Add EHCache

Add JWT  Authentication

pom.xml

@@ -1,107 +1 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
-	<modelVersion>4.0.0</modelVersion>
-	<parent>
-		<groupId>org.springframework.boot</groupId>
-		<artifactId>spring-boot-starter-parent</artifactId>
-		<version>2.1.6.RELEASE</version>
-		<relativePath/> <!-- lookup parent from repository -->
-	</parent>
-	<groupId>com.example</groupId>
-	<artifactId>demobook</artifactId>
-	<version>0.0.1-SNAPSHOT</version>
-	<name>demobook</name>
-	<description>Demo project for Spring Boot</description>
-
-	<properties>
-		<java.version>1.8</java.version>
-	</properties>
-
-	<dependencies>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter</artifactId>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-thymeleaf</artifactId>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-data-jpa</artifactId>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-web</artifactId>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-security</artifactId>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-thymeleaf</artifactId>
-		</dependency>
-		<!-- https://mvnrepository.com/artifact/org.springframework.osgi/spring-osgi-core -->
-		<dependency>
-			<groupId>org.springframework.osgi</groupId>
-			<artifactId>spring-osgi-core</artifactId>
-			<version>1.2.1</version>
-		</dependency>
-		<!--webjar-->
-		<dependency>
-			<groupId>org.webjars</groupId>
-			<artifactId>bootstrap</artifactId>
-			<version>4.0.0</version>
-		</dependency>
-		<dependency>
-			<groupId>org.webjars</groupId>
-			<artifactId>jquery</artifactId>
-			<version>3.3.1</version>
-		</dependency>
-		<dependency>
-			<groupId>org.webjars</groupId>
-			<artifactId>webjars-locator</artifactId>
-			<version>0.33</version>
-		</dependency>
-		<dependency>
-			<groupId>org.webjars</groupId>
-			<artifactId>datatables</artifactId>
-			<version>1.10.19</version>
-		</dependency>
-		<!-- h2 database -->
-		<dependency>
-			<groupId>com.h2database</groupId>
-			<artifactId>h2</artifactId>
-			<scope>runtime</scope>
-		</dependency>
-		<dependency>
-			<groupId>org.modelmapper</groupId>
-			<artifactId>modelmapper</artifactId>
-			<version>2.3.0</version>
-		</dependency>
-
-
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-test</artifactId>
-			<scope>test</scope>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.security</groupId>
-			<artifactId>spring-security-test</artifactId>
-			<scope>test</scope>
-		</dependency>
-	</dependencies>
-
-	<build>
-		<plugins>
-			<plugin>
-				<groupId>org.springframework.boot</groupId>
-				<artifactId>spring-boot-maven-plugin</artifactId>
-			</plugin>
-		</plugins>
-	</build>
-
-</project>
+<?xml version="1.0" encoding="UTF-8"?><project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">	<modelVersion>4.0.0</modelVersion>	<parent>		<groupId>org.springframework.boot</groupId>		<artifactId>spring-boot-starter-parent</artifactId>		<version>2.1.6.RELEASE</version>		<relativePath/> <!-- lookup parent from repository -->	</parent>	<groupId>com.example</groupId>	<artifactId>demobook</artifactId>	<version>0.0.1-SNAPSHOT</version>	<name>demobook</name>	<description>Demo project for Spring Boot</description>	<properties>		<java.version>1.8</java.version>	</properties>	<dependencies>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-thymeleaf</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-data-jpa</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-web</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-security</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-thymeleaf</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-cache</artifactId>		</dependency>		<!-- ehcache -->		<!-- https://mvnrepository.com/artifact/net.sf.ehcache/ehcache -->		<dependency>			<groupId>net.sf.ehcache</groupId>			<artifactId>ehcache</artifactId>			<version>2.10.6</version>		</dependency>		<!-- https://mvnrepository.com/artifact/org.springframework.osgi/spring-osgi-core -->		<dependency>			<groupId>org.springframework.osgi</groupId>			<artifactId>spring-osgi-core</artifactId>			<version>1.2.1</version>		</dependency>		<!--webjar-->		<dependency>			<groupId>org.webjars</groupId>			<artifactId>bootstrap</artifactId>			<version>4.0.0</version>		</dependency>		<dependency>			<groupId>org.webjars</groupId>			<artifactId>jquery</artifactId>			<version>3.3.1</version>		</dependency>		<dependency>			<groupId>org.webjars</groupId>			<artifactId>webjars-locator</artifactId>			<version>0.33</version>		</dependency>		<dependency>			<groupId>org.webjars</groupId>			<artifactId>datatables</artifactId>			<version>1.10.19</version>		</dependency>		<!-- h2 database -->		<dependency>			<groupId>com.h2database</groupId>			<artifactId>h2</artifactId>			<scope>runtime</scope>		</dependency>		<dependency>			<groupId>org.modelmapper</groupId>			<artifactId>modelmapper</artifactId>			<version>2.3.0</version>		</dependency>		<dependency>			<groupId>org.projectlombok</groupId>			<artifactId>lombok</artifactId>			<optional>true</optional>		</dependency>		<!-- Spring oauth2, Spring jwt -->		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-oauth2-client</artifactId>		</dependency>		<dependency>			<groupId>org.springframework.security</groupId>			<artifactId>spring-security-jwt</artifactId>			<version>1.0.10.RELEASE</version>		</dependency>		<dependency>			<groupId>io.jsonwebtoken</groupId>			<artifactId>jjwt</artifactId>			<version>0.8.0</version>		</dependency>		<dependency>			<groupId>org.springframework.boot</groupId>			<artifactId>spring-boot-starter-test</artifactId>			<scope>test</scope>		</dependency>		<dependency>			<groupId>org.springframework.security</groupId>			<artifactId>spring-security-test</artifactId>			<scope>test</scope>		</dependency>	</dependencies>	<build>		<plugins>			<plugin>				<groupId>org.springframework.boot</groupId>				<artifactId>spring-boot-maven-plugin</artifactId>			</plugin>		</plugins>	</build></project>

