관리자 기능 백엔드 구현

backend/build.gradle

@@ -56,6 +56,8 @@ dependencies {
 
  implementation 'org.flywaydb:flyway-core'
  implementation 'org.flywaydb:flyway-mysql'
+
+ implementation group: 'org.mindrot', name: 'jbcrypt', version: '0.3m'
 }
 
 test {

backend/src/main/java/hanglog/admin/AdminLoginArgumentResolver.java

@@ -0,0 +1,87 @@
+package hanglog.admin;
+
+import static hanglog.admin.domain.type.AdminType.MASTER;
+import static hanglog.global.exception.ExceptionCode.INVALID_REQUEST;
+import static hanglog.global.exception.ExceptionCode.NOT_FOUND_REFRESH_TOKEN;
+import static org.springframework.http.HttpHeaders.AUTHORIZATION;
+
+import hanglog.admin.domain.repository.AdminMemberRepository;
+import hanglog.auth.AdminAuth;
+import hanglog.auth.domain.Accessor;
+import hanglog.global.exception.BadRequestException;
+import hanglog.global.exception.RefreshTokenException;
+import hanglog.login.domain.MemberTokens;
+import hanglog.login.domain.repository.RefreshTokenRepository;
+import hanglog.login.infrastructure.BearerAuthorizationExtractor;
+import hanglog.login.infrastructure.JwtProvider;
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import java.util.Arrays;
+import lombok.RequiredArgsConstructor;
+import org.springframework.core.MethodParameter;
+import org.springframework.stereotype.Component;
+import org.springframework.web.bind.support.WebDataBinderFactory;
+import org.springframework.web.context.request.NativeWebRequest;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.method.support.ModelAndViewContainer;
+
+@RequiredArgsConstructor
+@Component
+public class AdminLoginArgumentResolver implements HandlerMethodArgumentResolver {
+
+ private static final String REFRESH_TOKEN = "refresh-token";
+
+ private final JwtProvider jwtProvider;
+
+ private final BearerAuthorizationExtractor extractor;
+
+ private final RefreshTokenRepository refreshTokenRepository;
+
+ private final AdminMemberRepository adminMemberRepository;
+
+ @Override
+ public boolean supportsParameter(final MethodParameter parameter) {
+ return parameter.withContainingClass(Long.class)
+ .hasParameterAnnotation(AdminAuth.class);
+ }
+
+ @Override
+ public Accessor resolveArgument(
+ final MethodParameter parameter,
+ final ModelAndViewContainer mavContainer,
+ final NativeWebRequest webRequest,
+ final WebDataBinderFactory binderFactory
+ ) {
+ final HttpServletRequest request = webRequest.getNativeRequest(HttpServletRequest.class);
+ if (request == null) {
+ throw new BadRequestException(INVALID_REQUEST);
+ }
+
+ final String refreshToken = extractRefreshToken(request.getCookies());
+ final String accessToken = extractor.extractAccessToken(webRequest.getHeader(AUTHORIZATION));
+ jwtProvider.validateTokens(new MemberTokens(refreshToken, accessToken));
+
+ final Long memberId = Long.valueOf(jwtProvider.getSubject(accessToken));
+
+ if (adminMemberRepository.existsByIdAndAdminType(memberId, MASTER)) {
+ return Accessor.master(memberId);
+ }
+ return Accessor.admin(memberId);
+ }
+
+ private String extractRefreshToken(final Cookie... cookies) {
+ if (cookies == null) {
+ throw new RefreshTokenException(NOT_FOUND_REFRESH_TOKEN);
+ }
+ return Arrays.stream(cookies)
+ .filter(this::isValidRefreshToken)
+ .findFirst()
+ .orElseThrow(() -> new RefreshTokenException(NOT_FOUND_REFRESH_TOKEN))
+ .getValue();
+ }
+
+ private boolean isValidRefreshToken(final Cookie cookie) {
+ return REFRESH_TOKEN.equals(cookie.getName()) &&
+ refreshTokenRepository.existsById(cookie.getValue());
+ }
+}

backend/src/main/java/hanglog/admin/AdminLoginResolverConfig.java

@@ -0,0 +1,19 @@
+package hanglog.admin;
+
+import java.util.List;
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+@RequiredArgsConstructor
+public class AdminLoginResolverConfig implements WebMvcConfigurer {
+
+ private final AdminLoginArgumentResolver adminLoginArgumentResolver;
+
+ @Override
+ public void addArgumentResolvers(final List<HandlerMethodArgumentResolver> resolvers) {
+ resolvers.add(adminLoginArgumentResolver);
+ }
+}

