계정 조회 추가. API 권한 추가

This commit is contained in:
현성필
2025-01-21 13:21:09 +09:00
parent 137d8592f1
commit 99f56e8555
@@ -2,7 +2,10 @@ package com.eactive.testmaster.user.controller;
import com.eactive.testmaster.common.util.SecurityUtil;
import com.eactive.testmaster.user.dto.PasswordChangeRequestDTO;
import com.eactive.testmaster.user.entity.User;
import com.eactive.testmaster.user.service.UserService;
import org.springframework.http.ResponseEntity;
import org.springframework.security.access.annotation.Secured;
import org.springframework.stereotype.Controller;
import org.springframework.transaction.annotation.Transactional;
import org.springframework.ui.ModelMap;
@@ -11,6 +14,7 @@ import org.springframework.validation.Validator;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.ModelAttribute;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.ResponseBody;
@Controller
public class AccountController {
@@ -25,13 +29,23 @@ public class AccountController {
this.userService = userService;
}
@GetMapping("/api/account")
@ResponseBody
@Secured("ROLE_API_TESTER")
public ResponseEntity<User> account(ModelMap model) {
return ResponseEntity.ok().body(SecurityUtil.getCurrentUser());
}
@GetMapping("/change_password.do")
@Secured("ROLE_API_TESTER")
public String changePassword(@ModelAttribute("passwordChangeRequest") PasswordChangeRequestDTO passwordChangeRequestDTO) {
return UPDATE_PW;
}
@PostMapping(value = "/update_password.do")
@Transactional
@Secured("ROLE_API_TESTER")
public String updatePassword(ModelMap model, @ModelAttribute("passwordChangeRequest") PasswordChangeRequestDTO passwordChangeRequestDTO,
BindingResult result) {