Merge pull request #22 from selab-hs/feature/10

Feature/10 이슈 넘버 #10 에 대한 게시판 기능 구현하였습니다

Author: SONGYOOCHAN

src/main/generated/com/demo/domain/QAuthority.java

@@ -19,7 +19,7 @@ public class QAuthority extends EntityPathBase<Authority> {
 
     public static final QAuthority authority = new QAuthority("authority");
 
-    public final StringPath authorityName = createString("authorityName");
+    public final EnumPath<Role> role = createEnum("role", Role.class);
 
     public QAuthority(String variable) {
         super(Authority.class, forVariable(variable));

src/main/java/com/demo/config/SecurityConfig.java

@@ -70,23 +70,13 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                 })
                 .authorizeHttpRequests(request -> {
                     request
-                            // 권한 없이 요청할 수 있는 API
-                            .requestMatchers(
-                                    "/api/v1/auth/login",
-                                    "/api/v1/auth/register"
-                                    // id중복확인 관련 추후에 추가예정 "/api/v1/auth/check-id"
-                            ).permitAll()
-                            // Swagger 설정
-                            .requestMatchers(
-                                    "/api-docs/**",
-                                    "/swagger-ui.html",
-                                    "/swagger-ui/**",
-                                    "/swagger-resources/**",
-                                    "/webjars/**"
-                            ).permitAll()
-                            // 뷰 컨트롤러 추가 시 URL 추가
-                            .requestMatchers("/", "/sign-in","/sign-up").permitAll()
-                            .requestMatchers("/js/**", "/css/**").permitAll()
+
+                            .requestMatchers("/error", "/favicon.ico").permitAll()
+                            .requestMatchers("/api/v1/auth/login", "/api/v1/auth/register").permitAll() //권한 없이도 요청 가능한 API
+                            .requestMatchers("/api-docs/**", "/swagger-ui.html", "/swagger-ui/**", "/swagger-resources/**", "/webjars/**").permitAll()
+                            .requestMatchers("/api/v1/admin/**").hasRole("ADMIN") // 관리자(ADMIN) 역할을 가진 사용자만 접근 가능
+                            .requestMatchers("/api/v1/posts/**").hasAnyRole("ADMIN", "USER")
+                            .requestMatchers("/api/v1/students/**").hasAnyRole("ADMIN", "USER")
                             .anyRequest().authenticated();
                 })
                 .sessionManagement(session -> {

