6주차 과제 - 로그인 구현하기 #70
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,25 @@ | ||
| package com.codesoom.assignment.application; | ||
|
|
||
| import com.codesoom.assignment.utils.JwtUtil; | ||
| import io.jsonwebtoken.Claims; | ||
| import lombok.extern.slf4j.Slf4j; | ||
| import org.springframework.stereotype.Service; | ||
|
|
||
| @Service | ||
| @Slf4j | ||
| public class AuthenticationService { | ||
|
|
||
| private final JwtUtil jwtUtil; | ||
|
|
||
| public AuthenticationService(JwtUtil jwtUtil) { | ||
| this.jwtUtil = jwtUtil; | ||
| } | ||
|
|
||
| public String login(){ | ||
| return jwtUtil.encode(1L); | ||
| } | ||
|
|
||
| public Claims parseToken(String token) { | ||
| return jwtUtil.decode(token); | ||
| } | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| package com.codesoom.assignment.errors; | ||
|
|
||
| public class InvalidTokenException extends RuntimeException { | ||
| public InvalidTokenException(String token) { | ||
| super("Invalid token : " + token); | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,46 @@ | ||
| package com.codesoom.assignment.utils; | ||
|
|
||
| import com.codesoom.assignment.errors.InvalidTokenException; | ||
| import io.jsonwebtoken.Claims; | ||
| import io.jsonwebtoken.Jws; | ||
| import io.jsonwebtoken.Jwts; | ||
| import io.jsonwebtoken.security.Keys; | ||
| import io.jsonwebtoken.security.SignatureException; | ||
| import lombok.extern.slf4j.Slf4j; | ||
| import org.springframework.beans.factory.annotation.Value; | ||
| import org.springframework.stereotype.Component; | ||
|
|
||
| import java.security.Key; | ||
|
|
||
| @Component | ||
| public class JwtUtil { | ||
|
|
||
| private final Key key; | ||
|
|
||
| public JwtUtil(@Value("${jwt.secret}") String secret){ | ||
| key = Keys.hmacShaKeyFor(secret.getBytes()); | ||
| } | ||
|
|
||
| public String encode(Long userId){ | ||
| return Jwts.builder() | ||
| .claim("userId" , userId) | ||
| .signWith(key) | ||
| .compact(); | ||
| } | ||
|
|
||
| public Claims decode(String token) { | ||
|
|
||
| if(token == null || token.isBlank()){ | ||
| throw new InvalidTokenException(token); | ||
| } | ||
|
There was a problem hiding this comment. 어쩌면 |
||
| try{ | ||
| return Jwts.parserBuilder() | ||
| .setSigningKey(key) | ||
| .build() | ||
| .parseClaimsJws(token) | ||
| .getBody(); | ||
| }catch(SignatureException e){ | ||
| throw new InvalidTokenException(token); | ||
| } | ||
|
|
||
| } | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,40 @@ | ||
| package com.codesoom.assignment.applcation; | ||
|
|
||
| import com.codesoom.assignment.application.AuthenticationService; | ||
| import com.codesoom.assignment.utils.JwtUtil; | ||
| import org.junit.jupiter.api.BeforeEach; | ||
| import org.junit.jupiter.api.DisplayName; | ||
| import org.junit.jupiter.api.Nested; | ||
| import org.junit.jupiter.api.Test; | ||
|
|
||
| import static org.assertj.core.api.Assertions.*; | ||
|
|
||
| class AuthenticationServiceTest { | ||
|
|
||
| private AuthenticationService service; | ||
| private final String SECRET = "12345678901234567890123456789012"; | ||
|
|
||
| @BeforeEach | ||
| void setUp() { | ||
| JwtUtil jwtUtil = new JwtUtil(SECRET); | ||
| service = new AuthenticationService(jwtUtil); | ||
| } | ||
|
|
||
| @Nested | ||
| @DisplayName("") | ||
| class Describe_{ | ||
|
|
||
| @Nested | ||
| @DisplayName("") | ||
| class Context_{ | ||
|
|
||
| @Test | ||
| @DisplayName("") | ||
| void It_(){ | ||
| String accessToken = service.login(); | ||
|
|
||
| assertThat(accessToken).contains(".xxxx"); | ||
| } | ||
| } | ||
| } | ||
| } |
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
JwtUtil을 직접 사용하는 것과 비교해서AuthenticationService를 쓰는 것은 어떠한 장점이 있을까요?!!There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
인증과 JWT 기능에 대한 관심사가 분리되어 있기 때문에 Service가 인증에 대한 책임을 잘 맡으면 다른 도메인 컨트롤러에서도 유용하게 사용할 수 있을 것 같습니다 ㅎㅎ
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
좋아요! 하지만 그렇다면!
Claims를 리턴하면 JWT를 명시하게 되는 것이 될거에요!There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
넵 컨트롤러는
AuthenticationService.tokenValidation(String token)을 호출하게만 했고 서비스는 JWT의 존재는 모르게userId만 받아서 사용자를 찾게만 해봤습니다.말씀대로
Claims는 JwtUtil에서만 사용하도록 했습니다.