From 4bf06939b83b69f1f5f64fe8cf765ca2564d7d97 Mon Sep 17 00:00:00 2001 From: whitemark Date: Wed, 26 Jun 2024 22:12:33 +0900 Subject: [PATCH 1/3] =?UTF-8?q?[feature/#323]=20=ED=97=88=EC=9A=A9=20?= =?UTF-8?q?=EA=B6=8C=ED=95=9C=20=EC=A0=95=EC=9D=98=20=EA=B0=80=EB=8A=A5=20?= =?UTF-8?q?=EA=B0=9C=EC=88=98=EB=A5=BC=201=EA=B0=9C=EC=97=90=EC=84=9C=20Li?= =?UTF-8?q?st=EB=A1=9C=20=EB=B3=80=EA=B2=BD?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../menu/domain/valueObject/MenuType.java | 164 ++++++++++++++---- 1 file changed, 130 insertions(+), 34 deletions(-) diff --git a/resource-server/src/main/java/com/inhabas/api/domain/menu/domain/valueObject/MenuType.java b/resource-server/src/main/java/com/inhabas/api/domain/menu/domain/valueObject/MenuType.java index 462086a7..45ecfd00 100644 --- a/resource-server/src/main/java/com/inhabas/api/domain/menu/domain/valueObject/MenuType.java +++ b/resource-server/src/main/java/com/inhabas/api/domain/menu/domain/valueObject/MenuType.java @@ -1,6 +1,9 @@ package com.inhabas.api.domain.menu.domain.valueObject; import static com.inhabas.api.auth.domain.oauth2.member.domain.valueObject.Role.*; +import static java.util.Arrays.*; + +import java.util.List; import lombok.Getter; @@ -11,67 +14,160 @@ public enum MenuType { // 관리자에 의해 추가, 삭제 불가능한 메뉴,(메뉴 순서와 이름만 변경가능하다.) // 동아리 소개 - INTRODUCE(ANONYMOUS, EXECUTIVES, ANONYMOUS, ADMIN, ADMIN), + INTRODUCE( + List.of(ANONYMOUS), List.of(EXECUTIVES), List.of(ANONYMOUS), List.of(ADMIN), List.of(ADMIN)), // 동아리 활동 - ALBUM(ANONYMOUS, EXECUTIVES, ANONYMOUS, DEACTIVATED, ANONYMOUS), + ALBUM( + List.of(ANONYMOUS), + List.of(EXECUTIVES), + List.of(ANONYMOUS), + List.of(DEACTIVATED), + List.of(ANONYMOUS)), // 명예의 전당 - HALL_OF_FAME(ANONYMOUS, ADMIN, ANONYMOUS, ADMIN, ADMIN), + HALL_OF_FAME( + List.of(ANONYMOUS), List.of(ADMIN), List.of(ANONYMOUS), List.of(ADMIN), List.of(ADMIN)), // 공지사항 - NOTICE(DEACTIVATED, EXECUTIVES, DEACTIVATED, DEACTIVATED, DEACTIVATED), + NOTICE( + List.of(DEACTIVATED), + List.of(EXECUTIVES), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED)), // 자유게시판 - FREE(DEACTIVATED, DEACTIVATED, DEACTIVATED, DEACTIVATED, DEACTIVATED), + FREE( + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED)), // 질문게시판 - QUESTION(DEACTIVATED, DEACTIVATED, DEACTIVATED, DEACTIVATED, DEACTIVATED), + QUESTION( + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED)), // 건의 사항 - SUGGEST(DEACTIVATED, DEACTIVATED, DEACTIVATED, DEACTIVATED, DEACTIVATED), + SUGGEST( + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED)), // 공개 자료실 - STORAGE(ANONYMOUS, BASIC, ANONYMOUS, DEACTIVATED, ANONYMOUS), + STORAGE( + List.of(ANONYMOUS), + List.of(BASIC), + List.of(ANONYMOUS), + List.of(DEACTIVATED), + List.of(ANONYMOUS)), // 회장단 게시판 - EXECUTIVE(SECRETARY, SECRETARY, SECRETARY, SECRETARY, SECRETARY), + EXECUTIVE( + asList(SECRETARY, EXECUTIVES), + asList(SECRETARY, EXECUTIVES), + asList(SECRETARY, EXECUTIVES), + asList(SECRETARY, EXECUTIVES), + asList(SECRETARY, EXECUTIVES)), // 강의 - LECTURE(BASIC, BASIC, BASIC, BASIC, BASIC), + LECTURE(List.of(BASIC), List.of(BASIC), List.of(BASIC), List.of(BASIC), List.of(BASIC)), // 스터디 - STUDY(BASIC, BASIC, BASIC, BASIC, BASIC), + STUDY(List.of(BASIC), List.of(BASIC), List.of(BASIC), List.of(BASIC), List.of(BASIC)), // 취미활동 - HOBBY(BASIC, BASIC, BASIC, BASIC, BASIC), + HOBBY(List.of(BASIC), List.of(BASIC), List.of(BASIC), List.of(BASIC), List.of(BASIC)), // 대기중인 강의 관리 - LECTURE_PENDING(EXECUTIVES, ADMIN, EXECUTIVES, ADMIN, ADMIN), + LECTURE_PENDING( + List.of(EXECUTIVES), List.of(ADMIN), List.of(EXECUTIVES), List.of(ADMIN), List.of(ADMIN)), // 