backend/src/main/java/hanglog/admin/SecurityConfig.java

@@ -0,0 +1,14 @@
+package hanglog.admin;
+
+import hanglog.admin.infrastructure.BCryptPasswordEncoder;
+import hanglog.admin.infrastructure.PasswordEncoder;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+@Configuration
+public class SecurityConfig {
+ @Bean
+ public PasswordEncoder passwordEncoder() {
+ return new BCryptPasswordEncoder();
+ }
+}

backend/src/main/java/hanglog/admin/domain/AdminMember.java

@@ -0,0 +1,70 @@
+package hanglog.admin.domain;
+
+import static jakarta.persistence.EnumType.STRING;
+import static jakarta.persistence.GenerationType.IDENTITY;
+import static lombok.AccessLevel.PROTECTED;
+
+import hanglog.admin.domain.type.AdminType;
+import hanglog.member.domain.MemberState;
+import jakarta.persistence.Column;
+import jakarta.persistence.Entity;
+import jakarta.persistence.Enumerated;
+import jakarta.persistence.GeneratedValue;
+import jakarta.persistence.Id;
+import java.time.LocalDateTime;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+import org.hibernate.annotations.SQLDelete;
+import org.hibernate.annotations.Where;
+import org.springframework.data.annotation.CreatedDate;
+import org.springframework.data.annotation.LastModifiedDate;
+
+@Entity
+@Getter
+@NoArgsConstructor(access = PROTECTED)
+@SQLDelete(sql = "UPDATE admin_member SET status = 'DELETED' WHERE id = ?")
+@Where(clause = "status = 'ACTIVE'")
+public class AdminMember {
+
+ @Id
+ @GeneratedValue(strategy = IDENTITY)
+ private Long id;
+
+ @Column(nullable = false, unique = true, length = 20)
+ private String userName;
+
+ @Column(nullable = false, length = 64)
+ private String password;
+
+ @Column(nullable = false)
+ private LocalDateTime lastLoginDate;
+
+ @Column(nullable = false)
+ @Enumerated(value = STRING)
+ private AdminType adminType;
+
+ @Enumerated(value = STRING)
+ private MemberState status;
+
+ @CreatedDate
+ @Column(updatable = false)
+ private LocalDateTime createdAt;
+
+ @LastModifiedDate
+ private LocalDateTime modifiedAt;
+
+ public AdminMember(final Long id, final String userName, final String password, final AdminType adminType) {
+ this.id = id;
+ this.userName = userName;
+ this.password = password;
+ this.lastLoginDate = LocalDateTime.now();
+ this.adminType = adminType;
+ this.status = MemberState.ACTIVE;
+ this.createdAt = LocalDateTime.now();
+ this.modifiedAt = LocalDateTime.now();
+ }
+
+ public AdminMember(final String userName, final String password, final AdminType adminType) {
+ this(null, userName, password, adminType);
+ }
+}

backend/src/main/java/hanglog/admin/domain/repository/AdminMemberRepository.java

@@ -0,0 +1,15 @@
+package hanglog.admin.domain.repository;
+
+import hanglog.admin.domain.AdminMember;
+import hanglog.admin.domain.type.AdminType;
+import java.util.Optional;
+import org.springframework.data.jpa.repository.JpaRepository;
+
+public interface AdminMemberRepository extends JpaRepository<AdminMember, Long> {
+
+ Optional<AdminMember> findByUserName(String userName);
+
+ Boolean existsByIdAndAdminType(Long id, AdminType adminType);
+
+ Boolean existsByUserName(String userName);
+}

backend/src/main/java/hanglog/admin/domain/type/AdminType.java

@@ -0,0 +1,17 @@
+package hanglog.admin.domain.type;
+
+import static hanglog.global.exception.ExceptionCode.NULL_ADMIN_AUTHORITY;
+
+import hanglog.global.exception.AdminException;
+import java.util.Arrays;
+
+public enum AdminType {
+ ADMIN, MASTER;
+
+ public static AdminType getMappedAdminType(final String adminType) {
+ return Arrays.stream(values())
+ .filter(value -> value.name().toUpperCase().equals(adminType))
+ .findAny()
+ .orElseThrow(() -> new AdminException(NULL_ADMIN_AUTHORITY));
+ }
+}

