스프링 시큐리티 수정 (권한 설정)

Gun-taek · Gun-taek · commit bb3475ad976a · 2024-04-16T17:31:30.000+09:00
UserDto에 userType,
UserEntity 에 userType 추가
diff --git a/src/main/java/vigo/com/viewgorithm/user/auth/api/UserController.java b/src/main/java/vigo/com/viewgorithm/user/auth/api/UserController.java
@@ -19,12 +19,14 @@ public class UserController {
     // 로그인 기능
     @PostMapping("/login")
     public JwtDto signIn(@RequestBody SiginInDto signInDto) {
+
         String username = signInDto.getUserId();
         String password = signInDto.getPassword();
         JwtDto jwtDto = userService.signIn(username, password);
         log.info("request username = {}, password = {}", username, password);
         log.info("jwtDto accessToken = {}, refreshToken = {}", jwtDto.getAccessToken(), jwtDto.getRefreshToken());
         return jwtDto;
+
     }
 
     @PostMapping("/test")
diff --git a/src/main/java/vigo/com/viewgorithm/user/auth/service/CustomUserDetailsService.java b/src/main/java/vigo/com/viewgorithm/user/auth/service/CustomUserDetailsService.java
@@ -1,5 +1,4 @@
 package vigo.com.viewgorithm.user.auth.service;
-
 import lombok.RequiredArgsConstructor;
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.security.core.userdetails.UserDetailsService;
@@ -11,23 +10,19 @@
 import vigo.com.viewgorithm.user.join.domain.repository.UserRepository;
 
 import java.util.List;
-
 @Service
 @RequiredArgsConstructor
 public class CustomUserDetailsService implements UserDetailsService {
-    // 처음에 메소드를 오버라이딩 시키지 않아서 에러가 발생한다.
-
     private final UserRepository userRepository;
     private final PasswordEncoder passwordEncoder;
-
-
     // 데이터 베이스에서 특정 유저를 조회해서 리턴
     @Override
     public UserDetails loadUserByUsername(String userId) throws UsernameNotFoundException {
         return userRepository.findByUserId(userId)
                 .map(this::createUserDetails)
                 .orElseThrow(() -> new UsernameNotFoundException("해당하는 회원을 찾을 수 없습니다."));
     }
+
     // 해당하는 User 의 데이터가 존재한다면 UserDetails 객체로 만들어서 return
     private UserDetails createUserDetails(User user) {
         return User.builder()
diff --git a/src/main/java/vigo/com/viewgorithm/user/join/domain/CustomUserDetails.java b/src/main/java/vigo/com/viewgorithm/user/join/domain/CustomUserDetails.java
@@ -1,6 +1,7 @@
 package vigo.com.viewgorithm.user.join.domain;
 
 import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
 import org.springframework.security.core.userdetails.UserDetails;
 
 import java.util.ArrayList;
@@ -9,24 +10,27 @@
 public class CustomUserDetails implements UserDetails {
 
     private final User userEntity;
-
+    // 생성자
     public CustomUserDetails(User userEntity) {
         this.userEntity = userEntity;
     }
+    // getAuthorities = 사용자 권한 반환하는 인터페이스 함수
 
     @Override
     public Collection<? extends GrantedAuthority> getAuthorities() {
-        Collection<GrantedAuthority> collection = new ArrayList<>();
-
-        collection.add(new GrantedAuthority() {
-            @Override
-            public String getAuthority() {
-                return userEntity.getName();
-            }
-        });
+        Collection<GrantedAuthority> authorities = new ArrayList<>();
+        // ArrayList 를 사용하여 권한을 저장하는 collection
 
-
-        return null;
+        // 사용자 권한 설정
+        switch (userEntity.getUserType()) {
+            case "user":
+                authorities.add(new SimpleGrantedAuthority("ROLE_USER"));
+                break;
+            case "admin":
+                authorities.add(new SimpleGrantedAuthority("ROLE_ADMIN"));
+                break;
+        }
+        return authorities;
     }
 
     @Override
diff --git a/src/main/java/vigo/com/viewgorithm/user/join/domain/User.java b/src/main/java/vigo/com/viewgorithm/user/join/domain/User.java
@@ -40,6 +40,10 @@ public class User implements UserDetails {
     @Temporal(TemporalType.TIMESTAMP)
     private Date createdAt;
 
+    @Column(name="user_type")
+    private String userType;
+
+
 //    @Enumerated(EnumType.STRING)
 //    private Authority authority;
 
diff --git a/src/main/resources/data.sql b/src/main/resources/data.sql
@@ -10,8 +10,8 @@ insert into algorithm_category (algorithm_name, category_name)
 values ("Quick", "Sort");
 
 -- 로그인 Test (유저 아이디 insert문)
-insert into user (birth,created_at ,email,name,password,sex,user_id)
-values("1999-08-06",now(),"kuntek1953@naver.com", "이건택", "1111", "M", "kuntek1953");
+insert into user (birth,created_at ,email,name,password,sex,user_id, user_type)
+values("1999-08-06",now(),"kuntek1953@naver.com", "이건택", "1111", "M", "kuntek1953", "user");
 
 
 
