From 25cdf48f13ad41b3e59c9e48146c91d83d138842 Mon Sep 17 00:00:00 2001
From: icksishu <icksishu@gmail.com>
Date: Tue, 17 Jun 2025 22:45:35 +0900
Subject: [PATCH] =?UTF-8?q?=EB=A1=9C=EA=B7=B8=EC=9D=B8=20=ED=99=94?=
 =?UTF-8?q?=EB=A9=B4=20=EB=B0=8F=20=EC=B2=98=EB=A6=AC=20=EB=B3=80=EA=B2=BD?=
 =?UTF-8?q?=EC=A4=91=20=20-=20=ED=99=94=EB=A9=B4=EC=9D=80=20vue=EB=A1=9C?=
 =?UTF-8?q?=20=EA=B5=AC=EC=84=B1=20=20-=20=EB=A1=9C=EA=B7=B8=EC=9D=B8=20?=
 =?UTF-8?q?=EC=B2=98=EB=A6=AC=EB=8A=94=20ajax=EB=A1=9C=20=EA=B5=AC?=
 =?UTF-8?q?=EC=84=B1?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/main/front/index.html                     |  7 ++-
 src/main/front/index.html.bak                 | 13 +++++
 src/main/front/src/App.vue                    | 35 +++++---------
 src/main/front/src/App.vue.bak                | 30 ++++++++++++
 src/main/front/src/assets/css/login.css       | 39 +++++++++++++++
 src/main/front/src/components/ConsoleMain.vue | 43 +++++++++++++++++
 src/main/front/src/components/LoginView.vue   | 47 +++++++++++++++++++
 ...nUsernamePasswordAuthenticationFilter.java | 34 ++++++++++++++
 .../framework/config/SecurityConfig.java      | 20 +++++++-
 9 files changed, 242 insertions(+), 26 deletions(-)
 create mode 100644 src/main/front/index.html.bak
 create mode 100644 src/main/front/src/App.vue.bak
 create mode 100644 src/main/front/src/assets/css/login.css
 create mode 100644 src/main/front/src/components/ConsoleMain.vue
 create mode 100644 src/main/front/src/components/LoginView.vue
 create mode 100644 src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/JsonUsernamePasswordAuthenticationFilter.java

diff --git a/src/main/front/index.html b/src/main/front/index.html
index 8388c4b..e61b9b3 100644
--- a/src/main/front/index.html
+++ b/src/main/front/index.html
@@ -1,10 +1,13 @@
 <!doctype html>
-<html lang="en">
+<html lang="ko">
   <head>
     <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <meta name="description" content="">
     <link rel="icon" type="image/svg+xml" href="/vite.svg" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <title>Vite + Vue</title>
+    <link href="/assets/bootstrap/css/bootstrap.min.css" rel="stylesheet">
+    <title>Dfx console</title>
   </head>
   <body>
     <div id="app"></div>
diff --git a/src/main/front/index.html.bak b/src/main/front/index.html.bak
new file mode 100644
index 0000000..8388c4b
--- /dev/null
+++ b/src/main/front/index.html.bak
@@ -0,0 +1,13 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Vite + Vue</title>
+  </head>
+  <body>
+    <div id="app"></div>
+    <script type="module" src="/src/main.js"></script>
+  </body>
+</html>
diff --git a/src/main/front/src/App.vue b/src/main/front/src/App.vue
index 81c28ec..93feecd 100644
--- a/src/main/front/src/App.vue
+++ b/src/main/front/src/App.vue
@@ -1,30 +1,21 @@
 <script setup>
-import HelloWorld from './components/HelloWorld.vue'
+import {onMounted} from 'vue'
+import LoginView from './components/LoginView.vue'
+import ConsoleMain from './components/ConsoleMain.vue'
+let hasSession = false;
+function isHasSession() {
+  return false;
+}
+
+onMounted(() => {
+  hasSession = isHasSession();
+});
 </script>
 
 <template>
-  <div>
-    <a href="https://vite.dev" target="_blank">
-      <img src="/vite.svg" class="logo" alt="Vite logo" />
-    </a>
-    <a href="https://vuejs.org/" target="_blank">
-      <img src="./assets/vue.svg" class="logo vue" alt="Vue logo" />
-    </a>
-  </div>
-  <HelloWorld msg="Vite + Vue" />
+  <ConsoleMain v-if="hasSession"></ConsoleMain>
+  <LoginView v-else></LoginView>
 </template>
 
