8주차 미션 / 서버 4조 조동현

src/main/java/com/kuit/kuit4serverauth/config/WebConfig.java

@@ -15,6 +15,7 @@ public WebConfig(AuthInterceptor authInterceptor) {
 
     @Override
     public void addInterceptors(InterceptorRegistry registry) {
-        // TODO /profile, /admin 앞에 붙이기
+        registry.addInterceptor(authInterceptor)
+                .addPathPatterns("/profile", "/admin");
     }
 }

src/main/java/com/kuit/kuit4serverauth/controller/UserController.java

@@ -12,12 +12,17 @@ public class UserController {
     @GetMapping("/profile")
     public ResponseEntity<String> getProfile(HttpServletRequest request) {
         // TODO : 로그인 한 사용자면 username 이용해 "Hello, {username}" 반환하기
-        return ResponseEntity.status(HttpStatus.UNAUTHORIZED).body("Unauthorized");
+        String username = (String) request.getAttribute("username");
+        return ResponseEntity.ok("Hello, " + username);
     }
 
     @GetMapping("/admin")
     public ResponseEntity<String> getAdmin(HttpServletRequest request) {
         // TODO: role이 admin이면 "Hello, admin" 반환하기
+        String role = (String) request.getAttribute("role");
+        if ("ROLE_ADMIN".equals(role)) {
+            return ResponseEntity.ok("Hello, admin");
+        }
         return ResponseEntity.status(HttpStatus.FORBIDDEN).body("Forbidden");
     }
 }

src/main/java/com/kuit/kuit4serverauth/service/JwtUtil.java

@@ -11,7 +11,7 @@
 
 @Component
 public class JwtUtil {
-    private final String secret = "mysecretkey";
+    private final String secret = "mysecretkeydkjfdkfjlsdkjflsdkjfsdkjflksdjflskdjflskdjflsdkjflsdkjflsdkjflsdkjflsdkjflsdkjflsdkjflsdkjflsdkjflsdkjflsdkfjskdjflskdjflskdjfsldkjflskdf";
     private final long expirationMs = 3600000; // 1 hour
 
     public String generateToken(String username, String role) {