backend/src/main/java/hanglog/admin/dto/request/AdminLoginRequest.java

@@ -0,0 +1,23 @@
+package hanglog.admin.dto.request;
+
+import static lombok.AccessLevel.PRIVATE;
+
+import jakarta.validation.constraints.NotNull;
+import jakarta.validation.constraints.Size;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@Getter
+@AllArgsConstructor
+@NoArgsConstructor(access = PRIVATE)
+public class AdminLoginRequest {
+
+ @NotNull(message = "사용자 이름을 입력해주세요.")
+ @Size(max = 20, message = "사용자 이름은 20자를 초과할 수 없습니다.")
+ private String userName;
+
+ @NotNull(message = "비밀번호를 입력해주세요.")
+ @Size(min = 4, max = 20, message = "비밀번호는 4자 이상, 20자 이하여야 합니다.")
+ private String password;
+}

backend/src/main/java/hanglog/admin/dto/request/AdminMemberCreateRequest.java

@@ -0,0 +1,27 @@
+package hanglog.admin.dto.request;
+
+
+import static lombok.AccessLevel.PRIVATE;
+
+import jakarta.validation.constraints.NotNull;
+import jakarta.validation.constraints.Size;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@Getter
+@AllArgsConstructor
+@NoArgsConstructor(access = PRIVATE)
+public class AdminMemberCreateRequest {
+
+ @NotNull(message = "사용자 이름을 입력해주세요.")
+ @Size(max = 20, message = "사용자 이름은 20자를 초과할 수 없습니다.")
+ private String userName;
+
+ @NotNull(message = "비밀번호를 입력해주세요.")
+ @Size(min = 4, max = 20, message = "비밀번호는 4자 이상, 20자 이하여야 합니다.")
+ private String password;
+
+ @NotNull(message = "관리자 권한을 선택해 주세요.")
+ private String adminType;
+}

backend/src/main/java/hanglog/admin/dto/request/PasswordUpdateRequest.java

@@ -0,0 +1,24 @@
+package hanglog.admin.dto.request;
+
+
+import static lombok.AccessLevel.PRIVATE;
+
+import jakarta.validation.constraints.NotNull;
+import jakarta.validation.constraints.Size;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@Getter
+@AllArgsConstructor
+@NoArgsConstructor(access = PRIVATE)
+public class PasswordUpdateRequest {
+
+ @NotNull(message = "기존 비밀번호를 입력해주세요.")
+ @Size(min = 4, max = 20, message = "비밀번호는 4자 이상, 20자 이하여야 합니다.")
+ private String currentPassword;
+
+ @NotNull(message = "새로운 비밀번호를 입력해주세요.")
+ @Size(min = 4, max = 20, message = "비밀번호는 4자 이상, 20자 이하여야 합니다.")
+ private String newPassword;
+}

backend/src/main/java/hanglog/admin/dto/response/AdminMemberResponse.java

@@ -0,0 +1,22 @@
+package hanglog.admin.dto.response;
+
+import hanglog.admin.domain.AdminMember;
+import lombok.Getter;
+import lombok.RequiredArgsConstructor;
+
+@Getter
+@RequiredArgsConstructor
+public class AdminMemberResponse {
+
+ private final Long id;
+ private final String userName;
+ private final String adminType;
+
+ public static AdminMemberResponse from(final AdminMember adminMember) {
+ return new AdminMemberResponse(
+ adminMember.getId(),
+ adminMember.getUserName(),
+ adminMember.getAdminType().name()
+ );
+ }
+}

backend/src/main/java/hanglog/admin/infrastructure/BCryptPasswordEncoder.java

@@ -0,0 +1,15 @@
+package hanglog.admin.infrastructure;
+
+import org.mindrot.jbcrypt.BCrypt;
+
+public class BCryptPasswordEncoder implements PasswordEncoder {
+ @Override
+ public String encode(final String password) {
+ return BCrypt.hashpw(password, BCrypt.gensalt());
+ }
+
+ @Override
+ public boolean matches(final String password, final String hashed) {
+ return BCrypt.checkpw(password, hashed);
+ }
+}

backend/src/main/java/hanglog/admin/infrastructure/PasswordEncoder.java

@@ -0,0 +1,7 @@
+package hanglog.admin.infrastructure;
+
+public interface PasswordEncoder {
+ String encode(String password);
+
+ boolean matches(String password, String hashed);
+}