 <style scoped>
-.logo {
-  height: 6em;
-  padding: 1.5em;
-  will-change: filter;
-  transition: filter 300ms;
-}
-.logo:hover {
-  filter: drop-shadow(0 0 2em #646cffaa);
-}
-.logo.vue:hover {
-  filter: drop-shadow(0 0 2em #42b883aa);
-}
 </style>
diff --git a/src/main/front/src/App.vue.bak b/src/main/front/src/App.vue.bak
new file mode 100644
index 0000000..81c28ec
--- /dev/null
+++ b/src/main/front/src/App.vue.bak
@@ -0,0 +1,30 @@
+<script setup>
+import HelloWorld from './components/HelloWorld.vue'
+</script>
+
+<template>
+  <div>
+    <a href="https://vite.dev" target="_blank">
+      <img src="/vite.svg" class="logo" alt="Vite logo" />
+    </a>
+    <a href="https://vuejs.org/" target="_blank">
+      <img src="./assets/vue.svg" class="logo vue" alt="Vue logo" />
+    </a>
+  </div>
+  <HelloWorld msg="Vite + Vue" />
+</template>
+
+<style scoped>
+.logo {
+  height: 6em;
+  padding: 1.5em;
+  will-change: filter;
+  transition: filter 300ms;
+}
+.logo:hover {
+  filter: drop-shadow(0 0 2em #646cffaa);
+}
+.logo.vue:hover {
+  filter: drop-shadow(0 0 2em #42b883aa);
+}
+</style>
diff --git a/src/main/front/src/assets/css/login.css b/src/main/front/src/assets/css/login.css
new file mode 100644
index 0000000..4732d1f
--- /dev/null
+++ b/src/main/front/src/assets/css/login.css
@@ -0,0 +1,39 @@
+html,
+body {
+  height: 100%;
+}
+
+body {
+  display: flex;
+  align-items: center;
+  padding-top: 40px;
+  padding-bottom: 40px;
+  background-color: #f5f5f5;
+}
+
+.form-signin {
+  width: 100%;
+  max-width: 330px;
+  padding: 15px;
+  margin: auto;
+}
+
+.form-signin .checkbox {
+  font-weight: 400;
+}
+
+.form-signin .form-floating:focus-within {
+  z-index: 2;
+}
+
+.form-signin input[type="email"] {
+  margin-bottom: -1px;
+  border-bottom-right-radius: 0;
+  border-bottom-left-radius: 0;
+}
+
+.form-signin input[type="password"] {
+  margin-bottom: 10px;
+  border-top-left-radius: 0;
+  border-top-right-radius: 0;
+}
diff --git a/src/main/front/src/components/ConsoleMain.vue b/src/main/front/src/components/ConsoleMain.vue
new file mode 100644
index 0000000..546ebbc
--- /dev/null
+++ b/src/main/front/src/components/ConsoleMain.vue
@@ -0,0 +1,43 @@
+<script setup>
+import { ref } from 'vue'
+
+defineProps({
+  msg: String,
+})
+
+const count = ref(0)
+</script>
+
+<template>
+  <h1>{{ msg }}</h1>
+
+  <div class="card">
+    <button type="button" @click="count++">count is {{ count }}</button>
+    <p>
+      Edit
+      <code>components/HelloWorld.vue</code> to test HMR
+    </p>
+  </div>
+
+  <p>
+    Check out
+    <a href="https://vuejs.org/guide/quick-start.html#local" target="_blank"
+      >create-vue</a
+    >, the official Vue + Vite starter
+  </p>
+  <p>
+    Learn more about IDE Support for Vue in the
+    <a
+      href="https://vuejs.org/guide/scaling-up/tooling.html#ide-support"
+      target="_blank"
+      >Vue Docs Scaling up Guide</a
+    >.
+  </p>
+  <p class="read-the-docs">Click on the Vite and Vue logos to learn more</p>
+</template>
+
+<style scoped>
+.read-the-docs {
+  color: #888;
+}
+</style>
diff --git a/src/main/front/src/components/LoginView.vue b/src/main/front/src/components/LoginView.vue
new file mode 100644
index 0000000..121206a
--- /dev/null
+++ b/src/main/front/src/components/LoginView.vue
@@ -0,0 +1,47 @@
+<script setup>
+import '../assets/css/login.css'
+
+// ajax login check 해야 함
+</script>
+
+<template>
+<main class="form-signin">
+  <form method="post" action="/loginProcess">
+    <h1 class="h3 mb-3 fw-normal">Please sign in</h1>
+
+    <div class="form-floating">
+      <input type="text" name="username" class="form-control" id="floatingInput" placeholder="name@example.com">
+      <label for="floatingInput">Email address</label>
+    </div>
+    <div class="form-floating">
+      <input type="password" name="password" class="form-control" id="floatingPassword" placeholder="Password">
+      <label for="floatingPassword">Password</label>
+    </div>
+
+    <div class="checkbox mb-3">
+      <label>
+        <input type="checkbox" value="remember-me"> Remember me
+      </label>
+    </div>
+    <button class="w-100 btn btn-lg btn-primary" type="submit">Sign in</button>
+    <p class="mt-5 mb-3 text-muted">&copy; 2017–2021</p>
+  </form>
+</main>
+
+</template>
+
+<style scoped>
+.bd-placeholder-img {
+  font-size: 1.125rem;
+  text-anchor: middle;
+  -webkit-user-select: none;
+  -moz-user-select: none;
+  user-select: none;
+}
+
+@media (min-width: 768px) {
+  .bd-placeholder-img-lg {
+    font-size: 3.5rem;
+  }
+}
+</style>
diff --git a/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/JsonUsernamePasswordAuthenticationFilter.java b/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/JsonUsernamePasswordAuthenticationFilter.java
new file mode 100644
index 0000000..662d538
--- /dev/null
+++ b/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/JsonUsernamePasswordAuthenticationFilter.java
@@ -0,0 +1,34 @@
+package com.bsmlab.dfx.dfxconsole.framework.config;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.http.MediaType;
+import org.springframework.security.authentication.AuthenticationServiceException;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+
+import java.io.IOException;
+import java.util.Map;
+
+public class JsonUsernamePasswordAuthenticationFilter extends UsernamePasswordAuthenticationFilter {
+    @SuppressWarnings("unchecked")
+    @Override
+    public Authentication attemptAuthentication(HttpServletRequest request, HttpServletResponse response) throws AuthenticationException {
+        if(!request.getContentType().equals(MediaType.APPLICATION_JSON_VALUE)) {
+            throw new IllegalArgumentException("not application/json");
+        }
+        try {
+            ObjectMapper objectMapper = new ObjectMapper();
+            Map<String, String> userInfoMap = objectMapper.readValue(request.getInputStream(), Map.class);
+            UsernamePasswordAuthenticationToken usernamePasswordAuthenticationToken = new UsernamePasswordAuthenticationToken(userInfoMap.get("username"), userInfoMap.get("password"));
+            this.setDetails(request, usernamePasswordAuthenticationToken);
+            return this.getAuthenticationManager().authenticate(usernamePasswordAuthenticationToken);
+        }
+        catch(IOException e) {
+            throw new AuthenticationServiceException("사용자 정보를 확인할 수 없습니다.");
+        }
+    }
+}
diff --git a/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/SecurityConfig.java b/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/SecurityConfig.java
index d78292a..218c797 100644
--- a/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/SecurityConfig.java
+++ b/src/main/java/com/bsmlab/dfx/dfxconsole/framework/config/SecurityConfig.java
@@ -4,6 +4,7 @@ import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
@@ -11,6 +12,7 @@ import org.springframework.security.config.core.GrantedAuthorityDefaults;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
 
