feat(CustomAuthenticationProvider): AuthenticationManager 의 authentication 처리 커스텀

m-a-king · m-a-king · commit 970439495354 · 2024-12-02T05:09:25.000+09:00
- CenterSignUseCase를 사용하여 계정 ID로 센터 ID와 인코딩된 비밀번호 조회
- PasswordEncoder로 비밀번호 검증 후, JwtUseCase를 통해 액세스 토큰 생성
- UsernamePasswordAuthenticationToken 인증 성공 시 JwtAuthenticationToken 반환
diff --git a/src/main/java/com/somemore/auth/idpw/provider/CustomAuthenticationProvider.java b/src/main/java/com/somemore/auth/idpw/provider/CustomAuthenticationProvider.java
@@ -0,0 +1,59 @@
+package com.somemore.auth.idpw.provider;
+
+import com.somemore.auth.authentication.JwtAuthenticationToken;
+import com.somemore.auth.jwt.domain.EncodedToken;
+import com.somemore.auth.jwt.domain.TokenType;
+import com.somemore.auth.jwt.domain.UserRole;
+import com.somemore.auth.jwt.usecase.JwtUseCase;
+import com.somemore.center.usecase.query.CenterSignUseCase;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.authentication.AuthenticationProvider;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.stereotype.Component;
+import org.springframework.transaction.annotation.Transactional;
+
+import java.util.List;
+
+@Component
+@RequiredArgsConstructor
+@Transactional(readOnly = true)
+public class CustomAuthenticationProvider implements AuthenticationProvider {
+
+    private final CenterSignUseCase centerSignUseCase;
+    private final JwtUseCase jwtUseCase;
+    private final PasswordEncoder passwordEncoder;
+
+    @Override
+    public Authentication authenticate(Authentication authentication) throws AuthenticationException {
+        String accountId = authentication.getName();
+        String rawAccountPassword = authentication.getCredentials().toString();
+
+        String centerId = centerSignUseCase.getIdByAccountId(accountId).toString();
+        String encodedPassword = centerSignUseCase.getPasswordByAccountId(accountId);
+
+        if (passwordEncoder.matches(rawAccountPassword, encodedPassword)) {
+            EncodedToken accessToken = jwtUseCase.generateToken(
+                    centerId,
+                    UserRole.CENTER.getAuthority(),
+                    TokenType.ACCESS
+            );
+
+            return new JwtAuthenticationToken(
+                    centerId,
+                    accessToken,
+                    List.of(new SimpleGrantedAuthority(UserRole.CENTER.getAuthority()))
+            );
+        }
+
+        return null;
+    }
+
+    @Override
+    public boolean supports(Class<?> authentication) {
+        return UsernamePasswordAuthenticationToken.class.isAssignableFrom(authentication);
+    }
+}