지원금 신청 - BUDGET_SUPPORT(DEACTIVATED, DEACTIVATED, DEACTIVATED, ADMIN, ADMIN), + BUDGET_SUPPORT( + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(ADMIN), + List.of(ADMIN)), // 회계 내역 - BUDGET_ACCOUNT(DEACTIVATED, SECRETARY, DEACTIVATED, ADMIN, ADMIN), + BUDGET_ACCOUNT( + List.of(DEACTIVATED), + List.of(SECRETARY), + List.of(DEACTIVATED), + List.of(ADMIN), + List.of(ADMIN)), // 알파테스터 - ALPHA(DEACTIVATED, BASIC, DEACTIVATED, DEACTIVATED, DEACTIVATED), + ALPHA( + List.of(DEACTIVATED), + List.of(BASIC), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED)), // 베타테스터 - BETA(DEACTIVATED, BASIC, DEACTIVATED, DEACTIVATED, DEACTIVATED), + BETA( + List.of(DEACTIVATED), + List.of(BASIC), + List.of(DEACTIVATED), + List.of(DEACTIVATED), + List.of(DEACTIVATED)), // 공모전 - CONTEST(ANONYMOUS, BASIC, ANONYMOUS, DEACTIVATED, ANONYMOUS), + CONTEST( + List.of(ANONYMOUS), + List.of(BASIC), + List.of(ANONYMOUS), + List.of(DEACTIVATED), + List.of(ANONYMOUS)), // 대외활동 - ACTIVITY(ANONYMOUS, BASIC, ANONYMOUS, DEACTIVATED, ANONYMOUS), + ACTIVITY( + List.of(ANONYMOUS), + List.of(BASIC), + List.of(ANONYMOUS), + List.of(DEACTIVATED), + List.of(ANONYMOUS)), // 장학회 - SCHOLARSHIP(ANONYMOUS, SECRETARY, ANONYMOUS, ADMIN, ADMIN), + SCHOLARSHIP( + List.of(ANONYMOUS), + asList(SECRETARY, EXECUTIVES), + List.of(ANONYMOUS), + List.of(ADMIN), + List.of(ADMIN)), // 후원 내용 - SPONSOR(ANONYMOUS, SECRETARY, ANONYMOUS, BASIC, ANONYMOUS), + SPONSOR( + List.of(ANONYMOUS), + asList(SECRETARY, EXECUTIVES), + List.of(ANONYMOUS), + List.of(BASIC), + List.of(ANONYMOUS)), // 사용 내역 - USAGE(ANONYMOUS, SECRETARY, ANONYMOUS, BASIC, ANONYMOUS), + USAGE( + List.of(ANONYMOUS), + asList(SECRETARY, EXECUTIVES), + List.of(ANONYMOUS), + List.of(BASIC), + List.of(ANONYMOUS)), // 관리자가 추가, 삭제 가능한 메뉴.(NormalBoard 연관) - LIST(ANONYMOUS, ANONYMOUS, ANONYMOUS, ANONYMOUS, ANONYMOUS), // 리스트형 게시판 메뉴 - CARD(ANONYMOUS, ANONYMOUS, ANONYMOUS, ANONYMOUS, ANONYMOUS), // 카드형 게시판 메뉴 + LIST( + List.of(ANONYMOUS), + List.of(ANONYMOUS), + List.of(ANONYMOUS), + List.of(ANONYMOUS), + List.of(ANONYMOUS)), // 리스트형 게시판 메뉴 + CARD( + List.of(ANONYMOUS), + List.of(ANONYMOUS), + List.of(ANONYMOUS), + List.of(ANONYMOUS), + List.of(ANONYMOUS)), // 카드형 게시판 메뉴 ; - private final Role readBoardListRole; - private final Role createBoardRole; - private final Role readBoardRole; - private final Role createCommentRole; - private final Role readCommentRole; + private final List readBoardListRole; + private final List createBoardRole; + private final List readBoardRole; + private final List createCommentRole; + private final List readCommentRole; MenuType( - Role readBoardListRole, - Role createBoardRole, - Role readBoardRole, - Role createCommentRole, - Role readCommentRole) { + List readBoardListRole, + List createBoardRole, + List readBoardRole, + List createCommentRole, + List readCommentRole) { this.readBoardListRole = readBoardListRole; this.createBoardRole = createBoardRole; this.readBoardRole = readBoardRole; From 82f15825a49337e0627f936cf9c521433673bfa3 Mon Sep 17 00:00:00 2001 From: whitemark Date: Wed, 26 Jun 2024 22:15:58 +0900 Subject: [PATCH 2/3] =?UTF-8?q?[feature/#323]=20=EA=B6=8C=ED=95=9C=20?= =?UTF-8?q?=EC=B2=B4=ED=81=AC=20=EB=A1=9C=EC=A7=81=20=EB=B3=80=EA=B2=BD?