src/main/java/com/demo/controller/api/PostApiController.java

@@ -0,0 +1,81 @@
+package com.demo.controller.api;
+
+import com.demo.domain.Student;
+import com.demo.dto.request.PostCreateRequest;
+import com.demo.dto.request.PostUpdateRequest;
+import com.demo.dto.response.PostResponse;
+import com.demo.domain.Post;
+import com.demo.service.PostService;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.data.domain.Page;
+import org.springframework.security.access.prepost.PreAuthorize;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.web.bind.annotation.*;
+import org.springframework.data.domain.PageRequest;
+import org.springframework.data.domain.Pageable;
+
+import java.util.List;
+import java.util.stream.Collectors;
+
+@Slf4j
+@RestController
+@RequiredArgsConstructor
+@RequestMapping("/api/v1/posts")
+public class PostApiController {
+
+    private final PostService postService;
+
+    @PostMapping
+    @PreAuthorize("hasRole('USER')")
+    public PostResponse createPost(@RequestBody PostCreateRequest request, @AuthenticationPrincipal UserDetails userDetails) {
+        String studentId = userDetails.getUsername();
+        log.info("Creating post: Student ID: {}, Post Title: {}", studentId, request.getTitle());
+        PostResponse response = postService.createPost(request, studentId);
+        log.info("Post created successfully: Post ID: {}", response.getId());
+        return response;
+    }
+
+    @GetMapping("/{postId}")
+    public PostResponse getPost(@PathVariable Long postId) {
+        log.info("Fetching post with ID: {}", postId);
+        PostResponse response = postService.getPost(postId);
+        log.info("Post fetched successfully: Post ID: {}", postId);
+        return response;
+    }
+
+    @PutMapping("/{postId}")
+    @PreAuthorize("hasAnyRole('USER', 'ADMIN')")
+    public PostResponse updatePost(@PathVariable Long postId, @RequestBody PostUpdateRequest request, @AuthenticationPrincipal UserDetails userDetails) {
+        String studentId = userDetails.getUsername();
+        log.info("Updating post: Post ID: {}, Student ID: {}, New Title: {} ", postId, studentId,  request.getTitle());
+        PostResponse response = postService.updatePost(postId, request, studentId);
+        log.info("Post updated successfully: Post ID: {}", postId);
+        return response;
+    }
+
+    @DeleteMapping("/{postId}")
+    @PreAuthorize("hasAnyRole('USER', 'ADMIN')")
+    public void deletePost(@PathVariable Long postId, @AuthenticationPrincipal UserDetails userDetails) {
+        String studentId = userDetails.getUsername();
+        log.info("Deleting post: Post ID: {}, Student ID: {}", postId, studentId);
+        postService.deletePost(postId, studentId);
+        log.info("Post deleted successfully: Post ID: {}, ", postId);
+    }
+
+    @GetMapping
+    public Page<PostResponse> getPostList(@RequestParam(required = false) String titleSearch,
+                                          @RequestParam(defaultValue = "0") int page,
+                                          @RequestParam(defaultValue = "20") int size) {
+        Pageable pageable = PageRequest.of(page, size);  // 페이지 정보 설정
+        log.info("Fetching post list: Search Query: {}, Page: {}, Size: {}", titleSearch, page, size);
+
+        Page<PostResponse> postPage = (titleSearch == null)
+                ? postService.getAllPosts(pageable)
+                : postService.searchPosts(titleSearch, pageable);
+
+        log.info("Fetched {} posts.", postPage.getTotalElements());
+        return postPage;
+    }
+}

src/main/java/com/demo/domain/Authority.java

@@ -1,9 +1,6 @@
 package com.demo.domain;
 
-import jakarta.persistence.Column;
-import jakarta.persistence.Entity;
-import jakarta.persistence.Id;
-import jakarta.persistence.Table;
+import jakarta.persistence.*;
 import lombok.*;
 
 /**
@@ -18,10 +15,36 @@
 @Entity
 @Table(name = "authority")
 @Getter
-@AllArgsConstructor(access = AccessLevel.PRIVATE)
 @NoArgsConstructor(access = AccessLevel.PROTECTED)
 public class Authority {
+
     @Id
     @Column(name = "authority_name", length = 50)
-    private String authorityName;
+    @Enumerated(EnumType.STRING)  // Enum 값을 DB에 저장할 때 문자열로 저장하게 했습니다
+    private Role role;
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+        Authority authority = (Authority) o;
+        return role == authority.role;
+    }
+
+    public Authority(Role role) {
+        this.role = role;
+    }
+
+    public static Authority createRole(Role role) {
+        return new Authority(role);
+    }
+
+    public String getAuthorityName() {
+        return role.name();  // Role enum 값을 문자열로 반환
+    }
+
+    @Override
+    public int hashCode() {
+        return role.hashCode();
+    }
 }

