@@ -1,16 +1,20 @@
 package roomescape.member;
 
-public class MemberResponse {
+public class LoginMember {
     private Long id;
     private String name;
     private String email;
 
-    public MemberResponse(Long id, String name, String email) {
+    public LoginMember(Long id, String name, String email) {
         this.id = id;
         this.name = name;
         this.email = email;
     }
 
+    public static LoginMember from(Member member) {
+        return new LoginMember(member.getId(), member.getName(), member.getEmail());
+    }
+
     public Long getId() {
         return id;
     }

src/main/java/roomescape/member/Member.java

@@ -1,6 +1,14 @@
 package roomescape.member;
 
+import jakarta.persistence.Entity;
+import jakarta.persistence.GeneratedValue;
+import jakarta.persistence.GenerationType;
+import jakarta.persistence.Id;
+
+@Entity
 public class Member {
+    @Id
+    @GeneratedValue(strategy = GenerationType.IDENTITY)
     private Long id;
     private String name;
     private String email;
@@ -21,6 +29,10 @@ public Member(String name, String email, String password, String role) {
         this.role = role;
     }
 
+    public Member(){
+
+    }
+
     public Long getId() {
         return id;
     }

src/main/java/roomescape/member/MemberController.java

@@ -1,10 +1,8 @@
 package roomescape.member;
 
 import jakarta.servlet.http.Cookie;
-import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 import org.springframework.http.ResponseEntity;
-import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RestController;
@@ -21,7 +19,7 @@ public MemberController(MemberService memberService) {
 
     @PostMapping("/members")
     public ResponseEntity createMember(@RequestBody MemberRequest memberRequest) {
-        MemberResponse member = memberService.createMember(memberRequest);
+        LoginMember member = memberService.createMember(memberRequest);
         return ResponseEntity.created(URI.create("/members/" + member.getId())).body(member);
     }
 

src/main/java/roomescape/member/MemberRepository.java

@@ -0,0 +1,13 @@
+package roomescape.member;
+
+
+import org.springframework.data.jpa.repository.JpaRepository;
+
+import java.util.Optional;
+
+public interface MemberRepository extends JpaRepository<Member, Long> {
+    public Optional<Member> findByName(String name);
+
+    public Member findByEmailAndPassword(String email, String password);
+
+}