src/main/java/com/example/demobook/DemobookApplication.java

@@ -2,8 +2,10 @@
 
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.cache.annotation.EnableCaching;
 
 @SpringBootApplication
+@EnableCaching
 public class DemobookApplication {
 
 	public static void main(String[] args) {

src/main/java/com/example/demobook/book/infra/dto/BookHttpApiClient.java

@@ -7,6 +7,8 @@
 import com.example.demobook.book.infra.api.NaverUrlConnection;
 import com.example.demobook.common.PagedResult;
 import com.fasterxml.jackson.databind.ObjectMapper;
+
+import org.springframework.cache.annotation.Cacheable;
 import org.springframework.http.HttpStatus;
 import org.springframework.stereotype.Repository;
 
@@ -32,6 +34,7 @@ public BookHttpApiClient() {
      * @return
      * @throws IOException
      */
+    @Cacheable(value="LocalCacheData", key="'KeyIs' + #keyword + #currentPage")
     @Override
     public PagedResult<BookDetail> findByKeyword(String keyword, Integer currentPage) throws IOException {
         URL url = null;

src/main/java/com/example/demobook/common/EHCacheConfig.java

@@ -0,0 +1,28 @@
+package com.example.demobook.common;
+
+import org.springframework.cache.annotation.EnableCaching;
+import org.springframework.cache.ehcache.EhCacheCacheManager;
+import org.springframework.cache.ehcache.EhCacheManagerFactoryBean;
+import org.springframework.context.annotation.AdviceMode;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.io.ClassPathResource;
+
+@Configuration
+@EnableCaching(proxyTargetClass = true, mode = AdviceMode.PROXY)
+public class EHCacheConfig {
+    @Bean
+    public EhCacheManagerFactoryBean ehCacheManagerFactoryBean() {
+        EhCacheManagerFactoryBean ehCacheManagerFactoryBean = new EhCacheManagerFactoryBean();
+        ehCacheManagerFactoryBean.setConfigLocation(new ClassPathResource("ehcache.xml"));
+        ehCacheManagerFactoryBean.setShared(true);
+        return ehCacheManagerFactoryBean;
+    }
+
+    @Bean
+    public EhCacheCacheManager ehCacheCacheManager(EhCacheManagerFactoryBean ehCacheManagerFactoryBean) {
+        EhCacheCacheManager ehCacheCacheManager = new EhCacheCacheManager();
+        ehCacheCacheManager.setCacheManager(ehCacheManagerFactoryBean.getObject());
+        return ehCacheCacheManager;
+    }
+}

src/main/java/com/example/demobook/security/application/AuthenticationService.java

