Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[YS-70] feat: JWT 토큰에 사용자 권한(RoleType) 정보 포함 #18

Merged
merged 8 commits into from
Jan 4, 2025
Merged

[YS-70] feat: JWT 토큰에 사용자 권한(RoleType) 정보 포함 #18

merged 8 commits into from
Jan 4, 2025

Conversation

Ji-soo708
Copy link
Member

@Ji-soo708 Ji-soo708 commented Jan 3, 2025
edited
Loading

💡 작업 내용

  • JWT 토큰에 사용자 권한(RoleType) 정보 포함

✅ 셀프 체크리스트

  • PR 제목을 형식에 맞게 작성했나요?
  • 브랜치 전략에 맞는 브랜치에 PR을 올리고 있나요?
  • 테스트는 잘 통과했나요?
  • 빌드에 성공했나요?
  • 본인을 assign 해주세요.
  • 해당 PR에 맞는 label을 붙여주세요.

🙋🏻‍ 확인해주세요

  • 향후 대부분의 기능은 특정 Role을 가진 사용자만 접근 가능해야 합니다. 이를 위해 @PreAuthorize를 사용해 접근 제어를 간편하게 구현할 수 있도록 해당 PR을 올립니다.

🔗 Jira 티켓

https://yappsocks.atlassian.net/browse/YS-70

@Ji-soo708 Ji-soo708 added the ✨ FEATURE 기능 추가 label Jan 3, 2025
@Ji-soo708 Ji-soo708 self-assigned this Jan 3, 2025
@github-actions github-actions bot changed the title feat: JWT 토큰에 사용자 권한(RoleType) 정보 포함 [YS-70] feat: JWT 토큰에 사용자 권한(RoleType) 정보 포함 Jan 3, 2025
@Ji-soo708 Ji-soo708 requested a review from chock-cho January 3, 2025 22:59
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Jan 4, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

chock-cho
chock-cho approved these changes Jan 4, 2025
View reviewed changes
Copy link
Member

@chock-cho chock-cho left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

저희 비즈니스 로직이 유저 role에 따라 나누어진다는 점에서, @PreAuthroize 를 채택하고 이를 위해서 토큰 발급 시에 RoleType을 명시해주기 위한 사전 작업을 위한 PR이 잘 반영된 것 같아 approve 입니다 👍
특히 기존에 memberId가 아니라 member 로 파라미터를 받아오도록 리팩토링하신 점이 좋았어요.!! 수고하셨습니다~

src/main/kotlin/com/dobby/backend/application/usecase/GenerateTokenWithRefreshToken.kt
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

memberId가 아닌 member 파라미터 값을 조정하신 점이 좋았습니다 !

src/main/kotlin/com/dobby/backend/infrastructure/gateway/MemberGatewayImpl.kt
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

네이밍 관련해서 MemberJpaRepositoryMemberRepository 의 차이점에 대해 여쭈어봤는데, 구현하신 의도가 JPA와의 의존성에 대한 명시를 해주시겠다는 점을 말씀하셨습니다.
이에 통일성을 부여하기 위해서 MemberRpeository 로 컨벤션을 통일하기로 논의하였고, 이를 잘 반영해주신 것 같습니다 👍👍

@chock-cho chock-cho merged commit 01ae718 into dev Jan 4, 2025
3 checks passed
@chock-cho chock-cho deleted the feature/YS-70 branch January 4, 2025 04:51
Ji-soo708 added a commit that referenced this pull request Jan 26, 2025
@Ji-soo708
[YS-70] feat: JWT 토큰에 사용자 권한(RoleType) 정보 포함 (#18)
f33a1df 
* refact: delete unused file

* refact: add roleName to Enum

* feat: add memberRole to jwt token

* test: add role validation test code

* test: move usecase's test code to application package

* style: delete unused import

* refact: refactor exception handling to be more granular for token validation

* style: rename JpaMemberRepository to MemberRepository for better clarity
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chock-cho chock-cho chock-cho approved these changes

Assignees

@Ji-soo708 Ji-soo708

Labels
✨ FEATURE 기능 추가
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Ji-soo708 @chock-cho