diff --git a/src/main/java/com/eactive/testmaster/user/controller/AccountController.java b/src/main/java/com/eactive/testmaster/user/controller/AccountController.java index 0f3d822..4fe7d2f 100644 --- a/src/main/java/com/eactive/testmaster/user/controller/AccountController.java +++ b/src/main/java/com/eactive/testmaster/user/controller/AccountController.java @@ -2,7 +2,10 @@ package com.eactive.testmaster.user.controller; import com.eactive.testmaster.common.util.SecurityUtil; import com.eactive.testmaster.user.dto.PasswordChangeRequestDTO; +import com.eactive.testmaster.user.entity.User; import com.eactive.testmaster.user.service.UserService; +import org.springframework.http.ResponseEntity; +import org.springframework.security.access.annotation.Secured; import org.springframework.stereotype.Controller; import org.springframework.transaction.annotation.Transactional; import org.springframework.ui.ModelMap; @@ -11,6 +14,7 @@ import org.springframework.validation.Validator; import org.springframework.web.bind.annotation.GetMapping; import org.springframework.web.bind.annotation.ModelAttribute; import org.springframework.web.bind.annotation.PostMapping; +import org.springframework.web.bind.annotation.ResponseBody; @Controller public class AccountController { @@ -25,13 +29,23 @@ public class AccountController { this.userService = userService; } + @GetMapping("/api/account") + @ResponseBody + @Secured("ROLE_API_TESTER") + public ResponseEntity account(ModelMap model) { + return ResponseEntity.ok().body(SecurityUtil.getCurrentUser()); + } + + @GetMapping("/change_password.do") + @Secured("ROLE_API_TESTER") public String changePassword(@ModelAttribute("passwordChangeRequest") PasswordChangeRequestDTO passwordChangeRequestDTO) { return UPDATE_PW; } @PostMapping(value = "/update_password.do") @Transactional + @Secured("ROLE_API_TESTER") public String updatePassword(ModelMap model, @ModelAttribute("passwordChangeRequest") PasswordChangeRequestDTO passwordChangeRequestDTO, BindingResult result) {