Spring-Board-Toy3
diff --git a/‎build.gradle
+5-1 b/‎build.gradle
+5-1
diff --git a/‎module-board/src/main/java/com/boardapplication/BoardapplicationApplication.java
-16 b/‎module-board/src/main/java/com/boardapplication/BoardapplicationApplication.java
-16
diff --git a/‎module-board/src/main/java/com/boardapplication/configuration/AppConfig.java
+13 b/‎module-board/src/main/java/com/boardapplication/configuration/AppConfig.java
+13
diff --git a/‎module-board/src/main/java/com/boardapplication/configuration/JoinValidator.java
+31 b/‎module-board/src/main/java/com/boardapplication/configuration/JoinValidator.java
+31
diff --git a/‎module-board/src/main/java/com/boardapplication/configuration/SecurityConfig.java
+48 b/‎module-board/src/main/java/com/boardapplication/configuration/SecurityConfig.java
+48
diff --git a/‎module-board/src/main/java/com/boardapplication/controller/UserController.java
+79-3 b/‎module-board/src/main/java/com/boardapplication/controller/UserController.java
+79-3
diff --git a/‎module-board/src/main/java/com/boardapplication/dto/JoinDTO.java
+48 b/‎module-board/src/main/java/com/boardapplication/dto/JoinDTO.java
+48
diff --git a/‎module-board/src/main/java/com/boardapplication/dto/UserSessionDTO.java
+53 b/‎module-board/src/main/java/com/boardapplication/dto/UserSessionDTO.java
+53
diff --git a/‎module-board/src/main/java/com/boardapplication/repository/UserRepository.java
+2 b/‎module-board/src/main/java/com/boardapplication/repository/UserRepository.java
+2
diff --git a/‎module-board/src/main/java/com/boardapplication/service/LoginService.java
+30 b/‎module-board/src/main/java/com/boardapplication/service/LoginService.java
+30
@@ -83,7 +83,11 @@ project(':module-board') {
         implementation 'org.thymeleaf.extras:thymeleaf-extras-springsecurity5'
 
         testImplementation 'org.springframework.security:spring-security-test'
+
+        developmentOnly 'org.springframework.boot:spring-boot-devtools'
+        implementation 'org.modelmapper:modelmapper:3.1.1'
+
+
     }
 }
 
-
 
@@ -0,0 +1,13 @@
+package com.boardapplication.configuration;
+
+import org.modelmapper.ModelMapper;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+@Configuration
+public class AppConfig {
+    @Bean
+    public ModelMapper modelMapper() {
+        return new ModelMapper();
+    }
+}
@@ -0,0 +1,31 @@
+package com.boardapplication.configuration;
+
+import com.boardapplication.dto.JoinDTO;
+import com.boardapplication.repository.UserRepository;
+import lombok.RequiredArgsConstructor;
+import org.springframework.stereotype.Component;
+import org.springframework.validation.Errors;
+import org.springframework.validation.Validator;
+
+@Component
+@RequiredArgsConstructor
+public class JoinValidator implements Validator {
+
+    private final UserRepository userRepository;
+
+    @Override
+    public boolean supports(Class<?> clazz) {
+        return clazz.isAssignableFrom(JoinDTO.class);
+    }
+
+    @Override
+    public void validate(Object obj, Errors errors) {
+        JoinDTO joinDTO = (JoinDTO) obj;
+        if (userRepository.existsByUsername(joinDTO.getUsername())) {
+            errors.rejectValue("username", "invalid.username",
+                    new Object[]{joinDTO.getUsername()}, "이미 사용중인 아이디입니다.");
+        }
+    }
+}
+
+
@@ -0,0 +1,48 @@
+package com.boardapplication.configuration;
+
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.security.web.SecurityFilterChain;
+
+@RequiredArgsConstructor
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig {
+    private final UserDetailsService userDetailsService;
+
+    @Bean
+    public PasswordEncoder passwordEncoder() {
+        return new BCryptPasswordEncoder();
+    }
+
+    @Bean
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+        return http.csrf().disable()
+                .authorizeRequests()
+                .mvcMatchers("/", "/test", "/login", "/join", "/profile").permitAll()
+                /*
+                .mvcMatchers("/login").not().fullyAuthenticated() //
+                .mvcMatchers("/user/**").authenticated()
+                .mvcMatchers(HttpMethod.GET, "/user/{username}").authenticated()
+                .mvcMatchers("/board/{username}").authenticated() //.access("hasRole('')")
+
+                 */
+                .anyRequest().authenticated()
+                .and()
+                .formLogin()
+                .usernameParameter("username")
+                .passwordParameter("password")
+                .loginProcessingUrl("/login")
+                .defaultSuccessUrl("/")
+                .and()
+                .logout().logoutSuccessUrl("/")
+                .and().build();
+    }
+}
+
@@ -1,12 +1,88 @@
 package com.boardapplication.controller;
 
+import com.boardapplication.configuration.JoinValidator;
+import com.boardapplication.dto.JoinDTO;
+import com.boardapplication.repository.UserRepository;
+import com.boardapplication.service.UserService;
+import com.core.entity.User;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.core.Authentication;
 import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.validation.Errors;
+import org.springframework.web.bind.WebDataBinder;
 import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.InitBinder;
+import org.springframework.web.bind.annotation.PostMapping;
+
+import javax.validation.Valid;
 