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../board/usecase/BoardSecurityChecker.java | 29 ++++++++++++------- 1 file changed, 19 insertions(+), 10 deletions(-) diff --git a/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java b/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java index 734f4a1d..352eac63 100644 --- a/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java +++ b/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java @@ -2,9 +2,13 @@ import static com.inhabas.api.auth.domain.oauth2.member.domain.valueObject.Role.ANONYMOUS; +import java.util.ArrayList; import java.util.Collection; import java.util.Collections; +import java.util.List; +import java.util.Set; +import java.util.stream.Collectors; import javax.persistence.EntityNotFoundException; import lombok.RequiredArgsConstructor; @@ -79,29 +83,34 @@ public boolean checkMenuAccess(Integer menuId, String action) { } Menu menu = menuRepository.findById(menuId).orElseThrow(NotFoundException::new); - Role required = null; + List requiredRoles = new ArrayList<>(); switch (action) { case READ_BOARD_LIST: - required = menu.getType().getReadBoardListRole(); + requiredRoles = menu.getType().getReadBoardListRole(); break; case CREATE_BOARD: - required = menu.getType().getCreateBoardRole(); + requiredRoles = menu.getType().getCreateBoardRole(); break; case READ_BOARD: - required = menu.getType().getReadBoardRole(); + requiredRoles = menu.getType().getReadBoardRole(); break; case CREATE_COMMENT: - required = menu.getType().getCreateCommentRole(); + requiredRoles = menu.getType().getCreateCommentRole(); break; case READ_COMMENT: - required = menu.getType().getReadCommentRole(); + requiredRoles = menu.getType().getReadCommentRole(); break; } - String finalRequired = ROLE_PREFIX + required; - if (required == null - || authorities.stream() - .noneMatch(grantedAuthority -> grantedAuthority.getAuthority().equals(finalRequired))) { + Set prefixedRoles = requiredRoles.stream() + .map(role -> ROLE_PREFIX + role) + .collect(Collectors.toSet()); + + boolean hasAuthority = authorities.stream() + .map(GrantedAuthority::getAuthority) + .anyMatch(prefixedRoles::contains); + + if (!hasAuthority) { throw new InvalidAuthorityException(); } From fae27df1f3644393c23d7f60321b7e35c4b57404 Mon Sep 17 00:00:00 2001 From: whitemark Date: Wed, 26 Jun 2024 22:19:50 +0900 Subject: [PATCH 3/3] [feature/#323] spotlessJavaApply --- .../domain/board/usecase/BoardSecurityChecker.java | 12 +++++------- 1 file changed, 5 insertions(+), 7 deletions(-) diff --git a/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java b/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java index 352eac63..31ae7a51 100644 --- a/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java +++ b/resource-server/src/main/java/com/inhabas/api/domain/board/usecase/BoardSecurityChecker.java @@ -6,9 +6,9 @@ import java.util.Collection; import java.util.Collections; import java.util.List; - import java.util.Set; import java.util.stream.Collectors; + import javax.persistence.EntityNotFoundException; import lombok.RequiredArgsConstructor; @@ -102,13 +102,11 @@ public boolean checkMenuAccess(Integer menuId, String action) { break; } - Set prefixedRoles = requiredRoles.stream() - .map(role -> ROLE_PREFIX + role) - .collect(Collectors.toSet()); + Set prefixedRoles = + requiredRoles.stream().map(role -> ROLE_PREFIX + role).collect(Collectors.toSet()); - boolean hasAuthority = authorities.stream() - .map(GrantedAuthority::getAuthority) - .anyMatch(prefixedRoles::contains); + boolean hasAuthority = + authorities.stream().map(GrantedAuthority::getAuthority).anyMatch(prefixedRoles::contains); if (!hasAuthority) { throw new InvalidAuthorityException();