src/main/java/com/demo/domain/Post.java

@@ -0,0 +1,63 @@
+package com.demo.domain;
+
+import com.demo.dto.request.PostUpdateRequest;
+import com.demo.dto.response.PostResponse;
+import jakarta.persistence.*;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+import lombok.AllArgsConstructor;
+
+
+import java.time.ZoneOffset;
+import java.time.LocalDateTime;
+
+@Entity
+@Getter
+@NoArgsConstructor
+@AllArgsConstructor
+public class Post {
+
+    @Id
+    @GeneratedValue(strategy = GenerationType.IDENTITY)
+    private Long id;
+    private String title;
+    private String content;
+    private String description;
+
+    @ManyToOne
+    @JoinColumn(name = "student_id")
+    private Student student;
+
+    private LocalDateTime createdAt;
+    private LocalDateTime updatedAt;
+
+
+    @PrePersist
+    public void prePersist() {
+        this.createdAt = LocalDateTime.now(ZoneOffset.UTC);
+        this.updatedAt = LocalDateTime.now(ZoneOffset.UTC);
+    }
+
+    // 게시글 수정 시 수정 시간 업데이트
+    @PreUpdate
+    public void preUpdate() {
+        this.updatedAt = LocalDateTime.now(ZoneOffset.UTC);
+    }
+
+    public void update(PostUpdateRequest request) {
+        this.title = request.getTitle();
+        this.content = request.getContent();
+        this.description = request.getDescription();
+    }
+
+    public Post(String title, String content, String description, Student student) {
+        this.title = title;
+        this.content = content;
+        this.description = description;
+        this.student = student;
+    }
+
+    public PostResponse toResponse() {
+        return PostResponse.fromPost(this);
+    }
+}

src/main/java/com/demo/domain/Role.java

@@ -0,0 +1,25 @@
+package com.demo.domain;
+
+public enum Role {
+    ROLE_USER("ROLE_USER"),
+    ROLE_ADMIN("ROLE_ADMIN");
+
+    private final String roleName;
+
+    Role(String roleName) {
+        this.roleName = roleName;
+    }
+
+    public String getRoleName() {
+        return roleName;
+    }
+
+    public static Role fromString(String roleName) {
+        for (Role role : Role.values()) {
+            if (role.getRoleName().equals(roleName)) {
+                return role;
+            }
+        }
+        throw new IllegalArgumentException("Unknown role: " + roleName);
+    }
+}

src/main/java/com/demo/domain/Student.java

@@ -47,6 +47,15 @@ public class Student {
     )
     private Set<Authority> authorities = new HashSet<>();
 
+    public void addAuthority(Authority authority) {
+        this.authorities.add(authority);
+    }
+
+    public boolean hasRole(Role role) {
+        return this.getAuthorities().stream()
+                .noneMatch(authority -> authority.getRole().equals(role));
+    }
+
     @Builder(access = AccessLevel.PRIVATE)
     public Student(String name, Long studentNumber, String phoneNumber, String loginId, String password, String email) {
         this.name = name;
@@ -87,8 +96,4 @@ public StudentResponse toResponse() {
                 .password(this.password)
                 .build();
     }
-
-    public void addAuthority(Authority authority) {
-        this.authorities.add(authority);
-    }
 }

src/main/java/com/demo/dto/request/PostCreateRequest.java

@@ -0,0 +1,14 @@
+package com.demo.dto.request;
+
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class PostCreateRequest {
+
+    private String title;
+    private String content;
+    private String description;
+    private String studentId;
+}

src/main/java/com/demo/dto/request/PostUpdateRequest.java

@@ -0,0 +1,13 @@
+package com.demo.dto.request;
+
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class PostUpdateRequest {
+
+    private String title;
+    private String content;
+    private String description;
+}

src/main/java/com/demo/dto/response/PostResponse.java

@@ -0,0 +1,27 @@
+package com.demo.dto.response;
+
+import lombok.Getter;
+import lombok.AllArgsConstructor;
+
+@Getter
+@AllArgsConstructor
+public class PostResponse {
+
+    private Long id;             // 게시글 ID
+    private String title;        // 게시글 제목
+    private String content;      // 게시글 내용
+    private String description;  // 게시글 설명
+    private String createdAt;    // 게시글 작성 시간
+    private String updatedAt;    // 게시글 수정 시간
+
+    public static PostResponse fromPost(com.demo.domain.Post post) {
+        return new PostResponse(
+                post.getId(),
+                post.getTitle(),
+                post.getContent(),
+                post.getDescription(),
+                post.getCreatedAt() != null ? post.getCreatedAt().toString() : null,
+                post.getUpdatedAt() != null ? post.getUpdatedAt().toString() : null
+        );
+    }
+}