Commit @876c190d1199a242799ed7f2c376b6331da56b6e

하석형 05-15

250515 하석형 회원상태가 차단/탈퇴 시 로그인 불가 처리

@876c190d1199a242799ed7f2c376b6331da56b6e

a2a8987

876c190

src/main/java/com/takensoft/cms/mber/vo/MberVO.java

--- src/main/java/com/takensoft/cms/mber/vo/MberVO.java

+++ src/main/java/com/takensoft/cms/mber/vo/MberVO.java


 
     @Override
     public boolean isAccountNonExpired() {
-        return this.useYn;
+        return !"0".equals(this.mbrStts);
     }
 
     @Override
     public boolean isAccountNonLocked() {
-        return this.useYn;
+        return !"3".equals(this.mbrStts);
     }
 
     @Override

 
     @Override
     public boolean isEnabled() {
-        return this.useYn;
+        return "1".equals(this.mbrStts);
     }
 
     // JWT 필터용 생성자

         this.mbrNm = mbrNm;
         this.authorList = authorList;
     }
-
-
-
-
 }

a2a8987

876c190

src/main/java/com/takensoft/common/config/SecurityConfig.java

--- src/main/java/com/takensoft/common/config/SecurityConfig.java

+++ src/main/java/com/takensoft/common/config/SecurityConfig.java


         // 세션 설정
         http.sessionManagement((session) -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS));
 
-        // Context Path 검증 필터
-        http.addFilterBefore(new ContextPathFilter(cntxtPthService), SecurityContextPersistenceFilter.class);
-
         http.exceptionHandling((exception) -> exception
                 .authenticationEntryPoint(authenticationEntryPoint) // 접근 권한이 없는 경우에 호출
                 .accessDeniedHandler(accessDenieHandler) // 인증되지 않은 상태로 접근 했을 때 호출

 //                .anyRequest().permitAll() // 모든 사용자 접근 가능
         );
 
+        // Context Path 검증 필터
+        http.addFilterBefore(new ContextPathFilter(cntxtPthService), SecurityContextPersistenceFilter.class);
+
+        // JWT 토큰 검증 필터
         http.addFilterBefore(new JWTFilter(jwtUtil, appConfig, loginModeService, loginPolicyService, redisTemplate), LoginFilter.class);
 
-        http.addFilterBefore(new AccesFilter(accesCtrlService, httpRequestUtil, appConfig), JWTFilter.class); // 아이피 검증
+        // 접근(아이피) 검증 필터
+        http.addFilterBefore(new AccesFilter(accesCtrlService, httpRequestUtil, appConfig), JWTFilter.class);
+
+        // 로그인 필터
         http.addFilterAt(new LoginFilter(authenticationManager(authenticationConfiguration), jwtUtil, refreshTokenService, lgnHstryService, httpRequestUtil,
-                 loginModeService, loginPolicyService, sessionUtil, JWT_ACCESSTIME, JWT_REFRESHTIME, COOKIE_TIME, redisTemplate), UsernamePasswordAuthenticationFilter.class); // 로그인 필터
+                 loginModeService, loginPolicyService, sessionUtil, JWT_ACCESSTIME, JWT_REFRESHTIME, COOKIE_TIME, redisTemplate), UsernamePasswordAuthenticationFilter.class);
 
         return http.build();
     }

Add a comment

Open 0
Closed 0

List

...	...	@@ -86,12 +86,12 @@
86	86
87	87	@Override
88	88	public boolean isAccountNonExpired() {
89		- return this.useYn;
	89	+ return !"0".equals(this.mbrStts);
90	90	}
91	91
92	92	@Override
93	93	public boolean isAccountNonLocked() {
94		- return this.useYn;
	94	+ return !"3".equals(this.mbrStts);
95	95	}
96	96
97	97	@Override
...	...	@@ -101,7 +101,7 @@
101	101
102	102	@Override
103	103	public boolean isEnabled() {
104		- return this.useYn;
	104	+ return "1".equals(this.mbrStts);
105	105	}
106	106
107	107	// JWT 필터용 생성자
...	...	@@ -117,8 +117,4 @@
117	117	this.mbrNm = mbrNm;
118	118	this.authorList = authorList;
119	119	}
120		-
121		-
122		-
123		-
124	120	}

...	...	@@ -157,9 +157,6 @@
157	157	// 세션 설정
158	158	http.sessionManagement((session) -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS));
159	159
160		- // Context Path 검증 필터
161		- http.addFilterBefore(new ContextPathFilter(cntxtPthService), SecurityContextPersistenceFilter.class);
162		-
163	160	http.exceptionHandling((exception) -> exception
164	161	.authenticationEntryPoint(authenticationEntryPoint) // 접근 권한이 없는 경우에 호출
165	162	.accessDeniedHandler(accessDenieHandler) // 인증되지 않은 상태로 접근 했을 때 호출
...	...	@@ -172,11 +169,18 @@
172	169	// .anyRequest().permitAll() // 모든 사용자 접근 가능
173	170	);
174	171
	172	+ // Context Path 검증 필터
	173	+ http.addFilterBefore(new ContextPathFilter(cntxtPthService), SecurityContextPersistenceFilter.class);
	174	+
	175	+ // JWT 토큰 검증 필터
175	176	http.addFilterBefore(new JWTFilter(jwtUtil, appConfig, loginModeService, loginPolicyService, redisTemplate), LoginFilter.class);
176	177
177		- http.addFilterBefore(new AccesFilter(accesCtrlService, httpRequestUtil, appConfig), JWTFilter.class); // 아이피 검증
	178	+ // 접근(아이피) 검증 필터
	179	+ http.addFilterBefore(new AccesFilter(accesCtrlService, httpRequestUtil, appConfig), JWTFilter.class);
	180	+
	181	+ // 로그인 필터
178	182	http.addFilterAt(new LoginFilter(authenticationManager(authenticationConfiguration), jwtUtil, refreshTokenService, lgnHstryService, httpRequestUtil,
179		- loginModeService, loginPolicyService, sessionUtil, JWT_ACCESSTIME, JWT_REFRESHTIME, COOKIE_TIME, redisTemplate), UsernamePasswordAuthenticationFilter.class); // 로그인 필터
	183	+ loginModeService, loginPolicyService, sessionUtil, JWT_ACCESSTIME, JWT_REFRESHTIME, COOKIE_TIME, redisTemplate), UsernamePasswordAuthenticationFilter.class);
180	184
181	185	return http.build();
182	186	}

Delete comment