 @Controller
+@RequiredArgsConstructor
 public class UserController {
-    @GetMapping
-    public String index() {
-        return "test";
+
+    private final JoinValidator joinValidator;
+    private final UserService userService;
+    private final UserRepository userRepository;
+
+    @InitBinder("joinDTO")
+    public void initBinder(WebDataBinder webDataBinder) {
+        webDataBinder.addValidators(joinValidator);
+    }
+
+    @GetMapping("/")
+    public String index(Authentication authentication) {
+
+        if (authentication != null && authentication.isAuthenticated()) {
+            return "redirect:/profile";
+        } else {
+            return "/login";
+        }
+
+    }
+
+
+    @GetMapping("/login")
+    public String login(){
+        return "login";
+    }
+
+
+    @GetMapping("/join")
+    public String join(Model model) {
+        model.addAttribute("joinDTO", new JoinDTO());
+        return "/join";
     }
+
+
+
+    @PostMapping("/join")
+    public String joinDTO(@Valid JoinDTO joinDTO, Errors errors) {
+        if (errors.hasErrors()) {
+            return "/join";
+        }
+        User user = userService.processNewUser(joinDTO);
+
+        return "/";
+    }
+
+    /*
+    @GetMapping("/checkusername")
+    public ResponseEntity<String> checkUsername(@RequestParam String username) {
+        if (userRepository.existsByUsername(username)) {
+            return ResponseEntity.ok("이미 사용중인 아이디입니다.");
+        } else {
+            return ResponseEntity.ok("사용 가능한 아이디입니다.");
+        }
+    }
+
+     */
+
+
+    @GetMapping("/profile")
+    public String profile() {
+        return "profile";
+    }
+
+
 }
@@ -0,0 +1,48 @@
+package com.boardapplication.dto;
+
+import com.core.entity.User;
+import com.core.entity.Role;
+
+import lombok.Data;
+import org.hibernate.validator.constraints.Length;
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+import javax.validation.constraints.NotEmpty;
+import javax.validation.constraints.Pattern;
+
+@Data
+public class JoinDTO {
+    @NotEmpty
+    @Length(min = 3, max = 20)
+    @Pattern(regexp = "^[a-zA-Z0-9]{3,20}$")
+    private String username;
+
+    @NotEmpty
+    @Length(min = 8, max = 60)
+    private String password;
+
+    @NotEmpty
+    @Pattern(regexp = "^[\\w._%+-]+@[\\w.-]+\\.[a-zA-Z]{2,}$")
+    private String email;
+
+    @NotEmpty
+    @Length(min = 3, max = 20)
+    @Pattern(regexp = "^[a-zA-Z가-힣]{3,20}$")
+    private String nickname;
+
+    public User toEntity(PasswordEncoder passwordEncoder) {
+        User user = new User();
+        user.setUsername(username);
+        user.setEmail(email);
+        user.setNickname(nickname);
+        user.setRole(Role.NORMAL);
+
+        if (password != null) {
+            String enPassword = passwordEncoder.encode(password);
+            user.setPassword(enPassword);
+        }
+
+        return user;
+    }
+
+}
@@ -0,0 +1,53 @@
+package com.boardapplication.dto;
+
+import com.core.entity.User;
+import lombok.Getter;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.UserDetails;
+
+import java.util.ArrayList;
+import java.util.Collection;
+
+@Getter
+@RequiredArgsConstructor
+public class UserSessionDTO implements UserDetails {
+    private final User user;
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        Collection<GrantedAuthority> authorities = new ArrayList<>();
+        authorities.add(()-> String.valueOf(user.getRole()));
+        return authorities;
+    }
+
+    @Override
+    public String getPassword() {
+        return user.getPassword();
+    }
+
+    @Override
+    public String getUsername() {
+        return user.getUsername();
+    }
+
+    @Override
+    public boolean isAccountNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isAccountNonLocked() {
+        return true;
+    }
+
+    @Override
+    public boolean isCredentialsNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isEnabled() {
+        return true;
+    }
+}
@@ -4,4 +4,6 @@
 import org.springframework.data.jpa.repository.JpaRepository;
 
 public interface UserRepository extends JpaRepository<User, Long> {
+    boolean existsByUsername(String username);
+    User findByUsername(String username);
 }
@@ -0,0 +1,30 @@
+package com.boardapplication.service;
+
+import com.boardapplication.dto.UserSessionDTO;
+import com.boardapplication.repository.UserRepository;
+import com.core.entity.User;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
+
+import javax.servlet.http.HttpSession;
+
+@RequiredArgsConstructor
+@Service
+public class LoginService implements UserDetailsService {
+    private final UserRepository userRepository;
+    private final HttpSession session;
+
+    @Override
+    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
+        User user = userRepository.findByUsername(username);
+
+        if (user == null) {
+            throw new UsernameNotFoundException(username);
+        }
+        session.setAttribute("username", username);
+        return new UserSessionDTO(user);
+    }
+}
Original file line number	Diff line number	Diff line change
`@@ -83,7 +83,11 @@ project(':module-board') {`
`83`	`83`	`implementation 'org.thymeleaf.extras:thymeleaf-extras-springsecurity5'`
`84`	`84`
`85`	`85`	`testImplementation 'org.springframework.security:spring-security-test'`
	`86`	`+`
	`87`	`+ developmentOnly 'org.springframework.boot:spring-boot-devtools'`
	`88`	`+ implementation 'org.modelmapper:modelmapper:3.1.1'`
	`89`	`+`
	`90`	`+`
`86`	`91`	`}`
`87`	`92`	`}`
`88`	`93`
`89`		`-`
Original file line number	Diff line number	Diff line change
`@@ -4,4 +4,6 @@`
`4`	`4`	`import org.springframework.data.jpa.repository.JpaRepository;`
`5`	`5`
`6`	`6`	`public interface UserRepository extends JpaRepository<User, Long> {`
	`7`	`+ boolean existsByUsername(String username);`
	`8`	`+ User findByUsername(String username);`
`7`	`9`	`}`