계정 조회 추가. API 권한 추가
This commit is contained in:
@@ -2,7 +2,10 @@ package com.eactive.testmaster.user.controller;
|
||||
|
||||
import com.eactive.testmaster.common.util.SecurityUtil;
|
||||
import com.eactive.testmaster.user.dto.PasswordChangeRequestDTO;
|
||||
import com.eactive.testmaster.user.entity.User;
|
||||
import com.eactive.testmaster.user.service.UserService;
|
||||
import org.springframework.http.ResponseEntity;
|
||||
import org.springframework.security.access.annotation.Secured;
|
||||
import org.springframework.stereotype.Controller;
|
||||
import org.springframework.transaction.annotation.Transactional;
|
||||
import org.springframework.ui.ModelMap;
|
||||
@@ -11,6 +14,7 @@ import org.springframework.validation.Validator;
|
||||
import org.springframework.web.bind.annotation.GetMapping;
|
||||
import org.springframework.web.bind.annotation.ModelAttribute;
|
||||
import org.springframework.web.bind.annotation.PostMapping;
|
||||
import org.springframework.web.bind.annotation.ResponseBody;
|
||||
|
||||
@Controller
|
||||
public class AccountController {
|
||||
@@ -25,13 +29,23 @@ public class AccountController {
|
||||
this.userService = userService;
|
||||
}
|
||||
|
||||
@GetMapping("/api/account")
|
||||
@ResponseBody
|
||||
@Secured("ROLE_API_TESTER")
|
||||
public ResponseEntity<User> account(ModelMap model) {
|
||||
return ResponseEntity.ok().body(SecurityUtil.getCurrentUser());
|
||||
}
|
||||
|
||||
|
||||
@GetMapping("/change_password.do")
|
||||
@Secured("ROLE_API_TESTER")
|
||||
public String changePassword(@ModelAttribute("passwordChangeRequest") PasswordChangeRequestDTO passwordChangeRequestDTO) {
|
||||
return UPDATE_PW;
|
||||
}
|
||||
|
||||
@PostMapping(value = "/update_password.do")
|
||||
@Transactional
|
||||
@Secured("ROLE_API_TESTER")
|
||||
public String updatePassword(ModelMap model, @ModelAttribute("passwordChangeRequest") PasswordChangeRequestDTO passwordChangeRequestDTO,
|
||||
BindingResult result) {
|
||||
|
||||
|
||||
Reference in New Issue
Block a user