@@ -0,0 +1,72 @@
+package com.example.demobook.security.application;
+
+import static org.springframework.http.ResponseEntity.ok;
+
+import java.util.HashMap;
+import java.util.Map;
+import java.util.stream.Collectors;
+
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.http.ResponseEntity;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.authentication.BadCredentialsException;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import com.example.demobook.security.config.JwtTokenProvider;
+import com.example.demobook.security.domain.AuthenticationRequest;
+import com.example.demobook.user.application.UserService;
+
+@Service
+public class AuthenticationService {
+
+    private AuthenticationManager authenticationManager;
+    private JwtTokenProvider jwtTokenProvider;
+    private UserService userService;
+
+    public AuthenticationService(
+            AuthenticationManager authenticationManager,
+            JwtTokenProvider jwtTokenProvider,
+            UserService userService) {
+        this.authenticationManager = authenticationManager;
+        this.jwtTokenProvider = jwtTokenProvider;
+        this.userService = userService;
+    }
+
+    /**
+     * 가입된 유저가 로그인해서 유저 인증이 완료했을 경우, 유저 jwt 토큰을 발급하여 유저에게 전달해준다.
+     * @param data AuthenticationRequest
+     * @return user jwt token
+     * @throws Exception
+     */
+    public ResponseEntity signin(@RequestBody AuthenticationRequest data, HttpServletResponse response) throws Exception {
+        try {
+            String userName = data.getUsername();
+            final Authentication authentication =
+                    authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(userName, data.getPassword()));
+            SecurityContextHolder.getContext().setAuthentication(authentication);
+
+            String token = jwtTokenProvider.createToken(userName,
+                                                        userService.findByUserId(userName)
+                                                                   .orElseThrow(() ->
+                                                                                        new UsernameNotFoundException("Username " + userName + " not found"))
+                                                                   .getUserAuthorizations()
+                                                                   .stream()
+                                                                   .map(userAuthorization ->
+                                                                                userAuthorization.getRoleName())
+                                                                   .collect(Collectors.toList()));
+            Map<Object, Object> model = new HashMap<>();
+            model.put("username", userName);
+            model.put("token", token);
+            return ok(model);
+        }catch (AuthenticationException e) {
+            throw new BadCredentialsException("Invalid username/password supplied");
+        }
+    }
+}

src/main/java/com/example/demobook/security/config/JwtConfigurer.java

@@ -0,0 +1,28 @@
+package com.example.demobook.security.config;
+
+import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.web.DefaultSecurityFilterChain;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+
+/**
+ * JWT 설정
+ */
+public class JwtConfigurer extends SecurityConfigurerAdapter<DefaultSecurityFilterChain, HttpSecurity> {
+
+    private JwtTokenProvider jwtTokenProvider;
+
+    public JwtConfigurer(JwtTokenProvider jwtTokenProvider) {
+        this.jwtTokenProvider = jwtTokenProvider;
+    }
+
+    /**
+     * JwtToken 필터 전에 인증 필터 추가
+     * @param http
+     * @throws Exception
+     */
+    public void configure(HttpSecurity http) throws Exception {
+        JwtTokenFilter customFilter = new JwtTokenFilter(jwtTokenProvider);
+        http.addFilterBefore(customFilter, UsernamePasswordAuthenticationFilter.class);
+    }
+}

src/main/java/com/example/demobook/security/config/JwtTokenFilter.java

@@ -0,0 +1,46 @@
+package com.example.demobook.security.config;
+
+import java.io.IOException;
+
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.http.HttpServletRequest;
+
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.web.filter.GenericFilterBean;
+
+/**
+ * 토큰의 유효성을 검사하는 필터
+ */
+public class JwtTokenFilter extends GenericFilterBean {
+
+    private JwtTokenProvider jwtTokenProvider;
+
+    public JwtTokenFilter(JwtTokenProvider jwtTokenProvider) {
+        this.jwtTokenProvider = jwtTokenProvider;
+    }
+
+    /**
+     * JWT 토큰의 유효성을 검사하기 위해 사용자 정의 JWT 토큰 기반 인증 필터 정의
+     * @param req
+     * @param res
+     * @param filterChain
+     * @throws IOException
+     * @throws ServletException
+     */
+    @Override
+    public void doFilter(ServletRequest req, ServletResponse res, FilterChain filterChain) throws IOException,
+                                                                                                  ServletException {
+        String token = jwtTokenProvider.resolveToken((HttpServletRequest) req);
+        if(token != null && jwtTokenProvider.validateToken(token)) {
+            Authentication auth = jwtTokenProvider.getAuthentication(token);
+            if(auth != null) {
+                SecurityContextHolder.getContext().setAuthentication(auth);
+            }
+        }
+        filterChain.doFilter(req, res);
+    }
+}