 @Slf4j
 @Configuration
@@ -18,8 +20,8 @@ import org.springframework.security.web.SecurityFilterChain;
 @RequiredArgsConstructor
 public class SecurityConfig {
 
-    @Bean
-    public SecurityFilterChain securityFilterChain(HttpSecurity httpSecurity) throws Exception {
+    //@Bean
+    public SecurityFilterChain securityFilterChainFormLogin(HttpSecurity httpSecurity) throws Exception {
         httpSecurity
                 .csrf(AbstractHttpConfigurer::disable) // REST API 를 제공하는 서비스이므로 Cross Site Request Forgery disable
                 .authorizeHttpRequests(authorize -> authorize
@@ -44,6 +46,20 @@ public class SecurityConfig {
         return httpSecurity.build();
     }
 
+    @Bean
+    public SecurityFilterChain securityFilterChainAjax(HttpSecurity httpSecurity) throws Exception {
+        JsonUsernamePasswordAuthenticationFilter jsonUsernamePasswordAuthenticationFilter = new JsonUsernamePasswordAuthenticationFilter();
+        jsonUsernamePasswordAuthenticationFilter.setAuthenticationManager(httpSecurity.getSharedObject(AuthenticationManager.class));
+        jsonUsernamePasswordAuthenticationFilter.setFilterProcessesUrl("/public-api/loginProcess");
+        httpSecurity
+                .csrf(AbstractHttpConfigurer::disable)
+                .authorizeHttpRequests(authorize -> authorize.requestMatchers("/app-api/**").hasRole("USER").anyRequest().permitAll())
+                .addFilterAt(jsonUsernamePasswordAuthenticationFilter, UsernamePasswordAuthenticationFilter.class)
+                .sessionManagement(session -> session.maximumSessions(1).maxSessionsPreventsLogin(false))
+        ;
+        return httpSecurity.build();
+    }
+
     @Bean
     public PasswordEncoder getPasswordEncoder() {
         return new BCryptPasswordEncoder();